last executing test programs: 5.059641678s ago: executing program 1 (id=5742): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 4.794405505s ago: executing program 1 (id=5743): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) mmap$auto(0x5, 0x4000b, 0x6, 0x9b72, 0x7, 0x2) sysfs$auto(0x2, 0x10000000000002d, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) io_cancel$auto(0x6, 0x0, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60342, 0x15b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) 3.778046724s ago: executing program 0 (id=5749): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) socket(0x2a, 0x2, 0x0) 3.616825316s ago: executing program 1 (id=5751): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) r0 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) bind$auto(0x3, 0x0, 0x6a) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) 3.181209989s ago: executing program 0 (id=5753): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b) 3.081829389s ago: executing program 1 (id=5754): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, 0x0, 0x8000) socketpair$auto(0x1e, 0x5, 0x80000000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x23, 0x80805, 0x0) epoll_create$auto(0x4) epoll_pwait$auto(r0, 0x0, 0x3, 0x6, &(0x7f00000001c0)={0x100000001}, 0x8) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x3a) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) getsockopt$auto(0x6, 0x29, 0x7, 0xfffffffffffffffe, 0x0) r1 = socket(0x21, 0x800, 0x100) getcwd$auto(&(0x7f0000000000)='&\'\x00', 0x7) socket(0xa, 0x801, 0x84) connect$auto(0x3, 0x0, 0x55) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000003140), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_PHY_GET(r2, &(0x7f0000003200)={0x0, 0x0, &(0x7f00000031c0)={&(0x7f0000000000)={0x2c, r3, 0x301, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_PHY_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2404c012}, 0x80) sendmsg$auto_ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x10, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40448c0}, 0x200040c0) bpf$auto(0x9, &(0x7f00000000c0)=@enable_stats={0xffffd13b}, 0x18) listen$auto(0x3, 0x807d) accept$auto(0xffffffffffffffff, 0x0, 0x0) 3.017837405s ago: executing program 2 (id=5755): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) socket(0x15, 0x5, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x800000000000948b, 0x8001, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe0ffffffe0, 0x80000001, 0x4, 0x6d3c, 0x200000000000005, 0x2, 0x80000]}, 0x0) close_range$auto(0x2, 0xa, 0x0) 2.644018062s ago: executing program 3 (id=5756): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/interrupts\x00', 0x40440, 0x0) socketpair$auto(0x1d, 0x6, 0x8000000000000000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000080)=""/121, 0x79) socket(0x3, 0x1, 0x80000000) 2.356876361s ago: executing program 3 (id=5757): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x300, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf251400030008000300", @ANYRES32=r2], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) 2.211562343s ago: executing program 2 (id=5758): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0x800000000000008, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) userfaultfd$auto(0x1) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) 2.138247039s ago: executing program 1 (id=5759): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x68, 0x0, 0x10, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF2_AGE={0x8, 0x4, 0x8}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IFINDEX={0x8}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @remote}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}}, @HSR_A_IF2_AGE={0x8, 0x4, 0x10}, @HSR_A_IF1_AGE={0x8, 0x3, 0xfffffffa}, @HSR_A_IF2_AGE={0x8, 0x4, 0xb7}]}, 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) socket(0x2, 0x3, 0x6) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x8) sendmmsg$auto(0x3, 0x0, 0x3, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x3, 0x100) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmsg$auto_NL80211_CMD_START_AP(r1, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)={0x1c0, 0x0, 0x300, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_REG_RULES={0x18b, 0x22, 0x0, 0x1, [@generic="b30f798217a379f3c93389488eb7e46d6c6d7f3f2bd4fe6df4d9676f698dc0ac161674293072adf3604056c9aff00fef51f9d01d827bfea89ea322992cf165ad30faba1eaf74f5ce1393917aded948c04db81c1b3968f5054a1067648dbdf4338fc7fa2f442b37cab331e6bbe3a64328b614bc97332bc8cfe81ebac3ce882d9fda87b66bd669c4c30c59331b14f690a2c36b9c14a99891bb61353cb04410", @generic="7b53313dc9c5e88adad4eddc0af370cda12811111828136c6da7ab4309c344d31d2d21543e66dcdef6bbe4f0884326a19a070d361934652bb52eb8be39d958e8b03e1cfe9df1028517ba92e0d7e46f3a7916142058cd045ada11f2c37f711ac75a9012a85830c0e82fa0b40bb07a3a7822cf2a93120583b07a34577a7b053ee2595e3ca7112d07d0630b9eb7e691405981811776807052bd531e2c93ae9bd777c75011df4e4ae21fb6cd2db12f7160b67ff1ac2981a275dd4a06f814f82fb28a19d132b59de97e64942cad41fb15b07388731b9246d365bf2050ce097547338ce2610cb6b205d2f42e"]}, @NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x1}, @NL80211_ATTR_TIMEOUT_REASON={0x8, 0xf8, 0xfffffffc}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x6}, @NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x9}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x840}, 0x28000040) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000640)={&(0x7f0000000540)={0xfc, 0x0, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x2}, @NL80211_ATTR_QOS_MAP={0xaa, 0xc7, "f215430f48bd7d4e8bc240c872a3ab7f6610cefc5d747436e6a41461b6b2e093cae74e7af6c755e145af877b540c153804a0f048f2bbb97193927f37f3c42e854e23e9b8e7d34e587e6838ecb7b64c1f3c66b1bc7036bcce24702f020850a2746ba9669394aff9659c200a58fd06b40bde58cc03953a02a72cc7e7b2a38e403a34a516ea00be1965992c5c00e388b45aa47517c8faa0b9b821764e7f23a59365149d3862f303"}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, 0xfc68}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x8000}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x1ff}, @NL80211_ATTR_HW_TIMESTAMP_ENABLED={0x4}, @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_FILS_KEK={0x13, 0xf2, "6ae7ac47e28ccf48b30561a293e17b"}]}, 0xfc}}, 0x4004080) openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000000), 0xc0402, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.128487132s ago: executing program 0 (id=5760): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) mmap$auto(0x5, 0x4000b, 0x6, 0x9b72, 0x7, 0x2) sysfs$auto(0x2, 0x10000000000002d, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0x40, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60342, 0x15b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) 1.997729265s ago: executing program 3 (id=5761): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x5, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) socket(0x2a, 0x2, 0x0) 1.65177374s ago: executing program 2 (id=5762): mmap$auto(0x0, 0x20006, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000040)={0x28, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_MASTER_SLAVE_CFG={0x5, 0x7, 0x5}, @ETHTOOL_A_LINKMODES_HEADER={0x6d, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008801}, 0x24000802) close_range$auto(0x2, 0x8, 0x800) kcmp$auto(0x1, 0x1, 0x0, 0xffffffffffffffff, 0x100000001) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptye3\x00', 0xa4d02, 0x0) mknod$auto(&(0x7f0000000300)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x1, 0x4) lstat$auto(&(0x7f0000000200)='\xfd\x90\x8f2\x14\x92\x00\xbf\xdf\xcf\x9a\xae}\xd9\xf95\xc5gV\x82\f\xe5h\xfe\x83\xe4\xbe\x8c\x1f\xa5\xf1_T\xde\xf7\xd4\x83D\x9eXS\xd6\x90T\xc1v\xad#\xc4q\x8b\xed2\xadW:0\xef\x9c.=\xba\x0fy\x8f\xcd\xd6\xde\xa9i\xec\xe8\xca\x9f\xf3\x82b\xa2y\xa87J\xfc \xc5\xd8\x80\xba\xaaV\x8f{\x1f\x1b\xb0\n\x97\\\xa7\xe3\xdf\xc29-*;#r\xc8\xd1\x14RcF\x87\xe4\x1c\x1fGL\xa5\x19\x90\xd6\x8d*\xe6\b(\x1a\xea\x95\xdc\xa6)5\xae&yAl\x1e\xe3j Lp\x91\r\xed%\xafZ\xf8w\xf2}\xcdGS\xce\xb9\xdck\x86\x00.6\xe6{\xc1\x00\x1bW5\x81\xda!\xcb.O\xa9\xf3\xa7\x88+\xb9\xf3\x9a7\xa4\xe6)<\xa79\xa4\x87\\\xb4\xbf\v\x03\x87\xac\x87r\x02\x05\xdb\xe4\xde,V\xb6G\xba.WR\xe2<~\xdd\xb2\xe53hj_;\xa5qm\x92\xc7P\xc9.\x82w8\x1f\xfcX\xe4\x14\xc72cC\xd3\x00', 0x0) ioctl$auto(0x3, 0x5420, 0x38) mmap$auto(0x0, 0x2020009, 0x0, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x28000) mmap$auto(0xffffffffffffffff, 0x100000a00006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000040), 0x8300, 0x0) ioctl$auto_RTC_PIE_ON(r0, 0x7005, 0x0) readv$auto(r0, &(0x7f00000004c0)={0x0, 0x2004}, 0x5) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) close_range$auto(0x2, 0x8, 0x0) 1.477330957s ago: executing program 0 (id=5763): mmap$auto(0x0, 0x2020009, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) r0 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0xb}}, 0x6a) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) sendmmsg$auto(r0, 0x0, 0x5, 0x20000000) 1.448815039s ago: executing program 3 (id=5764): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4004810}, 0x800) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0x4) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.223095812s ago: executing program 2 (id=5765): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x60, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@HSR_A_IF1_AGE={0x8, 0x3, 0x200}, @HSR_A_IF2_SEQ={0x6, 0x7, 0x8000}, @HSR_A_IF1_AGE={0x8, 0x3, 0x400}, @HSR_A_NODE_ADDR_B={0xa}, @HSR_A_NODE_ADDR={0xa, 0x1, @multicast}, @HSR_A_NODE_ADDR_B={0xa, 0x5, @multicast}, @HSR_A_IFINDEX={0x8}, @HSR_A_IFINDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) close_range$auto(0x2, 0x8, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4004c18}, 0x8894) sendmsg$auto_NETDEV_CMD_QUEUE_GET(0xffffffffffffffff, &(0x7f0000003040)={0x0, 0x0, &(0x7f0000003000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="01002cbd7000fbdbdf250a0000fb"], 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20008810) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='h'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB='h'], 0x1ac}, 0x1, 0x0, 0x0, 0x40814}, 0x2004c0c4) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) (async) mmap$auto(0x0, 0x400009, 0xdf, 0x9b72, 0x8000000000000003, 0x8000) r0 = socket(0xa, 0x1, 0x84) getsockopt$auto(r0, 0x84, 0x11, 0x0, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 1.174236753s ago: executing program 0 (id=5766): openat$auto_tun_fops_tun(0xffffffffffffff9c, 0x0, 0x2002, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40440, 0x0) socketpair$auto(0x1d, 0x6, 0x8000000000000000, 0x0) read$auto_proc_iter_file_ops_compat_inode(r0, &(0x7f0000000080)=""/121, 0x79) socket(0x3, 0x1, 0x80000000) 1.167319895s ago: executing program 3 (id=5767): close_range$auto(0x2, 0x8, 0x0) epoll_create$auto(0x4) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/core/rps_default_mask\x00', 0x82, 0x0) socket(0x11, 0x80003, 0x300) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000040)='/proc/bus/input/devices\x00', 0x4a040, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ttyS3\x00', 0x0, 0x0) socket(0x15, 0x5, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1fd, 0x8, 0xd, 0x1, 0x800000000000948b, 0x8001, 0x15f4da0b, 0x6, 0x80000000080, 0x1fffe0ffffffe0, 0x80000001, 0x4, 0x6d3c, 0x200000000000005, 0x2, 0x80000]}, 0x0) close_range$auto(0x2, 0xa, 0x0) 978.795548ms ago: executing program 1 (id=5768): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/snd/controlC1\x00', 0x101a02, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000001c0)={{@raw=0xfff, 0x100110d, 0xfffd, 0x4, "e927783f468fa2e92fe8ec7a46cbb766439daa1ee1aa001d00000004fbfb660e0701000000000000008000"}, 0x6, 0x0, 0x4, @raw=0x404, @integer64={0x4, 0x0, 0x3}, "a4699d30a05edbe0d28473c399a7dc920b153e9b1675451d7de94b4123f970bedd3460c667373fcc59b584d81592f6ab606c276852295e00af49e6de6e768034"}) 820.371633ms ago: executing program 0 (id=5769): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00', @ANYBLOB="1200", @ANYBLOB=']'], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000140)={{0x0, 0x1, &(0x7f0000000080)={0x0, 0x400}, 0x5, 0x0, 0x200002, 0x8}, 0x803}, 0xfffffff9, 0x10, 0x0) write$auto_proc_clear_refs_operations_internal(r0, 0x0, 0xffffff4b) 688.405778ms ago: executing program 3 (id=5770): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000400), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103}) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x0) r5 = socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r6 = socket(0xa, 0x3, 0x3b) getsockopt$auto(r6, 0x29, 0x4b, 0x0, 0x0) bind$auto(r5, &(0x7f0000000040)=@in={0x2, 0xffff, @loopback}, 0x67) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) ioctl$sock_SIOCGIFINDEX(r4, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010b27bd7000fda5c5a62073660008000300", @ANYRES32=r7], 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040080) r8 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_TASKSTATS_CMD_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c0}, 0x4040000) shmctl$auto(0x3, 0xffffffff, &(0x7f0000000180)={{0x7, 0xee00, 0x0, 0x4, 0x3, 0x2, 0x3}, 0xe25, 0x3ff, 0x1, 0x10, @inferred, @inferred, 0x9, 0x0, 0x0, 0x0}) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) open(&(0x7f00000000c0)='./file0\x00', 0x80080, 0x104) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20008890}, 0x4000800) r10 = socket$nl_generic(0x10, 0x3, 0x10) lstat$auto(0x0, &(0x7f0000000180)={0xb, 0xb, 0x100000002, 0x1, 0x0, 0xee01, 0x0, 0x1000000006, 0x6, 0x7, 0x400, 0x7ffffff9, 0xffffffffffffffff, 0xffffffff80000002, 0xc15, 0x7, 0x10b}) ioctl$sock_SIOCGIFINDEX(r10, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf251400030008000300", @ANYRES32=r9], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) 396.462984ms ago: executing program 2 (id=5771): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) init_module$auto(0x0, 0xffff9, 0x0) madvise$auto(0x0, 0x800000000000008, 0x1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) userfaultfd$auto(0x1) socket(0xa, 0x801, 0x84) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x4, &(0x7f0000000040)=@query={@target_ifindex, 0x7, 0x6, 0x9, 0x9, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0x9, 0xffffffffffffff66}, 0x7) 0s ago: executing program 2 (id=5772): mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4) mmap$auto(0x5, 0x4000b, 0x6, 0x9b72, 0x7, 0x2) sysfs$auto(0x2, 0x10000000000002d, 0x0) fsopen$auto(0x0, 0x1) mmap$auto(0x0, 0x2020006, 0x1000000000000007, 0xeb1, 0x0, 0x1008000) openat$auto_fops_u8_(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/nfcsim/nfc1/dropframe\x00', 0x40, 0x0) open(&(0x7f00000001c0)='./file0\x00', 0x60342, 0x15b) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0x200007, 0x19) kernel console output (not intermixed with test programs): 00000246 R12: 0000000000000002 [ 177.190745][ T7105] R13: 0000000000000001 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 177.190781][ T7105] [ 177.508501][ T7116] device-mapper: ioctl: Invalid ioctl structure: uuid cFGL֍*(ܦ)5&yAlj Lp%Zw}GSιk, name , dev 3000000000 [ 179.084651][ T7129] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^|p)As*V]ȸ厢]b]E-%E;|>1TN<ùGep$DrműT&Ot [ 179.084651][ T7129] fQJ d(;]*>W5m(-.kX^^Tt++#J4/kK#m*' [ 179.910825][ T7168] netlink: 'syz.0.376': attribute type 1 has an invalid length. [ 181.235782][ T7178] FAULT_INJECTION: forcing a failure. [ 181.235782][ T7178] name failslab, interval 1, probability 0, space 0, times 0 [ 181.282141][ T7178] CPU: 1 UID: 0 PID: 7178 Comm: syz.2.375 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 181.282190][ T7178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 181.282212][ T7178] Call Trace: [ 181.282222][ T7178] [ 181.282240][ T7178] dump_stack_lvl+0x16c/0x1f0 [ 181.282293][ T7178] should_fail_ex+0x512/0x640 [ 181.282332][ T7178] ? fs_reclaim_acquire+0xae/0x150 [ 181.282377][ T7178] should_failslab+0xc2/0x120 [ 181.282409][ T7178] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 181.282460][ T7178] ? security_inode_alloc+0x3b/0x2b0 [ 181.282504][ T7178] security_inode_alloc+0x3b/0x2b0 [ 181.282560][ T7178] inode_init_always_gfp+0xce4/0x1030 [ 181.282619][ T7178] alloc_inode+0x86/0x240 [ 181.282665][ T7178] new_inode+0x22/0x1c0 [ 181.282698][ T7178] ? start_creating.part.0+0x25d/0x3a0 [ 181.282748][ T7178] debugfs_create_dir+0xdd/0x5f0 [ 181.282796][ T7178] ptp_open+0x307/0x520 [ 181.282845][ T7178] ? __pfx_ptp_open+0x10/0x10 [ 181.282901][ T7178] ? __pfx_ptp_open+0x10/0x10 [ 181.282942][ T7178] posix_clock_open+0x178/0x290 [ 181.282989][ T7178] ? __pfx_posix_clock_open+0x10/0x10 [ 181.283034][ T7178] chrdev_open+0x231/0x6a0 [ 181.283084][ T7178] ? __pfx_apparmor_file_open+0x10/0x10 [ 181.283126][ T7178] ? __pfx_chrdev_open+0x10/0x10 [ 181.283180][ T7178] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 181.283236][ T7178] do_dentry_open+0x741/0x1c10 [ 181.283282][ T7178] ? __pfx_chrdev_open+0x10/0x10 [ 181.283341][ T7178] vfs_open+0x82/0x3f0 [ 181.283380][ T7178] path_openat+0x1e5e/0x2d40 [ 181.283450][ T7178] ? __pfx_path_openat+0x10/0x10 [ 181.283511][ T7178] do_filp_open+0x20b/0x470 [ 181.283558][ T7178] ? __pfx_do_filp_open+0x10/0x10 [ 181.283650][ T7178] ? alloc_fd+0x471/0x7d0 [ 181.283711][ T7178] do_sys_openat2+0x11b/0x1d0 [ 181.283746][ T7178] ? __pfx_do_sys_openat2+0x10/0x10 [ 181.283798][ T7178] __x64_sys_openat+0x174/0x210 [ 181.283834][ T7178] ? __pfx___x64_sys_openat+0x10/0x10 [ 181.283873][ T7178] ? rcu_is_watching+0x12/0xc0 [ 181.283926][ T7178] do_syscall_64+0xcd/0x260 [ 181.283977][ T7178] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.284011][ T7178] RIP: 0033:0x7f8c19b8d169 [ 181.284037][ T7178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.284068][ T7178] RSP: 002b:00007f8c1a955038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 181.284100][ T7178] RAX: ffffffffffffffda RBX: 00007f8c19da6160 RCX: 00007f8c19b8d169 [ 181.284121][ T7178] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 181.284142][ T7178] RBP: 00007f8c19c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 181.284162][ T7178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.284181][ T7178] R13: 0000000000000000 R14: 00007f8c19da6160 R15: 00007fff99d80908 [ 181.284222][ T7178] [ 181.692493][ T7178] debugfs: out of free dentries, can not create directory '0xffff888079158000' [ 182.634101][ T7205] FAULT_INJECTION: forcing a failure. [ 182.634101][ T7205] name fail_futex, interval 1, probability 0, space 0, times 0 [ 182.659849][ T7206] FAULT_INJECTION: forcing a failure. [ 182.659849][ T7206] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 182.678327][ T7205] CPU: 1 UID: 0 PID: 7205 Comm: syz.3.387 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 182.678376][ T7205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 182.678396][ T7205] Call Trace: [ 182.678407][ T7205] [ 182.678419][ T7205] dump_stack_lvl+0x16c/0x1f0 [ 182.678471][ T7205] should_fail_ex+0x512/0x640 [ 182.678516][ T7205] get_futex_key+0x49e/0x1000 [ 182.678567][ T7205] ? __pfx_get_futex_key+0x10/0x10 [ 182.678617][ T7205] ? find_held_lock+0x2b/0x80 [ 182.678667][ T7205] futex_wait_setup+0x78/0x290 [ 182.678710][ T7205] __futex_wait+0x266/0x3c0 [ 182.678743][ T7205] ? __pfx___futex_wait+0x10/0x10 [ 182.678783][ T7205] ? __pfx_futex_wake_mark+0x10/0x10 [ 182.678831][ T7205] futex_wait+0xe8/0x380 [ 182.678861][ T7205] ? __pfx_futex_wait+0x10/0x10 [ 182.678908][ T7205] ? find_held_lock+0x2b/0x80 [ 182.678953][ T7205] do_futex+0x229/0x350 [ 182.678999][ T7205] ? __pfx_do_futex+0x10/0x10 [ 182.679045][ T7205] ? find_held_lock+0x2b/0x80 [ 182.679093][ T7205] __x64_sys_futex+0x1e0/0x4c0 [ 182.679148][ T7205] ? __pfx___x64_sys_futex+0x10/0x10 [ 182.679198][ T7205] ? __pfx___x64_sys_clock_gettime+0x10/0x10 [ 182.679258][ T7205] do_syscall_64+0xcd/0x260 [ 182.679309][ T7205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.679342][ T7205] RIP: 0033:0x7f6e7ff8d169 [ 182.679368][ T7205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 182.679399][ T7205] RSP: 002b:00007f6e80d390e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 182.679431][ T7205] RAX: ffffffffffffffda RBX: 00007f6e801a5fa8 RCX: 00007f6e7ff8d169 [ 182.679452][ T7205] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6e801a5fa8 [ 182.679471][ T7205] RBP: 00007f6e801a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 182.679490][ T7205] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6e801a5fac [ 182.679509][ T7205] R13: 0000000000000000 R14: 00007ffca049e150 R15: 00007ffca049e238 [ 182.679549][ T7205] [ 182.887878][ T7206] CPU: 1 UID: 0 PID: 7206 Comm: syz.0.388 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 182.887922][ T7206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 182.887940][ T7206] Call Trace: [ 182.887950][ T7206] [ 182.887962][ T7206] dump_stack_lvl+0x16c/0x1f0 [ 182.888013][ T7206] should_fail_ex+0x512/0x640 [ 182.888055][ T7206] _copy_to_user+0x32/0xd0 [ 182.888099][ T7206] simple_read_from_buffer+0xcb/0x170 [ 182.888147][ T7206] proc_fail_nth_read+0x197/0x270 [ 182.888193][ T7206] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.888237][ T7206] ? rw_verify_area+0xcf/0x680 [ 182.888275][ T7206] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 182.888318][ T7206] vfs_read+0x1de/0xc70 [ 182.888366][ T7206] ? __pfx___mutex_lock+0x10/0x10 [ 182.888422][ T7206] ? __pfx_vfs_read+0x10/0x10 [ 182.888476][ T7206] ? __fget_files+0x20e/0x3c0 [ 182.888534][ T7206] ksys_read+0x12a/0x240 [ 182.888576][ T7206] ? __pfx_ksys_read+0x10/0x10 [ 182.888617][ T7206] ? rcu_is_watching+0x12/0xc0 [ 182.888669][ T7206] do_syscall_64+0xcd/0x260 [ 182.888719][ T7206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 182.888751][ T7206] RIP: 0033:0x7f9908b8bb7c [ 182.888775][ T7206] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 182.888804][ T7206] RSP: 002b:00007f9909acd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 182.888833][ T7206] RAX: ffffffffffffffda RBX: 00007f9908da5fa0 RCX: 00007f9908b8bb7c [ 182.888853][ T7206] RDX: 000000000000000f RSI: 00007f9909acd0a0 RDI: 0000000000000004 [ 182.888871][ T7206] RBP: 00007f9909acd090 R08: 0000000000000000 R09: 0000000000000000 [ 182.888889][ T7206] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000002 [ 182.888906][ T7206] R13: 0000000000000000 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 182.888946][ T7206] [ 183.396379][ T7210] netlink: 'syz.2.389': attribute type 1 has an invalid length. [ 183.681543][ T7218] bridge0: port 3(gretap0) entered blocking state [ 183.805692][ T7218] bridge0: port 3(gretap0) entered disabled state [ 183.812384][ T7218] gretap0: entered allmulticast mode [ 183.858672][ T7218] gretap0: entered promiscuous mode [ 183.900583][ T7218] FAULT_INJECTION: forcing a failure. [ 183.900583][ T7218] name failslab, interval 1, probability 0, space 0, times 0 [ 183.974625][ T7218] CPU: 0 UID: 0 PID: 7218 Comm: syz.1.393 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 183.974670][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 183.974690][ T7218] Call Trace: [ 183.974701][ T7218] [ 183.974713][ T7218] dump_stack_lvl+0x16c/0x1f0 [ 183.974765][ T7218] should_fail_ex+0x512/0x640 [ 183.974801][ T7218] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 183.974856][ T7218] should_failslab+0xc2/0x120 [ 183.974885][ T7218] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 183.974934][ T7218] ? __alloc_skb+0x2b2/0x380 [ 183.974980][ T7218] __alloc_skb+0x2b2/0x380 [ 183.975020][ T7218] ? __pfx___alloc_skb+0x10/0x10 [ 183.975078][ T7218] br_vlan_notify+0x15b/0x8c0 [ 183.975113][ T7218] ? nbp_vlan_add+0x2b2/0x410 [ 183.975152][ T7218] nbp_vlan_init+0x3f6/0x500 [ 183.975190][ T7218] ? __pfx_nbp_vlan_init+0x10/0x10 [ 183.975234][ T7218] ? __local_bh_enable_ip+0xa4/0x120 [ 183.975278][ T7218] ? lockdep_hardirqs_on+0x7c/0x110 [ 183.975321][ T7218] ? br_fdb_add_local+0x43/0x60 [ 183.975362][ T7218] ? __local_bh_enable_ip+0xa4/0x120 [ 183.975411][ T7218] br_add_if+0xfcf/0x1b70 [ 183.975450][ T7218] ? __pfx_veth_set_rx_headroom+0x10/0x10 [ 183.975496][ T7218] add_del_if+0x114/0x160 [ 183.975537][ T7218] br_dev_siocdevprivate+0x908/0x1650 [ 183.975583][ T7218] ? __pfx_br_dev_siocdevprivate+0x10/0x10 [ 183.975628][ T7218] ? __lock_acquire+0xaa4/0x1ba0 [ 183.975672][ T7218] ? __mutex_trylock_common+0xe9/0x250 [ 183.975713][ T7218] ? netdev_name_node_lookup+0x127/0x180 [ 183.975756][ T7218] dev_ifsioc+0x8eb/0x1f70 [ 183.975798][ T7218] ? __pfx_dev_ifsioc+0x10/0x10 [ 183.975848][ T7218] ? __pfx___mutex_lock+0x10/0x10 [ 183.975907][ T7218] ? dev_load+0x8e/0x240 [ 183.975970][ T7218] dev_ioctl+0x1b2/0x10e0 [ 183.976012][ T7218] sock_ioctl+0x5b3/0x6b0 [ 183.976044][ T7218] ? __pfx_sock_ioctl+0x10/0x10 [ 183.976072][ T7218] ? hook_file_ioctl_common+0x145/0x410 [ 183.976117][ T7218] ? __fget_files+0x20e/0x3c0 [ 183.976171][ T7218] ? __pfx_sock_ioctl+0x10/0x10 [ 183.976205][ T7218] __x64_sys_ioctl+0x190/0x200 [ 183.976247][ T7218] do_syscall_64+0xcd/0x260 [ 183.976297][ T7218] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.976330][ T7218] RIP: 0033:0x7f2a23f8d169 [ 183.976363][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.976396][ T7218] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.976428][ T7218] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 183.976449][ T7218] RDX: 0000200000000040 RSI: 00000000000089fc RDI: 0000000000000005 [ 183.976469][ T7218] RBP: 00007f2a2400e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 183.976488][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.976507][ T7218] R13: 0000000000000000 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 183.976547][ T7218] [ 184.277769][ T7225] FAULT_INJECTION: forcing a failure. [ 184.277769][ T7225] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 184.302813][ T7225] CPU: 1 UID: 0 PID: 7225 Comm: syz.2.395 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 184.302856][ T7225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 184.302873][ T7225] Call Trace: [ 184.302883][ T7225] [ 184.302894][ T7225] dump_stack_lvl+0x16c/0x1f0 [ 184.302942][ T7225] should_fail_ex+0x512/0x640 [ 184.302983][ T7225] _copy_from_iter+0x2a4/0x15b0 [ 184.303024][ T7225] ? _copy_from_iter+0x161/0x15b0 [ 184.303071][ T7225] ? __pfx__copy_from_iter+0x10/0x10 [ 184.303112][ T7225] ? __pfx__copy_from_iter+0x10/0x10 [ 184.303159][ T7225] copy_page_from_iter+0xa5/0x120 [ 184.303200][ T7225] skb_copy_datagram_from_iter+0x2a0/0x740 [ 184.303250][ T7225] tun_get_user+0x17ac/0x3b10 [ 184.303309][ T7225] ? __pfx_tun_get_user+0x10/0x10 [ 184.303349][ T7225] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 184.303398][ T7225] ? find_held_lock+0x2b/0x80 [ 184.303438][ T7225] ? tun_get+0x191/0x370 [ 184.303483][ T7225] tun_chr_write_iter+0xdc/0x210 [ 184.303528][ T7225] vfs_write+0x5ba/0x1180 [ 184.303571][ T7225] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 184.303616][ T7225] ? __pfx_vfs_write+0x10/0x10 [ 184.303654][ T7225] ? find_held_lock+0x2b/0x80 [ 184.303714][ T7225] __x64_sys_pwrite64+0x1f4/0x250 [ 184.303759][ T7225] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 184.303815][ T7225] do_syscall_64+0xcd/0x260 [ 184.303861][ T7225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 184.303892][ T7225] RIP: 0033:0x7f8c19b8d169 [ 184.303915][ T7225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 184.303945][ T7225] RSP: 002b:00007f8c1a997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 184.303972][ T7225] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8d169 [ 184.303991][ T7225] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 184.304009][ T7225] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 184.304027][ T7225] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 184.304045][ T7225] R13: 0000000000000001 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 184.304088][ T7225] [ 184.540647][ T7218] bridge0: port 3(gretap0) entered blocking state [ 184.547378][ T7218] bridge0: port 3(gretap0) entered forwarding state [ 186.212698][ T6882] syz.2.278 (6882) used greatest stack depth: 19032 bytes left [ 186.727313][ T7263] ima: policy update failed [ 186.738174][ T30] audit: type=1802 audit(6039154358.101:10): pid=7263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.405" res=0 errno=0 [ 187.299595][ T7252] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^|p)As*V]ȸ厢]b]E-%E;|>1TN<ùGep$DrműT&Ot [ 187.299595][ T7252] fQJ d(;]*>W5m(-.kX^^Tt++#J4/kK#m*' [ 188.728181][ T7305] netlink: 'syz.1.418': attribute type 1 has an invalid length. [ 190.023576][ T7321] netlink: 'syz.1.421': attribute type 1 has an invalid length. [ 191.002270][ T7330] cifs: Unknown parameter 'no+ 1`rsFn)aHāh`9kA}1\D@.ZCg^|p)As*V]ȸ厢]b]E-%E;|>1TN<ùGep$DrműT&Ot [ 191.002270][ T7330] fQJ d(;]*>W5m(-.kX^^Tt++#J4/kK#m*' [ 191.879987][ T7360] netlink: 'syz.3.431': attribute type 1 has an invalid length. [ 192.791900][ T7386] FAULT_INJECTION: forcing a failure. [ 192.791900][ T7386] name failslab, interval 1, probability 0, space 0, times 0 [ 192.815301][ T7386] CPU: 1 UID: 0 PID: 7386 Comm: syz.3.438 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 192.815355][ T7386] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 192.815374][ T7386] Call Trace: [ 192.815384][ T7386] [ 192.815395][ T7386] dump_stack_lvl+0x16c/0x1f0 [ 192.815446][ T7386] should_fail_ex+0x512/0x640 [ 192.815482][ T7386] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 192.815537][ T7386] should_failslab+0xc2/0x120 [ 192.815568][ T7386] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 192.815617][ T7386] ? arch_stack_walk+0xa6/0x100 [ 192.815661][ T7386] ? __d_alloc+0x31/0xaa0 [ 192.815697][ T7386] __d_alloc+0x31/0xaa0 [ 192.815733][ T7386] d_alloc+0x4a/0x1e0 [ 192.815766][ T7386] d_alloc_parallel+0xe3/0x12e0 [ 192.815816][ T7386] ? kasan_save_stack+0x33/0x60 [ 192.815861][ T7386] ? kasan_save_track+0x14/0x30 [ 192.815906][ T7386] ? __kasan_slab_alloc+0x89/0x90 [ 192.815954][ T7386] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 192.816003][ T7386] ? security_inode_alloc+0x3b/0x2b0 [ 192.816036][ T7386] ? inode_init_always_gfp+0xce4/0x1030 [ 192.816083][ T7386] ? alloc_inode+0x86/0x240 [ 192.816115][ T7386] ? new_inode+0x22/0x1c0 [ 192.816150][ T7386] ? __pfx_d_alloc_parallel+0x10/0x10 [ 192.816206][ T7386] ? lockdep_init_map_type+0x5c/0x280 [ 192.816241][ T7386] ? lockdep_init_map_type+0x5c/0x280 [ 192.816282][ T7386] __lookup_slow+0x193/0x460 [ 192.816322][ T7386] ? __pfx___lookup_slow+0x10/0x10 [ 192.816365][ T7386] ? trace_event_raw_event_mm_setup_per_zone_wmarks+0xc0/0x130 [ 192.816433][ T7386] ? trace_event_raw_event_mm_setup_per_zone_wmarks+0xc0/0x130 [ 192.816491][ T7386] ? d_lookup+0xe7/0x190 [ 192.816538][ T7386] lookup_one_len+0x17f/0x1b0 [ 192.816573][ T7386] ? __pfx_lookup_one_len+0x10/0x10 [ 192.816614][ T7386] ? mntput+0x10/0x90 [ 192.816663][ T7386] start_creating.part.0+0x12f/0x3a0 [ 192.816713][ T7386] __debugfs_create_file+0xa7/0x6b0 [ 192.816765][ T7386] debugfs_create_file_unsafe+0x3c/0x50 [ 192.816816][ T7386] ptp_open+0x3c2/0x520 [ 192.816865][ T7386] ? __pfx_ptp_open+0x10/0x10 [ 192.816921][ T7386] ? __pfx_ptp_open+0x10/0x10 [ 192.816962][ T7386] posix_clock_open+0x178/0x290 [ 192.817008][ T7386] ? __pfx_posix_clock_open+0x10/0x10 [ 192.817053][ T7386] chrdev_open+0x231/0x6a0 [ 192.817102][ T7386] ? __pfx_apparmor_file_open+0x10/0x10 [ 192.817145][ T7386] ? __pfx_chrdev_open+0x10/0x10 [ 192.817205][ T7386] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 192.817261][ T7386] do_dentry_open+0x741/0x1c10 [ 192.817310][ T7386] ? __pfx_chrdev_open+0x10/0x10 [ 192.817370][ T7386] vfs_open+0x82/0x3f0 [ 192.817410][ T7386] path_openat+0x1e5e/0x2d40 [ 192.817476][ T7386] ? __pfx_path_openat+0x10/0x10 [ 192.817537][ T7386] do_filp_open+0x20b/0x470 [ 192.817586][ T7386] ? __pfx_do_filp_open+0x10/0x10 [ 192.817663][ T7386] ? alloc_fd+0x471/0x7d0 [ 192.817719][ T7386] do_sys_openat2+0x11b/0x1d0 [ 192.817752][ T7386] ? __pfx_do_sys_openat2+0x10/0x10 [ 192.817804][ T7386] __x64_sys_openat+0x174/0x210 [ 192.817841][ T7386] ? __pfx___x64_sys_openat+0x10/0x10 [ 192.817881][ T7386] ? rcu_is_watching+0x12/0xc0 [ 192.817935][ T7386] do_syscall_64+0xcd/0x260 [ 192.817986][ T7386] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.818019][ T7386] RIP: 0033:0x7f6e7ff8d169 [ 192.818048][ T7386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.818081][ T7386] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 192.818113][ T7386] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 192.818136][ T7386] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 192.818163][ T7386] RBP: 00007f6e8000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 192.818184][ T7386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 192.818204][ T7386] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 192.818247][ T7386] [ 193.202492][ C1] vkms_vblank_simulate: vblank timer overrun [ 193.819904][ T7396] netlink: 'syz.2.450': attribute type 10 has an invalid length. [ 196.087902][ T7423] netlink: 4 bytes leftover after parsing attributes in process `syz.2.451'. [ 196.510935][ T7440] netlink: 'syz.0.453': attribute type 10 has an invalid length. [ 196.540454][ T7439] netlink: 32 bytes leftover after parsing attributes in process `syz.1.456'. [ 197.558246][ T7460] netlink: 'syz.0.460': attribute type 1 has an invalid length. [ 197.986998][ T7474] FAULT_INJECTION: forcing a failure. [ 197.986998][ T7474] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.056265][ T7474] CPU: 0 UID: 0 PID: 7474 Comm: syz.1.465 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 198.056310][ T7474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 198.056327][ T7474] Call Trace: [ 198.056337][ T7474] [ 198.056348][ T7474] dump_stack_lvl+0x16c/0x1f0 [ 198.056397][ T7474] should_fail_ex+0x512/0x640 [ 198.056440][ T7474] _copy_from_iter+0x2a4/0x15b0 [ 198.056483][ T7474] ? _copy_from_iter+0x161/0x15b0 [ 198.056522][ T7474] ? __pfx__copy_from_iter+0x10/0x10 [ 198.056575][ T7474] ? __pfx__copy_from_iter+0x10/0x10 [ 198.056625][ T7474] copy_page_from_iter+0xa5/0x120 [ 198.056668][ T7474] skb_copy_datagram_from_iter+0x2a0/0x740 [ 198.056719][ T7474] tun_get_user+0x17ac/0x3b10 [ 198.056781][ T7474] ? __pfx_tun_get_user+0x10/0x10 [ 198.056822][ T7474] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 198.056874][ T7474] ? find_held_lock+0x2b/0x80 [ 198.056915][ T7474] ? tun_get+0x191/0x370 [ 198.056964][ T7474] tun_chr_write_iter+0xdc/0x210 [ 198.057011][ T7474] vfs_write+0x5ba/0x1180 [ 198.057057][ T7474] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 198.057107][ T7474] ? __pfx_vfs_write+0x10/0x10 [ 198.057147][ T7474] ? find_held_lock+0x2b/0x80 [ 198.057212][ T7474] __x64_sys_pwrite64+0x1f4/0x250 [ 198.057258][ T7474] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 198.057318][ T7474] do_syscall_64+0xcd/0x260 [ 198.057366][ T7474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.057398][ T7474] RIP: 0033:0x7f2a23f8d169 [ 198.057422][ T7474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.057453][ T7474] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 198.057483][ T7474] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 198.057503][ T7474] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 198.057521][ T7474] RBP: 00007f2a24e97090 R08: 0000000000000000 R09: 0000000000000000 [ 198.057539][ T7474] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 198.057568][ T7474] R13: 0000000000000001 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 198.057608][ T7474] [ 198.543814][ T7485] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888078001e30 pfn:0x78000 [ 198.608227][ T7492] FAULT_INJECTION: forcing a failure. [ 198.608227][ T7492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.621858][ T7492] CPU: 0 UID: 0 PID: 7492 Comm: syz.3.469 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 198.621915][ T7492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 198.621933][ T7492] Call Trace: [ 198.621943][ T7492] [ 198.621955][ T7492] dump_stack_lvl+0x16c/0x1f0 [ 198.622006][ T7492] should_fail_ex+0x512/0x640 [ 198.622047][ T7492] strncpy_from_user+0x3b/0x2e0 [ 198.622084][ T7492] getname_flags.part.0+0x8b/0x540 [ 198.622125][ T7492] getname_flags+0x93/0xf0 [ 198.622167][ T7492] do_sys_openat2+0xb8/0x1d0 [ 198.622200][ T7492] ? __pfx_do_sys_openat2+0x10/0x10 [ 198.622237][ T7492] ? __fget_files+0x20e/0x3c0 [ 198.622292][ T7492] __x64_sys_open+0x153/0x1e0 [ 198.622324][ T7492] ? __pfx___x64_sys_open+0x10/0x10 [ 198.622366][ T7492] ? rcu_is_watching+0x12/0xc0 [ 198.622409][ T7492] do_syscall_64+0xcd/0x260 [ 198.622470][ T7492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.622501][ T7492] RIP: 0033:0x7f6e7ff8d169 [ 198.622526][ T7492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.622557][ T7492] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 198.622586][ T7492] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 198.622606][ T7492] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 198.622625][ T7492] RBP: 00007f6e80d39090 R08: 0000000000000000 R09: 0000000000000000 [ 198.622643][ T7492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 198.622660][ T7492] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 198.622699][ T7492] [ 198.625039][ T7485] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 198.831242][ T7495] netlink: 'syz.3.470': attribute type 1 has an invalid length. [ 198.848260][ T7485] memcg:ffff888035462181 [ 198.852605][ T7485] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff) [ 198.926012][ T7485] page_type: f5(slab) [ 198.930097][ T7485] raw: 00fff00000000240 ffff88801c6998c0 ffffea00017b8510 ffffea0001e6dd10 [ 198.981137][ T7485] raw: ffff888078001e30 00000000000c000a 00000000f5000000 ffff888035462181 [ 199.002427][ T7485] head: 00fff00000000240 ffff88801c6998c0 ffffea00017b8510 ffffea0001e6dd10 [ 199.034018][ T7485] head: ffff888078001e30 00000000000c000a 00000000f5000000 ffff888035462181 [ 199.091821][ T7485] head: 00fff00000000002 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 199.156890][ T7485] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004 [ 199.167242][ T7485] page dumped because: unmovable page [ 199.172699][ T7485] page_owner tracks the page as allocated [ 199.215850][ T7485] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5692, tgid 5692 (dhcpcd-run-hook), ts 79653061470, free_ts 35502206613 [ 199.269418][ T7485] post_alloc_hook+0x181/0x1b0 [ 199.345438][ T7485] get_page_from_freelist+0x1193/0x39b0 [ 199.354163][ T7485] __alloc_frozen_pages_noprof+0x263/0x23a0 [ 199.375484][ T7485] alloc_pages_mpol+0x1fb/0x550 [ 199.380442][ T7485] new_slab+0x23c/0x330 [ 199.385726][ T7485] ___slab_alloc+0xd9c/0x1940 [ 199.390529][ T7485] __slab_alloc.constprop.0+0x56/0xb0 [ 199.405426][ T7485] kmem_cache_alloc_lru_noprof+0xf4/0x3b0 [ 199.411883][ T7485] alloc_inode+0xc3/0x240 [ 199.426529][ T7485] create_pipe_files+0x4c/0x930 [ 199.431472][ T7485] do_pipe2+0xaf/0x1c0 [ 199.451181][ T7485] __x64_sys_pipe2+0x54/0x80 [ 199.458106][ T7485] do_syscall_64+0xcd/0x260 [ 199.462709][ T7485] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.485472][ T7485] page last free pid 1 tgid 1 stack trace: [ 199.501884][ T7485] __free_frozen_pages+0x69d/0xff0 [ 199.502252][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.513812][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.514123][ T7485] free_contig_range+0x135/0x3f0 [ 199.564000][ T7485] destroy_args+0x66f/0x830 [ 199.594384][ T7485] debug_vm_pgtable+0x130e/0x2d50 [ 199.609109][ T7485] do_one_initcall+0x120/0x6e0 [ 199.618717][ T7485] kernel_init_freeable+0x5c2/0x900 [ 199.624031][ T7485] kernel_init+0x1c/0x2b0 [ 199.655911][ T7485] ret_from_fork+0x45/0x80 [ 199.660448][ T7485] ret_from_fork_asm+0x1a/0x30 [ 201.348604][ T7543] netlink: 32 bytes leftover after parsing attributes in process `syz.0.486'. [ 201.685999][ T7553] FAULT_INJECTION: forcing a failure. [ 201.685999][ T7553] name failslab, interval 1, probability 0, space 0, times 0 [ 201.740405][ T7553] CPU: 0 UID: 0 PID: 7553 Comm: syz.3.489 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 201.740449][ T7553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 201.740468][ T7553] Call Trace: [ 201.740477][ T7553] [ 201.740489][ T7553] dump_stack_lvl+0x16c/0x1f0 [ 201.740539][ T7553] should_fail_ex+0x512/0x640 [ 201.740575][ T7553] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 201.740622][ T7553] should_failslab+0xc2/0x120 [ 201.740653][ T7553] __kmalloc_cache_noprof+0x6a/0x3e0 [ 201.740697][ T7553] ? getname_flags.part.0+0x288/0x540 [ 201.740741][ T7553] getname_flags.part.0+0x288/0x540 [ 201.740781][ T7553] getname_flags+0x93/0xf0 [ 201.740824][ T7553] do_sys_openat2+0xb8/0x1d0 [ 201.740858][ T7553] ? __pfx_do_sys_openat2+0x10/0x10 [ 201.740895][ T7553] ? __fget_files+0x20e/0x3c0 [ 201.740950][ T7553] __x64_sys_open+0x153/0x1e0 [ 201.740984][ T7553] ? __pfx___x64_sys_open+0x10/0x10 [ 201.741027][ T7553] ? rcu_is_watching+0x12/0xc0 [ 201.741071][ T7553] do_syscall_64+0xcd/0x260 [ 201.741121][ T7553] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.741154][ T7553] RIP: 0033:0x7f6e7ff8d169 [ 201.741179][ T7553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.741210][ T7553] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 201.741238][ T7553] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 201.741258][ T7553] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 201.741277][ T7553] RBP: 00007f6e80d39090 R08: 0000000000000000 R09: 0000000000000000 [ 201.741295][ T7553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 201.741313][ T7553] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 201.741352][ T7553] [ 202.333744][ T7573] FAULT_INJECTION: forcing a failure. [ 202.333744][ T7573] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.362417][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 202.370726][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 202.387156][ T7573] CPU: 0 UID: 0 PID: 7573 Comm: syz.2.496 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 202.387199][ T7573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 202.387217][ T7573] Call Trace: [ 202.387226][ T7573] [ 202.387237][ T7573] dump_stack_lvl+0x16c/0x1f0 [ 202.387285][ T7573] should_fail_ex+0x512/0x640 [ 202.387334][ T7573] _copy_from_iter+0x2a4/0x15b0 [ 202.387377][ T7573] ? _copy_from_iter+0x161/0x15b0 [ 202.387415][ T7573] ? __pfx__copy_from_iter+0x10/0x10 [ 202.387458][ T7573] ? __pfx__copy_from_iter+0x10/0x10 [ 202.387508][ T7573] copy_page_from_iter+0xa5/0x120 [ 202.387552][ T7573] skb_copy_datagram_from_iter+0x2a0/0x740 [ 202.387604][ T7573] tun_get_user+0x17ac/0x3b10 [ 202.387664][ T7573] ? __pfx_tun_get_user+0x10/0x10 [ 202.387705][ T7573] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 202.387756][ T7573] ? find_held_lock+0x2b/0x80 [ 202.387798][ T7573] ? tun_get+0x191/0x370 [ 202.387846][ T7573] tun_chr_write_iter+0xdc/0x210 [ 202.387893][ T7573] vfs_write+0x5ba/0x1180 [ 202.387939][ T7573] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 202.387986][ T7573] ? __pfx_vfs_write+0x10/0x10 [ 202.388025][ T7573] ? find_held_lock+0x2b/0x80 [ 202.388089][ T7573] __x64_sys_pwrite64+0x1f4/0x250 [ 202.388136][ T7573] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 202.388179][ T7573] ? rcu_is_watching+0x12/0xc0 [ 202.388230][ T7573] do_syscall_64+0xcd/0x260 [ 202.388277][ T7573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.388313][ T7573] RIP: 0033:0x7f8c19b8d169 [ 202.388334][ T7573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.388359][ T7573] RSP: 002b:00007f8c1a997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 202.388384][ T7573] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8d169 [ 202.388402][ T7573] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 202.388422][ T7573] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 202.388440][ T7573] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 202.388459][ T7573] R13: 0000000000000001 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 202.388498][ T7573] [ 202.803163][ T7582] netlink: 202 bytes leftover after parsing attributes in process `syz.2.498'. [ 202.819522][ T7585] FAULT_INJECTION: forcing a failure. [ 202.819522][ T7585] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.833337][ T7585] CPU: 0 UID: 0 PID: 7585 Comm: syz.3.500 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 202.833385][ T7585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 202.833403][ T7585] Call Trace: [ 202.833413][ T7585] [ 202.833424][ T7585] dump_stack_lvl+0x16c/0x1f0 [ 202.833472][ T7585] should_fail_ex+0x512/0x640 [ 202.833511][ T7585] strncpy_from_user+0x3b/0x2e0 [ 202.833549][ T7585] getname_flags.part.0+0x2c8/0x540 [ 202.833591][ T7585] getname_flags+0x93/0xf0 [ 202.833633][ T7585] do_sys_openat2+0xb8/0x1d0 [ 202.833667][ T7585] ? __pfx_do_sys_openat2+0x10/0x10 [ 202.833705][ T7585] ? __fget_files+0x20e/0x3c0 [ 202.833760][ T7585] __x64_sys_open+0x153/0x1e0 [ 202.833793][ T7585] ? __pfx___x64_sys_open+0x10/0x10 [ 202.833831][ T7585] ? rcu_is_watching+0x12/0xc0 [ 202.833875][ T7585] do_syscall_64+0xcd/0x260 [ 202.833976][ T7585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.834008][ T7585] RIP: 0033:0x7f6e7ff8d169 [ 202.834037][ T7585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.834074][ T7585] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 202.834104][ T7585] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 202.834125][ T7585] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 202.834144][ T7585] RBP: 00007f6e80d39090 R08: 0000000000000000 R09: 0000000000000000 [ 202.834163][ T7585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.834182][ T7585] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 202.834227][ T7585] [ 203.296484][ T7599] mkiss: ax0: crc mode is auto. [ 203.320218][ T7599] netlink: 'syz.2.503': attribute type 1 has an invalid length. [ 203.694629][ T7615] FAULT_INJECTION: forcing a failure. [ 203.694629][ T7615] name failslab, interval 1, probability 0, space 0, times 0 [ 203.710807][ T7615] CPU: 1 UID: 0 PID: 7615 Comm: syz.3.506 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 203.710853][ T7615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 203.710872][ T7615] Call Trace: [ 203.710882][ T7615] [ 203.710893][ T7615] dump_stack_lvl+0x16c/0x1f0 [ 203.710951][ T7615] should_fail_ex+0x512/0x640 [ 203.710987][ T7615] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 203.711044][ T7615] should_failslab+0xc2/0x120 [ 203.711073][ T7615] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 203.711125][ T7615] ? __split_page_owner+0x222/0x380 [ 203.711170][ T7615] ? snd_pcm_hw_rule_add+0x414/0x5a0 [ 203.711226][ T7615] krealloc_noprof+0x1fb/0x380 [ 203.711282][ T7615] snd_pcm_hw_rule_add+0x414/0x5a0 [ 203.711331][ T7615] ? __pfx_snd_pcm_hw_rule_format+0x10/0x10 [ 203.711366][ T7615] ? __pfx_snd_pcm_hw_rule_add+0x10/0x10 [ 203.711417][ T7615] ? lockdep_init_map_type+0x5c/0x280 [ 203.711451][ T7615] ? debug_mutex_init+0x37/0x70 [ 203.711493][ T7615] ? snd_pcm_attach_substream+0x89d/0xd60 [ 203.711542][ T7615] snd_pcm_open_substream+0x534/0x17f0 [ 203.711585][ T7615] ? __pfx_snd_pcm_open_substream+0x10/0x10 [ 203.711637][ T7615] snd_pcm_oss_open+0x735/0x1400 [ 203.711706][ T7615] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 203.711760][ T7615] ? __lock_acquire+0xaa4/0x1ba0 [ 203.711791][ T7615] ? __pfx_default_wake_function+0x10/0x10 [ 203.711845][ T7615] ? __lock_acquire+0xaa4/0x1ba0 [ 203.711885][ T7615] ? do_raw_spin_lock+0x12c/0x2b0 [ 203.711930][ T7615] ? soundcore_open+0x35a/0x580 [ 203.711975][ T7615] ? __pfx_snd_pcm_oss_open+0x10/0x10 [ 203.712028][ T7615] soundcore_open+0x409/0x580 [ 203.712073][ T7615] ? __pfx_soundcore_open+0x10/0x10 [ 203.712111][ T7615] chrdev_open+0x231/0x6a0 [ 203.712157][ T7615] ? __pfx_apparmor_file_open+0x10/0x10 [ 203.712197][ T7615] ? __pfx_chrdev_open+0x10/0x10 [ 203.712249][ T7615] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 203.712300][ T7615] do_dentry_open+0x741/0x1c10 [ 203.712345][ T7615] ? __pfx_chrdev_open+0x10/0x10 [ 203.712401][ T7615] vfs_open+0x82/0x3f0 [ 203.712439][ T7615] path_openat+0x1e5e/0x2d40 [ 203.712503][ T7615] ? __pfx_path_openat+0x10/0x10 [ 203.712564][ T7615] do_filp_open+0x20b/0x470 [ 203.712612][ T7615] ? __pfx_do_filp_open+0x10/0x10 [ 203.712689][ T7615] ? alloc_fd+0x471/0x7d0 [ 203.712745][ T7615] do_sys_openat2+0x11b/0x1d0 [ 203.712777][ T7615] ? __pfx_do_sys_openat2+0x10/0x10 [ 203.712826][ T7615] __x64_sys_openat+0x174/0x210 [ 203.712860][ T7615] ? __pfx___x64_sys_openat+0x10/0x10 [ 203.712896][ T7615] ? rcu_is_watching+0x12/0xc0 [ 203.712958][ T7615] do_syscall_64+0xcd/0x260 [ 203.713008][ T7615] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.713041][ T7615] RIP: 0033:0x7f6e7ff8d169 [ 203.713066][ T7615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.713098][ T7615] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 203.713128][ T7615] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 203.713149][ T7615] RDX: 0000000000040000 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 203.713169][ T7615] RBP: 00007f6e8000e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 203.713188][ T7615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.713206][ T7615] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 203.713246][ T7615] [ 203.780297][ T7614] FAULT_INJECTION: forcing a failure. [ 203.780297][ T7614] name failslab, interval 1, probability 0, space 0, times 0 [ 204.081894][ T7614] CPU: 0 UID: 0 PID: 7614 Comm: syz.0.508 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 204.081955][ T7614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 204.081976][ T7614] Call Trace: [ 204.082003][ T7614] [ 204.082013][ T7614] dump_stack_lvl+0x16c/0x1f0 [ 204.082060][ T7614] should_fail_ex+0x512/0x640 [ 204.082090][ T7614] ? fs_reclaim_acquire+0xae/0x150 [ 204.082125][ T7614] ? ima_alloc_init_template+0x19d/0x720 [ 204.082156][ T7614] should_failslab+0xc2/0x120 [ 204.082181][ T7614] __kmalloc_noprof+0xd2/0x510 [ 204.082222][ T7614] ? __print_lock_name+0x31/0xe0 [ 204.082262][ T7614] ima_alloc_init_template+0x19d/0x720 [ 204.082289][ T7614] ? take_dentry_name_snapshot+0x319/0x7d0 [ 204.082324][ T7614] ima_store_measurement+0x1eb/0x5c0 [ 204.082354][ T7614] ? __pfx_ima_store_measurement+0x10/0x10 [ 204.082382][ T7614] ? vfs_getxattr_alloc+0xec/0x340 [ 204.082431][ T7614] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 204.082475][ T7614] process_measurement+0x1bd6/0x2360 [ 204.082528][ T7614] ? __pfx_process_measurement+0x10/0x10 [ 204.082578][ T7614] ? __lock_acquire+0x5ca/0x1ba0 [ 204.082603][ T7614] ? init_file+0x93/0x4c0 [ 204.082625][ T7614] ? alloc_empty_file+0x73/0x1e0 [ 204.082651][ T7614] ? hugetlb_file_setup+0x4cd/0x620 [ 204.082681][ T7614] ? ksys_mmap_pgoff+0x189/0x5c0 [ 204.082708][ T7614] ? __x64_sys_mmap+0x125/0x190 [ 204.082781][ T7614] ima_file_mmap+0x1b1/0x1d0 [ 204.082836][ T7614] ? __pfx_ima_file_mmap+0x10/0x10 [ 204.082884][ T7614] security_mmap_file+0x88c/0x990 [ 204.082923][ T7614] vm_mmap_pgoff+0xec/0x450 [ 204.082958][ T7614] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 204.082985][ T7614] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 204.083016][ T7614] ? hugetlbfs_get_inode+0x31f/0x730 [ 204.083057][ T7614] ksys_mmap_pgoff+0x1c8/0x5c0 [ 204.083087][ T7614] ? rcu_is_watching+0x12/0xc0 [ 204.083124][ T7614] __x64_sys_mmap+0x125/0x190 [ 204.083163][ T7614] do_syscall_64+0xcd/0x260 [ 204.083205][ T7614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.083231][ T7614] RIP: 0033:0x7f9908b8d169 [ 204.083252][ T7614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 204.083278][ T7614] RSP: 002b:00007f9909acd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 204.083303][ T7614] RAX: ffffffffffffffda RBX: 00007f9908da5fa0 RCX: 00007f9908b8d169 [ 204.083320][ T7614] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 