last executing test programs: 2m10.726287295s ago: executing program 0 (id=1439): mmap$auto(0x0, 0x2020007, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) preadv$auto(r0, &(0x7f0000000080)={0x0, 0xfffffffa}, 0x6, 0x3, 0x5) lseek$auto(0x3, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdeb) munmap$auto(0x8001, 0x8001) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x4bc443, 0x0) semctl$auto(0x2, 0x5, 0x13, 0x9) mmap$auto(0x0, 0x40000f, 0xdf, 0x1cda, r1, 0x7) close_range$auto(r0, 0x5, 0x0) mmap$auto(0x0, 0x40009, 0x40000000000000dd, 0x9b72, 0x7, 0x27ffc) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) fsopen$auto(0x0, 0x1) close_range$auto(0x2, 0x8, 0x0) prctl$auto(0x43, 0x2000017, 0x0, 0x0, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x88b02, 0x0) write$auto(r2, &(0x7f00000001c0)='1\x00\xc7k\x00\x00\x00\x00\x00\x00\x00\x00\x00\x06j(=\xd1<\xf9\x96\x10>\xb9\x05\xbe\xc8v\x81-ILplM\x98\x88J\xfd\x17\xc8K\xdd\x89;T@d\xa3_\xfcb8\x7fA\x11\xba\xefL\xe1L\x8aE}\xa7\x05\b\xd7\xe2\xae\xfek\xbbw\x8c\x88\x1emW-\xf5\x94\xdak\x81\xe4\x1e\x1dS\xf2~>\xb1\xc6\xd1\xee\xc8\x19e\xc1w\xf05%\xd76]\x0f\v\x01\xa4(\xec\xd3\xca\a\x15&nv\xc1}\xfcD', 0x100000002) 2m9.700916696s ago: executing program 3 (id=1442): sendmsg$auto_NFSD_CMD_THREADS_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x400c000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/class/devcoredump/disabled\x00', 0xe3102, 0x0) write$auto(r0, &(0x7f0000000000)='-\x00', 0xfdef) bpf$auto(0x1, &(0x7f0000000000)=@batch={0xfffffffffffffffb, 0x44, 0x2, 0x9, 0xffffff10, 0xffffffffffffffff, 0x2, 0xffffffffffffffff}, 0x100000cf) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x29, 0x2, 0x0) flock$auto(0x1, 0x6) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200"], 0x1ac}}, 0x40000) getpid() mmap$auto(0x0, 0x8, 0x4000000000e1, 0xeb1, 0x401, 0x40000008000) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) openat$auto_random_fops_random(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) write$auto_dfs_global_fops_debug(0xffffffffffffffff, 0x0, 0x0) msgsnd$auto(0x0, &(0x7f0000000000)={0x1, 0x5}, 0x8, 0x7) msgrcv$auto(0x0, 0x0, 0x4bd, 0x1, 0xf1) 2m9.494865222s ago: executing program 3 (id=1443): mmap$auto(0x0, 0x420009, 0xfff, 0xeb1, 0x401, 0x100000001) r0 = bpf$auto(0x0, &(0x7f00000001c0)=@bpf_attr_7={@btf_id=0x80000000, 0x80000000, 0x3}, 0x6f4) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ram5\x00', 0x14fa02, 0x0) mmap$auto(0x535, 0x0, 0x7, 0x800000000805e, 0xffffffffffffffff, 0x4) sendmsg$auto_NL80211_CMD_GET_STATION(r0, 0x0, 0x8000) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) socket(0xa, 0x1, 0xfffffeff) r2 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) pread64$auto(r2, 0x0, 0x2, 0x3) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r1, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\x97U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x181500, 0x0) sched_setattr$auto(0x0, 0x0, 0x7b) msync$auto(0x79, 0x5, 0x80) mmap$auto(0x8, 0x7f, 0xdf, 0x9b72, 0x2, 0x8000) fanotify_mark$auto(0xffffffffffffffff, 0x9, 0x1000000009, r0, 0x0) open(&(0x7f0000000100)='.\x00', 0x0, 0x408) r3 = setfsuid$auto(0xee01) setresuid$auto(0x0, r3, 0x0) getdents$auto(0xffffffffffffffff, 0x0, 0x400018) r4 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r4, 0x29, 0x19, &(0x7f0000000040)='!\x00', 0x1ff) sendfile$auto(0x3, 0x3, 0x0, 0x400000000006) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ipvs(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$auto_IPVS_CMD_GET_DAEMON(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x40000) writev$auto(0xffffffffffffffff, 0x0, 0x8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000480)='/sys/module/zswap/parameters/compressor\x00', 0x80002, 0x0) openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0) 2m9.242509945s ago: executing program 0 (id=1445): mmap$auto(0x0, 0xb9f, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16, @ANYBLOB="1b0026bd7400fddbdf25030000000400080010"], 0x40}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000200bd7000fedbdf250200000800130001"], 0x24}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2m9.122938997s ago: executing program 0 (id=1446): openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) openat$auto_nsim_dev_take_snapshot_fops_dev(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim3/take_snapshot\x00', 0x82622, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000340)={0x100000000, @raw=0x10, @raw=0x8000000000000000, 0x3, 0x0, '\x00', {0x3, 0x8, 0xd9, 0xee01, 0xee00, 0x5, 0x0, 0xdc05, {0xe, 0x6}, {0x7fffffffffffffff, 0x9}, {0xe, 0x8}, 0xc, 0xfb, 0xf, 0xc4bc, 0x401, 0x3, 0x7ff, 0x8001, 0xfffa, 0x7, '\x00', 0x8, 0xfffffff7, 0x4, 0x2}}) r0 = openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/swaps\x00', 0x40000, 0x0) poll$auto(&(0x7f0000000040)={r0, 0x7ff, 0x264}, 0x100, 0x6) 2m8.89091509s ago: executing program 0 (id=1449): r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) write$auto(0xffffffffffffffff, 0x0, 0x8000000000000001) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) getpid() openat$auto_drm_debugfs_entry_fops_drm_debugfs(0xffffffffffffff9c, 0x0, 0x503083, 0x0) syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(0xffffffffffffffff, 0x0, 0x40800) unshare$auto(0x40000080) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat$auto_mon_fops_binary_mon_bin(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/usbmon0\x00', 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r2) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000001300)=ANY=[@ANYBLOB="1c000a00", @ANYRES16=r3, @ANYBLOB="05082dbd7000fbdbdf257e0000000800db00ab29dc931f0e02b7745be74fb8e8255f614f85f94bc5ef8facda4b1cb3e135ef23203752a9a06f5adc02fe10fd6059eb5ec860fbb39453d7ba92bd5a73e0e45ce2d585cccf203901d41ed36536bffcadc5fa27dbe72d209b4c922ee03aba35fb65731b21d405c9def0a3765c9b0ff8fbbff63336633bec215ead541e5766", @ANYRES32, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x4004044}, 0x8000) sendmsg$auto_NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001280)={&(0x7f0000001140)={0x14, r3, 0x8, 0x70bd27, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x91}, 0x10) ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0) ioctl$auto_MON_IOCX_MFETCH(r1, 0xc0109207, 0x0) mlockall$auto(0x7) mprotect$auto(0x0, 0x806121, 0x6) bpf$auto(0x5, &(0x7f0000000080)=@bpf_attr_7={@prog_id=0xc, 0x92f1, 0x4}, 0xa) 2m8.452825831s ago: executing program 3 (id=1451): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) fallocate$auto(0xffffffffffffffff, 0x80000801, 0xabfe, 0x6655) r1 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x2) statmount$auto(&(0x7f0000000080)={0xa, @raw, 0x5, 0x8, 0x2}, 0x0, 0x6c855567, 0xffffffff) ioctl$auto_USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000000)={0x23, 0x4, 0x17, 0x10, 0x3ff, 0x7fb, &(0x7f00000002c0)}) write$auto(0xffffffffffffffff, &(0x7f0000000180)='0l80211\x00', 0x1) r2 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/devices/system/node/node1/hugepages/hugepages-1048576kB/demote\x00', 0x183841, 0x0) r4 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000000240), r2) sendmsg$auto_NBD_CMD_RECONFIGURE(r1, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r4, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0xc, 0xa, '0l80211\x00'}, @NBD_ATTR_BACKEND_IDENTIFIER={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x44}, 0x4800) write$auto(r3, &(0x7f00000003c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94&\x81\xe2\x13\x8f\xea#\xf8F\xbbOO]e[\xbb\xf9\xcd\xc0\xc9\x00\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\b\xc1\x04z\xd0I>\x8f\x00\xe5\x1c*\xed`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\f};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xcbA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xdeL/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(', 0xa) mmap$auto(0x0, 0x8, 0x1000000004, 0x9b72, 0x2, 0x8000) r5 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x89b0, &(0x7f0000000140)={'bridge0\x00'}) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x88b02, 0x0) write$auto(r0, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) msync$auto(0x1ffff000, 0x8001, 0x15) prctl$auto_SECCOMP_MODE_STRICT(0x7ffffffe, 0x1, 0x0, 0x0, 0x3) prctl$auto(0x43, 0x0, 0x0, 0x0, 0x0) 2m7.790304945s ago: executing program 3 (id=1456): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x100, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x2a742, 0x0) mmap$auto(0x0, 0x10000, 0xde, 0x11, r0, 0x28000) madvise$auto(0x0, 0x2000040080000004, 0xe) madvise$auto(0x0, 0xffffffffffff0005, 0x17) close_range$auto(0x2, 0x8, 0x0) msync$auto(0x0, 0x300, 0x6) 2m7.614419661s ago: executing program 0 (id=1458): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) unshare$auto(0x40000080) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x48200, 0x0) ioctl$auto(0xffffffffffffffff, 0x540a, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_register$auto(0x2, 0x11, &(0x7f0000000180), 0x83) sendmsg$auto_NL80211_CMD_LEAVE_OCB(0xffffffffffffffff, 0x0, 0x40000) set_mempolicy_home_node$auto(0x0, 0x200fffd, 0x5, 0x0) io_setup$auto(0x1, 0x0) socket(0x2c, 0x3, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x1cb602, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) pipe$auto(0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cec7\x00', 0x10b101, 0x0) unshare$auto(0xff2e) ioctl$auto_CEC_S_MODE(r1, 0x40046109, &(0x7f0000002c40)=0xd0) 2m7.378647458s ago: executing program 3 (id=1459): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff003) vmsplice$auto(0x2, 0x0, 0x8000000000000001, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x0, 0x0) socket(0xf, 0x3, 0x2) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0x6, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x3, 0xfff, 0x1, 0x948b, 0x3, 0x95f4da2d, 0xc, 0x6, 0x62, 0x7, 0x7, 0x6d3f, 0xa, 0x5, 0x5]}, 0x0) write$auto(r0, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000140), 0x60a41, 0x0) select$auto(0x12, 0x0, 0x0, 0x0, 0x0) madvise$auto(0x0, 0x8000000005, 0x12) close_range$auto(0x0, 0x5, 0x0) r1 = epoll_create$auto(0x3e) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) epoll_create$auto(0x3e) epoll_ctl$auto(0x5, 0x1, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) r2 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/swradio12\x00', 0x0, 0x0) poll$auto(&(0x7f0000000480)={r2, 0xffff, 0x29}, 0x3, 0x8) keyctl$auto_KEYCTL_SETPERM(0x5, 0x8001, 0xdbf7, 0x5, 0x10) r3 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) ioctl$auto_TIOCGPGRP(r1, 0x540f, &(0x7f0000000180)="128cad3f114da12305759a02edbb5b8ec8797280b3535ec550423970477c8e522d50712bbff0b632661cc3bf50ecbc5aa1257a0c9325a731d320170930b3dda3a4c29acd2766f4c7e014c4ce7a83c46ae6805f271c358f7486956d00706ae53ea7b28b05715da116070b5e08e48913c441e8c22ee766c543b234c45e63415b8d09208a73bd347f7707644d2b3e101906e2fb531c0c920b704dc859870d8dede916beab74a5c96a61f80309751256f36e5588e4ba23a626534704447a3a1905fbe496164270b9766898cee836a7666ba7e5cc13849b560067a6535bbccb7642") prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r3, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) madvise$auto(0x0, 0x2003f0, 0x15) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 2m7.206754668s ago: executing program 2 (id=1460): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/firmware/acpi/interrupts/ff_pmtimer\x00', 0xa0000, 0x0) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000001f00), r0) sendmsg$auto_TIPC_NL_BEARER_ENABLE(r0, 0x0, 0x40008) mmap$auto(0x0, 0x2020009, 0x2, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1082c1, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0xafefa9ff3f168676, 0x0) ioctl$auto_SNDCTL_SEQ_THRESHOLD(r1, 0x4004510d, &(0x7f0000000240)="8c4f676266df3bae") close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x1b, &(0x7f0000000000), 0x1) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0xbae82, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8000ffff}, 0x3) close_range$auto(0x2, 0xffffffffffffffff, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/devices/platform/dummy_hcd.7/usb8/power/level\x00', 0x2c81, 0x0) r2 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) ioctl$auto_UI_DEV_SETUP(r2, 0x405c5503, &(0x7f00000000c0)={{0x9, 0xb180, 0x8, 0x80}, "6a034a07c7b82d90b69a39e32576f89300a86c9dd051a0094a3836d61c9100fefbbabea6ef9368c7996e841f3f1561d4992f726b0a6c36b0b2fd1678e816201cf562367fe6596824588a2e3d84ba165f", 0xa}) ioctl$auto_UI_DEV_CREATE(r2, 0x5501, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, r2, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) pselect6$auto(0x3, 0x0, &(0x7f0000000340)={[0x1, 0x6, 0x42, 0x2f3, 0x80000001, 0x7ffffffb, 0x0, 0xfe, 0x4, 0x200000060c9, 0x40, 0x67a4ee2e, 0x4, 0x80000000, 0xa, 0x400000b]}, 0x0, 0x0, 0x0) ioctl$auto_UI_SET_PHYS(r2, 0x4008556c, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/lockdep_chains\x00', 0x101002, 0x0) r3 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x18b803, 0x0) timer_create$auto(0x2, 0x0, &(0x7f0000000140)=0x6) timer_delete$auto(0x0) ioctl$auto_IMADDTIMER(r3, 0x80044940, 0x0) ioctl$auto_IMADDTIMER(0xffffffffffffffff, 0x80044940, 0x0) unshare$auto(0x40000080) 2m5.701947305s ago: executing program 2 (id=1461): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) socket(0x1d, 0x3, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) (fail_nth: 2) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) get_mempolicy$auto(0xfffffffffffffffe, 0x0, 0x3, 0x1ff, 0x3) sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)={0x14, r2, 0x9d0da3446261172d, 0x70bd2d, 0x25dfdbfe}, 0x14}, 0x1, 0xa6ffffffffffffff, 0x0, 0x2400f000}, 0x20008080) 2m5.245998832s ago: executing program 2 (id=1462): ioctl$auto_HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f0000000040)) 2m5.137364599s ago: executing program 2 (id=1464): shmctl$auto_IPC_RMID(0x6, 0x0, &(0x7f00000002c0)={{0x6, 0xffffffffffffffff, 0xee00, 0x7f, 0x0, 0x3, 0x4}, 0x9, 0x0, 0x4245, 0x2, @inferred, @raw=0x437, 0x8, 0x0, 0x0, 0x0}) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r0) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB=' .\x00\x00', @ANYRES16=r1, @ANYBLOB="01002ebd5100fbcbdf25010000000400016f072e01"], 0x2e20}, 0x1, 0x4000, 0x0, 0x2000c040}, 0x4) 2m4.922739904s ago: executing program 0 (id=1465): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) capset$auto(0x0, &(0x7f0000000000)={0x4, 0x20006, 0x40}) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) r3 = socket(0x11, 0x2, 0x6) capset$auto(0x0, &(0x7f0000000000)={0xa82, 0x3a, 0x4001}) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_SET_HALT(r4, 0x4004550d, 0x0) r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000100), r0) sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010027bd7000fedbdf250100000008000100", @ANYRES32=r1, @ANYBLOB="28000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x400c045}, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r6 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) ioctl$auto_SG_GET_NUM_WAITING(r6, 0x227d, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r7, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r7, 0x0, r7, &(0x7f0000000240)='./file1\x00', 0x1) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) prctl$auto(0x41, 0x0, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff024}}) write$auto(r2, 0x0, 0x6) 2m4.896607736s ago: executing program 2 (id=1466): socket(0x29, 0x0, 0x1) (async) shmctl$auto_SHM_LOCK(0x2, 0xb, &(0x7f0000000200)={{0x8, 0xee01, 0xee01, 0x333, 0x1, 0xdc66, 0xfff9}, 0xfffffff7, 0xffffffffffffffff, 0x1ff, 0xc74, @raw=0x3, @raw, 0x8, 0x0, &(0x7f0000000000)="09c04e28946ab0e4cd5082fae10a675ec32b84ba20aabbb841b77ef33ee185a126dc3ba1ba44875f0090fab7d2a99db586778cf5490a52cca1170d079835189006ea08ee0eede456bb91d67d8c5edfb2098f3f5944b31c39eac924cd279d0a87d8734ff86874ad780848ff51e756a1741eef586bcad6002be2f1eca1f961f5371e9305a1ce0b923b7ea29f783495b7b297f2ba17587662f7dae6f076c51705000e3757670f64292c", &(0x7f00000000c0)}) shmctl$auto(0x0, 0x1, &(0x7f00000003c0)={{0x17bc, 0xffffffffffffffff, r0, 0x0, 0x7, 0x6, 0xfffc}, 0x83b, 0x0, 0x200000000000002, 0xfffffffffffffffd, @raw=0x4, @raw=0x50, 0x5, 0x0, 0x0, 0x0}) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x400) (async) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) (async) write$auto_full_fops_mem(0xffffffffffffffff, 0x0, 0x0) (async) r1 = openat$auto_vhost_vsock_fops_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) poll$auto(&(0x7f0000000180)={r1, 0xfff7, 0x9816}, 0x7f, 0x1) ioctl$auto_VHOST_SET_OWNER(r2, 0xaf01, 0x0) (async) mmap$auto(0x0, 0x6, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) (async) ioctl$auto(0xffffffffffffffff, 0x40104d0e, 0xe) (async) write$auto(0xffffffffffffffff, &(0x7f00000005c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D_#\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc^:\xd1\xe3\xf1@\xc0\x93^:Mn#Oi\xaa[X\x93)\x8f\x03K\xe6\xa4\x11?\xf1\x02+\\\xf9\x8b\xe5l5\x11\x006c\x907E\xeb\x81\fB\xe3\xf8n\x8f\x94V\xbcB\x9cm\x9f\x15\x00Q\xf8\x8fFW#?\xd5Z~\xa51\x832\xbd|\x19\xda\x8e\xff\x17\r\x96\xa3\xcc+\xf4a\xffN\xd2_\xe5\\\xf8Lzc\xd4\xa0\x1f\x04_\xf1\xc6\fO\xbe?)Q\xc7\\B\xdb\xeaI\xde\xe9m\xf5\xf9\x19\xd3@IK\xe3c\x0ek\x8drZ\xad\xdc\xbb\xfc\xd4\x1f\xdaOW\x87\xb6Fm\x12\xadw(z\\j\xcc0P\xaeC\x9f\xbf\xd5\xf9\xe3\x85~cG\f\x85\xd6\x84ma\xfd\xdayNj\x80\xdd3^\x87,\x14\x8e\xbe$\x05\x8a\xb0 M\xf6$B TCs\xa9\x91dil[\xfc\a\xbfD\xd9\x8d(F\x1e\f\xec\xe9K|h\xf5\xcaUI\x18#\xbed\xa8C\x8a\xbb\fE\xe6\xa3|\xf7\xa8\xbb\xd3\x97l.V/uc\xb5Q\x1eY\xe0\x03\xa1\xc1\xc8\xe2=RK\x7fWV;\xe4\xccTsf\xa7[\xdd\x9cR\xab\xf81s\xbc\x9c\xaaSGH\x9al\xb9%u\v\xb4\x9d\x95\x16\x01\xbbT\x99S\xf8A\xcd\bRC\xf4\xb0\x1a%\xdd+1\x81\x9d6\x90\xe8\xc6\xc1\x1e\xf0~\xaf\x10g&\xd6\x01l::V\xdbJiVW\xab4G\x97\x9cl', 0x100000a3d9) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/nfs/exports\x00', 0x680, 0x0) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) (async) r3 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000880)='/dev/input/event0\x00', 0x40100, 0x0) ioctl$auto_EVIOCGMASK(r3, 0x80104592, &(0x7f0000000000)={0x8, 0x6, 0x1fe}) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) (async) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/input/event0\x00', 0x0, 0x0) (async) r4 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0xb) (async) socket(0x2a, 0x2, 0x1) (async) write$auto(0xffffffffffffffff, &(0x7f0000000400)='odev/audio1\x00', 0x100000a3d9) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/virtual/block/ram1/queue/add_random\x00', 0x1a1842, 0x0) (async) write$auto(r4, &(0x7f0000000340)='9\x00d1L\xff\x15\xba\xa17=(\xc1\xf8\xff\xff[\x00\x00\x00\x00\x00Y\xc9\x1d\x13\xa0\xc4\xbf\xcd\x85\x05\xdb\xc6a\x8f\xe2\xadT\x11\x9f`\x8cL\ai,5\xc0\xf4\xad\x93\xdeLdV\xb8\xc1>,\x85\xc5Gr\xc2\xedx\xd3\xa7H\xdb\a\x00\x00\xfc\x15\x9es\xae\xb3Z*\x98Al\xf1lc\x8b\xb9\x04\x00\x05\xe4x\xde\xee\xaa6>[_\xfe\xd4|\x1f\xd2\x81%/\x1d\x98\xf9\xdf\xa2?\x06', 0xfffffffffffffffe) (async) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x12040, 0x0) 2m4.205775596s ago: executing program 3 (id=1467): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/radio18\x00', 0x8aa40, 0x0) ioctl$auto(r0, 0x5646, r0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000280)=""/40, 0x28) ioctl$auto(r0, 0x2400000, 0xffffffffffffffff) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000001c00)={&(0x7f0000001b80), 0x9873}, 0x6) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYBLOB='\b\x00', @ANYRES32, @ANYBLOB="0d000100262324405c5d5c2d0000003e435cde9bc39eb0caf599fe08d76c86071d64ea04a6b464e437e042ae937e28d4bd6beafd457ca4a418224ccbe29a3385d2e791bc1ac692fac3f593ed685b1b5a468e3c22cbabf015e67ddf"], 0x34}, 0x1, 0x300, 0x0, 0x801}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IEEE802154_DEL_IFACE(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000295a00002200000005001f0006000000050036007f000000050003000700000008001400ffffffff0500270002000000060008000100000005002600060000000f001f002f6465762f74747931320000"], 0x5c}, 0x1, 0x0, 0x0, 0x44044}, 0x8080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x680803, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x101001, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x5, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r4 = setfsuid$auto(0xee00) r5 = setfsuid$auto(0xee01) setresuid$auto(r4, r5, r4) ioctl$auto(r2, 0x4b72, r3) 2m4.102304235s ago: executing program 2 (id=1468): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) socket(0x1d, 0x3, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) get_mempolicy$auto(0xfffffffffffffffe, 0x0, 0x3, 0x1ff, 0x3) sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="06002dbd7000fedbdf2504000000"], 0x14}, 0x1, 0xa6ffffffffffffff, 0x0, 0x2400f000}, 0x20008080) 2m3.667357303s ago: executing program 1 (id=1471): openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) r1 = socketcall$auto(0x8000, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae60, 0x10000000000402) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x3b, [{0x6e0, 0x11, 0x1}]}) 2m3.144955042s ago: executing program 1 (id=1472): ioctl$auto_HDIO_GETGEO(0xffffffffffffffff, 0x301, &(0x7f0000000040)) 2m3.086185169s ago: executing program 1 (id=1473): mkdir$auto(&(0x7f0000000100)='}[,&*}\x00', 0x8001) mount$auto(0x0, &(0x7f00000000c0)='}[,&*}\x00', &(0x7f0000000140)='nfsd\x00', 0xf, 0x0) r0 = open_tree$auto(0xffffffffffffff9c, &(0x7f0000000080)='}[,&*}\x00', 0x9) renameat2$auto(0xffffffffffffff9c, &(0x7f0000000040)='}[,&*}\x00', r0, &(0x7f0000000180)='}[,&*}/file0\x00', 0x1) chdir$auto(&(0x7f0000000000)='}[,&*}\x00') open(&(0x7f0000000100)='.