last executing test programs: 19.576055867s ago: executing program 2 (id=1859): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000bc0)='/dev/binderfs/binder0\x00', 0x102, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r4 = openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x1e9482, 0x0) read$auto_state_fops_(r4, &(0x7f0000000180)=""/61, 0xfffffeeb) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), r2) socket$nl_generic(0x10, 0x3, 0x10) prctl$auto_SECCOMP_MODE_STRICT(0xf, 0x1, 0x0, 0x9, 0x2) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189002, 0x0) ptrace$auto(0x3, r0, 0x5, 0x4) keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0x1, 0x6, 0x1, 0x89, 0x7181, 0x3ffde, 0x4, 0x10, 0x9, 0x6, 0x80003, 0x4, 0x11ffffffffffd, 0x85, 0xfffffffffffffffb, 0x9, 0x50007, 0x2, 0x0, 0x0, 0x80000001, 0x1, 0x202, 0x9, 0x8000, 0x0, 0x0, 0x2, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x3, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x400000004, 0x3, 0x2000000800000000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000009, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffc]}, 0x1fe, 0xd) r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd02, &(0x7f00000001c0)) 19.505416364s ago: executing program 0 (id=1860): mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3ff, 0x2, 0x7, 0x48, 0x7ff, 0x5, 0x7, 0x4, 0x6, 0x8, 0x3, 0x5, 0x4, 0xb4, 0xa, 0x6, 0x10001, 0x80, 0x100000000, 0x800000, 0x7, 0x8, 0x200, 0xfffffffd, 0x84, 0x0, 0x6, 0x2, 0x0, 0x0, [0x0, 0x1ff, 0x1, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8003, 0x4000000, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x0, 0x20000000000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xec4e, 0x0, 0x8000000000000001, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a]}, 0x1fe, 0xd) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000001a40), 0xffffffffffffffff) r0 = inotify_init1$auto(0x2) socket(0x2, 0x3, 0x0) r1 = prctl$auto(0x3b, 0x2, 0x0, 0x4, 0x0) splice$auto(r1, 0x0, r1, 0x0, 0xb, 0x1) unshare$auto(0x40000080) syz_genetlink_get_family_id$auto_mac80211_hwsim(0x0, 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_GET_RADIO(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008001}, 0x20000010) sendmsg$auto_NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, 0x0, 0x20000004) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000840), r2) openat$auto_nsim_dev_health_break_fops_health(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/netdevsim/netdevsim1/health/break_health\x00', 0x40440, 0x0) r4 = openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer1\x00', 0x180, 0x0) ioctl$auto_OSS_ALSAEMULVER(r4, 0x40086602, &(0x7f0000000100)) sendmsg$auto_OVS_CT_LIMIT_CMD_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006400)={0x18, r3, 0x1, 0x51bd2e, 0x25dfcbfb, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x2000c040}, 0x4) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_DETACH(r0, 0x7aa, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000000), 0x200403, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) sendmsg$auto_OVS_VPORT_CMD_DEL(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYBLOB="1000"], 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x8000) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) io_setup$auto(0x80000000, 0x0) 18.675280642s ago: executing program 3 (id=1861): r0 = openat$auto_posix_clock_file_operations_posix_clock(0xffffffffffffff9c, &(0x7f0000000080), 