204.083336][ T7614] RBP: 00007f9908c0e2a0 R08: 0000000000000401 R09: 0000300000000000 [ 204.083352][ T7614] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 204.083367][ T7614] R13: 0000000000000000 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 204.083400][ T7614] [ 204.433588][ T30] audit: type=1804 audit(6039154375.441:11): pid=7614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.508" name="anon_hugepage" dev="hugetlbfs" ino=17935 res=0 errno=0 [ 205.027993][ T7642] FAULT_INJECTION: forcing a failure. [ 205.027993][ T7642] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 205.075609][ T7642] CPU: 1 UID: 0 PID: 7642 Comm: syz.2.514 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 205.075655][ T7642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.075673][ T7642] Call Trace: [ 205.075682][ T7642] [ 205.075695][ T7642] dump_stack_lvl+0x16c/0x1f0 [ 205.075745][ T7642] should_fail_ex+0x512/0x640 [ 205.075795][ T7642] _copy_from_iter+0x2a4/0x15b0 [ 205.075838][ T7642] ? _copy_from_iter+0x161/0x15b0 [ 205.075878][ T7642] ? __pfx__copy_from_iter+0x10/0x10 [ 205.075920][ T7642] ? __pfx__copy_from_iter+0x10/0x10 [ 205.075971][ T7642] copy_page_from_iter+0xa5/0x120 [ 205.076014][ T7642] skb_copy_datagram_from_iter+0x2a0/0x740 [ 205.076066][ T7642] tun_get_user+0x17ac/0x3b10 [ 205.076126][ T7642] ? __pfx_tun_get_user+0x10/0x10 [ 205.076168][ T7642] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 205.076221][ T7642] ? find_held_lock+0x2b/0x80 [ 205.076261][ T7642] ? tun_get+0x191/0x370 [ 205.076309][ T7642] tun_chr_write_iter+0xdc/0x210 [ 205.076356][ T7642] vfs_write+0x5ba/0x1180 [ 205.076401][ T7642] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 205.076450][ T7642] ? __pfx_vfs_write+0x10/0x10 [ 205.076490][ T7642] ? find_held_lock+0x2b/0x80 [ 205.076555][ T7642] __x64_sys_pwrite64+0x1f4/0x250 [ 205.076602][ T7642] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 205.076660][ T7642] do_syscall_64+0xcd/0x260 [ 205.076709][ T7642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.076739][ T7642] RIP: 0033:0x7f8c19b8d169 [ 205.076763][ T7642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.076799][ T7642] RSP: 002b:00007f8c1a997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 205.076828][ T7642] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8d169 [ 205.076848][ T7642] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 205.076878][ T7642] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 205.076896][ T7642] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 205.076914][ T7642] R13: 0000000000000001 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 205.076953][ T7642] [ 205.298892][ C1] vkms_vblank_simulate: vblank timer overrun [ 205.910050][ T7657] FAULT_INJECTION: forcing a failure. [ 205.910050][ T7657] name failslab, interval 1, probability 0, space 0, times 0 [ 205.929740][ T7657] CPU: 1 UID: 0 PID: 7657 Comm: syz.0.519 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 205.929786][ T7657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 205.929805][ T7657] Call Trace: [ 205.929815][ T7657] [ 205.929826][ T7657] dump_stack_lvl+0x16c/0x1f0 [ 205.929877][ T7657] should_fail_ex+0x512/0x640 [ 205.929912][ T7657] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 205.929966][ T7657] should_failslab+0xc2/0x120 [ 205.929995][ T7657] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 205.930057][ T7657] ? alloc_inode+0x61/0x240 [ 205.930098][ T7657] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 205.930138][ T7657] alloc_inode+0x61/0x240 [ 205.930174][ T7657] new_inode+0x22/0x1c0 [ 205.930206][ T7657] ? start_creating.part.0+0x25d/0x3a0 [ 205.930252][ T7657] debugfs_create_dir+0xdd/0x5f0 [ 205.930300][ T7657] ptp_open+0x307/0x520 [ 205.930349][ T7657] ? __pfx_ptp_open+0x10/0x10 [ 205.930406][ T7657] ? __pfx_ptp_open+0x10/0x10 [ 205.930446][ T7657] posix_clock_open+0x178/0x290 [ 205.930495][ T7657] ? __pfx_posix_clock_open+0x10/0x10 [ 205.930562][ T7657] chrdev_open+0x231/0x6a0 [ 205.930613][ T7657] ? __pfx_apparmor_file_open+0x10/0x10 [ 205.930656][ T7657] ? __pfx_chrdev_open+0x10/0x10 [ 205.930709][ T7657] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 205.930764][ T7657] do_dentry_open+0x741/0x1c10 [ 205.930812][ T7657] ? __pfx_chrdev_open+0x10/0x10 [ 205.930872][ T7657] vfs_open+0x82/0x3f0 [ 205.930910][ T7657] path_openat+0x1e5e/0x2d40 [ 205.930976][ T7657] ? __pfx_path_openat+0x10/0x10 [ 205.931043][ T7657] do_filp_open+0x20b/0x470 [ 205.931093][ T7657] ? __pfx_do_filp_open+0x10/0x10 [ 205.931175][ T7657] ? alloc_fd+0x471/0x7d0 [ 205.931235][ T7657] do_sys_openat2+0x11b/0x1d0 [ 205.931270][ T7657] ? __pfx_do_sys_openat2+0x10/0x10 [ 205.931323][ T7657] __x64_sys_openat+0x174/0x210 [ 205.931358][ T7657] ? __pfx___x64_sys_openat+0x10/0x10 [ 205.931397][ T7657] ? rcu_is_watching+0x12/0xc0 [ 205.931450][ T7657] do_syscall_64+0xcd/0x260 [ 205.931503][ T7657] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.931536][ T7657] RIP: 0033:0x7f9908b8d169 [ 205.931561][ T7657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.931594][ T7657] RSP: 002b:00007f9909acd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 205.931623][ T7657] RAX: ffffffffffffffda RBX: 00007f9908da5fa0 RCX: 00007f9908b8d169 [ 205.931644][ T7657] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 205.931664][ T7657] RBP: 00007f9908c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 205.931682][ T7657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 205.931701][ T7657] R13: 0000000000000000 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 205.931743][ T7657] [ 205.931755][ T7657] debugfs: out of free dentries, can not create directory '0xffff888029ce4000' [ 206.161146][ C1] vkms_vblank_simulate: vblank timer overrun [ 206.940140][ T7667] netlink: 20 bytes leftover after parsing attributes in process `syz.1.523'. [ 207.389576][ T7682] FAULT_INJECTION: forcing a failure. [ 207.389576][ T7682] name failslab, interval 1, probability 0, space 0, times 0 [ 207.467887][ T7682] CPU: 1 UID: 0 PID: 7682 Comm: syz.1.529 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 207.467937][ T7682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 207.467957][ T7682] Call Trace: [ 207.467967][ T7682] [ 207.467980][ T7682] dump_stack_lvl+0x16c/0x1f0 [ 207.468033][ T7682] should_fail_ex+0x512/0x640 [ 207.468071][ T7682] ? fs_reclaim_acquire+0xae/0x150 [ 207.468114][ T7682] should_failslab+0xc2/0x120 [ 207.468145][ T7682] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 207.468198][ T7682] ? security_inode_alloc+0x3b/0x2b0 [ 207.468239][ T7682] security_inode_alloc+0x3b/0x2b0 [ 207.468275][ T7682] inode_init_always_gfp+0xce4/0x1030 [ 207.468332][ T7682] alloc_inode+0x86/0x240 [ 207.468368][ T7682] new_inode+0x22/0x1c0 [ 207.468401][ T7682] ? start_creating.part.0+0x25d/0x3a0 [ 207.468453][ T7682] debugfs_create_dir+0xdd/0x5f0 [ 207.468503][ T7682] ptp_open+0x307/0x520 [ 207.468553][ T7682] ? __pfx_ptp_open+0x10/0x10 [ 207.468610][ T7682] ? __pfx_ptp_open+0x10/0x10 [ 207.468648][ T7682] posix_clock_open+0x178/0x290 [ 207.468696][ T7682] ? __pfx_posix_clock_open+0x10/0x10 [ 207.468738][ T7682] chrdev_open+0x231/0x6a0 [ 207.468787][ T7682] ? __pfx_apparmor_file_open+0x10/0x10 [ 207.468839][ T7682] ? __pfx_chrdev_open+0x10/0x10 [ 207.468894][ T7682] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 207.468951][ T7682] do_dentry_open+0x741/0x1c10 [ 207.468999][ T7682] ? __pfx_chrdev_open+0x10/0x10 [ 207.469058][ T7682] vfs_open+0x82/0x3f0 [ 207.469096][ T7682] path_openat+0x1e5e/0x2d40 [ 207.469161][ T7682] ? __pfx_path_openat+0x10/0x10 [ 207.469222][ T7682] do_filp_open+0x20b/0x470 [ 207.469272][ T7682] ? __pfx_do_filp_open+0x10/0x10 [ 207.469354][ T7682] ? alloc_fd+0x471/0x7d0 [ 207.469413][ T7682] do_sys_openat2+0x11b/0x1d0 [ 207.469447][ T7682] ? __pfx_do_sys_openat2+0x10/0x10 [ 207.469498][ T7682] __x64_sys_openat+0x174/0x210 [ 207.469533][ T7682] ? __pfx___x64_sys_openat+0x10/0x10 [ 207.469572][ T7682] ? rcu_is_watching+0x12/0xc0 [ 207.469624][ T7682] do_syscall_64+0xcd/0x260 [ 207.469675][ T7682] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.469709][ T7682] RIP: 0033:0x7f2a23f8d169 [ 207.469736][ T7682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.469766][ T7682] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 207.469808][ T7682] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 207.469830][ T7682] RDX: 0000000000000440 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 207.469850][ T7682] RBP: 00007f2a2400e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 207.469869][ T7682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 207.469888][ T7682] R13: 0000000000000000 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 207.469930][ T7682] [ 207.755722][ C1] vkms_vblank_simulate: vblank timer overrun [ 207.833393][ T7682] debugfs: out of free dentries, can not create directory '0xffff888028924000' [ 208.719893][ T7701] FAULT_INJECTION: forcing a failure. [ 208.719893][ T7701] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 208.797610][ T7701] CPU: 0 UID: 0 PID: 7701 Comm: syz.1.535 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 208.797666][ T7701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 208.797685][ T7701] Call Trace: [ 208.797694][ T7701] [ 208.797706][ T7701] dump_stack_lvl+0x16c/0x1f0 [ 208.797756][ T7701] should_fail_ex+0x512/0x640 [ 208.797798][ T7701] _copy_from_iter+0x2a4/0x15b0 [ 208.797843][ T7701] ? _copy_from_iter+0x161/0x15b0 [ 208.797882][ T7701] ? __pfx__copy_from_iter+0x10/0x10 [ 208.797926][ T7701] ? __pfx__copy_from_iter+0x10/0x10 [ 208.797977][ T7701] copy_page_from_iter+0xa5/0x120 [ 208.798019][ T7701] skb_copy_datagram_from_iter+0x2a0/0x740 [ 208.798072][ T7701] tun_get_user+0x17ac/0x3b10 [ 208.798135][ T7701] ? __pfx_tun_get_user+0x10/0x10 [ 208.798178][ T7701] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 208.798230][ T7701] ? find_held_lock+0x2b/0x80 [ 208.798271][ T7701] ? tun_get+0x191/0x370 [ 208.798321][ T7701] tun_chr_write_iter+0xdc/0x210 [ 208.798369][ T7701] vfs_write+0x5ba/0x1180 [ 208.798415][ T7701] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 208.798465][ T7701] ? __pfx_vfs_write+0x10/0x10 [ 208.798506][ T7701] ? find_held_lock+0x2b/0x80 [ 208.798571][ T7701] __x64_sys_pwrite64+0x1f4/0x250 [ 208.798617][ T7701] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 208.798687][ T7701] do_syscall_64+0xcd/0x260 [ 208.798736][ T7701] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.798767][ T7701] RIP: 0033:0x7f2a23f8d169 [ 208.798791][ T7701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.798821][ T7701] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 208.798850][ T7701] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 208.798871][ T7701] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 208.798890][ T7701] RBP: 00007f2a24e97090 R08: 0000000000000000 R09: 0000000000000000 [ 208.798909][ T7701] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 208.798927][ T7701] R13: 0000000000000001 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 208.798966][ T7701] [ 209.449892][ T7709] mkiss: ax0: crc mode is auto. [ 209.479643][ T7709] netlink: 'syz.1.538': attribute type 1 has an invalid length. [ 209.549107][ T7704] netlink: 334 bytes leftover after parsing attributes in process `syz.3.536'. [ 209.565745][ T7705] netlink: 334 bytes leftover after parsing attributes in process `syz.3.536'. [ 210.023134][ T7723] netlink: 'syz.3.543': attribute type 1 has an invalid length. [ 210.074479][ T7723] netlink: 230 bytes leftover after parsing attributes in process `syz.3.543'. [ 210.639883][ T7737] netlink: 20 bytes leftover after parsing attributes in process `syz.3.548'. [ 210.744362][ T7739] FAULT_INJECTION: forcing a failure. [ 210.744362][ T7739] name failslab, interval 1, probability 0, space 0, times 0 [ 210.763569][ T7739] CPU: 1 UID: 0 PID: 7739 Comm: syz.1.556 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 210.763607][ T7739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 210.763625][ T7739] Call Trace: [ 210.763634][ T7739] [ 210.763645][ T7739] dump_stack_lvl+0x16c/0x1f0 [ 210.763695][ T7739] should_fail_ex+0x512/0x640 [ 210.763731][ T7739] ? fs_reclaim_acquire+0xae/0x150 [ 210.763772][ T7739] ? ima_alloc_init_template+0xb5/0x720 [ 210.763807][ T7739] should_failslab+0xc2/0x120 [ 210.763837][ T7739] __kmalloc_noprof+0xd2/0x510 [ 210.763886][ T7739] ? find_held_lock+0x2b/0x80 [ 210.763933][ T7739] ima_alloc_init_template+0xb5/0x720 [ 210.763965][ T7739] ? take_dentry_name_snapshot+0x319/0x7d0 [ 210.764007][ T7739] ima_store_measurement+0x1eb/0x5c0 [ 210.764042][ T7739] ? __pfx_ima_store_measurement+0x10/0x10 [ 210.764076][ T7739] ? vfs_getxattr_alloc+0xec/0x340 [ 210.764132][ T7739] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 210.764196][ T7739] process_measurement+0x1bd6/0x2360 [ 210.764260][ T7739] ? __pfx_process_measurement+0x10/0x10 [ 210.764307][ T7739] ? __lock_acquire+0x5ca/0x1ba0 [ 210.764338][ T7739] ? init_file+0x93/0x4c0 [ 210.764366][ T7739] ? alloc_empty_file+0x73/0x1e0 [ 210.764398][ T7739] ? hugetlb_file_setup+0x4cd/0x620 [ 210.764437][ T7739] ? ksys_mmap_pgoff+0x189/0x5c0 [ 210.764490][ T7739] ? __x64_sys_mmap+0x125/0x190 [ 210.764588][ T7739] ima_file_mmap+0x1b1/0x1d0 [ 210.764634][ T7739] ? __pfx_ima_file_mmap+0x10/0x10 [ 210.764695][ T7739] security_mmap_file+0x88c/0x990 [ 210.764740][ T7739] vm_mmap_pgoff+0xec/0x450 [ 210.764783][ T7739] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 210.764816][ T7739] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 210.764854][ T7739] ? hugetlbfs_get_inode+0x31f/0x730 [ 210.764905][ T7739] ksys_mmap_pgoff+0x1c8/0x5c0 [ 210.764944][ T7739] ? rcu_is_watching+0x12/0xc0 [ 210.764988][ T7739] __x64_sys_mmap+0x125/0x190 [ 210.765030][ T7739] do_syscall_64+0xcd/0x260 [ 210.765081][ T7739] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 210.765114][ T7739] RIP: 0033:0x7f2a23f8d169 [ 210.765138][ T7739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.765178][ T7739] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 210.765208][ T7739] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 210.765231][ T7739] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 210.765251][ T7739] RBP: 00007f2a2400e2a0 R08: 0000000000000401 R09: 0000300000000000 [ 210.765271][ T7739] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 210.765290][ T7739] R13: 0000000000000000 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 210.765331][ T7739] [ 211.035717][ C1] vkms_vblank_simulate: vblank timer overrun [ 211.106280][ T30] audit: type=1804 audit(6039154382.471:12): pid=7739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.1.556" name="anon_hugepage" dev="hugetlbfs" ino=18236 res=0 errno=0 [ 211.162113][ T7746] FAULT_INJECTION: forcing a failure. [ 211.162113][ T7746] name failslab, interval 1, probability 0, space 0, times 0 [ 211.187573][ T7748] FAULT_INJECTION: forcing a failure. [ 211.187573][ T7748] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 211.206170][ T7746] CPU: 1 UID: 0 PID: 7746 Comm: syz.2.551 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 211.206211][ T7746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 211.206230][ T7746] Call Trace: [ 211.206239][ T7746] [ 211.206250][ T7746] dump_stack_lvl+0x16c/0x1f0 [ 211.206300][ T7746] should_fail_ex+0x512/0x640 [ 211.206333][ T7746] ? __kmalloc_noprof+0xbf/0x510 [ 211.206384][ T7746] ? __d_alloc+0x640/0xaa0 [ 211.206411][ T7746] should_failslab+0xc2/0x120 [ 211.206440][ T7746] __kmalloc_noprof+0xd2/0x510 [ 211.206494][ T7746] ? __d_alloc+0x31/0xaa0 [ 211.206522][ T7746] ? stack_trace_save+0x8e/0xc0 [ 211.206568][ T7746] __d_alloc+0x640/0xaa0 [ 211.206603][ T7746] d_alloc+0x4a/0x1e0 [ 211.206635][ T7746] d_alloc_parallel+0xe3/0x12e0 [ 211.206687][ T7746] ? find_held_lock+0x2b/0x80 [ 211.206729][ T7746] ? __pfx_d_alloc_parallel+0x10/0x10 [ 211.206773][ T7746] ? __d_lookup+0x266/0x4a0 [ 211.206822][ T7746] lookup_open.isra.0+0x665/0x1580 [ 211.206874][ T7746] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 211.206938][ T7746] ? __pfx_down_write+0x10/0x10 [ 211.206985][ T7746] ? mnt_get_write_access+0x20c/0x300 [ 211.207030][ T7746] path_openat+0x905/0x2d40 [ 211.207087][ T7746] ? __x64_sys_open+0x153/0x1e0 [ 211.207120][ T7746] ? do_syscall_64+0xcd/0x260 [ 211.207163][ T7746] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.207196][ T7746] ? __pfx_path_openat+0x10/0x10 [ 211.207254][ T7746] do_filp_open+0x20b/0x470 [ 211.207302][ T7746] ? __pfx_do_filp_open+0x10/0x10 [ 211.207380][ T7746] ? _raw_spin_unlock+0x28/0x50 [ 211.207418][ T7746] ? alloc_fd+0x471/0x7d0 [ 211.207482][ T7746] do_sys_openat2+0x11b/0x1d0 [ 211.207516][ T7746] ? __pfx_do_sys_openat2+0x10/0x10 [ 211.207554][ T7746] ? __fget_files+0x20e/0x3c0 [ 211.207609][ T7746] __x64_sys_open+0x153/0x1e0 [ 211.207642][ T7746] ? __pfx___x64_sys_open+0x10/0x10 [ 211.207685][ T7746] ? rcu_is_watching+0x12/0xc0 [ 211.207728][ T7746] do_syscall_64+0xcd/0x260 [ 211.207777][ T7746] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.207808][ T7746] RIP: 0033:0x7f8c19b8d169 [ 211.207833][ T7746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.207864][ T7746] RSP: 002b:00007f8c1a997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 