\x00', 0x591002, 0x408) 2m3.043678962s ago: executing program 1 (id=1474): syslog$auto_SYSLOG_ACTION_CONSOLE_ON(0x9, &(0x7f0000000000)='\xa1{%]@[)@#\'+\x00', 0x1) mmap$auto(0x0, 0x400008, 0xdf, 0x20000009b72, 0x2, 0x8000) socket(0x10, 0x2, 0x0) mmap$auto(0xfffffffffffffffd, 0x400008, 0xdf, 0x16, 0x2, 0x8040) r0 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x800, 0x0) ioctl$auto_TIOCSWINSZ2(r1, 0x5414, &(0x7f00000001c0)) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x1000) r2 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r2, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) recvmmsg$auto(r2, &(0x7f0000000200)={{0x0, 0x2, &(0x7f0000000140)={0x0, 0x4da}, 0x6, 0x0, 0x8, 0x7ff}, 0x1000}, 0xffffffff, 0x4, 0x0) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x230) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) mbind$auto(0x0, 0x7, 0x10000000000008, 0x0, 0x80000000, 0x10000) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0xaa, 0x200, 0x6, 0x0) rt_tgsigqueueinfo$auto(0xffffffffffffffff, 0x0, 0x8, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) openat$auto_proc_iter_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/vmallocinfo\x00', 0x0, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0xffffffffffffffff, 0xc0045405, 0xffffffffffffffff) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x20000, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) 1m48.961250145s ago: executing program 32 (id=1465): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) capset$auto(0x0, &(0x7f0000000000)={0x4, 0x20006, 0x40}) r2 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r2, 0xc004743e, 0x0) r3 = socket(0x11, 0x2, 0x6) capset$auto(0x0, &(0x7f0000000000)={0xa82, 0x3a, 0x4001}) sendmmsg$auto(r3, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0), 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) r4 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0) ioctl$auto_USB_RAW_IOCTL_EP_SET_HALT(r4, 0x4004550d, 0x0) r5 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000100), r0) sendmsg$auto_NETDEV_CMD_DEV_GET(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010027bd7000fedbdf250100000008000100", @ANYRES32=r1, @ANYBLOB="28000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r1, @ANYBLOB], 0x44}, 0x1, 0x0, 0x0, 0x400c045}, 0x2) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r6 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x28641, 0x0) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) ioctl$auto_SG_GET_NUM_WAITING(r6, 0x227d, 0x0) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x8000, 0x70) mknodat$auto(r7, &(0x7f00000003c0)='./file0\x00', 0xfff, 0xfffffff8) renameat2$auto(r7, 0x0, r7, &(0x7f0000000240)='./file1\x00', 0x1) ioctl$auto_PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) prctl$auto(0x41, 0x3, 0x0, 0x0, 0x0) prctl$auto(0x41, 0x0, 0x0, 0x0, 0x0) ioctl$auto_PPPIOCSPASS(r2, 0x40107447, &(0x7f00000000c0)={0x9, &(0x7f0000000000)={0x28, 0xf3, 0xb0, @raw=0xfffff024}}) write$auto(r2, 0x0, 0x6) 1m48.768556817s ago: executing program 33 (id=1467): openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) r0 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000240)='/dev/radio18\x00', 0x8aa40, 0x0) ioctl$auto(r0, 0x5646, r0) read$auto_v4l2_fops_v4l2_dev(r0, &(0x7f0000000280)=""/40, 0x28) ioctl$auto(r0, 0x2400000, 0xffffffffffffffff) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) readv$auto(0xffffffffffffffff, &(0x7f0000001c00)={&(0x7f0000001b80), 0x9873}, 0x6) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB, @ANYBLOB='\b\x00', @ANYRES32, @ANYBLOB="0d000100262324405c5d5c2d0000003e435cde9bc39eb0caf599fe08d76c86071d64ea04a6b464e437e042ae937e28d4bd6beafd457ca4a418224ccbe29a3385d2e791bc1ac692fac3f593ed685b1b5a468e3c22cbabf015e67ddf"], 0x34}, 0x1, 0x300, 0x0, 0x801}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_IEEE802154_DEL_IFACE(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00022abd7000295a00002200000005001f0006000000050036007f000000050003000700000008001400ffffffff0500270002000000060008000100000005002600060000000f001f002f6465762f74747931320000"], 0x5c}, 0x1, 0x0, 0x0, 0x44044}, 0x8080) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) fanotify_init$auto(0x5, 0x2000000000002) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000002940)='/dev/fb0\x00', 0x680803, 0x0) openat$auto_snd_seq_f_ops_seq_clientmgr(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/midiC2D0\x00', 0x101001, 0x0) openat$auto_tracing_pipe_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/trace_pipe\x00', 0x20c01, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D3\x00', 0x1, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20342, 0x0) select$auto(0x9, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0x5, 0x1, 0x948b, 0xffffffffffffffff, 0x15f4da07, 0x6, 0x10, 0x64, 0x80000020, 0x1000, 0xb, 0x9, 0x2, 0x8]}, 0x0) r3 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r4 = setfsuid$auto(0xee00) r5 = setfsuid$auto(0xee01) setresuid$auto(r4, r5, r4) ioctl$auto(r2, 0x4b72, r3) 1m48.750600736s ago: executing program 1 (id=1478): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/mm/transparent_hugepage/khugepaged/max_ptes_none\x00', 0x183042, 0x0) read$auto(r0, 0x0, 0x9) r1 = open(0x0, 0x101600, 0x35) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xb, 0x4, 0x2) clock_gettime$auto(0x1, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0xa00) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) r2 = fanotify_init$auto(0x65, 0x2) pipe$auto(0x0) dup2$auto(0x5, 0x4) splice$auto(0x4, 0x0, 0x2, 0x0, 0x80000001, 0x9) read$auto_tracing_saved_cmdlines_size_fops_trace(r2, &(0x7f0000000180)=""/80, 0x50) mmap$auto(0x0, 0xe980, 0x6, 0xeb0, 0x401, 0x400000000000801e) socket(0x22, 0x2, 0x2) close_range$auto(0x2, 0x8, 0x0) read$auto(r1, 0x0, 0x1) write$auto(0x3, 0x0, 0xfdef) 1m48.650643042s ago: executing program 34 (id=1468): r0 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x3, 0xdf, 0xeb1, 0x403, 0x8000) socket(0x1d, 0x3, 0x1) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x64c5, 0xffffffffffffffff) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x3, 0x16, 0x940, 0x1ffe0, 0x3, 0x6, 0x2, 0x9, 0x5, 0xfff, 0x7, 0xb0, 0x9, 0x5, 0x3, 0x5, 0x7, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x400000, 0x0, 0x1]}, 0x1fe, 0x81) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="11002d"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) sendmmsg$auto(r1, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) get_mempolicy$auto(0xfffffffffffffffe, 0x0, 0x3, 0x1ff, 0x3) sendmsg$auto_TIPC_NL_BEARER_GET(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000001300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="06002dbd7000fedbdf2504000000"], 0x14}, 0x1, 0xa6ffffffffffffff, 0x0, 0x2400f000}, 0x20008080) 1m48.029964648s ago: executing program 1 (id=1480): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x6d, 0x0, &(0x7f00000002c0)=0x8) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="1100", 0x2) socket(0xf, 0x3, 0x2) (async) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) (async) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r3 = gettid() futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) kill$auto(r3, 0x11) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) (async) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x0, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x8600, 0x0) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) 1m39.151881174s ago: executing program 4 (id=1476): mmap$auto(0x0, 0x20009, 0x6, 0xeb1, 0x7f, 0x8000) rt_sigtimedwait$auto(&(0x7f0000000000)={0x6}, &(0x7f00000000c0)={@siginfo_0_0={0x5, 0x101, 0x3, @_sigsys={&(0x7f0000000040)="cdd0228ae5569d82b43c374e57bc8407c3749162e4681b12cf9322f3913d249ff3ce3dd084e8d4b506103453d3359a91272d8b51e8efb976512b0c4564aed626b257b9d6b6236bec6f1511edb3", 0x1, 0x80000001}}}, &(0x7f0000000140)={0x101, 0x8000000000000000}, 0x8) mmap$auto(0x0, 0x400408, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$auto_IMADDTIMER(r0, 0x80044940, &(0x7f0000000140)=0x200000) r1 = prctl$auto_PR_SET_MM_START_CODE(0x2, 0x1, 0xffffffffffffffff, 0xd, 0x3) syz_genetlink_get_family_id$auto_nl802154(&(0x7f0000000180), r1) r2 = prctl$auto(0x43, 0x17, 0x0, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_SETHMAC(r3, &(0x7f0000001440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x14, r4, 0x6c5679fc7dece1a9, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x24000014}, 0x400c810) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r5 = fcntl$auto_F_RDLCK(r2, 0x1cb0, 0x0) io_uring_register$auto_IORING_REGISTER_PERSONALITY(r2, 0x9, &(0x7f00000003c0)="5810ce4ec0358e556f9bc68a471fcc9ac882787da99013209c9f3883dbab8184822649f5c35f4295f85479aa5e5992e42513396e88cc94856dd2c8001eb0d2d1999609ec5f929dfffd0beb4c1f78eb6ec755bb1a3b18ad705a8d1d65b9dd88dbc3a91d730242edc65a06e0ae1d3c2ceddfe334df19bc01ac567f1a30acfd3cfe14bcfdfbeb51a0f65f14a48690c30a63d2c32406921a1519b6776a9c3da96e40b088eabb5e78952604d9f3366dbc6dffb7beb599adb8b886e36026bc2f2e7a2199b9388944", 0x955) mkdir$auto(&(0x7f0000000040)='./file0\x00', 0x2) r6 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(r6, 0xfffffffffffff000, 0x2) landlock_create_ruleset$auto(&(0x7f0000000000)={0x6, 0x400000000000400, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r6, 0x0) rename$auto(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00') ioctl$auto_FBIOGET_FSCREENINFO(r5, 0x4602, &(0x7f0000000280)="78671a3b07ab65094c41689fe9d0d3fa6852d52a90163dccf2d9cfdc1820d25d3678657d46442d37c897ce06fbf7135dd2e4e97c084b42b31bd71ccd833d5d8ecce8ea1210900b459ca488a8e94078c22c396dc198b53f29cd1293aed24af8ef1821188e043db3bd2d20c206477663c499374558e276dcf3a5b27effba46f39290c9a8563e8d4ae3b754620345f44a328a08c0c7c5fd4cad3feca693f92c740a5b4039955d5f183b3703e14d44c0c8e36dab310a32339cf5c08119ef7e0b1215a4609bb5d9b8fed0f76ad7ad95126737ca03") openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r7 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r7, 0x0) 1m32.082702172s ago: executing program 35 (id=1480): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socket(0x2, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x6d, 0x0, &(0x7f00000002c0)=0x8) socket(0x2, 0x3, 0xa) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x9, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001b80), r1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/zswap/parameters/enabled\x00', 0x62, 0x0) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000001e40)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@HWSIM_ATTR_IFTYPE_SUPPORT={0x8, 0x17, 0x8}, @HWSIM_ATTR_SUPPORT_P2P_DEVICE={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x220000c1}, 0xc0) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) (async) mmap$auto(0x0, 0xe983, 0x6, 0xeb1, 0xffffffffffffffff, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) (async) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) mmap$auto(0x0, 0x10000000400008, 0xdf, 0x9b72, 0x2, 0x40000008000) write$auto_fuse_dev_operations_fuse_i(0xffffffffffffffff, &(0x7f0000000440)="1100", 0x2) socket(0xf, 0x3, 0x2) (async) socket(0xf, 0x3, 0x2) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) (async) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D2\x00', 0x20401, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) (async) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) (async) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) r3 = gettid() futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0x80000001) kill$auto(r3, 0x11) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) (async) r4 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) (async) r5 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:288/max_ratio_fine\x00', 0x10b142, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snd/controlC1\x00', 0x0, 0x0) sendfile$auto(r4, r5, 0x0, 0x1000200) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/controlC2\x00', 0x8600, 0x0) fcntl$auto(0x3, 0x4, 0xa553) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) 17.256166678s ago: executing program 5 (id=1477): connect$auto(0x3, 0x0, 0x54) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) write$auto(0x3, 0x0, 0xfdef) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x5608, r1) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0) io_uring_setup$auto(0x2008, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r3 = io_uring_setup$auto(0xa, 0x0) futex$auto(0x0, 0x3, 0x1f, 0x0, 0x0, 0x440a48d3) prlimit64$auto(0x0, 0x2, &(0x7f0000000040)={0x401, 0xffffffffffffffff}, 0x0) brk$auto(0xffffffffffffffff) setsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x8004) syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f00000000c0), r1) sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f00000001c0)={0x0, 0x47, 0x0, 0x1, 0x0, 0x0, 0x884}, 0x4044801) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24840, 0x0) syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_GET(0xffffffffffffffff, 0x0, 0x4000080) 16.340848625s ago: executing program 7 (id=1481): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8000, 0x0) r1 = socket(0xa, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'dummy0\x00'}) (async) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'dummy0\x00', 0x0}) bpf$auto(0x0, &(0x7f00000000c0)=@bpf_attr_5={@target_ifindex=r3, r2, 0x4, 0x1, r1, @relative_id=0x13, 0xe600}, 0xf) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) (async) bpf$auto(0x4, &(0x7f00000001c0)=@raw_tracepoint={0x5, 0xffff, 0x0, 0x3}, 0xf) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) (async) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) (async) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r4 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) r5 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x80044943, 0x0) ioctl$auto_I2C_SMBUS(r4, 0x720, 0x0) 0s ago: executing program 5 (id=1477): connect$auto(0x3, 0x0, 0x54) r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) write$auto(0x3, 0x0, 0xfdef) r1 = socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) ioctl$auto(r0, 0x5608, r1) socket(0x29, 0x2, 0x0) mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0xffffffffffffffff, 0x8000) r2 = openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, 0x0, 0x8040, 0x0) io_uring_setup$auto(0x2008, 0x0) ioctl$auto_dvb_demux_fops_dmxdev(r2, 0x403c6f2b, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48000}, 0x0) r3 = io_uring_setup$auto(0xa, 0x0) futex$auto(0x0, 0x3, 0x1f, 0x0, 0x0, 0x440a48d3) prlimit64$auto(0x0, 0x2, &(0x7f0000000040)={0x401, 0xffffffffffffffff}, 0x0) brk$auto(0xffffffffffffffff) setsockopt$auto(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x8004) syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f00000000c0), r1) sendmsg$auto_NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f00000001c0)={0x0, 0x47, 0x0, 0x1, 0x0, 0x0, 0x884}, 0x4044801) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, 0x0, 0x1a1000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/loop2\x00', 0x24840, 0x0) syz_genetlink_get_family_id$auto_l2tp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_L2TP_CMD_SESSION_GET(0xffffffffffffffff, 0x0, 0x4000080) kernel console output (not intermixed with test programs): 7.207559][T10110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 277.207574][T10110] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 277.207616][T10110] [ 278.056441][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 278.674464][T10148] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1101'. [ 278.866061][ T5837] Bluetooth: hci1: command 0x0406 tx timeout [ 278.872455][ T5844] Bluetooth: hci2: command 0x0406 tx timeout [ 278.935042][ T5837] Bluetooth: hci3: command 0x0406 tx timeout [ 279.956527][T10163] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 279.965462][T10163] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 279.971556][T10163] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 279.978192][T10163] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 280.069873][T10180] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1111'. [ 280.245641][T10191] FAULT_INJECTION: forcing a failure. [ 280.245641][T10191] name failslab, interval 1, probability 0, space 0, times 0 [ 280.279763][T10191] CPU: 1 UID: 0 PID: 10191 Comm: syz.3.1116 Tainted: G L syzkaller #0 PREEMPT(full) [ 280.279799][T10191] Tainted: [L]=SOFTLOCKUP [ 280.279807][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 280.279821][T10191] Call Trace: [ 280.279829][T10191] [ 280.279838][T10191] dump_stack_lvl+0x16c/0x1f0 [ 280.279879][T10191] should_fail_ex+0x512/0x640 [ 280.279905][T10191] ? __kmalloc_noprof+0xca/0x910 [ 280.279934][T10191] should_failslab+0xc2/0x120 [ 280.279967][T10191] __kmalloc_noprof+0xeb/0x910 [ 280.279993][T10191] ? do_sys_poll+0x24a/0xdf0 [ 280.280029][T10191] ? do_sys_poll+0x24a/0xdf0 [ 280.280057][T10191] do_sys_poll+0x24a/0xdf0 [ 280.280087][T10191] ? __kernel_text_address+0xd/0x40 [ 280.280113][T10191] ? unwind_get_return_address+0x59/0xa0 [ 280.280151][T10191] ? __pfx_do_sys_poll+0x10/0x10 [ 280.280215][T10191] ? __lock_acquire+0x436/0x2890 [ 280.280303][T10191] ? __pfx_timespec64_add_safe+0x10/0x10 [ 280.280331][T10191] ? ktime_get_ts64+0x2d2/0x400 [ 280.280356][T10191] ? read_tsc+0x9/0x20 [ 280.280384][T10191] ? ktime_get_ts64+0x256/0x400 [ 280.280417][T10191] __x64_sys_poll+0x1a6/0x450 [ 280.280448][T10191] ? __pfx___x64_sys_poll+0x10/0x10 [ 280.280490][T10191] do_syscall_64+0xcd/0xf80 [ 280.280515][T10191] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.280545][T10191] RIP: 0033:0x7fbb40d8f7c9 [ 280.280563][T10191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.280585][T10191] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000007 [ 280.280608][T10191] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 280.280624][T10191] RDX: 0000000000000006 RSI: 0000000000000100 RDI: 0000200000000040 [ 280.280638][T10191] RBP: 00007fbb41c3b090 R08: 0000000000000000 R09: 0000000000000000 [ 280.280652][T10191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 280.280666][T10191] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 280.280700][T10191] [ 280.617142][T10199] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1118'. [ 280.749122][T10203] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1119'. [ 281.974720][ T5837] Bluetooth: hci2: command 0x0406 tx timeout [ 281.975543][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 282.054713][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 282.694728][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 282.700800][T10187] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 283.223885][T10187] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 283.229982][T10187] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 283.237145][T10187] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 283.375970][T10233] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1128'. [ 283.446428][T10234] hub 1-0:1.0: USB hub found [ 283.460255][T10234] hub 1-0:1.0: 1 port detected [ 283.485576][T10234] hub 1-0:1.0: USB hub found [ 283.490545][T10234] hub 1-0:1.0: 1 port detected [ 283.655728][ T5844] block nbd0: Receive control failed (result -107) [ 284.336307][T10282] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1142'. [ 284.471143][T10284] [U] [ 284.473983][T10284] [U] [ 284.476708][T10284] [U] [ 284.479429][T10284] [U] [ 284.483013][T10284] [U] [ 284.485735][T10284] [U] [ 284.488430][T10284] [U] [ 284.491123][T10284] [U] [ 284.498401][T10284] [U] [ 284.501135][T10284] [U] [ 284.503846][T10284] [U] [ 284.506559][T10284] [U] [ 284.510613][T10284] [U] [ 284.513341][T10284] [U] [ 284.516049][T10284] [U] [ 284.518759][T10284] [U] [ 284.524410][T10284] [U] [ 284.527137][T10284] [U] [ 284.529848][T10284] [U] [ 284.532558][T10284] [U] [ 284.536139][T10284] [U] [ 284.538860][T10284] [U] [ 284.541569][T10284] [U] [ 284.544282][T10284] [U] [ 284.568856][T10291] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1146'. [ 284.579493][T10284] [U] [ 284.582219][T10284] [U] [ 284.584942][T10284] [U] [ 284.587652][T10284] [U] [ 284.591140][T10291] sysfs: cannot create duplicate filename '/class/ieee80211/!PjE ' [ 284.600455][T10291] CPU: 0 UID: 0 PID: 10291 Comm: syz.2.1146 Tainted: G L syzkaller #0 PREEMPT(full) [ 284.600499][T10291] Tainted: [L]=SOFTLOCKUP [ 284.600508][T10291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 284.600523][T10291] Call Trace: [ 284.600531][T10291] [ 284.600541][T10291] dump_stack_lvl+0x16c/0x1f0 [ 284.600586][T10291] sysfs_warn_dup+0x7f/0xa0 [ 284.600612][T10291] sysfs_do_create_link_sd+0x124/0x140 [ 284.600644][T10291] sysfs_create_link+0x61/0xc0 [ 284.600671][T10291] device_add+0x652/0x1980 [ 284.600711][T10291] ? __pfx_device_add+0x10/0x10 [ 284.600742][T10291] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 284.600780][T10291] ? ieee80211_set_bitrate_flags+0x243/0x6b0 [ 284.600823][T10291] wiphy_register+0x1ea1/0x2cc0 [ 284.600847][T10291] ? __rtnl_unlock+0x68/0xf0 [ 284.600872][T10291] ? __netdev_update_features+0x1c80/0x1fe0 [ 284.600916][T10291] ? __pfx_wiphy_register+0x10/0x10 [ 284.600941][T10291] ? __asan_memset+0x23/0x50 [ 284.600982][T10291] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 284.601012][T10291] ieee80211_register_hw+0x2bb2/0x4160 [ 284.601052][T10291] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 284.601079][T10291] ? __pfx___debug_object_init+0x10/0x10 [ 284.601128][T10291] ? find_held_lock+0x2b/0x80 [ 284.601160][T10291] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 284.601197][T10291] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 284.601233][T10291] ? __hrtimer_setup+0x176/0x280 [ 284.601268][T10291] mac80211_hwsim_new_radio+0x3323/0x5150 [ 284.601321][T10291] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 284.601354][T10291] ? __asan_memcpy+0x3c/0x60 [ 284.601388][T10291] hwsim_new_radio_nl+0xba2/0x1330 [ 284.601420][T10291] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 284.601466][T10291] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 284.601502][T10291] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 284.601534][T10291] genl_family_rcv_msg_doit+0x209/0x2f0 [ 284.601562][T10291] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 284.601587][T10291] ? genl_get_cmd+0x194/0x580 [ 284.601618][T10291] ? bpf_lsm_capable+0x9/0x10 [ 284.601647][T10291] ? security_capable+0x7e/0x260 [ 284.601672][T10291] ? ns_capable+0xd7/0x110 [ 284.601706][T10291] genl_rcv_msg+0x55c/0x800 [ 284.601736][T10291] ? __pfx_genl_rcv_msg+0x10/0x10 [ 284.601762][T10291] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 284.601803][T10291] netlink_rcv_skb+0x158/0x420 [ 284.601836][T10291] ? __pfx_genl_rcv_msg+0x10/0x10 [ 284.601864][T10291] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 284.601915][T10291] ? netlink_deliver_tap+0x1ae/0xd30 [ 284.601954][T10291] genl_rcv+0x28/0x40 [ 284.601976][T10291] netlink_unicast+0x5aa/0x870 [ 284.602019][T10291] ? __pfx_netlink_unicast+0x10/0x10 [ 284.602054][T10291] ? __pfx___might_resched+0x10/0x10 [ 284.602087][T10291] ? __lock_acquire+0x436/0x2890 [ 284.602120][T10291] netlink_sendmsg+0x8c8/0xdd0 [ 284.602163][T10291] ? __pfx_netlink_sendmsg+0x10/0x10 [ 284.602204][T10291] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 284.602235][T10291] ____sys_sendmsg+0xa5d/0xc30 [ 284.602261][T10291] ? copy_msghdr_from_user+0x10a/0x160 [ 284.602294][T10291] ? __pfx_____sys_sendmsg+0x10/0x10 [ 284.602329][T10291] ? __pfx_futex_wake_mark+0x10/0x10 [ 284.602368][T10291] ___sys_sendmsg+0x134/0x1d0 [ 284.602403][T10291] ? __pfx____sys_sendmsg+0x10/0x10 [ 284.602437][T10291] ? futex_private_hash_put+0x160/0x1b0 [ 284.602515][T10291] __sys_sendmsg+0x16d/0x220 [ 284.602552][T10291] ? __pfx___sys_sendmsg+0x10/0x10 [ 284.602586][T10291] ? __x64_sys_futex+0x1e0/0x4c0 [ 284.602638][T10291] do_syscall_64+0xcd/0xf80 [ 284.602666][T10291] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 284.602691][T10291] RIP: 0033:0x7f32cd78f7c9 [ 284.602712][T10291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 284.602736][T10291] RSP: 002b:00007f32ce67e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 284.602759][T10291] RAX: ffffffffffffffda RBX: 00007f32cd9e5fa0 RCX: 00007f32cd78f7c9 [ 284.602776][T10291] RDX: 0000000000040800 RSI: 00002000000000c0 RDI: 0000000000000003 [ 284.602791][T10291] RBP: 00007f32cd813f91 R08: 0000000000000000 R09: 0000000000000000 [ 284.602807][T10291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 284.602822][T10291] R13: 00007f32cd9e6038 R14: 00007f32cd9e5fa0 R15: 00007ffe8a326938 [ 284.602860][T10291] [ 284.611159][T10284] [U] [ 285.031522][T10284] [U] [ 285.034215][T10284] [U] [ 285.036902][T10284] [U] [ 285.041800][T10284] [U] [ 285.044524][T10284] [U] [ 285.047222][T10284] [U] [ 285.049919][T10284] [U] [ 