last executing test programs: 1m30.80786536s ago: executing program 2 (id=9754): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="130036bd7000fbdbdf250200000008000300", @ANYRES32=r2, @ANYBLOB='\b\x00a'], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20040894) 1m30.49349415s ago: executing program 2 (id=9765): mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6\x00\x00\x00', 0x0, 0x0) symlink$auto(&(0x7f0000000080)='.\x00', &(0x7f0000000040)='./file0\x00') rt_tgsigqueueinfo$auto(0x0, 0x0, 0x16, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0/../file0\x00', &(0x7f00000002c0)={0x553c81, 0x10, 0x13}, 0x18) 1m30.237001027s ago: executing program 2 (id=9760): mlockall$auto(0x7) mmap$auto(0x0, 0x40000b, 0xde, 0x9b72, 0xffffffffffffffff, 0x8000) mlock$auto(0xfbe8, 0x4) mlock$auto(0xcecc, 0xd325) 1m29.732811948s ago: executing program 2 (id=9764): sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000884) lstat$auto(0x0, &(0x7f0000000180)={0xe, 0xfffffffffffffffe, 0x100000001, 0x1000, 0x0, 0x0, 0x0, 0x200fa98, 0x8, 0x7fffffffffffffff, 0x8000000004, 0x100000007fffffff, 0x5, 0x0, 0x7, 0x4, 0xb}) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'}) 1m29.38276158s ago: executing program 2 (id=9767): ioperm$auto(0x7, 0x6, 0x2) syz_clone3(&(0x7f00000004c0)={0x2000000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) 1m28.930055737s ago: executing program 1 (id=9769): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x0, 0x63, 0x0, &(0x7f00000000c0)=0x1e) 1m28.797275075s ago: executing program 3 (id=9770): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) keyctl$auto(0x2000000000000017, 0x8000, 0x0, 0x0, 0x20803) 1m28.493254555s ago: executing program 0 (id=9771): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x5, 0x3) r0 = socket(0x11, 0x80003, 0x300) setsockopt$auto(r0, 0x107, 0x5, 0x0, 0x8004) 1m28.377832978s ago: executing program 0 (id=9773): mmap$auto(0x0, 0x20007, 0xdf, 0xeb1, 0x401, 0x8000) r0 = landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa0, 0x1, 0x8}, 0x9, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dri/card1\x00', 0x129800, 0x0) ioctl$auto(r1, 0xb21064a9, r0) 1m28.173182933s ago: executing program 0 (id=9774): write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000140)="671d264add77b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763c1dbfee3f787fc87cd0f5600ac8caf4bde4c30b530ac6ebbff", 0x37) r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0xf8, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0xe1, 0x3, 0x0, 0x1, [@typed={0x8, 0xc0, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x4, 0x2a}, @typed={0x4, 0x11}, @typed={0x8, 0x2e, 0x0, 0x0, @fd}, @generic="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b6cdd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014", @nested={0x10, 0x5, 0x0, 0x1, [@typed={0xc, 0xc5, 0x0, 0x0, @u64=0x3}]}, @generic="21aadf3f78e2cd52d7f733c38da99fe8ec1ead"]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x40000}, 0x50) 1m27.891871379s ago: executing program 1 (id=9775): mmap$auto(0x0, 0x400008, 0xe2, 0x9b72, 0x2, 0x8000) io_uring_setup$auto(0x6, 0x0) r0 = socket(0x2, 0x1, 0x0) getsockopt$auto(r0, 0x6, 0x23, 0x0, &(0x7f0000000100)=0x3b) 1m27.87469189s ago: executing program 0 (id=9776): open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(0x3, 0x400, 0x9ec0000000000000) r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x80040, 0x40, 0xe}, 0x18) fremovexattr$auto(r0, &(0x7f0000000000)='system.posix_acl_access\x00') 1m27.701873187s ago: executing program 3 (id=9778): socket(0x25, 0x1, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x20040000}, 0x880) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) sendmmsg$auto(0x3, &(0x7f0000000000)={{0x0, 0x2, 0x0, 0x106, 0x0, 0x1, 0x3}, 0xed7138c}, 0x7, 0x0) 1m27.594856745s ago: executing program 0 (id=9779): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000040), 0x8006, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCGIDLE64(r0, 0x8010743f, 0x0) 1m27.574799794s ago: executing program 1 (id=9780): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0xf6f6, 0x8000) io_uring_setup$auto(0x1, 0x0) r0 = socket(0x22, 0x2, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x80044943, 0x0) 1m27.325287057s ago: executing program 1 (id=9781): mmap$auto(0x0, 0x20009, 0xe, 0xeb1, 0x403, 0x8000) setresuid$auto(0x0, 0x7, 0x8080) capset$auto(0x0, 0x0) capset$auto(0x0, 0x0) 1m27.296071905s ago: executing program 0 (id=9789): write$auto(0xffffffffffffffff, &(0x7f0000000400)='/de\xef\xe7auDio1\x00\f\'\x8b\xd9\xfeN\xcd#)\x8c\x89>-o\xd7\x8f$\xac\xfc\xa2\xccm\x0e \xfb\xe5\xe9\x92\xaa\xef\x84$\x84Ia>6pV;{\'\xaa\xbeS\x14\xb6\xd2\xf6\xb7\xcd\xf6P\x05X\x1dK\x18\x99\x02\xb3\x0fY0\x80\x99\xe3\x0e\xa2D\xc0\xecE\x86\xd9J\x9c\xa8\x98\x02\xdb\xf1\x81TMpS\xc5\xab\xa1\x1bG\v>\x03\xf7\xe1\xaf\xe3\x04\xc3 ffF\x0f\xa6}\xa3\xa8\xd1\xe2\xd0QG\xa6\xa6\x8e7\x80\xd9\xd0\xdf\xad\xb1\x15\xca\xbb\xd5j\x94\xc6<\x18\x15\xcc\x8d\x14\xd8\xb8L\x03\xdd~\xe7%\xcb\xdd\xda!\xd45Z\xd0\xfc\x1b\xf0\xe1\xd6:\xd7\xe9N\xc1W\xe3\xae\xe9\xb27>k\xf8\xdf\xe1\xf9\xcc\xcb\v\x01D\xc3\xa9T\xb9UY\xaf\xa4\xe4\xfec\xa3\x9bI@\xb7w\xf8\x14\xc0\xd5\xd5\x95', 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x48840}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x807}, 0xfffffffd, 0x8) 1m27.191715495s ago: executing program 3 (id=9782): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x0, &(0x7f0000000180)="fe3eef5c013a7dcbca7b56a9cf898fe5ce", 0x8) 1m27.063681212s ago: executing program 1 (id=9783): setresuid$auto(0xee01, 0x1000, 0x607) r0 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_ETHTOOL_MSG_MODULE_EEPROM_GET(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000000)={0x14, r0, 0xb77b02080cac5bcb, 0x70bd28, 0x259fdbff}, 0x14}}, 0x82) 1m26.967476211s ago: executing program 3 (id=9784): write$auto_console_fops_tty_io(0xffffffffffffffff, &(0x7f0000000140)="671d264add77b6440843b6e6688a2b5ad9df2669e6f9cd236532b20ed763c1dbfee3f787fc87cd0f5600ac8caf4bde4c30b530ac6ebbff", 0x37) r0 = socket(0x10, 0x3, 0x6) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0xf8, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKMODES_OURS={0xe1, 0x3, 0x0, 0x1, [@typed={0x8, 0xc0, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x4, 0x2a}, @typed={0x4, 0x11}, @typed={0x8, 0x2e, 0x0, 0x0, @fd}, @generic="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b6cdd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014", @nested={0x10, 0x5, 0x0, 0x1, [@typed={0xc, 0xc5, 0x0, 0x0, @u64=0x3}]}, @generic="21aadf3f78e2cd52d7f733c38da99fe8ec1ead"]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x40000}, 0x50) 1m26.915230542s ago: executing program 2 (id=9785): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x4c, r1, 0xd0d58b333228212f, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_SCAN_SSIDS={0x30, 0x2d, 0x0, 0x1, [@nested={0x25, 0x46, 0x0, 0x1, [@typed={0x8, 0x7c, 0x0, 0x0, @fd}, @typed={0x8, 0xa, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0xfe}, @generic="9ffd7679374c7916dd2c28c80d"]}, @nested={0x4, 0x87}]}]}, 0x4c}}, 0x4000000) 1m26.822606364s ago: executing program 1 (id=9786): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) 1m11.878637602s ago: executing program 32 (id=9789): write$auto(0xffffffffffffffff, &(0x7f0000000400)='/de\xef\xe7auDio1\x00\f\'\x8b\xd9\xfeN\xcd#)\x8c\x89>-o\xd7\x8f$\xac\xfc\xa2\xccm\x0e \xfb\xe5\xe9\x92\xaa\xef\x84$\x84Ia>6pV;{\'\xaa\xbeS\x14\xb6\xd2\xf6\xb7\xcd\xf6P\x05X\x1dK\x18\x99\x02\xb3\x0fY0\x80\x99\xe3\x0e\xa2D\xc0\xecE\x86\xd9J\x9c\xa8\x98\x02\xdb\xf1\x81TMpS\xc5\xab\xa1\x1bG\v>\x03\xf7\xe1\xaf\xe3\x04\xc3 ffF\x0f\xa6}\xa3\xa8\xd1\xe2\xd0QG\xa6\xa6\x8e7\x80\xd9\xd0\xdf\xad\xb1\x15\xca\xbb\xd5j\x94\xc6<\x18\x15\xcc\x8d\x14\xd8\xb8L\x03\xdd~\xe7%\xcb\xdd\xda!\xd45Z\xd0\xfc\x1b\xf0\xe1\xd6:\xd7\xe9N\xc1W\xe3\xae\xe9\xb27>k\xf8\xdf\xe1\xf9\xcc\xcb\v\x01D\xc3\xa9T\xb9UY\xaf\xa4\xe4\xfec\xa3\x9bI@\xb7w\xf8\x14\xc0\xd5\xd5\x95', 0x8) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='f\x00'], 0x1ac}, 0x1, 0x0, 0x0, 0x48840}, 0x40000) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x807}, 0xfffffffd, 0x8) 1m11.852219285s ago: executing program 3 (id=9788): io_uring_enter$auto(0xffffffffffffffff, 0x9, 0x820e, 0x8b, 0x0, 0x18) socket(0x15, 0x5, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) 1m11.699199332s ago: executing program 33 (id=9786): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) 1m11.558697762s ago: executing program 34 (id=9785): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x4c, r1, 0xd0d58b333228212f, 0x70bd2d, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_SCAN_SSIDS={0x30, 0x2d, 0x0, 0x1, [@nested={0x25, 0x46, 0x0, 0x1, [@typed={0x8, 0x7c, 0x0, 0x0, @fd}, @typed={0x8, 0xa, 0x0, 0x0, @u32=0x3}, @nested={0x4, 0xfe}, @generic="9ffd7679374c7916dd2c28c80d"]}, @nested={0x4, 0x87}]}]}, 0x4c}}, 0x4000000) 1m11.481535498s ago: executing program 3 (id=9792): r0 = socket(0x2, 0x1, 0x106) bind$auto(r0, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x7, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) 0s ago: executing program 5 (id=9790): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) fstatfs$auto(0x3, 0x0) ioctl$auto(r0, 0x4b46, 0x1) kernel console output (not intermixed with test programs): 4615][T23432] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 559.564670][T23432] ? perf_event_mmap+0xbc/0xe40 [ 559.564724][T23432] ? vms_complete_munmap_vmas+0x1e1/0xdd0 [ 559.564776][T23432] ? mas_store_prealloc+0x893/0xfb0 [ 559.564809][T23432] ? __pfx_perf_event_mmap+0x10/0x10 [ 559.564869][T23432] ? __pfx_vms_complete_munmap_vmas+0x10/0x10 [ 559.564918][T23432] ? vma_wants_writenotify+0x10b/0x390 [ 559.564972][T23432] ? __pfx_vma_wants_writenotify+0x10/0x10 [ 559.565029][T23432] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 559.565094][T23432] ? vma_set_page_prot+0xb1/0x120 [ 559.565152][T23432] ? mas_ascend+0x53d/0xb30 [ 559.565198][T23432] ? __pfx___mmap_region+0x10/0x10 [ 559.565247][T23432] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 559.565310][T23432] ? policy_nodemask+0xed/0x4f0 [ 559.565350][T23432] alloc_pages_mpol+0x1fb/0x550 [ 559.565391][T23432] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 559.565441][T23432] alloc_pages_noprof+0x131/0x390 [ 559.565481][T23432] __pmd_alloc+0x3b/0x950 [ 559.565527][T23432] __handle_mm_fault+0xa99/0x2b60 [ 559.565582][T23432] ? mt_find+0x45e/0x8e0 [ 559.565635][T23432] ? __pfx___handle_mm_fault+0x10/0x10 [ 559.565681][T23432] ? __pfx_mt_find+0x10/0x10 [ 559.565765][T23432] handle_mm_fault+0x36d/0xa20 [ 559.565822][T23432] __get_user_pages+0xf9c/0x34d0 [ 559.565876][T23432] ? __pfx___get_user_pages+0x10/0x10 [ 559.565926][T23432] populate_vma_page_range+0x267/0x3f0 [ 559.565974][T23432] ? __pfx_populate_vma_page_range+0x10/0x10 [ 559.566016][T23432] ? __pfx_find_vma_intersection+0x10/0x10 [ 559.566054][T23432] ? do_mmap+0x93f/0x12f0 [ 559.566096][T23432] __mm_populate+0x107/0x3a0 [ 559.566137][T23432] ? __pfx___mm_populate+0x10/0x10 [ 559.566193][T23432] ? up_write+0x290/0x4f0 [ 559.566246][T23432] vm_mmap_pgoff+0x37f/0x470 [ 559.566289][T23432] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 559.566330][T23432] ? do_futex+0x192/0x350 [ 559.566375][T23432] ? __pfx_do_futex+0x10/0x10 [ 559.566428][T23432] ksys_mmap_pgoff+0xe1/0x650 [ 559.566464][T23432] ? __x64_sys_futex+0x34f/0x4d0 [ 559.566507][T23432] ? __x64_sys_futex+0x358/0x4d0 [ 559.566554][T23432] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 559.566592][T23432] ? xfd_validate_state+0x129/0x190 [ 559.566652][T23432] __x64_sys_mmap+0x125/0x190 [ 559.566709][T23432] do_syscall_64+0x106/0xf80 [ 559.566758][T23432] ? clear_bhb_loop+0x40/0x90 [ 559.566803][T23432] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 559.566841][T23432] RIP: 0033:0x7fd174d9c799 [ 559.566870][T23432] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 559.566905][T23432] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 559.566939][T23432] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 559.566964][T23432] RDX: 00000000000000df RSI: 0000000000000005 RDI: 0000000000000000 [ 559.566985][T23432] RBP: 00007fd174e32c99 R08: 0000000000000002 R09: 0000000000008000 [ 559.567006][T23432] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 559.567029][T23432] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 559.567071][T23432] [ 561.673203][T23501] netlink: 'syz.2.8324': attribute type 1 has an invalid length. [ 562.929425][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 562.929534][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.127637][T23539] futex_wake_op: syz.3.8340 tries to shift op by -2048; fix this program [ 563.184134][T23539] futex_wake_op: syz.3.8340 tries to shift op by -2048; fix this program [ 564.760302][T23583] netlink: 'syz.3.8362': attribute type 1 has an invalid length. [ 565.913527][T23637] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8386'. [ 566.278579][T23646] FAULT_INJECTION: forcing a failure. [ 566.278579][T23646] name failslab, interval 1, probability 0, space 0, times 0 [ 566.295498][T23646] CPU: 1 UID: 0 PID: 23646 Comm: syz.3.8391 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 566.295564][T23646] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 566.295583][T23646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 566.295605][T23646] Call Trace: [ 566.295617][T23646] [ 566.295632][T23646] dump_stack_lvl+0x100/0x190 [ 566.295694][T23646] should_fail_ex.cold+0x5/0xa [ 566.295737][T23646] should_failslab+0xc2/0x120 [ 566.295777][T23646] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 566.295829][T23646] ? sk_prot_alloc+0x60/0x2a0 [ 566.295863][T23646] ? kmem_cache_alloc_noprof+0x292/0x6e0 [ 566.295914][T23646] ? security_inode_alloc+0x3b/0x2c0 [ 566.295956][T23646] sk_prot_alloc+0x60/0x2a0 [ 566.295992][T23646] sk_alloc+0x36/0xe80 [ 566.296039][T23646] __vsock_create.constprop.0+0x3c/0xba0 [ 566.296084][T23646] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 566.296160][T23646] vsock_create+0x126/0x510 [ 566.296210][T23646] __sock_create+0x339/0x860 [ 566.296256][T23646] __sys_socket+0x14d/0x260 [ 566.296297][T23646] ? __pfx___sys_socket+0x10/0x10 [ 566.296348][T23646] __x64_sys_socket+0x72/0xb0 [ 566.296386][T23646] ? lockdep_hardirqs_on+0x78/0x100 [ 566.296437][T23646] do_syscall_64+0x106/0xf80 [ 566.296488][T23646] ? clear_bhb_loop+0x40/0x90 [ 566.296532][T23646] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.296569][T23646] RIP: 0033:0x7f396079c799 [ 566.296599][T23646] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.296634][T23646] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 566.296669][T23646] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 566.296694][T23646] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000028 [ 566.296716][T23646] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 566.296739][T23646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 566.296762][T23646] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 566.296807][T23646] [ 566.644299][T23659] FAULT_INJECTION: forcing a failure. [ 566.644299][T23659] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 566.644458][T23659] CPU: 1 UID: 0 PID: 23659 Comm: syz.3.8396 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 566.644517][T23659] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 566.644534][T23659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 566.644558][T23659] Call Trace: [ 566.644582][T23659] [ 566.644597][T23659] dump_stack_lvl+0x100/0x190 [ 566.644658][T23659] should_fail_ex.cold+0x5/0xa [ 566.644695][T23659] ? prepare_alloc_pages+0x16d/0x5f0 [ 566.644742][T23659] should_fail_alloc_page+0xeb/0x140 [ 566.644783][T23659] prepare_alloc_pages+0x1f0/0x5f0 [ 566.644824][T23659] ? mas_wr_store_entry+0x6d2/0x2390 [ 566.644887][T23659] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 566.644941][T23659] ? perf_event_mmap+0xbc/0xe40 [ 566.644995][T23659] ? vms_complete_munmap_vmas+0x1e1/0xdd0 [ 566.645048][T23659] ? mas_store_prealloc+0x893/0xfb0 [ 566.645091][T23659] ? __pfx_perf_event_mmap+0x10/0x10 [ 566.645164][T23659] ? __pfx_vms_complete_munmap_vmas+0x10/0x10 [ 566.645214][T23659] ? vma_wants_writenotify+0x10b/0x390 [ 566.645267][T23659] ? __pfx_vma_wants_writenotify+0x10/0x10 [ 566.645318][T23659] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 566.645372][T23659] ? vma_set_page_prot+0xb1/0x120 [ 566.645417][T23659] ? mas_ascend+0x53d/0xb30 [ 566.645461][T23659] ? __pfx___mmap_region+0x10/0x10 [ 566.645507][T23659] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 566.645568][T23659] ? policy_nodemask+0xed/0x4f0 [ 566.645621][T23659] alloc_pages_mpol+0x1fb/0x550 [ 566.645657][T23659] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 566.645708][T23659] alloc_pages_noprof+0x131/0x390 [ 566.645746][T23659] __pmd_alloc+0x3b/0x950 [ 566.645792][T23659] __handle_mm_fault+0xa99/0x2b60 [ 566.645845][T23659] ? mt_find+0x45e/0x8e0 [ 566.645904][T23659] ? __pfx___handle_mm_fault+0x10/0x10 [ 566.645944][T23659] ? __pfx_mt_find+0x10/0x10 [ 566.646024][T23659] handle_mm_fault+0x36d/0xa20 [ 566.646076][T23659] __get_user_pages+0xf9c/0x34d0 [ 566.646134][T23659] ? __pfx___get_user_pages+0x10/0x10 [ 566.646185][T23659] populate_vma_page_range+0x267/0x3f0 [ 566.646230][T23659] ? __pfx_populate_vma_page_range+0x10/0x10 [ 566.646272][T23659] ? __pfx_find_vma_intersection+0x10/0x10 [ 566.646311][T23659] ? do_mmap+0x93f/0x12f0 [ 566.646354][T23659] __mm_populate+0x107/0x3a0 [ 566.646398][T23659] ? __pfx___mm_populate+0x10/0x10 [ 566.646443][T23659] ? up_write+0x290/0x4f0 [ 566.646498][T23659] vm_mmap_pgoff+0x37f/0x470 [ 566.646543][T23659] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 566.646594][T23659] ? do_futex+0x192/0x350 [ 566.646644][T23659] ? __pfx_do_futex+0x10/0x10 [ 566.646700][T23659] ksys_mmap_pgoff+0xe1/0x650 [ 566.646741][T23659] ? __x64_sys_futex+0x34f/0x4d0 [ 566.646784][T23659] ? __x64_sys_futex+0x358/0x4d0 [ 566.646832][T23659] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 566.646870][T23659] ? xfd_validate_state+0x129/0x190 [ 566.646929][T23659] __x64_sys_mmap+0x125/0x190 [ 566.646986][T23659] do_syscall_64+0x106/0xf80 [ 566.647035][T23659] ? clear_bhb_loop+0x40/0x90 [ 566.647078][T23659] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 566.647115][T23659] RIP: 0033:0x7f396079c799 [ 566.647145][T23659] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 566.647180][T23659] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 566.647216][T23659] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 566.647241][T23659] RDX: 00000000000000df RSI: 0000000000000005 RDI: 0000000000000000 [ 566.647265][T23659] RBP: 00007f3960832c99 R08: 0000000000000002 R09: 0000000000008000 [ 566.647288][T23659] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 566.647311][T23659] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 566.647358][T23659] [ 568.999973][T23720] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8422'. [ 571.400477][T23787] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8453'. [ 575.745334][T10080] Bluetooth: hci3: Malformed HCI Event [ 576.417480][T23930] random: crng reseeded on system resumption [ 578.075344][T23986] netlink: 186 bytes leftover after parsing attributes in process `syz.1.8538'. [ 580.132530][T24043] FAULT_INJECTION: forcing a failure. [ 580.132530][T24043] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 580.146211][T24043] CPU: 1 UID: 0 PID: 24043 Comm: syz.1.8562 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 580.146269][T24043] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 580.146285][T24043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 580.146305][T24043] Call Trace: [ 580.146317][T24043] [ 580.146330][T24043] dump_stack_lvl+0x100/0x190 [ 580.146388][T24043] should_fail_ex.cold+0x5/0xa [ 580.146424][T24043] ? prepare_alloc_pages+0x16d/0x5f0 [ 580.146473][T24043] should_fail_alloc_page+0xeb/0x140 [ 580.146514][T24043] prepare_alloc_pages+0x1f0/0x5f0 [ 580.146561][T24043] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 580.146626][T24043] ? __lock_acquire+0x4a5/0x2630 [ 580.146675][T24043] ? __lock_acquire+0x4a5/0x2630 [ 580.146732][T24043] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 580.146790][T24043] ? __lock_acquire+0x4a5/0x2630 [ 580.146855][T24043] ? find_held_lock+0x2b/0x80 [ 580.146886][T24043] ? is_bpf_text_address+0x8a/0x1a0 [ 580.146938][T24043] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 580.146998][T24043] ? policy_nodemask+0xed/0x4f0 [ 580.147037][T24043] alloc_pages_mpol+0x1fb/0x550 [ 580.147076][T24043] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 580.147117][T24043] ? arch_stack_walk+0xa6/0xf0 [ 580.147161][T24043] folio_alloc_mpol_noprof+0x36/0x340 [ 580.147208][T24043] shmem_alloc_folio+0x135/0x160 [ 580.147255][T24043] shmem_alloc_and_add_folio+0x371/0xd40 [ 580.147320][T24043] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 580.147378][T24043] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 580.147442][T24043] shmem_get_folio_gfp+0x6ab/0x1900 [ 580.147505][T24043] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 580.147565][T24043] ? filemap_map_pages+0xe69/0x2020 [ 580.147647][T24043] shmem_fault+0x1f9/0xa20 [ 580.147710][T24043] ? __lock_acquire+0x4a5/0x2630 [ 580.147757][T24043] ? __pfx_shmem_fault+0x10/0x10 [ 580.147815][T24043] ? find_held_lock+0x2b/0x80 [ 580.147850][T24043] ? __pfx_filemap_map_pages+0x10/0x10 [ 580.147917][T24043] __do_fault+0x10d/0x550 [ 580.147957][T24043] do_fault+0xabb/0x1990 [ 580.147996][T24043] ? __pmd_alloc+0x3fb/0x950 [ 580.148042][T24043] __handle_mm_fault+0x180f/0x2b60 [ 580.148097][T24043] ? mt_find+0x45e/0x8e0 [ 580.148153][T24043] ? __pfx___handle_mm_fault+0x10/0x10 [ 580.148200][T24043] ? __pfx_mt_find+0x10/0x10 [ 580.148276][T24043] ? find_vma+0xbf/0x140 [ 580.148309][T24043] ? __pfx_find_vma+0x10/0x10 [ 580.148349][T24043] handle_mm_fault+0x36d/0xa20 [ 580.148407][T24043] do_user_addr_fault+0x74c/0x12f0 [ 580.148479][T24043] exc_page_fault+0x6f/0xd0 [ 580.148529][T24043] asm_exc_page_fault+0x26/0x30 [ 580.148564][T24043] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 580.148602][T24043] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 580.148638][T24043] RSP: 0018:ffffc90003397d90 EFLAGS: 00050216 [ 580.148670][T24043] RAX: 0000000000000001 RBX: 0000000000001298 RCX: 0000000000000020 [ 580.148703][T24043] RDX: 0000000000000001 RSI: 0000000000001298 RDI: ffffc90003397e30 [ 580.148727][T24043] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52000672fc9 [ 580.148750][T24043] R10: ffffc90003397e4f R11: 0000000000000000 R12: 0000000000000000 [ 580.148772][T24043] R13: ffffc90003397e30 R14: ffffc90003397e30 R15: dffffc0000000000 [ 580.148818][T24043] _copy_from_user+0x98/0xd0 [ 580.148863][T24043] do_fcntl+0xf0c/0x1670 [ 580.148910][T24043] ? __pfx_do_fcntl+0x10/0x10 [ 580.148950][T24043] ? __fget_files+0x215/0x3d0 [ 580.148998][T24043] ? tomoyo_file_fcntl+0x6c/0xc0 [ 580.149058][T24043] __x64_sys_fcntl+0x163/0x200 [ 580.149109][T24043] do_syscall_64+0x106/0xf80 [ 580.149156][T24043] ? clear_bhb_loop+0x40/0x90 [ 580.149198][T24043] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 580.149234][T24043] RIP: 0033:0x7fd174d9c799 [ 580.149264][T24043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 580.149297][T24043] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 580.149329][T24043] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 580.149353][T24043] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000003 [ 580.149375][T24043] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 580.149396][T24043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 580.149418][T24043] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 580.149469][T24043] [ 581.026956][T24049] FAULT_INJECTION: forcing a failure. [ 581.026956][T24049] name failslab, interval 1, probability 0, space 0, times 0 [ 581.044284][T24047] netlink: 186 bytes leftover after parsing attributes in process `syz.2.8565'. [ 581.079166][T24049] CPU: 1 UID: 0 PID: 24049 Comm: syz.1.8563 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 581.079234][T24049] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 581.079252][T24049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 581.079274][T24049] Call Trace: [ 581.079287][T24049] [ 581.079301][T24049] dump_stack_lvl+0x100/0x190 [ 581.079363][T24049] should_fail_ex.cold+0x5/0xa [ 581.079405][T24049] should_failslab+0xc2/0x120 [ 581.079451][T24049] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 581.079503][T24049] ? mas_alloc_nodes+0x280/0x390 [ 581.079555][T24049] mas_alloc_nodes+0x280/0x390 [ 581.079610][T24049] mas_preallocate+0x39c/0xf10 [ 581.079670][T24049] ? __pfx_mas_preallocate+0x10/0x10 [ 581.079733][T24049] ? vm_area_alloc+0x1f/0x160 [ 581.079784][T24049] ? lockdep_init_map_type+0x5c/0x250 [ 581.079837][T24049] __mmap_region+0x12b5/0x29e0 [ 581.079896][T24049] ? __pfx___mmap_region+0x10/0x10 [ 581.079955][T24049] ? set_next_entity+0x11e/0x9c0 [ 581.080014][T24049] ? __lock_acquire+0x4a5/0x2630 [ 581.080058][T24049] ? update_cfs_rq_load_avg+0x51/0x550 [ 581.080114][T24049] ? find_held_lock+0x2b/0x80 [ 581.080148][T24049] ? finish_task_switch.isra.0+0x200/0xb80 [ 581.080187][T24049] ? finish_task_switch.isra.0+0x200/0xb80 [ 581.080243][T24049] ? trace_sched_exit_tp+0x13a/0x180 [ 581.080285][T24049] ? __schedule+0x1000/0x6120 [ 581.080383][T24049] ? rcu_is_watching+0x12/0xc0 [ 581.080437][T24049] ? cap_capable+0x107/0x460 [ 581.080500][T24049] mmap_region+0x180/0x3e0 [ 581.080561][T24049] do_mmap+0xc63/0x12f0 [ 581.080615][T24049] ? __pfx_do_mmap+0x10/0x10 [ 581.080655][T24049] ? __pfx_down_write_killable+0x10/0x10 [ 581.080731][T24049] vm_mmap_pgoff+0x29e/0x470 [ 581.080779][T24049] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 581.080840][T24049] ? do_futex+0x192/0x350 [ 581.080886][T24049] ? __pfx_do_futex+0x10/0x10 [ 581.080939][T24049] ksys_mmap_pgoff+0xe1/0x650 [ 581.080978][T24049] ? __x64_sys_futex+0x34f/0x4d0 [ 581.081022][T24049] ? __x64_sys_futex+0x358/0x4d0 [ 581.081068][T24049] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 581.081116][T24049] ? xfd_validate_state+0x129/0x190 [ 581.081174][T24049] __x64_sys_mmap+0x125/0x190 [ 581.081229][T24049] do_syscall_64+0x106/0xf80 [ 581.081275][T24049] ? clear_bhb_loop+0x40/0x90 [ 581.081316][T24049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.081368][T24049] RIP: 0033:0x7fd174d9c799 [ 581.081397][T24049] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 581.081432][T24049] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 581.081467][T24049] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 581.081491][T24049] RDX: 00000000000000df RSI: 0000000004020009 RDI: 0000000000000000 [ 581.081513][T24049] RBP: 00007fd174e32c99 R08: 0000000000000401 R09: 0000000000008000 [ 581.081534][T24049] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 581.081557][T24049] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 581.081609][T24049] [ 581.826019][T24058] bridge0: port 4(batadv0) entered blocking state [ 581.832762][T24058] bridge0: port 4(batadv0) entered disabled state [ 581.844906][T24058] batadv0: entered allmulticast mode [ 581.852686][T24058] batadv0: entered promiscuous mode [ 581.858999][T24058] bridge0: port 4(batadv0) entered blocking state [ 581.865649][T24058] bridge0: port 4(batadv0) entered forwarding state [ 581.903338][T10045] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 581.914096][T10045] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 582.454336][T24076] netlink: 186 bytes leftover after parsing attributes in process `syz.3.8576'. [ 585.273670][T24129] sd 0:0:1:0: PR command failed: 1026 [ 585.284144][T24129] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 585.290958][T24129] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 585.724296][T24145] bridge0: port 5(batadv0) entered blocking state [ 585.730954][T24145] bridge0: port 5(batadv0) entered disabled state [ 585.743238][T24145] batadv0: entered allmulticast mode [ 585.760954][T24145] batadv0: entered promiscuous mode [ 585.780297][T24145] bridge0: port 5(batadv0) entered blocking state [ 585.786973][T24145] bridge0: port 5(batadv0) entered forwarding state [ 585.973338][T10054] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 585.983130][T10054] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 586.886028][T24172] FAULT_INJECTION: forcing a failure. [ 586.886028][T24172] name failslab, interval 1, probability 0, space 0, times 0 [ 586.933053][T24172] CPU: 1 UID: 0 PID: 24172 Comm: syz.1.8621 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 586.933118][T24172] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 586.933134][T24172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 586.933155][T24172] Call Trace: [ 586.933167][T24172] [ 586.933180][T24172] dump_stack_lvl+0x100/0x190 [ 586.933239][T24172] should_fail_ex.cold+0x5/0xa [ 586.933280][T24172] ? sk_prot_alloc+0x10b/0x2a0 [ 586.933313][T24172] should_failslab+0xc2/0x120 [ 586.933352][T24172] __kmalloc_noprof+0xe0/0x850 [ 586.933415][T24172] sk_prot_alloc+0x10b/0x2a0 [ 586.933452][T24172] sk_alloc+0x36/0xe80 [ 586.933498][T24172] xsk_create+0x117/0x760 [ 586.933538][T24172] __sock_create+0x339/0x860 [ 586.933585][T24172] __sys_socket+0x14d/0x260 [ 586.933625][T24172] ? __pfx___sys_socket+0x10/0x10 [ 586.933678][T24172] __x64_sys_socket+0x72/0xb0 [ 586.933716][T24172] ? lockdep_hardirqs_on+0x78/0x100 [ 586.933773][T24172] do_syscall_64+0x106/0xf80 [ 586.933821][T24172] ? clear_bhb_loop+0x40/0x90 [ 586.933866][T24172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 586.933902][T24172] RIP: 0033:0x7fd174d9c799 [ 586.933931][T24172] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 586.933966][T24172] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 586.933999][T24172] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 586.934023][T24172] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 586.934045][T24172] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 586.934067][T24172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 586.934088][T24172] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 586.934133][T24172] [ 587.514637][T24181] FAULT_INJECTION: forcing a failure. [ 587.514637][T24181] name failslab, interval 1, probability 0, space 0, times 0 [ 587.563041][T24181] CPU: 1 UID: 0 PID: 24181 Comm: syz.2.8624 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 587.563106][T24181] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 587.563124][T24181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 587.563147][T24181] Call Trace: [ 587.563159][T24181] [ 587.563173][T24181] dump_stack_lvl+0x100/0x190 [ 587.563236][T24181] should_fail_ex.cold+0x5/0xa [ 587.563277][T24181] should_failslab+0xc2/0x120 [ 587.563315][T24181] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 587.563369][T24181] ? ptlock_alloc+0x1f/0x70 [ 587.563424][T24181] ptlock_alloc+0x1f/0x70 [ 587.563470][T24181] pte_alloc_one+0x82/0x3d0 [ 587.563510][T24181] do_fault+0x88e/0x1990 [ 587.563549][T24181] ? __pmd_alloc+0x3fb/0x950 [ 587.563593][T24181] __handle_mm_fault+0x180f/0x2b60 [ 587.563648][T24181] ? mt_find+0x45e/0x8e0 [ 587.563713][T24181] ? __pfx___handle_mm_fault+0x10/0x10 [ 587.563758][T24181] ? __pfx_mt_find+0x10/0x10 [ 587.563835][T24181] ? find_vma+0xbf/0x140 [ 587.563868][T24181] ? __pfx_find_vma+0x10/0x10 [ 587.563907][T24181] handle_mm_fault+0x36d/0xa20 [ 587.563965][T24181] do_user_addr_fault+0x74c/0x12f0 [ 587.564033][T24181] exc_page_fault+0x6f/0xd0 [ 587.564083][T24181] asm_exc_page_fault+0x26/0x30 [ 587.564117][T24181] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 587.564156][T24181] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 587.564191][T24181] RSP: 0018:ffffc90008437d90 EFLAGS: 00050216 [ 587.564221][T24181] RAX: 0000000000000001 RBX: 0000000000001298 RCX: 0000000000000020 [ 587.564242][T24181] RDX: 0000000000000001 RSI: 0000000000001298 RDI: ffffc90008437e30 [ 587.564264][T24181] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52001086fc9 [ 587.564285][T24181] R10: ffffc90008437e4f R11: 0000000000000000 R12: 0000000000000000 [ 587.564308][T24181] R13: ffffc90008437e30 R14: ffffc90008437e30 R15: dffffc0000000000 [ 587.564353][T24181] _copy_from_user+0x98/0xd0 [ 587.564396][T24181] do_fcntl+0xf0c/0x1670 [ 587.564444][T24181] ? __pfx_do_fcntl+0x10/0x10 [ 587.564486][T24181] ? __fget_files+0x215/0x3d0 [ 587.564533][T24181] ? tomoyo_file_fcntl+0x6c/0xc0 [ 587.564593][T24181] __x64_sys_fcntl+0x163/0x200 [ 587.564644][T24181] do_syscall_64+0x106/0xf80 [ 587.564698][T24181] ? clear_bhb_loop+0x40/0x90 [ 587.564741][T24181] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 587.564778][T24181] RIP: 0033:0x7f56bcb9c799 [ 587.564814][T24181] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 587.564850][T24181] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 587.564894][T24181] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 587.564920][T24181] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000003 [ 587.564942][T24181] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 587.564965][T24181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 587.564986][T24181] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 587.565034][T24181] [ 588.016441][T24184] FAULT_INJECTION: forcing a failure. [ 588.016441][T24184] name failslab, interval 1, probability 0, space 0, times 0 [ 588.090712][T24184] CPU: 0 UID: 0 PID: 24184 Comm: syz.1.8626 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 588.090777][T24184] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 588.090796][T24184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 588.090837][T24184] Call Trace: [ 588.090850][T24184] [ 588.090865][T24184] dump_stack_lvl+0x100/0x190 [ 588.090926][T24184] should_fail_ex.cold+0x5/0xa [ 588.090969][T24184] should_failslab+0xc2/0x120 [ 588.091008][T24184] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 588.091062][T24184] ? alloc_empty_file+0x55/0x1c0 [ 588.091115][T24184] alloc_empty_file+0x55/0x1c0 [ 588.091161][T24184] alloc_file_pseudo+0x13a/0x230 [ 588.091208][T24184] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 588.091255][T24184] ? _raw_spin_unlock+0x28/0x50 [ 588.091307][T24184] ? alloc_fd+0x476/0x790 [ 588.091347][T24184] __anon_inode_getfile+0xe8/0x280 [ 588.091395][T24184] do_epoll_create+0x329/0x4b0 [ 588.091434][T24184] __x64_sys_epoll_create+0x45/0x70 [ 588.091472][T24184] do_syscall_64+0x106/0xf80 [ 588.091521][T24184] ? clear_bhb_loop+0x40/0x90 [ 588.091564][T24184] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.091602][T24184] RIP: 0033:0x7fd174d9c799 [ 588.091632][T24184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 588.091668][T24184] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5 [ 588.091703][T24184] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 588.091732][T24184] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000003e [ 588.091755][T24184] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 588.091778][T24184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 588.091800][T24184] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 588.091847][T24184] [ 588.920878][T24206] FAULT_INJECTION: forcing a failure. [ 588.920878][T24206] name failslab, interval 1, probability 0, space 0, times 0 [ 588.951365][T24206] CPU: 0 UID: 0 PID: 24206 Comm: syz.3.8637 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 588.951435][T24206] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 588.951453][T24206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 588.951475][T24206] Call Trace: [ 588.951488][T24206] [ 588.951502][T24206] dump_stack_lvl+0x100/0x190 [ 588.951564][T24206] should_fail_ex.cold+0x5/0xa [ 588.951604][T24206] should_failslab+0xc2/0x120 [ 