211.207893][ T7746] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8d169 [ 211.207912][ T7746] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 211.207929][ T7746] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 211.207946][ T7746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 211.207962][ T7746] R13: 0000000000000000 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 211.208002][ T7746] [ 211.248465][ T7748] CPU: 0 UID: 0 PID: 7748 Comm: syz.3.550 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 211.248514][ T7748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 211.248534][ T7748] Call Trace: [ 211.248548][ T7748] [ 211.248561][ T7748] dump_stack_lvl+0x16c/0x1f0 [ 211.248613][ T7748] should_fail_ex+0x512/0x640 [ 211.248658][ T7748] _copy_from_iter+0x2a4/0x15b0 [ 211.248705][ T7748] ? _copy_from_iter+0x161/0x15b0 [ 211.248746][ T7748] ? __pfx__copy_from_iter+0x10/0x10 [ 211.248791][ T7748] ? __pfx__copy_from_iter+0x10/0x10 [ 211.248844][ T7748] copy_page_from_iter+0xa5/0x120 [ 211.248890][ T7748] skb_copy_datagram_from_iter+0x2a0/0x740 [ 211.248945][ T7748] tun_get_user+0x17ac/0x3b10 [ 211.249009][ T7748] ? __pfx_tun_get_user+0x10/0x10 [ 211.249054][ T7748] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 211.249107][ T7748] ? find_held_lock+0x2b/0x80 [ 211.249150][ T7748] ? tun_get+0x191/0x370 [ 211.249200][ T7748] tun_chr_write_iter+0xdc/0x210 [ 211.249257][ T7748] vfs_write+0x5ba/0x1180 [ 211.249304][ T7748] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 211.249355][ T7748] ? __pfx_vfs_write+0x10/0x10 [ 211.249397][ T7748] ? find_held_lock+0x2b/0x80 [ 211.249463][ T7748] __x64_sys_pwrite64+0x1f4/0x250 [ 211.249513][ T7748] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 211.249576][ T7748] do_syscall_64+0xcd/0x260 [ 211.249626][ T7748] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 211.249660][ T7748] RIP: 0033:0x7f6e7ff8d169 [ 211.249686][ T7748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.249719][ T7748] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 211.249749][ T7748] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 211.249771][ T7748] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 211.249791][ T7748] RBP: 00007f6e80d39090 R08: 0000000000000000 R09: 0000000000000000 [ 211.249812][ T7748] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 211.249831][ T7748] R13: 0000000000000001 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 211.249873][ T7748] [ 211.701436][ C1] vkms_vblank_simulate: vblank timer overrun [ 213.176336][ T7781] FAULT_INJECTION: forcing a failure. [ 213.176336][ T7781] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 213.295518][ T7781] CPU: 1 UID: 0 PID: 7781 Comm: syz.2.562 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 213.295574][ T7781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 213.295592][ T7781] Call Trace: [ 213.295602][ T7781] [ 213.295614][ T7781] dump_stack_lvl+0x16c/0x1f0 [ 213.295662][ T7781] should_fail_ex+0x512/0x640 [ 213.295704][ T7781] _copy_from_iter+0x2a4/0x15b0 [ 213.295746][ T7781] ? _copy_from_iter+0x161/0x15b0 [ 213.295784][ T7781] ? __pfx__copy_from_iter+0x10/0x10 [ 213.295826][ T7781] ? __pfx__copy_from_iter+0x10/0x10 [ 213.295874][ T7781] copy_page_from_iter+0xa5/0x120 [ 213.295925][ T7781] skb_copy_datagram_from_iter+0x2a0/0x740 [ 213.295978][ T7781] tun_get_user+0x17ac/0x3b10 [ 213.296038][ T7781] ? __pfx_tun_get_user+0x10/0x10 [ 213.296077][ T7781] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 213.296128][ T7781] ? find_held_lock+0x2b/0x80 [ 213.296168][ T7781] ? tun_get+0x191/0x370 [ 213.296216][ T7781] tun_chr_write_iter+0xdc/0x210 [ 213.296263][ T7781] vfs_write+0x5ba/0x1180 [ 213.296309][ T7781] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 213.296358][ T7781] ? __pfx_vfs_write+0x10/0x10 [ 213.296396][ T7781] ? find_held_lock+0x2b/0x80 [ 213.296458][ T7781] __x64_sys_pwrite64+0x1f4/0x250 [ 213.296499][ T7781] ? __pfx___x64_sys_pwrite64+0x10/0x10 [ 213.296542][ T7781] ? rcu_is_watching+0x12/0xc0 [ 213.296593][ T7781] do_syscall_64+0xcd/0x260 [ 213.296641][ T7781] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.296673][ T7781] RIP: 0033:0x7f8c19b8d169 [ 213.296698][ T7781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.296726][ T7781] RSP: 002b:00007f8c1a997038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 213.296755][ T7781] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8d169 [ 213.296775][ T7781] RDX: 000000000000fdf2 RSI: 0000200000000240 RDI: 00000000000000c8 [ 213.296793][ T7781] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 213.296811][ T7781] R10: 000000000000003a R11: 0000000000000246 R12: 0000000000000002 [ 213.296829][ T7781] R13: 0000000000000001 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 213.296867][ T7781] [ 213.523768][ C1] vkms_vblank_simulate: vblank timer overrun [ 214.501314][ T7799] netlink: 330 bytes leftover after parsing attributes in process `syz.2.566'. [ 215.739398][ T7821] FAULT_INJECTION: forcing a failure. [ 215.739398][ T7821] name failslab, interval 1, probability 0, space 0, times 0 [ 215.783563][ T7821] CPU: 1 UID: 0 PID: 7821 Comm: syz.0.573 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 215.783608][ T7821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 215.783627][ T7821] Call Trace: [ 215.783637][ T7821] [ 215.783649][ T7821] dump_stack_lvl+0x16c/0x1f0 [ 215.783700][ T7821] should_fail_ex+0x512/0x640 [ 215.783735][ T7821] ? fs_reclaim_acquire+0xae/0x150 [ 215.783777][ T7821] ? tomoyo_encode2+0x100/0x3e0 [ 215.783818][ T7821] should_failslab+0xc2/0x120 [ 215.783847][ T7821] __kmalloc_noprof+0xd2/0x510 [ 215.783913][ T7821] tomoyo_encode2+0x100/0x3e0 [ 215.783962][ T7821] tomoyo_encode+0x29/0x50 [ 215.784003][ T7821] tomoyo_realpath_from_path+0x18f/0x6e0 [ 215.784052][ T7821] ? tomoyo_profile+0x47/0x60 [ 215.784104][ T7821] tomoyo_path_number_perm+0x245/0x580 [ 215.784140][ T7821] ? tomoyo_path_number_perm+0x237/0x580 [ 215.784182][ T7821] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 215.784262][ T7821] ? d_alloc_parallel+0x979/0x12e0 [ 215.784304][ T7821] ? current_check_access_path+0x33c/0x460 [ 215.784346][ T7821] ? __pfx_current_check_access_path+0x10/0x10 [ 215.784400][ T7821] tomoyo_path_mknod+0x10c/0x190 [ 215.784450][ T7821] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 215.784501][ T7821] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 215.784548][ T7821] security_path_mknod+0x161/0x310 [ 215.784596][ T7821] lookup_open.isra.0+0xc17/0x1580 [ 215.784648][ T7821] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 215.784717][ T7821] ? __pfx_down_write+0x10/0x10 [ 215.784764][ T7821] ? mnt_get_write_access+0x20c/0x300 [ 215.784808][ T7821] path_openat+0x905/0x2d40 [ 215.784867][ T7821] ? __x64_sys_open+0x153/0x1e0 [ 215.784910][ T7821] ? do_syscall_64+0xcd/0x260 [ 215.784954][ T7821] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.784988][ T7821] ? __pfx_path_openat+0x10/0x10 [ 215.785046][ T7821] do_filp_open+0x20b/0x470 [ 215.785093][ T7821] ? __pfx_do_filp_open+0x10/0x10 [ 215.785171][ T7821] ? _raw_spin_unlock+0x28/0x50 [ 215.785208][ T7821] ? alloc_fd+0x471/0x7d0 [ 215.785266][ T7821] do_sys_openat2+0x11b/0x1d0 [ 215.785299][ T7821] ? __pfx_do_sys_openat2+0x10/0x10 [ 215.785334][ T7821] ? __fget_files+0x20e/0x3c0 [ 215.785386][ T7821] __x64_sys_open+0x153/0x1e0 [ 215.785420][ T7821] ? __pfx___x64_sys_open+0x10/0x10 [ 215.785462][ T7821] ? rcu_is_watching+0x12/0xc0 [ 215.785507][ T7821] do_syscall_64+0xcd/0x260 [ 215.785562][ T7821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 215.785593][ T7821] RIP: 0033:0x7f9908b8d169 [ 215.785618][ T7821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 215.785649][ T7821] RSP: 002b:00007f9909acd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 215.785679][ T7821] RAX: ffffffffffffffda RBX: 00007f9908da5fa0 RCX: 00007f9908b8d169 [ 215.785700][ T7821] RDX: 00000000000000d1 RSI: 0000000000103040 RDI: 0000200000000380 [ 215.785717][ T7821] RBP: 00007f9909acd090 R08: 0000000000000000 R09: 0000000000000000 [ 215.785735][ T7821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 215.785751][ T7821] R13: 0000000000000000 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 215.785792][ T7821] [ 216.097469][ C1] vkms_vblank_simulate: vblank timer overrun [ 216.166804][ T7821] ERROR: Out of memory at tomoyo_realpath_from_path. [ 216.349438][ T7801] FAULT_INJECTION: forcing a failure. [ 216.349438][ T7801] name failslab, interval 1, probability 0, space 0, times 0 [ 216.363218][ T7801] CPU: 1 UID: 0 PID: 7801 Comm: syz.1.567 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 216.363262][ T7801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.363282][ T7801] Call Trace: [ 216.363293][ T7801] [ 216.363305][ T7801] dump_stack_lvl+0x16c/0x1f0 [ 216.363355][ T7801] should_fail_ex+0x512/0x640 [ 216.363391][ T7801] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 216.363440][ T7801] ? __pfx_cec_config_thread_func+0x10/0x10 [ 216.363488][ T7801] should_failslab+0xc2/0x120 [ 216.363520][ T7801] __kmalloc_cache_noprof+0x6a/0x3e0 [ 216.363563][ T7801] ? lockdep_init_map_type+0x5c/0x280 [ 216.363595][ T7801] ? __kthread_create_on_node+0xce/0x3f0 [ 216.363647][ T7801] ? __init_swait_queue_head+0xca/0x150 [ 216.363689][ T7801] ? __pfx_cec_config_thread_func+0x10/0x10 [ 216.363737][ T7801] __kthread_create_on_node+0xce/0x3f0 [ 216.363793][ T7801] ? __pfx___kthread_create_on_node+0x10/0x10 [ 216.363867][ T7801] ? cec_adap_enable+0x77c/0xc30 [ 216.363923][ T7801] ? __pfx_cec_config_thread_func+0x10/0x10 [ 216.363975][ T7801] kthread_create_on_node+0xc7/0x100 [ 216.364027][ T7801] ? __pfx_kthread_create_on_node+0x10/0x10 [ 216.364078][ T7801] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 216.364134][ T7801] ? lockdep_init_map_type+0x5c/0x280 [ 216.364167][ T7801] ? lockdep_init_map_type+0x5c/0x280 [ 216.364202][ T7801] cec_claim_log_addrs+0x13e/0x2e0 [ 216.364251][ T7801] __cec_s_log_addrs+0xdc9/0x1670 [ 216.364313][ T7801] cec_ioctl+0x4b8/0x2970 [ 216.364366][ T7801] ? __pfx_cec_ioctl+0x10/0x10 [ 216.364419][ T7801] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 216.364456][ T7801] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 216.364493][ T7801] ? do_vfs_ioctl+0x512/0x1990 [ 216.364537][ T7801] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 216.364606][ T7801] ? find_held_lock+0x2b/0x80 [ 216.364646][ T7801] ? hook_file_ioctl_common+0x145/0x410 [ 216.364697][ T7801] ? __pfx_cec_ioctl+0x10/0x10 [ 216.364742][ T7801] __x64_sys_ioctl+0x190/0x200 [ 216.364780][ T7801] do_syscall_64+0xcd/0x260 [ 216.364839][ T7801] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.364872][ T7801] RIP: 0033:0x7f2a23f8d169 [ 216.364897][ T7801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 216.364928][ T7801] RSP: 002b:00007f2a24e97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.364957][ T7801] RAX: ffffffffffffffda RBX: 00007f2a241a5fa0 RCX: 00007f2a23f8d169 [ 216.364979][ T7801] RDX: 00002000000000c0 RSI: 00000000c05c6104 RDI: 0000000000000005 [ 216.364998][ T7801] RBP: 00007f2a2400e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 216.365016][ T7801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 216.365033][ T7801] R13: 0000000000000000 R14: 00007f2a241a5fa0 R15: 00007ffcb38b5c58 [ 216.365067][ T7801] [ 216.395950][ T7824] mkiss: ax0: crc mode is auto. [ 216.661558][ T7829] netlink: 'syz.2.575': attribute type 1 has an invalid length. [ 217.345315][ T7841] netlink: 74 bytes leftover after parsing attributes in process `syz.0.589'. [ 218.524369][ T7902] netlink: 'syz.2.587': attribute type 1 has an invalid length. [ 218.691195][ T7908] FAULT_INJECTION: forcing a failure. [ 218.691195][ T7908] name failslab, interval 1, probability 0, space 0, times 0 [ 218.738847][ T7908] CPU: 0 UID: 0 PID: 7908 Comm: syz.3.590 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 218.738891][ T7908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 218.738910][ T7908] Call Trace: [ 218.738920][ T7908] [ 218.738931][ T7908] dump_stack_lvl+0x16c/0x1f0 [ 218.738983][ T7908] should_fail_ex+0x512/0x640 [ 218.739019][ T7908] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 218.739065][ T7908] should_failslab+0xc2/0x120 [ 218.739096][ T7908] __kmalloc_cache_noprof+0x6a/0x3e0 [ 218.739153][ T7908] ? __debugfs_file_get+0x1fe/0x840 [ 218.739185][ T7908] ? sta_agg_status_read+0xc1/0x160 [ 218.739224][ T7908] sta_agg_status_read+0xc1/0x160 [ 218.739261][ T7908] full_proxy_read+0x13c/0x200 [ 218.739292][ T7908] ? __pfx_full_proxy_read+0x10/0x10 [ 218.739327][ T7908] vfs_read+0x1de/0xc70 [ 218.739376][ T7908] ? __pfx___mutex_lock+0x10/0x10 [ 218.739421][ T7908] ? __pfx_vfs_read+0x10/0x10 [ 218.739492][ T7908] ? __fget_files+0x20e/0x3c0 [ 218.739560][ T7908] ksys_read+0x12a/0x240 [ 218.739610][ T7908] ? __pfx_ksys_read+0x10/0x10 [ 218.739657][ T7908] ? rcu_is_watching+0x12/0xc0 [ 218.739715][ T7908] do_syscall_64+0xcd/0x260 [ 218.739764][ T7908] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.739796][ T7908] RIP: 0033:0x7f6e7ff8d169 [ 218.739821][ T7908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 218.739851][ T7908] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 218.739881][ T7908] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 218.739901][ T7908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 218.739918][ T7908] RBP: 00007f6e80d39090 R08: 0000000000000000 R09: 0000000000000000 [ 218.739936][ T7908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 218.739953][ T7908] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 218.739994][ T7908] [ 220.268339][ T7949] FAULT_INJECTION: forcing a failure. [ 220.268339][ T7949] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.336311][ T7949] CPU: 1 UID: 0 PID: 7949 Comm: syz.0.603 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 220.336358][ T7949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 220.336377][ T7949] Call Trace: [ 220.336387][ T7949] [ 220.336400][ T7949] dump_stack_lvl+0x16c/0x1f0 [ 220.336450][ T7949] should_fail_ex+0x512/0x640 [ 220.336493][ T7949] _copy_to_user+0x32/0xd0 [ 220.336535][ T7949] simple_read_from_buffer+0xcb/0x170 [ 220.336582][ T7949] proc_fail_nth_read+0x197/0x270 [ 220.336627][ T7949] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.336674][ T7949] ? rw_verify_area+0xcf/0x680 [ 220.336711][ T7949] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.336755][ T7949] vfs_read+0x1de/0xc70 [ 220.336802][ T7949] ? __pfx___mutex_lock+0x10/0x10 [ 220.336848][ T7949] ? __pfx_vfs_read+0x10/0x10 [ 220.336902][ T7949] ? __fget_files+0x20e/0x3c0 [ 220.336959][ T7949] ksys_read+0x12a/0x240 [ 220.337001][ T7949] ? __pfx_ksys_read+0x10/0x10 [ 220.337056][ T7949] do_syscall_64+0xcd/0x260 [ 220.337105][ T7949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.337135][ T7949] RIP: 0033:0x7f9908b8bb7c [ 220.337168][ T7949] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 220.337198][ T7949] RSP: 002b:00007f9909acd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 220.337227][ T7949] RAX: ffffffffffffffda RBX: 00007f9908da5fa0 RCX: 00007f9908b8bb7c [ 220.337248][ T7949] RDX: 000000000000000f RSI: 00007f9909acd0a0 RDI: 0000000000000004 [ 220.337267][ T7949] RBP: 00007f9909acd090 R08: 0000000000000000 R09: 0000000000000000 [ 220.337285][ T7949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 220.337301][ T7949] R13: 0000000000000000 R14: 00007f9908da5fa0 R15: 00007ffd88991c18 [ 220.337335][ T7949] [ 220.657362][ T7955] FAULT_INJECTION: forcing a failure. [ 220.657362][ T7955] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 220.658421][ T7951] Invalid ELF header magic: != ELF [ 220.706515][ T7955] CPU: 0 UID: 0 PID: 7955 Comm: syz.2.605 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 220.706558][ T7955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 220.706577][ T7955] Call Trace: [ 220.706586][ T7955] [ 220.706598][ T7955] dump_stack_lvl+0x16c/0x1f0 [ 220.706647][ T7955] should_fail_ex+0x512/0x640 [ 220.706690][ T7955] _copy_to_user+0x32/0xd0 [ 220.706733][ T7955] simple_read_from_buffer+0xcb/0x170 [ 220.706780][ T7955] proc_fail_nth_read+0x197/0x270 [ 220.706827][ T7955] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.706873][ T7955] ? rw_verify_area+0xcf/0x680 [ 220.706911][ T7955] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 220.706956][ T7955] vfs_read+0x1de/0xc70 [ 220.707005][ T7955] ? __pfx___mutex_lock+0x10/0x10 [ 220.707050][ T7955] ? __pfx_vfs_read+0x10/0x10 [ 220.707110][ T7955] ? __fget_files+0x20e/0x3c0 [ 220.707170][ T7955] ksys_read+0x12a/0x240 [ 220.707213][ T7955] ? __pfx_ksys_read+0x10/0x10 [ 220.707253][ T7955] ? rcu_is_watching+0x12/0xc0 [ 220.707304][ T7955] do_syscall_64+0xcd/0x260 [ 220.707352][ T7955] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.707396][ T7955] RIP: 0033:0x7f8c19b8bb7c [ 220.707421][ T7955] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 220.707452][ T7955] RSP: 002b:00007f8c1a997030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 220.707481][ T7955] RAX: ffffffffffffffda RBX: 00007f8c19da5fa0 RCX: 00007f8c19b8bb7c [ 220.707501][ T7955] RDX: 000000000000000f RSI: 00007f8c1a9970a0 RDI: 0000000000000004 [ 220.707520][ T7955] RBP: 00007f8c1a997090 R08: 0000000000000000 R09: 0000000000000000 [ 220.707543][ T7955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.707561][ T7955] R13: 0000000000000000 R14: 00007f8c19da5fa0 R15: 00007fff99d80908 [ 220.707603][ T7955] [ 222.059954][ T5150] Bluetooth: hci0: command 0x0406 tx timeout [ 222.066919][ T5842] Bluetooth: hci2: command 0x0406 tx timeout [ 222.072997][ T5842] Bluetooth: hci1: command 0x0406 tx timeout [ 222.080778][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 222.160951][ T7989] FAULT_INJECTION: forcing a failure. [ 222.160951][ T7989] name failslab, interval 1, probability 0, space 0, times 0 [ 222.173802][ T7989] CPU: 0 UID: 0 PID: 7989 Comm: syz.3.612 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 222.173846][ T7989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 222.173867][ T7989] Call Trace: [ 222.173878][ T7989] [ 222.173890][ T7989] dump_stack_lvl+0x16c/0x1f0 [ 222.173951][ T7989] should_fail_ex+0x512/0x640 [ 222.173991][ T7989] ? fs_reclaim_acquire+0xae/0x150 [ 222.174035][ T7989] ? ima_alloc_init_template+0xb5/0x720 [ 222.174065][ T7989] should_failslab+0xc2/0x120 [ 222.174095][ T7989] __kmalloc_noprof+0xd2/0x510 [ 222.174147][ T7989] ? find_held_lock+0x2b/0x80 [ 222.174193][ T7989] ima_alloc_init_template+0xb5/0x720 [ 222.174228][ T7989] ? take_dentry_name_snapshot+0x319/0x7d0 [ 222.174272][ T7989] ima_store_measurement+0x1eb/0x5c0 [ 222.174310][ T7989] ? __pfx_ima_store_measurement+0x10/0x10 [ 222.174346][ T7989] ? vfs_getxattr_alloc+0xec/0x340 [ 222.174406][ T7989] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 222.174461][ T7989] process_measurement+0x1bd6/0x2360 [ 222.174527][ T7989] ? __pfx_process_measurement+0x10/0x10 [ 222.174582][ T7989] ? __lock_acquire+0x5ca/0x1ba0 [ 222.174615][ T7989] ? init_file+0x93/0x4c0 [ 222.174644][ T7989] ? alloc_empty_file+0x73/0x1e0 [ 222.174677][ T7989] ? hugetlb_file_setup+0x4cd/0x620 [ 222.174717][ T7989] ? ksys_mmap_pgoff+0x189/0x5c0 [ 222.174752][ T7989] ? __x64_sys_mmap+0x125/0x190 [ 222.174842][ T7989] ima_file_mmap+0x1b1/0x1d0 [ 222.174890][ T7989] ? __pfx_ima_file_mmap+0x10/0x10 [ 222.174956][ T7989] security_mmap_file+0x88c/0x990 [ 222.175002][ T7989] vm_mmap_pgoff+0xec/0x450 [ 222.175045][ T7989] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 222.175077][ T7989] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 222.175115][ T7989] ? hugetlbfs_get_inode+0x31f/0x730 [ 222.175162][ T7989] ksys_mmap_pgoff+0x1c8/0x5c0 [ 222.175200][ T7989] ? rcu_is_watching+0x12/0xc0 [ 222.175242][ T7989] __x64_sys_mmap+0x125/0x190 [ 222.175285][ T7989] do_syscall_64+0xcd/0x260 [ 222.175339][ T7989] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 222.175370][ T7989] RIP: 0033:0x7f6e7ff8d169 [ 222.175396][ T7989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.175425][ T7989] RSP: 002b:00007f6e80d39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 222.175454][ T7989] RAX: ffffffffffffffda RBX: 00007f6e801a5fa0 RCX: 00007f6e7ff8d169 [ 222.175474][ T7989] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 222.175492][ T7989] RBP: 00007f6e8000e2a0 R08: 0000000000000401 R09: 0000300000000000 [ 222.175511][ T7989] R10: 0000000000040eb1 R11: 0000000000000246 R12: 0000000000000000 [ 222.175529][ T7989] R13: 0000000000000000 R14: 00007f6e801a5fa0 R15: 00007ffca049e238 [ 222.175568][ T7989] [ 222.642778][ T30] audit: type=1804 audit(6039154393.871:13): pid=7989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.612" name="anon_hugepage" dev="hugetlbfs" ino=20033 res=0 errno=0 [ 224.946976][ T8035] netlink: 146 bytes leftover after parsing attributes in process `syz.1.629'. [ 225.603319][ T8071] tipc: Started in network mode [ 225.620750][ T8071] tipc: Node identity 8e4e6f15, cluster identity 4711 [ 225.645226][ T8071] tipc: Node number set to 2387504917 [ 226.839056][ T8107] [U]  [ 226.842188][ T8107] [U] [ 226.844946][ T8107] [U] [ 226.847707][ T8107] [U] [ 226.885971][ T8107] [U] [ 226.888773][ T8107] [U] [ 226.891529][ T8107] [U] [ 226.894288][ T8107] [U] [ 226.976991][ T8107] [U] [ 226.979791][ T8107] [U] [ 226.982521][ T8107] [U] [ 226.985246][ T8107] [U] [ 227.056160][ T8114] [U] [ 227.782811][ T8139] netlink: 28 bytes leftover after parsing attributes in process `syz.3.658'. [ 1522.835636][T26538] can: request_module (can-proto-0) failed. [ 1523.092772][T26548] Invalid ELF header magic: != ELF [ 1523.322794][T26549] Invalid ELF header magic: != ELF [ 1524.913862][T26576] Invalid ELF header magic: != ELF [ 1524.957495][T20519] ttyS ttyS0: 2 input overrun(s) [ 1525.007066][T26580] Invalid ELF header magic: != ELF [ 1525.112803][T26585] FAULT_INJECTION: forcing a failure. [ 1525.112803][T26585] name failslab, interval 1, probability 0, space 0, times 0 [ 1525.214867][T26585] CPU: 0 UID: 0 PID: 26585 Comm: syz.2.5715 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 1525.214906][T26585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1525.214921][T26585] Call Trace: [ 1525.214928][T26585] [ 1525.214938][T26585] dump_stack_lvl+0x16c/0x1f0 [ 1525.214976][T26585] should_fail_ex+0x512/0x640 [ 1525.215004][T26585] ? kmem_cache_alloc_node_noprof+0x5e/0x3b0 [ 1525.215044][T26585] should_failslab+0xc2/0x120 [ 1525.215067][T26585] kmem_cache_alloc_node_noprof+0x71/0x3b0 [ 1525.215103][T26585] ? do_kmem_cache_create+0x1b3/0x730 [ 1525.215139][T26585] do_kmem_cache_create+0x1b3/0x730 [ 1525.215160][T26585] ? __kmem_cache_create_args+0x205/0x390 [ 1525.215200][T26585] __kmem_cache_create_args+0x225/0x390 [ 1525.215239][T26585] mon_text_open+0x313/0x4f0 [ 1525.215275][T26585] ? __pfx_mon_text_open+0x10/0x10 [ 1525.215303][T26585] ? __debugfs_file_get+0x1fe/0x840 [ 1525.215328][T26585] ? __pfx_mon_text_ctor+0x10/0x10 [ 1525.215357][T26585] ? __pfx_apparmor_file_open+0x10/0x10 [ 1525.215386][T26585] ? lockdown_is_locked_down+0x3f/0x130 [ 1525.215420][T26585] ? bpf_lsm_locked_down+0x9/0x10 [ 1525.215457][T26585] ? __pfx_mon_text_open+0x10/0x10 [ 1525.215484][T26585] full_proxy_open_regular+0x1b6/0x360 [ 1525.215515][T26585] do_dentry_open+0x741/0x1c10 [ 1525.215550][T26585] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 1525.215584][T26585] vfs_open+0x82/0x3f0 [ 1525.215612][T26585] path_openat+0x1e5e/0x2d40 [ 1525.215658][T26585] ? __pfx_path_openat+0x10/0x10 [ 1525.215701][T26585] do_filp_open+0x20b/0x470 [ 1525.215736][T26585] ? __pfx_do_filp_open+0x10/0x10 [ 1525.215793][T26585] ? alloc_fd+0x471/0x7d0 [ 1525.215835][T26585] do_sys_openat2+0x11b/0x1d0 [ 1525.215860][T26585] ? __pfx_do_sys_openat2+0x10/0x10 [ 1525.215897][T26585] __x64_sys_openat+0x174/0x210 [ 1525.215923][T26585] ? __pfx___x64_sys_openat+0x10/0x10 [ 1525.215951][T26585] ? syscall_user_dispatch+0x78/0x140 [ 1525.215987][T26585] do_syscall_64+0xcd/0x260 [ 1525.216024][T26585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1525.216048][T26585] RIP: 0033:0x7fa60798d169 [ 1525.216067][T26585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1525.216090][T26585] RSP: 002b:00007fa608748038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1525.216113][T26585] RAX: ffffffffffffffda RBX: 00007fa607ba5fa0 RCX: 00007fa60798d169 [ 1525.216129][T26585] RDX: 0000000000000003 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 1525.216144][T26585] RBP: 00007fa607a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 1525.216158][T26585] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000000 [ 1525.216173][T26585] R13: 0000000000000000 R14: 00007fa607ba5fa0 R15: 00007ffec67ddb38 [ 1525.216203][T26585] [ 1525.216241][T26585] __kmem_cache_create_args(mon_text_ffff8880872b4400) failed with error -22 [ 1526.593261][T26604] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5719'. [ 1526.658558][T26585] CPU: 0 UID: 0 PID: 26585 Comm: syz.2.5715 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 1526.658614][T26585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1526.658628][T26585] Call Trace: [ 1526.658636][T26585] [ 1526.658647][T26585] dump_stack_lvl+0x16c/0x1f0 [ 1526.658685][T26585] __kmem_cache_create_args+0x125/0x390 [ 1526.658724][T26585] mon_text_open+0x313/0x4f0 [ 1526.658754][T26585] ? __pfx_mon_text_open+0x10/0x10 [ 1526.658781][T26585] ? __debugfs_file_get+0x1fe/0x840 [ 1526.658806][T26585] ? __pfx_mon_text_ctor+0x10/0x10 [ 1526.658833][T26585] ? __pfx_apparmor_file_open+0x10/0x10 [ 1526.658863][T26585] ? lockdown_is_locked_down+0x3f/0x130 [ 1526.658896][T26585] ? bpf_lsm_locked_down+0x9/0x10 [ 1526.658934][T26585] ? __pfx_mon_text_open+0x10/0x10 [ 1526.658960][T26585] full_proxy_open_regular+0x1b6/0x360 [ 1526.658991][T26585] do_dentry_open+0x741/0x1c10 [ 1526.659025][T26585] ? __pfx_full_proxy_open_regular+0x10/0x10 [ 1526.659060][T26585] vfs_open+0x82/0x3f0 [ 1526.659087][T26585] path_openat+0x1e5e/0x2d40 [ 1526.659133][T26585] ? __pfx_path_openat+0x10/0x10 [ 1526.659176][T26585] do_filp_open+0x20b/0x470 [ 1526.659211][T26585] ? __pfx_do_filp_open+0x10/0x10 [ 1526.659267][T26585] ? alloc_fd+0x471/0x7d0 [ 1526.659309][T26585] do_sys_openat2+0x11b/0x1d0 [ 1526.659334][T26585] ? __pfx_do_sys_openat2+0x10/0x10 [ 1526.659378][T26585] __x64_sys_openat+0x174/0x210 [ 1526.659405][T26585] ? __pfx___x64_sys_openat+0x10/0x10 [ 1526.659432][T26585] ? syscall_user_dispatch+0x78/0x140 [ 1526.659468][T26585] do_syscall_64+0xcd/0x260 [ 1526.659504][T26585] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1526.659529][T26585] RIP: 0033:0x7fa60798d169 [ 1526.659548][T26585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1526.659576][T26585] RSP: 002b:00007fa608748038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1526.659599][T26585] RAX: ffffffffffffffda RBX: 00007fa607ba5fa0 RCX: 00007fa60798d169 [ 1526.659615][T26585] RDX: 0000000000000003 RSI: 00002000000002c0 RDI: ffffffffffffff9c [ 1526.659631][T26585] RBP: 00007fa607a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 1526.659646][T26585] R10: 000000000000ffff R11: 0000000000000246 R12: 0000000000000000 [ 1526.659660][T26585] R13: 0000000000000000 R14: 00007fa607ba5fa0 R15: 00007ffec67ddb38 [ 1526.659690][T26585] [ 1527.435709][T26614] FAULT_INJECTION: forcing a failure. [ 1527.435709][T26614] name fail_futex, interval 1, probability 0, space 0, times 0 [ 1527.465989][T26614] CPU: 0 UID: 0 PID: 26614 Comm: syz.0.5721 Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 1527.466031][T26614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1527.466047][T26614] Call Trace: [ 1527.466055][T26614] [ 1527.466065][T26614] dump_stack_lvl+0x16c/0x1f0 [ 1527.466103][T26614] should_fail_ex+0x512/0x640 [ 1527.466136][T26614] get_futex_key+0x49e/0x1000 [ 1527.466170][T26614] ? __pfx_try_to_wake_up+0x10/0x10 [ 1527.466202][T26614] ? __pfx_get_futex_key+0x10/0x10 [ 1527.466233][T26614] ? plist_check_head+0xa3/0x150 [ 1527.466258][T26614] ? find_held_lock+0x2b/0x80 [ 1527.466295][T26614] futex_wake+0xe7/0x4e0 [ 1527.466320][T26614] ? __pfx_futex_wake+0x10/0x10 [ 1527.466355][T26614] do_futex+0x1e3/0x350 [ 1527.466388][T26614] ? __pfx_do_futex+0x10/0x10 [ 1527.466429][T26614] __x64_sys_futex+0x1e0/0x4c0 [ 1527.466464][T26614] ? __might_fault+0xe3/0x190 [ 1527.466498][T26614] ? __might_fault+0x13b/0x190 [ 1527.466533][T26614] ? __pfx___x64_sys_futex+0x10/0x10 [ 1527.466578][T26614] do_syscall_64+0xcd/0x260 [ 1527.466614][T26614] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1527.466638][T26614] RIP: 0033:0x7f17c4f8d169 [ 1527.466657][T26614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1527.466680][T26614] RSP: 002b:00007f17c5dd40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 1527.466703][T26614] RAX: ffffffffffffffda RBX: 00007f17c51a5fa8 RCX: 00007f17c4f8d169 [ 1527.466719][T26614] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f17c51a5fac [ 1527.466734][T26614] RBP: 00007f17c51a5fa0 R08: 00007f17c5dd5000 R09: 0000000000000000 [ 1527.466749][T26614] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f17c51a5fac [ 1527.466764][T26614] R13: 0000000000000000 R14: 00007ffc38d92790 R15: 00007ffc38d92878 [ 1527.466793][T26614] [ 1528.029121][T26620] Invalid ELF header magic: != ELF [ 1529.209579][T26638] Invalid ELF header magic: != ELF [ 1529.244215][T26640] can: request_module (can-proto-0) failed. [ 1529.683381][T26648] Invalid ELF header magic: != ELF [ 1530.897460][T26673] can: request_module (can-proto-0) failed. [ 1531.259180][T26677] Invalid ELF header magic: != ELF [ 1531.785621][T26688] Invalid ELF header magic: != ELF [ 1532.851044][T26709] can: request_module (can-proto-0) failed. [ 1533.102475][T26714] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5757'. [ 1533.410410][T26716] Invalid ELF header magic: != ELF [ 1533.566897][T26723] Invalid ELF header magic: != ELF [ 1534.367072][T26738] can: request_module (can-proto-0) failed. [ 1534.670414][T26749] snd_aloop snd_aloop.0: control 16781581:65533:4:'x?F/zF˷fC:0 is already present [ 1534.780527][T26752] bridge0: port 4(veth0_to_bridge) entered blocking state [ 1534.824738][T26752] bridge0: port 4(veth0_to_bridge) entered disabled state [ 1534.887801][T26752] veth0_to_bridge: entered allmulticast mode [ 1534.985833][T26752] veth0_to_bridge: entered promiscuous mode [ 1535.057911][T26752] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1535.118736][T26758] Invalid ELF header magic: != ELF [ 1535.145317][T26760] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5770'. [ 1535.199204][T26752] bridge0: port 4(veth0_to_bridge) entered blocking state [ 1535.207932][T26752] bridge0: port 4(veth0_to_bridge) entered forwarding state [ 1535.350980][ C0] net_ratelimit: 21 callbacks suppressed [ 1535.351000][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.373249][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.388600][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.403567][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.418387][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.433423][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.448300][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.463220][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.478043][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1535.492956][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.182203][ C0] sched: DL replenish lagged too much [ 1540.362556][ C0] net_ratelimit: 10505 callbacks suppressed [ 1540.362577][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.384478][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.399284][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1540.414230][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.429027][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.443830][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1540.458702][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.473543][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1540.488368][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1540.503236][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.374966][ C0] net_ratelimit: 10435 callbacks suppressed [ 1545.374988][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1545.397022][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.411859][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.426763][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1545.441748][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.456556][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.471406][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1545.488741][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.503623][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1545.518474][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1550.387556][ C0] net_ratelimit: 10503 callbacks suppressed [ 1550.387578][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.409617][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.424440][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1550.439334][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.454137][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.468991][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1550.483947][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.499226][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1550.514016][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1550.530636][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1551.496654][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1551.513360][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 1555.400133][ C0] net_ratelimit: 10311 callbacks suppressed [ 1555.400154][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1555.422166][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1555.436985][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1555.451777][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1555.466641][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1555.481494][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1555.496308][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1555.511217][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1555.526235][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1555.541252][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1560.412562][ C0] net_ratelimit: 10841 callbacks suppressed [ 