285.052767][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 285.089616][T10294] netlink: zone id is out of range [ 285.095079][T10284] [U] [ 285.097800][T10284] [U] [ 285.100502][T10284] [U] [ 285.103196][T10284] [U] [ 285.114767][T10284] [U] [ 285.117492][T10284] [U] [ 285.119517][T10294] netlink: set zone limit has 8 unknown bytes [ 285.120187][T10284] [U] [ 285.128904][T10284] [U] [ 285.140090][T10284] [U] [ 285.142818][T10284] [U] [ 285.145524][T10284] [U] [ 285.148231][T10284] [U] [ 285.184658][T10284] [U] [ 285.187399][T10284] [U] [ 285.190114][T10284] [U] [ 285.192832][T10284] [U] [ 285.216002][T10284] [U] [ 285.218743][T10284] [U] [ 285.221457][T10284] [U] [ 285.224162][T10284] [U] [ 285.235107][T10296] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1149'. [ 285.245036][T10284] [U] [ 285.247767][T10284] [U] [ 285.250482][T10284] [U] [ 285.253186][T10284] [U] [ 285.256355][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 285.263940][ T5844] Bluetooth: hci2: command 0x0406 tx timeout [ 285.282053][T10284] [U] [ 285.284789][T10284] [U] [ 285.287499][T10284] [U] [ 285.290204][T10284] [U] [ 285.300503][T10284] [U] [ 285.303220][T10284] [U] [ 285.305925][T10284] [U] [ 285.308628][T10284] [U] [ 285.313651][T10284] [U] [ 285.316371][T10284] [U] [ 285.319079][T10284] [U] [ 285.321787][T10284] [U] [ 285.326330][T10284] [U] [ 285.329056][T10284] [U] [ 285.331767][T10284] [U] [ 285.334470][T10284] [U] [ 285.340217][T10284] [U] [ 285.342931][T10284] [U] [ 285.345626][T10284] [U] [ 285.348317][T10284] [U] [ 285.351645][T10284] [U] [ 285.354355][T10284] [U] [ 285.357057][T10284] [U] [ 285.359756][T10284] [U] [ 285.363000][T10284] [U] [ 285.365716][T10284] [U] [ 285.368432][T10284] [U] [ 285.370315][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1153'. [ 285.371129][T10284] [U] [ 285.383196][T10284] [U] [ 285.385914][T10284] [U] [ 285.388621][T10284] [U] [ 285.391323][T10284] [U] [ 285.395870][T10284] [U] [ 285.398581][T10284] [U] [ 285.401271][T10284] [U] [ 285.403959][T10284] [U] [ 285.407697][T10284] [U] [ 285.410414][T10284] [U] [ 285.413112][T10284] [U] [ 285.415820][T10284] [U] [ 285.418634][T10284] [U] [ 285.421337][T10284] [U] [ 285.424039][T10284] [U] [ 285.426744][T10284] [U] [ 285.429881][T10284] [U] [ 285.432595][T10284] [U] [ 285.435300][T10284] [U] [ 285.438007][T10284] [U] [ 285.484924][T10284] [U] [ 285.487660][T10284] [U] [ 285.490367][T10284] [U] [ 285.493075][T10284] [U] [ 285.535586][T10284] [U] [ 285.538329][T10284] [U] [ 285.541037][T10284] [U] [ 285.543741][T10284] [U] [ 285.559767][T10284] [U] [ 285.562509][T10284] [U] [ 285.565208][T10284] [U] [ 285.567909][T10284] [U] [ 285.570780][T10284] [U] [ 285.573489][T10284] [U] [ 285.576192][T10284] [U] [ 285.578891][T10284] [U] [ 285.584432][T10284] [U] [ 285.587156][T10284] [U] [ 285.589862][T10284] [U] [ 285.723685][T10289] [U] [ 286.137186][T10310] Bluetooth: hci0: command 0x0406 tx timeout [ 286.145241][T10263] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 286.982688][T10263] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 286.988827][T10263] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 286.995143][T10263] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 287.237149][T10363] FAULT_INJECTION: forcing a failure. [ 287.237149][T10363] name failslab, interval 1, probability 0, space 0, times 0 [ 287.251695][T10363] CPU: 0 UID: 0 PID: 10363 Comm: syz.0.1165 Tainted: G L syzkaller #0 PREEMPT(full) [ 287.251734][T10363] Tainted: [L]=SOFTLOCKUP [ 287.251742][T10363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 287.251757][T10363] Call Trace: [ 287.251765][T10363] [ 287.251774][T10363] dump_stack_lvl+0x16c/0x1f0 [ 287.251818][T10363] should_fail_ex+0x512/0x640 [ 287.251845][T10363] ? kmem_cache_alloc_noprof+0x62/0x770 [ 287.251879][T10363] should_failslab+0xc2/0x120 [ 287.251914][T10363] kmem_cache_alloc_noprof+0x83/0x770 [ 287.251943][T10363] ? alloc_empty_file+0x55/0x1e0 [ 287.251975][T10363] ? alloc_empty_file+0x55/0x1e0 [ 287.251998][T10363] alloc_empty_file+0x55/0x1e0 [ 287.252025][T10363] alloc_file_pseudo+0x13a/0x230 [ 287.252054][T10363] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 287.252094][T10363] ? do_raw_spin_unlock+0x172/0x230 [ 287.252129][T10363] __anon_inode_getfile+0xe8/0x280 [ 287.252161][T10363] anon_inode_getfile_fmode+0x37/0xa0 [ 287.252190][T10363] do_eventfd+0x156/0x390 [ 287.252217][T10363] ? rcu_is_watching+0x12/0xc0 [ 287.252250][T10363] __x64_sys_eventfd+0x32/0x50 [ 287.252280][T10363] do_syscall_64+0xcd/0xf80 [ 287.252306][T10363] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.252329][T10363] RIP: 0033:0x7fd1e4b8f7c9 [ 287.252348][T10363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.252371][T10363] RSP: 002b:00007fd1e59f4038 EFLAGS: 00000246 ORIG_RAX: 000000000000011c [ 287.252393][T10363] RAX: ffffffffffffffda RBX: 00007fd1e4de5fa0 RCX: 00007fd1e4b8f7c9 [ 287.252409][T10363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000080 [ 287.252421][T10363] RBP: 00007fd1e4c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 287.252433][T10363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.252447][T10363] R13: 00007fd1e4de6038 R14: 00007fd1e4de5fa0 R15: 00007ffcb9cdca88 [ 287.252481][T10363] [ 287.780822][T10378] vivid-007: ================= START STATUS ================= [ 287.812910][T10378] vivid-007: Generate PTS: true [ 287.824694][T10378] vivid-007: Generate SCR: true [ 287.857759][T10378] tpg source WxH: 320x240 (Y'CbCr) [ 287.910922][T10378] tpg field: 1 [ 288.004803][T10378] tpg crop: (0,0)/320x240 [ 288.019122][T10378] tpg compose: (0,0)/320x240 [ 288.044029][T10378] tpg colorspace: 8 [ 288.065646][T10378] tpg transfer function: 0/0 [ 288.065668][T10378] tpg Y'CbCr encoding: 0/0 [ 288.065675][T10378] tpg quantization: 0/0 [ 288.065682][T10378] tpg RGB range: 0/2 [ 288.065688][T10378] vivid-007: ================== END STATUS ================== [ 288.219629][T10315] Bluetooth: hci1: command 0x0406 tx timeout [ 288.868465][T10416] vmstat_refresh: nr_hugetlb -1536 [ 289.014872][T10315] Bluetooth: hci3: command 0x0406 tx timeout [ 289.020911][T10315] Bluetooth: hci2: command 0x0406 tx timeout [ 289.027439][T10408] NFSD: Failed to start, no listeners configured. [ 289.052325][T10424] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1181'. [ 289.412817][T10432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1184'. [ 290.141123][T10448] FAULT_INJECTION: forcing a failure. [ 290.141123][T10448] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 290.164654][T10448] CPU: 1 UID: 0 PID: 10448 Comm: syz.3.1188 Tainted: G L syzkaller #0 PREEMPT(full) [ 290.164694][T10448] Tainted: [L]=SOFTLOCKUP [ 290.164703][T10448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 290.164717][T10448] Call Trace: [ 290.164726][T10448] [ 290.164734][T10448] dump_stack_lvl+0x16c/0x1f0 [ 290.164778][T10448] should_fail_ex+0x512/0x640 [ 290.164811][T10448] should_fail_alloc_page+0xe7/0x130 [ 290.164849][T10448] prepare_alloc_pages+0x401/0x670 [ 290.164874][T10448] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 290.164890][T10448] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 290.164912][T10448] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 290.164932][T10448] ? stack_depot_save_flags+0x3de/0x9b0 [ 290.164952][T10448] ? kasan_save_stack+0x42/0x60 [ 290.164968][T10448] ? kasan_save_stack+0x33/0x60 [ 290.164984][T10448] ? kasan_save_track+0x14/0x30 [ 290.165001][T10448] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 290.165017][T10448] ? walk_pgd_range+0x89a/0x1f80 [ 290.165032][T10448] ? walk_page_range_mm_unsafe+0x461/0xb40 [ 290.165049][T10448] ? madvise_vma_behavior+0x8f8/0x29e0 [ 290.165061][T10448] ? madvise_walk_vmas+0x31f/0xac0 [ 290.165073][T10448] ? madvise_do_behavior+0x1e2/0x530 [ 290.165091][T10448] ? do_madvise+0x176/0x240 [ 290.165102][T10448] ? __x64_sys_madvise+0xa9/0x110 [ 290.165115][T10448] ? do_syscall_64+0xcd/0xf80 [ 290.165126][T10448] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.165148][T10448] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 290.165170][T10448] ? policy_nodemask+0xea/0x4e0 [ 290.165191][T10448] alloc_pages_mpol+0x1fb/0x550 [ 290.165212][T10448] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 290.165237][T10448] alloc_pages_noprof+0x131/0x390 [ 290.165257][T10448] pte_alloc_one+0x1e/0x3d0 [ 290.165276][T10448] __pte_alloc+0x6d/0x3f0 [ 290.165293][T10448] ? __pfx___pte_alloc+0x10/0x10 [ 290.165311][T10448] ? _raw_spin_unlock+0x28/0x50 [ 290.165329][T10448] ? __pmd_alloc+0x6aa/0x9c0 [ 290.165350][T10448] walk_pgd_range+0xb8f/0x1f80 [ 290.165369][T10448] ? __pfx_guard_install_set_pte+0x10/0x10 [ 290.165388][T10448] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 290.165401][T10448] ? __pfx_guard_install_set_pte+0x10/0x10 [ 290.165423][T10448] ? __pfx_guard_install_set_pte+0x10/0x10 [ 290.165443][T10448] ? __pfx_guard_install_set_pte+0x10/0x10 [ 290.165463][T10448] ? __pfx_walk_pgd_range+0x10/0x10 [ 290.165485][T10448] __walk_page_range+0x163/0x820 [ 290.165503][T10448] ? find_vma+0xbf/0x140 [ 290.165520][T10448] ? __pfx_find_vma+0x10/0x10 [ 290.165538][T10448] ? walk_page_test+0x9b/0x180 [ 290.165555][T10448] walk_page_range_mm_unsafe+0x461/0xb40 [ 290.165576][T10448] ? __pfx_walk_page_range_mm_unsafe+0x10/0x10 [ 290.165598][T10448] ? __anon_vma_prepare+0x2e2/0x5e0 [ 290.165615][T10448] madvise_guard_install+0x31f/0x860 [ 290.165640][T10448] ? __pfx_madvise_guard_install+0x10/0x10 [ 290.165662][T10448] ? __pfx_guard_install_pud_entry+0x10/0x10 [ 290.165680][T10448] ? __pfx_guard_install_pmd_entry+0x10/0x10 [ 290.165699][T10448] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 290.165713][T10448] ? __pfx_guard_install_set_pte+0x10/0x10 [ 290.165738][T10448] madvise_vma_behavior+0x8f8/0x29e0 [ 290.165752][T10448] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 290.165774][T10448] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 290.165788][T10448] ? mas_prev+0x9b/0xf0 [ 290.165800][T10448] ? __pfx_mas_prev+0x10/0x10 [ 290.165817][T10448] ? find_vma_prev+0xd3/0x150 [ 290.165837][T10448] ? lock_vma_under_rcu+0x1f3/0x580 [ 290.165851][T10448] ? __pfx_find_vma_prev+0x10/0x10 [ 290.165876][T10448] ? madvise_do_behavior+0x1e2/0x530 [ 290.165891][T10448] madvise_walk_vmas+0x31f/0xac0 [ 290.165908][T10448] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 290.165922][T10448] ? find_held_lock+0x2b/0x80 [ 290.165945][T10448] madvise_do_behavior+0x1e2/0x530 [ 290.165964][T10448] ? futex_private_hash_put+0x160/0x1b0 [ 290.165992][T10448] ? __pfx_madvise_do_behavior+0x10/0x10 [ 290.166013][T10448] ? futex_wake+0x1ad/0x530 [ 290.166056][T10448] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 290.166105][T10448] do_madvise+0x176/0x240 [ 290.166129][T10448] ? __pfx_do_madvise+0x10/0x10 [ 290.166152][T10448] ? do_futex+0x122/0x350 [ 290.166202][T10448] ? xfd_validate_state+0x61/0x180 [ 290.166222][T10448] ? __pfx_ksys_write+0x10/0x10 [ 290.166263][T10448] __x64_sys_madvise+0xa9/0x110 [ 290.166286][T10448] ? lockdep_hardirqs_on+0x7c/0x110 [ 290.166308][T10448] do_syscall_64+0xcd/0xf80 [ 290.166334][T10448] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.166358][T10448] RIP: 0033:0x7fbb40d8f7c9 [ 290.166378][T10448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.166401][T10448] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 290.166426][T10448] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 290.166443][T10448] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 290.166458][T10448] RBP: 00007fbb40e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 290.166471][T10448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 290.166485][T10448] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 290.166522][T10448] [ 291.292942][T10469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1194'. [ 291.531659][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1196'. [ 291.579009][T10482] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1199'. [ 292.395778][T10495] NFSD: Failed to start, no listeners configured. [ 293.606303][T10521] FAULT_INJECTION: forcing a failure. [ 293.606303][T10521] name fail_futex, interval 1, probability 0, space 0, times 0 [ 293.661620][T10521] CPU: 0 UID: 0 PID: 10521 Comm: syz.2.1207 Tainted: G L syzkaller #0 PREEMPT(full) [ 293.661662][T10521] Tainted: [L]=SOFTLOCKUP [ 293.661669][T10521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 293.661683][T10521] Call Trace: [ 293.661690][T10521] [ 293.661701][T10521] dump_stack_lvl+0x16c/0x1f0 [ 293.661743][T10521] should_fail_ex+0x512/0x640 [ 293.661776][T10521] get_futex_key+0x1d0/0x15f0 [ 293.661804][T10521] ? kasan_quarantine_put+0x10a/0x240 [ 293.661836][T10521] ? __pfx_get_futex_key+0x10/0x10 [ 293.661870][T10521] ? kfree+0x2f8/0x6e0 [ 293.661896][T10521] ? process_vm_rw_core.constprop.0+0x73f/0x970 [ 293.661933][T10521] futex_wait_setup+0x9d/0x570 [ 293.661978][T10521] __futex_wait+0x193/0x2f0 [ 293.662012][T10521] ? __pfx___futex_wait+0x10/0x10 [ 293.662050][T10521] ? __pfx_futex_wake_mark+0x10/0x10 [ 293.662087][T10521] ? futex_hash+0x2c5/0x380 [ 293.662117][T10521] ? futex_private_hash_put+0x160/0x1b0 [ 293.662147][T10521] futex_wait+0xe8/0x380 [ 293.662179][T10521] ? __pfx_futex_wait+0x10/0x10 [ 293.662224][T10521] ? ksys_write+0x190/0x250 [ 293.662263][T10521] do_futex+0x229/0x350 [ 293.662291][T10521] ? __pfx_do_futex+0x10/0x10 [ 293.662318][T10521] ? cap_task_prctl+0x2af/0xa80 [ 293.662348][T10521] __x64_sys_futex+0x1e0/0x4c0 [ 293.662379][T10521] ? __pfx___x64_sys_futex+0x10/0x10 [ 293.662406][T10521] ? xfd_validate_state+0x61/0x180 [ 293.662427][T10521] ? __pfx___do_sys_prctl+0x10/0x10 [ 293.662465][T10521] do_syscall_64+0xcd/0xf80 [ 293.662490][T10521] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.662514][T10521] RIP: 0033:0x7f32cd78f7c9 [ 293.662533][T10521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.662556][T10521] RSP: 002b:00007f32ce67e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 293.662579][T10521] RAX: ffffffffffffffda RBX: 00007f32cd9e5fa8 RCX: 00007f32cd78f7c9 [ 293.662594][T10521] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f32cd9e5fa8 [ 293.662608][T10521] RBP: 00007f32cd9e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 293.662620][T10521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 293.662632][T10521] R13: 00007f32cd9e6038 R14: 00007ffe8a326850 R15: 00007ffe8a326938 [ 293.662664][T10521] [ 294.086620][T10525] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0 [ 294.442169][T10541] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1213'. [ 294.891714][T10556] FAULT_INJECTION: forcing a failure. [ 294.891714][T10556] name failslab, interval 1, probability 0, space 0, times 0 [ 294.906016][T10556] CPU: 1 UID: 0 PID: 10556 Comm: syz.3.1220 Tainted: G L syzkaller #0 PREEMPT(full) [ 294.906053][T10556] Tainted: [L]=SOFTLOCKUP [ 294.906061][T10556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 294.906074][T10556] Call Trace: [ 294.906083][T10556] [ 294.906092][T10556] dump_stack_lvl+0x16c/0x1f0 [ 294.906132][T10556] should_fail_ex+0x512/0x640 [ 294.906160][T10556] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 294.906192][T10556] should_failslab+0xc2/0x120 [ 294.906226][T10556] kmem_cache_alloc_noprof+0x83/0x770 [ 294.906254][T10556] ? skb_clone+0x190/0x3f0 [ 294.906292][T10556] ? skb_clone+0x190/0x3f0 [ 294.906320][T10556] skb_clone+0x190/0x3f0 [ 294.906352][T10556] netlink_deliver_tap+0xabd/0xd30 [ 294.906394][T10556] netlink_unicast+0x64c/0x870 [ 294.906433][T10556] ? __pfx_netlink_unicast+0x10/0x10 [ 294.906480][T10556] netlink_sendmsg+0x8c8/0xdd0 [ 294.906528][T10556] ? __pfx_netlink_sendmsg+0x10/0x10 [ 294.906567][T10556] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 294.906599][T10556] ____sys_sendmsg+0xa5d/0xc30 [ 294.906624][T10556] ? copy_msghdr_from_user+0x10a/0x160 [ 294.906656][T10556] ? __pfx_____sys_sendmsg+0x10/0x10 [ 294.906701][T10556] ___sys_sendmsg+0x134/0x1d0 [ 294.906734][T10556] ? __pfx____sys_sendmsg+0x10/0x10 [ 294.906811][T10556] __sys_sendmsg+0x16d/0x220 [ 294.906842][T10556] ? __pfx___sys_sendmsg+0x10/0x10 [ 294.906897][T10556] do_syscall_64+0xcd/0xf80 [ 294.906922][T10556] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.906946][T10556] RIP: 0033:0x7fbb40d8f7c9 [ 294.906965][T10556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.906987][T10556] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 294.907009][T10556] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 294.907024][T10556] RDX: 00000000000480c4 RSI: 0000200000000100 RDI: 0000000000000003 [ 294.907038][T10556] RBP: 00007fbb41c3b090 R08: 0000000000000000 R09: 0000000000000000 [ 294.907052][T10556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 294.907065][T10556] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 294.907100][T10556] [ 294.907175][T10556] netlink: zone id is out of range [ 295.157450][T10561] __vm_enough_memory: pid: 10561, comm: syz.2.1221, bytes: 4398046511104 not enough memory for the allocation [ 295.227999][T10556] netlink: zone id is out of range [ 295.233149][T10556] netlink: zone id is out of range [ 295.274613][T10556] netlink: zone id is out of range [ 295.279759][T10556] netlink: set zone limit has 4 unknown bytes [ 295.473638][T10573] [U] [ 295.476484][T10573] [U] [ 295.479202][T10573] [U] [ 295.481918][T10573] [U] [ 295.487494][T10573] [U] [ 295.490232][T10573] [U] [ 295.492940][T10573] [U] [ 295.495634][T10573] [U] [ 295.500175][T10573] [U] [ 295.502900][T10573] [U] [ 295.505609][T10573] [U] [ 295.508321][T10573] [U] [ 295.515806][T10573] [U] [ 295.518531][T10573] [U] [ 295.521241][T10573] [U] [ 295.523951][T10573] [U] [ 295.527957][T10573] [U] [ 295.530675][T10573] [U] [ 295.533385][T10573] [U] [ 295.536073][T10573] [U] [ 295.570847][T10573] [U] [ 295.573592][T10573] [U] [ 295.576304][T10573] [U] [ 295.579016][T10573] [U] [ 295.624814][T10573] [U] [ 295.627543][T10573] [U] [ 295.630217][T10573] [U] [ 295.632886][T10573] [U] [ 295.635889][T10573] [U] [ 295.638584][T10573] [U] [ 295.641263][T10573] [U] [ 295.644127][T10573] [U] [ 295.651963][T10573] [U] [ 295.654673][T10573] [U] [ 295.657350][T10573] [U] [ 295.660023][T10573] [U] [ 295.673331][T10573] [U] [ 295.676057][T10573] [U] [ 295.678754][T10573] [U] [ 295.681448][T10573] [U] [ 295.757069][T10573] [U] [ 295.759825][T10573] [U] [ 295.762539][T10573] [U] [ 295.765234][T10573] [U] [ 295.870228][T10573] [U] [ 295.872977][T10573] [U] [ 295.875668][T10573] [U] [ 295.878342][T10573] [U] [ 295.968728][T10573] [U] [ 295.971469][T10573] [U] [ 295.974144][T10573] [U] [ 295.976814][T10573] [U] [ 296.055655][T10573] [U] [ 296.058370][T10573] [U] [ 296.061043][T10573] [U] [ 296.063719][T10573] [U] [ 296.075850][T10573] [U] [ 296.078569][T10573] [U] [ 296.081274][T10573] [U] [ 296.083985][T10573] [U] [ 296.099084][T10573] [U] [ 296.101813][T10573] [U] [ 296.104508][T10573] [U] [ 296.107207][T10573] [U] [ 296.125856][T10573] [U] [ 296.128592][T10573] [U] [ 296.131281][T10573] [U] [ 296.133955][T10573] [U] [ 296.136947][T10573] [U] [ 296.139660][T10573] [U] [ 296.142353][T10573] [U] [ 296.145042][T10573] [U] [ 296.207246][T10573] [U] [ 296.209988][T10573] [U] [ 296.212697][T10573] [U] [ 296.215384][T10573] [U] [ 296.241387][T10573] [U] [ 296.244124][T10573] [U] [ 296.246803][T10573] [U] [ 296.249480][T10573] [U] [ 296.278907][T10573] [U] [ 296.281653][T10573] [U] [ 296.284363][T10573] [U] [ 296.287071][T10573] [U] [ 296.345411][T10573] [U] [ 296.348115][T10573] [U] [ 296.350786][T10573] [U] [ 296.353477][T10573] [U] [ 296.375022][T10573] [U] [ 296.377755][T10573] [U] [ 296.380449][T10573] [U] [ 296.383120][T10573] [U] [ 296.405555][T10573] [U] [ 296.408251][T10573] [U] [ 296.410940][T10573] [U] [ 296.413644][T10573] [U] [ 296.422955][T10573] [U] [ 296.777184][T10601] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1234'. [ 297.012644][T10606] netlink: 472 bytes leftover after parsing attributes in process `syz.1.1236'. [ 297.072342][T10616] ptrace attach of "./syz-executor exec"[5831] was attempted by "./syz-executor exec"[10616] [ 297.225828][T10621] FAULT_INJECTION: forcing a failure. [ 297.225828][T10621] name failslab, interval 1, probability 0, space 0, times 0 [ 297.239126][T10621] CPU: 1 UID: 0 PID: 10621 Comm: syz.3.1240 Tainted: G L syzkaller #0 PREEMPT(full) [ 297.239166][T10621] Tainted: [L]=SOFTLOCKUP [ 297.239176][T10621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 297.239191][T10621] Call Trace: [ 297.239200][T10621] [ 297.239209][T10621] dump_stack_lvl+0x16c/0x1f0 [ 297.239253][T10621] should_fail_ex+0x512/0x640 [ 297.239282][T10621] ? fs_reclaim_acquire+0xae/0x150 [ 297.239324][T10621] should_failslab+0xc2/0x120 [ 297.239370][T10621] kmem_cache_alloc_noprof+0x83/0x770 [ 297.239399][T10621] ? __pfx_map_id_range_down+0x10/0x10 [ 297.239435][T10621] ? security_inode_alloc+0x3b/0x2b0 [ 297.239469][T10621] ? security_inode_alloc+0x3b/0x2b0 [ 297.239495][T10621] security_inode_alloc+0x3b/0x2b0 [ 297.239523][T10621] inode_init_always_gfp+0xced/0x1040 [ 297.239564][T10621] alloc_inode+0x86/0x240 [ 297.239591][T10621] new_inode+0x22/0x1c0 [ 297.239621][T10621] hugetlbfs_get_inode+0x354/0x700 [ 297.239644][T10621] ? security_capable+0x7e/0x260 [ 297.239672][T10621] hugetlb_file_setup+0x38d/0x620 [ 297.239701][T10621] newseg+0xa74/0xe60 [ 297.239740][T10621] ? __pfx_newseg+0x10/0x10 [ 297.239770][T10621] ? vfs_write+0x15d/0x11d0 [ 297.239806][T10621] ipcget+0xf6/0xfa0 [ 297.239838][T10621] ? do_futex+0x122/0x350 [ 297.239866][T10621] ? __pfx_do_futex+0x10/0x10 [ 297.239894][T10621] ? fdget+0x187/0x210 [ 297.239926][T10621] ? __sys_sendmsg+0x18c/0x220 [ 297.239959][T10621] ? __pfx_ipcget+0x10/0x10 [ 297.239991][T10621] ? __x64_sys_futex+0x1e0/0x4c0 [ 297.240016][T10621] ? __x64_sys_futex+0x1e9/0x4c0 [ 297.240048][T10621] __x64_sys_shmget+0x13b/0x1b0 [ 297.240081][T10621] ? __pfx___x64_sys_shmget+0x10/0x10 [ 297.240119][T10621] ? rcu_is_watching+0x12/0xc0 [ 297.240155][T10621] do_syscall_64+0xcd/0xf80 [ 297.240181][T10621] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.240206][T10621] RIP: 0033:0x7fbb40d8f7c9 [ 297.240225][T10621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.240248][T10621] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 297.240272][T10621] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 297.240289][T10621] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 297.240305][T10621] RBP: 00007fbb40e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 297.240320][T10621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 297.240335][T10621] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 297.240380][T10621] [ 297.731477][T10631] [U] [ 297.734314][T10631] [U] [ 297.737029][T10631] [U] [ 297.739741][T10631] [U] [ 297.743339][T10631] [U] [ 297.746060][T10631] [U] [ 297.748769][T10631] [U] [ 297.751472][T10631] [U] [ 297.755016][T10631] [U] [ 297.757738][T10631] [U] [ 297.760453][T10631] [U] [ 297.763168][T10631] [U] [ 297.772385][T10631] [U] [ 297.776367][T10631] [U] [ 297.776410][T10631] [U] [ 297.776451][T10631] [U] [ 297.777571][T10631] [U] [ 297.777612][T10631] [U] [ 297.777651][T10631] [U] [ 297.777691][T10631] [U] [ 297.777849][T10631] [U] [ 297.777889][T10631] [U] [ 297.777924][T10631] [U] [ 297.777959][T10631] [U] [ 