last executing test programs: 12.321880236s ago: executing program 2 (id=766): socket(0x11, 0x80003, 0x300) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) epoll_create$auto(0x4) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) r0 = socket(0x11, 0x80003, 0x300) sendfile$auto(0x1, r0, 0x0, 0x8fb5) fcntl$auto(0x0, 0x408, 0x100000) setsockopt$auto_SO_OOBINLINE(0xffffffffffffffff, 0x3, 0xa, &(0x7f0000000080)='nlctrl\x00', 0x2) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/kernel/hung_task_check_interval_secs\x00', 0x88542, 0x0) 9.115509484s ago: executing program 1 (id=776): close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000100)=@task_fd_query={0x2, 0x4, 0x3, 0x2, 0x8, 0xc, 0xe3, 0x400000000a, 0x3}, 0x6f4) inotify_init1$auto(0x3000000000000) landlock_create_ruleset$auto(&(0x7f0000000280)={0x200, 0xf8, 0x412}, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101300, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x4079, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x4004, 0xf, 0x4, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x540b, 0x0) 9.035113692s ago: executing program 2 (id=777): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) openat$auto_sco_debugfs_fops_(0xffffffffffffff9c, 0x0, 0x242, 0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, 0x0, 0x800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) fanotify_init$auto(0x5, 0x2000000000002) open(0x0, 0x0, 0x408) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x30d402, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x73) pipe2$auto(0x0, 0x0) socket(0x2, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x2, 0x14) socketpair$auto(0x1, 0x5, 0x5, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptyu2\x00', 0x101800, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) read$auto(r0, 0x0, 0x2) 8.544039685s ago: executing program 0 (id=778): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_tcp_metrics(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$auto_TCP_METRICS_CMD_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)={0x30, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@TCP_METRICS_ATTR_SADDR_IPV6={0x14, 0xc, @private1={0xfc, 0x1, '\x00', 0x1}}, @TCP_METRICS_ATTR_ADDR_IPV4={0x8, 0x1, @loopback}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004055}, 0x0) pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r3 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc3\xdd\xa7\xee$\xf5\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xe6\x06g\x1a\xfc\xa8\x02\vw\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb5, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x5, 0xa, 0x22000, 0x200, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x56, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x1fe, 0xd) dup3$auto(0x8000000000000001, 0x5, 0x800080000) r4 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r4, 0xfffffffffffffd03, &(0x7f00000001c0)) socket(0x15, 0x5, 0x0) connect$auto(0x3, &(0x7f00000018c0)=@ethernet={0x1, @remote}, 0x8) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/conf/ip6tnl0/bootp_relay\x00', 0x5014c0, 0x0) openat$auto_tracing_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/trace\x00', 0x82000, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, &(0x7f0000000040)={'veth0_macvtap\x00'}) ioctl$auto_TUNSETNOCSUM(r3, 0x400454c8, &(0x7f0000000080)=0x7) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001180), r5) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000040)={0x1c, r6, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x404c091}, 0x40000) 8.460998017s ago: executing program 1 (id=779): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0x10, 0x2, 0x14) socket(0x11, 0x80003, 0x300) socket(0x1d, 0x2, 0x7) socket(0x2, 0x1, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x2, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000000a14af"], 0x14}, 0x1, 0x0, 0x0, 0x80c3}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYRES8=r0], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x2}, 0x3, 0x0) 7.843694012s ago: executing program 2 (id=781): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) socket(0x2c, 0x3, 0x0) socket(0x15, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x10, 0x2, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) socket(0xa, 0x2, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_prog_fd=r0}, 0xa3) bpf$auto(0x2, &(0x7f0000000040)=@query={@target_ifindex, 0xff, 0x7, 0x9, 0x7f, @count=0xfffffff1, 0x0, 0x80000000, 0xc, 0xb, 0x7}, 0x9) 7.392712335s ago: executing program 1 (id=783): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto(0x3, 0xc1485544, 0xb551) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/ptp/ptp0/max_vclocks\x00', 0x103841, 0x0) mmap$auto(0x0, 0x200, 0xdf, 0x49c, 0xffffffffffffffff, 0x7ffd) mmap$auto(0xfffffffffffffffc, 0x400008, 0xdf, 0x14, r0, 0x3) r1 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC1\x00', 0x20400, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000012c0)={{@raw=0x4, 0x1, 0x2, 0x6, "0582a820061b5c51a65a6dd72b0b15addbdf55cb4b0f2381f2673e3a1ebe21e1bf1b26f0db7b620200f764f9"}, 0x0, @integer64=@value_ptr=0x0, "528d458095d42b72adda0cac2d45bdaacf03000000000000008bf00ab57d5d73b094925aa92857fd2f672f85343275f80841c6cac1ba3023ab4510269ed959a79a789527276d90375018fc08050559d8936b8d72087a5689d4338da78b8b8bdcea8133ca43202fb78dacb3fea1258074885c899d75cd52751f9be959d90fa5c2"}) r2 = open(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', 0x101840, 0x33903f3ada88772b) socket(0x15, 0x5, 0x0) setsockopt$auto(0x3, 0x114, 0x7, 0x0, 0x4) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_taskstats(&(0x7f0000000140), r3) sendmsg$auto_TASKSTATS_CMD_GET(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0xec, r4, 0xa01, 0x70bd2b, 0x25dfdbfb, {}, [@TASKSTATS_CMD_ATTR_DEREGISTER_CPUMASK={0xd8, 0x4, 'N,SKSTATS\x00\xda\x04Fq\xa5\xb6X|\xad\x13\x9c, \xa4!\xc9<\xc5!\x9cP\x010\x98+\xc8\x81\x8f}\xd3\x80\xabe\x9d4\xa0\xc1$\xbe\xfa\xce\xd4\x17tw\xc0!\x0e-7\xbcz]\x95;\xdfV\xde\xcb\xcd]=\xaf\x8a\x89\xad'}]}, 0xec}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) read$auto(r2, 0x0, 0x1) unshare$auto(0x4) write$auto(0x3, 0x0, 0xffd8) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084) lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103}) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) 7.078248354s ago: executing program 0 (id=785): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x2, 0x3) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x2, 0x8000) fchdir$auto(r0) r1 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/block2mtd/parameters/block2mtd\x00', 0x601, 0x0) write$auto(r2, &(0x7f0000000040)=',,\x00', 0x8) read$auto(r1, 0x0, 0x4) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) migrate_pages$auto(0x0, 0x74, &(0x7f0000000780)=0x8000000000000001, &(0x7f00000007c0)=0x1) r4 = socket(0xa, 0x5, 0x0) setsockopt$auto(r4, 0x29, 0x2f, 0x0, 0x22) writev$auto(r3, &(0x7f0000000240)={0x0, 0x7}, 0x3) r5 = bpf$auto_BPF_ENABLE_STATS(0x20, 0x0, 0xffff0001) shutdown$auto(r5, 0x4e3c49d1) lseek$auto(r5, 0x6, 0x800) futex$auto(0x0, 0x81, 0x1ffb, 0x0, 0x0, 0xa2) syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') 7.068254644s ago: executing program 2 (id=786): openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/i8042/serio0/scroll\x00', 0x2062, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/fail-nth\x00', 0x802, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/virtual/net/rose8/operstate\x00', 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x88) openat$auto_nsim_psample_enable_fops_psample(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/netdevsim/netdevsim0/psample/enable\x00', 0x101882, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0x10, 0x2, 0x0) socketpair$auto(0xffff7fff, 0x4, 0x80000001, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptyc3\x00', 0x0, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TIOCSETD2(r0, 0x5423, 0x0) 5.973778893s ago: executing program 1 (id=788): r0 = io_uring_setup$auto(0x86, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001280)='/dev/v4l-subdev0\x00', 0x101000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) openat$auto_proc_mem_operations_base(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/mem\x00', 0x402, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x1) mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0x18000) write$auto(0x3, 0x0, 0xffd8) ioctl$auto(r1, 0xc0205647, r0) getsockopt$auto_SO_DOMAIN(r0, 0xfffffff6, 0x27, &(0x7f0000000000)='@}%\x00', &(0x7f0000000040)=0x5) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000280)='/proc/irq/2/smp_affinity_list\x00', 0x48041, 0x0) write$auto(r2, 0x0, 0x6) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) set_mempolicy_home_node$auto(0x0, 0x5, 0x1ff, 0x0) 5.715054012s ago: executing program 2 (id=789): r0 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, 0x0, 0x109001, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) ioctl$auto_IOCTL_VMCI_CTX_SET_CPT_STATE(r0, 0x7b2, 0x0) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x2100, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r2 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20401, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x4604, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r3, 0x0, 0x40800) unshare$auto(0x40000080) r4 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) ioctl$auto_MON_IOCX_MFETCH(r4, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r4, 0xc0109207, &(0x7f0000000100)={0x0, 0x2000004, 0x7}) pread64$auto(r4, 0x0, 0x7ff, 0xd) 5.518264035s ago: executing program 0 (id=791): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0xa00006, 0x400002, 0x40ebe, 0xffffffffffffffff, 0x300000000000) io_uring_setup$auto(0x6, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, 0x0, 0x234e40, 0x3f) r0 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) write$auto(r0, &(0x7f0000000200)='/de\xef\xe7audio1\x00', 0xa3d9) socket(0xa, 0x801, 0x84) socket(0xa, 0x801, 0x106) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$auto(0x3, 0x400caed0, r1) write$auto_proc_mem_operations_base(0xffffffffffffffff, &(0x7f0000001680), 0x0) mmap$auto(0x0, 0x30009, 0x4000000000df, 0x4000eb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) 3.728773331s ago: executing program 0 (id=794): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) open(&(0x7f0000000100)='.\x00', 0x40000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) socket(0x10, 0x2, 0x0) socket(0x2c, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x3, 0x100) socket(0xa, 0x801, 0x84) socket(0x10, 0x2, 0x0) socket(0x10, 0x2, 0x0) socket(0xa, 0x801, 0x84) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x6, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_prog_fd=r0}, 0xa3) bpf$auto(0x1, &(0x7f0000000040)=@query={@target_ifindex, 0xff, 0xffffff01, 0x9, 0x6, @count=0xfffffff1, 0x0, 0x80000000, 0xc, 0x0, 0x7}, 0x9) 2.958784781s ago: executing program 0 (id=795): sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0xb, 0x0) r0 = socket(0x2, 0x5, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000100)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, 0x0, 0x1, 0x0, 0x0, 0x200009}, 0x1}, 0x2, 0x0) close_range$auto(0x0, 0xffffeffe, 0x2) pipe$auto(0x0) unshare$auto(0x40000080) setsockopt$auto(0x3, 0x10000000084, 0x7b, 0x0, 0xd) close_range$auto(0x2, 0xffffffffffffffff, 0x0) 2.869379532s ago: executing program 3 (id=796): close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x23, 0x80805, 0x0) fanotify_init$auto(0x5, 0x2000000000002) io_uring_setup$auto(0x3, 0x0) pipe$auto(0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) epoll_create$auto(0x3e) syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/user\x00') r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket(0x2, 0x3, 0xa) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000", @ANYRES8=r3, @ANYRES8=r1, @ANYRES8=r2], 0x18}, 0x1, 0x2000, 0x0, 0x40010}, 0x80) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) 2.705529058s ago: executing program 3 (id=797): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) write$auto_ocfs2_control_fops_stack_user(r0, &(0x7f0000003900)='\t', 0x1) mmap$auto(0x0, 0x4020009, 0xdc, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) memfd_secret$auto(0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) write$auto(0x3, 0x0, 0xfffffdef) mmap$auto(0x0, 0x8, 0xfffffffffffffffa, 0x13, 0x3, 0x0) select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x3, 0xd, 0x250, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0) r1 = openat$auto_tracing_mark_fops_trace(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/tracing/trace_marker\x00', 0x341, 0x0) write$auto_tracing_mark_fops_trace(r1, 0x0, 0x1f) keyctl$auto(0x13, 0x4, 0x8, 0x204, 0x8) read$auto(0xffffffffffffffff, 0x0, 0x20) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) unshare$auto(0x40000080) r2 = clone$auto(0x9001, 0x81, 0xffffffffffffffff, 0xfffffffffffffffc, 0x5) process_vm_writev$auto(r2, &(0x7f0000000080)={&(0x7f0000000100)="cacfc670350be0406fb8061b176b24514f9ecb004b912f64d4d12f65c32812efd582ecdc7583644a2fbb67f16f7cdf6e9674419be7eea474ef80aab43862277b3a5df408fc8d5b3468ef53815f57cc2f8e5e0f77c999e8aa7839d9521e7ab14ef825434a8e41d669b9adc8e6da56b051735e2e625deb1914dd308bdedf2ccb880df52b25a4359ce47bf28baa6a14b628ff57f3f2358b5acefe4f24e7d36d96609e44ea3f6de9d72c", 0x9}, 0x46, &(0x7f0000000240)={&(0x7f00000001c0)="724950be5021561797b267359c9cb2c8ec413a3cb7cf8ae6a2274782aa061b7b6dffaf2946db9e332c074323d0f7802cfaeb9e45dbdaa222473cb09a", 0x7}, 0x8, 0x3) 2.123785865s ago: executing program 2 (id=798): openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x8402, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) unshare$auto(0x40000080) unshare$auto(0x21) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) openat$auto_kmsg_fops_printk(0xffffffffffffff9c, 0x0, 0x40001, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) r0 = socket(0xa, 0x5, 0x84) sendto$auto(r0, 0x0, 0x401, 0x7f, &(0x7f0000000000)=@generic={0xa, "e2e18340cba8fe8000"}, 0x17) listmount$auto(0x0, 0x0, 0x4, 0x101) init_module$auto(0x0, 0xffff9, 0x0) syz_genetlink_get_family_id$auto_nl80211(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0xa, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS1\x00', 0x0, 0x0) r1 = openat$auto_rng_chrdev_ops_core(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0) read$auto_rng_chrdev_ops_core(r1, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) setgroups$auto(0xe32, 0x0) get_mempolicy$auto(0x0, 0x0, 0x400, 0x0, 0x1) getsockopt$auto(0xffffffffffffffff, 0x40000000029, 0x43, 0xfffffffffffffffe, 0x0) 1.914344938s ago: executing program 1 (id=799): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) userfaultfd$auto(0x1) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) socket(0xa, 0x801, 0x84) socket(0xa, 0x3, 0x73) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1, 0x1, 0x1) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x801, 0x84) socket(0x2, 0x801, 0x106) io_uring_setup$auto(0x6, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) socket(0xa, 0x2, 0x3a) io_uring_setup$auto(0x68, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x4, @old_prog_fd=r0}, 0xa3) bpf$auto(0x3, &(0x7f0000000040)=@query={@target_ifindex, 0x4, 0x7, 0x9, 0x7f, @prog_cnt=0x4, 0x0, 0x80000000, 0xc, 0xb, 0x5}, 0x7) 1.670121609s ago: executing program 3 (id=800): io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x3000, 0x6, 0x8, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x3, 0x29f, 0xfe, 0x7ffffffb, 0x101, 0x800, 0x3}, {0x2000008, 0x1, 0x52, 0x5, 0x2, 0x40, 0x76c5, 0x8, 0x100000000}}) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40401, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0xc0002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x183800, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) socket(0x2, 0x801, 0x106) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptye4\x00', 0x101e81, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/blkio.throttle.write_iops_device\x00', 0x121002, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r0, 0x0, 0xc3) 1.549354502s ago: executing program 3 (id=801): openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/nullb/features\x00', 0x4000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xef1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) syz_genetlink_get_family_id$auto_smc_pnetid(0x0, 0xffffffffffffffff) msync$auto(0x1ffff000, 0x180000000000000, 0x400000004) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r0, 0x0, 0x7, 0x7ff) semctl$auto(0x1ff, 0x2, 0x13, 0x4) socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d) sendmsg$auto_THERMAL_GENL_CMD_THRESHOLD_ADD(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[], 0x2c}}, 0x40040) r2 = syz_clone(0x20a08200, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$auto(0x10, r2, 0x4, 0x8000040006) stat$auto(0x0, &(0x7f0000000100)={0x7, 0x0, 0xea69, 0x9, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001, 0x6, 0x3, 0x803, 0x1, 0xffffffff, 0x8, 0x0, 0x9, 0x6f}) ioctl$auto_EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0) 1.3723657s ago: executing program 0 (id=802): socket(0x2, 0x1, 0x106) ioctl$auto(0xffffffffffffffff, 0xab07, 