1560.412584][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1560.434584][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1560.449453][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1560.464384][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1560.479209][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1560.494107][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1560.508990][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1560.523811][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1560.538611][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1560.553528][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1565.424914][ C0] net_ratelimit: 10882 callbacks suppressed [ 1565.424936][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1565.448074][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1565.463021][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1565.477855][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1565.492627][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1565.507515][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1565.522377][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1565.537277][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1565.552117][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1565.567009][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1570.437574][ C0] net_ratelimit: 10873 callbacks suppressed [ 1570.437594][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1570.459620][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1570.474518][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1570.489388][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1570.504225][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1570.519012][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1570.533897][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1570.548773][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1570.563599][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1570.578386][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1575.449951][ C0] net_ratelimit: 10890 callbacks suppressed [ 1575.449973][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1575.471876][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1575.486733][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1575.501596][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1575.516392][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1575.531188][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1575.546068][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1575.560975][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1575.575770][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1575.590560][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1580.462426][ C0] net_ratelimit: 10884 callbacks suppressed [ 1580.462449][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1580.484441][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1580.499388][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1580.514186][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1580.529074][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1580.543921][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1580.558758][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1580.573526][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1580.588361][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1580.603231][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.475028][ C0] net_ratelimit: 10900 callbacks suppressed [ 1585.475050][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.496959][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1585.511879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1585.526709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.541510][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.556317][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1585.571160][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1585.586021][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.600898][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1585.615749][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1590.487402][ C0] net_ratelimit: 8094 callbacks suppressed [ 1590.487424][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1590.509219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1590.525064][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1590.539898][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1590.554676][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1590.569469][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1590.585482][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1590.600406][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1590.615203][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1590.629982][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1595.499823][ C0] net_ratelimit: 6911 callbacks suppressed [ 1595.499844][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1595.522744][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1595.537601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1595.552401][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1595.567188][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1595.583295][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1595.598332][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1595.613199][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1595.628006][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1595.644453][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1600.512640][ C0] net_ratelimit: 6917 callbacks suppressed [ 1600.512663][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1600.534661][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1600.550709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1600.565634][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1600.580628][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1600.595424][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1600.613072][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1600.628045][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1600.642958][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1600.657883][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1605.525226][ C0] net_ratelimit: 6987 callbacks suppressed [ 1605.525247][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1605.548177][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1605.563039][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1605.577944][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1605.592742][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1605.608626][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1605.623709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1605.638518][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1605.653511][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1605.669439][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1610.538658][ C0] net_ratelimit: 6923 callbacks suppressed [ 1610.538680][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1610.560638][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1610.575498][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1610.590367][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1610.606392][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1610.621271][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1610.636035][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1610.650813][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1610.666670][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1610.681507][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.549935][ C0] net_ratelimit: 6923 callbacks suppressed [ 1615.549955][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.571730][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.586473][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1615.603061][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1615.617911][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.632695][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.647576][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1615.663420][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1615.678271][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.693011][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1615.744078][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 1620.562639][ C0] net_ratelimit: 6885 callbacks suppressed [ 1620.562662][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1620.584676][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1620.599621][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1620.614576][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1620.630778][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1620.645789][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1620.660622][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1620.675429][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1620.691493][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1620.706397][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1625.575243][ C0] net_ratelimit: 6870 callbacks suppressed [ 1625.575264][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1625.597260][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1625.612054][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1625.626903][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1625.642934][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1625.657847][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1625.672641][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1625.687456][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1625.703454][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1625.718307][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1630.587713][ C0] net_ratelimit: 6717 callbacks suppressed [ 1630.587734][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1630.610809][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1630.625691][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1630.640512][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1630.656636][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1630.672749][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1630.687732][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1630.702494][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1630.717275][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1630.733262][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1635.601028][ C0] net_ratelimit: 6715 callbacks suppressed [ 1635.601048][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1635.623120][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1635.637920][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1635.652723][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1635.668663][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1635.684540][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1635.699414][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1635.714404][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1635.730341][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1635.745346][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1640.613858][ C0] net_ratelimit: 6842 callbacks suppressed [ 1640.613880][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1640.635791][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1640.650542][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1640.665343][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1640.681177][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1640.696103][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1640.711024][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1640.725992][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1640.743992][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1640.758876][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1645.625314][ C0] net_ratelimit: 7010 callbacks suppressed [ 1645.625336][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1645.647232][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1645.662000][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1645.676748][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1645.692601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1645.707446][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1645.722180][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1645.736972][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1645.752802][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1645.767717][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.637662][ C0] net_ratelimit: 6919 callbacks suppressed [ 1650.637683][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.659618][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.674432][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1650.690452][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1650.705370][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.720182][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.734990][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1650.750882][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1650.765805][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1650.780581][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1655.651314][ C0] net_ratelimit: 6901 callbacks suppressed [ 1655.651335][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1655.673232][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1655.688003][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1655.702782][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1655.718639][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1655.733633][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1655.748429][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1655.763428][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1655.779316][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1655.794162][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1659.321699][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 1659.330073][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5199/1:b..l P26750/1:b..l P23207/1:b..l P65/1:b..l [ 1659.344140][ C0] rcu: (detected by 0, t=10502 jiffies, g=163057, q=558 ncpus=1) [ 1659.353523][ C0] task:kworker/u8:5 state:R running task stack:23512 pid:65 tgid:65 ppid:2 task_flags:0x4208060 flags:0x00004000 [ 1659.370705][ C0] Workqueue: events_unbound cfg80211_wiphy_work [ 1659.378207][ C0] Call Trace: [ 1659.382204][ C0] [ 1659.385742][ C0] __schedule+0x116f/0x5de0 [ 1659.391184][ C0] ? __pfx___schedule+0x10/0x10 [ 1659.397022][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 1659.403484][ C0] preempt_schedule_common+0x44/0xc0 [ 1659.409835][ C0] preempt_schedule_thunk+0x16/0x30 [ 1659.416091][ C0] ? ieee80211_check_fast_xmit+0x393/0x18c0 [ 1659.423160][ C0] __local_bh_enable_ip+0x107/0x120 [ 1659.429404][ C0] ieee80211_check_fast_xmit+0x393/0x18c0 [ 1659.436267][ C0] ? __pfx_ieee80211_check_fast_xmit+0x10/0x10 [ 1659.443671][ C0] ? kfree+0x2b6/0x4d0 [ 1659.448614][ C0] ? sta_info_insert_rcu+0x1440/0x1b70 [ 1659.455207][ C0] ? __pfx_minstrel_ht_add_sta_debugfs+0x10/0x10 [ 1659.462813][ C0] sta_info_insert_rcu+0x14d7/0x1b70 [ 1659.469196][ C0] ieee80211_ibss_finish_sta+0x21f/0x3b0 [ 1659.475953][ C0] ? __pfx_ieee80211_ibss_finish_sta+0x10/0x10 [ 1659.483392][ C0] ? ieee80211_mandatory_rates+0x1ab/0x220 [ 1659.490403][ C0] ? ieee80211_ibss_add_sta+0x2cc/0x730 [ 1659.497075][ C0] ieee80211_ibss_add_sta+0x3a8/0x730 [ 1659.503531][ C0] ieee80211_ibss_rx_queued_mgmt+0x2751/0x2fd0 [ 1659.510933][ C0] ? __pfx_ieee80211_ibss_rx_queued_mgmt+0x10/0x10 [ 1659.518738][ C0] ? __pfx___might_resched+0x10/0x10 [ 1659.525101][ C0] ? kcov_remote_start+0x3c9/0x6d0 [ 1659.531237][ C0] ieee80211_iface_work+0xbf4/0x1020 [ 1659.537583][ C0] ? rcu_is_watching+0x12/0xc0 [ 1659.543317][ C0] cfg80211_wiphy_work+0x3dc/0x550 [ 1659.549466][ C0] process_one_work+0x9cc/0x1b70 [ 1659.555414][ C0] ? __pfx_cfg80211_wiphy_work+0x10/0x10 [ 1659.562172][ C0] ? __pfx_process_one_work+0x10/0x10 [ 1659.568644][ C0] ? assign_work+0x1a0/0x250 [ 1659.574178][ C0] worker_thread+0x6c8/0xf10 [ 1659.579752][ C0] ? __kthread_parkme+0x19e/0x250 [ 1659.585809][ C0] ? __pfx_worker_thread+0x10/0x10 [ 1659.591950][ C0] kthread+0x3c2/0x780 [ 1659.596836][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.602337][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.607839][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.613340][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.618847][ C0] ? rcu_is_watching+0x12/0xc0 [ 1659.624595][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.630111][ C0] ret_from_fork+0x45/0x80 [ 1659.635427][ C0] ? __pfx_kthread+0x10/0x10 [ 1659.640940][ C0] ret_from_fork_asm+0x1a/0x30 [ 1659.646694][ C0] [ 1659.650308][ C0] task:syz-executor state:R running task stack:25672 pid:23207 tgid:23207 ppid:5826 task_flags:0x40050c flags:0x00004004 [ 1659.666526][ C0] Call Trace: [ 1659.670456][ C0] [ 1659.673991][ C0] __schedule+0x116f/0x5de0 [ 1659.679416][ C0] ? __pfx___schedule+0x10/0x10 [ 1659.685243][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 1659.691293][ C0] ? find_held_lock+0x2b/0x80 [ 1659.696908][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 1659.703370][ C0] preempt_schedule_common+0x44/0xc0 [ 1659.709742][ C0] preempt_schedule_thunk+0x16/0x30 [ 1659.716061][ C0] _raw_spin_unlock+0x3e/0x50 [ 1659.721782][ C0] unmap_page_range+0xf08/0x4320 [ 1659.727729][ C0] ? __pfx_unmap_page_range+0x10/0x10 [ 1659.734176][ C0] ? mas_next_slot+0x12d3/0x21b0 [ 1659.740109][ C0] ? uprobe_munmap+0x20/0x5c0 [ 1659.745726][ C0] unmap_single_vma+0x194/0x2a0 [ 1659.751568][ C0] unmap_vmas+0x22c/0x490 [ 1659.756821][ C0] ? __pfx_unmap_vmas+0x10/0x10 [ 1659.762667][ C0] ? mas_next_slot+0x12d3/0x21b0 [ 1659.768620][ C0] exit_mmap+0x1b9/0xb90 [ 1659.773720][ C0] ? __pfx_exit_mmap+0x10/0x10 [ 1659.779463][ C0] ? __lock_acquire+0xaa4/0x1ba0 [ 1659.785401][ C0] __mmput+0x12a/0x410 [ 1659.790293][ C0] mmput+0x62/0x70 [ 1659.794795][ C0] do_exit+0x9d1/0x2c30 [ 1659.799805][ C0] ? find_held_lock+0x2b/0x80 [ 1659.805434][ C0] ? __pfx_do_exit+0x10/0x10 [ 1659.810955][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 1659.817011][ C0] ? find_held_lock+0x2b/0x80 [ 1659.822641][ C0] do_group_exit+0xd3/0x2a0 [ 1659.828046][ C0] get_signal+0x2673/0x26d0 [ 1659.833486][ C0] ? __pfx_get_signal+0x10/0x10 [ 1659.839313][ C0] ? __do_sys_wait4+0xd1/0x170 [ 1659.845028][ C0] arch_do_signal_or_restart+0x8f/0x7d0 [ 1659.851696][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 1659.859107][ C0] syscall_exit_to_user_mode+0x150/0x2a0 [ 1659.865880][ C0] do_syscall_64+0xda/0x260 [ 1659.871310][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1659.878379][ C0] RIP: 0033:0x7f17c4f83393 [ 1659.883670][ C0] RSP: 002b:00007ffc38d92dc8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d [ 1659.893795][ C0] RAX: fffffffffffffe00 RBX: 0000000000005abe RCX: 00007f17c4f83393 [ 1659.903355][ C0] RDX: 0000000040000000 RSI: 00007ffc38d92ddc RDI: 00000000ffffffff [ 1659.912911][ C0] RBP: 00007ffc38d92ddc R08: 0000000000000000 R09: 0000000000000000 [ 1659.922478][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008 [ 1659.932036][ C0] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 1659.941608][ C0] [ 1659.945220][ C0] task:syz.3.5770 state:R running task stack:25672 pid:26750 tgid:26750 ppid:23463 task_flags:0x400040 flags:0x00004006 [ 1659.961427][ C0] Call Trace: [ 1659.965361][ C0] [ 1659.968882][ C0] __schedule+0x116f/0x5de0 [ 1659.974286][ C0] ? finish_task_switch.isra.0+0x89b/0xc10 [ 1659.981271][ C0] ? __pfx___schedule+0x10/0x10 [ 1659.987109][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 1659.993550][ C0] preempt_schedule_common+0x44/0xc0 [ 1659.999895][ C0] preempt_schedule_thunk+0x16/0x30 [ 1660.006134][ C0] ? nl80211_netlink_notify+0x61c/0x970 [ 1660.012809][ C0] __local_bh_enable_ip+0x107/0x120 [ 1660.019057][ C0] nl80211_netlink_notify+0x61c/0x970 [ 1660.025535][ C0] notifier_call_chain+0xb9/0x410 [ 1660.031569][ C0] ? __pfx_nl80211_netlink_notify+0x10/0x10 [ 1660.038678][ C0] blocking_notifier_call_chain+0x69/0xa0 [ 1660.045567][ C0] netlink_release+0x186b/0x2020 [ 1660.051501][ C0] ? netlink_release+0x1de/0x2020 [ 1660.057537][ C0] ? __pfx_netlink_release+0x10/0x10 [ 1660.063890][ C0] ? __pfx_locks_remove_file+0x10/0x10 [ 1660.070477][ C0] __sock_release+0xb0/0x270 [ 1660.075991][ C0] ? __pfx_sock_close+0x10/0x10 [ 1660.081816][ C0] sock_close+0x1c/0x30 [ 1660.086810][ C0] __fput+0x3ff/0xb70 [ 1660.091593][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 1660.097837][ C0] task_work_run+0x14d/0x240 [ 1660.103373][ C0] ? __pfx_task_work_run+0x10/0x10 [ 1660.109522][ C0] ? __pfx___do_sys_close_range+0x10/0x10 [ 1660.116399][ C0] syscall_exit_to_user_mode+0x27b/0x2a0 [ 1660.123184][ C0] do_syscall_64+0xda/0x260 [ 1660.128600][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1660.135774][ C0] RIP: 0033:0x7f26cd58d169 [ 1660.141085][ C0] RSP: 002b:00007ffd6ff06e58 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 1660.151178][ C0] RAX: 0000000000000000 RBX: 00007f26cd7a7ba0 RCX: 00007f26cd58d169 [ 1660.160737][ C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 1660.170297][ C0] RBP: 00007f26cd7a7ba0 R08: 00000000000359dc R09: 0000001e6ff0714f [ 1660.179860][ C0] R10: 00000000003ca400 R11: 0000000000000246 R12: 0000000000176e13 [ 1660.189417][ C0] R13: 00007ffd6ff06f50 R14: ffffffffffffffff R15: 00007ffd6ff06f70 [ 1660.198994][ C0] [ 1660.202628][ C0] task:klogd state:R running task stack:24664 pid:5199 tgid:5199 ppid:1 task_flags:0x400100 flags:0x00000002 [ 1660.218851][ C0] Call Trace: [ 1660.222777][ C0] [ 1660.226298][ C0] __schedule+0x116f/0x5de0 [ 1660.231709][ C0] ? __pfx_tcp_rcv_established+0x10/0x10 [ 1660.238465][ C0] ? ipv4_dst_check+0x1a8/0x3b0 [ 1660.244301][ C0] ? __lock_acquire+0x5ca/0x1ba0 [ 1660.250225][ C0] ? __pfx___schedule+0x10/0x10 [ 1660.256062][ C0] preempt_schedule_irq+0x51/0x90 [ 1660.262112][ C0] irqentry_exit+0x36/0x90 [ 1660.267412][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 1660.274583][ C0] RIP: 0010:lock_acquire+0x62/0x350 [ 1660.280819][ C0] Code: 51 0e 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 72 54 ee 0e 0f 82 74 02 00 00 8b 35 ea 83 ee 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 49 51 0e 12 0f 85 c7 02 00 00 48 83 c4 [ 1660.304358][ C0] RSP: 0018:ffffc900030573f0 EFLAGS: 00000206 [ 1660.311633][ C0] RAX: 0000000000000046 RBX: ffffffff8e3c1580 RCX: 00000000ef9d33e4 [ 1660.321201][ C0] RDX: 0000000000000000 RSI: ffffffff8dbc59c7 RDI: ffffffff8bf451c0 [ 1660.330781][ C0] RBP: 0000000000000002 R08: 0ac0d5affe09d4ff R09: 0000000000000000 [ 1660.340338][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 1660.349905][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1660.359492][ C0] unwind_next_frame+0xd1/0x20a0 [ 1660.365422][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 1660.371555][ C0] ? __unwind_start+0x574/0x7f0 [ 1660.377376][ C0] ? get_stack_info_noinstr+0x18/0x120 [ 1660.383930][ C0] __unwind_start+0x45f/0x7f0 [ 1660.389550][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 1660.396941][ C0] arch_stack_walk+0x73/0x100 [ 1660.402561][ C0] ? __unwind_start+0x574/0x7f0 [ 1660.408397][ C0] stack_trace_save+0x8e/0xc0 [ 1660.414028][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 1660.420484][ C0] kasan_save_stack+0x33/0x60 [ 1660.426146][ C0] kasan_save_track+0x14/0x30 [ 1660.431771][ C0] __kasan_kmalloc+0xaa/0xb0 [ 1660.437290][ C0] __kmalloc_node_track_caller_noprof+0x221/0x510 [ 1660.445001][ C0] ? __alloc_skb+0x166/0x380 [ 1660.450515][ C0] ? trace_kmem_cache_alloc+0x28/0xc0 [ 1660.456992][ C0] kmalloc_reserve+0xef/0x2c0 [ 1660.462635][ C0] __alloc_skb+0x166/0x380 [ 1660.467961][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 1660.473910][ C0] alloc_skb_with_frags+0xe0/0x860 [ 1660.480054][ C0] ? aa_label_sk_perm+0x19b/0x5a0 [ 1660.486089][ C0] sock_alloc_send_pskb+0x7fb/0x990 [ 1660.492346][ C0] ? find_held_lock+0x2b/0x80 [ 1660.497972][ C0] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 1660.504839][ C0] ? rcu_preempt_deferred_qs_irqrestore+0x4f5/0xbc0 [ 1660.512793][ C0] unix_dgram_sendmsg+0x463/0x1910 [ 1660.518980][ C0] ? aa_sk_perm+0x2f4/0xb10 [ 1660.524393][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 1660.531053][ C0] ? __pfx_aa_sk_perm+0x10/0x10 [ 1660.536898][ C0] ? __lock_acquire+0xaa4/0x1ba0 [ 1660.542842][ C0] __sys_sendto+0x495/0x510 [ 1660.548253][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 1660.554283][ C0] ? find_held_lock+0x2b/0x80 [ 1660.559907][ C0] ? rcu_is_watching+0x12/0xc0 [ 1660.565639][ C0] ? xfd_validate_state+0x5d/0x180 [ 1660.571777][ C0] ? rcu_is_watching+0x12/0xc0 [ 1660.577501][ C0] __x64_sys_sendto+0xe0/0x1c0 [ 1660.583218][ C0] ? do_syscall_64+0x91/0x260 [ 1660.588838][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1660.595099][ C0] do_syscall_64+0xcd/0x260 [ 1660.600552][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1660.607640][ C0] RIP: 0033:0x7f138605d9b5 [ 1660.612937][ C0] RSP: 002b:00007ffea9382978 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1660.623054][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f138605d9b5 [ 1660.632621][ C0] RDX: 000000000000005b RSI: 000055c666a4f200 RDI: 0000000000000003 [ 1660.642201][ C0] RBP: 000055c666a47910 R08: 0000000000000000 R09: 0000000000000000 [ 1660.651761][ C0] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 1660.661372][ C0] R13: 00007f13861eb212 R14: 00007ffea9382a78 R15: 0000000000000000 [ 1660.670979][ C0] [ 1660.674612][ C0] rcu: rcu_preempt kthread starved for 565 jiffies! g163057 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 1660.687954][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 1660.699906][ C0] rcu: RCU grace-period kthread stack dump: [ 1660.706959][ C0] task:rcu_preempt state:R running task stack:27608 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00004000 [ 1660.723184][ C0] Call Trace: [ 1660.727137][ C0] [ 1660.730667][ C0] __schedule+0x116f/0x5de0 [ 1660.736093][ C0] ? find_held_lock+0x2b/0x80 [ 1660.741749][ C0] ? __lock_acquire+0x5ca/0x1ba0 [ 1660.747684][ C0] ? __pfx___schedule+0x10/0x10 [ 1660.753514][ C0] ? find_held_lock+0x2b/0x80 [ 1660.759127][ C0] ? schedule+0x2d7/0x3a0 [ 1660.764328][ C0] schedule+0xe7/0x3a0 [ 1660.769211][ C0] schedule_timeout+0x123/0x290 [ 1660.775134][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 1660.781601][ C0] ? __pfx_process_timeout+0x10/0x10 [ 1660.787954][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1660.794946][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 1660.801531][ C0] rcu_gp_fqs_loop+0x1ea/0xb00 [ 1660.807262][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 1660.813626][ C0] ? rcu_gp_cleanup+0x7c1/0xd90 [ 1660.819513][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 1660.826499][ C0] rcu_gp_kthread+0x270/0x380 [ 1660.832111][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 1660.838343][ C0] ? rcu_is_watching+0x12/0xc0 [ 1660.844060][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1660.850303][ C0] ? __kthread_parkme+0x19e/0x250 [ 1660.856344][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 1660.862595][ C0] kthread+0x3c2/0x780 [ 1660.867476][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.872981][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.878485][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.884006][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.889516][ C0] ? rcu_is_watching+0x12/0xc0 [ 1660.895256][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.900781][ C0] ret_from_fork+0x45/0x80 [ 1660.906097][ C0] ? __pfx_kthread+0x10/0x10 [ 1660.911608][ C0] ret_from_fork_asm+0x1a/0x30 [ 1660.917351][ C0] [ 1660.920981][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 1660.928563][ C0] CPU: 0 UID: 0 PID: 3402 Comm: kworker/R-bat_e Not tainted 6.15.0-rc1-syzkaller-00025-gbec7dcbc242c #0 PREEMPT(full) [ 1660.943472][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 1660.955541][ C0] Workqueue: bat_events batadv_tt_purge [ 1660.962224][ C0] RIP: 0010:find_match+0x13a/0x15d0 [ 1660.968469][ C0] Code: 80 3c 02 00 0f 85 ac 11 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 7d 00 49 8d bf c0 00 00 00 48 89 fa 48 c1 ea 03 80 3c 02 00 <0f> 85 93 11 00 00 4d 8b bf c0 00 00 00 e8 64 96 54 01 31 ff 89 c6 [ 1660.992012][ C0] RSP: 0018:ffffc900000073c0 EFLAGS: 00000246 [ 1660.999306][ C0] RAX: dffffc0000000000 RBX: 0000000000000003 RCX: ffffffff8a1b4fbc [ 1661.008886][ C0] RDX: 1ffff1100d20f018 RSI: ffffffff8a1b4fff RDI: ffff8880690780c0 [ 1661.018448][ C0] RBP: ffffc900000074c8 R08: 0000000000000001 R09: 0000000000000000 [ 1661.028008][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880a1ef18cf [ 1661.037567][ C0] R13: ffff8880a1ef18b8 R14: 1ffff92000000e87 R15: ffff888069078000 [ 1661.047149][ C0] FS: 0000000000000000(0000) GS:ffff8881249b9000(0000) knlGS:0000000000000000 [ 1661.057866][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1661.065776][ C0] CR2: 00007ff5ecce0bd0 CR3: 000000007b46c000 CR4: 00000000003526f0 [ 1661.075344][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1661.084907][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1661.094468][ C0] Call Trace: [ 1661.098396][ C0] [ 1661.101809][ C0] ? br_pass_frame_up+0x31f/0x490 [ 1661.107879][ C0] ? __pfx_find_match+0x10/0x10 [ 1661.113737][ C0] ? __lock_acquire+0x5ca/0x1ba0 [ 1661.119672][ C0] __find_rr_leaf+0x140/0xe00 [ 1661.125314][ C0] ? __pfx___find_rr_leaf+0x10/0x10 [ 1661.131569][ C0] ? fib6_node_lookup+0x12d/0x190 [ 1661.137612][ C0] ? __pfx_fib6_node_lookup+0x10/0x10 [ 1661.144088][ C0] ? find_held_lock+0x2b/0x80 [ 1661.149715][ C0] fib6_table_lookup+0x57c/0xa30 [ 1661.155663][ C0] ? __pfx_fib6_table_lookup+0x10/0x10 [ 1661.162236][ C0] ip6_pol_route+0x1cc/0x1230 [ 1661.167862][ C0] ? rt6_multipath_hash+0x1de/0x1840 [ 1661.174214][ C0] ? __pfx_ip6_pol_route+0x10/0x10 [ 1661.180360][ C0] ? __pfx_rt6_multipath_hash+0x10/0x10 [ 1661.187039][ C0] ? __pfx_ip6_pol_route_input+0x10/0x10 [ 1661.193807][ C0] fib6_rule_lookup+0x536/0x720 [ 1661.199640][ C0] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 1661.206097][ C0] ? nf_nat_ipv6_fn+0xff/0x2e0 [ 1661.211813][ C0] ? __pfx_nf_nat_ipv6_fn+0x10/0x10 [ 1661.218051][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 1661.225127][ C0] ip6_route_input+0x662/0xc00 [ 1661.230855][ C0] ? __pfx_ip6_route_input+0x10/0x10 [ 1661.237205][ C0] ? lock_acquire+0x179/0x350 [ 1661.242835][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 1661.249071][ C0] ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0 [ 1661.256470][ C0] ipv6_rcv+0x1e8/0x680 [ 1661.261494][ C0] ? __pfx_ipv6_rcv+0x10/0x10 [ 1661.267113][ C0] __netif_receive_skb_one_core+0x12d/0x1e0 [ 1661.274184][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 1661.281882][ C0] ? lock_acquire+0x179/0x350 [ 1661.287496][ C0] ? process_backlog+0x3f0/0x15e0 [ 1661.293528][ C0] __netif_receive_skb+0x1d/0x160 [ 1661.299557][ C0] process_backlog+0x442/0x15e0 [ 1661.305387][ C0] __napi_poll.constprop.0+0xb7/0x550 [ 1661.311836][ C0] net_rx_action+0xa97/0x1010 [ 1661.317461][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 1661.323599][ C0] ? mark_held_locks+0x49/0x80 [ 1661.329325][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1661.335567][ C0] ? tmigr_handle_remote+0x132/0x380 [ 1661.341919][ C0] ? run_timer_base+0x121/0x190 [ 1661.347766][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 1661.354015][ C0] handle_softirqs+0x216/0x8e0 [ 1661.359741][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 1661.366103][ C0] ? batadv_tt_purge+0x25f/0xb80 [ 1661.372028][ C0] do_softirq+0xb2/0xf0 [ 1661.377055][ C0] [ 1661.380597][ C0] [ 1661.384106][ C0] __local_bh_enable_ip+0x100/0x120 [ 1661.390352][ C0] batadv_tt_purge+0x25f/0xb80 [ 1661.396096][ C0] ? __pfx_batadv_tt_purge+0x10/0x10 [ 1661.402460][ C0] ? rcu_is_watching+0x12/0xc0 [ 1661.408184][ C0] process_one_work+0x9cc/0x1b70 [ 1661.414119][ C0] ? __pfx_process_one_work+0x10/0x10 [ 1661.420571][ C0] ? assign_work+0x1a0/0x250 [ 1661.426099][ C0] rescuer_thread+0x620/0xea0 [ 1661.431733][ C0] ? rcu_is_watching+0x12/0xc0 [ 1661.437454][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 1661.443714][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 1661.449958][ C0] ? __kthread_parkme+0x19e/0x250 [ 1661.456016][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 1661.462280][ C0] kthread+0x3c2/0x780 [ 1661.467180][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.472708][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.478225][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.483727][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.489230][ C0] ? rcu_is_watching+0x12/0xc0 [ 1661.494967][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.500523][ C0] ret_from_fork+0x45/0x80 [ 1661.505828][ C0] ? __pfx_kthread+0x10/0x10 [ 1661.511332][ C0] ret_from_fork_asm+0x1a/0x30 [ 1661.517086][ C0] [ 1661.521711][ C0] net_ratelimit: 5010 callbacks suppressed [ 1661.521729][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1661.543712][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1661.558767][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1661.573706][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1661.589579][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1661.604447][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1661.619201][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1661.634011][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1661.655241][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1661.670170][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1666.526104][ C0] net_ratelimit: 6902 callbacks suppressed [ 1666.526125][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1666.548071][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1666.562991][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1666.577807][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1666.593793][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1666.608667][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1666.623474][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 1666.638284][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1666.654445][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:31:6c:85:eb:8c, vlan:0) [ 1666.669345][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)