0xc0402, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_smc_pnetid(&(0x7f00000002c0), r1) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000280)='/dev/video37\x00', 0x68881, 0x0) ioctl$auto(r3, 0x80845663, r3) sendmsg$auto_SMC_PNETID_FLUSH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="0000000000000007df2504000000"], 0x14}}, 0x30) ioctl$auto_posix_clock_file_operations_posix_clock(r0, 0xc0403d11, 0x0) acct$auto(&(0x7f0000000040)='/dev/sda1\x00') r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket(0x10, 0x3, 0x6) r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x101082, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r7 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000340)='/dev/v4l-touch12\x00', 0x80000, 0x0) ioctl$auto(r6, 0xc0045543, r7) r8 = fsopen$auto(0x0, 0x1) r9 = ioctl$auto_TUNSETTXFILTER(r8, 0x400454d1, &(0x7f0000000800)=0x5) r10 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000840), r9) r11 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/pci0000:00/waiting_for_supplier\x00', 0x80800, 0x0) sendfile$auto(0x1, r11, 0x0, 0x400007ffff000) sendmsg$auto_NL80211_CMD_GET_PROTOCOL_FEATURES(r5, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x54, r10, 0x101, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_HT_CAPABILITY={0x22, 0x1f, "924592e8c0b557bbeac0207c875eddd6e285686c6abcf8dca8537ab36c3b"}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x10000000}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x77}]}, 0x54}, 0x1, 0x0, 0x0, 0x10}, 0xc000) ioctl$auto_BLKDISCARDZEROES(r8, 0x127c, 0x0) sendmsg$auto_NL80211_CMD_VENDOR(r4, &(0x7f0000000100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x6}, 0xc, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000033bd5a22ecf16d28db184c217a483f2d7c5c0f259e812655b0fea892e6d559ab64ad47e725602e663db60f77ded07d9d1486900c51249ee015d385e5bf008cbf7d41954cf80b4b50507d0fa467c95712835a3616ddd31d7dc2db56f748ca74fbe2", @ANYRES16=r10, @ANYBLOB="02052dbd7000fddbdf2567000000"], 0x14}}, 0x20000000) timer_create$auto(0x3, 0x0, &(0x7f0000000140)=0x6) 15.454354364s ago: executing program 2 (id=1864): r0 = openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/README\x00', 0x0, 0x0) ioctl$auto_EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x0, 0x2b, 0x1, 0x0, 0xb, 0x2963}) fsconfig$auto(r0, 0x9, &(0x7f0000000080)='/\x00', &(0x7f0000000180), r1) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x400, 0x1, 0x0, 0x1, 0x4) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x567) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fe00000000000000"], 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1fd, 0xffd, 0x5, 0x0, 0x0, 0x6, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0x5, 0xfffffffffffffffe, 0x7, 0x6, 0x1000, 0x5, 0x4, 0xa, 0x22000, 0x203, 0x4, 0x84, 0x0, 0x3, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x800000000000400, 0x0, 0x1, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x400000000000010, 0x0, 0x0, 0x0, 0x0, 0x4, 0xa8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x6, 0x7fffffff) r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x3d00, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd03, &(0x7f00000001c0)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x2, 0x80, 0x4, 0x40, 0x3) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpriority$auto_PRIO_USER(0x2, 0x0) r6 = setfsuid$auto(0x0) setresuid$auto(0xffffffffffffffff, r6, 0xffffffffffffffff) msgctl$auto_IPC_INFO(0x10, 0x3, &(0x7f0000000080)={{0x5, 0xee00, 0xffffffffffffffff, 0x47, 0x2, 0x78c5fe5b, 