588.951644][T24206] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 588.951699][T24206] ? ptlock_alloc+0x1f/0x70 [ 588.951755][T24206] ptlock_alloc+0x1f/0x70 [ 588.951801][T24206] pte_alloc_one+0x82/0x3d0 [ 588.951841][T24206] do_fault+0x88e/0x1990 [ 588.951880][T24206] ? __pmd_alloc+0x3fb/0x950 [ 588.951924][T24206] __handle_mm_fault+0x180f/0x2b60 [ 588.951978][T24206] ? mt_find+0x45e/0x8e0 [ 588.952034][T24206] ? __pfx___handle_mm_fault+0x10/0x10 [ 588.952080][T24206] ? __pfx_mt_find+0x10/0x10 [ 588.952165][T24206] ? find_vma+0xbf/0x140 [ 588.952198][T24206] ? __pfx_find_vma+0x10/0x10 [ 588.952237][T24206] handle_mm_fault+0x36d/0xa20 [ 588.952294][T24206] do_user_addr_fault+0x74c/0x12f0 [ 588.952365][T24206] exc_page_fault+0x6f/0xd0 [ 588.952416][T24206] asm_exc_page_fault+0x26/0x30 [ 588.952451][T24206] RIP: 0010:rep_movs_alternative+0x30/0x90 [ 588.952491][T24206] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 fd 93 04 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 [ 588.952528][T24206] RSP: 0018:ffffc900091afd90 EFLAGS: 00050216 [ 588.952557][T24206] RAX: 0000000000000001 RBX: 0000000000001298 RCX: 0000000000000020 [ 588.952579][T24206] RDX: 0000000000000001 RSI: 0000000000001298 RDI: ffffc900091afe30 [ 588.952603][T24206] RBP: 0000000000000020 R08: 0000000000000001 R09: fffff52001235fc9 [ 588.952626][T24206] R10: ffffc900091afe4f R11: 0000000000000000 R12: 0000000000000000 [ 588.952649][T24206] R13: ffffc900091afe30 R14: ffffc900091afe30 R15: dffffc0000000000 [ 588.952694][T24206] _copy_from_user+0x98/0xd0 [ 588.952738][T24206] do_fcntl+0xf0c/0x1670 [ 588.952785][T24206] ? __pfx_do_fcntl+0x10/0x10 [ 588.952828][T24206] ? __fget_files+0x215/0x3d0 [ 588.952878][T24206] ? tomoyo_file_fcntl+0x6c/0xc0 [ 588.952935][T24206] __x64_sys_fcntl+0x163/0x200 [ 588.952986][T24206] do_syscall_64+0x106/0xf80 [ 588.953034][T24206] ? clear_bhb_loop+0x40/0x90 [ 588.953077][T24206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.953113][T24206] RIP: 0033:0x7f396079c799 [ 588.953149][T24206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 588.953186][T24206] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 588.953219][T24206] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 588.953244][T24206] RDX: 0000000000001298 RSI: 0000000000000026 RDI: 0000000000000003 [ 588.953266][T24206] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 588.953288][T24206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 588.953309][T24206] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 588.953356][T24206] [ 589.338480][T24208] NFSD: Failed to start, no listeners configured. [ 589.851933][T24228] FAULT_INJECTION: forcing a failure. [ 589.851933][T24228] name failslab, interval 1, probability 0, space 0, times 0 [ 589.933449][T24228] CPU: 1 UID: 0 PID: 24228 Comm: syz.3.8642 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 589.933520][T24228] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 589.933551][T24228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 589.933573][T24228] Call Trace: [ 589.933586][T24228] [ 589.933600][T24228] dump_stack_lvl+0x100/0x190 [ 589.933675][T24228] should_fail_ex.cold+0x5/0xa [ 589.933715][T24228] should_failslab+0xc2/0x120 [ 589.933753][T24228] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 589.933804][T24228] ? security_file_alloc+0x34/0x2c0 [ 589.933845][T24228] ? trace_kmem_cache_alloc+0xf3/0x120 [ 589.933888][T24228] security_file_alloc+0x34/0x2c0 [ 589.933931][T24228] init_file+0x95/0x480 [ 589.933970][T24228] alloc_empty_file+0x73/0x1c0 [ 589.934015][T24228] alloc_file_pseudo+0x13a/0x230 [ 589.934080][T24228] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 589.934128][T24228] ? _raw_spin_unlock+0x28/0x50 [ 589.934170][T24228] ? alloc_fd+0x476/0x790 [ 589.934207][T24228] __anon_inode_getfile+0xe8/0x280 [ 589.934254][T24228] do_epoll_create+0x329/0x4b0 [ 589.934291][T24228] __x64_sys_epoll_create+0x45/0x70 [ 589.934328][T24228] do_syscall_64+0x106/0xf80 [ 589.934376][T24228] ? clear_bhb_loop+0x40/0x90 [ 589.934419][T24228] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.934455][T24228] RIP: 0033:0x7f396079c799 [ 589.934485][T24228] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 589.934521][T24228] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5 [ 589.934563][T24228] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 589.934587][T24228] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000003e [ 589.934609][T24228] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 589.934632][T24228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 589.934653][T24228] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 589.934699][T24228] [ 592.790010][T24315] FAULT_INJECTION: forcing a failure. [ 592.790010][T24315] name failslab, interval 1, probability 0, space 0, times 0 [ 592.851097][T24315] CPU: 1 UID: 0 PID: 24315 Comm: syz.3.8684 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 592.851166][T24315] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 592.851185][T24315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 592.851208][T24315] Call Trace: [ 592.851221][T24315] [ 592.851236][T24315] dump_stack_lvl+0x100/0x190 [ 592.851298][T24315] should_fail_ex.cold+0x5/0xa [ 592.851340][T24315] should_failslab+0xc2/0x120 [ 592.851380][T24315] __kmalloc_cache_noprof+0x7a/0x6f0 [ 592.851428][T24315] ? sctp_endpoint_new+0xfc/0xb20 [ 592.851482][T24315] ? __debug_object_init+0x2de/0x3d0 [ 592.851545][T24315] sctp_endpoint_new+0xfc/0xb20 [ 592.851600][T24315] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 592.851650][T24315] ? lockdep_init_map_type+0x5c/0x250 [ 592.851706][T24315] ? lockdep_init_map_type+0x5c/0x250 [ 592.851761][T24315] ? lockdep_init_map_type+0x5c/0x250 [ 592.851813][T24315] sctp_init_sock+0xe2b/0x1300 [ 592.851862][T24315] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 592.851911][T24315] sctp_v6_init_sock+0x16/0x70 [ 592.851957][T24315] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 592.852006][T24315] inet6_create+0xb21/0x12b0 [ 592.852059][T24315] ? inet6_create+0x7f/0x12b0 [ 592.852111][T24315] __sock_create+0x339/0x860 [ 592.852156][T24315] __sys_socket+0x14d/0x260 [ 592.852194][T24315] ? __pfx___sys_socket+0x10/0x10 [ 592.852244][T24315] __x64_sys_socket+0x72/0xb0 [ 592.852281][T24315] ? lockdep_hardirqs_on+0x78/0x100 [ 592.852331][T24315] do_syscall_64+0x106/0xf80 [ 592.852379][T24315] ? clear_bhb_loop+0x40/0x90 [ 592.852420][T24315] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 592.852454][T24315] RIP: 0033:0x7f396079c799 [ 592.852480][T24315] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 592.852512][T24315] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 592.852543][T24315] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 592.852562][T24315] RDX: 0000000000000084 RSI: 0000000000000001 RDI: 000000000000000a [ 592.852581][T24315] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 592.852601][T24315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 592.852621][T24315] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 592.852663][T24315] [ 594.321718][T24354] zswap: compressor û not available [ 595.110268][T24403] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8724'. [ 595.317619][T24410] FAULT_INJECTION: forcing a failure. [ 595.317619][T24410] name failslab, interval 1, probability 0, space 0, times 0 [ 595.332049][T24410] CPU: 0 UID: 0 PID: 24410 Comm: syz.3.8727 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 595.332116][T24410] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 595.332134][T24410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 595.332156][T24410] Call Trace: [ 595.332168][T24410] [ 595.332181][T24410] dump_stack_lvl+0x100/0x190 [ 595.332242][T24410] should_fail_ex.cold+0x5/0xa [ 595.332294][T24410] should_failslab+0xc2/0x120 [ 595.332333][T24410] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 595.332390][T24410] ? sk_prot_alloc+0x60/0x2a0 [ 595.332433][T24410] sk_prot_alloc+0x60/0x2a0 [ 595.332483][T24410] sk_alloc+0x36/0xe80 [ 595.332528][T24410] rds_create+0x9e/0x5f0 [ 595.332567][T24410] __sock_create+0x339/0x860 [ 595.332611][T24410] __sys_socket+0x14d/0x260 [ 595.332650][T24410] ? __pfx___sys_socket+0x10/0x10 [ 595.332700][T24410] __x64_sys_socket+0x72/0xb0 [ 595.332756][T24410] ? lockdep_hardirqs_on+0x78/0x100 [ 595.332806][T24410] do_syscall_64+0x106/0xf80 [ 595.332864][T24410] ? clear_bhb_loop+0x40/0x90 [ 595.332909][T24410] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.332944][T24410] RIP: 0033:0x7f396079c799 [ 595.332970][T24410] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.333022][T24410] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 595.333056][T24410] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 595.333080][T24410] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 595.333100][T24410] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 595.333121][T24410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.333142][T24410] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 595.333188][T24410] [ 597.240099][T24426] kexec: Could not allocate control_code_buffer [ 597.612359][T24488] FAULT_INJECTION: forcing a failure. [ 597.612359][T24488] name failslab, interval 1, probability 0, space 0, times 0 [ 597.636413][T24488] CPU: 0 UID: 0 PID: 24488 Comm: syz.3.8760 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 597.636485][T24488] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 597.636503][T24488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 597.636525][T24488] Call Trace: [ 597.636537][T24488] [ 597.636550][T24488] dump_stack_lvl+0x100/0x190 [ 597.636611][T24488] should_fail_ex.cold+0x5/0xa [ 597.636650][T24488] ? sk_prot_alloc+0x10b/0x2a0 [ 597.636682][T24488] should_failslab+0xc2/0x120 [ 597.636719][T24488] __kmalloc_noprof+0xe0/0x850 [ 597.636781][T24488] sk_prot_alloc+0x10b/0x2a0 [ 597.636846][T24488] sk_alloc+0x36/0xe80 [ 597.636892][T24488] xsk_create+0x117/0x760 [ 597.636933][T24488] __sock_create+0x339/0x860 [ 597.636981][T24488] __sys_socket+0x14d/0x260 [ 597.637020][T24488] ? __pfx___sys_socket+0x10/0x10 [ 597.637069][T24488] __x64_sys_socket+0x72/0xb0 [ 597.637106][T24488] ? lockdep_hardirqs_on+0x78/0x100 [ 597.637168][T24488] do_syscall_64+0x106/0xf80 [ 597.637213][T24488] ? clear_bhb_loop+0x40/0x90 [ 597.637274][T24488] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 597.637312][T24488] RIP: 0033:0x7f396079c799 [ 597.637340][T24488] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 597.637374][T24488] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 597.637413][T24488] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 597.637437][T24488] RDX: 0000000000000000 RSI: 0000000000080003 RDI: 000000000000002c [ 597.637459][T24488] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 597.637488][T24488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 597.637510][T24488] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 597.637554][T24488] [ 597.946535][T24490] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 598.962498][T24541] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 599.227222][T24554] bridge0: port 5(veth0_to_bridge) entered blocking state [ 599.263329][T24554] bridge0: port 5(veth0_to_bridge) entered disabled state [ 599.270819][T24554] veth0_to_bridge: entered allmulticast mode [ 599.294653][T24554] veth0_to_bridge: entered promiscuous mode [ 599.300881][T24554] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 599.373431][T24554] bridge0: port 5(veth0_to_bridge) entered blocking state [ 599.380793][T24554] bridge0: port 5(veth0_to_bridge) entered forwarding state [ 599.898184][ T30] audit: type=1804 audit(4294967297.700:22): pid=24587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.8814" name="/newroot/2015/file0" dev="tmpfs" ino=10167 res=1 errno=0 [ 600.007316][T24591] FAULT_INJECTION: forcing a failure. [ 600.007316][T24591] name failslab, interval 1, probability 0, space 0, times 0 [ 600.020649][T24591] CPU: 1 UID: 0 PID: 24591 Comm: syz.2.8808 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 600.020715][T24591] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 600.020733][T24591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 600.020756][T24591] Call Trace: [ 600.020768][T24591] [ 600.020782][T24591] dump_stack_lvl+0x100/0x190 [ 600.020843][T24591] should_fail_ex.cold+0x5/0xa [ 600.020883][T24591] should_failslab+0xc2/0x120 [ 600.020920][T24591] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 600.020973][T24591] ? __d_alloc+0x34/0xa80 [ 600.021020][T24591] __d_alloc+0x34/0xa80 [ 600.021063][T24591] d_alloc_pseudo+0x1c/0xc0 [ 600.021111][T24591] alloc_file_pseudo+0xcf/0x230 [ 600.021158][T24591] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 600.021201][T24591] ? alloc_fd+0x476/0x790 [ 600.021238][T24591] ? do_raw_spin_unlock+0x145/0x1e0 [ 600.021305][T24591] __anon_inode_getfile+0xe8/0x280 [ 600.021351][T24591] anon_inode_getfile_fmode+0x37/0xa0 [ 600.021396][T24591] do_signalfd4+0x1ed/0x480 [ 600.021444][T24591] __x64_sys_signalfd+0x120/0x1a0 [ 600.021486][T24591] ? __pfx___x64_sys_signalfd+0x10/0x10 [ 600.021544][T24591] do_syscall_64+0x106/0xf80 [ 600.021592][T24591] ? clear_bhb_loop+0x40/0x90 [ 600.021636][T24591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 600.021671][T24591] RIP: 0033:0x7f56bcb9c799 [ 600.021700][T24591] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 600.021736][T24591] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 000000000000011a [ 600.021770][T24591] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 600.021794][T24591] RDX: 0000000000000008 RSI: 00002000000000c0 RDI: ffffffffffffffff [ 600.021817][T24591] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 600.021839][T24591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 600.021861][T24591] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 600.021908][T24591] [ 600.557778][T24606] binder: 24605:24606 unknown command 1869768547 [ 600.565329][T24606] binder: 24605:24606 ioctl c0306201 0 returned -22 [ 600.833363][T24619] random: crng reseeded on system resumption [ 600.846715][T24618] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8821'. [ 601.326262][T24638] delete_channel: no stack [ 601.775555][T24665] FAULT_INJECTION: forcing a failure. [ 601.775555][T24665] name failslab, interval 1, probability 0, space 0, times 0 [ 601.793010][T24665] CPU: 1 UID: 0 PID: 24665 Comm: syz.2.8844 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 601.793078][T24665] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 601.793096][T24665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 601.793117][T24665] Call Trace: [ 601.793129][T24665] [ 601.793142][T24665] dump_stack_lvl+0x100/0x190 [ 601.793202][T24665] should_fail_ex.cold+0x5/0xa [ 601.793243][T24665] should_failslab+0xc2/0x120 [ 601.793281][T24665] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 601.793334][T24665] ? prepare_creds+0x2c/0x950 [ 601.793381][T24665] ? __sys_socket+0xac/0x260 [ 601.793428][T24665] prepare_creds+0x2c/0x950 [ 601.793484][T24665] __sys_setuid+0x9c/0x440 [ 601.793520][T24665] do_syscall_64+0x106/0xf80 [ 601.793569][T24665] ? clear_bhb_loop+0x40/0x90 [ 601.793614][T24665] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 601.793651][T24665] RIP: 0033:0x7f56bcb9c799 [ 601.793681][T24665] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 601.793725][T24665] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 601.793762][T24665] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 601.793786][T24665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 601.793807][T24665] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 601.793829][T24665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 601.793848][T24665] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 601.793893][T24665] [ 602.210755][T24675] NFSD: Failed to start, no listeners configured. [ 602.468502][T24682] zswap: compressor not available [ 603.044836][T24721] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8869'. [ 603.926322][T24765] FAULT_INJECTION: forcing a failure. [ 603.926322][T24765] name failslab, interval 1, probability 0, space 0, times 0 [ 603.965170][T24765] CPU: 0 UID: 0 PID: 24765 Comm: syz.3.8890 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 603.965234][T24765] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 603.965252][T24765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 603.965286][T24765] Call Trace: [ 603.965298][T24765] [ 603.965311][T24765] dump_stack_lvl+0x100/0x190 [ 603.965408][T24765] should_fail_ex.cold+0x5/0xa [ 603.965442][T24765] should_failslab+0xc2/0x120 [ 603.965478][T24765] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 603.965542][T24765] ? __d_alloc+0x34/0xa80 [ 603.965586][T24765] __d_alloc+0x34/0xa80 [ 603.965622][T24765] ? lockdep_hardirqs_on+0x78/0x100 [ 603.965673][T24765] d_alloc_pseudo+0x1c/0xc0 [ 603.965718][T24765] alloc_file_pseudo+0xcf/0x230 [ 603.965758][T24765] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 603.965794][T24765] ? alloc_fd+0x476/0x790 [ 603.965829][T24765] ? do_raw_spin_unlock+0x145/0x1e0 [ 603.965884][T24765] __anon_inode_getfile+0xe8/0x280 [ 603.965931][T24765] anon_inode_getfile_fmode+0x37/0xa0 [ 603.965975][T24765] __do_sys_timerfd_create+0x2d6/0x3f0 [ 603.966018][T24765] ? do_syscall_64+0x95/0xf80 [ 603.966067][T24765] do_syscall_64+0x106/0xf80 [ 603.966113][T24765] ? clear_bhb_loop+0x40/0x90 [ 603.966155][T24765] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 603.966189][T24765] RIP: 0033:0x7f396079c799 [ 603.966215][T24765] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 603.966248][T24765] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 000000000000011b [ 603.966279][T24765] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 603.966302][T24765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000009 [ 