297.778115][T10631] [U] [ 297.778155][T10631] [U] [ 297.778195][T10631] [U] [ 297.778232][T10631] [U] [ 297.778396][T10631] [U] [ 297.778437][T10631] [U] [ 297.778476][T10631] [U] [ 297.778516][T10631] [U] [ 297.778689][T10631] [U] [ 297.778724][T10631] [U] [ 297.778761][T10631] [U] [ 297.778797][T10631] [U] [ 297.778943][T10631] [U] [ 297.778983][T10631] [U] [ 297.779019][T10631] [U] [ 297.779057][T10631] [U] [ 297.779222][T10631] [U] [ 297.779262][T10631] [U] [ 297.779299][T10631] [U] [ 297.779337][T10631] [U] [ 297.779493][T10631] [U] [ 297.779531][T10631] [U] [ 297.779580][T10631] [U] [ 297.779622][T10631] [U] [ 297.779786][T10631] [U] [ 297.779827][T10631] [U] [ 297.779864][T10631] [U] [ 297.779901][T10631] [U] [ 297.780063][T10631] [U] [ 297.780102][T10631] [U] [ 297.780140][T10631] [U] [ 297.780178][T10631] [U] [ 297.780339][T10631] [U] [ 297.780374][T10631] [U] [ 297.780411][T10631] [U] [ 297.780454][T10631] [U] [ 297.780620][T10631] [U] [ 297.780655][T10631] [U] [ 297.780690][T10631] [U] [ 297.780725][T10631] [U] [ 297.780883][T10631] [U] [ 297.780917][T10631] [U] [ 297.780967][T10631] [U] [ 297.781015][T10631] [U] [ 297.781210][T10631] [U] [ 297.781252][T10631] [U] [ 297.781283][T10631] [U] [ 297.781314][T10631] [U] [ 297.787316][T10631] [U] [ 297.787363][T10631] [U] [ 297.787406][T10631] [U] [ 297.787451][T10631] [U] [ 297.787638][T10631] [U] [ 297.787680][T10631] [U] [ 297.787725][T10631] [U] [ 297.787770][T10631] [U] [ 297.787939][T10631] [U] [ 297.787975][T10631] [U] [ 297.788015][T10631] [U] [ 297.788055][T10631] [U] [ 297.788225][T10631] [U] [ 297.788266][T10631] [U] [ 297.788305][T10631] [U] [ 297.788348][T10631] [U] [ 297.788516][T10631] [U] [ 297.788566][T10631] [U] [ 297.788611][T10631] [U] [ 297.788654][T10631] [U] [ 297.788829][T10631] [U] [ 297.788873][T10631] [U] [ 297.788916][T10631] [U] [ 297.788958][T10631] [U] [ 297.789130][T10631] [U] [ 297.789169][T10631] [U] [ 297.789208][T10631] [U] [ 297.789247][T10631] [U] [ 297.789418][T10631] [U] [ 297.789460][T10631] [U] [ 297.789501][T10631] [U] [ 297.789541][T10631] [U] [ 297.789715][T10631] [U] [ 297.789757][T10631] [U] [ 297.789796][T10631] [U] [ 297.789834][T10631] [U] [ 297.789996][T10631] [U] [ 297.790034][T10631] [U] [ 297.790071][T10631] [U] [ 297.790112][T10631] [U] [ 297.790272][T10631] [U] [ 297.790309][T10631] [U] [ 297.790349][T10631] [U] [ 297.790387][T10631] [U] [ 297.790548][T10631] [U] [ 297.790603][T10631] [U] [ 297.790643][T10631] [U] [ 297.790685][T10631] [U] [ 297.790838][T10631] [U] [ 297.790877][T10631] [U] [ 297.790911][T10631] [U] [ 297.790947][T10631] [U] [ 297.791073][T10631] [U] [ 297.791108][T10631] [U] [ 297.791143][T10631] [U] [ 298.021037][T10636] [U] [ 298.055982][T10646] netlink: 342 bytes leftover after parsing attributes in process `syz.0.1245'. [ 298.680169][T10667] HfR: entered promiscuous mode [ 298.913481][T10677] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1254'. [ 299.861580][T10310] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 300.025110][T10725] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1266'. [ 302.068029][T10790] FAULT_INJECTION: forcing a failure. [ 302.068029][T10790] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 302.124483][T10790] CPU: 1 UID: 0 PID: 10790 Comm: syz.1.1290 Tainted: G L syzkaller #0 PREEMPT(full) [ 302.124528][T10790] Tainted: [L]=SOFTLOCKUP [ 302.124537][T10790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 302.124550][T10790] Call Trace: [ 302.124558][T10790] [ 302.124567][T10790] dump_stack_lvl+0x16c/0x1f0 [ 302.124613][T10790] should_fail_ex+0x512/0x640 [ 302.124648][T10790] should_fail_alloc_page+0xe7/0x130 [ 302.124686][T10790] prepare_alloc_pages+0x401/0x670 [ 302.124728][T10790] __alloc_frozen_pages_noprof+0x18b/0x2430 [ 302.124759][T10790] ? stack_trace_save+0x8e/0xc0 [ 302.124794][T10790] ? __pfx_stack_trace_save+0x10/0x10 [ 302.124827][T10790] ? rcu_is_watching+0x12/0xc0 [ 302.124857][T10790] ? stack_depot_save_flags+0x29/0x9b0 [ 302.124893][T10790] ? kasan_save_stack+0x42/0x60 [ 302.124922][T10790] ? kasan_save_stack+0x33/0x60 [ 302.124952][T10790] ? kasan_save_track+0x14/0x30 [ 302.124983][T10790] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 302.125010][T10790] ? walk_pgd_range+0x89a/0x1f80 [ 302.125037][T10790] ? walk_page_range_mm_unsafe+0x461/0xb40 [ 302.125068][T10790] ? madvise_vma_behavior+0x8f8/0x29e0 [ 302.125089][T10790] ? madvise_walk_vmas+0x31f/0xac0 [ 302.125111][T10790] ? madvise_do_behavior+0x1e2/0x530 [ 302.125133][T10790] ? do_madvise+0x176/0x240 [ 302.125153][T10790] ? __x64_sys_madvise+0xa9/0x110 [ 302.125176][T10790] ? do_syscall_64+0xcd/0xf80 [ 302.125197][T10790] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.125237][T10790] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 302.125275][T10790] ? policy_nodemask+0xea/0x4e0 [ 302.125313][T10790] alloc_pages_mpol+0x1fb/0x550 [ 302.125359][T10790] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 302.125407][T10790] alloc_pages_noprof+0x131/0x390 [ 302.125447][T10790] pte_alloc_one+0x1e/0x3d0 [ 302.125482][T10790] __pte_alloc+0x6d/0x3f0 [ 302.125515][T10790] ? __pfx___pte_alloc+0x10/0x10 [ 302.125548][T10790] ? _raw_spin_unlock+0x28/0x50 [ 302.125581][T10790] ? __pmd_alloc+0x6aa/0x9c0 [ 302.125621][T10790] walk_pgd_range+0xb8f/0x1f80 [ 302.125656][T10790] ? __pfx_guard_install_set_pte+0x10/0x10 [ 302.125692][T10790] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 302.125717][T10790] ? __pfx_guard_install_set_pte+0x10/0x10 [ 302.125758][T10790] ? __pfx_guard_install_set_pte+0x10/0x10 [ 302.125792][T10790] ? __pfx_guard_install_set_pte+0x10/0x10 [ 302.125826][T10790] ? __pfx_walk_pgd_range+0x10/0x10 [ 302.125867][T10790] __walk_page_range+0x163/0x820 [ 302.125906][T10790] ? find_vma+0xbf/0x140 [ 302.125938][T10790] ? __pfx_find_vma+0x10/0x10 [ 302.125975][T10790] ? walk_page_test+0x9b/0x180 [ 302.126007][T10790] walk_page_range_mm_unsafe+0x461/0xb40 [ 302.126045][T10790] ? __pfx_walk_page_range_mm_unsafe+0x10/0x10 [ 302.126087][T10790] ? __anon_vma_prepare+0x2e2/0x5e0 [ 302.126119][T10790] madvise_guard_install+0x31f/0x860 [ 302.126164][T10790] ? __pfx_madvise_guard_install+0x10/0x10 [ 302.126203][T10790] ? __pfx_guard_install_pud_entry+0x10/0x10 [ 302.126236][T10790] ? __pfx_guard_install_pmd_entry+0x10/0x10 [ 302.126271][T10790] ? __pfx_guard_install_pte_entry+0x10/0x10 [ 302.126298][T10790] ? __pfx_guard_install_set_pte+0x10/0x10 [ 302.126354][T10790] madvise_vma_behavior+0x8f8/0x29e0 [ 302.126382][T10790] ? mas_prev_setup.constprop.0+0xb6/0x9d0 [ 302.126421][T10790] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 302.126447][T10790] ? mas_prev+0x9b/0xf0 [ 302.126470][T10790] ? __pfx_mas_prev+0x10/0x10 [ 302.126504][T10790] ? find_vma_prev+0xd3/0x150 [ 302.126536][T10790] ? lock_vma_under_rcu+0x1f3/0x580 [ 302.126562][T10790] ? __pfx_find_vma_prev+0x10/0x10 [ 302.126609][T10790] ? madvise_do_behavior+0x1e2/0x530 [ 302.126640][T10790] madvise_walk_vmas+0x31f/0xac0 [ 302.126668][T10790] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 302.126695][T10790] ? find_held_lock+0x2b/0x80 [ 302.126743][T10790] madvise_do_behavior+0x1e2/0x530 [ 302.126767][T10790] ? futex_private_hash_put+0x160/0x1b0 [ 302.126796][T10790] ? __pfx_madvise_do_behavior+0x10/0x10 [ 302.126820][T10790] ? futex_wait+0x120/0x380 [ 302.126869][T10790] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 302.126911][T10790] do_madvise+0x176/0x240 [ 302.126935][T10790] ? __pfx_do_madvise+0x10/0x10 [ 302.126957][T10790] ? do_futex+0x122/0x350 [ 302.127010][T10790] ? xfd_validate_state+0x61/0x180 [ 302.127032][T10790] ? __pfx_ksys_write+0x10/0x10 [ 302.127072][T10790] __x64_sys_madvise+0xa9/0x110 [ 302.127097][T10790] ? lockdep_hardirqs_on+0x7c/0x110 [ 302.127120][T10790] do_syscall_64+0xcd/0xf80 [ 302.127147][T10790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.127171][T10790] RIP: 0033:0x7fd2fb98f7c9 [ 302.127192][T10790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.127216][T10790] RSP: 002b:00007fd2fc8ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 302.127240][T10790] RAX: ffffffffffffffda RBX: 00007fd2fbbe5fa0 RCX: 00007fd2fb98f7c9 [ 302.127257][T10790] RDX: 0000000000000066 RSI: 0000000002021000 RDI: 0000000000000000 [ 302.127273][T10790] RBP: 00007fd2fba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 302.127289][T10790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.127303][T10790] R13: 00007fd2fbbe6038 R14: 00007fd2fbbe5fa0 R15: 00007fffb7279f08 [ 302.127347][T10790] [ 302.785764][T10797] FAULT_INJECTION: forcing a failure. [ 302.785764][T10797] name failslab, interval 1, probability 0, space 0, times 0 [ 302.800348][T10797] CPU: 1 UID: 0 PID: 10797 Comm: syz.0.1283 Tainted: G L syzkaller #0 PREEMPT(full) [ 302.800388][T10797] Tainted: [L]=SOFTLOCKUP [ 302.800396][T10797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 302.800416][T10797] Call Trace: [ 302.800425][T10797] [ 302.800434][T10797] dump_stack_lvl+0x16c/0x1f0 [ 302.800479][T10797] should_fail_ex+0x512/0x640 [ 302.800505][T10797] ? fs_reclaim_acquire+0xae/0x150 [ 302.800544][T10797] should_failslab+0xc2/0x120 [ 302.800578][T10797] kmem_cache_alloc_noprof+0x83/0x770 [ 302.800605][T10797] ? __pfx_map_id_range_down+0x10/0x10 [ 302.800637][T10797] ? security_inode_alloc+0x3b/0x2b0 [ 302.800668][T10797] ? security_inode_alloc+0x3b/0x2b0 [ 302.800694][T10797] security_inode_alloc+0x3b/0x2b0 [ 302.800720][T10797] inode_init_always_gfp+0xced/0x1040 [ 302.800755][T10797] alloc_inode+0x86/0x240 [ 302.800777][T10797] new_inode+0x22/0x1c0 [ 302.800800][T10797] hugetlbfs_get_inode+0x354/0x700 [ 302.800818][T10797] ? security_capable+0x7e/0x260 [ 302.800839][T10797] hugetlb_file_setup+0x38d/0x620 [ 302.800861][T10797] newseg+0xa74/0xe60 [ 302.800890][T10797] ? __pfx_newseg+0x10/0x10 [ 302.800914][T10797] ? vfs_write+0x15d/0x11d0 [ 302.800943][T10797] ipcget+0xf6/0xfa0 [ 302.800967][T10797] ? do_futex+0x122/0x350 [ 302.800988][T10797] ? __pfx_do_futex+0x10/0x10 [ 302.801022][T10797] ? __pfx_ipcget+0x10/0x10 [ 302.801049][T10797] ? __x64_sys_futex+0x1e0/0x4c0 [ 302.801070][T10797] ? __x64_sys_futex+0x1e9/0x4c0 [ 302.801097][T10797] __x64_sys_shmget+0x13b/0x1b0 [ 302.801123][T10797] ? __pfx___x64_sys_shmget+0x10/0x10 [ 302.801154][T10797] ? rcu_is_watching+0x12/0xc0 [ 302.801182][T10797] do_syscall_64+0xcd/0xf80 [ 302.801202][T10797] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 302.801220][T10797] RIP: 0033:0x7fd1e4b8f7c9 [ 302.801236][T10797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.801253][T10797] RSP: 002b:00007fd1e59f4038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 302.801275][T10797] RAX: ffffffffffffffda RBX: 00007fd1e4de5fa0 RCX: 00007fd1e4b8f7c9 [ 302.801288][T10797] RDX: 0000000079e56dc9 RSI: 0000000000000003 RDI: 0000000100000000 [ 302.801300][T10797] RBP: 00007fd1e4c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 302.801312][T10797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 302.801324][T10797] R13: 00007fd1e4de6038 R14: 00007fd1e4de5fa0 R15: 00007ffcb9cdca88 [ 302.801353][T10797] [ 303.098462][T10800] vhci_hcd vhci_hcd.3: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub [ 303.770208][T10830] input: JJǸ-¶š9ã%vø“ as /devices/virtual/input/input38 [ 303.984309][T10824] NFSD: Failed to start, no listeners configured. [ 304.298202][T10836] netlink: 'syz.0.1292': attribute type 1 has an invalid length. [ 304.368692][T10838] FAULT_INJECTION: forcing a failure. [ 304.368692][T10838] name failslab, interval 1, probability 0, space 0, times 0 [ 304.405178][T10838] CPU: 1 UID: 0 PID: 10838 Comm: syz.3.1293 Tainted: G L syzkaller #0 PREEMPT(full) [ 304.405219][T10838] Tainted: [L]=SOFTLOCKUP [ 304.405227][T10838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 304.405240][T10838] Call Trace: [ 304.405247][T10838] [ 304.405255][T10838] dump_stack_lvl+0x16c/0x1f0 [ 304.405295][T10838] should_fail_ex+0x512/0x640 [ 304.405319][T10838] ? fs_reclaim_acquire+0xae/0x150 [ 304.405354][T10838] should_failslab+0xc2/0x120 [ 304.405388][T10838] __kmalloc_noprof+0xeb/0x910 [ 304.405411][T10838] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 304.405445][T10838] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 304.405472][T10838] tomoyo_realpath_from_path+0xc2/0x6e0 [ 304.405509][T10838] tomoyo_check_open_permission+0x2ab/0x3c0 [ 304.405536][T10838] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 304.405597][T10838] ? do_raw_spin_lock+0x12c/0x2b0 [ 304.405630][T10838] tomoyo_file_open+0x6b/0x90 [ 304.405652][T10838] security_file_open+0x84/0x1e0 [ 304.405681][T10838] do_dentry_open+0x597/0x1590 [ 304.405712][T10838] ? security_inode_permission+0xbf/0x260 [ 304.405741][T10838] vfs_open+0x82/0x3f0 [ 304.405768][T10838] path_openat+0x2078/0x3140 [ 304.405809][T10838] ? __pfx_path_openat+0x10/0x10 [ 304.405851][T10838] do_filp_open+0x20b/0x470 [ 304.405882][T10838] ? __pfx_do_filp_open+0x10/0x10 [ 304.405942][T10838] ? alloc_fd+0x471/0x7d0 [ 304.405981][T10838] do_sys_openat2+0x121/0x290 [ 304.406006][T10838] ? __pfx_do_sys_openat2+0x10/0x10 [ 304.406042][T10838] __x64_sys_openat+0x174/0x210 [ 304.406067][T10838] ? __pfx___x64_sys_openat+0x10/0x10 [ 304.406106][T10838] do_syscall_64+0xcd/0xf80 [ 304.406129][T10838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 304.406149][T10838] RIP: 0033:0x7fbb40d8f7c9 [ 304.406167][T10838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 304.406186][T10838] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 304.406206][T10838] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 304.406220][T10838] RDX: 0000000000000400 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 304.406233][T10838] RBP: 00007fbb40e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 304.406247][T10838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 304.406259][T10838] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 304.406291][T10838] [ 304.406367][T10838] ERROR: Out of memory at tomoyo_realpath_from_path. [ 305.005720][T10846] FAULT_INJECTION: forcing a failure. [ 305.005720][T10846] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 305.019002][T10846] CPU: 1 UID: 0 PID: 10846 Comm: syz.3.1295 Tainted: G L syzkaller #0 PREEMPT(full) [ 305.019037][T10846] Tainted: [L]=SOFTLOCKUP [ 305.019044][T10846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 305.019057][T10846] Call Trace: [ 305.019065][T10846] [ 305.019073][T10846] dump_stack_lvl+0x16c/0x1f0 [ 305.019114][T10846] should_fail_ex+0x512/0x640 [ 305.019145][T10846] _copy_from_user+0x2e/0xd0 [ 305.019173][T10846] copy_msghdr_from_user+0x98/0x160 [ 305.019205][T10846] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 305.019244][T10846] ? __pfx__kstrtoull+0x10/0x10 [ 305.019282][T10846] ___sys_sendmsg+0xfe/0x1d0 [ 305.019315][T10846] ? __pfx____sys_sendmsg+0x10/0x10 [ 305.019364][T10846] ? find_held_lock+0x2b/0x80 [ 305.019415][T10846] __sys_sendmmsg+0x200/0x420 [ 305.019451][T10846] ? __pfx___sys_sendmmsg+0x10/0x10 [ 305.019494][T10846] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 305.019533][T10846] ? fput+0x70/0xf0 [ 305.019557][T10846] ? ksys_write+0x1ac/0x250 [ 305.019588][T10846] ? __pfx_ksys_write+0x10/0x10 [ 305.019625][T10846] __x64_sys_sendmmsg+0x9c/0x100 [ 305.019656][T10846] ? lockdep_hardirqs_on+0x7c/0x110 [ 305.019678][T10846] do_syscall_64+0xcd/0xf80 [ 305.019703][T10846] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.019727][T10846] RIP: 0033:0x7fbb40d8f7c9 [ 305.019745][T10846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.019766][T10846] RSP: 002b:00007fbb41c3b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 305.019789][T10846] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa0 RCX: 00007fbb40d8f7c9 [ 305.019804][T10846] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005 [ 305.019818][T10846] RBP: 00007fbb41c3b090 R08: 0000000000000000 R09: 0000000000000000 [ 305.019832][T10846] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 305.019846][T10846] R13: 00007fbb40fe6038 R14: 00007fbb40fe5fa0 R15: 00007ffd808fc2e8 [ 305.019886][T10846] [ 305.510384][T10859] FAULT_INJECTION: forcing a failure. [ 305.510384][T10859] name fail_futex, interval 1, probability 0, space 0, times 0 [ 305.551423][T10859] CPU: 0 UID: 0 PID: 10859 Comm: syz.3.1302 Tainted: G L syzkaller #0 PREEMPT(full) [ 305.551464][T10859] Tainted: [L]=SOFTLOCKUP [ 305.551473][T10859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 305.551488][T10859] Call Trace: [ 305.551496][T10859] [ 305.551506][T10859] dump_stack_lvl+0x16c/0x1f0 [ 305.551552][T10859] should_fail_ex+0x512/0x640 [ 305.551586][T10859] get_futex_key+0x1d0/0x15f0 [ 305.551619][T10859] ? __pfx_get_futex_key+0x10/0x10 [ 305.551659][T10859] futex_wake+0xea/0x530 [ 305.551688][T10859] ? futex_wait+0x120/0x380 [ 305.551720][T10859] ? __pfx_futex_wait+0x10/0x10 [ 305.551753][T10859] ? __pfx_futex_wake+0x10/0x10 [ 305.551796][T10859] do_futex+0x1e3/0x350 [ 305.551823][T10859] ? __pfx_do_futex+0x10/0x10 [ 305.551858][T10859] __x64_sys_futex+0x1e0/0x4c0 [ 305.551891][T10859] ? __pfx___x64_sys_futex+0x10/0x10 [ 305.551918][T10859] ? xfd_validate_state+0x61/0x180 [ 305.551939][T10859] ? __pfx_ksys_write+0x10/0x10 [ 305.551983][T10859] do_syscall_64+0xcd/0xf80 [ 305.552008][T10859] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.552031][T10859] RIP: 0033:0x7fbb40d8f7c9 [ 305.552051][T10859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.552083][T10859] RSP: 002b:00007fbb41c3b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 305.552105][T10859] RAX: ffffffffffffffda RBX: 00007fbb40fe5fa8 RCX: 00007fbb40d8f7c9 [ 305.552121][T10859] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbb40fe5fac [ 305.552135][T10859] RBP: 00007fbb40fe5fa0 R08: 00007fbb41c3c000 R09: 0000000000000000 [ 305.552150][T10859] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 305.552165][T10859] R13: 00007fbb40fe6038 R14: 00007ffd808fc200 R15: 00007ffd808fc2e8 [ 305.552197][T10859] [ 305.975477][T10872] netlink: zone id is out of range [ 306.083229][T10872] netlink: set zone limit has 8 unknown bytes [ 306.104253][T10879] KVM: debugfs: duplicate directory 10879-3 [ 306.849016][T10919] FAULT_INJECTION: forcing a failure. [ 306.849016][T10919] name failslab, interval 1, probability 0, space 0, times 0 [ 306.861969][T10919] CPU: 1 UID: 0 PID: 10919 Comm: syz.0.1325 Tainted: G L syzkaller #0 PREEMPT(full) [ 306.862004][T10919] Tainted: [L]=SOFTLOCKUP [ 306.862011][T10919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 306.862025][T10919] Call Trace: [ 306.862033][T10919] [ 306.862041][T10919] dump_stack_lvl+0x116/0x1f0 [ 306.862080][T10919] should_fail_ex+0x512/0x640 [ 306.862108][T10919] should_failslab+0xc2/0x120 [ 306.862138][T10919] kmem_cache_alloc_noprof+0x83/0x770 [ 306.862163][T10919] ? __send_signal_locked+0x159/0x12c0 [ 306.862192][T10919] ? __send_signal_locked+0x159/0x12c0 [ 306.862212][T10919] __send_signal_locked+0x159/0x12c0 [ 306.862236][T10919] ? __lock_task_sighand+0x146/0x340 [ 306.862261][T10919] do_send_specific+0x1e8/0x370 [ 306.862290][T10919] ? __pfx_do_send_specific+0x10/0x10 [ 306.862316][T10919] ? __task_pid_nr_ns+0x1f5/0x500 [ 306.862342][T10919] do_rt_tgsigqueueinfo+0xa9/0x100 [ 306.862373][T10919] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 306.862395][T10919] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 306.862429][T10919] do_syscall_64+0xcd/0xf80 [ 306.862450][T10919] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 306.862470][T10919] RIP: 0033:0x7fd1e4b8f7c9 [ 306.862487][T10919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.862507][T10919] RSP: 002b:00007fd1e59f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 306.862527][T10919] RAX: ffffffffffffffda RBX: 00007fd1e4de5fa0 RCX: 00007fd1e4b8f7c9 [ 306.862540][T10919] RDX: 0000000000000021 RSI: 0000000000000460 RDI: 000000000000045f [ 306.862552][T10919] RBP: 00007fd1e4c13f91 R08: 0000000000000000 R09: 0000000000000000 [ 306.862563][T10919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 306.862575][T10919] R13: 00007fd1e4de6038 R14: 00007fd1e4de5fa0 R15: 00007ffcb9cdca88 [ 306.862606][T10919] [ 307.069402][T10919] netlink: 'syz.0.1325': attribute type 5 has an invalid length. [ 309.243592][T10995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1342'. [ 311.198548][T11038] netlink: 'syz.0.1357': attribute type 1 has an invalid length. [ 311.533648][T11048] CIFS: VFS: Invalid SecurityFlags: 0 [ 311.533648][T11048] [ 311.761764][T11060] netlink: 'syz.3.1366': attribute type 1 has an invalid length. [ 311.912254][T11062] NFSD: Failed to start, no listeners configured. [ 312.185395][T11070] netlink: 'syz.2.1368': attribute type 1 has an invalid length. [ 312.691275][T11076] input: JJǸ-¶š9ã%vø“ as /devices/virtual/input/input39 [ 313.464775][T11098] netlink: 'syz.2.1378': attribute type 1 has an invalid length. [ 313.662050][T11103] FAULT_INJECTION: forcing a failure. [ 313.662050][T11103] name failslab, interval 1, probability 0, space 0, times 0 [ 313.714611][T11103] CPU: 1 UID: 0 PID: 11103 Comm: syz.2.1380 Tainted: G L syzkaller #0 PREEMPT(full) [ 313.714648][T11103] Tainted: [L]=SOFTLOCKUP [ 313.714655][T11103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 313.714669][T11103] Call Trace: [ 313.714677][T11103] [ 313.714686][T11103] dump_stack_lvl+0x16c/0x1f0 [ 313.714726][T11103] should_fail_ex+0x512/0x640 [ 313.714753][T11103] ? __kmalloc_noprof+0xca/0x910 [ 313.714781][T11103] should_failslab+0xc2/0x120 [ 313.714817][T11103] __kmalloc_noprof+0xeb/0x910 [ 313.714840][T11103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 313.714873][T11103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 313.714897][T11103] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 313.714931][T11103] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 313.714956][T11103] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 313.714979][T11103] ? genl_get_cmd+0x194/0x580 [ 313.715007][T11103] ? bpf_lsm_capable+0x9/0x10 [ 313.715035][T11103] ? security_capable+0x7e/0x260 [ 313.715061][T11103] ? ns_capable+0xd7/0x110 [ 313.715090][T11103] genl_rcv_msg+0x55c/0x800 [ 313.715117][T11103] ? __pfx_genl_rcv_msg+0x10/0x10 [ 313.715140][T11103] ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10 [ 313.715174][T11103] netlink_rcv_skb+0x158/0x420 [ 313.715202][T11103] ? __pfx_genl_rcv_msg+0x10/0x10 [ 313.715225][T11103] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 313.715265][T11103] ? netlink_deliver_tap+0x1ae/0xd30 [ 313.715314][T11103] genl_rcv+0x28/0x40 [ 313.715332][T11103] netlink_unicast+0x5aa/0x870 [ 313.715365][T11103] ? __pfx_netlink_unicast+0x10/0x10 [ 313.715405][T11103] netlink_sendmsg+0x8c8/0xdd0 [ 313.715439][T11103] ? __pfx_netlink_sendmsg+0x10/0x10 [ 313.715471][T11103] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 313.715497][T11103] ____sys_sendmsg+0xa5d/0xc30 [ 313.715518][T11103] ? copy_msghdr_from_user+0x10a/0x160 [ 313.715545][T11103] ? __pfx_____sys_sendmsg+0x10/0x10 [ 313.715579][T11103] ___sys_sendmsg+0x134/0x1d0 [ 313.715606][T11103] ? __pfx____sys_sendmsg+0x10/0x10 [ 313.715670][T11103] __sys_sendmsg+0x16d/0x220 [ 313.715696][T11103] ? __pfx___sys_sendmsg+0x10/0x10 [ 313.715742][T11103] do_syscall_64+0xcd/0xf80 [ 313.715762][T11103] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 