0xffffffffffffffff) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) sendmsg$auto_NL80211_CMD_SET_COALESCE(0xffffffffffffffff, 0x0, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.0/usb1/bDeviceProtocol\x00', 0x12bc00, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) semctl$auto(0x8, 0x806, 0x13, 0x46) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xc6c43, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) read$auto_stat_fops_per_vm_kvm_main(0xffffffffffffffff, 0x0, 0x0) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0xd0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) read$auto(0xffffffffffffffff, 0x0, 0x1f) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xeffd) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7) 944.442673ms ago: executing program 3 (id=803): close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv6/neigh/ip_vti0/base_reachable_time_ms\x00', 0x202, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000400)='/dev/sequencer2\x00', 0x0, 0x0) epoll_create$auto(0xa223) mmap$auto(0x0, 0x400008, 0xdb, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/virtual/block/nbd4/integrity/read_verify\x00', 0x20a800, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fuse_dev_operations_fuse_i(0xffffffffffffff9c, &(0x7f0000000380)='/dev/cuse\x00', 0x101000, 0x0) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, 0x0, 0x22641, 0x0) open(0x0, 0xcd1e23e41b02d660, 0x154) open(0x0, 0x161342, 0x0) socket(0x2, 0x5, 0x0) socketpair$auto(0x0, 0x3, 0x0, 0x0) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) write$auto(r0, 0x0, 0xc3) 353.080394ms ago: executing program 1 (id=804): socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) close_range$auto(0x2, 0x8, 0x0) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000340), 0x189400, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/cgroup.threads\x00', 0x80302, 0x0) preadv$auto(0x3, &(0x7f0000000040)={0x0, 0x5}, 0x3, 0xf8, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_CREATE_VM(r0, 0xae80, 0x0) mmap$auto(0x0, 0x200004, 0x4000000000e3, 0x40eb2, 0xd, 0x300000000000) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x200000) 0s ago: executing program 3 (id=805): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) r0 = socket(0x29, 0x2, 0x0) select$auto(0x8, &(0x7f0000000340)={[0x7, 0x6, 0xfffc000000000000, 0x6, 0x1, 0x5, 0x8, 0x1ff, 0x9, 0x1, 0x5, 0x81, 0x5, 0x7fff, 0x5]}, 0x0, &(0x7f00000004c0)={[0xe3c6, 0x8, 0x2, 0x8, 0x7, 0x3ff, 0x3, 0xa, 0x0, 0x9, 0x6, 0x1, 0x7a, 0x8, 0x66960ada, 0xffff]}, &(0x7f00000000c0)={0xffffffffffffffff, 0x7}) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'ip6tnl0\x00'}) socket(0x2, 0x1, 0x0) select$auto(0x8, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x0, 0xd, 0x2, 0x948b, 0x3, 0x15f4da0a, 0x1, 0x3, 0x62, 0x80000001, 0x4, 0x6d3f, 0x9, 0x2, 0xfffffffffffffffa]}, 0x0) write$auto(r1, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) r2 = getpid() process_vm_readv$auto(r2, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, &(0x7f0000000180)={&(0x7f0000000140), 0x40000000001243}, 0xa, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x100, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) select$auto(0xa, 0x0, 0x0, &(0x7f0000000200)={[0x8001ff, 0x4, 0xd, 0x8fd6, 0x948d, 0x3, 0x80, 0x3, 0x6, 0x7ffffffffffffffb, 0x7, 0x2, 0xd, 0x9, 0x1, 0xfffffffffffffffe]}, 0x0) write$auto_lockdown_ops_lockdown(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0x7, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80802, 0x0) kernel console output (not intermixed with test programs): ionality. [ 123.934979][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 123.951877][ T5836] Bluetooth: hci2: command tx timeout [ 123.960073][ T5836] Bluetooth: hci1: command tx timeout [ 123.991816][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.017291][ T1144] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.059801][ T1144] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.090103][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 124.109560][ T5836] Bluetooth: hci3: command tx timeout [ 124.129017][ T1144] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.146179][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 124.164962][ T3552] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.180731][ T3552] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.223292][ T1144] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.237395][ T1144] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.282113][ T1144] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.293054][ T1144] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.444052][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.467889][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.518137][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.548122][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.625482][ T5921] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4'. [ 124.637784][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.660685][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.714362][ T1144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.726004][ T1144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.167748][ T5930] syz.1.2 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 125.182350][ T5931] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input5 [ 125.653783][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 125.767042][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 125.949924][ T5836] Bluetooth: hci0: command tx timeout [ 126.031669][ T5836] Bluetooth: hci1: command tx timeout [ 126.037179][ T5836] Bluetooth: hci2: command tx timeout [ 126.189587][ T5836] Bluetooth: hci3: command tx timeout [ 126.270361][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.498361][ T5946] syz.0.10 (5946) used greatest stack depth: 17704 bytes left [ 126.586076][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 126.892296][ T5959] FAULT_INJECTION: forcing a failure. [ 126.892296][ T5959] name failslab, interval 1, probability 0, space 0, times 1 [ 126.905437][ T5959] CPU: 1 UID: 0 PID: 5959 Comm: syz.3.14 Not tainted syzkaller #0 PREEMPT(full) [ 126.905468][ T5959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 126.905486][ T5959] Call Trace: [ 126.905494][ T5959] [ 126.905503][ T5959] dump_stack_lvl+0x16c/0x1f0 [ 126.905541][ T5959] should_fail_ex+0x512/0x640 [ 126.905582][ T5959] should_failslab+0xc2/0x120 [ 126.905616][ T5959] __kmalloc_cache_noprof+0x72/0x780 [ 126.905640][ T5959] ? tipc_dest_push+0x148/0x310 [ 126.905685][ T5959] ? tipc_dest_push+0x148/0x310 [ 126.905717][ T5959] tipc_dest_push+0x148/0x310 [ 126.905753][ T5959] tipc_nametbl_lookup_mcast_sockets+0x2b8/0x500 [ 126.905799][ T5959] tipc_sk_mcast_rcv+0x4e6/0xfa0 [ 126.905822][ T5959] ? __lock_acquire+0xb8a/0x1c90 [ 126.905864][ T5959] ? __pfx_tipc_sk_mcast_rcv+0x10/0x10 [ 126.905887][ T5959] ? __lock_acquire+0x622/0x1c90 [ 126.905936][ T5959] ? find_held_lock+0x2b/0x80 [ 126.905961][ T5959] ? tipc_mcast_xmit+0x6d5/0xfe0 [ 126.905988][ T5959] tipc_mcast_xmit+0x711/0xfe0 [ 126.906008][ T5959] ? __pfx__copy_from_iter+0x10/0x10 [ 126.906043][ T5959] ? __pfx___alloc_skb+0x10/0x10 [ 126.906085][ T5959] ? __pfx_tipc_mcast_xmit+0x10/0x10 [ 126.906107][ T5959] ? __lock_acquire+0x622/0x1c90 [ 126.906168][ T5959] ? tipc_send_group_bcast+0x803/0xa50 [ 126.906200][ T5959] tipc_send_group_bcast+0x803/0xa50 [ 126.906244][ T5959] ? __pfx_tipc_send_group_bcast+0x10/0x10 [ 126.906276][ T5959] ? is_bpf_text_address+0x8a/0x1a0 [ 126.906310][ T5959] ? bpf_ksym_find+0x124/0x1c0 [ 126.906338][ T5959] ? __pfx_woken_wake_function+0x10/0x10 [ 126.906362][ T5959] ? __lock_acquire+0xb8a/0x1c90 [ 126.906402][ T5959] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 126.906428][ T5959] ? lock_acquire+0x179/0x350 [ 126.906459][ T5959] ? find_held_lock+0x2b/0x80 [ 126.906485][ T5959] __tipc_sendmsg+0x4ab/0x19a0 [ 126.906510][ T5959] ? lockdep_hardirqs_on+0x7c/0x110 [ 126.906543][ T5959] ? __pfx___tipc_sendmsg+0x10/0x10 [ 126.906594][ T5959] ? __local_bh_enable_ip+0xa4/0x120 [ 126.906631][ T5959] tipc_sendmsg+0x4f/0x70 [ 126.906658][ T5959] ____sys_sendmsg+0xa98/0xc70 [ 126.906691][ T5959] ? copy_msghdr_from_user+0x10a/0x160 [ 126.906715][ T5959] ? __pfx_____sys_sendmsg+0x10/0x10 [ 126.906747][ T5959] ? preempt_schedule_thunk+0x16/0x30 [ 126.906792][ T5959] ? try_to_wake_up+0xa67/0x1870 [ 126.906820][ T5959] ___sys_sendmsg+0x134/0x1d0 [ 126.906841][ T5959] ? find_held_lock+0x2b/0x80 [ 126.906867][ T5959] ? __pfx____sys_sendmsg+0x10/0x10 [ 126.906888][ T5959] ? __lock_acquire+0x622/0x1c90 [ 126.906959][ T5959] __sys_sendmsg+0x16d/0x220 [ 126.906983][ T5959] ? __pfx___sys_sendmsg+0x10/0x10 [ 126.907006][ T5959] ? __x64_sys_futex+0x1e0/0x4c0 [ 126.907059][ T5959] do_syscall_64+0xcd/0xfa0 [ 126.907090][ T5959] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.907114][ T5959] RIP: 0033:0x7fb17498f749 [ 126.907138][ T5959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 126.907160][ T5959] RSP: 002b:00007fb1758e3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 126.907185][ T5959] RAX: ffffffffffffffda RBX: 00007fb174be5fa0 RCX: 00007fb17498f749 [ 126.907200][ T5959] RDX: 000000000000c800 RSI: 0000000000000000 RDI: 0000000000000003 [ 126.907214][ T5959] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 126.907228][ T5959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.907241][ T5959] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 126.907272][ T5959] [ 127.814787][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 128.695572][ T5978] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 130.300031][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 130.782907][ T6005] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 131.109707][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 131.353091][ T6010] HSR: entered promiscuous mode [ 132.159903][ T6023] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 132.365194][ T6026] FAULT_INJECTION: forcing a failure. [ 132.365194][ T6026] name failslab, interval 1, probability 0, space 0, times 0 [ 132.382225][ T6026] CPU: 0 UID: 0 PID: 6026 Comm: syz.1.32 Not tainted syzkaller #0 PREEMPT(full) [ 132.382272][ T6026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 132.382291][ T6026] Call Trace: [ 132.382301][ T6026] [ 132.382313][ T6026] dump_stack_lvl+0x16c/0x1f0 [ 132.382361][ T6026] should_fail_ex+0x512/0x640 [ 132.382428][ T6026] should_failslab+0xc2/0x120 [ 132.382475][ T6026] __kmalloc_noprof+0xdd/0x880 [ 132.382529][ T6026] ? do_raw_spin_lock+0x12c/0x2b0 [ 132.382581][ T6026] ? sctp_bind_addrs_to_raw+0x12c/0x3e0 [ 132.382626][ T6026] ? sctp_bind_addrs_to_raw+0x12c/0x3e0 [ 132.382660][ T6026] sctp_bind_addrs_to_raw+0x12c/0x3e0 [ 132.382706][ T6026] ? __pfx_sctp_bind_addrs_to_raw+0x10/0x10 [ 132.382762][ T6026] sctp_make_init+0x148/0xdc0 [ 132.382809][ T6026] ? __lock_acquire+0xb8a/0x1c90 [ 132.382854][ T6026] ? __pfx_sctp_make_init+0x10/0x10 [ 132.382891][ T6026] ? kernel_text_address+0x8d/0x100 [ 132.382933][ T6026] ? sctp_sm_lookup_event+0x15b/0x570 [ 132.382969][ T6026] ? __pfx_sctp_sm_lookup_event+0x10/0x10 [ 132.383011][ T6026] sctp_sf_do_prm_asoc+0xbf/0x360 [ 132.383061][ T6026] ? __pfx_sctp_pname+0x10/0x10 [ 132.383095][ T6026] sctp_do_sm+0x181/0x5c80 [ 132.383136][ T6026] ? kasan_save_stack+0x42/0x60 [ 132.383175][ T6026] ? kasan_save_stack+0x33/0x60 [ 132.383211][ T6026] ? kasan_save_track+0x14/0x30 [ 132.383249][ T6026] ? __pfx_sctp_do_sm+0x10/0x10 [ 132.383277][ T6026] ? sctp_sendmsg+0xe99/0x1e00 [ 132.383324][ T6026] ? ____sys_sendmsg+0x973/0xc70 [ 132.383364][ T6026] ? ___sys_sendmsg+0x134/0x1d0 [ 132.383402][ T6026] ? __sys_sendmmsg+0x200/0x420 [ 132.383432][ T6026] ? __x64_sys_sendmmsg+0x9c/0x100 [ 132.383464][ T6026] ? do_syscall_64+0xcd/0xfa0 [ 132.383546][ T6026] ? sk_leave_memory_pressure+0xdd/0x130 [ 132.383593][ T6026] ? __sk_mem_raise_allocated+0x817/0x14b0 [ 132.383639][ T6026] sctp_primitive_ASSOCIATE+0x9c/0xd0 [ 132.383699][ T6026] sctp_sendmsg_to_asoc+0xa32/0x1bd0 [ 132.383745][ T6026] ? sctp_assoc_set_primary+0x177/0x300 [ 132.383791][ T6026] ? sctp_assoc_add_peer+0x252/0x1550 [ 132.383847][ T6026] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 132.383889][ T6026] ? sctp_connect_new_asoc+0x41e/0x770 [ 132.383941][ T6026] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 132.383990][ T6026] ? preempt_schedule_common+0x44/0xc0 [ 132.384031][ T6026] ? preempt_schedule_thunk+0x16/0x30 [ 132.384086][ T6026] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 132.384149][ T6026] sctp_sendmsg+0xe99/0x1e00 [ 132.384211][ T6026] ? __pfx_sctp_sendmsg+0x10/0x10 [ 132.384258][ T6026] ? __pfx___might_resched+0x10/0x10 [ 132.384302][ T6026] ? aa_sk_perm+0x2f4/0xb10 [ 132.384341][ T6026] ? __pfx_aa_sk_perm+0x10/0x10 [ 132.384394][ T6026] ? __pfx_sctp_sendmsg+0x10/0x10 [ 132.384449][ T6026] inet_sendmsg+0x11c/0x140 [ 132.384502][ T6026] ____sys_sendmsg+0x973/0xc70 [ 132.384550][ T6026] ? __pfx_____sys_sendmsg+0x10/0x10 [ 132.384600][ T6026] ? find_held_lock+0x2b/0x80 [ 132.384637][ T6026] ? futex_unqueue+0x133/0x2c0 [ 132.384687][ T6026] ___sys_sendmsg+0x134/0x1d0 [ 132.384723][ T6026] ? __pfx____sys_sendmsg+0x10/0x10 [ 132.384778][ T6026] ? find_held_lock+0x2b/0x80 [ 132.384840][ T6026] __sys_sendmmsg+0x200/0x420 [ 132.384880][ T6026] ? __pfx___sys_sendmmsg+0x10/0x10 [ 132.384928][ T6026] ? __pfx_do_futex+0x10/0x10 [ 132.384998][ T6026] ? xfd_validate_state+0x61/0x180 [ 132.385056][ T6026] __x64_sys_sendmmsg+0x9c/0x100 [ 132.385090][ T6026] ? lockdep_hardirqs_on+0x7c/0x110 [ 132.385132][ T6026] do_syscall_64+0xcd/0xfa0 [ 132.385177][ T6026] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 132.385212][ T6026] RIP: 0033:0x7f696178f749 [ 132.385239][ T6026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 132.385271][ T6026] RSP: 002b:00007f696261d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 132.385303][ T6026] RAX: ffffffffffffffda RBX: 00007f69619e5fa0 RCX: 00007f696178f749 [ 132.385325][ T6026] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000004 [ 132.385346][ T6026] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 0000000000000000 [ 132.385366][ T6026] R10: 0000000000000311 R11: 0000000000000246 R12: 0000000000000000 [ 132.385394][ T6026] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 132.385440][ T6026] [ 133.204920][ T6020] netlink: 8 bytes leftover after parsing attributes in process `syz.3.30'. [ 134.106484][ T6042] syz.2.37 uses obsolete (PF_INET,SOCK_PACKET) [ 134.172692][ T5883] smpboot: CPU 1 is now offline [ 135.330731][ T6059] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 138.102550][ T6092] Unable to find swap-space signature [ 139.081817][ T6100] netlink: 25 bytes leftover after parsing attributes in process `syz.2.55'. [ 144.452059][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 144.458893][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 145.457790][ T6153] Invalid ELF header magic: != ELF [ 145.897009][ T6150] delete_channel: no stack [ 147.050144][ T6178] netlink: 25 bytes leftover after parsing attributes in process `syz.1.81'. [ 147.310353][ T6181] netlink: 25 bytes leftover after parsing attributes in process `syz.2.82'. [ 155.839440][ T6282] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 155.874159][ T5836] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 155.880644][ T5839] Bluetooth: hci4: command 0x1003 tx timeout [ 156.503196][ T6290] Zero length message leads to an empty skb [ 157.700650][ T6304] device-mapper: ioctl: Unable to rename non-existent device, to uuid „ [ 158.498277][ T6307] netlink: 25 bytes leftover after parsing attributes in process `syz.2.119'. [ 164.973323][ T6372] netlink: 4 bytes leftover after parsing attributes in process `syz.0.140'. [ 167.906061][ T6392] netlink: 4 bytes leftover after parsing attributes in process `syz.1.146'. [ 168.019643][ T6393] netlink: 354 bytes leftover after parsing attributes in process `syz.1.146'. [ 169.162738][ T6395] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 170.628442][ T6407] binder: 6401:6407 ioctl c0306201 200000000000 returned -11 [ 170.686597][ T6404] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 170.732936][ T6404] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 170.963565][ T6404] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 171.399481][ T6404] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 171.509659][ T6404] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 171.881430][ T6404] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 172.181198][ T6404] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 172.309349][ T6404] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 172.639740][ T6404] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 172.749326][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 172.840370][ T6404] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 172.974928][ T6404] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 173.352586][ T6404] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 173.470581][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 174.269832][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 174.829431][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 174.909239][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 175.551697][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 