603.966321][T24765] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 603.966341][T24765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 603.966360][T24765] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 603.966403][T24765] [ 605.695726][T24822] random: crng reseeded on system resumption [ 606.991794][T24846] sctp: [Deprecated]: syz.2.8925 (pid 24846) Use of struct sctp_assoc_value in delayed_ack socket option. [ 606.991794][T24846] Use struct sctp_sack_info instead [ 607.698422][T24869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8936'. [ 608.421935][ T30] audit: type=1804 audit(4294967306.210:23): pid=24888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.8945" name="file0" dev="tmpfs" ino=11484 res=1 errno=0 [ 610.656817][T24962] ovs_ÿþÿþ?: entered promiscuous mode [ 610.813559][T24970] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input27 [ 611.298960][T24991] netlink: 'syz.1.8993': attribute type 4 has an invalid length. [ 611.310916][T24991] netlink: 62 bytes leftover after parsing attributes in process `syz.1.8993'. [ 612.552669][T25037] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9014'. [ 612.796166][T25048] FAULT_INJECTION: forcing a failure. [ 612.796166][T25048] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 612.819257][T25048] CPU: 0 UID: 0 PID: 25048 Comm: syz.1.9020 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 612.819323][T25048] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 612.819341][T25048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 612.819363][T25048] Call Trace: [ 612.819374][T25048] [ 612.819388][T25048] dump_stack_lvl+0x100/0x190 [ 612.819447][T25048] should_fail_ex.cold+0x5/0xa [ 612.819486][T25048] _copy_from_user+0x2e/0xd0 [ 612.819529][T25048] copy_mnt_id_req+0x108/0x350 [ 612.819582][T25048] __do_sys_listmount+0x184/0xee0 [ 612.819634][T25048] ? __pfx_do_futex+0x10/0x10 [ 612.819683][T25048] ? do_set_mempolicy+0x20a/0x3e0 [ 612.819720][T25048] ? __pfx_do_set_mempolicy+0x10/0x10 [ 612.819759][T25048] ? __pfx___do_sys_listmount+0x10/0x10 [ 612.819841][T25048] do_syscall_64+0x106/0xf80 [ 612.819892][T25048] ? clear_bhb_loop+0x40/0x90 [ 612.819934][T25048] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 612.819971][T25048] RIP: 0033:0x7fd174d9c799 [ 612.820000][T25048] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 612.820051][T25048] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 612.820086][T25048] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 612.820108][T25048] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 612.820130][T25048] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 612.820155][T25048] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 612.820177][T25048] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 612.820222][T25048] [ 613.505880][T25072] aoe: could not set interface list: too many interfaces [ 613.555764][T25074] FAULT_INJECTION: forcing a failure. [ 613.555764][T25074] name failslab, interval 1, probability 0, space 0, times 0 [ 613.570400][T25074] CPU: 0 UID: 0 PID: 25074 Comm: syz.1.9034 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 613.570464][T25074] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 613.570481][T25074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 613.570503][T25074] Call Trace: [ 613.570515][T25074] [ 613.570530][T25074] dump_stack_lvl+0x100/0x190 [ 613.570589][T25074] should_fail_ex.cold+0x5/0xa [ 613.570630][T25074] should_failslab+0xc2/0x120 [ 613.570667][T25074] __kmalloc_cache_noprof+0x7a/0x6f0 [ 613.570711][T25074] ? fsnotify_alloc_group+0x92/0x330 [ 613.570758][T25074] fsnotify_alloc_group+0x92/0x330 [ 613.570806][T25074] __do_sys_fanotify_init+0x342/0xe50 [ 613.570869][T25074] do_syscall_64+0x106/0xf80 [ 613.570918][T25074] ? clear_bhb_loop+0x40/0x90 [ 613.570960][T25074] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 613.570997][T25074] RIP: 0033:0x7fd174d9c799 [ 613.571026][T25074] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 613.571062][T25074] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 000000000000012c [ 613.571096][T25074] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 613.571120][T25074] RDX: 0000000000000000 RSI: 0002000000000002 RDI: 0000000000000005 [ 613.571141][T25074] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 613.571162][T25074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 613.571184][T25074] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 613.571230][T25074] [ 614.809939][T25119] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9054'. [ 618.328270][T25241] zswap: compressor û not available [ 618.475013][T25253] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9121'. [ 619.322412][T25290] device-mapper: ioctl: device name cannot be "control", ".", or ".." [ 621.306936][T25379] zswap: compressor û not available [ 621.458687][T25390] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input28 [ 622.427612][T25421] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9190'. [ 622.580416][T25423] syz.2.9191 (25423) used obsolete PPPIOCDETACH ioctl [ 622.714727][T25372] kexec: Could not allocate control_code_buffer [ 623.431927][T25466] FAULT_INJECTION: forcing a failure. [ 623.431927][T25466] name failslab, interval 1, probability 0, space 0, times 0 [ 623.447267][T25466] CPU: 0 UID: 0 PID: 25466 Comm: syz.2.9212 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 623.447332][T25466] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 623.447350][T25466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 623.447370][T25466] Call Trace: [ 623.447382][T25466] [ 623.447396][T25466] dump_stack_lvl+0x100/0x190 [ 623.447455][T25466] should_fail_ex.cold+0x5/0xa [ 623.447496][T25466] should_failslab+0xc2/0x120 [ 623.447534][T25466] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 623.447587][T25466] ? sk_prot_alloc+0x60/0x2a0 [ 623.447630][T25466] sk_prot_alloc+0x60/0x2a0 [ 623.447668][T25466] sk_alloc+0x36/0xe80 [ 623.447722][T25466] rds_create+0x9e/0x5f0 [ 623.447762][T25466] __sock_create+0x339/0x860 [ 623.447808][T25466] __sys_socket+0x14d/0x260 [ 623.447848][T25466] ? __pfx___sys_socket+0x10/0x10 [ 623.447900][T25466] __x64_sys_socket+0x72/0xb0 [ 623.447938][T25466] ? lockdep_hardirqs_on+0x78/0x100 [ 623.447988][T25466] do_syscall_64+0x106/0xf80 [ 623.448036][T25466] ? clear_bhb_loop+0x40/0x90 [ 623.448080][T25466] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 623.448117][T25466] RIP: 0033:0x7f56bcb9c799 [ 623.448147][T25466] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 623.448182][T25466] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 623.448217][T25466] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 623.448242][T25466] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000015 [ 623.448264][T25466] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 623.448285][T25466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 623.448306][T25466] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 623.448364][T25466] [ 624.220280][T25497] bridge0: port 5(ipvlan0) entered blocking state [ 624.226994][T25497] bridge0: port 5(ipvlan0) entered disabled state [ 624.246015][T25497] ipvlan0: entered allmulticast mode [ 624.251378][T25497] veth0_vlan: entered allmulticast mode [ 624.270418][T25497] ipvlan0: left allmulticast mode [ 624.287684][T25497] veth0_vlan: left allmulticast mode [ 624.369902][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.376386][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.777426][T25519] input: jJǸ-¶š9ã%vø“ûJ86Ö‘ as /devices/virtual/input/input29 [ 624.990910][T25525] could not allocate digest TFM handle  [ 625.524184][T25553] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9251'. [ 626.190527][ T30] audit: type=1326 audit(4294967323.990:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25583 comm="syz.1.9264" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd174d9c799 code=0x0 [ 626.410738][T25597] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9269'. [ 627.684171][T25640] syz.3.9288 (25640): /proc/25639/oom_adj is deprecated, please use /proc/25639/oom_score_adj instead. [ 629.225962][T25709] UHID_CREATE from different security context by process 4938 (syz.2.9321), this is not allowed. [ 629.480530][T25715] zswap: compressor not available [ 629.696254][T25732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9329'. [ 630.040279][T25747] bridge0: port 6(syz_tun) entered blocking state [ 630.086973][T25747] bridge0: port 6(syz_tun) entered disabled state [ 630.113605][T25747] syz_tun: entered allmulticast mode [ 630.163001][T25747] syz_tun: entered promiscuous mode [ 630.169061][T25747] bridge0: port 6(syz_tun) entered blocking state [ 630.175701][T25747] bridge0: port 6(syz_tun) entered forwarding state [ 630.968742][T25780] netlink: 2468 bytes leftover after parsing attributes in process `syz.2.9352'. [ 633.568800][T25867] FAULT_INJECTION: forcing a failure. [ 633.568800][T25867] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 633.628533][T25867] CPU: 1 UID: 0 PID: 25867 Comm: syz.1.9391 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 633.628599][T25867] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 633.628617][T25867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 633.628639][T25867] Call Trace: [ 633.628651][T25867] [ 633.628665][T25867] dump_stack_lvl+0x100/0x190 [ 633.628727][T25867] should_fail_ex.cold+0x5/0xa [ 633.628762][T25867] ? prepare_alloc_pages+0x16d/0x5f0 [ 633.628807][T25867] should_fail_alloc_page+0xeb/0x140 [ 633.628848][T25867] prepare_alloc_pages+0x1f0/0x5f0 [ 633.628907][T25867] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 633.628973][T25867] ? stack_trace_save+0x8e/0xc0 [ 633.629009][T25867] ? __pfx_stack_trace_save+0x10/0x10 [ 633.629047][T25867] ? stack_depot_save_flags+0x27/0x9d0 [ 633.629096][T25867] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 633.629150][T25867] ? kasan_save_stack+0x3f/0x50 [ 633.629201][T25867] ? kasan_save_track+0x14/0x30 [ 633.629253][T25867] ? alloc_ldt_struct+0x5d/0x1b0 [ 633.629307][T25867] ? write_ldt+0x62b/0xd40 [ 633.629337][T25867] ? __x64_sys_modify_ldt+0xb1/0x170 [ 633.629370][T25867] ? do_syscall_64+0x106/0xf80 [ 633.629419][T25867] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.629482][T25867] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 633.629544][T25867] ? policy_nodemask+0xed/0x4f0 [ 633.629585][T25867] alloc_pages_mpol+0x1fb/0x550 [ 633.629626][T25867] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 633.629675][T25867] alloc_pages_noprof+0x131/0x390 [ 633.629717][T25867] get_zeroed_page_noprof+0x18/0xb0 [ 633.629759][T25867] alloc_ldt_struct+0x9f/0x1b0 [ 633.629817][T25867] write_ldt+0x62b/0xd40 [ 633.629860][T25867] ? __pfx_write_ldt+0x10/0x10 [ 633.629908][T25867] ? xfd_validate_state+0x129/0x190 [ 633.629979][T25867] __x64_sys_modify_ldt+0xb1/0x170 [ 633.630018][T25867] do_syscall_64+0x106/0xf80 [ 633.630067][T25867] ? clear_bhb_loop+0x40/0x90 [ 633.630111][T25867] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 633.630147][T25867] RIP: 0033:0x7fd174d9c799 [ 633.630177][T25867] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 633.630214][T25867] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 633.630248][T25867] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 633.630272][T25867] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 633.630293][T25867] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 633.630315][T25867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 633.630336][T25867] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 633.630382][T25867] [ 636.195964][T25913] random: crng reseeded on system resumption [ 636.288377][T25915] FAULT_INJECTION: forcing a failure. [ 636.288377][T25915] name failslab, interval 1, probability 0, space 0, times 0 [ 636.333192][T25915] CPU: 0 UID: 0 PID: 25915 Comm: syz.1.9410 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 636.333257][T25915] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 636.333275][T25915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 636.333297][T25915] Call Trace: [ 636.333309][T25915] [ 636.333322][T25915] dump_stack_lvl+0x100/0x190 [ 636.333381][T25915] should_fail_ex.cold+0x5/0xa [ 636.333423][T25915] should_failslab+0xc2/0x120 [ 636.333460][T25915] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 636.333513][T25915] ? __d_alloc+0x34/0xa80 [ 636.333562][T25915] __d_alloc+0x34/0xa80 [ 636.333605][T25915] d_alloc_pseudo+0x1c/0xc0 [ 636.333655][T25915] alloc_file_pseudo+0xcf/0x230 [ 636.333712][T25915] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 636.333770][T25915] __shmem_file_setup+0x221/0x490 [ 636.333821][T25915] ? __pfx___shmem_file_setup+0x10/0x10 [ 636.333875][T25915] ? vm_area_alloc+0x1f/0x160 [ 636.333925][T25915] shmem_zero_setup+0x96/0x1b0 [ 636.333981][T25915] __mmap_region+0x2198/0x29e0 [ 636.334038][T25915] ? __pfx___mmap_region+0x10/0x10 [ 636.334099][T25915] ? set_next_entity+0x11e/0x9c0 [ 636.334157][T25915] ? __lock_acquire+0x4a5/0x2630 [ 636.334222][T25915] ? find_held_lock+0x2b/0x80 [ 636.334254][T25915] ? finish_task_switch.isra.0+0x200/0xb80 [ 636.334311][T25915] ? finish_task_switch.isra.0+0x200/0xb80 [ 636.334367][T25915] ? trace_sched_exit_tp+0x13a/0x180 [ 636.334411][T25915] ? __schedule+0x1000/0x6120 [ 636.334513][T25915] ? rcu_is_watching+0x12/0xc0 [ 636.334568][T25915] ? cap_capable+0x107/0x460 [ 636.334632][T25915] mmap_region+0x180/0x3e0 [ 636.334702][T25915] do_mmap+0xc63/0x12f0 [ 636.334751][T25915] ? __pfx_do_mmap+0x10/0x10 [ 636.334791][T25915] ? __pfx_down_write_killable+0x10/0x10 [ 636.334855][T25915] vm_mmap_pgoff+0x29e/0x470 [ 636.334904][T25915] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 636.334948][T25915] ? do_futex+0x192/0x350 [ 636.334995][T25915] ? __pfx_do_futex+0x10/0x10 [ 636.335050][T25915] ksys_mmap_pgoff+0xe1/0x650 [ 636.335090][T25915] ? __x64_sys_futex+0x34f/0x4d0 [ 636.335134][T25915] ? __x64_sys_futex+0x358/0x4d0 [ 636.335179][T25915] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 636.335218][T25915] ? xfd_validate_state+0x129/0x190 [ 636.335279][T25915] __x64_sys_mmap+0x125/0x190 [ 636.335337][T25915] do_syscall_64+0x106/0xf80 [ 636.335387][T25915] ? clear_bhb_loop+0x40/0x90 [ 636.335432][T25915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 636.335470][T25915] RIP: 0033:0x7fd174d9c799 [ 636.335499][T25915] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 636.335535][T25915] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 636.335568][T25915] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 636.335605][T25915] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000 [ 636.335626][T25915] RBP: 00007fd174e32c99 R08: fffffffffffffffa R09: 0000000000008000 [ 636.335649][T25915] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 636.335670][T25915] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 636.335724][T25915] [ 637.189976][T25929] Invalid ELF header magic: != ELF [ 637.524320][T25942] random: crng reseeded on system resumption [ 638.134138][T25952] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9427'. [ 638.818719][T25966] bridge_slave_1: left allmulticast mode [ 638.844330][T25966] bridge_slave_1: left promiscuous mode [ 638.852420][T25966] bridge0: port 2(bridge_slave_1) entered disabled state [ 640.100646][T26016] FAULT_INJECTION: forcing a failure. [ 640.100646][T26016] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 640.133135][T26016] CPU: 1 UID: 0 PID: 26016 Comm: syz.3.9456 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 640.133204][T26016] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 640.133223][T26016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 640.133247][T26016] Call Trace: [ 640.133260][T26016] [ 640.133274][T26016] dump_stack_lvl+0x100/0x190 [ 640.133338][T26016] should_fail_ex.cold+0x5/0xa [ 640.133373][T26016] ? prepare_alloc_pages+0x16d/0x5f0 [ 640.133420][T26016] should_fail_alloc_page+0xeb/0x140 [ 640.133463][T26016] prepare_alloc_pages+0x1f0/0x5f0 [ 640.133514][T26016] __alloc_frozen_pages_noprof+0x19a/0x2ba0 [ 640.133581][T26016] ? stack_trace_save+0x8e/0xc0 [ 640.133616][T26016] ? __pfx_stack_trace_save+0x10/0x10 [ 640.133652][T26016] ? stack_depot_save_flags+0x27/0x9d0 [ 640.133701][T26016] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 640.133757][T26016] ? kasan_save_stack+0x3f/0x50 [ 640.133827][T26016] ? kasan_save_track+0x14/0x30 [ 640.133879][T26016] ? alloc_ldt_struct+0x5d/0x1b0 [ 640.133941][T26016] ? write_ldt+0x62b/0xd40 [ 640.133970][T26016] ? __x64_sys_modify_ldt+0xb1/0x170 [ 640.134002][T26016] ? do_syscall_64+0x106/0xf80 [ 640.134048][T26016] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 640.134103][T26016] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 640.134163][T26016] ? policy_nodemask+0xed/0x4f0 [ 640.134201][T26016] alloc_pages_mpol+0x1fb/0x550 [ 640.134239][T26016] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 640.134287][T26016] alloc_pages_noprof+0x131/0x390 [ 640.134326][T26016] get_zeroed_page_noprof+0x18/0xb0 [ 640.134365][T26016] alloc_ldt_struct+0x9f/0x1b0 [ 640.134419][T26016] write_ldt+0x62b/0xd40 [ 640.134458][T26016] ? __pfx_write_ldt+0x10/0x10 [ 640.134494][T26016] ? xfd_validate_state+0x129/0x190 [ 640.134554][T26016] __x64_sys_modify_ldt+0xb1/0x170 [ 640.134590][T26016] do_syscall_64+0x106/0xf80 [ 640.134636][T26016] ? clear_bhb_loop+0x40/0x90 [ 640.134678][T26016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 640.134711][T26016] RIP: 0033:0x7f396079c799 [ 640.134740][T26016] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 640.134773][T26016] RSP: 002b:00007f39615e6028 EFLAGS: 00000246 ORIG_RAX: 000000000000009a [ 640.134806][T26016] RAX: ffffffffffffffda RBX: 00007f3960a15fa0 RCX: 00007f396079c799 [ 640.134828][T26016] RDX: 0000000000000010 RSI: 00002000000001c0 RDI: 0000000000000001 [ 640.134850][T26016] RBP: 00007f3960832c99 R08: 0000000000000000 R09: 