313.715783][T11103] RIP: 0033:0x7f32cd78f7c9 [ 313.715799][T11103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.715817][T11103] RSP: 002b:00007f32ce67e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 313.715836][T11103] RAX: ffffffffffffffda RBX: 00007f32cd9e5fa0 RCX: 00007f32cd78f7c9 [ 313.715850][T11103] RDX: 00000000000480c4 RSI: 0000200000000100 RDI: 0000000000000003 [ 313.715862][T11103] RBP: 00007f32ce67e090 R08: 0000000000000000 R09: 0000000000000000 [ 313.715874][T11103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 313.715885][T11103] R13: 00007f32cd9e6038 R14: 00007f32cd9e5fa0 R15: 00007ffe8a326938 [ 313.715915][T11103] [ 314.410798][T10321] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 314.704651][T11126] input: JJǸ-¶š9ã%vø“ as /devices/virtual/input/input40 [ 314.775639][ T30] audit: type=1800 audit(4294967361.739:9): pid=11129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1389" name="lu_gp_id" dev="configfs" ino=36840 res=0 errno=0 [ 315.397383][T11137] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 316.202815][T11160] vhci_hcd vhci_hcd.1: default hub control req: 0000 v0000 i0000 l0 [ 316.950204][T11181] netlink: 'syz.3.1406': attribute type 1 has an invalid length. [ 317.181495][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.187938][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 318.278537][T11209] FAULT_INJECTION: forcing a failure. [ 318.278537][T11209] name failslab, interval 1, probability 0, space 0, times 0 [ 318.338684][T11209] CPU: 1 UID: 0 PID: 11209 Comm: syz.1.1415 Tainted: G L syzkaller #0 PREEMPT(full) [ 318.338726][T11209] Tainted: [L]=SOFTLOCKUP [ 318.338735][T11209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 318.338750][T11209] Call Trace: [ 318.338758][T11209] [ 318.338768][T11209] dump_stack_lvl+0x16c/0x1f0 [ 318.338814][T11209] should_fail_ex+0x512/0x640 [ 318.338842][T11209] ? __kmalloc_noprof+0xca/0x910 [ 318.338875][T11209] should_failslab+0xc2/0x120 [ 318.338911][T11209] __kmalloc_noprof+0xeb/0x910 [ 318.338940][T11209] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 318.338980][T11209] ? process_vm_rw_core.constprop.0+0x1d8/0x970 [ 318.339023][T11209] process_vm_rw_core.constprop.0+0x1d8/0x970 [ 318.339062][T11209] ? futex_unqueue+0x13d/0x2c0 [ 318.339096][T11209] ? __pfx___futex_wait+0x10/0x10 [ 318.339130][T11209] ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10 [ 318.339165][T11209] ? import_ubuf+0x1b6/0x220 [ 318.339206][T11209] ? iovec_from_user+0xbb/0x140 [ 318.339238][T11209] process_vm_rw+0x216/0x2c0 [ 318.339271][T11209] ? __pfx_process_vm_rw+0x10/0x10 [ 318.339347][T11209] ? xfd_validate_state+0x61/0x180 [ 318.339369][T11209] ? __pfx_ksys_write+0x10/0x10 [ 318.339407][T11209] __x64_sys_process_vm_readv+0xe2/0x1c0 [ 318.339439][T11209] ? do_syscall_64+0x91/0xf80 [ 318.339462][T11209] ? lockdep_hardirqs_on+0x7c/0x110 [ 318.339485][T11209] do_syscall_64+0xcd/0xf80 [ 318.339510][T11209] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.339534][T11209] RIP: 0033:0x7fd2fb98f7c9 [ 318.339554][T11209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.339577][T11209] RSP: 002b:00007fd2fc8ec038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136 [ 318.339600][T11209] RAX: ffffffffffffffda RBX: 00007fd2fbbe5fa0 RCX: 00007fd2fb98f7c9 [ 318.339617][T11209] RDX: 0000040000000001 RSI: 0000200000000000 RDI: 0000000000000000 [ 318.339633][T11209] RBP: 00007fd2fba13f91 R08: 0000000000000004 R09: 0000000000000000 [ 318.339648][T11209] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 318.339663][T11209] R13: 00007fd2fbbe6038 R14: 00007fd2fbbe5fa0 R15: 00007fffb7279f08 [ 318.339698][T11209] [ 320.839376][T11272] vivid-009: ================= START STATUS ================= [ 320.850266][T11272] vivid-009: Radio HW Seek Mode: Bounded [ 320.899492][T11272] vivid-009: Radio Programmable HW Seek: false [ 320.948440][T11272] vivid-009: RDS Rx I/O Mode: Block I/O [ 320.989256][T11272] vivid-009: Generate RBDS Instead of RDS: false [ 321.008128][T11272] vivid-009: RDS Reception: true [ 321.020970][T11272] vivid-009: RDS Program Type: 0 inactive [ 321.090094][T11272] vivid-009: RDS PS Name: inactive [ 321.160233][T11272] vivid-009: RDS Radio Text: inactive [ 321.210799][T11272] vivid-009: RDS Traffic Announcement: false inactive [ 321.219193][T11272] vivid-009: RDS Traffic Program: false inactive [ 321.240691][T11272] vivid-009: RDS Music: false inactive [ 321.254777][T11272] vivid-009: ================== END STATUS ================== [ 322.511697][T11305] bond0: Unable to set down delay as MII monitoring is disabled [ 322.624186][T11308] random: crng reseeded on system resumption [ 324.843634][ T30] audit: type=1800 audit(4294967371.799:10): pid=11360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1458" name="lu_gp_id" dev="configfs" ino=38702 res=0 errno=0 [ 324.950690][T11351] cgroup: fork rejected by pids controller in /syz1 [ 325.186968][T11406] input: jJǸ-¶š9ã%vø“ as /devices/virtual/input/input41 [ 326.620020][T11452] FAULT_INJECTION: forcing a failure. [ 326.620020][T11452] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 326.633231][T11452] CPU: 1 UID: 0 PID: 11452 Comm: syz.2.1461 Tainted: G L syzkaller #0 PREEMPT(full) [ 326.633265][T11452] Tainted: [L]=SOFTLOCKUP [ 326.633273][T11452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 326.633287][T11452] Call Trace: [ 326.633294][T11452] [ 326.633304][T11452] dump_stack_lvl+0x16c/0x1f0 [ 326.633342][T11452] should_fail_ex+0x512/0x640 [ 326.633372][T11452] _copy_from_user+0x2e/0xd0 [ 326.633400][T11452] ____sys_sendmsg+0x607/0xc30 [ 326.633428][T11452] ? __pfx_____sys_sendmsg+0x10/0x10 [ 326.633455][T11452] ? __pfx__kstrtoull+0x10/0x10 [ 326.633501][T11452] ___sys_sendmsg+0x134/0x1d0 [ 326.633538][T11452] ? __pfx____sys_sendmsg+0x10/0x10 [ 326.633583][T11452] ? find_held_lock+0x2b/0x80 [ 326.633629][T11452] __sys_sendmmsg+0x200/0x420 [ 326.633662][T11452] ? __pfx___sys_sendmmsg+0x10/0x10 [ 326.633700][T11452] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 326.633734][T11452] ? fput+0x70/0xf0 [ 326.633801][T11452] ? ksys_write+0x1ac/0x250 [ 326.633831][T11452] ? __pfx_ksys_write+0x10/0x10 [ 326.633863][T11452] __x64_sys_sendmmsg+0x9c/0x100 [ 326.633892][T11452] ? lockdep_hardirqs_on+0x7c/0x110 [ 326.633913][T11452] do_syscall_64+0xcd/0xf80 [ 326.633936][T11452] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 326.633959][T11452] RIP: 0033:0x7f32cd78f7c9 [ 326.633978][T11452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 326.633999][T11452] RSP: 002b:00007f32ce67e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 326.634021][T11452] RAX: ffffffffffffffda RBX: 00007f32cd9e5fa0 RCX: 00007f32cd78f7c9 [ 326.634036][T11452] RDX: 0000000000000007 RSI: 0000200000000200 RDI: 0000000000000005 [ 326.634049][T11452] RBP: 00007f32ce67e090 R08: 0000000000000000 R09: 0000000000000000 [ 326.634061][T11452] R10: 0000000000004008 R11: 0000000000000246 R12: 0000000000000001 [ 326.634074][T11452] R13: 00007f32cd9e6038 R14: 00007f32cd9e5fa0 R15: 00007ffe8a326938 [ 326.634108][T11452] [ 327.282873][T11459] netlink: zone id is out of range [ 327.362068][T11459] netlink: set zone limit has 8 unknown bytes [ 327.425246][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.437915][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.450458][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.463016][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.475503][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.488261][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.500837][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.513306][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.854950][T11465] netlink: 'syz.0.1465': attribute type 1 has an invalid length. [ 328.267032][T11472] vivid-009: ================= START STATUS ================= [ 328.287360][T11472] vivid-009: Radio HW Seek Mode: Bounded [ 328.293432][T11472] vivid-009: Radio Programmable HW Seek: false [ 328.322422][T11474] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1468'. [ 328.331888][T11472] vivid-009: RDS Rx I/O Mode: Block I/O [ 328.345557][T11472] vivid-009: Generate RBDS Instead of RDS: false [ 328.359570][T11472] vivid-009: RDS Reception: true [ 328.374913][T11472] vivid-009: RDS Program Type: 0 inactive [ 328.381428][T11472] vivid-009: RDS PS Name: inactive [ 328.405766][T11472] vivid-009: RDS Radio Text: inactive [ 328.414829][T11472] vivid-009: RDS Traffic Announcement: false inactive [ 328.430580][T11472] vivid-009: RDS Traffic Program: false inactive [ 328.444700][T11472] vivid-009: RDS Music: false inactive [ 328.469009][T11472] vivid-009: ================== END STATUS ================== [ 332.284765][ C0] net_ratelimit: 19491 callbacks suppressed [ 332.284788][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.303061][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.315258][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.327605][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.339810][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.352241][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.364419][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.376737][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.388905][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.401278][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.851970][ C0] sched: DL replenish lagged too much [ 337.294601][ C0] net_ratelimit: 21864 callbacks suppressed [ 337.294617][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.312705][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.324851][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.336978][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.349115][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.361227][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.373358][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.385477][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.397588][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.409764][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.304698][ C0] net_ratelimit: 7250 callbacks suppressed [ 342.304714][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.323247][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.335976][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.348683][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.361382][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.374082][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.386761][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.399447][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.412096][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.424842][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 344.196139][T10421] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 344.842954][T11518] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 344.882893][T11521] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 344.908840][T11518] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 345.071973][T10315] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 345.254246][T11518] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 345.282981][T10315] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 345.422686][T11521] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 345.464349][T11522] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 345.490697][T11518] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 345.560283][T11521] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 345.614879][T11521] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 345.666465][T11522] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 347.315201][ C0] net_ratelimit: 4732 callbacks suppressed [ 347.315218][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.334300][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.347109][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.360421][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.373111][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.385942][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.398650][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.411475][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.424141][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.436966][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.662758][T11510] Bluetooth: hci6: Opcode 0x1009 failed: -110 [ 347.766726][T10310] Bluetooth: hci4: Opcode 0x0c39 failed: -110 [ 347.904327][T11510] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 347.924003][T11505] Bluetooth: hci4: Opcode 0x0c03 failed: -4 [ 348.055039][T11510] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 348.071262][T11510] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 348.767544][T11510] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 348.828415][T11510] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 350.006598][T11510] Bluetooth: hci5: command tx timeout [ 351.350232][T11510] Bluetooth: hci6: command tx timeout [ 352.097486][T11510] Bluetooth: hci5: command tx timeout [ 352.325586][ C0] net_ratelimit: 6085 callbacks suppressed [ 352.325615][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.345000][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.358563][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.371446][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.384188][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.397120][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.409842][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.422717][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.435449][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.448319][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 353.439091][T11510] Bluetooth: hci6: command tx timeout [ 353.542981][T10310] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 353.580064][T10310] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 353.628235][T10310] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 353.805222][T10310] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 353.972217][T10310] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 354.146426][T10310] Bluetooth: hci5: command tx timeout [ 355.520130][T11510] Bluetooth: hci6: command tx timeout [ 356.392597][T10310] Bluetooth: hci0: command tx timeout [ 356.408000][T11510] Bluetooth: hci5: command tx timeout [ 357.334655][ C0] net_ratelimit: 8743 callbacks suppressed [ 357.334672][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.353090][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 357.365564][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.378161][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 357.390617][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.403227][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 357.415672][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.428282][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 357.440714][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.453380][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 357.612333][T11510] Bluetooth: hci6: command tx timeout [ 360.531899][T11510] Bluetooth: hci0: command tx timeout [ 360.546480][T11522] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 360.658505][T11522] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 360.702162][T11522] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 362.281638][T11522] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 362.327635][T11522] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 362.344818][ C0] net_ratelimit: 9389 callbacks suppressed [ 362.344830][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 362.363298][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.375777][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 362.388440][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.400902][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 362.413564][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.426033][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 362.438682][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.451154][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 362.463793][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.946648][T11521] Bluetooth: hci0: command tx timeout [ 365.142097][T11522] Bluetooth: hci0: command tx timeout [ 365.428512][T11522] Bluetooth: hci2: command tx timeout [ 367.354855][ C0] net_ratelimit: 12666 callbacks suppressed [ 367.354872][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 367.373578][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.385746][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.398023][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.410545][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 367.423176][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.435303][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.447620][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.460120][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 367.472731][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.504107][T11522] Bluetooth: hci2: command tx timeout [ 369.588063][T11522] Bluetooth: hci2: command tx timeout [ 371.666895][T11522] Bluetooth: hci2: command tx timeout [ 372.364913][ C0] net_ratelimit: 13495 callbacks suppressed [ 372.364928][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.383112][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.395568][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.408081][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 372.420647][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.432775][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.445108][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.457617][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 372.470228][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.482348][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.374724][ C0] net_ratelimit: 13408 callbacks suppressed [ 377.374740][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.394605][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 377.407555][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.419735][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.432018][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.444642][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 377.457155][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.469423][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.481630][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.494360][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 378.627505][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.633832][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.384864][ C0] net_ratelimit: 13383 callbacks suppressed [ 382.384881][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 382.403758][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.416192][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.428661][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.441650][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 382.454627][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.467112][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.479629][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.492658][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 382.505229][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.394872][ C0] net_ratelimit: 13455 callbacks suppressed [ 387.394888][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.413190][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.425822][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.438838][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 387.451748][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.464139][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.476608][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.489761][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 387.502696][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.515063][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.404970][ C0] net_ratelimit: 14002 callbacks suppressed [ 392.404987][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.423300][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.435878][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.449070][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 392.462149][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.474695][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.487277][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.500982][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 392.514054][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.526548][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.414921][ C0] net_ratelimit: 12654 callbacks suppressed [ 397.414937][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.433259][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.445785][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.458432][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 397.471098][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.483284][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.495860][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.508505][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 397.521248][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.533416][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.424733][ C0] net_ratelimit: 13401 callbacks suppressed [ 402.424750][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 402.443589][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.456037][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.468567][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.481631][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 402.494654][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.507091][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.519588][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.532484][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 402.545166][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 404.384306][T11510] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 404.750193][T11510] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 404.791999][T11510] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 404.817864][T11521] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 404.833975][T11510] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 404.929217][T11510] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 404.996195][T11510] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 405.020048][T11521] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 406.919253][T11510] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 407.012441][T11521] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 407.434711][ C0] net_ratelimit: 12670 callbacks suppressed [ 407.434727][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 