175.970855][ T6453] netlink: 504 bytes leftover after parsing attributes in process `syz.2.159'. [ 176.349296][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 176.909343][ T5836] Bluetooth: hci0: command 0x0c1a tx timeout [ 176.990049][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 177.629425][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 178.439300][ T5836] Bluetooth: hci2: command 0x0c1a tx timeout [ 178.797207][ T6486] FAULT_INJECTION: forcing a failure. [ 178.797207][ T6486] name failslab, interval 1, probability 0, space 0, times 0 [ 178.889383][ T6486] CPU: 0 UID: 0 PID: 6486 Comm: syz.2.164 Not tainted syzkaller #0 PREEMPT(full) [ 178.889416][ T6486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 178.889431][ T6486] Call Trace: [ 178.889439][ T6486] [ 178.889447][ T6486] dump_stack_lvl+0x16c/0x1f0 [ 178.889482][ T6486] should_fail_ex+0x512/0x640 [ 178.889519][ T6486] ? __kmalloc_noprof+0xca/0x880 [ 178.889562][ T6486] should_failslab+0xc2/0x120 [ 178.889636][ T6486] __kmalloc_noprof+0xdd/0x880 [ 178.889673][ T6486] ? lockdep_init_map_type+0x5c/0x280 [ 178.889709][ T6486] ? xfrm_hash_alloc+0xd1/0x100 [ 178.889746][ T6486] ? __pfx_xfrm_net_init+0x10/0x10 [ 178.889783][ T6486] ? xfrm_hash_alloc+0xd1/0x100 [ 178.889817][ T6486] xfrm_hash_alloc+0xd1/0x100 [ 178.889852][ T6486] xfrm_net_init+0x244/0xcc0 [ 178.889895][ T6486] ? __pfx_xfrm_net_init+0x10/0x10 [ 178.889938][ T6486] ops_init+0x1e2/0x5f0 [ 178.889967][ T6486] setup_net+0x100/0x390 [ 178.889993][ T6486] ? __pfx_setup_net+0x10/0x10 [ 178.890022][ T6486] ? debug_mutex_init+0x37/0x70 [ 178.890053][ T6486] copy_net_ns+0x2f8/0x690 [ 178.890084][ T6486] create_new_namespaces+0x3ea/0xa90 [ 178.890118][ T6486] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 178.890148][ T6486] ksys_unshare+0x45b/0xa40 [ 178.890180][ T6486] ? __pfx_ksys_unshare+0x10/0x10 [ 178.890213][ T6486] ? xfd_validate_state+0x61/0x180 [ 178.890256][ T6486] __x64_sys_unshare+0x31/0x40 [ 178.890287][ T6486] do_syscall_64+0xcd/0xfa0 [ 178.890318][ T6486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 178.890342][ T6486] RIP: 0033:0x7f405538f749 [ 178.890375][ T6486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 178.890397][ T6486] RSP: 002b:00007f40562e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 178.890419][ T6486] RAX: ffffffffffffffda RBX: 00007f40555e5fa0 RCX: 00007f405538f749 [ 178.890434][ T6486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 178.890447][ T6486] RBP: 00007f4055413f91 R08: 0000000000000000 R09: 0000000000000000 [ 178.890460][ T6486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 178.890473][ T6486] R13: 00007f40555e6038 R14: 00007f40555e5fa0 R15: 00007fffc68a7ce8 [ 178.890504][ T6486] [ 179.535658][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 180.879639][ T6499] mmap: syz.2.167 (6499) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 181.600599][ T6507] FAULT_INJECTION: forcing a failure. [ 181.600599][ T6507] name failslab, interval 1, probability 0, space 0, times 0 [ 181.721862][ T6510] vivid-007: ================= START STATUS ================= [ 181.759239][ T6507] CPU: 0 UID: 0 PID: 6507 Comm: syz.0.168 Not tainted syzkaller #0 PREEMPT(full) [ 181.759272][ T6507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 181.759286][ T6507] Call Trace: [ 181.759293][ T6507] [ 181.759306][ T6507] dump_stack_lvl+0x16c/0x1f0 [ 181.759339][ T6507] should_fail_ex+0x512/0x640 [ 181.759379][ T6507] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 181.759418][ T6507] should_failslab+0xc2/0x120 [ 181.759451][ T6507] __kvmalloc_node_noprof+0x141/0x9c0 [ 181.759482][ T6507] ? alloc_fdtable+0x110/0x2d0 [ 181.759510][ T6507] ? alloc_fdtable+0x110/0x2d0 [ 181.759530][ T6507] alloc_fdtable+0x110/0x2d0 [ 181.759553][ T6507] dup_fd+0x83b/0xb90 [ 181.759581][ T6507] ? apparmor_task_alloc+0x2c2/0x3b0 [ 181.759620][ T6507] copy_process+0x2312/0x76a0 [ 181.759650][ T6507] ? __pfx___futex_wait+0x10/0x10 [ 181.759670][ T6507] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 181.759708][ T6507] ? __pfx_copy_process+0x10/0x10 [ 181.759736][ T6507] ? find_held_lock+0x2b/0x80 [ 181.759765][ T6507] ? futex_private_hash_put+0xd5/0x190 [ 181.759800][ T6507] kernel_clone+0xfc/0x930 [ 181.759831][ T6507] ? __pfx_kernel_clone+0x10/0x10 [ 181.759878][ T6507] __do_sys_clone+0xce/0x120 [ 181.759907][ T6507] ? __pfx___do_sys_clone+0x10/0x10 [ 181.759950][ T6507] ? xfd_validate_state+0x61/0x180 [ 181.759994][ T6507] do_syscall_64+0xcd/0xfa0 [ 181.760025][ T6507] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 181.760048][ T6507] RIP: 0033:0x7f933178f749 [ 181.760066][ T6507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 181.760088][ T6507] RSP: 002b:00007f93325fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 181.760110][ T6507] RAX: ffffffffffffffda RBX: 00007f93319e5fa0 RCX: 00007f933178f749 [ 181.760125][ T6507] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 0000000000000001 [ 181.760139][ T6507] RBP: 00007f9331813f91 R08: 0000000000000000 R09: 0000000000000000 [ 181.760153][ T6507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 181.760166][ T6507] R13: 00007f93319e6038 R14: 00007f93319e5fa0 R15: 00007ffdb2175a78 [ 181.760197][ T6507] [ 183.291311][ T6510] vivid-007: Generate PTS: true [ 183.317538][ T6510] vivid-007: Generate SCR: true [ 183.401419][ T6510] tpg source WxH: 320x240 (Y'CbCr) [ 183.406945][ T6510] tpg field: 1 [ 183.456417][ T6510] tpg crop: (0,0)/320x240 [ 183.479895][ T6510] tpg compose: (0,0)/320x240 [ 183.519241][ T6510] tpg colorspace: 8 [ 183.553141][ T6510] tpg transfer function: 0/0 [ 183.558005][ T6510] tpg Y'CbCr encoding: 0/0 [ 183.624824][ T6510] tpg quantization: 0/0 [ 183.629053][ T6510] tpg RGB range: 0/2 [ 183.673470][ T6510] vivid-007: ================== END STATUS ================== [ 183.900993][ T6532] capability: warning: `syz.0.173' uses 32-bit capabilities (legacy support in use) [ 184.710035][ T6546] netlink: 17 bytes leftover after parsing attributes in process `syz.2.177'. [ 185.708387][ T6560] Invalid ELF header magic: != ELF [ 186.666498][ T6572] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 186.812239][ T6577] FAULT_INJECTION: forcing a failure. [ 186.812239][ T6577] name failslab, interval 1, probability 0, space 0, times 0 [ 186.839717][ T6572] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 186.848287][ T6572] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 186.983393][ T6577] CPU: 0 UID: 0 PID: 6577 Comm: syz.0.182 Not tainted syzkaller #0 PREEMPT(full) [ 186.983427][ T6577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 186.983441][ T6577] Call Trace: [ 186.983448][ T6577] [ 186.983457][ T6577] dump_stack_lvl+0x16c/0x1f0 [ 186.983491][ T6577] should_fail_ex+0x512/0x640 [ 186.983528][ T6577] ? __kmalloc_noprof+0xca/0x880 [ 186.983571][ T6577] should_failslab+0xc2/0x120 [ 186.983604][ T6577] __kmalloc_noprof+0xdd/0x880 [ 186.983640][ T6577] ? lockdep_init_map_type+0x5c/0x280 [ 186.983675][ T6577] ? xfrm_hash_alloc+0xd1/0x100 [ 186.983716][ T6577] ? xfrm_hash_alloc+0xd1/0x100 [ 186.983750][ T6577] xfrm_hash_alloc+0xd1/0x100 [ 186.983785][ T6577] xfrm_net_init+0x35f/0xcc0 [ 186.983829][ T6577] ? __pfx_xfrm_net_init+0x10/0x10 [ 186.983869][ T6577] ops_init+0x1e2/0x5f0 [ 186.983898][ T6577] setup_net+0x100/0x390 [ 186.983926][ T6577] ? __pfx_setup_net+0x10/0x10 [ 186.983953][ T6577] ? debug_mutex_init+0x37/0x70 [ 186.983981][ T6577] copy_net_ns+0x2f8/0x690 [ 186.984013][ T6577] create_new_namespaces+0x3ea/0xa90 [ 186.984048][ T6577] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 186.984078][ T6577] ksys_unshare+0x45b/0xa40 [ 186.984110][ T6577] ? __pfx_ksys_unshare+0x10/0x10 [ 186.984143][ T6577] ? xfd_validate_state+0x61/0x180 [ 186.984195][ T6577] __x64_sys_unshare+0x31/0x40 [ 186.984226][ T6577] do_syscall_64+0xcd/0xfa0 [ 186.984259][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.984282][ T6577] RIP: 0033:0x7f933178f749 [ 186.984301][ T6577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 186.984323][ T6577] RSP: 002b:00007f93325fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 186.984344][ T6577] RAX: ffffffffffffffda RBX: 00007f93319e5fa0 RCX: 00007f933178f749 [ 186.984359][ T6577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 186.984372][ T6577] RBP: 00007f9331813f91 R08: 0000000000000000 R09: 0000000000000000 [ 186.984386][ T6577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 186.984399][ T6577] R13: 00007f93319e6038 R14: 00007f93319e5fa0 R15: 00007ffdb2175a78 [ 186.984433][ T6577] [ 187.568264][ T6572] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 188.591165][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 188.911901][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 188.919758][ T5836] Bluetooth: hci1: command 0x0c1a tx timeout [ 189.724297][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 190.817075][ T6617] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 191.602905][ T6618] syz.0.189 (6618): drop_caches: 0 [ 192.668274][ T6617] kexec: Could not allocate control_code_buffer [ 195.469988][ T5836] Bluetooth: hci4: command 0xfc11 tx timeout [ 195.476500][ T5839] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 198.109489][ T6661] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 198.148115][ T6661] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 198.198820][ T6661] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 198.219600][ T6661] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 198.673733][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 200.189208][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 200.269752][ T5839] Bluetooth: hci3: command 0x0c1a tx timeout [ 200.276221][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 200.656083][ T6699] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 201.234454][ T6699] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 201.729282][ T6710] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 204.299059][ T6723] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 204.341599][ T6723] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 204.385938][ T6723] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 204.437582][ T6723] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 204.810416][ T6740] netlink: 4 bytes leftover after parsing attributes in process `syz.1.219'. [ 204.902716][ T6740] netlink: 5 bytes leftover after parsing attributes in process `syz.1.219'. [ 205.069215][ T5839] Bluetooth: hci0: command 0x0c1a tx timeout [ 205.650658][ T6756] FAULT_INJECTION: forcing a failure. [ 205.650658][ T6756] name failslab, interval 1, probability 0, space 0, times 0 [ 205.767872][ T6756] CPU: 0 UID: 0 PID: 6756 Comm: syz.0.225 Not tainted syzkaller #0 PREEMPT(full) [ 205.767906][ T6756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 205.767920][ T6756] Call Trace: [ 205.767928][ T6756] [ 205.767936][ T6756] dump_stack_lvl+0x16c/0x1f0 [ 205.767970][ T6756] should_fail_ex+0x512/0x640 [ 205.768007][ T6756] ? fs_reclaim_acquire+0xae/0x150 [ 205.768043][ T6756] should_failslab+0xc2/0x120 [ 205.768077][ T6756] __kmalloc_noprof+0xdd/0x880 [ 205.768115][ T6756] ? mempool_init_node+0x11b/0x6e0 [ 205.768144][ T6756] ? mempool_init_node+0x2f7/0x6e0 [ 205.768178][ T6756] ? __pfx_mempool_kmalloc+0x10/0x10 [ 205.768205][ T6756] ? mempool_init_node+0x2f7/0x6e0 [ 205.768233][ T6756] ? __pfx_mempool_kmalloc+0x10/0x10 [ 205.768259][ T6756] mempool_init_node+0x2f7/0x6e0 [ 205.768298][ T6756] ? __pfx_mempool_kmalloc+0x10/0x10 [ 205.768325][ T6756] ? __pfx_mempool_kfree+0x10/0x10 [ 205.768353][ T6756] mempool_init_noprof+0x3a/0x50 [ 205.768392][ T6756] do_fanotify_mark+0x2e65/0x39d0 [ 205.768444][ T6756] ? __pfx_do_fanotify_mark+0x10/0x10 [ 205.768486][ T6756] ? __x64_sys_futex+0x1e9/0x4c0 [ 205.768525][ T6756] ? xfd_validate_state+0x61/0x180 [ 205.768558][ T6756] ? __pfx_ksys_write+0x10/0x10 [ 205.768589][ T6756] __x64_sys_fanotify_mark+0xbd/0x160 [ 205.768627][ T6756] ? do_syscall_64+0x91/0xfa0 [ 205.768655][ T6756] ? lockdep_hardirqs_on+0x7c/0x110 [ 205.768685][ T6756] do_syscall_64+0xcd/0xfa0 [ 205.768716][ T6756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.768739][ T6756] RIP: 0033:0x7f933178f749 [ 205.768757][ T6756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 205.768780][ T6756] RSP: 002b:00007f93325db038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 205.768802][ T6756] RAX: ffffffffffffffda RBX: 00007f93319e6090 RCX: 00007f933178f749 [ 205.768817][ T6756] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 205.768830][ T6756] RBP: 00007f9331813f91 R08: 0000000000000000 R09: 0000000000000000 [ 205.768844][ T6756] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 205.768857][ T6756] R13: 00007f93319e6128 R14: 00007f93319e6090 R15: 00007ffdb2175a78 [ 205.768888][ T6756] [ 206.439893][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 206.446236][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 206.455878][ T5839] Bluetooth: hci1: command 0x0c1a tx timeout [ 206.464589][ T5839] Bluetooth: hci2: command 0x0c1a tx timeout [ 206.559349][ T5836] Bluetooth: hci3: command 0x0c1a tx timeout [ 206.659749][ T6753] kexec: Could not allocate control_code_buffer [ 208.088931][ T6774] netlink: 'syz.0.231': attribute type 2 has an invalid length. [ 208.169292][ T6774] netlink: 'syz.0.231': attribute type 3 has an invalid length. [ 208.177230][ T6774] netlink: 'syz.0.231': attribute type 2 has an invalid length. [ 208.259845][ T6774] netlink: 'syz.0.231': attribute type 3 has an invalid length. [ 208.304929][ T6774] netlink: 30 bytes leftover after parsing attributes in process `syz.0.231'. [ 211.417818][ T5836] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18 [ 214.529823][ T6855] netlink: 4 bytes leftover after parsing attributes in process `syz.2.249'. [ 215.057555][ T6861] queue_state_write: operation too long [ 215.111284][ T6861] queue_state_write: use 'run', 'start' or 'kick' [ 215.196381][ T6861] process 'syz.0.254' launched ':,' with NULL argv: empty string added [ 217.327651][ T5836] Bluetooth: hci0: unexpected event 0x35 length: 13 > 6 [ 217.357095][ T6892] netlink: 11 bytes leftover after parsing attributes in process `syz.3.261'. [ 218.979999][ T6912] netlink: 338 bytes leftover after parsing attributes in process `syz.3.267'. [ 219.031517][ T6912] macsec0: entered promiscuous mode [ 219.037228][ T6912] macsec0: entered allmulticast mode [ 219.081676][ T6912] veth1_macvtap: entered allmulticast mode [ 220.237613][ T6923] FAULT_INJECTION: forcing a failure. [ 220.237613][ T6923] name failslab, interval 1, probability 0, space 0, times 0 [ 220.569232][ T6923] CPU: 0 UID: 0 PID: 6923 Comm: syz.1.269 Not tainted syzkaller #0 PREEMPT(full) [ 220.569265][ T6923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 220.569279][ T6923] Call Trace: [ 220.569286][ T6923] [ 220.569295][ T6923] dump_stack_lvl+0x16c/0x1f0 [ 220.569328][ T6923] should_fail_ex+0x512/0x640 [ 220.569364][ T6923] ? fs_reclaim_acquire+0xae/0x150 [ 220.569405][ T6923] should_failslab+0xc2/0x120 [ 220.569438][ T6923] __kmalloc_noprof+0xdd/0x880 [ 220.569478][ T6923] ? mempool_init_node+0x2f7/0x6e0 [ 220.569513][ T6923] ? __pfx_mempool_kmalloc+0x10/0x10 [ 220.569540][ T6923] ? mempool_init_node+0x2f7/0x6e0 [ 220.569567][ T6923] ? __pfx_mempool_kmalloc+0x10/0x10 [ 220.569594][ T6923] mempool_init_node+0x2f7/0x6e0 [ 220.569629][ T6923] ? __pfx_mempool_kmalloc+0x10/0x10 [ 220.569656][ T6923] ? __pfx_mempool_kfree+0x10/0x10 [ 220.569683][ T6923] mempool_init_noprof+0x3a/0x50 [ 220.569716][ T6923] do_fanotify_mark+0x2e65/0x39d0 [ 220.569769][ T6923] ? __pfx_do_fanotify_mark+0x10/0x10 [ 220.569810][ T6923] ? __x64_sys_futex+0x1e9/0x4c0 [ 220.569849][ T6923] ? xfd_validate_state+0x61/0x180 [ 220.569882][ T6923] ? __pfx_ksys_write+0x10/0x10 [ 220.569913][ T6923] __x64_sys_fanotify_mark+0xbd/0x160 [ 220.569956][ T6923] ? do_syscall_64+0x91/0xfa0 [ 220.569985][ T6923] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.570014][ T6923] do_syscall_64+0xcd/0xfa0 [ 220.570045][ T6923] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.570069][ T6923] RIP: 0033:0x7f696178f749 [ 220.570088][ T6923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.570110][ T6923] RSP: 002b:00007f69625fc038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d [ 220.570132][ T6923] RAX: ffffffffffffffda RBX: 00007f69619e6090 RCX: 00007f696178f749 [ 220.570146][ T6923] RDX: 0000000000008009 RSI: 0000000000000105 RDI: 0000000000000000 [ 220.570160][ T6923] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 0000000000000000 [ 220.570173][ T6923] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 220.570186][ T6923] R13: 00007f69619e6128 R14: 00007f69619e6090 R15: 00007ffd94838008 [ 220.570217][ T6923] [ 221.461711][ T6936] FAULT_INJECTION: forcing a failure. [ 221.461711][ T6936] name failslab, interval 1, probability 0, space 0, times 0 [ 221.509221][ T6936] CPU: 0 UID: 0 PID: 6936 Comm: syz.3.273 Not tainted syzkaller #0 PREEMPT(full) [ 221.509254][ T6936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 221.509269][ T6936] Call Trace: [ 221.509276][ T6936] [ 221.509285][ T6936] dump_stack_lvl+0x16c/0x1f0 [ 221.509319][ T6936] should_fail_ex+0x512/0x640 [ 221.509355][ T6936] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 221.509385][ T6936] should_failslab+0xc2/0x120 [ 221.509420][ T6936] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 221.509447][ T6936] ? proc_alloc_inode+0x25/0x200 [ 221.509484][ T6936] ? __pfx_proc_alloc_inode+0x10/0x10 [ 221.509514][ T6936] ? proc_alloc_inode+0x25/0x200 [ 221.509543][ T6936] proc_alloc_inode+0x25/0x200 [ 221.509573][ T6936] alloc_inode+0x64/0x240 [ 221.509613][ T6936] new_inode+0x22/0x1c0 [ 221.509648][ T6936] proc_sys_make_inode+0x47/0x5c0 [ 221.509685][ T6936] proc_sys_lookup+0x273/0x400 [ 221.509720][ T6936] ? __pfx_proc_sys_lookup+0x10/0x10 [ 221.509755][ T6936] ? do_raw_spin_unlock+0x172/0x230 [ 221.509777][ T6936] ? _raw_spin_unlock+0x28/0x50 [ 221.509802][ T6936] ? proc_sys_permission+0x149/0x1a0 [ 221.509836][ T6936] ? inode_permission+0x156/0x630 [ 221.509872][ T6936] ? __pfx_proc_sys_lookup+0x10/0x10 [ 221.509904][ T6936] lookup_open.isra.0+0x4da/0x1580 [ 221.509950][ T6936] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 221.509994][ T6936] ? find_held_lock+0x2b/0x80 [ 221.510030][ T6936] ? __pfx_down_write+0x10/0x10 [ 221.510072][ T6936] path_openat+0x893/0x2cb0 [ 221.510107][ T6936] ? __pfx_path_openat+0x10/0x10 [ 221.510135][ T6936] ? __lock_acquire+0xb8a/0x1c90 [ 221.510172][ T6936] do_filp_open+0x20b/0x470 [ 221.510199][ T6936] ? __pfx_do_filp_open+0x10/0x10 [ 221.510248][ T6936] ? alloc_fd+0x471/0x7d0 [ 221.510279][ T6936] do_sys_openat2+0x11b/0x1d0 [ 221.510315][ T6936] ? __pfx_do_sys_openat2+0x10/0x10 [ 221.510362][ T6936] __x64_sys_openat+0x174/0x210 [ 221.510399][ T6936] ? __pfx___x64_sys_openat+0x10/0x10 [ 221.510447][ T6936] do_syscall_64+0xcd/0xfa0 [ 221.510479][ T6936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.510503][ T6936] RIP: 0033:0x7fb17498f749 [ 221.510521][ T6936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.510543][ T6936] RSP: 002b:00007fb1758c2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 221.510565][ T6936] RAX: ffffffffffffffda RBX: 00007fb174be6090 RCX: 00007fb17498f749 [ 221.510580][ T6936] RDX: 0000000000103142 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 221.510594][ T6936] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 221.510613][ T6936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.510627][ T6936] R13: 00007fb174be6128 R14: 00007fb174be6090 R15: 00007ffc78a79cc8 [ 221.510659][ T6936] [ 223.651631][ T6922] kexec: Could not allocate control_code_buffer [ 224.490099][ T6943] netlink: 338 bytes leftover after parsing attributes in process `syz.3.275'. [ 224.520255][ T6944] netlink: 338 bytes leftover after parsing attributes in process `syz.3.275'. [ 226.613950][ T6966] sp0: Synchronizing with TNC [ 227.436217][ T6974] blktrace: Concurrent blktraces are not allowed on nullb0 [ 229.470095][ T6993] netlink: 342 bytes leftover after parsing attributes in process `syz.3.289'. [ 229.573806][ T6997] ima: policy update failed [ 229.587405][ T30] audit: type=1802 audit(4294967381.610:2): pid=6997 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.0.291" res=0 errno=0 [ 229.658001][ T6997] netlink: 25 bytes leftover after parsing attributes in process `syz.0.291'. [ 230.172891][ T6986] FAULT_INJECTION: forcing a failure. [ 230.172891][ T6986] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 230.280728][ T6984] ICMPv6: process `syz.2.287' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead [ 230.297354][ T7002] netlink: 25 bytes leftover after parsing attributes in process `syz.3.293'. [ 230.659447][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.2.287 Not tainted syzkaller #0 PREEMPT(full) [ 230.659483][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 230.659497][ T6986] Call Trace: [ 230.659505][ T6986] [ 230.659514][ T6986] dump_stack_lvl+0x16c/0x1f0 [ 230.659549][ T6986] should_fail_ex+0x512/0x640 [ 230.659592][ T6986] should_fail_alloc_page+0xe7/0x130 [ 230.659628][ T6986] prepare_alloc_pages+0x3c2/0x610 [ 230.659665][ T6986] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 230.659692][ T6986] ? stack_trace_save+0x8e/0xc0 [ 230.659720][ T6986] ? __pfx_stack_trace_save+0x10/0x10 [ 230.659746][ T6986] ? do_raw_spin_lock+0x12c/0x2b0 [ 230.659784][ T6986] ? stack_depot_save_flags+0x29/0x9c0 [ 230.659823][ T6986] ? __lock_acquire+0x622/0x1c90 [ 230.659859][ T6986] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 230.659883][ T6986] ? __kasan_kmalloc+0xaa/0xb0 [ 230.659909][ T6986] ? copy_splice_read+0x1a8/0xc20 [ 230.659930][ T6986] ? splice_direct_to_actor+0x2a1/0xa30 [ 230.659952][ T6986] ? do_splice_direct+0x174/0x240 [ 230.659972][ T6986] ? do_sendfile+0xb06/0xe50 [ 230.660002][ T6986] ? __x64_sys_sendfile64+0x1d8/0x220 [ 230.660033][ T6986] ? do_syscall_64+0xcd/0xfa0 [ 230.660061][ T6986] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.660107][ T6986] alloc_pages_bulk_noprof+0x77a/0x1410 [ 230.660142][ T6986] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 230.660175][ T6986] ? splice_from_pipe_next+0x1f7/0x5d0 [ 230.660198][ T6986] ? copy_splice_read+0x1a8/0xc20 [ 230.660226][ T6986] copy_splice_read+0x1e1/0xc20 [ 230.660249][ T6986] ? __pfx_pipe_to_null+0x10/0x10 [ 230.660282][ T6986] ? __pfx_copy_splice_read+0x10/0x10 [ 230.660302][ T6986] ? pipe_unlock+0x4a/0x70 [ 230.660330][ T6986] ? __pfx_splice_from_pipe+0x10/0x10 [ 230.660362][ T6986] ? find_held_lock+0x2b/0x80 [ 230.660387][ T6986] ? __pfx_copy_splice_read+0x10/0x10 [ 230.660409][ T6986] do_splice_read+0x285/0x370 [ 230.660435][ T6986] splice_direct_to_actor+0x2a1/0xa30 [ 230.660461][ T6986] ? __pfx_direct_splice_actor+0x10/0x10 [ 230.660492][ T6986] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 230.660524][ T6986] do_splice_direct+0x174/0x240 [ 230.660548][ T6986] ? __pfx_do_splice_direct+0x10/0x10 [ 230.660573][ T6986] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 230.660614][ T6986] ? bpf_lsm_file_permission+0x9/0x10 [ 230.660642][ T6986] ? security_file_permission+0x71/0x210 [ 230.660669][ T6986] ? rw_verify_area+0xcf/0x6c0 [ 230.660693][ T6986] do_sendfile+0xb06/0xe50 [ 230.660723][ T6986] ? __pfx_do_sendfile+0x10/0x10 [ 230.660747][ T6986] ? handle_mm_fault+0x2ab/0xd10 [ 230.660787][ T6986] ? __x64_sys_futex+0x1e0/0x4c0 [ 230.660819][ T6986] ? __x64_sys_futex+0x1e9/0x4c0 [ 230.660855][ T6986] __x64_sys_sendfile64+0x1d8/0x220 [ 230.660888][ T6986] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 230.660929][ T6986] do_syscall_64+0xcd/0xfa0 [ 230.660961][ T6986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 230.660991][ T6986] RIP: 0033:0x7f405538f749 [ 230.661011][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 230.661033][ T6986] RSP: 002b:00007f40562c3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 230.661055][ T6986] RAX: ffffffffffffffda RBX: 00007f40555e6090 RCX: 00007f405538f749 [ 230.661070][ T6986] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006 [ 230.661083][ T6986] RBP: 00007f4055413f91 R08: 0000000000000000 R09: 0000000000000000 [ 230.661096][ T6986] R10: 0010000800000003 R11: 0000000000000246 R12: 0000000000000000 [ 230.661110][ T6986] R13: 00007f40555e6128 R14: 00007f40555e6090 R15: 00007fffc68a7ce8 [ 230.661141][ T6986] [ 231.581278][ T7005] netlink: 326 bytes leftover after parsing attributes in process `syz.1.294'. [ 235.633465][ T7015] i2c i2c-0: new_device: Instantiated device card: at 0x01 [ 239.579025][ T7057] FAULT_INJECTION: forcing a failure. [ 239.579025][ T7057] name failslab, interval 1, probability 0, space 0, times 0 [ 239.750071][ T7057] CPU: 0 UID: 0 PID: 7057 Comm: syz.1.312 Not tainted syzkaller #0 PREEMPT(full) [ 239.750104][ T7057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 239.750119][ T7057] Call Trace: [ 239.750126][ T7057] [ 239.750135][ T7057] dump_stack_lvl+0x16c/0x1f0 [ 239.750169][ T7057] should_fail_ex+0x512/0x640 [ 239.750206][ T7057] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 239.750236][ T7057] should_failslab+0xc2/0x120 [ 239.750268][ T7057] kmem_cache_alloc_node_noprof+0x78/0x770 [ 239.750292][ T7057] ? __lock_acquire+0x622/0x1c90 [ 239.750322][ T7057] ? __alloc_skb+0x2b2/0x380 [ 239.750365][ T7057] ? __alloc_skb+0x2b2/0x380 [ 239.750400][ T7057] __alloc_skb+0x2b2/0x380 [ 239.750438][ T7057] ? __pfx___alloc_skb+0x10/0x10 [ 239.750481][ T7057] ? __lock_acquire+0x622/0x1c90 [ 239.750516][ T7057] tipc_buf_acquire+0x26/0xe0 [ 239.750541][ T7057] tipc_msg_build+0x112/0x1150 [ 239.750572][ T7057] ? __pfx_tipc_msg_build+0x10/0x10 [ 239.750612][ T7057] tipc_send_group_bcast+0x7cc/0xa50 [ 239.750657][ T7057] ? __pfx_tipc_send_group_bcast+0x10/0x10 [ 239.750693][ T7057] ? __lock_acquire+0xb8a/0x1c90 [ 239.750725][ T7057] ? __pfx_woken_wake_function+0x10/0x10 [ 239.750760][ T7057] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 239.750785][ T7057] ? finish_task_switch.isra.0+0x21c/0xc10 [ 239.750816][ T7057] __tipc_sendmsg+0x4ab/0x19a0 [ 239.750837][ T7057] ? finish_task_switch.isra.0+0x221/0xc10 [ 239.750871][ T7057] ? rcu_is_watching+0x12/0xc0 [ 239.750903][ T7057] ? __pfx___tipc_sendmsg+0x10/0x10 [ 239.750953][ T7057] ? __local_bh_enable_ip+0xa4/0x120 [ 239.750985][ T7057] tipc_sendmsg+0x4f/0x70 [ 239.751007][ T7057] ____sys_sendmsg+0xa98/0xc70 [ 239.751039][ T7057] ? copy_msghdr_from_user+0x10a/0x160 [ 239.751063][ T7057] ? __pfx_____sys_sendmsg+0x10/0x10 [ 239.751106][ T7057] ? __pfx_futex_wake_mark+0x10/0x10 [ 239.751149][ T7057] ___sys_sendmsg+0x134/0x1d0 [ 239.751174][ T7057] ? __pfx____sys_sendmsg+0x10/0x10 [ 239.751195][ T7057] ? __lock_acquire+0x622/0x1c90 [ 239.751264][ T7057] __sys_sendmsg+0x16d/0x220 [ 239.751288][ T7057] ? __pfx___sys_sendmsg+0x10/0x10 [ 239.751311][ T7057] ? __x64_sys_futex+0x1e0/0x4c0 [ 239.751362][ T7057] do_syscall_64+0xcd/0xfa0 [ 239.751394][ T7057] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.751417][ T7057] RIP: 0033:0x7f696178f749 [ 239.751435][ T7057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.751457][ T7057] RSP: 002b:00007f696261d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 239.751480][ T7057] RAX: ffffffffffffffda RBX: 00007f69619e5fa0 RCX: 00007f696178f749 [ 239.751495][ T7057] RDX: 000000000000c800 RSI: 0000000000000000 RDI: 0000000000000003 [ 239.751508][ T7057] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 0000000000000000 [ 239.751522][ T7057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.751535][ T7057] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 239.751567][ T7057] [ 246.960815][ T7129] netlink: 334 bytes leftover after parsing attributes in process `syz.1.332'. [ 250.211805][ T7170] warning: `syz.3.343' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 251.509463][ T7189] mkiss: ax0: crc mode is auto. [ 253.026576][ T7203] Bluetooth: hci0: unexpected event 0x0f length: 440 > 4 [ 253.027334][ T7203] Bluetooth: hci0: unexpected event for opcode 0x0010 [ 253.817098][ T7234] Falling back ldisc for pty66. [ 254.129503][ T7241] netlink: 28 bytes leftover after parsing attributes in process `syz.2.355'. [ 254.177891][ T7239] netlink: 4 bytes leftover after parsing attributes in process `syz.0.357'. [ 254.219807][ T7239] netlink: 'syz.0.357': attribute type 1 has an invalid length. [ 254.260656][ T7239] netlink: 5 bytes leftover after parsing attributes in process `syz.0.357'. [ 254.280137][ T7241] vlan1: entered promiscuous mode [ 254.290763][ T7241] vlan1: entered allmulticast mode [ 254.479429][ T7241] veth0_vlan: entered allmulticast mode [ 254.575204][ T7247] netlink: 16 bytes leftover after parsing attributes in process `syz.3.359'. [ 254.660428][ T7247] netlink: 93 bytes leftover after parsing attributes in process `syz.3.359'. [ 254.817863][ T7252] netlink: 28 bytes leftover after parsing attributes in process `syz.1.361'. [ 254.989185][ T7252] bridge0: port 2(bridge_slave_1) entered disabled state [ 255.176752][ T7252] bridge_slave_1 (unregistering): left allmulticast mode [ 255.221841][ T7252] bridge_slave_1 (unregistering): left promiscuous mode [ 255.309478][ T7252] bridge0: port 2(bridge_slave_1) entered disabled state [ 255.621167][ T7267] netlink: 17 bytes leftover after parsing attributes in process `syz.2.365'. [ 256.026632][ T7270] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 256.406839][ T7275] netlink: 8 bytes leftover after parsing attributes in process `syz.2.368'. [ 257.083907][ T7203] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0 [ 257.093360][ T7203] Bluetooth: hci0: Injecting HCI hardware error event [ 257.101889][ T7203] Bluetooth: hci0: hardware error 0x00 [ 258.025370][ T7304] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 258.259585][ T7310] netlink: 8 bytes leftover after parsing attributes in process `syz.2.376'. [ 258.695718][ T7305] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 259.151168][ T7203] Bluetooth: hci0: Opcode 0x0c03 failed: -110 [ 259.685225][ T7314] netlink: 21 bytes leftover after parsing attributes in process `syz.3.378'. [ 260.798508][ T7327] Trying to write to read-only block-device ram7 [ 261.029889][ T7331] netlink: 25 bytes leftover after parsing attributes in process `syz.1.382'. [ 261.861865][ T7342] block nbd0: Unsupported socket: should be TCP or UNIX. [ 263.558976][ T7361] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 263.624886][ T7361] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 263.703219][ T7361] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 263.798072][ T7361] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 264.188459][ T7379] netlink: 21 bytes leftover after parsing attributes in process `syz.3.396'. [ 264.902632][ T7404] program syz.0.402 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 265.011235][ T7385] binder: 7384:7385 ioctl c018620c 0 returned -22 [ 265.629813][ T7203] Bluetooth: hci2: command 0x0c1a tx timeout [ 265.636006][ T7203] Bluetooth: hci1: command 0x0c1a tx timeout [ 265.709707][ T7203] Bluetooth: hci3: command 0x0c1a tx timeout [ 266.997008][ T7428] netlink: 'syz.3.406': attribute type 1 has an invalid length. [ 267.321855][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 267.328326][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 267.370753][ T7427] netlink: 21 bytes leftover after parsing attributes in process `syz.1.409'. [ 267.789472][ T7203] Bluetooth: hci3: command 0x0c1a tx timeout [ 269.841390][ T7460] mmap: syz.2.416 (7460): VmData 45809664 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data. [ 269.922198][ T7433] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 275.350275][ T7525] netlink: 28 bytes leftover after parsing attributes in process `syz.3.424'. [ 275.488473][ T7527] netlink: 20 bytes leftover after parsing attributes in process `syz.0.427'. [ 276.370284][ T7525] bond0: (slave bond_slave_1): Releasing backup interface [ 280.935129][ T7597] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input8 [ 280.978919][ T7594] can0: slcan on ptm0. [ 281.182387][ T7593] can0 (unregistered): slcan off ptm0. [ 281.709431][ T7601] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input9 [ 287.051640][ T7661] netlink: 28 bytes leftover after parsing attributes in process `syz.2.457'. [ 288.690768][ T7683] netlink: 8 bytes leftover after parsing attributes in process `syz.2.463'. [ 288.750830][ T7683] netlink: 8 bytes leftover after parsing attributes in process `syz.2.463'. [ 289.361831][ T7703] FAULT_INJECTION: forcing a failure. [ 289.361831][ T7703] name failslab, interval 1, probability 0, space 0, times 0 [ 289.459286][ T7703] CPU: 0 UID: 0 PID: 7703 Comm: syz.1.466 Not tainted syzkaller #0 PREEMPT(full) [ 289.459319][ T7703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 289.459333][ T7703] Call Trace: [ 289.459340][ T7703] [ 289.459349][ T7703] dump_stack_lvl+0x16c/0x1f0 [ 289.459383][ T7703] should_fail_ex+0x512/0x640 [ 289.459425][ T7703] ? __kmalloc_noprof+0xca/0x880 [ 289.459466][ T7703] should_failslab+0xc2/0x120 [ 289.459499][ T7703] __kmalloc_noprof+0xdd/0x880 [ 289.459538][ T7703] ? __register_sysctl_table+0xe8e/0x1900 [ 289.459573][ T7703] ? __register_sysctl_table+0xea2/0x1900 [ 289.459615][ T7703] ? __register_sysctl_table+0xea2/0x1900 [ 289.459649][ T7703] __register_sysctl_table+0xea2/0x1900 [ 289.459692][ T7703] ? __pfx___register_sysctl_table+0x10/0x10 [ 289.459732][ T7703] ? __asan_memcpy+0x3c/0x60 [ 289.459760][ T7703] setup_mq_sysctls+0x13d/0x230 [ 289.459787][ T7703] copy_ipcs+0x3dc/0x550 [ 289.459826][ T7703] create_new_namespaces+0x20a/0xa90 [ 289.459854][ T7703] ? security_capable+0x7e/0x260 [ 289.459891][ T7703] copy_namespaces+0x468/0x560 [ 289.459919][ T7703] copy_process+0x2828/0x76a0 [ 289.459962][ T7703] ? __pfx_copy_process+0x10/0x10 [ 289.460000][ T7703] ? _copy_from_user+0x59/0xd0 [ 289.460042][ T7703] kernel_clone+0xfc/0x930 [ 289.460073][ T7703] ? __pfx_kernel_clone+0x10/0x10 [ 289.460101][ T7703] ? futex_private_hash_put+0xd5/0x190 [ 289.460142][ T7703] ? __pfx_futex_wait+0x10/0x10 [ 289.460172][ T7703] __do_sys_clone3+0x212/0x290 [ 289.460202][ T7703] ? __pfx___do_sys_clone3+0x10/0x10 [ 289.460245][ T7703] ? find_held_lock+0x2b/0x80 [ 289.460294][ T7703] do_syscall_64+0xcd/0xfa0 [ 289.460330][ T7703] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.460354][ T7703] RIP: 0033:0x7f696178f749 [ 289.460372][ T7703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.460394][ T7703] RSP: 002b:00007f696261cf08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 289.460415][ T7703] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f696178f749 [ 289.460430][ T7703] RDX: 00007f696261cf20 RSI: 0000000000000058 RDI: 00007f696261cf20 [ 