0000000000000000 [ 640.134871][T26016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 640.134891][T26016] R13: 00007f3960a16038 R14: 00007f3960a15fa0 R15: 00007ffd20408558 [ 640.134945][T26016] [ 642.871163][T26106] bridge0: port 6(bond0) entered blocking state [ 642.880591][T26106] bridge0: port 6(bond0) entered disabled state [ 642.890753][T26106] bond0: entered allmulticast mode [ 642.899618][T26106] bond_slave_0: entered allmulticast mode [ 642.911332][T26106] bond_slave_1: entered allmulticast mode [ 642.939451][T26106] bond0: entered promiscuous mode [ 642.953152][T26106] bond_slave_0: entered promiscuous mode [ 642.970835][T26106] bond_slave_1: entered promiscuous mode [ 642.981705][T26106] bridge0: port 6(bond0) entered blocking state [ 642.988222][T26106] bridge0: port 6(bond0) entered forwarding state [ 644.133562][T26147] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9517'. [ 644.857729][T26180] FAULT_INJECTION: forcing a failure. [ 644.857729][T26180] name failslab, interval 1, probability 0, space 0, times 0 [ 644.895367][T26180] CPU: 1 UID: 0 PID: 26180 Comm: syz.2.9531 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 644.895431][T26180] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 644.895449][T26180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 644.895470][T26180] Call Trace: [ 644.895481][T26180] [ 644.895496][T26180] dump_stack_lvl+0x100/0x190 [ 644.895557][T26180] should_fail_ex.cold+0x5/0xa [ 644.895609][T26180] should_failslab+0xc2/0x120 [ 644.895647][T26180] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 644.895700][T26180] ? ptlock_alloc+0x1f/0x70 [ 644.895763][T26180] ptlock_alloc+0x1f/0x70 [ 644.895808][T26180] pte_alloc_one+0x82/0x3d0 [ 644.895850][T26180] do_fault+0x88e/0x1990 [ 644.895897][T26180] ? __pmd_alloc+0x3fb/0x950 [ 644.895943][T26180] __handle_mm_fault+0x180f/0x2b60 [ 644.895999][T26180] ? mt_find+0x45e/0x8e0 [ 644.896056][T26180] ? __pfx___handle_mm_fault+0x10/0x10 [ 644.896100][T26180] ? __pfx_mt_find+0x10/0x10 [ 644.896187][T26180] handle_mm_fault+0x36d/0xa20 [ 644.896244][T26180] __get_user_pages+0xf9c/0x34d0 [ 644.896300][T26180] ? __pfx___get_user_pages+0x10/0x10 [ 644.896352][T26180] populate_vma_page_range+0x267/0x3f0 [ 644.896397][T26180] ? __pfx_populate_vma_page_range+0x10/0x10 [ 644.896440][T26180] ? __pfx_find_vma_intersection+0x10/0x10 [ 644.896481][T26180] ? __pfx_apply_vma_lock_flags+0x10/0x10 [ 644.896540][T26180] __mm_populate+0x107/0x3a0 [ 644.896593][T26180] ? __pfx___mm_populate+0x10/0x10 [ 644.896638][T26180] ? up_write+0x290/0x4f0 [ 644.896693][T26180] do_mlock+0x3f0/0x7f0 [ 644.896750][T26180] ? __pfx_do_mlock+0x10/0x10 [ 644.896798][T26180] ? __x64_sys_futex+0x34f/0x4d0 [ 644.896842][T26180] ? __x64_sys_futex+0x358/0x4d0 [ 644.896891][T26180] ? xfd_validate_state+0x129/0x190 [ 644.896955][T26180] __x64_sys_mlock+0x59/0x80 [ 644.897007][T26180] do_syscall_64+0x106/0xf80 [ 644.897056][T26180] ? clear_bhb_loop+0x40/0x90 [ 644.897100][T26180] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 644.897137][T26180] RIP: 0033:0x7f56bcb9c799 [ 644.897168][T26180] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 644.897202][T26180] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 644.897234][T26180] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 644.897255][T26180] RDX: 0000000000000000 RSI: 0000000000080006 RDI: 0000000000000112 [ 644.897276][T26180] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 644.897295][T26180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 644.897315][T26180] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 644.897357][T26180] [ 645.445008][T26196] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 645.749278][T26207] netlink: 21 bytes leftover after parsing attributes in process `syz.3.9545'. [ 645.914449][T26220] netlink: 334 bytes leftover after parsing attributes in process `syz.2.9551'. [ 646.914152][T26266] netlink: 'syz.1.9570': attribute type 2 has an invalid length. [ 646.929869][T26267] FAULT_INJECTION: forcing a failure. [ 646.929869][T26267] name failslab, interval 1, probability 0, space 0, times 0 [ 646.963576][T26267] CPU: 0 UID: 0 PID: 26267 Comm: syz.2.9572 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 646.963640][T26267] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 646.963657][T26267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 646.963679][T26267] Call Trace: [ 646.963691][T26267] [ 646.963704][T26267] dump_stack_lvl+0x100/0x190 [ 646.963764][T26267] should_fail_ex.cold+0x5/0xa [ 646.963807][T26267] should_failslab+0xc2/0x120 [ 646.963845][T26267] __kvmalloc_node_noprof+0xfa/0xa00 [ 646.963901][T26267] ? keyctl_update_key+0xdf/0x160 [ 646.963964][T26267] keyctl_update_key+0xdf/0x160 [ 646.964023][T26267] __do_sys_keyctl+0x302/0x5a0 [ 646.964061][T26267] do_syscall_64+0x106/0xf80 [ 646.964112][T26267] ? clear_bhb_loop+0x40/0x90 [ 646.964156][T26267] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 646.964194][T26267] RIP: 0033:0x7f56bcb9c799 [ 646.964222][T26267] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 646.964258][T26267] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 646.964292][T26267] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 646.964316][T26267] RDX: 0000000000000107 RSI: ffffeffffffffffe RDI: 0000000000000002 [ 646.964339][T26267] RBP: 00007f56bcc32c99 R08: 000800000000000c R09: 0000000000000000 [ 646.964362][T26267] R10: 0000000000000803 R11: 0000000000000246 R12: 0000000000000000 [ 646.964383][T26267] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 646.964429][T26267] [ 647.410542][T26283] FAULT_INJECTION: forcing a failure. [ 647.410542][T26283] name failslab, interval 1, probability 0, space 0, times 0 [ 647.429063][T26283] CPU: 1 UID: 0 PID: 26283 Comm: syz.2.9579 Tainted: G U I L syzkaller #0 PREEMPT(full) [ 647.429128][T26283] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 647.429145][T26283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 647.429165][T26283] Call Trace: [ 647.429177][T26283] [ 647.429190][T26283] dump_stack_lvl+0x100/0x190 [ 647.429248][T26283] should_fail_ex.cold+0x5/0xa [ 647.429288][T26283] should_failslab+0xc2/0x120 [ 647.429324][T26283] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 647.429376][T26283] ? __d_alloc+0x34/0xa80 [ 647.429423][T26283] __d_alloc+0x34/0xa80 [ 647.429471][T26283] d_alloc+0x4a/0x1e0 [ 647.429532][T26283] lookup_one_qstr_excl+0x175/0x250 [ 647.429586][T26283] start_dirop+0x59/0xb0 [ 647.429645][T26283] simple_start_creating+0xf9/0x110 [ 647.429703][T26283] ? __pfx_simple_start_creating+0x10/0x10 [ 647.429759][T26283] ? mntput+0x70/0xa0 [ 647.429807][T26283] ? simple_pin_fs+0xa3/0x190 [ 647.429858][T26283] debugfs_start_creating.part.0+0x82/0x170 [ 647.429898][T26283] __debugfs_create_file+0xb3/0x4f0 [ 647.429947][T26283] debugfs_create_file_full+0x41/0x60 [ 647.429990][T26283] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 647.430036][T26283] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 647.430081][T26283] ? rcu_is_watching+0x12/0xc0 [ 647.430170][T26283] ? lockdep_init_map_type+0x5c/0x250 [ 647.430225][T26283] preinit_net.part.0+0x24e/0x8f0 [ 647.430279][T26283] copy_net_ns+0x339/0x7c0 [ 647.430316][T26283] create_new_namespaces+0x3ea/0xac0 [ 647.430363][T26283] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 647.430405][T26283] ksys_unshare+0x473/0xad0 [ 647.430448][T26283] ? __pfx_ksys_unshare+0x10/0x10 [ 647.430500][T26283] __x64_sys_unshare+0x31/0x40 [ 647.430540][T26283] do_syscall_64+0x106/0xf80 [ 647.430588][T26283] ? clear_bhb_loop+0x40/0x90 [ 647.430628][T26283] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 647.430662][T26283] RIP: 0033:0x7f56bcb9c799 [ 647.430688][T26283] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 647.430733][T26283] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 647.430761][T26283] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 647.430781][T26283] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 647.430799][T26283] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 647.430836][T26283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 647.430854][T26283] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 647.430900][T26283] [ 647.897737][T26290] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9582'. [ 648.900414][T26310] sctp: [Deprecated]: syz.0.9590 (pid 26310) Use of int in maxseg socket option. [ 648.900414][T26310] Use struct sctp_assoc_value instead [ 649.882571][T26336] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9601'. [ 652.604679][T26452] Invalid ELF header len 5 [ 653.010828][T26468] netlink: 'syz.0.9663': attribute type 33 has an invalid length. [ 653.319948][T26486] netlink: 'syz.2.9673': attribute type 4 has an invalid length. [ 653.328491][T26486] netlink: 62 bytes leftover after parsing attributes in process `syz.2.9673'. [ 653.864465][T26513] usbip-vudc usbip-vudc.0: gadget not bound [ 654.452195][ T30] audit: type=1800 audit(4294967352.250:25): pid=26544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.9699" name="lu_gp_id" dev="configfs" ino=77483 res=0 errno=0 [ 654.512995][T26544] ALUA LU Group already has a valid ID, ignoring request [ 655.084601][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.098529][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.112258][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.125830][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.139463][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.153156][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.166919][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.180684][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.194344][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 655.207993][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 656.033167][T26598] input: jJǸ-¶š9ã%vø“û¨lÐQ  J86Ö‘ as /devices/virtual/input/input30 [ 660.094069][ C0] net_ratelimit: 3748 callbacks suppressed [ 660.094101][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.113488][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.127005][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.142008][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.155527][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.169057][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.182635][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.196193][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.209686][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 660.223237][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 661.155145][T26675] kexec: Could not allocate control_code_buffer [ 661.583979][ C0] sched: DL replenish lagged too much [ 661.872230][T26701] could not allocate digest TFM handle  [ 665.104016][ C0] net_ratelimit: 4380 callbacks suppressed [ 665.104037][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.123381][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.136564][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.149704][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.162701][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.175880][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.189035][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.202403][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.215502][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 665.228712][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.113189][ C0] net_ratelimit: 5891 callbacks suppressed [ 670.113211][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.132373][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.145336][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.158326][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.171264][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.184439][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.197757][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.210855][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.224175][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 670.237459][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.123806][ C0] net_ratelimit: 6086 callbacks suppressed [ 675.123832][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.142952][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.156199][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.169559][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.182964][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.196315][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.209662][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.222713][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.235723][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 675.248559][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.133625][ C0] net_ratelimit: 2007 callbacks suppressed [ 680.133647][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.155352][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.171195][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.185799][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.200603][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.215380][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.230762][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.245692][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.260206][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 680.275250][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 681.867249][T26753] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 682.251733][T26754] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 682.308225][T26753] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 682.376995][T26753] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 682.410672][T26755] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 683.141971][T26753] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 683.231080][T26756] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 683.249856][T26754] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 683.331057][T26756] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 683.363870][T26755] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 683.567288][T26755] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 683.599442][T26755] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 683.684196][T26754] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 683.729970][T26755] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 683.749753][T26755] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 685.143207][ C0] net_ratelimit: 1762 callbacks suppressed [ 685.143228][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.164990][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.180866][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.195534][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.210574][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.225702][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.240658][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.255664][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.271026][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.286217][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 685.808342][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 685.820525][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.679113][T26752] Bluetooth: hci4: command tx timeout [ 690.154561][ C0] net_ratelimit: 1851 callbacks suppressed [ 690.154583][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.176187][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.190803][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.205555][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.220197][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.235041][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.249565][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.265185][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.280990][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 690.295845][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 692.003152][T26754] Bluetooth: hci6: command tx timeout [ 692.022061][T26754] Bluetooth: hci4: command tx timeout [ 692.045793][T26752] Bluetooth: hci5: command tx timeout [ 694.137733][T10080] Bluetooth: hci4: command tx timeout [ 694.155234][T10080] Bluetooth: hci5: command tx timeout [ 694.176735][T10080] Bluetooth: hci6: command tx timeout [ 695.166397][ C0] net_ratelimit: 1894 callbacks suppressed [ 695.166428][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.188187][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.204060][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.220002][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.234885][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.249788][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.264699][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.279328][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.294250][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 695.309044][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 696.300961][T10080] Bluetooth: hci6: command tx timeout [ 696.319933][T10080] Bluetooth: hci5: command tx timeout [ 696.582715][T10080] Bluetooth: hci4: command tx timeout [ 699.233776][T10080] Bluetooth: hci6: command tx timeout [ 699.251238][T10080] Bluetooth: hci5: command tx timeout [ 700.174906][ C0] net_ratelimit: 1792 callbacks suppressed [ 700.174928][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.197011][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.213280][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.229745][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.245929][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.261365][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.276207][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.291734][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.306513][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 