407.453487][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.465928][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.478191][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.490857][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 407.503700][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.516036][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.528277][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.540957][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 407.553469][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 409.121113][T10310] Bluetooth: hci4: Opcode 0x0c39 failed: -110 [ 409.242769][T11521] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 409.302818][T11521] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 411.334580][T11552] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 411.353225][T11522] Bluetooth: hci3: command tx timeout [ 412.444861][ C0] net_ratelimit: 13422 callbacks suppressed [ 412.444877][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 412.463780][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.476052][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.488413][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.501000][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 412.513970][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.526224][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.538581][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.551189][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 412.563920][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 413.422871][T11521] Bluetooth: hci3: command tx timeout [ 413.948094][T11522] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 413.992509][T11522] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 414.077188][T11522] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 414.602860][T11522] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 414.766708][T11522] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 415.509158][T11522] Bluetooth: hci3: command tx timeout [ 417.373683][T11522] Bluetooth: hci7: command tx timeout [ 417.454722][ C0] net_ratelimit: 12419 callbacks suppressed [ 417.454739][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.473055][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.485336][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.498046][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 417.510588][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.522969][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.535207][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.547908][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 417.560419][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.572759][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.465568][T11522] Bluetooth: hci3: command tx timeout [ 419.427585][T11522] Bluetooth: hci7: command tx timeout [ 422.464619][ C0] net_ratelimit: 12943 callbacks suppressed [ 422.464636][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.483045][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.496065][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 422.508681][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.521014][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.533247][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.545963][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 422.558551][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.570935][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.583189][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.808822][T11521] Bluetooth: hci7: command tx timeout [ 422.872064][T11521] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 422.898424][T11521] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 425.138057][T10310] Bluetooth: hci7: command tx timeout [ 425.159150][T11521] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 427.270477][T11522] Bluetooth: hci8: Opcode 0x1005 failed: -110 [ 427.474581][ C0] net_ratelimit: 13399 callbacks suppressed [ 427.474597][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.493672][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 427.506809][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.519432][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.531788][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.544729][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 427.557351][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.569775][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.582151][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.595003][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 427.624282][T11563] Bluetooth: hci8: Opcode 0x0c03 failed: -4 [ 432.484866][ C0] net_ratelimit: 13456 callbacks suppressed [ 432.484882][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.503139][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.515660][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.528777][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 432.541858][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.554348][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.566856][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.579474][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 432.592155][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.604328][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 435.477416][T11522] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 437.476923][T11522] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 437.494667][ C0] net_ratelimit: 12419 callbacks suppressed [ 437.494682][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.512964][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.525535][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 437.538261][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.550471][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.562879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.575438][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 437.588163][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.600347][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.612737][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.782139][T11522] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 439.921605][T11521] Bluetooth: hci4: Opcode 0x1005 failed: -110 [ 440.060345][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.066758][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.263701][T11569] Bluetooth: hci4: Opcode 0x0c03 failed: -4 [ 442.504869][ C0] net_ratelimit: 12385 callbacks suppressed [ 442.504886][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.523198][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.535560][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.548272][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 442.560839][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.573199][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.585463][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.598179][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 442.610800][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.623179][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 443.269226][T11521] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 443.474284][T11521] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 443.517846][T11521] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 446.066738][T11522] Bluetooth: hci8: Opcode 0x0c23 failed: -110 [ 446.140841][T11521] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 446.156092][T11521] Bluetooth: hci8: unexpected event for opcode 0x0c23 [ 446.163044][T11521] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 446.195475][T11521] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 446.221499][T11521] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 446.364040][T11521] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 446.483884][T11521] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 447.514854][ C0] net_ratelimit: 12618 callbacks suppressed [ 447.514871][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.533232][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.545534][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.558288][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 447.570829][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.583238][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.595492][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.608205][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 447.620726][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.633052][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 448.943135][T11521] Bluetooth: hci8: command tx timeout [ 451.023601][T11521] Bluetooth: hci8: command tx timeout [ 452.525081][ C0] net_ratelimit: 12758 callbacks suppressed [ 452.525106][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.543522][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.556089][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.569202][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 452.582366][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.594844][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.607086][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.620191][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 452.632770][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.645169][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 453.110502][T11521] Bluetooth: hci8: command tx timeout [ 455.184129][T11521] Bluetooth: hci8: command tx timeout [ 457.534535][ C0] net_ratelimit: 12642 callbacks suppressed [ 457.534551][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.552833][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.565400][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.578533][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 457.591591][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.604878][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.617430][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.630096][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 457.643140][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.655346][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.544939][ C0] net_ratelimit: 13173 callbacks suppressed [ 462.544958][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 462.563887][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.576377][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.588940][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.602182][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 462.615300][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.627828][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.640200][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.652934][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 462.665492][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.554696][ C0] net_ratelimit: 13379 callbacks suppressed [ 467.554714][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.573061][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.585616][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.598687][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 467.611693][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.624175][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.636699][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.649731][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 467.662737][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.675018][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.564532][ C0] net_ratelimit: 13860 callbacks suppressed [ 472.564554][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.583497][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 472.596468][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.608923][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.621463][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.634500][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 472.647471][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.659920][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.672458][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.685510][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 477.574588][ C0] net_ratelimit: 12842 callbacks suppressed [ 477.574605][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 477.593499][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 477.606540][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 477.619006][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 477.631657][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 477.644789][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 477.657842][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 477.670307][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 477.682606][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 477.695291][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 479.877233][T10421] Bluetooth: hci5: command 0x0406 tx timeout [ 480.191134][T10421] Bluetooth: hci6: command 0x0406 tx timeout [ 480.241596][T11521] Bluetooth: hci0: command 0x0406 tx timeout [ 482.584792][ C0] net_ratelimit: 13155 callbacks suppressed [ 482.584809][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 482.603746][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 482.616254][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 482.628841][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 482.642015][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 482.655325][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 482.667873][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 482.680188][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 482.692949][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 482.705567][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 483.513262][T10315] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 484.161168][T11596] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 484.187543][T10315] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 484.203321][T11595] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 484.232411][T11595] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 484.258742][T11596] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 484.293118][T10315] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 484.352009][T11595] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 484.352088][T10315] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 484.436494][T11595] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 484.550580][T11595] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 484.686919][T11596] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 484.712809][T10315] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 484.821856][T10315] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 484.857000][T10315] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 487.594631][ C0] net_ratelimit: 11572 callbacks suppressed [ 487.594647][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 487.613101][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 487.626109][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 487.639189][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 487.651556][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 487.664216][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 487.676999][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 487.689975][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 487.702354][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 487.714941][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 488.551492][T10421] Bluetooth: hci2: command 0x0406 tx timeout [ 489.589472][T11596] Bluetooth: hci4: command tx timeout [ 489.670549][T10421] Bluetooth: hci10: command tx timeout [ 490.230440][T11596] Bluetooth: hci9: command tx timeout [ 491.748563][T10421] Bluetooth: hci10: command tx timeout [ 492.314347][T11596] Bluetooth: hci4: command tx timeout [ 492.604556][ C0] net_ratelimit: 12737 callbacks suppressed [ 492.604579][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 492.622935][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 492.635229][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 492.648043][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 492.660591][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 492.673021][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 492.685268][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 492.698010][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 492.710548][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 492.722914][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 493.822746][T11596] Bluetooth: hci10: command tx timeout [ 494.001221][T10421] Bluetooth: hci9: command tx timeout [ 495.542432][T10421] Bluetooth: hci4: command tx timeout [ 495.905199][T10421] Bluetooth: hci10: command tx timeout [ 496.062686][T10421] Bluetooth: hci9: command tx timeout [ 497.605454][T10421] Bluetooth: hci4: command tx timeout [ 497.614739][ C0] net_ratelimit: 12658 callbacks suppressed [ 497.614762][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 497.633162][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 497.645491][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 497.658161][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 497.670725][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 497.683100][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 497.695363][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 497.708089][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 497.720622][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 497.733046][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 498.531452][T10421] Bluetooth: hci9: command tx timeout [ 499.042113][T11596] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 499.068969][T11596] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 499.120840][T11596] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 501.501812][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.508307][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.624951][ C0] net_ratelimit: 12461 callbacks suppressed [ 502.624968][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 502.643823][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 502.656374][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 502.668665][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 502.681411][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 502.693965][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 502.706327][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 502.718592][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 502.731407][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 502.743988][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 503.260654][T10421] Bluetooth: hci11: Opcode 0x1005 failed: -110 [ 503.313024][T11604] Bluetooth: hci11: Opcode 0x0c03 failed: -4 [ 504.054903][ T31] INFO: task kworker/1:7:6729 blocked for more than 143 seconds. [ 504.062678][ T31] Tainted: G L syzkaller #0 [ 504.083954][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 504.093203][ T31] task:kworker/1:7 state:D stack:25176 pid:6729 tgid:6729 ppid:2 task_flags:0x4208060 flags:0x00080000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 504.105751][ T31] Workqueue: events switchdev_deferred_process_work [ 504.112745][ T31] Call Trace: [ 504.116532][ T31] [ 504.119684][ T31] ? __schedule+0x10b9/0x5ee0 [ 504.134853][ T31] __schedule+0x1138/0x5ee0 [ 504.139441][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 504.154839][ T31] ? __pfx___schedule+0x10/0x10 [ 504.159772][ T31] ? find_held_lock+0x2b/0x80 [ 504.174576][ T31] ? schedule+0x2d7/0x3a0 [ 504.178980][ T31] schedule+0xe7/0x3a0 [ 504.183088][ T31] schedule_preempt_disabled+0x13/0x30 [ 504.204556][ T31] __mutex_lock+0xc69/0x1ca0 [ 504.209220][ T31] ? switchdev_deferred_process_work+0xe/0x20 [ 504.274564][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 504.279655][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 504.324732][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 504.330440][ T31] ? finish_task_switch.isra.0+0x202/0xbd0 [ 504.364533][ T31] ? switchdev_deferred_process_work+0xe/0x20 [ 504.370669][ T31] switchdev_deferred_process_work+0xe/0x20 [ 504.399728][ T31] process_one_work+0x9ba/0x1b20 [ 504.414563][ T31] ? __pfx_process_one_work+0x10/0x10 [ 504.420365][ T31] ? assign_work+0x1a0/0x250 [ 504.434548][ T31] worker_thread+0x6c8/0xf10 [ 504.439233][ T31] ? __kthread_parkme+0x19e/0x250 [ 504.444303][ T31] ? __pfx_worker_thread+0x10/0x10 [ 504.464496][ T31] kthread+0x3c5/0x780 [ 504.468626][ T31] ? __pfx_kthread+0x10/0x10 [ 504.473248][ T31] ? rcu_is_watching+0x12/0xc0 [ 504.494553][ T31] ? __pfx_kthread+0x10/0x10 [ 504.499204][ T31] ret_from_fork+0x983/0xb10 [ 504.503904][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 504.524800][ T31] ? __switch_to+0x7af/0x10d0 [ 504.529544][ T31] ? __pfx_kthread+0x10/0x10 [ 504.534161][ T31] ret_from_fork_asm+0x1a/0x30 [ 504.554585][ T31] [ 504.557658][ T31] INFO: task syz.3.680:8484 blocked for more than 143 seconds. [ 504.574904][ T31] Tainted: G L syzkaller #0 [ 504.581439][ T31] Blocked by coredump. [ 504.604504][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 504.613215][ T31] task:syz.3.680 state:D stack:26264 pid:8484 tgid:8484 ppid:5834 task_flags:0x40044c flags:0x00080003 [ 504.644551][ T31] Call Trace: [ 504.647882][ T31] [ 504.650831][ T31] ? __schedule+0x10b9/0x5ee0 [ 504.664565][ T31] __schedule+0x1138/0x5ee0 [ 504.669140][ T31] ? __lock_acquire+0x436/0x2890 [ 504.674108][ T31] ? kmem_cache_free+0x171/0x770 [ 504.699829][ T31] ? __pfx___schedule+0x10/0x10 [ 504.714486][ T31] ? find_held_lock+0x2b/0x80 [ 504.719233][ T31] ? schedule+0x2d7/0x3a0 [ 504.723601][ T31] schedule+0xe7/0x3a0 [ 504.734903][ T31] schedule_preempt_disabled+0x13/0x30 [ 504.740436][ T31] __mutex_lock+0xc69/0x1ca0 [ 504.755731][ T31] ? tun_chr_close+0x38/0x230 [ 504.760467][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 504.766873][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 504.771952][ T31] ? __pfx_locks_remove_file+0x10/0x10 [ 504.777930][ T31] ? kmem_cache_free+0x171/0x770 [ 504.782925][ T31] ? __pfx_tun_chr_close+0x10/0x10 [ 504.788551][ T31] ? tun_chr_close+0x38/0x230 [ 504.793260][ T31] tun_chr_close+0x38/0x230 [ 504.798221][ T31] __fput+0x402/0xb70 [ 504.802274][ T31] task_work_run+0x150/0x240 [ 504.807381][ T31] ? __pfx_task_work_run+0x10/0x10 [ 504.812535][ T31] do_exit+0x87f/0x2bd0 [ 504.817171][ T31] ? __pfx_do_exit+0x10/0x10 [ 504.821791][ T31] ? cgroup_update_frozen_flag+0x107/0x210 [ 504.828087][ T31] ? find_held_lock+0x2b/0x80 [ 504.833157][ T31] do_group_exit+0xd3/0x2a0 [ 504.837979][ T31] get_signal+0x2671/0x26d0 [ 504.842544][ T31] ? __pfx_get_signal+0x10/0x10 [ 504.847967][ T31] ? __lock_acquire+0x436/0x2890 [ 504.852958][ T31] arch_do_signal_or_restart+0x8f/0x7a0 [ 504.859095][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 504.865630][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 504.870703][ T31] exit_to_user_mode_loop+0x8c/0x540 [ 504.876528][ T31] ret_from_fork+0x79d/0xb10 [ 504.881158][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 504.887206][ T31] ? __switch_to+0x7af/0x10d0 [ 504.891934][ T31] ret_from_fork_asm+0x1a/0x30 [ 504.897444][ T31] [ 504.900505][ T31] INFO: task syz.2.1149:10299 blocked for more than 144 seconds. [ 504.908774][ T31] Tainted: G L syzkaller #0 [ 504.915651][ T31] Blocked by coredump. [ 504.920265][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 504.929611][ T31] task:syz.2.1149 state:D stack:27504 pid:10299 tgid:10299 ppid:5833 task_flags:0x40044c flags:0x00080003 [ 504.942268][ T31] Call Trace: [ 504.945892][ T31] [ 504.948850][ T31] ? __schedule+0x10b9/0x5ee0 [ 504.953560][ T31] __schedule+0x1138/0x5ee0 [ 504.958799][ T31] ? __lock_acquire+0x436/0x2890 [ 504.963780][ T31] ? kmem_cache_free+0x171/0x770 [ 504.970062][ T31] ? __pfx___schedule+0x10/0x10 [ 504.975301][ T31] ? find_held_lock+0x2b/0x80 [ 504.980025][ T31] ? schedule+0x2d7/0x3a0 [ 504.984402][ T31] schedule+0xe7/0x3a0 [ 504.989211][ T31] schedule_preempt_disabled+0x13/0x30 [ 504.995035][ T31] __mutex_lock+0xc69/0x1ca0 [ 504.999678][ T31] ? tun_chr_close+0x38/0x230 [ 505.004388][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 505.010943][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 505.020824][ T31] ? __pfx_locks_remove_file+0x10/0x10 [ 505.026683][ T31] ? kmem_cache_free+0x171/0x770 [ 505.031677][ T31] ? __pfx_tun_chr_close+0x10/0x10 [ 505.037565][ T31] ? tun_chr_close+0x38/0x230 [ 505.042268][ T31] tun_chr_close+0x38/0x230 [ 505.047289][ T31] __fput+0x402/0xb70 [ 505.051312][ T31] task_work_run+0x150/0x240 [ 505.056400][ T31] ? __pfx_task_work_run+0x10/0x10 [ 505.061554][ T31] do_exit+0x87f/0x2bd0 [ 505.066232][ T31] ? __pfx_do_exit+0x10/0x10 [ 505.070858][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 505.076419][ T31] ? find_held_lock+0x2b/0x80 [ 505.081158][ T31] do_group_exit+0xd3/0x2a0 [ 505.086160][ T31] get_signal+0x2671/0x26d0 [ 505.090731][ T31] ? __pfx_get_signal+0x10/0x10 [ 505.096168][ T31] ? do_futex+0x122/0x350 [ 505.100547][ T31] arch_do_signal_or_restart+0x8f/0x7a0 [ 505.106670][ T31] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 505.113141][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 505.119873][ T31] ? exc_page_fault+0x64/0xc0 [ 505.124910][ T31] ? __pfx___x64_sys_futex+0x10/0x10 [ 505.130264][ T31] exit_to_user_mode_loop+0x8c/0x540 [ 505.136418][ T31] do_syscall_64+0x4ee/0xf80 [ 505.141038][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 505.147335][ T31] RIP: 0033:0x7f32cd78f7c9 [ 505.151781][ T31] RSP: 002b:00007f32ce67e0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 505.160746][ T31] RAX: fffffffffffffe00 RBX: 00007f32cd9e5fa8 RCX: 00007f32cd78f7c9 [ 505.169155][ T31] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f32cd9e5fa8 [ 505.177526][ T31] RBP: 00007f32cd9e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 505.185852][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 505.193849][ T31] R13: 00007f32cd9e6038 R14: 00007ffe8a326850 R15: 00007ffe8a326938 [ 505.202321][ T31] [ 505.205693][ T31] INFO: task kworker/u10:4:10321 blocked for more than 144 seconds. [ 505.213691][ T31] Tainted: G L syzkaller #0 [ 505.220675][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.229723][ T31] task:kworker/u10:4 state:D stack:26568 pid:10321 tgid:10321 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 505.242452][ T31] Workqueue: netns cleanup_net [ 505.247585][ T31] Call Trace: [ 505.250881][ T31] [ 505.253826][ T31] ? __schedule+0x10b9/0x5ee0 [ 505.259084][ T31] __schedule+0x1138/0x5ee0 [ 505.263624][ T31] ? __lock_acquire+0x436/0x2890 [ 505.269095][ T31] ? __pfx___schedule+0x10/0x10 [ 505.273990][ T31] ? find_held_lock+0x2b/0x80 [ 505.283744][ T31] ? schedule+0x2d7/0x3a0 [ 505.288530][ T31] schedule+0xe7/0x3a0 [ 505.292648][ T31] schedule_preempt_disabled+0x13/0x30 [ 505.298611][ T31] __mutex_lock+0xc69/0x1ca0 [ 505.303228][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 505.308919][ T31] ? cfg80211_pernet_exit+0x17/0x120 [ 505.314238][ T31] ? __lock_acquire+0x436/0x2890 [ 505.319637][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 505.325035][ T31] ? __pfx_cfg80211_pernet_exit+0x10/0x10 [ 505.330783][ T31] ? cfg80211_pernet_exit+0x17/0x120 [ 505.336595][ T31] cfg80211_pernet_exit+0x17/0x120 [ 505.342203][ T31] ? __pfx_cfg80211_pernet_exit+0x10/0x10 [ 505.348509][ T31] ops_undo_list+0x2ee/0xab0 [ 505.353248][ T31] ? __pfx_ops_undo_list+0x10/0x10 [ 505.358900][ T31] ? cleanup_net+0x347/0x830 [ 505.363532][ T31] ? idr_destroy+0x62/0x2e0 [ 505.368549][ T31] cleanup_net+0x41b/0x830 [ 505.372998][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 505.378436][ T31] ? rcu_is_watching+0x12/0xc0 [ 505.383254][ T31] process_one_work+0x9ba/0x1b20 [ 505.388724][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 505.393690][ T31] ? __pfx_process_one_work+0x10/0x10 [ 505.399550][ T31] ? assign_work+0x1a0/0x250 [ 505.404173][ T31] worker_thread+0x6c8/0xf10 [ 505.409281][ T31] ? __pfx_worker_thread+0x10/0x10 [ 505.414769][ T31] kthread+0x3c5/0x780 [ 505.418873][ T31] ? __pfx_kthread+0x10/0x10 [ 505.423492][ T31] ? rcu_is_watching+0x12/0xc0 [ 505.429246][ T31] ? __pfx_kthread+0x10/0x10 [ 505.433868][ T31] ret_from_fork+0x983/0xb10 [ 505.438955][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 505.444819][ T31] ? __switch_to+0x7af/0x10d0 [ 505.449541][ T31] ? __pfx_kthread+0x10/0x10 [ 505.454290][ T31] ret_from_fork_asm+0x1a/0x30 [ 505.459650][ T31] [ 505.462778][ T31] INFO: task kworker/u10:9:10509 blocked for more than 144 seconds. [ 505.471252][ T31] Tainted: G L syzkaller #0 [ 505.478137][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.487186][ T31] task:kworker/u10:9 state:D stack:23832 pid:10509 tgid:10509 ppid:2 task_flags:0x4208160 flags:0x00080000 [ 505.499601][ T31] Workqueue: ipv6_addrconf addrconf_verify_work [ 505.506264][ T31] Call Trace: [ 505.509564][ T31] [ 505.512519][ T31] ? __schedule+0x10b9/0x5ee0 [ 505.517663][ T31] __schedule+0x1138/0x5ee0 [ 505.522204][ T31] ? __lock_acquire+0x436/0x2890 [ 505.527680][ T31] ? __pfx___schedule+0x10/0x10 [ 505.532562][ T31] ? find_held_lock+0x2b/0x80 [ 505.542214][ T31] ? schedule+0x2d7/0x3a0 [ 505.552539][ T31] schedule+0xe7/0x3a0 [ 505.557011][ T31] schedule_preempt_disabled+0x13/0x30 [ 505.562513][ T31] __mutex_lock+0xc69/0x1ca0 [ 505.567608][ T31] ? addrconf_verify_work+0x12/0x30 [ 505.572848][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 505.578381][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 505.584233][ T31] ? debug_object_deactivate+0x1ec/0x3a0 [ 505.590428][ T31] ? addrconf_verify_work+0x12/0x30 [ 505.595948][ T31] ? rtnl_lock+0x9/0x20 [ 505.600127][ T31] addrconf_verify_work+0x12/0x30 [ 505.605623][ T31] process_one_work+0x9ba/0x1b20 [ 505.610599][ T31] ? __pfx_kfree_rcu_monitor+0x10/0x10 [ 505.616546][ T31] ? __pfx_process_one_work+0x10/0x10 [ 505.621963][ T31] ? assign_work+0x1a0/0x250 [ 505.627072][ T31] worker_thread+0x6c8/0xf10 [ 505.631703][ T31] ? __kthread_parkme+0x19e/0x250 [ 505.637217][ T31] ? __pfx_worker_thread+0x10/0x10 [ 505.642374][ T31] kthread+0x3c5/0x780 [ 505.646894][ T31] ? __pfx_kthread+0x10/0x10 [ 505.651875][ T31] ? rcu_is_watching+0x12/0xc0 [ 505.657105][ T31] ? __pfx_kthread+0x10/0x10 [ 505.661720][ T31] ret_from_fork+0x983/0xb10 [ 505.666791][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 505.671938][ T31] ? __switch_to+0x7af/0x10d0 [ 505.677127][ T31] ? __pfx_kthread+0x10/0x10 [ 505.681749][ T31] ret_from_fork_asm+0x1a/0x30 [ 505.687089][ T31] [ 505.690146][ T31] INFO: task syz.1.1415:11218 blocked for more than 144 seconds. [ 505.698340][ T31] Tainted: G L syzkaller #0 [ 505.705211][ T31] Blocked by coredump. [ 505.709813][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.718937][ T31] task:syz.1.1415 state:D stack:27432 pid:11218 tgid:11218 ppid:5832 task_flags:0x40044c flags:0x00080003 [ 505.731457][ T31] Call Trace: [ 505.740413][ T31] [ 505.743393][ T31] ? __schedule+0x10b9/0x5ee0 [ 505.748674][ T31] __schedule+0x1138/0x5ee0 [ 505.753573][ T31] ? __lock_acquire+0x436/0x2890 [ 505.765804][ T31] ? kmem_cache_free+0x171/0x770 [ 505.770821][ T31] ? __pfx___schedule+0x10/0x10 [ 505.776188][ T31] ? find_held_lock+0x2b/0x80 [ 505.780903][ T31] ? schedule+0x2d7/0x3a0 [ 505.785744][ T31] schedule+0xe7/0x3a0 [ 505.789851][ T31] schedule_preempt_disabled+0x13/0x30 [ 505.800089][ T31] __mutex_lock+0xc69/0x1ca0 [ 505.805632][ T31] ? tun_chr_close+0x38/0x230 [ 505.810347][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 505.815805][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 505.820870][ T31] ? _raw_spin_unlock+0x28/0x50 [ 505.826237][ T31] ? fasync_remove_entry+0x174/0x1e0 [ 505.831560][ T31] ? __pfx_tun_chr_close+0x10/0x10 [ 505.837142][ T31] ? __pfx_tun_chr_fasync+0x10/0x10 [ 505.842361][ T31] ? tun_chr_close+0x38/0x230 [ 505.847525][ T31] tun_chr_close+0x38/0x230 [ 505.852055][ T31] __fput+0x402/0xb70 [ 505.856862][ T31] task_work_run+0x150/0x240 [ 505.861486][ T31] ? __pfx_task_work_run+0x10/0x10 [ 505.867079][ T31] ? do_raw_spin_unlock+0x172/0x230 [ 505.872322][ T31] do_exit+0x87f/0x2bd0 [ 505.876959][ T31] ? __pfx_do_exit+0x10/0x10 [ 505.881570][ T31] ? cgroup_update_frozen_flag+0x107/0x210 [ 505.887865][ T31] ? find_held_lock+0x2b/0x80 [ 505.892579][ T31] do_group_exit+0xd3/0x2a0 [ 505.897606][ T31] get_signal+0x2671/0x26d0 [ 505.902158][ T31] ? __pfx_get_signal+0x10/0x10 [ 505.907509][ T31] ? __lock_acquire+0x436/0x2890 [ 505.912477][ T31] arch_do_signal_or_restart+0x8f/0x7a0 [ 505.918502][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 505.925048][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 505.930119][ T31] exit_to_user_mode_loop+0x8c/0x540 [ 505.935862][ T31] ret_from_fork+0x79d/0xb10 [ 505.940478][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 505.946058][ T31] ? __switch_to+0x7af/0x10d0 [ 505.950773][ T31] ret_from_fork_asm+0x1a/0x30 [ 505.956352][ T31] [ 505.959395][ T31] INFO: task syz.0.1465:11464 blocked for more than 145 seconds. [ 505.967614][ T31] Tainted: G L syzkaller #0 [ 505.974135][ T31] Blocked by coredump. [ 505.979496][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 505.988581][ T31] task:syz.0.1465 state:D stack:26600 pid:11464 tgid:11464 ppid:5831 task_flags:0x40044c flags:0x00080003 [ 506.000830][ T31] Call Trace: [ 506.004126][ T31] [ 506.007514][ T31] ? __schedule+0x10b9/0x5ee0 [ 506.012229][ T31] __schedule+0x1138/0x5ee0 [ 506.017193][ T31] ? __lock_acquire+0x436/0x2890 [ 506.022159][ T31] ? kmem_cache_free+0x171/0x770 [ 506.031344][ T31] ? __pfx___schedule+0x10/0x10 [ 506.036726][ T31] ? find_held_lock+0x2b/0x80 [ 506.041446][ T31] ? schedule+0x2d7/0x3a0 [ 506.046354][ T31] schedule+0xe7/0x3a0 [ 506.050475][ T31] schedule_preempt_disabled+0x13/0x30 [ 506.056490][ T31] __mutex_lock+0xc69/0x1ca0 [ 506.061509][ T31] ? tun_chr_close+0x38/0x230 [ 506.066783][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 506.072742][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 506.078422][ T31] ? __pfx_locks_remove_file+0x10/0x10 [ 506.084042][ T31] ? kmem_cache_free+0x171/0x770 [ 506.089549][ T31] ? __pfx_tun_chr_close+0x10/0x10 [ 506.095032][ T31] ? tun_chr_close+0x38/0x230 [ 506.099757][ T31] tun_chr_close+0x38/0x230 [ 506.104285][ T31] __fput+0x402/0xb70 [ 506.108920][ T31] task_work_run+0x150/0x240 [ 506.113546][ T31] ? __pfx_task_work_run+0x10/0x10 [ 506.119175][ T31] do_exit+0x87f/0x2bd0 [ 506.123389][ T31] ? __pfx_do_exit+0x10/0x10 [ 506.128511][ T31] ? do_raw_spin_lock+0x12c/0x2b0 [ 506.133569][ T31] ? find_held_lock+0x2b/0x80 [ 506.138723][ T31] do_group_exit+0xd3/0x2a0 [ 506.143263][ T31] get_signal+0x2671/0x26d0 [ 506.148274][ T31] ? __call_rcu_common.constprop.0+0x3f0/0xa10 [ 506.154755][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 506.160379][ T31] ? __pfx_get_signal+0x10/0x10 [ 506.165600][ T31] arch_do_signal_or_restart+0x8f/0x7a0 [ 506.171370][ T31] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 506.178049][ T31] ? __do_sys_close_range+0x278/0x730 [ 506.183473][ T31] exit_to_user_mode_loop+0x8c/0x540 [ 506.189241][ T31] do_syscall_64+0x4ee/0xf80 [ 506.193870][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.200253][ T31] RIP: 0033:0x7fd1e4b8f7c9 [ 506.205005][ T31] RSP: 002b:00007ffcb9cdcbe8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 506.213445][ T31] RAX: 0000000000000000 RBX: 00007fd1e4de7da0 RCX: 00007fd1e4b8f7c9 [ 506.221893][ T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 506.230261][ T31] RBP: 00007fd1e4de7da0 R08: 000000000003514c R09: 0000001db9cdcedf [ 506.238568][ T31] R10: 00000000003cac8c R11: 0000000000000246 R12: 0000000000050287 [ 506.246922][ T31] R13: 00007fd1e4de6090 R14: ffffffffffffffff R15: 00007ffcb9cdcd00 [ 506.255241][ T31] [ 506.258287][ T31] INFO: task syz-executor:11509 blocked for more than 145 seconds. [ 506.267200][ T31] Tainted: G L syzkaller #0 [ 506.273721][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 506.287694][ T31] task:syz-executor state:D stack:28376 pid:11509 tgid:11509 ppid:1 task_flags:0x400140 flags:0x00080002 [ 506.300232][ T31] Call Trace: [ 506.303529][ T31] [ 506.306936][ T31] ? __schedule+0x10b9/0x5ee0 [ 506.311655][ T31] __schedule+0x1138/0x5ee0 [ 506.316884][ T31] ? __lock_acquire+0x436/0x2890 [ 506.321871][ T31] ? __pfx___schedule+0x10/0x10 [ 506.327225][ T31] ? find_held_lock+0x2b/0x80 [ 506.331975][ T31] ? schedule+0x2d7/0x3a0 [ 506.336786][ T31] schedule+0xe7/0x3a0 [ 506.340983][ T31] schedule_preempt_disabled+0x13/0x30 [ 506.346961][ T31] __mutex_lock+0xc69/0x1ca0 [ 506.351595][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 506.357184][ T31] ? __nla_validate_parse+0x600/0x2880 [ 506.362682][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 506.368564][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 506.374330][ T31] ? __kernel_text_address+0xd/0x40 [ 506.380049][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 506.385525][ T31] ? rtnl_lock+0x9/0x20 [ 506.389715][ T31] inet_rtm_newaddr+0x30c/0x1540 [ 506.395106][ T31] ? __lock_acquire+0x436/0x2890 [ 506.400072][ T31] ? stack_trace_save+0x8e/0xc0 [ 506.405408][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 506.410821][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 506.416746][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 506.422231][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 506.428104][ T31] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 506.433263][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 506.439119][ T31] rtnetlink_rcv_msg+0x95e/0xe90 [ 506.444119][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 506.450109][ T31] ? __lock_acquire+0x436/0x2890 [ 506.455713][ T31] netlink_rcv_skb+0x158/0x420 [ 506.460524][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 506.466504][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 506.472199][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 506.478028][ T31] netlink_unicast+0x5aa/0x870 [ 506.482840][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 506.488663][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 506.493484][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 506.503690][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 506.510280][ T31] __sys_sendto+0x4a3/0x520 [ 506.515081][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 506.520159][ T31] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 506.527058][ T31] ? count_memcg_events+0x122/0x290 [ 506.532322][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 506.537561][ T31] ? do_syscall_64+0x91/0xf80 [ 506.542267][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 506.547953][ T31] do_syscall_64+0xcd/0xf80 [ 506.552488][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.558852][ T31] RIP: 0033:0x7f024f59165c [ 506.563287][ T31] RSP: 002b:00007ffe62b71a30 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 506.572558][ T31] RAX: ffffffffffffffda RBX: 00007f0250314620 RCX: 00007f024f59165c [ 506.580880][ T31] RDX: 0000000000000028 RSI: 00007f0250314670 RDI: 0000000000000003 [ 506.589253][ T31] RBP: 0000000000000000 R08: 00007ffe62b71a84 R09: 000000000000000c [ 506.597542][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 506.605881][ T31] R13: 0000000000000000 R14: 00007f0250314670 R15: 0000000000000000 [ 506.613906][ T31] [ 506.617410][ T31] INFO: task syz.1.1480:11513 blocked for more than 145 seconds. [ 506.625499][ T31] Tainted: G L syzkaller #0 [ 506.632012][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 506.641187][ T31] task:syz.1.1480 state:D stack:25816 pid:11513 tgid:11512 ppid:5832 task_flags:0x400140 flags:0x00080002 [ 506.653976][ T31] Call Trace: [ 506.657653][ T31] [ 506.660623][ T31] ? __schedule+0x10b9/0x5ee0 [ 506.665848][ T31] __schedule+0x1138/0x5ee0 [ 506.670435][ T31] ? __pfx___schedule+0x10/0x10 [ 506.676181][ T31] ? find_held_lock+0x2b/0x80 [ 506.680899][ T31] ? schedule+0x2d7/0x3a0 [ 506.685828][ T31] schedule+0xe7/0x3a0 [ 506.689942][ T31] schedule_preempt_disabled+0x13/0x30 [ 506.695905][ T31] __mutex_lock+0xc69/0x1ca0 [ 506.700537][ T31] ? reg_process_self_managed_hints+0x9e/0x1b0 [ 506.707249][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 506.712312][ T31] ? __mutex_unlock_slowpath+0x161/0x790 [ 506.718450][ T31] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 506.724829][ T31] ? reg_process_self_managed_hints+0x9e/0x1b0 [ 506.731024][ T31] reg_process_self_managed_hints+0x9e/0x1b0 [ 506.741753][ T31] wiphy_register+0x2183/0x2cc0 [ 506.747196][ T31] ? __rtnl_unlock+0x68/0xf0 [ 506.751820][ T31] ? __netdev_update_features+0x1c80/0x1fe0 [ 506.758187][ T31] ? __pfx_wiphy_register+0x10/0x10 [ 506.763416][ T31] ? __asan_memset+0x23/0x50 [ 506.768522][ T31] ? ieee80211_init_rate_ctrl_alg+0x125/0x680 [ 506.780600][ T31] ieee80211_register_hw+0x2bb2/0x4160 [ 506.786448][ T31] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 506.792301][ T31] ? __pfx___debug_object_init+0x10/0x10 [ 506.804896][ T31] ? find_held_lock+0x2b/0x80 [ 506.809631][ T31] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 506.815957][ T31] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 506.824821][ T31] ? __hrtimer_setup+0x176/0x280 [ 506.829848][ T31] mac80211_hwsim_new_radio+0x3323/0x5150 [ 506.836063][ T31] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 506.842182][ T31] hwsim_new_radio_nl+0xba2/0x1330 [ 506.847864][ T31] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 506.853545][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 506.861504][ T31] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 506.869314][ T31] genl_family_rcv_msg_doit+0x209/0x2f0 [ 506.875248][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 506.881718][ T31] ? genl_get_cmd+0x194/0x580 [ 506.886946][ T31] ? bpf_lsm_capable+0x9/0x10 [ 506.891666][ T31] ? security_capable+0x7e/0x260 [ 506.897076][ T31] ? ns_capable+0xd7/0x110 [ 506.901532][ T31] genl_rcv_msg+0x55c/0x800 [ 506.906525][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 506.911578][ T31] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 506.917635][ T31] netlink_rcv_skb+0x158/0x420 [ 506.922438][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 506.927942][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 506.933281][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 506.939088][ T31] genl_rcv+0x28/0x40 [ 506.943188][ T31] netlink_unicast+0x5aa/0x870 [ 506.948491][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 506.953830][ T31] ? __pfx___might_resched+0x10/0x10 [ 506.959574][ T31] ? __lock_acquire+0x436/0x2890 [ 506.964859][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 506.969666][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 506.975420][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 506.981890][ T31] ____sys_sendmsg+0xa5d/0xc30 [ 506.987196][ T31] ? copy_msghdr_from_user+0x10a/0x160 [ 506.992699][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 506.998474][ T31] ? __pfx_futex_wake_mark+0x10/0x10 [ 507.003894][ T31] ___sys_sendmsg+0x134/0x1d0 [ 507.013452][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 507.019172][ T31] ? futex_private_hash_put+0x160/0x1b0 [ 507.025112][ T31] __sys_sendmsg+0x16d/0x220 [ 507.029743][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 507.035387][ T31] ? __x64_sys_futex+0x1e0/0x4c0 [ 507.040391][ T31] do_syscall_64+0xcd/0xf80 [ 507.045504][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.051436][ T31] RIP: 0033:0x7fd2fb98f7c9 [ 507.056322][ T31] RSP: 002b:00007fd2fc8ec038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 507.065125][ T31] RAX: ffffffffffffffda RBX: 00007fd2fbbe5fa0 RCX: 00007fd2fb98f7c9 [ 507.073130][ T31] RDX: 00000000000000c0 RSI: 0000200000001e00 RDI: 0000000000000005 [ 507.081941][ T31] RBP: 00007fd2fba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 507.090304][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 507.098617][ T31] R13: 00007fd2fbbe6038 R14: 00007fd2fbbe5fa0 R15: 00007fffb7279f08 [ 507.107416][ T31] [ 507.110461][ T31] INFO: task syz-executor:11514 blocked for more than 146 seconds. [ 507.118799][ T31] Tainted: G L syzkaller #0 [ 507.125651][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 507.134330][ T31] task:syz-executor state:D stack:27512 pid:11514 tgid:11514 ppid:1 task_flags:0x400140 flags:0x00080002 [ 507.151570][ T31] Call Trace: [ 507.155162][ T31] [ 507.158118][ T31] ? __schedule+0x10b9/0x5ee0 [ 507.162825][ T31] __schedule+0x1138/0x5ee0 [ 507.167962][ T31] ? __lock_acquire+0x436/0x2890 [ 507.172947][ T31] ? __pfx___schedule+0x10/0x10 [ 507.178299][ T31] ? find_held_lock+0x2b/0x80 [ 507.183011][ T31] ? schedule+0x2d7/0x3a0 [ 507.188180][ T31] schedule+0xe7/0x3a0 [ 507.192288][ T31] schedule_preempt_disabled+0x13/0x30 [ 507.198200][ T31] __mutex_lock+0xc69/0x1ca0 [ 507.202821][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 507.208402][ T31] ? __nla_validate_parse+0x600/0x2880 [ 507.213904][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 507.219354][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 507.225457][ T31] ? __kernel_text_address+0xd/0x40 [ 507.230794][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 507.236373][ T31] ? rtnl_lock+0x9/0x20 [ 507.240549][ T31] inet_rtm_newaddr+0x30c/0x1540 [ 507.245959][ T31] ? __lock_acquire+0x436/0x2890 [ 507.250920][ T31] ? stack_trace_save+0x8e/0xc0 [ 507.256068][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 507.261473][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.267371][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.272766][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.283404][ T31] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 507.289230][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.294909][ T31] rtnetlink_rcv_msg+0x95e/0xe90 [ 507.299881][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 507.305843][ T31] ? __lock_acquire+0x436/0x2890 [ 507.310813][ T31] netlink_rcv_skb+0x158/0x420 [ 507.316044][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 