289.460445][ T7703] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 0000000000000058 [ 289.460459][ T7703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 289.460472][ T7703] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 289.460503][ T7703] [ 289.461027][ T7703] sysctl could not get directory: /fs/mqueue -12 [ 290.503640][ T7716] scsi_strcpy_devinfo: vendor string 'íÙ/&cžÀ~n] ò | [ 290.503640][ T7716] MÅ' is too long [ 290.566623][ T7716] scsi_strcpy_devinfo: model string '’Dd5‚ ÕK€2bÛ [ 290.566623][ T7716] ††½WÏõ›ú «ú' is too long [ 291.486388][ T7730] netlink: 21 bytes leftover after parsing attributes in process `syz.2.475'. [ 291.857573][ T30] audit: type=1800 audit(4294967443.890:3): pid=7736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.477" name="trace_pipe" dev="tracefs" ino=142 res=0 errno=0 [ 292.732210][ T7753] FAULT_INJECTION: forcing a failure. [ 292.732210][ T7753] name failslab, interval 1, probability 0, space 0, times 0 [ 292.809289][ T7753] CPU: 0 UID: 0 PID: 7753 Comm: syz.3.483 Not tainted syzkaller #0 PREEMPT(full) [ 292.809322][ T7753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 292.809336][ T7753] Call Trace: [ 292.809343][ T7753] [ 292.809352][ T7753] dump_stack_lvl+0x16c/0x1f0 [ 292.809386][ T7753] should_fail_ex+0x512/0x640 [ 292.809424][ T7753] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 292.809457][ T7753] should_failslab+0xc2/0x120 [ 292.809489][ T7753] __kvmalloc_node_noprof+0x141/0x9c0 [ 292.809517][ T7753] ? do_raw_spin_lock+0x12c/0x2b0 [ 292.809555][ T7753] ? bucket_table_alloc.isra.0+0x88/0x460 [ 292.809588][ T7753] ? find_held_lock+0x2b/0x80 [ 292.809616][ T7753] ? bucket_table_alloc.isra.0+0x88/0x460 [ 292.809649][ T7753] bucket_table_alloc.isra.0+0x88/0x460 [ 292.809686][ T7753] rhashtable_init_noprof+0x41a/0x7e0 [ 292.809724][ T7753] ipc_init_ids+0x92/0x280 [ 292.809749][ T7753] msg_init_ns+0x13d/0x190 [ 292.809782][ T7753] copy_ipcs+0x420/0x550 [ 292.809830][ T7753] create_new_namespaces+0x20a/0xa90 [ 292.809857][ T7753] ? security_capable+0x7e/0x260 [ 292.809895][ T7753] copy_namespaces+0x468/0x560 [ 292.809923][ T7753] copy_process+0x2828/0x76a0 [ 292.809965][ T7753] ? __pfx_copy_process+0x10/0x10 [ 292.810002][ T7753] ? _copy_from_user+0x59/0xd0 [ 292.810043][ T7753] kernel_clone+0xfc/0x930 [ 292.810075][ T7753] ? __pfx_kernel_clone+0x10/0x10 [ 292.810102][ T7753] ? futex_private_hash_put+0xd5/0x190 [ 292.810138][ T7753] ? __pfx_futex_wait+0x10/0x10 [ 292.810167][ T7753] __do_sys_clone3+0x212/0x290 [ 292.810196][ T7753] ? __pfx___do_sys_clone3+0x10/0x10 [ 292.810240][ T7753] ? find_held_lock+0x2b/0x80 [ 292.810287][ T7753] do_syscall_64+0xcd/0xfa0 [ 292.810323][ T7753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 292.810346][ T7753] RIP: 0033:0x7fb17498f749 [ 292.810365][ T7753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 292.810387][ T7753] RSP: 002b:00007fb1758e2f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3 [ 292.810409][ T7753] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fb17498f749 [ 292.810424][ T7753] RDX: 00007fb1758e2f20 RSI: 0000000000000058 RDI: 00007fb1758e2f20 [ 292.810438][ T7753] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000058 [ 292.810451][ T7753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.810464][ T7753] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 292.810494][ T7753] [ 294.081168][ T7775] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input10 [ 294.553223][ T7784] netlink: 4 bytes leftover after parsing attributes in process `syz.3.492'. [ 294.620338][ T7786] netlink: 354 bytes leftover after parsing attributes in process `syz.3.492'. [ 295.717974][ T7806] FAULT_INJECTION: forcing a failure. [ 295.717974][ T7806] name fail_futex, interval 1, probability 0, space 0, times 1 [ 295.731602][ T7806] CPU: 0 UID: 0 PID: 7806 Comm: syz.1.500 Not tainted syzkaller #0 PREEMPT(full) [ 295.731634][ T7806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 295.731648][ T7806] Call Trace: [ 295.731655][ T7806] [ 295.731663][ T7806] dump_stack_lvl+0x16c/0x1f0 [ 295.731697][ T7806] should_fail_ex+0x512/0x640 [ 295.731739][ T7806] should_fail_futex+0x4c/0x60 [ 295.731789][ T7806] futex_lock_pi_atomic+0x101/0xd50 [ 295.731833][ T7806] futex_lock_pi+0x23f/0x7c0 [ 295.731876][ T7806] ? __pfx_futex_lock_pi+0x10/0x10 [ 295.731911][ T7806] ? __futex_wait+0x24b/0x2f0 [ 295.731936][ T7806] ? lockdep_hardirqs_on+0x7c/0x110 [ 295.731984][ T7806] ? futex_private_hash_put+0xd5/0x190 [ 295.732019][ T7806] ? __pfx_futex_wake_mark+0x10/0x10 [ 295.732067][ T7806] ? ksys_write+0x190/0x250 [ 295.732098][ T7806] do_futex+0x11a/0x350 [ 295.732131][ T7806] ? __pfx_do_futex+0x10/0x10 [ 295.732172][ T7806] __x64_sys_futex+0x1e0/0x4c0 [ 295.732206][ T7806] ? fput+0x9b/0xd0 [ 295.732237][ T7806] ? __pfx___x64_sys_futex+0x10/0x10 [ 295.732271][ T7806] ? xfd_validate_state+0x61/0x180 [ 295.732304][ T7806] ? __pfx_ksys_write+0x10/0x10 [ 295.732339][ T7806] do_syscall_64+0xcd/0xfa0 [ 295.732370][ T7806] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 295.732393][ T7806] RIP: 0033:0x7f696178f749 [ 295.732412][ T7806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 295.732434][ T7806] RSP: 002b:00007f696261d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 295.732455][ T7806] RAX: ffffffffffffffda RBX: 00007f69619e5fa0 RCX: 00007f696178f749 [ 295.732470][ T7806] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 295.732483][ T7806] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 000000008000fff5 [ 295.732497][ T7806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 295.732509][ T7806] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 295.732540][ T7806] [ 296.927491][ T7820] netlink: 21 bytes leftover after parsing attributes in process `syz.0.505'. [ 297.313015][ T7826] FAULT_INJECTION: forcing a failure. [ 297.313015][ T7826] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 297.477966][ T7826] CPU: 0 UID: 0 PID: 7826 Comm: syz.1.506 Not tainted syzkaller #0 PREEMPT(full) [ 297.477999][ T7826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 297.478013][ T7826] Call Trace: [ 297.478021][ T7826] [ 297.478029][ T7826] dump_stack_lvl+0x16c/0x1f0 [ 297.478064][ T7826] should_fail_ex+0x512/0x640 [ 297.478106][ T7826] should_fail_alloc_page+0xe7/0x130 [ 297.478142][ T7826] prepare_alloc_pages+0x3c2/0x610 [ 297.478174][ T7826] ? rcu_is_watching+0x12/0xc0 [ 297.478203][ T7826] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 297.478228][ T7826] ? kasan_save_stack+0x33/0x60 [ 297.478254][ T7826] ? css_rstat_updated+0x1c2/0x510 [ 297.478283][ T7826] ? __pfx_css_rstat_updated+0x10/0x10 [ 297.478314][ T7826] ? __lock_acquire+0x622/0x1c90 [ 297.478358][ T7826] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 297.478396][ T7826] ? __lock_acquire+0x622/0x1c90 [ 297.478433][ T7826] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 297.478476][ T7826] ? policy_nodemask+0xea/0x4e0 [ 297.478511][ T7826] alloc_pages_mpol+0x1fb/0x550 [ 297.478545][ T7826] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 297.478587][ T7826] folio_alloc_mpol_noprof+0x36/0x2f0 [ 297.478626][ T7826] vma_alloc_folio_noprof+0xed/0x1e0 [ 297.478663][ T7826] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 297.478710][ T7826] do_pte_missing+0x2202/0x3ba0 [ 297.478748][ T7826] ? find_held_lock+0x2b/0x80 [ 297.478780][ T7826] __handle_mm_fault+0x1556/0x2aa0 [ 297.478827][ T7826] ? __pfx___handle_mm_fault+0x10/0x10 [ 297.478867][ T7826] ? __pte_offset_map_lock+0x174/0x310 [ 297.478898][ T7826] ? find_held_lock+0x2b/0x80 [ 297.478931][ T7826] ? follow_page_pte+0x5cf/0x1390 [ 297.478969][ T7826] handle_mm_fault+0x589/0xd10 [ 297.479013][ T7826] __get_user_pages+0x54e/0x3530 [ 297.479064][ T7826] ? __pfx___get_user_pages+0x10/0x10 [ 297.479106][ T7826] populate_vma_page_range+0x267/0x3f0 [ 297.479142][ T7826] ? __pfx_populate_vma_page_range+0x10/0x10 [ 297.479177][ T7826] ? __pfx_find_vma_intersection+0x10/0x10 [ 297.479210][ T7826] ? do_mmap+0x69c/0x1210 [ 297.479244][ T7826] __mm_populate+0x1d8/0x380 [ 297.479280][ T7826] ? __pfx___mm_populate+0x10/0x10 [ 297.479317][ T7826] ? up_write+0x1b2/0x520 [ 297.479392][ T7826] vm_mmap_pgoff+0x37f/0x470 [ 297.479429][ T7826] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 297.479460][ T7826] ? __pfx___do_sys_clone+0x10/0x10 [ 297.479496][ T7826] ? __x64_sys_futex+0x1e0/0x4c0 [ 297.479527][ T7826] ? __x64_sys_futex+0x1e9/0x4c0 [ 297.479564][ T7826] ksys_mmap_pgoff+0x7d/0x5c0 [ 297.479593][ T7826] ? xfd_validate_state+0x61/0x180 [ 297.479631][ T7826] __x64_sys_mmap+0x125/0x190 [ 297.479671][ T7826] do_syscall_64+0xcd/0xfa0 [ 297.479703][ T7826] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.479727][ T7826] RIP: 0033:0x7f696178f749 [ 297.479746][ T7826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.479768][ T7826] RSP: 002b:00007f696261d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 297.479790][ T7826] RAX: ffffffffffffffda RBX: 00007f69619e5fa0 RCX: 00007f696178f749 [ 297.479806][ T7826] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 297.479820][ T7826] RBP: 00007f6961813f91 R08: 0000000000000002 R09: 0000000000008000 [ 297.479834][ T7826] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 297.479848][ T7826] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 297.479880][ T7826] [ 298.230835][ T7831] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 298.237320][ T7831] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 298.254272][ T7831] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 299.031829][ T7852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.512'. [ 299.083849][ T7852] netlink: 354 bytes leftover after parsing attributes in process `syz.0.512'. [ 299.748159][ T7862] input: jJǸí¸ü;9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input11 [ 299.771852][ T7859] hub 1-0:1.0: USB hub found [ 299.818621][ T7859] hub 1-0:1.0: 1 port detected [ 299.979999][ T7863] hub 1-0:1.0: USB hub found [ 300.049460][ T7863] hub 1-0:1.0: 1 port detected [ 300.269587][ T7203] Bluetooth: hci1: command 0x0c1a tx timeout [ 300.275682][ T7286] Bluetooth: hci2: command 0x0c1a tx timeout [ 300.440283][ T7286] Bluetooth: hci3: command 0x0c1a tx timeout [ 301.764301][ T7890] netlink: 21 bytes leftover after parsing attributes in process `syz.3.522'. [ 302.166276][ T7899] random: crng reseeded on system resumption [ 302.327670][ T7900] Restarting kernel threads ... [ 302.364982][ T7899] hub 1-0:1.0: USB hub found [ 302.416723][ T7900] Done restarting kernel threads. [ 302.456087][ T7899] hub 1-0:1.0: 1 port detected [ 303.326433][ T7912] can0: slcan on ttyS2. [ 303.589335][ T7911] can0 (unregistered): slcan off ttyS2. [ 304.935008][ T7943] FAULT_INJECTION: forcing a failure. [ 304.935008][ T7943] name failslab, interval 1, probability 0, space 0, times 0 [ 305.033829][ T7943] CPU: 0 UID: 0 PID: 7943 Comm: syz.0.535 Not tainted syzkaller #0 PREEMPT(full) [ 305.033862][ T7943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 305.033876][ T7943] Call Trace: [ 305.033884][ T7943] [ 305.033892][ T7943] dump_stack_lvl+0x16c/0x1f0 [ 305.033928][ T7943] should_fail_ex+0x512/0x640 [ 305.033965][ T7943] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 305.033993][ T7943] should_failslab+0xc2/0x120 [ 305.034026][ T7943] kmem_cache_alloc_noprof+0x75/0x6e0 [ 305.034050][ T7943] ? __proc_create+0x2ce/0x8e0 [ 305.034091][ T7943] ? __proc_create+0x2ce/0x8e0 [ 305.034125][ T7943] __proc_create+0x2ce/0x8e0 [ 305.034161][ T7943] ? __pfx___proc_create+0x10/0x10 [ 305.034201][ T7943] ? _raw_write_unlock+0x28/0x50 [ 305.034228][ T7943] ? proc_register+0x559/0x8b0 [ 305.034267][ T7943] proc_create_reg+0x7d/0x180 [ 305.034305][ T7943] ? __pfx_can_rcvlist_proc_show+0x10/0x10 [ 305.034338][ T7943] proc_create_net_single+0x86/0x180 [ 305.034375][ T7943] ? __pfx_proc_create_net_single+0x10/0x10 [ 305.034422][ T7943] can_init_proc+0x178/0x4d0 [ 305.034453][ T7943] can_pernet_init+0x1e4/0x370 [ 305.034482][ T7943] ? __pfx_can_pernet_init+0x10/0x10 [ 305.034509][ T7943] ops_init+0x1e2/0x5f0 [ 305.034537][ T7943] setup_net+0x100/0x390 [ 305.034563][ T7943] ? __pfx_setup_net+0x10/0x10 [ 305.034589][ T7943] ? debug_mutex_init+0x37/0x70 [ 305.034626][ T7943] copy_net_ns+0x2f8/0x690 [ 305.034658][ T7943] create_new_namespaces+0x3ea/0xa90 [ 305.034693][ T7943] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 305.034723][ T7943] ksys_unshare+0x45b/0xa40 [ 305.034756][ T7943] ? __pfx_ksys_unshare+0x10/0x10 [ 305.034789][ T7943] ? xfd_validate_state+0x61/0x180 [ 305.034832][ T7943] __x64_sys_unshare+0x31/0x40 [ 305.034867][ T7943] do_syscall_64+0xcd/0xfa0 [ 305.034899][ T7943] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.034923][ T7943] RIP: 0033:0x7f933178f749 [ 305.034942][ T7943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.034964][ T7943] RSP: 002b:00007f93325fc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 305.034986][ T7943] RAX: ffffffffffffffda RBX: 00007f93319e5fa0 RCX: 00007f933178f749 [ 305.035001][ T7943] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 305.035016][ T7943] RBP: 00007f9331813f91 R08: 0000000000000000 R09: 0000000000000000 [ 305.035030][ T7943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 305.035043][ T7943] R13: 00007f93319e6038 R14: 00007f93319e5fa0 R15: 00007ffdb2175a78 [ 305.035075][ T7943] [ 307.097898][ T30] audit: type=1800 audit(4294967459.130:4): pid=7976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.540" name="features" dev="configfs" ino=18493 res=0 errno=0 [ 310.769165][ T8034] netlink: 194 bytes leftover after parsing attributes in process `syz.0.551'. [ 310.895053][ T8035] XFS: Clearing xfsstats [ 313.213383][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.1.561'. [ 313.357326][ T8078] netlink: 'syz.1.561': attribute type 1 has an invalid length. [ 313.524317][ T8078] netlink: 'syz.1.561': attribute type 6 has an invalid length. [ 313.594415][ T8081] netlink: 25 bytes leftover after parsing attributes in process `syz.3.562'. [ 313.718501][ T8083] FAULT_INJECTION: forcing a failure. [ 313.718501][ T8083] name failslab, interval 1, probability 0, space 0, times 0 [ 313.786196][ T8083] CPU: 0 UID: 0 PID: 8083 Comm: syz.2.563 Not tainted syzkaller #0 PREEMPT(full) [ 313.786230][ T8083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 313.786244][ T8083] Call Trace: [ 313.786252][ T8083] [ 313.786260][ T8083] dump_stack_lvl+0x16c/0x1f0 [ 313.786295][ T8083] should_fail_ex+0x512/0x640 [ 313.786332][ T8083] ? __kmalloc_cache_noprof+0x5f/0x780 [ 313.786359][ T8083] should_failslab+0xc2/0x120 [ 313.786391][ T8083] __kmalloc_cache_noprof+0x72/0x780 [ 313.786415][ T8083] ? kvm_uevent_notify_change.part.0+0x93/0x450 [ 313.786452][ T8083] ? kvm_uevent_notify_change.part.0+0x93/0x450 [ 313.786484][ T8083] kvm_uevent_notify_change.part.0+0x93/0x450 [ 313.786517][ T8083] ? __pfx_kvm_vm_release+0x10/0x10 [ 313.786542][ T8083] kvm_put_kvm+0xe3/0xb00 [ 313.786567][ T8083] ? lockdep_hardirqs_on+0x7c/0x110 [ 313.786596][ T8083] ? _raw_spin_unlock_irq+0x2e/0x50 [ 313.786625][ T8083] ? __pfx_kvm_vm_release+0x10/0x10 [ 313.786651][ T8083] kvm_vm_release+0x3c/0x50 [ 313.786676][ T8083] __fput+0x402/0xb70 [ 313.786710][ T8083] ? _raw_spin_unlock_irq+0x23/0x50 [ 313.786739][ T8083] task_work_run+0x150/0x240 [ 313.786778][ T8083] ? __pfx_task_work_run+0x10/0x10 [ 313.786816][ T8083] ? __pfx___do_sys_close_range+0x10/0x10 [ 313.786850][ T8083] exit_to_user_mode_loop+0xec/0x130 [ 313.786888][ T8083] do_syscall_64+0x426/0xfa0 [ 313.786919][ T8083] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.786943][ T8083] RIP: 0033:0x7f405538f749 [ 313.786961][ T8083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.786983][ T8083] RSP: 002b:00007f40562e4038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 313.787005][ T8083] RAX: 0000000000000000 RBX: 00007f40555e5fa0 RCX: 00007f405538f749 [ 313.787050][ T8083] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 313.787063][ T8083] RBP: 00007f4055413f91 R08: 0000000000000000 R09: 0000000000000000 [ 313.787077][ T8083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.787091][ T8083] R13: 00007f40555e6038 R14: 00007f40555e5fa0 R15: 00007fffc68a7ce8 [ 313.787122][ T8083] [ 319.928473][ T8169] netlink: 64 bytes leftover after parsing attributes in process `syz.2.584'. [ 320.031592][ T8174] Console: switching to colour VGA+ 80x25 [ 322.373563][ T8200] svc: failed to register nfsdv3 RPC service (errno 111). [ 322.409015][ T8200] svc: failed to register nfsaclv3 RPC service (errno 111). [ 323.541132][ T8197] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 323.598343][ T8197] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 323.661521][ T8197] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 324.429944][ T7286] Bluetooth: hci1: command 0x0c1a tx timeout [ 324.966719][ T8237] FAULT_INJECTION: forcing a failure. [ 324.966719][ T8237] name fail_futex, interval 1, probability 0, space 0, times 0 [ 324.980216][ T8237] CPU: 0 UID: 0 PID: 8237 Comm: syz.3.598 Not tainted syzkaller #0 PREEMPT(full) [ 324.980247][ T8237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 324.980269][ T8237] Call Trace: [ 324.980276][ T8237] [ 324.980285][ T8237] dump_stack_lvl+0x16c/0x1f0 [ 324.980319][ T8237] should_fail_ex+0x512/0x640 [ 324.980361][ T8237] should_fail_futex+0x4c/0x60 [ 324.980391][ T8237] futex_lock_pi_atomic+0x101/0xd50 [ 324.980434][ T8237] futex_lock_pi+0x23f/0x7c0 [ 324.980476][ T8237] ? __pfx_futex_lock_pi+0x10/0x10 [ 324.980511][ T8237] ? __futex_wait+0x24b/0x2f0 [ 324.980536][ T8237] ? lockdep_hardirqs_on+0x7c/0x110 [ 324.980680][ T8237] ? futex_private_hash_put+0xd5/0x190 [ 324.980780][ T8237] ? __pfx_futex_wake_mark+0x10/0x10 [ 324.980829][ T8237] ? ksys_write+0x190/0x250 [ 324.980869][ T8237] do_futex+0x11a/0x350 [ 324.980904][ T8237] ? __pfx_do_futex+0x10/0x10 [ 324.980946][ T8237] __x64_sys_futex+0x1e0/0x4c0 [ 324.980987][ T8237] ? fput+0x9b/0xd0 [ 324.981021][ T8237] ? __pfx___x64_sys_futex+0x10/0x10 [ 324.981062][ T8237] ? xfd_validate_state+0x61/0x180 [ 324.981100][ T8237] ? __pfx_ksys_write+0x10/0x10 [ 324.981136][ T8237] do_syscall_64+0xcd/0xfa0 [ 324.981168][ T8237] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 324.981193][ T8237] RIP: 0033:0x7fb17498f749 [ 324.981213][ T8237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 324.981236][ T8237] RSP: 002b:00007fb1758e3038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 324.981257][ T8237] RAX: ffffffffffffffda RBX: 00007fb174be5fa0 RCX: 00007fb17498f749 [ 324.981273][ T8237] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 324.981286][ T8237] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 000000008000fff5 [ 324.981301][ T8237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.981314][ T8237] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 324.981346][ T8237] [ 325.717964][ T7286] Bluetooth: hci2: command 0x0c1a tx timeout [ 325.727982][ T7286] Bluetooth: hci3: command 0x0c1a tx timeout [ 326.253258][ T8248] Invalid ELF header magic: != ELF [ 326.526247][ T8253] Console: switching to colour frame buffer device 128x48 [ 328.754197][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 328.761008][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 330.497798][ T30] audit: type=1800 audit(4294967482.530:5): pid=8300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.619" name="features" dev="configfs" ino=20099 res=0 errno=0 [ 330.780257][ T8299] netlink: 20 bytes leftover after parsing attributes in process `syz.1.612'. [ 330.935769][ T8299] bridge0: entered promiscuous mode [ 330.949987][ T8299] bridge0: entered allmulticast mode [ 332.479469][ T8328] random: crng reseeded on system resumption [ 333.691757][ T8339] svc: failed to register nfsdv3 RPC service (errno 111). [ 333.731452][ T8339] svc: failed to register nfsaclv3 RPC service (errno 111). [ 336.455849][ T8360] kexec: Could not allocate control_code_buffer [ 337.402668][ T8384] zswap: compressor not available [ 338.324290][ T8406] FAULT_INJECTION: forcing a failure. [ 338.324290][ T8406] name failslab, interval 1, probability 0, space 0, times 0 [ 338.398376][ T8406] CPU: 0 UID: 0 PID: 8406 Comm: syz.3.639 Not tainted syzkaller #0 PREEMPT(full) [ 338.398410][ T8406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 338.398431][ T8406] Call Trace: [ 338.398439][ T8406] [ 338.398448][ T8406] dump_stack_lvl+0x16c/0x1f0 [ 338.398484][ T8406] should_fail_ex+0x512/0x640 [ 338.398521][ T8406] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 338.398557][ T8406] should_failslab+0xc2/0x120 [ 338.398590][ T8406] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 338.398622][ T8406] ? ip_vs_control_net_init+0x84b/0x1d20 [ 338.398657][ T8406] ? __pfx_proc_create_net_single+0x10/0x10 [ 338.398701][ T8406] ? kmemdup_noprof+0x29/0x60 [ 338.398726][ T8406] kmemdup_noprof+0x29/0x60 [ 338.398752][ T8406] ip_vs_control_net_init+0x84b/0x1d20 [ 338.398794][ T8406] __ip_vs_init+0x217/0x520 [ 338.398816][ T8406] ? __pfx___ip_vs_init+0x10/0x10 [ 338.398835][ T8406] ops_init+0x1e2/0x5f0 [ 338.398864][ T8406] setup_net+0x100/0x390 [ 338.398890][ T8406] ? __pfx_setup_net+0x10/0x10 [ 338.398916][ T8406] ? debug_mutex_init+0x37/0x70 [ 338.398945][ T8406] copy_net_ns+0x2f8/0x690 [ 338.398976][ T8406] create_new_namespaces+0x3ea/0xa90 [ 338.399012][ T8406] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 338.399046][ T8406] ksys_unshare+0x45b/0xa40 [ 338.399079][ T8406] ? __pfx_ksys_unshare+0x10/0x10 [ 338.399112][ T8406] ? xfd_validate_state+0x61/0x180 [ 338.399156][ T8406] __x64_sys_unshare+0x31/0x40 [ 338.399187][ T8406] do_syscall_64+0xcd/0xfa0 [ 338.399220][ T8406] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 338.399244][ T8406] RIP: 0033:0x7fb17498f749 [ 338.399262][ T8406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 338.399284][ T8406] RSP: 002b:00007fb1758e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 338.399306][ T8406] RAX: ffffffffffffffda RBX: 00007fb174be5fa0 RCX: 00007fb17498f749 [ 338.399320][ T8406] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 338.399334][ T8406] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 338.399347][ T8406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.399360][ T8406] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 338.399391][ T8406] [ 338.687097][ T8410] netlink: 4 bytes leftover after parsing attributes in process `syz.0.640'. [ 338.696978][ T8410] netlink: 25 bytes leftover after parsing attributes in process `syz.0.640'. [ 339.516058][ T8425] FAULT_INJECTION: forcing a failure. [ 339.516058][ T8425] name failslab, interval 1, probability 0, space 0, times 0 [ 339.595472][ T8425] CPU: 0 UID: 0 PID: 8425 Comm: syz.2.644 Not tainted syzkaller #0 PREEMPT(full) [ 339.595506][ T8425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 339.595521][ T8425] Call Trace: [ 339.595528][ T8425] [ 339.595537][ T8425] dump_stack_lvl+0x16c/0x1f0 [ 339.595570][ T8425] should_fail_ex+0x512/0x640 [ 339.595608][ T8425] ? kmem_cache_alloc_node_noprof+0x65/0x770 [ 339.595637][ T8425] should_failslab+0xc2/0x120 [ 339.595670][ T8425] kmem_cache_alloc_node_noprof+0x78/0x770 [ 339.595695][ T8425] ? __alloc_skb+0x2b2/0x380 [ 339.595739][ T8425] ? __alloc_skb+0x2b2/0x380 [ 339.595774][ T8425] __alloc_skb+0x2b2/0x380 [ 339.595811][ T8425] ? __pfx___alloc_skb+0x10/0x10 [ 339.595850][ T8425] ? __lock_acquire+0x570/0x1c90 [ 339.595886][ T8425] ? __asan_memset+0x23/0x50 [ 339.595913][ T8425] tipc_buf_acquire+0x26/0xe0 [ 339.595938][ T8425] tipc_msg_build+0x59c/0x1150 [ 339.595970][ T8425] ? __pfx_tipc_msg_build+0x10/0x10 [ 339.596011][ T8425] tipc_send_group_bcast+0x7cc/0xa50 [ 339.596056][ T8425] ? __pfx_tipc_send_group_bcast+0x10/0x10 [ 339.596090][ T8425] ? finish_task_switch.isra.0+0x21c/0xc10 [ 339.596118][ T8425] ? __pfx_woken_wake_function+0x10/0x10 [ 339.596142][ T8425] ? finish_task_switch.isra.0+0x221/0xc10 [ 339.596177][ T8425] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 339.596210][ T8425] __tipc_sendmsg+0x4ab/0x19a0 [ 339.596234][ T8425] ? __lock_acquire+0x622/0x1c90 [ 339.596272][ T8425] ? __pfx___tipc_sendmsg+0x10/0x10 [ 339.596332][ T8425] ? __local_bh_enable_ip+0xa4/0x120 [ 339.596365][ T8425] tipc_sendmsg+0x4f/0x70 [ 339.596387][ T8425] sock_write_iter+0x566/0x610 [ 339.596420][ T8425] ? __pfx_sock_write_iter+0x10/0x10 [ 339.596463][ T8425] ? bpf_lsm_file_permission+0x9/0x10 [ 339.596491][ T8425] ? security_file_permission+0x71/0x210 [ 339.596518][ T8425] ? rw_verify_area+0xcf/0x6c0 [ 339.596543][ T8425] vfs_write+0x7d3/0x11d0 [ 339.596569][ T8425] ? __pfx_sock_write_iter+0x10/0x10 [ 339.596604][ T8425] ? __pfx_vfs_write+0x10/0x10 [ 339.596628][ T8425] ? find_held_lock+0x2b/0x80 [ 339.596671][ T8425] ksys_write+0x1f8/0x250 [ 339.596697][ T8425] ? __pfx_ksys_write+0x10/0x10 [ 339.596733][ T8425] do_syscall_64+0xcd/0xfa0 [ 339.596764][ T8425] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 339.596789][ T8425] RIP: 0033:0x7f405538f749 [ 339.596807][ T8425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 339.596829][ T8425] RSP: 002b:00007f40562e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 339.596850][ T8425] RAX: ffffffffffffffda RBX: 00007f40555e5fa0 RCX: 00007f405538f749 [ 339.596865][ T8425] RDX: 00000000000098c7 RSI: 0000000000000000 RDI: 0000000000000003 [ 339.596880][ T8425] RBP: 00007f4055413f91 R08: 0000000000000000 R09: 0000000000000000 [ 339.596894][ T8425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.596907][ T8425] R13: 00007f40555e6038 R14: 00007f40555e5fa0 R15: 00007fffc68a7ce8 [ 339.596939][ T8425] [ 340.168610][ T8434] delete_channel: no stack [ 340.976218][ T8444] netlink: 4 bytes leftover after parsing attributes in process `syz.3.650'. [ 341.023664][ T8444] netlink: 25 bytes leftover after parsing attributes in process `syz.3.650'. [ 343.835678][ T8484] netlink: 'syz.3.660': attribute type 2 has an invalid length. [ 344.976018][ T8503] netlink: 9 bytes leftover after parsing attributes in process `syz.0.666'. [ 346.290190][ T8528] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 346.464383][ T8528] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 346.649322][ T8528] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 346.927983][ T8540] can0: slcan on ttyS2. [ 347.074228][ T8534] FAULT_INJECTION: forcing a failure. [ 347.074228][ T8534] name failslab, interval 1, probability 0, space 0, times 0 [ 347.133620][ T8539] can0 (unregistered): slcan off ttyS2. [ 347.159565][ T8534] CPU: 0 UID: 0 PID: 8534 Comm: syz.2.673 Not tainted syzkaller #0 PREEMPT(full) [ 347.159595][ T8534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 347.159618][ T8534] Call Trace: [ 347.159626][ T8534] [ 347.159634][ T8534] dump_stack_lvl+0x16c/0x1f0 [ 347.159670][ T8534] should_fail_ex+0x512/0x640 [ 347.159707][ T8534] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 347.159735][ T8534] should_failslab+0xc2/0x120 [ 347.159769][ T8534] kmem_cache_alloc_noprof+0x75/0x6e0 [ 347.159793][ T8534] ? fasync_helper+0x3d/0xd0 [ 347.159833][ T8534] ? fasync_helper+0x3d/0xd0 [ 347.159864][ T8534] fasync_helper+0x3d/0xd0 [ 347.159899][ T8534] pipe_fasync+0xc7/0x200 [ 347.159927][ T8534] ? __pfx_pipe_fasync+0x10/0x10 [ 347.159952][ T8534] do_fcntl+0xa3d/0x15a0 [ 347.159985][ T8534] ? __pfx_do_fcntl+0x10/0x10 [ 347.160025][ T8534] ? tomoyo_file_fcntl+0xa5/0xc0 [ 347.160061][ T8534] __x64_sys_fcntl+0x163/0x200 [ 347.160098][ T8534] do_syscall_64+0xcd/0xfa0 [ 347.160129][ T8534] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 347.160153][ T8534] RIP: 0033:0x7f405538f749 [ 347.160171][ T8534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 347.160193][ T8534] RSP: 002b:00007f40562e4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 347.160215][ T8534] RAX: ffffffffffffffda RBX: 00007f40555e5fa0 RCX: 00007f405538f749 [ 347.160230][ T8534] RDX: fffffffffffffffc RSI: 0000000000000004 RDI: ff80000000000000 [ 347.160245][ T8534] RBP: 00007f4055413f91 R08: 0000000000000000 R09: 0000000000000000 [ 347.160258][ T8534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.160272][ T8534] R13: 00007f40555e6038 R14: 00007f40555e5fa0 R15: 00007fffc68a7ce8 [ 347.160303][ T8534] [ 347.349710][ C0] vkms_vblank_simulate: vblank timer overrun [ 348.349182][ T7203] Bluetooth: hci1: command 0x0c1a tx timeout [ 348.510690][ T7203] Bluetooth: hci2: command 0x0c1a tx timeout [ 348.688271][ T7203] Bluetooth: hci3: command 0x0c1a tx timeout [ 349.696830][ T8573] delete_channel: no stack [ 349.888913][ T8588] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 352.404088][ T8632] ima: policy update failed [ 352.438152][ T30] audit: type=1802 audit(4294967504.470:6): pid=8632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.693" res=0 errno=0 [ 352.455615][ C0] vkms_vblank_simulate: vblank timer overrun [ 352.514409][ T8632] netlink: 25 bytes leftover after parsing attributes in process `syz.1.693'. [ 355.899505][ T8683] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input12 [ 356.038084][ T8667] netlink: 28 bytes leftover after parsing attributes in process `syz.3.702'. [ 356.088213][ T8667] bond0: entered allmulticast mode [ 356.149755][ T8667] bond_slave_0: entered allmulticast mode [ 358.360874][ T8722] FAULT_INJECTION: forcing a failure. [ 358.360874][ T8722] name failslab, interval 1, probability 0, space 0, times 0 [ 358.390003][ T8722] CPU: 0 UID: 0 PID: 8722 Comm: syz.3.717 Not tainted syzkaller #0 PREEMPT(full) [ 358.390035][ T8722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 358.390049][ T8722] Call Trace: [ 358.390056][ T8722] [ 358.390065][ T8722] dump_stack_lvl+0x16c/0x1f0 [ 358.390099][ T8722] should_fail_ex+0x512/0x640 [ 358.390142][ T8722] should_failslab+0xc2/0x120 [ 358.390175][ T8722] kmem_cache_alloc_node_noprof+0x78/0x770 [ 358.390200][ T8722] ? zswap_store+0x850/0x2830 [ 358.390228][ T8722] ? zswap_store+0x850/0x2830 [ 358.390247][ T8722] zswap_store+0x850/0x2830 [ 358.390281][ T8722] ? __pfx_zswap_store+0x10/0x10 [ 358.390303][ T8722] ? folio_free_swap+0x141/0x4b0 [ 358.390336][ T8722] ? do_raw_spin_unlock+0x172/0x230 [ 358.390358][ T8722] ? _raw_spin_unlock+0x28/0x50 [ 358.390382][ T8722] ? folio_free_swap+0x19d/0x4b0 [ 358.390412][ T8722] ? __pfx_try_to_unmap+0x10/0x10 [ 358.390438][ T8722] swap_writeout+0x3f4/0x1090 [ 358.390482][ T8722] shrink_folio_list+0x3e50/0x4800 [ 358.390531][ T8722] ? __pfx_shrink_folio_list+0x10/0x10 [ 358.390576][ T8722] ? __lock_acquire+0x622/0x1c90 [ 358.390646][ T8722] ? do_syscall_64+0xcd/0xfa0 [ 358.390674][ T8722] ? __kernel_text_address+0xd/0x40 [ 358.390695][ T8722] ? unwind_get_return_address+0x59/0xa0 [ 358.390721][ T8722] ? arch_stack_walk+0x88/0x100 [ 358.390751][ T8722] reclaim_folio_list+0xda/0x5d0 [ 358.390795][ T8722] ? __pfx_css_rstat_updated+0x10/0x10 [ 358.390826][ T8722] ? __pfx_reclaim_folio_list+0x10/0x10 [ 358.390876][ T8722] ? lru_gen_update_size+0x543/0xe10 [ 358.390920][ T8722] ? lru_gen_del_folio+0x32b/0x540 [ 358.390958][ T8722] reclaim_pages+0x3ec/0x570 [ 358.390983][ T8722] ? __pfx_reclaim_pages+0x10/0x10 [ 358.391003][ T8722] ? find_held_lock+0x2b/0x80 [ 358.391028][ T8722] ? madvise_cold_or_pageout_pte_range+0x73e/0x20d0 [ 358.391070][ T8722] madvise_cold_or_pageout_pte_range+0x14e5/0x20d0 [ 358.391119][ T8722] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 358.391168][ T8722] ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10 [ 358.391205][ T8722] walk_pgd_range+0xc05/0x1f50 [ 358.391252][ T8722] ? __pfx_walk_pgd_range+0x10/0x10 [ 358.391276][ T8722] ? find_held_lock+0x2b/0x80 [ 358.391298][ T8722] ? find_held_lock+0x2b/0x80 [ 358.391328][ T8722] __walk_page_range+0x163/0x820 [ 358.391353][ T8722] ? filemap_map_pages+0x121f/0x1d50 [ 358.391379][ T8722] ? __lock_acquire+0xb8a/0x1c90 [ 358.391417][ T8722] walk_page_range_vma+0x2c7/0xa20 [ 358.391447][ T8722] ? __pfx_walk_page_range_vma+0x10/0x10 [ 358.391474][ T8722] ? find_held_lock+0x2b/0x80 [ 358.391510][ T8722] madvise_pageout+0x257/0x540 [ 358.391546][ T8722] ? __pfx_madvise_pageout+0x10/0x10 [ 358.391594][ T8722] ? mas_next_slot+0x12d3/0x1cb0 [ 358.391630][ T8722] madvise_vma_behavior+0xb14/0x2d50 [ 358.391688][ T8722] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 358.391727][ T8722] ? __pfx_mt_find+0x10/0x10 [ 358.391766][ T8722] ? find_vma_prev+0xd3/0x150 [ 358.391810][ T8722] ? find_vma+0xbf/0x140 [ 358.391837][ T8722] ? __pfx_find_vma+0x10/0x10 [ 358.391864][ T8722] ? preempt_schedule_common+0x44/0xc0 [ 358.391899][ T8722] madvise_walk_vmas+0x31f/0x9c0 [ 358.391939][ T8722] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 358.391983][ T8722] madvise_do_behavior+0x1e2/0x530 [ 358.392017][ T8722] ? futex_private_hash_put+0xd5/0x190 [ 358.392049][ T8722] ? __pfx_madvise_do_behavior+0x10/0x10 [ 358.392086][ T8722] ? down_read+0x13d/0x480 [ 358.392133][ T8722] do_madvise+0x176/0x240 [ 358.392166][ T8722] ? __pfx_do_madvise+0x10/0x10 [ 358.392199][ T8722] ? do_futex+0x122/0x350 [ 358.392252][ T8722] ? xfd_validate_state+0x61/0x180 [ 358.392292][ T8722] __x64_sys_madvise+0xa9/0x110 [ 358.392326][ T8722] ? lockdep_hardirqs_on+0x7c/0x110 [ 358.392355][ T8722] do_syscall_64+0xcd/0xfa0 [ 358.392386][ T8722] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 358.392410][ T8722] RIP: 0033:0x7fb17498f749 [ 358.392429][ T8722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 358.392452][ T8722] RSP: 002b:00007fb1758e3038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 358.392473][ T8722] RAX: ffffffffffffffda RBX: 00007fb174be5fa0 RCX: 00007fb17498f749 [ 358.392489][ T8722] RDX: 0000000000000015 RSI: ffffffffffff0001 RDI: 0000000000000000 [ 358.392503][ T8722] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 358.392516][ T8722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.392532][ T8722] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 358.392573][ T8722] [ 359.996792][ T8732] futex_wake_op: syz.2.720 tries to shift op by -2048; fix this program [ 360.030742][ T8732] futex_wake_op: syz.2.720 tries to shift op by -2048; fix this program [ 360.622614][ T8747] netlink: 338 bytes leftover after parsing attributes in process `syz.3.723'. [ 362.523576][ T8775] netlink: 8 bytes leftover after parsing attributes in process `syz.2.731'. [ 362.920667][ T8781] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 362.969361][ T8781] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 362.999853][ T8781] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 364.989233][ T7203] Bluetooth: hci2: command 0x0c1a tx timeout [ 364.995579][ T7286] Bluetooth: hci1: command 0x0c1a tx timeout [ 365.069468][ T7203] Bluetooth: hci3: command 0x0c1a tx timeout [ 365.341518][ T8796] Invalid ELF header magic: != ELF [ 368.464960][ T8829] Console: switching to colour VGA+ 80x25 [ 368.508702][ T8831] random: crng reseeded