700.321547][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.183581][ C0] net_ratelimit: 1848 callbacks suppressed [ 705.183602][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.205274][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.221042][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.236750][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.251279][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.266393][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.280889][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.295646][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.310175][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 705.326497][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.193299][ C0] net_ratelimit: 1838 callbacks suppressed [ 710.193320][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.215070][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.230949][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.246850][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.262689][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.278614][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.294570][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.311133][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.327451][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 710.343426][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.204354][ C0] net_ratelimit: 1898 callbacks suppressed [ 715.204375][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.226425][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.242388][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.258219][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.274196][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.290741][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.306660][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.322566][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.338401][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 715.354315][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.213988][ C0] net_ratelimit: 1856 callbacks suppressed [ 720.214010][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.235702][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.251508][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.267441][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.283751][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.299757][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.315697][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.332360][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.348367][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 720.364882][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.223826][ C0] net_ratelimit: 1900 callbacks suppressed [ 725.223848][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.245481][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.261334][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.277224][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.293318][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.309214][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.325100][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.341039][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.357727][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 725.373786][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.233921][ C0] net_ratelimit: 1906 callbacks suppressed [ 730.233943][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.255604][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.271531][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.287798][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.303836][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.319747][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.335665][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.352158][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.368125][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 730.384188][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.243253][ C0] net_ratelimit: 1861 callbacks suppressed [ 735.243274][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.265045][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.281007][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.296900][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.312927][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.328761][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.344619][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.360467][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.376327][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 735.393179][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.253627][ C0] net_ratelimit: 1755 callbacks suppressed [ 740.253648][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.275827][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.291793][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.306978][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.321654][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.336733][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.351403][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.366342][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.380957][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 740.396192][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 741.691029][T10093] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 741.729128][T26755] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 741.752242][T26756] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 741.848712][T26756] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 741.918204][T10093] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 741.950276][T26756] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 742.165980][T26755] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 742.304801][T10093] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 742.324513][T10093] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 742.498751][T26755] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 742.518636][T26756] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 742.575881][T10093] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 743.108894][T26754] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 743.141284][T26754] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 745.224071][T10080] Bluetooth: hci7: Opcode 0x0c23 failed: -110 [ 745.267100][ C0] net_ratelimit: 1735 callbacks suppressed [ 745.267120][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.287963][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.303790][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.318657][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.335005][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.350002][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.365285][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.380328][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.395538][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 745.412445][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 747.247719][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.254204][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 747.562924][T26773] Bluetooth: hci8: Opcode 0x0c1a failed: -110 [ 748.194118][T26752] Bluetooth: hci9: command tx timeout [ 748.826999][T10080] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 749.057555][T10080] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 749.102353][T10080] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 749.381669][T10080] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 749.855382][T10080] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 750.274132][ C0] net_ratelimit: 1765 callbacks suppressed [ 750.274153][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.296088][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.310762][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.325652][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.340310][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.356123][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.370766][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.385584][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.401065][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.415899][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 750.905427][T26752] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 750.940460][T26754] Bluetooth: hci9: command tx timeout [ 751.136544][T26752] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 751.322434][T26752] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 751.742592][T26752] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 751.891898][T26752] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 754.287374][T26752] Bluetooth: hci9: command tx timeout [ 754.304892][T26752] Bluetooth: hci7: command tx timeout [ 755.284553][ C0] net_ratelimit: 1845 callbacks suppressed [ 755.284575][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.306355][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.321141][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.335857][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.350512][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.365795][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.380473][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.395350][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.411267][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 755.426006][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 758.113201][T26752] Bluetooth: hci7: command tx timeout [ 758.130169][T26752] Bluetooth: hci9: command tx timeout [ 760.282909][T26783] Bluetooth: hci8: Opcode 0x0c1a failed: -110 [ 760.293436][ C0] net_ratelimit: 1858 callbacks suppressed [ 760.293464][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.315335][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.331215][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.347038][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.363174][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.379015][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.393966][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.408684][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.424885][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 760.439407][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 761.400006][T10080] Bluetooth: hci7: command tx timeout [ 765.303863][ C0] net_ratelimit: 1865 callbacks suppressed [ 765.303886][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.325400][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.340044][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.355894][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.370557][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.385743][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.401666][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.416515][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.431118][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 765.445968][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.315160][ C0] net_ratelimit: 1905 callbacks suppressed [ 770.315181][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.337039][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.352942][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.368850][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.383630][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.398156][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.413677][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.428324][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.443147][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 770.458121][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.333111][ C0] net_ratelimit: 1919 callbacks suppressed [ 775.333133][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.356023][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.372940][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.389904][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.406982][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.426676][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.443628][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.460454][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.477226][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 775.492885][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.344284][ C0] net_ratelimit: 1904 callbacks suppressed [ 780.344306][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.366153][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.382051][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.397920][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.413960][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.429818][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.446424][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.462303][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.476996][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.491894][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 780.786534][T26752] Bluetooth: hci7: command tx timeout [ 785.355344][ C0] net_ratelimit: 1859 callbacks suppressed [ 785.355366][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.377266][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.393214][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.409168][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.425091][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.441912][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.456569][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.471349][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.486001][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 785.501128][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.364598][ C0] net_ratelimit: 1887 callbacks suppressed [ 790.364620][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.386512][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.402510][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.418459][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.434430][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.450293][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.469249][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.485252][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.501161][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 790.516030][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.374878][ C0] net_ratelimit: 1888 callbacks suppressed [ 795.374903][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.396682][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.412844][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.428844][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.444607][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.460704][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.477861][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.493764][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.509896][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 795.525938][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.340884][T10093] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 800.362532][T26754] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 800.382912][ C0] net_ratelimit: 1774 callbacks suppressed [ 800.382932][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.404199][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.419046][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.434349][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.449366][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.465213][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.479902][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.494813][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.509483][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.525664][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 800.597568][T26754] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 800.985676][T10093] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 804.654570][T10080] Bluetooth: hci11: Opcode 0x1003 failed: -110 [ 804.911541][T10080] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 805.394772][ C0] net_ratelimit: 1823 callbacks suppressed [ 805.394794][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.416536][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.432433][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.447962][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.462646][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.477495][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.492608][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.507395][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.521983][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.536803][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 805.978404][T10093] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 806.185026][T10093] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 806.225512][T10080] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 806.269725][T10093] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 806.311638][T10080] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 806.562563][T10080] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 