507.321537][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 507.327377][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 507.332709][ T31] netlink_unicast+0x5aa/0x870 [ 507.337954][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 507.343287][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 507.348559][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 507.353886][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 507.360412][ T31] __sys_sendto+0x4a3/0x520 [ 507.365250][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 507.370321][ T31] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 507.377209][ T31] ? count_memcg_events+0x122/0x290 [ 507.382469][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 507.387727][ T31] ? do_syscall_64+0x91/0xf80 [ 507.392805][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 507.398487][ T31] do_syscall_64+0xcd/0xf80 [ 507.403019][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.409452][ T31] RIP: 0033:0x7fab8699165c [ 507.413894][ T31] RSP: 002b:00007fff09fc4e90 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 507.422801][ T31] RAX: ffffffffffffffda RBX: 00007fab87714620 RCX: 00007fab8699165c [ 507.431153][ T31] RDX: 0000000000000028 RSI: 00007fab87714670 RDI: 0000000000000003 [ 507.439459][ T31] RBP: 0000000000000000 R08: 00007fff09fc4ee4 R09: 000000000000000c [ 507.447832][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 507.456162][ T31] R13: 0000000000000000 R14: 00007fab87714670 R15: 0000000000000000 [ 507.464197][ T31] [ 507.467719][ T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 507.477135][ T31] INFO: task syz-executor:11531 blocked for more than 146 seconds. [ 507.485491][ T31] Tainted: G L syzkaller #0 [ 507.492337][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 507.501459][ T31] task:syz-executor state:D stack:27656 pid:11531 tgid:11531 ppid:1 task_flags:0x400140 flags:0x00080002 [ 507.513832][ T31] Call Trace: [ 507.517469][ T31] [ 507.520427][ T31] ? __schedule+0x10b9/0x5ee0 [ 507.525689][ T31] __schedule+0x1138/0x5ee0 [ 507.530233][ T31] ? __lock_acquire+0x436/0x2890 [ 507.535673][ T31] ? __pfx___schedule+0x10/0x10 [ 507.540570][ T31] ? find_held_lock+0x2b/0x80 [ 507.550351][ T31] ? schedule+0x2d7/0x3a0 [ 507.555178][ T31] schedule+0xe7/0x3a0 [ 507.559287][ T31] schedule_preempt_disabled+0x13/0x30 [ 507.565254][ T31] __mutex_lock+0xc69/0x1ca0 [ 507.569875][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 507.575446][ T31] ? __nla_validate_parse+0x600/0x2880 [ 507.580957][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 507.586454][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 507.592214][ T31] ? __kernel_text_address+0xd/0x40 [ 507.598209][ T31] ? inet_rtm_newaddr+0x30c/0x1540 [ 507.603343][ T31] ? rtnl_lock+0x9/0x20 [ 507.607999][ T31] inet_rtm_newaddr+0x30c/0x1540 [ 507.612968][ T31] ? __lock_acquire+0x436/0x2890 [ 507.618405][ T31] ? stack_trace_save+0x8e/0xc0 [ 507.623294][ T31] ? __pfx_stack_trace_save+0x10/0x10 [ 507.629178][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.634561][ C0] net_ratelimit: 8656 callbacks suppressed [ 507.634585][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.635146][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.640984][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.652750][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.658768][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 507.670240][ T31] ? rtnetlink_rcv_msg+0x93a/0xe90 [ 507.676235][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 507.687634][ T31] ? __pfx_inet_rtm_newaddr+0x10/0x10 [ 507.692891][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.704986][ T31] rtnetlink_rcv_msg+0x95e/0xe90 [ 507.710256][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.722050][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 507.727559][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:42:1f:9a:37:b3:58, vlan:0) [ 507.738895][ T31] ? __lock_acquire+0x436/0x2890 [ 507.745062][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 507.756372][ T31] netlink_rcv_skb+0x158/0x420 [ 507.761379][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.773190][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 507.778238][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 507.789979][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 507.813048][ T31] ? netlink_deliver_tap+0x1ae/0xd30 [ 507.824184][ T31] netlink_unicast+0x5aa/0x870 [ 507.829371][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 507.834992][ T31] netlink_sendmsg+0x8c8/0xdd0 [ 507.839807][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 507.845582][ T31] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 507.851797][ T31] __sys_sendto+0x4a3/0x520 [ 507.856799][ T31] ? __pfx___sys_sendto+0x10/0x10 [ 507.861867][ T31] ? count_memcg_events_mm.constprop.0+0xfa/0x2a0 [ 507.868750][ T31] ? count_memcg_events+0x122/0x290 [ 507.874008][ T31] __x64_sys_sendto+0xe0/0x1c0 [ 507.879270][ T31] ? do_syscall_64+0x91/0xf80 [ 507.883965][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 507.889643][ T31] do_syscall_64+0xcd/0xf80 [ 507.894173][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 507.901240][ T31] RIP: 0033:0x7f97a279165c [ 507.905974][ T31] RSP: 002b:00007fff7dcae4e0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 507.914709][ T31] RAX: ffffffffffffffda RBX: 00007f97a3514620 RCX: 00007f97a279165c [ 507.922716][ T31] RDX: 0000000000000028 RSI: 00007f97a3514670 RDI: 0000000000000003 [ 507.931205][ T31] RBP: 0000000000000000 R08: 00007fff7dcae534 R09: 000000000000000c [ 507.939507][ T31] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003 [ 507.947827][ T31] R13: 0000000000000000 R14: 00007f97a3514670 R15: 0000000000000000 [ 507.961069][ T31] [ 507.964116][ T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings [ 507.973670][ T31] [ 507.973670][ T31] Showing all locks held in the system: [ 507.981855][ T31] 1 lock held by init/1: [ 507.986434][ T31] #0: ffff88814d848420 (sb_writers#4){.+.+}-{0:0}, at: pick_link+0xdc2/0x13b0 [ 507.995763][ T31] 3 locks held by kworker/0:1/10: [ 508.000804][ T31] 1 lock held by khungtaskd/31: [ 508.006472][ T31] #0: ffffffff8e3c94a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x36/0x1c0 [ 508.016685][ T31] 2 locks held by getty/5589: [ 508.021373][ T31] #0: ffff88814d43d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 508.031656][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x41b/0x1510 [ 508.042147][ T31] 3 locks held by kworker/1:3/5839: [ 508.047679][ T31] #0: ffff88814a032d48 ((wq_completion)wg-kex-wg0#7){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.059006][ T31] #1: ffffc9000410fc90 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __asm__ ("" : "=r"(__ptr) : "0"((__typeof__(*((worker))) *)(( unsigned long)((worker))))); (typeof((__typeof__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.099061][ T31] #2: ffff88805dfadc60 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_begin_session+0x30/0xe80 [ 508.110935][ T31] 3 locks held by kworker/1:4/5890: [ 508.116468][ T31] #0: ffff88813ff56948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.128714][ T31] #1: ffffc9000449fc90 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.139577][ T31] #2: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x91/0x1190 [ 508.149617][ T31] 4 locks held by kworker/0:8/5925: [ 508.155146][ T31] #0: ffff8880b843add8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x7e/0x130 [ 508.165425][ T31] #1: ffff8880b8424608 (psi_seq){-.-.}-{0:0}, at: __schedule+0x198b/0x5ee0 [ 508.174182][ T31] #2: ffff88801daa4768 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0xb7/0x1860 [ 508.183965][ T31] #3: ffffffff8e3c94a0 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xbd/0x20b0 [ 508.194025][ T31] 3 locks held by kworker/1:7/6729: [ 508.199624][ T31] #0: ffff88813ff55948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.213546][ T31] #1: ffffc900049efc90 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.224351][ T31] #2: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20 [ 508.235185][ T31] 1 lock held by syz.3.680/8484: [ 508.240134][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230 [ 508.249586][ T31] 1 lock held by syz.2.1149/10299: [ 508.255036][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230 [ 508.264053][ T31] 2 locks held by kworker/u10:0/10309: [ 508.270006][ T31] 4 locks held by kworker/u10:2/10316: [ 508.275787][ T31] 6 locks held by kworker/u10:3/10317: [ 508.281259][ T31] #0: ffff888140eda148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.292447][ T31] #1: ffffc9000d8d7c90 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.304790][ T31] #2: ffff88814d8480e0 (&type->s_umount_key#32){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 [ 508.316067][ T31] #3: ffff88814d84ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x27a/0x600 [ 508.326750][ T31] #4: ffff88814d84c950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x5e7/0x1410 [ 508.336787][ T31] #5: ffff8880781975f0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x475/0x1350 [ 508.346925][ T31] 4 locks held by kworker/u10:4/10321: [ 508.352397][ T31] #0: ffff88801badf148 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.363242][ T31] #1: ffffc9000472fc90 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.373546][ T31] #2: ffffffff9012f010 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xad/0x830 [ 508.383217][ T31] #3: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: cfg80211_pernet_exit+0x17/0x120 [ 508.393196][ T31] 3 locks held by kworker/u10:5/10324: [ 508.398958][ T31] 7 locks held by kworker/u10:6/10332: [ 508.404786][ T31] 3 locks held by kworker/u10:7/10382: [ 508.410256][ T31] 3 locks held by kworker/u10:9/10509: [ 508.416495][ T31] #0: ffff888031515948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.427922][ T31] #1: ffffc90003377c90 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.441384][ T31] #2: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30 [ 508.451277][ T31] 3 locks held by kworker/1:9/10510: [ 508.456852][ T31] #0: ffff88814d16a948 ((wq_completion)wg-kex-wg2#2){+.+.}-{0:0}, at: process_one_work+0x128d/0x1b20 [ 508.468227][ T31] #1: ffffc900025ffc90 ((work_completion)(&({ do { const void *__vpp_verify = (typeof((worker) + 0))((void *)0); (void)__vpp_verify; } while (0); ({ unsigned long __ptr; __asm__ ("" : "=r"(__ptr) : "0"((__typeof__(*((worker))) *)(( unsigned long)((worker))))); (typeof((__typeof__(*((worker))) *)(( unsigned long)((worker))))) (__ptr + (((__per_cpu_offset[(cpu)])))); }); })->work)){+.+.}-{0:0}, at: process_one_work+0x914/0x1b20 [ 508.511350][ T31] #2: ffff88805dfad278 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_begin_session+0x30/0xe80 [ 508.523297][ T31] 4 locks held by kworker/u10:10/10530: [ 508.529258][ T31] 1 lock held by syz.1.1415/11218: [ 508.534381][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230 [ 508.544022][ T31] 1 lock held by syz.0.1465/11464: [ 508.549706][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: tun_chr_close+0x38/0x230 [ 508.559059][ T31] 3 locks held by kworker/u10:11/11467: [ 508.564969][ T31] 5 locks held by kworker/u10:13/11495: [ 508.570532][ T31] 1 lock held by syz-executor/11509: [ 508.576297][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.586246][ T31] 4 locks held by syz.1.1480/11513: [ 508.591461][ T31] #0: ffffffff901ec210 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 508.600207][ T31] #1: ffffffff901ec2c8 (genl_mutex){+.+.}-{4:4}, at: genl_rcv_msg+0x577/0x800 [ 508.609662][ T31] #2: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: wiphy_register+0x1e83/0x2cc0 [ 508.619687][ T31] #3: ffff888020bf0788 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_process_self_managed_hints+0x9e/0x1b0 [ 508.631083][ T31] 1 lock held by syz-executor/11514: [ 508.636691][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.646472][ T31] 3 locks held by kworker/0:10/11526: [ 508.651870][ T31] 3 locks held by kworker/0:11/11528: [ 508.657653][ T31] 1 lock held by syz-executor/11531: [ 508.662953][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.672899][ T31] 1 lock held by syz-executor/11535: [ 508.678514][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.688357][ T31] 2 locks held by kworker/0:15/11545: [ 508.693748][ T31] 3 locks held by kworker/u10:16/11546: [ 508.699774][ T31] 1 lock held by syz-executor/11549: [ 508.705502][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.715344][ T31] 3 locks held by kworker/0:16/11555: [ 508.721094][ T31] 1 lock held by syz-executor/11557: [ 508.726845][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.739489][ T31] 2 locks held by kworker/u10:17/11560: [ 508.745358][ T31] 3 locks held by kworker/u10:18/11561: [ 508.750942][ T31] 1 lock held by syz-executor/11577: [ 508.756657][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.766469][ T31] 2 locks held by kworker/0:17/11584: [ 508.771860][ T31] 1 lock held by syz-executor/11587: [ 508.777446][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.787315][ T31] 1 lock held by syz-executor/11588: [ 508.792611][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.802487][ T31] 1 lock held by syz-executor/11589: [ 508.808151][ T31] #0: ffffffff90145ae8 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x1540 [ 508.817909][ T31] 2 locks held by kworker/0:22/11602: [ 508.823639][ T31] 2 locks held by dhcpcd/11607: [ 508.829042][ T31] #0: ffff8880222b0260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60 [ 508.839051][ T31] #1: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x284/0x3c0 [ 508.849451][ T31] 2 locks held by dhcpcd/11608: [ 508.854317][ T31] #0: ffff8880222b4260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60 [ 508.869948][ T31] #1: ffffffff8e3d4bf8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x1a3/0x3c0 [ 508.880357][ T31] 1 lock held by dhcpcd/11609: [ 508.885467][ T31] #0: ffff88807bf90260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60 [ 508.895544][ T31] 1 lock held by dhcpcd/11610: [ 508.900325][ T31] #0: ffff88807bf94260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60 [ 508.910550][ T31] 1 lock held by dhcpcd/11611: [ 508.915620][ T31] #0: ffff8880572ca260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf60 [ 508.926079][ T31] [ 508.928418][ T31] ============================================= [ 508.928418][ T31] [ 508.941555][ T31] NMI backtrace for cpu 1 [ 508.941579][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 508.941611][ T31] Tainted: [L]=SOFTLOCKUP [ 508.941619][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 508.941633][ T31] Call Trace: [ 508.941641][ T31] [ 508.941650][ T31] dump_stack_lvl+0x116/0x1f0 [ 508.941703][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 508.941732][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 508.941758][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 508.941791][ T31] sys_info+0x133/0x180 [ 508.941815][ T31] watchdog+0xe66/0x1180 [ 508.941855][ T31] ? rcu_is_watching+0x12/0xc0 [ 508.941887][ T31] ? __pfx_watchdog+0x10/0x10 [ 508.941916][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 508.941939][ T31] ? __kthread_parkme+0x19e/0x250 [ 508.941973][ T31] ? __pfx_watchdog+0x10/0x10 [ 508.942004][ T31] kthread+0x3c5/0x780 [ 508.942027][ T31] ? __pfx_kthread+0x10/0x10 [ 508.942051][ T31] ? rcu_is_watching+0x12/0xc0 [ 508.942081][ T31] ? __pfx_kthread+0x10/0x10 [ 508.942105][ T31] ret_from_fork+0x983/0xb10 [ 508.942129][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 508.942155][ T31] ? __switch_to+0x7af/0x10d0 [ 508.942183][ T31] ? __pfx_kthread+0x10/0x10 [ 508.942207][ T31] ret_from_fork_asm+0x1a/0x30 [ 508.942257][ T31] [ 508.942266][ T31] Sending NMI from CPU 1 to CPUs 0: [ 509.082735][ C0] NMI backtrace for cpu 0 [ 509.082761][ C0] CPU: 0 UID: 0 PID: 11497 Comm: kworker/u10:14 Tainted: G L syzkaller #0 PREEMPT(full) [ 509.082797][ C0] Tainted: [L]=SOFTLOCKUP [ 509.082806][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 509.082823][ C0] Workqueue: events_unbound nsim_dev_trap_report_work [ 509.082855][ C0] RIP: 0010:rcu_is_watching+0xd/0xc0 [ 509.082891][ C0] Code: 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 53 65 ff 05 a3 e0 0f 12 ae 7f d3 09 48 c7 c3 e8 b9 b3 93 89 c5 83 f8 07 0f 87 82 00 00 [ 509.082925][ C0] RSP: 0018:ffffc900000071b8 EFLAGS: 00000287 [ 509.082944][ C0] RAX: 0000000000000000 RBX: ffffffff8e3c94a0 RCX: 0000000000000002 [ 509.082960][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8e3c94a0 [ 509.082976][ C0] RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000 [ 509.082990][ C0] R10: 0000000000000002 R11: 0000000000012714 R12: 0000000000000000 [ 509.083005][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 509.083020][ C0] FS: 0000000000000000(0000) GS:ffff8881248f8000(0000) knlGS:0000000000000000 [ 509.083043][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 509.083060][ C0] CR2: 0000001b31416ff8 CR3: 000000000e184000 CR4: 00000000003526f0 [ 509.083076][ C0] Call Trace: [ 509.083084][ C0] [ 509.083093][ C0] lock_acquire+0x2cd/0x330 [ 509.083118][ C0] ? unwind_next_frame+0x3f4/0x20b0 [ 509.083150][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 509.083190][ C0] unwind_next_frame+0xd1/0x20b0 [ 509.083220][ C0] ? unwind_next_frame+0xbd/0x20b0 [ 509.083249][ C0] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 509.083281][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 509.083321][ C0] arch_stack_walk+0x94/0x100 [ 509.083353][ C0] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 509.083385][ C0] stack_trace_save+0x8e/0xc0 [ 509.083421][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 509.083464][ C0] kasan_save_stack+0x33/0x60 [ 509.083495][ C0] ? kasan_save_stack+0x33/0x60 [ 509.083526][ C0] ? kasan_save_track+0x14/0x30 [ 509.083557][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 509.083590][ C0] ? kmem_cache_alloc_noprof+0x25e/0x770 [ 509.083644][ C0] kasan_save_track+0x14/0x30 [ 509.083676][ C0] __kasan_slab_alloc+0x89/0x90 [ 509.083711][ C0] kmem_cache_alloc_noprof+0x25e/0x770 [ 509.083740][ C0] ? __skb_ext_alloc+0x1a/0x80 [ 509.083768][ C0] ? __skb_ext_alloc+0x1a/0x80 [ 509.083791][ C0] __skb_ext_alloc+0x1a/0x80 [ 509.083824][ C0] skb_ext_add+0x242/0x7b0 [ 509.083848][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 509.083870][ C0] ? ebt_do_table+0x1bc9/0x2190 [ 509.083900][ C0] br_nf_pre_routing_ipv6+0xca/0x8c0 [ 509.083929][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 509.083952][ C0] ? lock_acquire+0x179/0x330 [ 509.083974][ C0] ? find_held_lock+0x2b/0x80 [ 509.084005][ C0] ? net_generic+0xea/0x2a0 [ 509.084052][ C0] br_nf_pre_routing+0x860/0x15b0 [ 509.084093][ C0] br_handle_frame+0xb28/0x14e0 [ 509.084139][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 509.084179][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 509.084223][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 509.084260][ C0] __netif_receive_skb_core.constprop.0+0x6b3/0x35b0 [ 509.084298][ C0] ? kmem_cache_free+0x2d8/0x770 [ 509.084327][ C0] ? find_held_lock+0x2b/0x80 [ 509.084357][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 509.084383][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 509.084419][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 509.084438][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 509.084462][ C0] ? sk_skb_reason_drop+0x136/0x1a0 [ 509.084499][ C0] ? ip6_mc_input+0x515/0xf60 [ 509.084532][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 509.084563][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 509.084597][ C0] ? __lock_acquire+0x436/0x2890 [ 509.084622][ C0] ? process_backlog+0x459/0x1650 [ 509.084651][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 509.084682][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 509.084715][ C0] ? lock_acquire+0x179/0x330 [ 509.084741][ C0] ? process_backlog+0x459/0x1650 [ 509.084769][ C0] __netif_receive_skb+0x1d/0x160 [ 509.084799][ C0] process_backlog+0x4ab/0x1650 [ 509.084833][ C0] __napi_poll.constprop.0+0xb3/0x540 [ 509.084866][ C0] net_rx_action+0x9f9/0xfa0 [ 509.084901][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 509.084938][ C0] ? mark_held_locks+0x49/0x80 [ 509.084961][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 509.084983][ C0] ? tmigr_handle_remote+0x132/0x380 [ 509.085025][ C0] ? run_timer_base+0x121/0x190 [ 509.085049][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 509.085076][ C0] handle_softirqs+0x219/0x950 [ 509.085112][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 509.085147][ C0] ? nsim_dev_trap_report_work+0x8b5/0xcf0 [ 509.085175][ C0] do_softirq+0xb2/0xf0 [ 509.085206][ C0] [ 509.085214][ C0] [ 509.085221][ C0] __local_bh_enable_ip+0x100/0x120 [ 509.085255][ C0] nsim_dev_trap_report_work+0x8b5/0xcf0 [ 509.085291][ C0] process_one_work+0x9ba/0x1b20 [ 509.085324][ C0] ? __pfx_process_one_work+0x10/0x10 [ 509.085355][ C0] ? assign_work+0x1a0/0x250 [ 509.085380][ C0] worker_thread+0x6c8/0xf10 [ 509.085411][ C0] ? __kthread_parkme+0x19e/0x250 [ 509.085446][ C0] ? __pfx_worker_thread+0x10/0x10 [ 509.085473][ C0] kthread+0x3c5/0x780 [ 509.085495][ C0] ? __pfx_kthread+0x10/0x10 [ 509.085519][ C0] ? rcu_is_watching+0x12/0xc0 [ 509.085552][ C0] ? __pfx_kthread+0x10/0x10 [ 509.085576][ C0] ret_from_fork+0x983/0xb10 [ 509.085599][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 509.085625][ C0] ? __switch_to+0x7af/0x10d0 [ 509.085655][ C0] ? __pfx_kthread+0x10/0x10 [ 509.085679][ C0] ret_from_fork_asm+0x1a/0x30 [ 509.085724][ C0] [ 509.103002][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 509.103026][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G L syzkaller #0 PREEMPT(full) [ 509.103058][ T31] Tainted: [L]=SOFTLOCKUP [ 509.103066][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 509.103081][ T31] Call Trace: [ 509.103089][ T31] [ 509.103098][ T31] dump_stack_lvl+0x3d/0x1f0 [ 509.103138][ T31] vpanic+0x640/0x6f0 [ 509.103164][ T31] panic+0xca/0xd0 [ 509.103185][ T31] ? __pfx_panic+0x10/0x10 [ 509.103206][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 509.103233][ T31] ? nmi_trigger_cpumask_backtrace+0x1b1/0x300 [ 509.103262][ T31] ? nmi_trigger_cpumask_backtrace+0x2be/0x300 [ 509.103296][ T31] ? watchdog+0xe83/0x1180 [ 509.103327][ T31] ? watchdog+0xe76/0x1180 [ 509.103360][ T31] watchdog+0xe94/0x1180 [ 509.103397][ T31] ? rcu_is_watching+0x12/0xc0 [ 509.103428][ T31] ? __pfx_watchdog+0x10/0x10 [ 509.103458][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 509.103482][ T31] ? __kthread_parkme+0x19e/0x250 [ 509.103515][ T31] ? __pfx_watchdog+0x10/0x10 [ 509.103546][ T31] kthread+0x3c5/0x780 [ 509.103569][ T31] ? __pfx_kthread+0x10/0x10 [ 509.103594][ T31] ? rcu_is_watching+0x12/0xc0 [ 509.103627][ T31] ? __pfx_kthread+0x10/0x10 [ 509.103661][ T31] ret_from_fork+0x983/0xb10 [ 509.103686][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 509.103711][ T31] ? __switch_to+0x7af/0x10d0 [ 509.103743][ T31] ? __pfx_kthread+0x10/0x10 [ 509.103768][ T31] ret_from_fork_asm+0x1a/0x30 [ 509.103816][ T31] [ 509.803593][ T31] Kernel Offset: disabled [ 509.807920][ T31] Rebooting in 86400 seconds..