on system resumption [ 369.160014][ T8829] Console: switching to colour frame buffer device 128x48 [ 369.542743][ T8843] netlink: 28 bytes leftover after parsing attributes in process `syz.3.747'. [ 370.706375][ T8847] zswap: compressor not available [ 374.330261][ T8906] FAULT_INJECTION: forcing a failure. [ 374.330261][ T8906] name failslab, interval 1, probability 0, space 0, times 0 [ 374.389554][ T8906] CPU: 0 UID: 0 PID: 8906 Comm: syz.3.764 Not tainted syzkaller #0 PREEMPT(full) [ 374.389587][ T8906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 374.389602][ T8906] Call Trace: [ 374.389609][ T8906] [ 374.389617][ T8906] dump_stack_lvl+0x16c/0x1f0 [ 374.389652][ T8906] should_fail_ex+0x512/0x640 [ 374.389689][ T8906] ? fs_reclaim_acquire+0xae/0x150 [ 374.389723][ T8906] should_failslab+0xc2/0x120 [ 374.389756][ T8906] __kmalloc_noprof+0xdd/0x880 [ 374.389793][ T8906] ? kfree+0x252/0x6d0 [ 374.389812][ T8906] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 374.389847][ T8906] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 374.389875][ T8906] tomoyo_realpath_from_path+0xc2/0x6e0 [ 374.389912][ T8906] tomoyo_check_open_permission+0x2ab/0x3c0 [ 374.389937][ T8906] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 374.389960][ T8906] ? __lock_acquire+0xb8a/0x1c90 [ 374.390027][ T8906] ? lock_acquire+0x179/0x350 [ 374.390060][ T8906] ? find_held_lock+0x2b/0x80 [ 374.390086][ T8906] ? mnt_get_write_access+0x52/0x2f0 [ 374.390123][ T8906] tomoyo_file_open+0x6b/0x90 [ 374.390156][ T8906] security_file_open+0x84/0x1e0 [ 374.390184][ T8906] do_dentry_open+0x596/0x1530 [ 374.390221][ T8906] vfs_open+0x82/0x3f0 [ 374.390259][ T8906] path_openat+0x1de4/0x2cb0 [ 374.390296][ T8906] ? __pfx_path_openat+0x10/0x10 [ 374.390324][ T8906] ? __lock_acquire+0xb8a/0x1c90 [ 374.390360][ T8906] do_filp_open+0x20b/0x470 [ 374.390387][ T8906] ? __pfx_do_filp_open+0x10/0x10 [ 374.390436][ T8906] ? alloc_fd+0x471/0x7d0 [ 374.390468][ T8906] do_sys_openat2+0x11b/0x1d0 [ 374.390503][ T8906] ? __pfx_do_sys_openat2+0x10/0x10 [ 374.390551][ T8906] __x64_sys_openat+0x174/0x210 [ 374.390587][ T8906] ? __pfx___x64_sys_openat+0x10/0x10 [ 374.390637][ T8906] do_syscall_64+0xcd/0xfa0 [ 374.390668][ T8906] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.390692][ T8906] RIP: 0033:0x7fb17498f749 [ 374.390711][ T8906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.390733][ T8906] RSP: 002b:00007fb1758e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 374.390754][ T8906] RAX: ffffffffffffffda RBX: 00007fb174be5fa0 RCX: 00007fb17498f749 [ 374.390769][ T8906] RDX: 0000000000020a42 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 374.390783][ T8906] RBP: 00007fb174a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 374.390797][ T8906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.390810][ T8906] R13: 00007fb174be6038 R14: 00007fb174be5fa0 R15: 00007ffc78a79cc8 [ 374.390842][ T8906] [ 374.390861][ T8906] ERROR: Out of memory at tomoyo_realpath_from_path. [ 375.507097][ T7962] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 379.582572][ T8971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.779'. [ 379.757409][ T8971] netlink: 354 bytes leftover after parsing attributes in process `syz.1.779'. [ 380.363413][ T8981] netlink: 334 bytes leftover after parsing attributes in process `syz.3.782'. [ 380.665302][ T8987] bridge0: port 2(veth0_to_bridge) entered blocking state [ 380.779480][ T8987] bridge0: port 2(veth0_to_bridge) entered disabled state [ 380.822433][ T8987] veth0_to_bridge: entered allmulticast mode [ 380.928364][ T8987] veth0_to_bridge: entered promiscuous mode [ 381.029354][ T8987] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 381.203683][ T8987] bridge0: port 2(veth0_to_bridge) entered blocking state [ 381.211015][ T8987] bridge0: port 2(veth0_to_bridge) entered forwarding state [ 381.867835][ T8999] x86/mm: Checked W+X mappings: passed, no W+X pages found. [ 382.732194][ T9006] GUP no longer grows the stack in syz.1.788 (9006): 14000-18000 (4000) [ 382.845104][ T9006] CPU: 0 UID: 0 PID: 9006 Comm: syz.1.788 Not tainted syzkaller #0 PREEMPT(full) [ 382.845138][ T9006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 382.845153][ T9006] Call Trace: [ 382.845160][ T9006] [ 382.845169][ T9006] dump_stack_lvl+0x16c/0x1f0 [ 382.845211][ T9006] gup_vma_lookup+0x1d2/0x220 [ 382.845244][ T9006] __get_user_pages+0x241/0x3530 [ 382.845288][ T9006] ? find_held_lock+0x2b/0x80 [ 382.845318][ T9006] ? __pfx___get_user_pages+0x10/0x10 [ 382.845360][ T9006] get_user_pages_remote+0x243/0xab0 [ 382.845400][ T9006] ? __pfx_get_user_pages_remote+0x10/0x10 [ 382.845435][ T9006] ? __pfx___might_resched+0x10/0x10 [ 382.845461][ T9006] ? noop_dirty_folio+0x5e/0xb0 [ 382.845494][ T9006] __access_remote_vm+0x250/0xaa0 [ 382.845532][ T9006] ? __pfx___access_remote_vm+0x10/0x10 [ 382.845572][ T9006] mem_rw+0x20e/0x640 [ 382.845597][ T9006] ? __pfx_mem_write+0x10/0x10 [ 382.845617][ T9006] vfs_write+0x2a0/0x11d0 [ 382.845648][ T9006] ? __pfx___mutex_lock+0x10/0x10 [ 382.845679][ T9006] ? __pfx_vfs_write+0x10/0x10 [ 382.845714][ T9006] ? __fget_files+0x20e/0x3c0 [ 382.845747][ T9006] ksys_write+0x12a/0x250 [ 382.845773][ T9006] ? __pfx_ksys_write+0x10/0x10 [ 382.845809][ T9006] do_syscall_64+0xcd/0xfa0 [ 382.845841][ T9006] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 382.845864][ T9006] RIP: 0033:0x7f696178f749 [ 382.845882][ T9006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 382.845904][ T9006] RSP: 002b:00007f696261d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 382.845925][ T9006] RAX: ffffffffffffffda RBX: 00007f69619e5fa0 RCX: 00007f696178f749 [ 382.845940][ T9006] RDX: 000000000000ffd8 RSI: 0000000000000000 RDI: 0000000000000003 [ 382.845954][ T9006] RBP: 00007f6961813f91 R08: 0000000000000000 R09: 0000000000000000 [ 382.845968][ T9006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 382.845981][ T9006] R13: 00007f69619e6038 R14: 00007f69619e5fa0 R15: 00007ffd94838008 [ 382.846013][ T9006] [ 384.864752][ T9046] netlink: 25 bytes leftover after parsing attributes in process `syz.3.796'. [ 385.683841][ T9049] zswap: compressor not available [ 386.567269][ T9073] ptrace attach of ""[9082] was attempted by "./syz-executor exec"[9073] [ 386.975631][ T9065] Invalid ELF header magic: != ELF [ 390.199540][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.211830][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.224325][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 390.236843][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.249202][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.262137][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 390.274473][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.289941][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.302655][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 390.314993][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 390.450344][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 390.483143][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 393.896872][ C0] sched: DL replenish lagged too much [ 395.209123][ C0] net_ratelimit: 24570 callbacks suppressed [ 395.209144][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.227444][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 395.239883][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.252214][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.264576][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 395.276926][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.289335][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.302019][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 395.314392][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 395.326743][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.219091][ C0] net_ratelimit: 24428 callbacks suppressed [ 400.219111][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.237325][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 400.249583][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.261795][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.274078][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 400.286620][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.298878][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.311186][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 400.323452][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 400.335655][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.229189][ C0] net_ratelimit: 26349 callbacks suppressed [ 405.229210][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 405.247452][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.259708][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.272203][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 405.284707][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.296928][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.309318][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 405.321637][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.333853][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 405.346160][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 410.239204][ C0] net_ratelimit: 26212 callbacks suppressed [ 410.239226][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.257782][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 410.270223][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.282484][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.294877][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 410.307249][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.319445][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.331900][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 410.344502][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 410.356745][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.249113][ C0] net_ratelimit: 26530 callbacks suppressed [ 415.249134][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.267360][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.279738][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 415.292077][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.304367][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.316726][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 415.329200][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.341454][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 415.353789][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 415.366322][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.259072][ C0] net_ratelimit: 26899 callbacks suppressed [ 420.259094][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 420.277521][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.289788][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.302301][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 420.314584][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.326769][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.339146][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 420.351479][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.363748][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 420.376262][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 425.269106][ C0] net_ratelimit: 26750 callbacks suppressed [ 425.269126][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 425.287421][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.299694][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.311991][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 425.324275][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.336799][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.349196][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 425.361485][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.373775][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 425.386402][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 430.279122][ C0] net_ratelimit: 26315 callbacks suppressed [ 430.279143][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 430.297932][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.310241][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.322677][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 430.335325][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.347545][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.359894][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 430.372592][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.384982][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 430.397378][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 435.289057][ C0] net_ratelimit: 26465 callbacks suppressed [ 435.289079][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 435.307644][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.319809][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.332196][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 435.344575][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.356922][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.369296][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 435.381563][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.393861][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.406486][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 440.299067][ C0] net_ratelimit: 26549 callbacks suppressed [ 440.299090][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 440.317521][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.330077][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.342353][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 440.354666][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.366948][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.379280][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 440.391669][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.404365][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 440.416631][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 445.309078][ C0] net_ratelimit: 26847 callbacks suppressed [ 445.309099][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.327557][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.339896][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 445.352250][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.364766][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.377048][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 445.389344][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.401546][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 445.413793][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 445.426036][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.319032][ C0] net_ratelimit: 27012 callbacks suppressed [ 450.319053][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.337470][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 450.349727][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.361910][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.374247][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 450.386566][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.398911][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.411493][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 450.423790][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 450.435954][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.329108][ C0] net_ratelimit: 26508 callbacks suppressed [ 455.329129][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 455.347368][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.359629][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.372228][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 455.384876][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.397070][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.409770][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 455.422247][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.434718][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 455.447110][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 456.666157][ T1301] ieee802154 phy0 wpan0: encryption failed: -22 [ 460.339817][ C0] net_ratelimit: 26446 callbacks suppressed [ 460.339839][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.358220][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 460.370555][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.382985][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.395371][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 460.408000][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.420732][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.433446][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 460.446190][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 460.458480][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.349178][ C0] net_ratelimit: 26723 callbacks suppressed [ 465.349199][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.367738][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 465.380193][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.393540][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.405978][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 