806.677844][T10080] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 808.043050][ T31] INFO: task kworker/u11:0:10045 blocked for more than 143 seconds. [ 808.051134][ T31] Tainted: G U I L syzkaller #0 [ 808.070907][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 808.080221][ T31] task:kworker/u11:0 state:D stack:22408 pid:10045 tgid:10045 ppid:2 task_flags:0x4208160 flags:0x00080000 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 808.092693][ T31] Workqueue: netns cleanup_net [ 808.097621][ T31] Call Trace: [ 808.113387][ T31] [ 808.117265][ T31] __schedule+0xfee/0x6120 [ 808.121798][ T31] ? __lock_acquire+0x4a5/0x2630 [ 808.142929][ T31] ? __pfx___schedule+0x10/0x10 [ 808.147876][ T31] ? find_held_lock+0x2b/0x80 [ 808.152615][ T31] ? schedule+0x2bf/0x390 [ 808.162981][ T31] schedule+0xdd/0x390 [ 808.167156][ T31] schedule_preempt_disabled+0x13/0x30 [ 808.172680][ T31] __mutex_lock+0xc9a/0x1b90 [ 808.262863][ T31] ? wg_netns_pre_exit+0x1b/0x250 [ 808.268020][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 808.342439][ T31] ? find_held_lock+0x2b/0x80 [ 808.355658][ T31] ? net_generic+0xea/0x2a0 [ 808.360285][ T31] ? net_generic+0xea/0x2a0 [ 808.403205][ T31] ? __pfx_wg_netns_pre_exit+0x10/0x10 [ 808.408796][ T31] ? wg_netns_pre_exit+0x1b/0x250 [ 808.462919][ T31] wg_netns_pre_exit+0x1b/0x250 [ 808.467999][ T31] ? __pfx_wg_netns_pre_exit+0x10/0x10 [ 808.502853][ T31] ops_undo_list+0x187/0xab0 [ 808.507582][ T31] ? __pfx_ops_undo_list+0x10/0x10 [ 808.512762][ T31] ? cleanup_net+0x332/0x920 [ 808.538182][ T31] ? cleanup_net+0x332/0x920 [ 808.562852][ T31] ? idr_destroy+0x62/0x2e0 [ 808.567479][ T31] cleanup_net+0x499/0x920 [ 808.571997][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 808.603488][ T31] ? rcu_is_watching+0x12/0xc0 [ 808.608388][ T31] process_one_work+0xa23/0x19a0 [ 808.632932][ T31] ? __pfx_process_one_work+0x10/0x10 [ 808.638434][ T31] ? __pfx_cleanup_net+0x10/0x10 [ 808.662888][ T31] worker_thread+0x5ef/0xe50 [ 808.667752][ T31] ? kthread+0x13a/0x450 [ 808.672070][ T31] ? __pfx_worker_thread+0x10/0x10 [ 808.688588][ T1303] ieee802154 phy0 wpan0: encryption failed: -22 [ 808.695079][ T1303] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.732920][ T31] kthread+0x370/0x450 [ 808.737141][ T31] ? __pfx_kthread+0x10/0x10 [ 808.742477][ T31] ret_from_fork+0x754/0xd80 [ 808.772913][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 808.778588][ T31] ? __switch_to+0x7b4/0x1120 [ 808.802445][ T31] ? __pfx_kthread+0x10/0x10 [ 808.816827][ T31] ret_from_fork_asm+0x1a/0x30 [ 808.821717][ T31] [ 808.842745][ T31] INFO: task kworker/0:0:19791 blocked for more than 144 seconds. [ 808.852673][ T31] Tainted: G U I L syzkaller #0 [ 808.912904][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 808.921654][ T31] task:kworker/0:0 state:D stack:25928 pid:19791 tgid:19791 ppid:2 task_flags:0x4208060 flags:0x00080000 [ 809.002848][ T31] Workqueue: events_power_efficient reg_check_chans_work [ 809.010002][ T31] Call Trace: [ 809.052933][ T31] [ 809.055990][ T31] __schedule+0xfee/0x6120 [ 809.060515][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 809.092915][ T31] ? __pfx___schedule+0x10/0x10 [ 809.097919][ T31] ? find_held_lock+0x2b/0x80 [ 809.102657][ T31] ? schedule+0x2bf/0x390 [ 809.162941][ T31] schedule+0xdd/0x390 [ 809.167133][ T31] schedule_preempt_disabled+0x13/0x30 [ 809.172662][ T31] __mutex_lock+0xc9a/0x1b90 [ 809.195037][ T31] ? reg_check_chans_work+0x12f/0x11d0 [ 809.200606][ T31] ? reg_check_chans_work+0x7a5/0x11d0 [ 809.215296][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 809.220431][ T31] ? __mutex_unlock_slowpath+0x15c/0x790 [ 809.226816][ T31] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 809.233209][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.238059][ T31] ? cfg80211_reg_check_beaconing+0x207/0xbe0 [ 809.244688][ T31] ? do_raw_spin_lock+0x128/0x260 [ 809.249806][ T31] ? reg_check_chans_work+0x12f/0x11d0 [ 809.256444][ T31] reg_check_chans_work+0x12f/0x11d0 [ 809.261842][ T31] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 809.268283][ T31] ? __pfx_reg_check_chans_work+0x10/0x10 [ 809.274393][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.279249][ T31] process_one_work+0xa23/0x19a0 [ 809.284820][ T31] ? __pfx_process_one_work+0x10/0x10 [ 809.290290][ T31] ? __pfx_reg_check_chans_work+0x10/0x10 [ 809.296698][ T31] worker_thread+0x5ef/0xe50 [ 809.301395][ T31] ? __pfx_worker_thread+0x10/0x10 [ 809.307119][ T31] ? kthread+0x13a/0x450 [ 809.311446][ T31] ? __pfx_worker_thread+0x10/0x10 [ 809.317165][ T31] kthread+0x370/0x450 [ 809.321320][ T31] ? __pfx_kthread+0x10/0x10 [ 809.326539][ T31] ret_from_fork+0x754/0xd80 [ 809.331225][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 809.336979][ T31] ? __switch_to+0x7b4/0x1120 [ 809.341739][ T31] ? __pfx_kthread+0x10/0x10 [ 809.346953][ T31] ret_from_fork_asm+0x1a/0x30 [ 809.360282][ T31] [ 809.363770][ T31] INFO: task syz.0.9789:26722 blocked for more than 144 seconds. [ 809.371555][ T31] Tainted: G U I L syzkaller #0 [ 809.378591][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 809.387722][ T31] task:syz.0.9789 state:D stack:27880 pid:26722 tgid:26720 ppid:5824 task_flags:0x400040 flags:0x00080002 [ 809.400164][ T31] Call Trace: [ 809.403842][ T31] [ 809.406829][ T31] __schedule+0xfee/0x6120 [ 809.411321][ T31] ? __lock_acquire+0x4a5/0x2630 [ 809.416922][ T31] ? __pfx___schedule+0x10/0x10 [ 809.421865][ T31] ? find_held_lock+0x2b/0x80 [ 809.427100][ T31] ? schedule+0x2bf/0x390 [ 809.431510][ T31] schedule+0xdd/0x390 [ 809.436142][ T31] schedule_preempt_disabled+0x13/0x30 [ 809.441678][ T31] __mutex_lock+0xc9a/0x1b90 [ 809.446837][ T31] ? rtnl_dumpit+0x18f/0x1f0 [ 809.451539][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.456841][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 809.462572][ T31] ? __alloc_skb+0x185/0x710 [ 809.467772][ T31] ? trace_kmem_cache_alloc+0xe1/0x120 [ 809.474036][ T31] ? __kasan_slab_alloc+0x60/0x90 [ 809.479136][ T31] ? __asan_memset+0x23/0x50 [ 809.484156][ T31] ? __alloc_skb+0x4e9/0x710 [ 809.488826][ T31] ? __alloc_skb+0x5b7/0x710 [ 809.494129][ T31] ? __pfx_tc_dump_chain+0x10/0x10 [ 809.499337][ T31] ? rtnl_dumpit+0x18f/0x1f0 [ 809.504543][ T31] rtnl_dumpit+0x18f/0x1f0 [ 809.509035][ T31] netlink_dump+0x539/0xd30 [ 809.514120][ T31] ? __pfx_netlink_dump+0x10/0x10 [ 809.519230][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 809.524994][ T31] ? __netlink_lookup+0x65c/0x900 [ 809.530128][ T31] __netlink_dump_start+0x6d6/0x990 [ 809.535905][ T31] ? __pfx_tc_dump_chain+0x10/0x10 [ 809.541100][ T31] rtnetlink_rcv_msg+0xb3e/0xe90 [ 809.546648][ T31] ? __pfx_tc_dump_chain+0x10/0x10 [ 809.551846][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 809.557798][ T31] ? __pfx_rtnl_dumpit+0x10/0x10 [ 809.569539][ T31] ? __pfx_tc_dump_chain+0x10/0x10 [ 809.575042][ T31] ? ref_tracker_free+0x37e/0x6c0 [ 809.580234][ T31] netlink_rcv_skb+0x159/0x420 [ 809.585699][ T31] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 809.591250][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 809.597109][ T31] ? netlink_deliver_tap+0x1ae/0xcc0 [ 809.602497][ T31] netlink_unicast+0x5aa/0x870 [ 809.607859][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 809.613508][ T31] ? __pfx___might_resched+0x10/0x10 [ 809.618874][ T31] ? __lock_acquire+0x4a5/0x2630 [ 809.624400][ T31] netlink_sendmsg+0x8b0/0xda0 [ 809.629265][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 809.639488][ T31] ? __import_iovec+0x1d2/0x640 [ 809.644964][ T31] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 809.650695][ T31] ____sys_sendmsg+0x9e1/0xb70 [ 809.655979][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 809.661369][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 809.667985][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.673150][ T31] ? ___sys_sendmsg+0x19d/0x1e0 [ 809.678071][ T31] ? kfree+0x2ec/0x6b0 [ 809.682219][ T31] ___sys_sendmsg+0x190/0x1e0 [ 809.687637][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 809.693279][ T31] ? __pfx___might_resched+0x10/0x10 [ 809.698750][ T31] __sys_sendmmsg+0x205/0x430 [ 809.704099][ T31] ? __pfx___sys_sendmmsg+0x10/0x10 [ 809.709490][ T31] ? __pfx_do_futex+0x10/0x10 [ 809.714728][ T31] ? xfd_validate_state+0x129/0x190 [ 809.720014][ T31] __x64_sys_sendmmsg+0x9c/0x100 [ 809.725549][ T31] ? lockdep_hardirqs_on+0x78/0x100 [ 809.731178][ T31] do_syscall_64+0x106/0xf80 [ 809.736308][ T31] ? clear_bhb_loop+0x40/0x90 [ 809.741060][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 809.747658][ T31] RIP: 0033:0x7f697d39c799 [ 809.752130][ T31] RSP: 002b:00007f697e251028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 809.761105][ T31] RAX: ffffffffffffffda RBX: 00007f697d615fa0 RCX: 00007f697d39c799 [ 809.770218][ T31] RDX: 00000000fffffffd RSI: 0000200000000200 RDI: 0000000000000003 [ 809.778595][ T31] RBP: 00007f697d432c99 R08: 0000000000000000 R09: 0000000000000000 [ 809.787064][ T31] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000 [ 809.795422][ T31] R13: 00007f697d616038 R14: 00007f697d615fa0 R15: 00007ffd302df9d8 [ 809.803839][ T31] [ 809.806915][ T31] INFO: task syz.2.9785:26732 blocked for more than 145 seconds. [ 809.815113][ T31] Tainted: G U I L syzkaller #0 [ 809.821672][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 809.830976][ T31] task:syz.2.9785 state:D stack:27336 pid:26732 tgid:26730 ppid:5827 task_flags:0x400140 flags:0x00080002 [ 809.843570][ T31] Call Trace: [ 809.846975][ T31] [ 809.849958][ T31] __schedule+0xfee/0x6120 [ 809.855068][ T31] ? __lock_acquire+0x4a5/0x2630 [ 809.860109][ T31] ? kasan_save_stack+0x3f/0x50 [ 809.865554][ T31] ? __kasan_kmalloc+0xaa/0xb0 [ 809.871036][ T31] ? __pfx___schedule+0x10/0x10 [ 809.876564][ T31] ? find_held_lock+0x2b/0x80 [ 809.881316][ T31] ? schedule+0x2bf/0x390 [ 809.886755][ T31] schedule+0xdd/0x390 [ 809.890912][ T31] schedule_preempt_disabled+0x13/0x30 [ 809.896899][ T31] __mutex_lock+0xc9a/0x1b90 [ 809.901569][ T31] ? nl80211_pre_doit+0xb4/0xae0 [ 809.907128][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 809.912235][ T31] ? __pfx___nla_validate_parse+0x10/0x10 [ 809.918526][ T31] ? rcu_is_watching+0x12/0xc0 [ 809.923710][ T31] ? __nla_parse+0x40/0x60 [ 809.928221][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 809.934095][ T31] ? nl80211_pre_doit+0xb4/0xae0 [ 809.939101][ T31] nl80211_pre_doit+0xb4/0xae0 [ 809.944450][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 809.949888][ T31] genl_family_rcv_msg_doit+0x1ce/0x300 [ 809.955959][ T31] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 809.962099][ T31] ? genl_get_cmd+0x3ef/0x720 [ 809.967346][ T31] ? bpf_lsm_capable+0x9/0x10 [ 809.972714][ T31] ? security_capable+0x80/0x260 [ 809.978197][ T31] ? ns_capable+0xd2/0xf0 [ 809.982586][ T31] genl_rcv_msg+0x560/0x800 [ 809.987683][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 809.993079][ T31] ? __pfx_nl80211_pre_doit+0x10/0x10 [ 809.998523][ T31] ? __pfx_nl80211_trigger_scan+0x10/0x10 [ 810.004821][ T31] ? __pfx_nl80211_post_doit+0x10/0x10 [ 810.010368][ T31] netlink_rcv_skb+0x159/0x420 [ 810.015688][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 810.020783][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 810.026695][ T31] ? netlink_deliver_tap+0x1ae/0xcc0 [ 810.032064][ T31] genl_rcv+0x28/0x40 [ 810.036611][ T31] netlink_unicast+0x5aa/0x870 [ 810.041470][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 810.047358][ T31] ? __pfx___might_resched+0x10/0x10 [ 810.053064][ T31] ? __lock_acquire+0x4a5/0x2630 [ 810.058085][ T31] netlink_sendmsg+0x8b0/0xda0 [ 810.063441][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 810.068803][ T31] ? __import_iovec+0x1d2/0x640 [ 810.074752][ T31] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 810.080487][ T31] ____sys_sendmsg+0x9e1/0xb70 [ 810.085807][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 810.091172][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 810.092628][T26754] Bluetooth: hci11: command tx timeout [ 810.097106][ T31] ? try_to_wake_up+0x644/0x1a80 [ 810.097163][ T31] ___sys_sendmsg+0x190/0x1e0 [ 810.097210][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 810.097250][ T31] ? futex_private_hash_put+0x107/0x1c0 [ 810.097341][ T31] __sys_sendmsg+0x170/0x220 [ 810.097393][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 810.097454][ T31] ? __x64_sys_futex+0x34f/0x4d0 [ 810.097527][ T31] do_syscall_64+0x106/0xf80 [ 810.097576][ T31] ? clear_bhb_loop+0x40/0x90 [ 810.097619][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 810.097657][ T31] RIP: 0033:0x7f56bcb9c799 [ 810.097686][ T31] RSP: 002b:00007f56bdae9028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 810.097722][ T31] RAX: ffffffffffffffda RBX: 00007f56bce15fa0 RCX: 00007f56bcb9c799 [ 810.097746][ T31] RDX: 0000000004000000 RSI: 0000200000000080 RDI: 0000000000000003 [ 810.097767][ T31] RBP: 00007f56bcc32c99 R08: 0000000000000000 R09: 0000000000000000 [ 810.097788][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 810.097809][ T31] R13: 00007f56bce16038 R14: 00007f56bce15fa0 R15: 00007ffed4c4df18 [ 810.097857][ T31] [ 810.097880][ T31] INFO: task syz.1.9786:26734 blocked for more than 145 seconds. [ 810.097908][ T31] Tainted: G U I L syzkaller #0 [ 810.097928][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 810.098037][ T31] task:syz.1.9786 state:D stack:27464 pid:26734 tgid:26733 ppid:5825 task_flags:0x400040 flags:0x00080002 [ 810.098160][ T31] Call Trace: [ 810.098172][ T31] [ 810.098193][ T31] __schedule+0xfee/0x6120 [ 810.098240][ T31] ? __lock_acquire+0x4a5/0x2630 [ 810.098291][ T31] ? __alloc_skb+0x185/0x710 [ 810.098337][ T31] ? genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 810.098388][ T31] ? __pfx___schedule+0x10/0x10 [ 810.098439][ T31] ? find_held_lock+0x2b/0x80 [ 810.098476][ T31] ? schedule+0x2bf/0x390 [ 810.098527][ T31] schedule+0xdd/0x390 [ 810.098571][ T31] schedule_preempt_disabled+0x13/0x30 [ 810.098617][ T31] __mutex_lock+0xc9a/0x1b90 [ 810.098672][ T31] ? nl80211_dump_wiphy+0x47/0x7b0 [ 810.098730][ T31] ? __pfx___mutex_lock+0x10/0x10 [ 810.098783][ T31] ? rcu_is_watching+0x12/0xc0 [ 810.098838][ T31] ? __kasan_kmalloc+0xaa/0xb0 [ 810.098898][ T31] ? trace_kmem_cache_alloc+0xe1/0x120 [ 810.098936][ T31] ? __kasan_slab_alloc+0x60/0x90 [ 810.098984][ T31] ? nl80211_dump_wiphy+0x47/0x7b0 [ 810.099030][ T31] ? rtnl_lock+0x9/0x20 [ 810.099064][ T31] nl80211_dump_wiphy+0x47/0x7b0 [ 810.099110][ T31] ? __alloc_skb+0x4e9/0x710 [ 810.099155][ T31] ? __alloc_skb+0x5b7/0x710 [ 810.099202][ T31] ? __pfx___alloc_skb+0x10/0x10 [ 810.099255][ T31] genl_dumpit+0x125/0x230 [ 810.099294][ T31] netlink_dump+0x539/0xd30 [ 810.099350][ T31] ? __pfx_netlink_dump+0x10/0x10 [ 810.099418][ T31] ? __asan_memset+0x23/0x50 [ 810.099476][ T31] ? genl_start+0x67a/0x970 [ 810.099516][ T31] __netlink_dump_start+0x6d6/0x990 [ 810.099581][ T31] genl_family_rcv_msg_dumpit+0x1e2/0x2e0 [ 810.099626][ T31] ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10 [ 810.099677][ T31] ? __pfx_genl_get_cmd+0x10/0x10 [ 810.099731][ T31] ? __pfx_genl_start+0x10/0x10 [ 810.099765][ T31] ? __pfx_genl_dumpit+0x10/0x10 [ 810.099798][ T31] ? __pfx_genl_done+0x10/0x10 [ 810.099839][ T31] ? __dev_queue_xmit+0x5af/0x4800 [ 810.099879][ T31] ? __radix_tree_lookup+0x217/0x2b0 [ 810.099932][ T31] genl_rcv_msg+0x471/0x800 [ 810.099976][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 810.100015][ T31] ? __pfx_nl80211_dump_wiphy+0x10/0x10 [ 810.100062][ T31] ? __pfx_nl80211_dump_wiphy_done+0x10/0x10 [ 810.100131][ T31] netlink_rcv_skb+0x159/0x420 [ 810.100185][ T31] ? __pfx_genl_rcv_msg+0x10/0x10 [ 810.100222][ T31] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 810.100294][ T31] ? netlink_deliver_tap+0x1ae/0xcc0 [ 810.100353][ T31] genl_rcv+0x28/0x40 [ 810.100386][ T31] netlink_unicast+0x5aa/0x870 [ 810.100453][ T31] ? __pfx_netlink_unicast+0x10/0x10 [ 810.100506][ T31] ? __pfx___might_resched+0x10/0x10 [ 810.100557][ T31] ? __lock_acquire+0x4a5/0x2630 [ 810.100614][ T31] netlink_sendmsg+0x8b0/0xda0 [ 810.100676][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 810.100728][ T31] ? __import_iovec+0x1d2/0x640 [ 810.100776][ T31] ? aa_sock_msg_perm.isra.0+0x100/0x1b0 [ 810.100837][ T31] ____sys_sendmsg+0x9e1/0xb70 [ 810.100872][ T31] ? __pfx_netlink_sendmsg+0x10/0x10 [ 810.100929][ T31] ? __pfx_____sys_sendmsg+0x10/0x10 [ 810.100977][ T31] ? __pfx_futex_wake_mark+0x10/0x10 [ 810.101037][ T31] ___sys_sendmsg+0x190/0x1e0 [ 810.101080][ T31] ? __pfx____sys_sendmsg+0x10/0x10 [ 810.101173][ T31] __sys_sendmsg+0x170/0x220 [ 810.101226][ T31] ? __pfx___sys_sendmsg+0x10/0x10 [ 810.101276][ T31] ? __x64_sys_futex+0x34f/0x4d0 [ 810.101346][ T31] do_syscall_64+0x106/0xf80 [ 810.101393][ T31] ? clear_bhb_loop+0x40/0x90 [ 810.101446][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 810.101483][ T31] RIP: 0033:0x7fd174d9c799 [ 810.101512][ T31] RSP: 002b:00007fd175c85028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 810.101548][ T31] RAX: ffffffffffffffda RBX: 00007fd175015fa0 RCX: 00007fd174d9c799 [ 810.101574][ T31] RDX: 000000000000c004 RSI: 0000200000000000 RDI: 0000000000000003 [ 810.101598][ T31] RBP: 00007fd174e32c99 R08: 0000000000000000 R09: 0000000000000000 [ 810.101622][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 810.101646][ T31] R13: 00007fd175016038 R14: 00007fd175015fa0 R15: 00007ffcec48f0e8 [ 810.101694][ T31] [ 810.101735][ T31] [ 810.101735][ T31] Showing all locks held in the system: [ 810.101759][ T31] 2 locks held by kworker/1:0/24: [ 810.101780][ T31] #0: ffff88813fe63148 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.101884][ T31] #1: ffffc900001e7d08 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.101986][ T31] 1 lock held by khungtaskd/31: [ 810.102006][ T31] #0: ffffffff8e7e74e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x3d/0x184 [ 810.102113][ T31] 1 lock held by khugepaged/38: [ 810.102134][ T31] #0: ffffffff8e9383a8 (lock#5){+.+.}-{4:4}, at: __lru_add_drain_all+0x6a/0x650 [ 810.102251][ T31] 3 locks held by kworker/R-ipv6_/3187: [ 810.102273][ T31] #0: ffff888033a30948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.102377][ T31] #1: ffffc9000ee8fc70 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.102491][ T31] #2: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30 [ 810.102602][ T31] 2 locks held by kworker/R-bat_e/3412: [ 810.102628][ T31] 2 locks held by kworker/0:3/5829: [ 810.102655][ T31] 3 locks held by kworker/0:4/5885: [ 810.102678][ T31] 3 locks held by kworker/0:5/5915: [ 810.102700][ T31] 4 locks held by kworker/u11:0/10045: [ 810.102722][ T31] #0: ffff88801c6ae948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.107886][ T31] #1: ffffc90009607d08 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.107990][ T31] #2: ffffffff905fb910 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xb8/0x920 [ 810.108096][ T31] #3: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: wg_netns_pre_exit+0x1b/0x250 [ 810.108201][ T31] 3 locks held by kworker/u11:1/10051: [ 810.108223][ T31] 3 locks held by kworker/u11:2/10054: [ 810.108244][ T31] 3 locks held by kworker/u12:1/10080: [ 810.108268][ T31] 2 locks held by kworker/u11:3/10260: [ 810.108289][ T31] #0: ffff88813fea4948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.108400][ T31] #1: ffffc90005e87d08 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.108513][ T31] 3 locks held by kworker/u11:4/10414: [ 810.108535][ T31] 3 locks held by kworker/u11:5/14545: [ 810.108558][ T31] 4 locks held by kworker/0:0/19791: [ 810.108579][ T31] #0: ffff88813fe61d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.108682][ T31] #1: ffffc90004a2fd08 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.108783][ T31] #2: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x91/0x11d0 [ 810.108886][ T31] #3: ffff888078848788 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: reg_check_chans_work+0x12f/0x11d0 [ 810.108990][ T31] 2 locks held by getty/23827: [ 810.109010][ T31] #0: ffff8880394d00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 810.109108][ T31] #1: ffffc900067cd2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x419/0x1500 [ 810.109210][ T31] 4 locks held by kworker/u11:6/26711: [ 810.109232][ T31] #0: ffff888037b66148 ((wq_completion)wg-kex-wg1#3){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.109344][ T31] #1: ffffc9000e07fd08 ((work_completion)(&peer->transmit_handshake_work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.109457][ T31] #2: ffff88807e601348 (&wg->static_identity.lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0xec/0x610 [ 810.109571][ T31] #3: ffff88803381aad8 (&handshake->lock){++++}-{4:4}, at: wg_noise_handshake_create_initiation+0x100/0x610 [ 810.109678][ T31] 3 locks held by kworker/u11:7/26715: [ 810.109700][ T31] #0: ffff88813fea4148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.109803][ T31] #1: ffffc9000e09fd08 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.109907][ T31] #2: ffff88802b870788 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0x92/0x5c0 [ 810.110012][ T31] 2 locks held by syz.0.9789/26722: [ 810.110033][ T31] #0: ffff88802afea6f0 (nlk_cb_mutex-ROUTE){+.+.}-{4:4}, at: __netlink_dump_start+0x150/0x990 [ 810.110139][ T31] #1: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_dumpit+0x18f/0x1f0 [ 810.110226][ T31] 2 locks held by syz.2.9785/26732: [ 810.110247][ T31] #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 810.110329][ T31] #1: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_pre_doit+0xb4/0xae0 [ 810.110428][ T31] 2 locks held by kworker/u11:8/26731: [ 810.110450][ T31] #0: ffff88813fea4948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.110562][ T31] #1: ffffc9000e06fd08 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.110665][ T31] 3 locks held by syz.1.9786/26734: [ 810.110686][ T31] #0: ffffffff906c04d0 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40 [ 810.110768][ T31] #1: ffff888029fbe6f0 (nlk_cb_mutex-GENERIC){+.+.}-{4:4}, at: __netlink_dump_start+0x150/0x990 [ 810.110871][ T31] #2: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: nl80211_dump_wiphy+0x47/0x7b0 [ 810.110969][ T31] 2 locks held by kworker/u11:9/26736: [ 810.110991][ T31] #0: ffff88813fea4948 ((wq_completion)events_unbound#2){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.111102][ T31] #1: ffffc9000e0cfd08 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.111212][ T31] 3 locks held by kworker/u11:10/26737: [ 810.111234][ T31] #0: ffff88813fea4148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x1310/0x19a0 [ 810.111337][ T31] #1: ffffc9000e0afd08 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_one_work+0x988/0x19a0 [ 810.111447][ T31] #2: ffff88805b138788 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0x92/0x5c0 [ 810.111550][ T31] 1 lock held by syz-executor/26745: [ 810.111572][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.111675][ T31] 1 lock held by syz-executor/26748: [ 810.111697][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.111800][ T31] 1 lock held by syz-executor/26750: [ 810.111821][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.111922][ T31] 3 locks held by kworker/u12:4/26754: [ 810.111946][ T31] 1 lock held by modprobe/26757: [ 810.111967][ T31] 2 locks held by modprobe/26758: [ 810.111989][ T31] 1 lock held by modprobe/26760: [ 810.112010][ T31] 2 locks held by kworker/u11:11/26761: [ 810.112037][ T31] 2 locks held by dhcpcd/26762: [ 810.112058][ T31] #0: ffff888027caa260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50 [ 810.112147][ T31] #1: ffffffff8e7f30f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x27f/0x3c0 [ 810.112240][ T31] 2 locks held by dhcpcd/26763: [ 810.112262][ T31] #0: ffff88802684a260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50 [ 810.112350][ T31] #1: ffffffff8e7f30f8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: exp_funnel_lock+0x19e/0x3c0 [ 810.112450][ T31] 1 lock held by dhcpcd/26764: [ 810.112471][ T31] #0: ffff888027a80260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50 [ 810.112560][ T31] 1 lock held by dhcpcd/26765: [ 810.112580][ T31] #0: ffff88802954a260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50 [ 810.112670][ T31] 1 lock held by dhcpcd/26766: [ 810.112691][ T31] #0: ffff8880281a4260 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x2c/0xf50 [ 810.114403][ T31] 2 locks held by kworker/0:1/26767: [ 810.114438][ T31] 1 lock held by syz-executor/26771: [ 810.114457][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.114560][ T31] 1 lock held by syz-executor/26777: [ 810.114581][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.114684][ T31] 1 lock held by syz-executor/26787: [ 810.114704][ T31] #0: ffffffff90614168 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.114801][ T31] 1 lock held by syz-executor/26790: [ 810.407918][ C0] net_ratelimit: 1249 callbacks suppressed [ 810.407988][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.502169][ T31] #0: [ 810.515605][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.521365][ T31] ffffffff90614168 [ 810.536010][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.546202][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.556497][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.558755][ T31] ( [ 810.578648][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.583011][ T31] rtnl_mutex [ 810.596315][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.599246][ T31] ){+.+.}-{4:4} [ 810.611557][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.633382][ T31] , at: inet_rtm_newaddr+0x30c/0x18b0 [ 810.644467][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.651710][ T31] [ 810.669074][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:e2:f2:6f:1a:88:93, vlan:0) [ 810.677854][ T31] ============================================= [ 810.677854][ T31] [ 811.612367][ T31] NMI backtrace for cpu 1 [ 811.612402][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I L syzkaller #0 PREEMPT(full) [ 811.612456][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 811.612471][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 811.612492][ T31] Call Trace: [ 811.612503][ T31] [ 811.612516][ T31] dump_stack_lvl+0x100/0x190 [ 811.612572][ T31] nmi_cpu_backtrace.cold+0x12d/0x151 [ 811.612626][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 811.612677][ T31] nmi_trigger_cpumask_backtrace+0x1d7/0x230 [ 811.612729][ T31] sys_info+0x141/0x190 [ 811.612802][ T31] watchdog+0xd25/0x1050 [ 811.612845][ T31] ? __pfx_watchdog+0x10/0x10 [ 811.612892][ T31] ? __kthread_parkme+0x18c/0x230 [ 811.612950][ T31] ? kthread+0x13a/0x450 [ 811.612991][ T31] ? __pfx_watchdog+0x10/0x10 [ 811.613020][ T31] kthread+0x370/0x450 [ 811.613062][ T31] ? __pfx_kthread+0x10/0x10 [ 811.613108][ T31] ret_from_fork+0x754/0xd80 [ 811.613158][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 811.613211][ T31] ? __switch_to+0x7b4/0x1120 [ 811.613247][ T31] ? __pfx_kthread+0x10/0x10 [ 811.613293][ T31] ret_from_fork_asm+0x1a/0x30 [ 811.613362][ T31] [ 811.737969][ T31] Sending NMI from CPU 1 to CPUs 0: [ 811.743528][ C0] NMI backtrace for cpu 0 [ 811.743552][ C0] CPU: 0 UID: 0 PID: 3412 Comm: kworker/R-bat_e Tainted: G U I L syzkaller #0 PREEMPT(full) [ 811.743607][ C0] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 811.743619][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 811.743637][ C0] Workqueue: bat_events batadv_dat_purge [ 811.743672][ C0] RIP: 0010:lock_release+0x65/0x320 [ 811.743707][ C0] Code: 05 10 5a f5 0e 0f 82 18 02 00 00 44 8b 05 d7 8d f5 0e 45 85 c0 0f 84 48 01 00 00 65 8b 05 6b 44 29 12 85 c0 0f 85 39 01 00 00 <65> 4c 8b 25 eb fc 28 12 41 8b bc 24 54 0b 00 00 85 ff 0f 85 21 01 [ 811.743732][ C0] RSP: 0000:ffffc90000006d50 EFLAGS: 00000246 [ 811.743752][ C0] RAX: 0000000000000000 RBX: ffff888038df4458 RCX: ffffffff8a67e30b [ 811.743769][ C0] RDX: 0000000000000000 RSI: ffffffff8c1b05a0 RDI: ffffffff8e12d8e0 [ 811.743786][ C0] RBP: ffffffff8a67e6d6 R08: 0000000000000001 R09: 00000000ffffffff [ 811.743803][ C0] R10: 00000000ffffffff R11: 0000000000000000 R12: ffffc900033eb090 [ 811.743826][ C0] R13: ffff888038df4440 R14: dffffc0000000000 R15: 0000000000000000 [ 811.743843][ C0] FS: 0000000000000000(0000) GS:ffff88812434a000(0000) knlGS:0000000000000000 [ 811.743867][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 811.743884][ C0] CR2: 00007fbe1cadb000 CR3: 0000000036ef4000 CR4: 00000000003526f0 [ 811.743901][ C0] Call Trace: [ 811.743909][ C0] [ 811.743923][ C0] _raw_read_unlock_bh+0x16/0x30 [ 811.743968][ C0] ebt_do_table+0x1ce6/0x2250 [ 811.744013][ C0] ? __lock_acquire+0x4a5/0x2630 [ 811.744045][ C0] ? __local_bh_enable_ip+0x9e/0x120 [ 811.744074][ C0] ? __pfx_ebt_do_table+0x10/0x10 [ 811.744115][ C0] ? lock_acquire+0x1cf/0x380 [ 811.744148][ C0] nf_hook_slow+0xbf/0x220 [ 811.744185][ C0] br_forward_finish+0x261/0x4d0 [ 811.744215][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 811.744247][ C0] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 811.744277][ C0] ? nf_hook_slow+0x167/0x220 [ 811.744313][ C0] br_nf_hook_thresh+0x30d/0x420 [ 811.744347][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 811.744378][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 811.744409][ C0] ? lock_acquire+0x1cf/0x380 [ 811.744440][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 811.744467][ C0] ? net_generic+0xea/0x2a0 [ 811.744501][ C0] br_nf_forward_finish+0x693/0xb30 [ 811.744533][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 811.744564][ C0] br_nf_forward_ip.part.0+0x61e/0x820 [ 811.744602][ C0] br_nf_forward+0xfe5/0x19f0 [ 811.744636][ C0] nf_hook_slow+0xbf/0x220 [ 811.744672][ C0] __br_forward+0x2f6/0x970 [ 811.744699][ C0] ? __pfx___br_forward+0x10/0x10 [ 811.744725][ C0] ? __asan_memcpy+0x3c/0x60 [ 811.744769][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 811.744796][ C0] ? __skb_clone+0x570/0x760 [ 811.744837][ C0] maybe_deliver+0xf0/0x180 [ 811.744866][ C0] br_flood+0x193/0x650 [ 811.744898][ C0] br_handle_frame_finish+0xff4/0x1f60 [ 811.744934][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 811.744973][ C0] ? __lock_acquire+0x4a5/0x2630 [ 811.745004][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 811.745029][ C0] ? nf_hook_slow+0x167/0x220 [ 811.745064][ C0] br_nf_hook_thresh+0x30d/0x420 [ 811.745096][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 811.745132][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 811.745168][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 811.745202][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 811.745243][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 811.745285][ C0] br_nf_pre_routing_finish_ipv6+0x769/0xfb0 [ 811.745321][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 811.745359][ C0] br_nf_pre_routing_ipv6+0x39c/0x8b0 [ 811.745395][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 811.745429][ C0] ? lock_acquire+0x1cf/0x380 [ 811.745461][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 811.745496][ C0] ? net_generic+0xea/0x2a0 [ 811.745531][ C0] br_nf_pre_routing+0x90d/0x1550 [ 811.745567][ C0] br_handle_frame+0xcdd/0x1520 [ 811.745603][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 811.745639][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 811.745675][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 811.745708][ C0] __netif_receive_skb_core.constprop.0+0x6c5/0x3550 [ 811.745741][ C0] ? mark_held_locks+0x40/0x70 [ 811.745777][ C0] ? kmem_cache_free+0x124/0x6a0 [ 811.745809][ C0] ? skb_release_data+0x7a0/0x9d0 [ 811.745856][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 811.745889][ C0] ? kfree_skbmem+0x19f/0x210 [ 811.745914][ C0] ? sk_skb_reason_drop+0x114/0x1b0 [ 811.745953][ C0] ? ip6_mc_input+0x51a/0xf50 [ 811.745981][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 811.746013][ C0] ? __lock_acquire+0x4a5/0x2630 [ 811.746047][ C0] ? process_backlog+0x32a/0x1580 [ 811.746074][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 811.746105][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 811.746137][ C0] ? lock_acquire+0x1cf/0x380 [ 811.746168][ C0] ? process_backlog+0x32a/0x1580 [ 811.746197][ C0] ? process_backlog+0x32a/0x1580 [ 811.746224][ C0] __netif_receive_skb+0x1f/0x120 [ 811.746253][ C0] process_backlog+0x37a/0x1580 [ 811.746287][ C0] __napi_poll.constprop.0+0xaf/0x450 [ 811.746319][ C0] net_rx_action+0xa40/0xf20 [ 811.746353][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 811.746381][ C0] ? find_held_lock+0x2b/0x80 [ 811.746404][ C0] ? try_to_wake_up+0x154/0x1a80 [ 811.746427][ C0] ? try_to_wake_up+0x154/0x1a80 [ 811.746451][ C0] ? kvm_sched_clock_read+0x11/0x20 [ 811.746483][ C0] ? sched_clock+0x38/0x60 [ 811.746514][ C0] ? sched_clock_cpu+0x6c/0x570 [ 811.746552][ C0] ? mark_held_locks+0x40/0x70 [ 811.746583][ C0] handle_softirqs+0x1eb/0x9e0 [ 811.746611][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 811.746639][ C0] ? __batadv_dat_purge.part.0+0x294/0x3c0 [ 811.746667][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 811.746692][ C0] do_softirq+0xac/0xe0 [ 811.746716][ C0] [ 811.746724][ C0] [ 811.746733][ C0] __local_bh_enable_ip+0xf8/0x120 [ 811.746760][ C0] __batadv_dat_purge.part.0+0x294/0x3c0 [ 811.746792][ C0] batadv_dat_purge+0x4b/0xa0 [ 811.746823][ C0] process_one_work+0xa23/0x19a0 [ 811.746866][ C0] ? __pfx_process_one_work+0x10/0x10 [ 811.746907][ C0] ? __pfx_batadv_dat_purge+0x10/0x10 [ 811.746936][ C0] rescuer_thread+0x905/0x14a0 [ 811.746977][ C0] ? rescuer_thread+0x240/0x14a0 [ 811.747012][ C0] ? rescuer_thread+0x118/0x14a0 [ 811.747046][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 811.747082][ C0] ? __kthread_parkme+0x18c/0x230 [ 811.747111][ C0] ? kthread+0x13a/0x450 [ 811.747142][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 811.747175][ C0] kthread+0x370/0x450 [ 811.747206][ C0] ? __pfx_kthread+0x10/0x10 [ 811.747239][ C0] ret_from_fork+0x754/0xd80 [ 811.747276][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 811.747313][ C0] ? __switch_to+0x7b4/0x1120 [ 811.747341][ C0] ? __pfx_kthread+0x10/0x10 [ 811.747374][ C0] ret_from_fork_asm+0x1a/0x30 [ 811.747409][ C0] [ 812.473904][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 812.480839][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Tainted: G U I L syzkaller #0 PREEMPT(full) [ 812.491624][ T31] Tainted: [U]=USER, [I]=FIRMWARE_WORKAROUND, [L]=SOFTLOCKUP [ 812.499468][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 812.509621][ T31] Call Trace: [ 812.512943][ T31] [ 812.515944][ T31] dump_stack_lvl+0x100/0x190 [ 812.520735][ T31] vpanic+0x552/0x970 [ 812.524787][ T31] ? __pfx_vpanic+0x10/0x10 [ 812.529347][ T31] ? nmi_trigger_cpumask_backtrace+0x182/0x230 [ 812.535575][ T31] panic+0xd1/0xe0 [ 812.539349][ T31] ? __pfx_panic+0x10/0x10 [ 812.543819][ T31] ? nmi_trigger_cpumask_backtrace+0x1b5/0x230 [ 812.550028][ T31] ? nmi_trigger_cpumask_backtrace+0x1f6/0x230 [ 812.556248][ T31] ? nmi_trigger_cpumask_backtrace+0x200/0x230 [ 812.562457][ T31] ? watchdog.cold+0x198/0x1ca [ 812.567275][ T31] ? watchdog+0xd35/0x1050 [ 812.571774][ T31] watchdog.cold+0x1a9/0x1ca [ 812.576427][ T31] ? __pfx_watchdog+0x10/0x10 [ 812.581152][ T31] ? __kthread_parkme+0x18c/0x230 [ 812.586239][ T31] ? kthread+0x13a/0x450 [ 812.590543][ T31] ? __pfx_watchdog+0x10/0x10 [ 812.595272][ T31] kthread+0x370/0x450 [ 812.599404][ T31] ? __pfx_kthread+0x10/0x10 [ 812.604057][ T31] ret_from_fork+0x754/0xd80 [ 812.608721][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 812.613911][ T31] ? __switch_to+0x7b4/0x1120 [ 812.618654][ T31] ? __pfx_kthread+0x10/0x10 [ 812.623309][ T31] ret_from_fork_asm+0x1a/0x30 [ 812.628140][ T31] [ 812.631799][ T31] Kernel Offset: disabled [ 812.636150][ T31] Rebooting in 86400 seconds..