465.418344][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.430853][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.443222][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 465.455589][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 465.467757][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.359109][ C0] net_ratelimit: 26842 callbacks suppressed [ 470.359132][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.377496][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.389845][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 470.402157][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.414675][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.426950][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 470.439219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.451370][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 470.463642][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 470.476277][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.369208][ C0] net_ratelimit: 26870 callbacks suppressed [ 475.369229][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.387539][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.399892][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 475.412434][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.424884][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.437236][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 475.449593][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.461793][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 475.474167][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 475.486548][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.379014][ C0] net_ratelimit: 26577 callbacks suppressed [ 480.379034][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.397242][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 480.409957][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.422244][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.434605][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 480.446992][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.459212][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.471564][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 480.484363][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 480.496879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.389170][ C0] net_ratelimit: 26544 callbacks suppressed [ 485.389192][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 485.407761][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.420104][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.432500][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 485.444853][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.457135][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.469477][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 485.481761][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.494115][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 485.506476][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 490.399024][ C0] net_ratelimit: 26750 callbacks suppressed [ 490.399045][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 490.417745][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.430064][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.442581][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 490.454840][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.467322][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.479702][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 490.492043][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.504215][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 490.516833][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 495.409087][ C0] net_ratelimit: 26742 callbacks suppressed [ 495.409109][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.427422][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.439783][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 495.452167][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.464360][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.476807][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 495.489090][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.501246][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 495.513591][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 495.525878][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.419081][ C0] net_ratelimit: 26970 callbacks suppressed [ 500.419102][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.437404][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 500.449756][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.462021][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.474377][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 500.486726][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.499055][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.511363][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 500.523634][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 500.535875][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 502.528989][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 502.535980][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P5833/1:b..l [ 502.544503][ C0] rcu: (detected by 0, t=10502 jiffies, g=36533, q=556 ncpus=1) [ 502.552359][ C0] task:udevd state:R running task stack:24728 pid:5833 tgid:5833 ppid:5200 task_flags:0x400140 flags:0x00080001 [ 502.567115][ C0] Call Trace: [ 502.570430][ C0] [ 502.573381][ C0] __schedule+0x1190/0x5de0 [ 502.577925][ C0] ? stack_trace_save+0x8e/0xc0 [ 502.582897][ C0] ? __pfx___schedule+0x10/0x10 [ 502.587796][ C0] preempt_schedule_irq+0x51/0x90 [ 502.592842][ C0] irqentry_exit+0x36/0x90 [ 502.597309][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 502.603309][ C0] RIP: 0010:lock_acquire+0x62/0x350 [ 502.608832][ C0] Code: dd 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 a2 f9 e9 0e 0f 82 74 02 00 00 8b 35 fa 29 ea 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 b9 dc 08 12 0f 85 c7 02 00 00 48 83 c4 [ 502.628469][ C0] RSP: 0018:ffffc9000408f920 EFLAGS: 00000206 [ 502.634652][ C0] RAX: 0000000000000046 RBX: ffffffff8e3c45e0 RCX: 00000000ef9d33e4 [ 502.642638][ C0] RDX: 0000000000000000 RSI: ffffffff8da0398a RDI: ffffffff8bf078c0 [ 502.650620][ C0] RBP: 0000000000000002 R08: 0ac0d5affe09d4ff R09: 0000000000000000 [ 502.658615][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 502.666608][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 502.674795][ C0] ? unwind_next_frame+0x3f4/0x20a0 [ 502.680022][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 502.686394][ C0] unwind_next_frame+0xd1/0x20a0 [ 502.691350][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 502.696479][ C0] ? __fput+0x68d/0xb70 [ 502.700664][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 502.706843][ C0] arch_stack_walk+0x94/0x100 [ 502.711539][ C0] ? __fput+0x68d/0xb70 [ 502.715721][ C0] stack_trace_save+0x8e/0xc0 [ 502.720424][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 502.725936][ C0] ? __lock_acquire+0xb8a/0x1c90 [ 502.730905][ C0] kasan_save_stack+0x33/0x60 [ 502.735621][ C0] ? kasan_save_stack+0x33/0x60 [ 502.740582][ C0] ? kasan_save_track+0x14/0x30 [ 502.745451][ C0] ? __kasan_kmalloc+0xaa/0xb0 [ 502.750411][ C0] ? kmem_cache_free+0x147/0x6c0 [ 502.755566][ C0] ? __fput+0x68d/0xb70 [ 502.759795][ C0] kasan_save_track+0x14/0x30 [ 502.764495][ C0] __kasan_kmalloc+0xaa/0xb0 [ 502.769161][ C0] kmem_cache_free+0x147/0x6c0 [ 502.774088][ C0] ? __fput+0x68d/0xb70 [ 502.778398][ C0] ? __fput+0x68d/0xb70 [ 502.782592][ C0] __fput+0x68d/0xb70 [ 502.786622][ C0] fput_close_sync+0x118/0x210 [ 502.791439][ C0] ? __pfx_fput_close_sync+0x10/0x10 [ 502.796755][ C0] ? dnotify_flush+0x79/0x4c0 [ 502.801472][ C0] __x64_sys_close+0x8b/0x120 [ 502.806184][ C0] do_syscall_64+0xcd/0xfa0 [ 502.810709][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.816656][ C0] RIP: 0033:0x7fdde04a7407 [ 502.821175][ C0] RSP: 002b:00007ffdbcd503c0 EFLAGS: 00000202 ORIG_RAX: 0000000000000003 [ 502.829696][ C0] RAX: ffffffffffffffda RBX: 00007fdde0bf5880 RCX: 00007fdde04a7407 [ 502.837797][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 502.845865][ C0] RBP: 00007fdde0bf56e8 R08: 0000000000000000 R09: 0000000000000000 [ 502.853849][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 502.861827][ C0] R13: 00007ffdbcd50480 R14: 0000000000000000 R15: 0000000000000000 [ 502.869828][ C0] [ 502.872853][ C0] rcu: rcu_preempt kthread starved for 242 jiffies! g36533 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 502.883885][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 502.893863][ C0] rcu: RCU grace-period kthread stack dump: [ 502.899946][ C0] task:rcu_preempt state:R running task stack:27720 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 502.913654][ C0] Call Trace: [ 502.916952][ C0] [ 502.919905][ C0] __schedule+0x1190/0x5de0 [ 502.924524][ C0] ? __lock_acquire+0x622/0x1c90 [ 502.929490][ C0] ? __pfx___schedule+0x10/0x10 [ 502.934368][ C0] ? find_held_lock+0x2b/0x80 [ 502.939060][ C0] ? schedule+0x2d7/0x3a0 [ 502.943411][ C0] schedule+0xe7/0x3a0 [ 502.947508][ C0] schedule_timeout+0x123/0x290 [ 502.952483][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 502.957895][ C0] ? __pfx_process_timeout+0x10/0x10 [ 502.963223][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 502.969060][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 502.974564][ C0] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 502.979402][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 502.984734][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 502.989713][ C0] ? rcu_is_watching+0x12/0xc0 [ 502.994508][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 503.000356][ C0] rcu_gp_kthread+0x26d/0x380 [ 503.005168][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 503.010392][ C0] ? rcu_is_watching+0x12/0xc0 [ 503.015180][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 503.020400][ C0] ? __kthread_parkme+0x19e/0x250 [ 503.025454][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 503.030678][ C0] kthread+0x3c5/0x780 [ 503.034776][ C0] ? __pfx_kthread+0x10/0x10 [ 503.039409][ C0] ? rcu_is_watching+0x12/0xc0 [ 503.044209][ C0] ? __pfx_kthread+0x10/0x10 [ 503.048848][ C0] ret_from_fork+0x675/0x7d0 [ 503.053490][ C0] ? __pfx_kthread+0x10/0x10 [ 503.058125][ C0] ret_from_fork_asm+0x1a/0x30 [ 503.063122][ C0] [ 503.066163][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 503.072515][ C0] CPU: 0 UID: 0 PID: 3409 Comm: kworker/R-bat_e Not tainted syzkaller #0 PREEMPT(full) [ 503.082353][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 503.092432][ C0] Workqueue: bat_events batadv_dat_purge [ 503.098087][ C0] RIP: 0010:ip6t_do_table+0xee0/0x1c30 [ 503.103616][ C0] Code: fc ff df 48 89 f9 48 c1 e9 03 80 3c 01 00 0f 85 fa 0b 00 00 48 89 54 24 08 48 8b 9d 98 00 00 00 e8 85 0b 3e 01 48 8b 54 24 08 <83> f8 07 41 89 c4 0f 87 88 0b 00 00 4a 8d 3c e5 e0 fe cc 8d 48 b8 [ 503.123241][ C0] RSP: 0018:ffffc90000007430 EFLAGS: 00000292 [ 503.129328][ C0] RAX: 0000000000000000 RBX: 0000607edb26f000 RCX: 1ffff11005db141b [ 503.137317][ C0] RDX: ffff88802ed8a0cc RSI: ffffffff8bf07840 RDI: ffffffff8bf07880 [ 503.145310][ C0] RBP: ffff88802ed8a040 R08: 0000000000000005 R09: 0000000000000001 [ 503.153295][ C0] R10: 0000000000000002 R11: ffff88809f5cd5b8 R12: 0000000000000004 [ 503.161282][ C0] R13: ffff88802ed8a0e8 R14: dffffc0000000000 R15: 0000000000000000 [ 503.169441][ C0] FS: 0000000000000000(0000) GS:ffff888124a0d000(0000) knlGS:0000000000000000 [ 503.178387][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 503.184984][ C0] CR2: 00005624cff50e30 CR3: 00000000772a2000 CR4: 00000000003526f0 [ 503.192987][ C0] Call Trace: [ 503.196279][ C0] [ 503.199139][ C0] ? batadv_dat_purge+0x4b/0xa0 [ 503.204031][ C0] ? __local_bh_enable_ip+0xa4/0x120 [ 503.209342][ C0] ? ip6t_do_table+0xc25/0x1c30 [ 503.214222][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 503.219371][ C0] ip6table_mangle_hook+0xc3/0x770 [ 503.224519][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 503.229709][ C0] ? find_held_lock+0x2b/0x80 [ 503.234405][ C0] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 503.240185][ C0] ? lock_acquire+0x179/0x350 [ 503.244901][ C0] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 503.250648][ C0] nf_hook_slow+0xbe/0x200 [ 503.255081][ C0] br_nf_pre_routing_ipv6+0x514/0x8c0 [ 503.260479][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 503.266391][ C0] ? lock_acquire+0x179/0x350 [ 503.271101][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 503.277622][ C0] ? net_generic+0xea/0x2a0 [ 503.282152][ C0] br_nf_pre_routing+0x860/0x15b0 [ 503.287202][ C0] br_handle_frame+0xb28/0x14e0 [ 503.292082][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 503.297392][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 503.303336][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 503.308655][ C0] __netif_receive_skb_core.constprop.0+0xa25/0x4bd0 [ 503.315394][ C0] ? find_held_lock+0x2b/0x80 [ 503.320101][ C0] ? debug_object_activate+0x2ec/0x4c0 [ 503.325601][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 503.330921][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 503.338091][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 503.344007][ C0] ? debug_object_activate+0x2ec/0x4c0 [ 503.349500][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 503.354922][ C0] ? __pfx_debug_object_activate+0x10/0x10 [ 503.360754][ C0] ? find_held_lock+0x2b/0x80 [ 503.365515][ C0] ? mark_held_locks+0x49/0x80 [ 503.370342][ C0] ? __lock_acquire+0x622/0x1c90 [ 503.375327][ C0] ? process_backlog+0x3e7/0x15e0 [ 503.380395][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 503.386241][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 503.392699][ C0] ? lock_acquire+0x179/0x350 [ 503.397412][ C0] ? process_backlog+0x3e7/0x15e0 [ 503.402503][ C0] __netif_receive_skb+0x1d/0x160 [ 503.407592][ C0] process_backlog+0x439/0x15e0 [ 503.412561][ C0] __napi_poll.constprop.0+0xba/0x550 [ 503.418024][ C0] ? skb_defer_free_flush+0x149/0x280 [ 503.423433][ C0] net_rx_action+0x97f/0xef0 [ 503.428089][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 503.433246][ C0] ? mark_held_locks+0x49/0x80 [ 503.438047][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 503.443506][ C0] ? tmigr_handle_remote+0x132/0x380 [ 503.448839][ C0] ? run_timer_base+0x121/0x190 [ 503.453728][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 503.458959][ C0] handle_softirqs+0x219/0x8e0 [ 503.463747][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 503.469056][ C0] ? __batadv_dat_purge.part.0+0x279/0x3a0 [ 503.474979][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 503.480766][ C0] do_softirq+0xb2/0xf0 [ 503.485048][ C0] [ 503.487995][ C0] [ 503.491637][ C0] __local_bh_enable_ip+0x100/0x120 [ 503.496859][ C0] __batadv_dat_purge.part.0+0x279/0x3a0 [ 503.502566][ C0] batadv_dat_purge+0x4b/0xa0 [ 503.507273][ C0] process_one_work+0x9cf/0x1b70 [ 503.512256][ C0] ? __pfx_process_one_work+0x10/0x10 [ 503.517666][ C0] ? assign_work+0x1a0/0x250 [ 503.522369][ C0] rescuer_thread+0x620/0xea0 [ 503.527096][ C0] ? rcu_is_watching+0x12/0xc0 [ 503.531889][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 503.537119][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 503.542348][ C0] ? __kthread_parkme+0x19e/0x250 [ 503.547576][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 503.552979][ C0] kthread+0x3c5/0x780 [ 503.557073][ C0] ? __pfx_kthread+0x10/0x10 [ 503.561705][ C0] ? rcu_is_watching+0x12/0xc0 [ 503.566499][ C0] ? __pfx_kthread+0x10/0x10 [ 503.571287][ C0] ret_from_fork+0x675/0x7d0 [ 503.575910][ C0] ? __pfx_kthread+0x10/0x10 [ 503.580615][ C0] ret_from_fork_asm+0x1a/0x30 [ 503.585419][ C0] [ 503.762970][ T1301] ieee802154 phy1 wpan1: encryption failed: -22 [ 505.429141][ C0] net_ratelimit: 20553 callbacks suppressed [ 505.429162][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 505.447387][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.459655][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.471953][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 505.484342][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.496677][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.509111][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 505.521400][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.533798][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 505.546241][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 510.439033][ C0] net_ratelimit: 24784 callbacks suppressed [ 510.439055][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.457706][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 510.470025][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.482287][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.494547][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 510.506896][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.519175][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.531495][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:92:99:f4:0a:f6:4f, vlan:0) [ 510.543823][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 510.556023][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)