0x9}, &(0x7f0000000000)=0x9, &(0x7f0000000040)=0x2, 0xe, 0x800, 0x7ff, 0x6, 0x9, 0x9, 0x5, 0x6, @raw=0x8, @inferred=0xffffffffffffffff}) shmctl$auto_SHM_LOCK(0x5, 0xb, &(0x7f0000001400)={{0xca01, 0xee01, 0xffffffffffffffff, 0x0, 0xc, 0x8, 0x5}, 0x1000, 0x103, 0xb1, 0xfff, @raw=0x1e, @inferred=0xffffffffffffffff, 0x728c, 0x0, &(0x7f0000000100)="54c361a4963f46ec762cbd930936d43cc0", &(0x7f0000000400)="3a4e67c9a406af32838a19ccaa418a41d1d7201c907a3638a3f6e77198b589d729ca2a425a43ad987062dcbcb28e49e812e348e0b5910e3935261dece1f73c351af40099bd1940a0ceb04ffbe3c2e7c22e0f6b2daa0f5fa6958fe7835ace6b702b5d505883c65e3082d42f6ce4af7c53a6b403e537b9340310373ff3643ecbb9e41f1caf51db33ea9219299ecd97587ec2e917d206b793d1d4a2ffc91c4f7867e22fd0883ba709da7a1ce439035d3a498d7682c60db0ab76fec18d04e801350ce0f5dba9fb3594233b79f5c738d1ed759e554e8b1fe17ec266d7d922050d51c6aac9792f92c9d853a471e511490dda90f58c7913f9dd9764de24584deff2d8473f606fd5e2cd2bd312c90f9d7c5a5e72e512a96ddba26762bee88909a95a2c0fbe56e76fae29dfe8b200dc2dcc8f5f107aca495e1c423d83be821b89ac7d59c6b6c3c4a5456e177365eda4fe498f854b4cec5360b7453717b940a1d3f0098509c3bc39d0323c6f710e3ff2ae7e137353802a8448528f60bd3bf3950737648946877450e27e8e4a623500044949ea9a696b9a6785f16bcdc8dc8f0bbef34007fa81216b2fbc01721d1f66bffc1f4660aaf87e7cf40b116b3453b631a585c4e6210f7f7cc45d8c71938ebae3544f928087a098c918319ca370bcad6195e5ada300d1da6e936e6aaaf09bfa9187e42170cee8857a09a45a84823bdc31a5ce23554aafb455457b06ff089e55053973194ef6f3b44e65a81729212fc216372867c4ef000eb535849971321a1191f4da6f72bf5df0ab68ffdd46d67d8bff6d7dd6d3bc82033f47b0538fa03a41462cde6fdefe5cf50ab11c712caa7d9cc1e1be471dbf9ab3b6f7666777baa1d30d4b157a4b57e1e4d8ca4b69741367f6b08b6307ea9d1eab6cdf8cff28d02017b04896814c9b2acf5506738dc8808952ece5408520b45e6b34249e310b9c782c8aef80da02360aed4e163e1ba707ad07ea1aca8bb78b0749d7ffbb6941ee098222155402178dd61264b47e929081cacdad47921a4c64a7bc481af464873689e64c2e2d3d2c66e9e9ac754a013c7f929ac4aed75c8853feb80eb6b0ad35fe9f20163402086de2c1327a62f5267cfeca2b59ed3aa8252eecce5e4a9a3c3a649b25894e0916dd63444f9ad417035cd80af33497012c351c89d71f3e31d731eb47639c487a5867c849fc17382447b86dc5938f361fb6b71e5ecbcbed7e47443e748c393e3b1db902d24421919acdca35a32bdcb7a6418a09adc95387f42a51271344247d1ac2186467670a8921c983e7533ba15cc5f047035fef759a748b012d6d2d503674c5d16ca1b1ccec69d648c5dd1aff7af906e4c6f343be8153ae8cb6469fb5682d3dde38b68b91298f1c277de29e8a5a79de499e0126f5e342c8f5c582ce16f7322c84b7ff0e423985c22c64c595a43f6f3538ae8755196876bc1e5ce65196e3f5380681d17aad19c71ce188b4d0c69bf8e8297c613ef7d8ee67ba0ab8ad80a980bb30c6c7b5e78fe73eacf612fcbb6ffbad16af3eb3e2083fc2f3f7d39c7b18b872fb1da204e0c499b65a6dc879086b6ccfa2177d9e41923f235056c2cacd024f6eadaad2ad307304a86874008ac461a5000cba11877aa52b0b00e5463520b6261801e7f9593153653a01cfb213b1a254ee7f9a68a7aebaddb06abe28996880cca3eea4f869a0910ca1357ec92f0f0f7e91856b2057a93253e090ea98eb6615f5445dc6aacc0e09eac7c1f3adf72b197018dafde4236a1d29b7ec479592e621dbc679736e572d68700b497e176fb4567d52e1e2233332e16b915ea59050852519716c429bd66c58841ec4cc63d06c616eacc30ecaa9796883090bea0ad6e61a9d1076ff8fc6f2756a7ee885d866f412c4cc20d7830fcfdbf36e7536dd5e2be8ac2813ff98ea282d097b418692974a537541c6f9d6b0ba9172ceb4fa8ddead0a73d9b26449f80037b9bb211a821bb807ab759d997930f8cbb03f0c03998ad8ce7882645109ab5b91a987e40ad97bcc22e35c358abe1998632a962549324f5c2cfabbb7c8977fdfd202961d3051b8cf883783c14d6fc3561fd851e0a90b036d4b2c379457b042e944001d16331674a20c567f4d0b8ffe5302343ceed538d27445dc887d4264eead8ce7ac9e408337efac1223c9d862e3f2a2f47138b7ac67a5281c4ebf8394ef1f9bb7b4563bbf90ca7e2cfe375f865958bf0610d40b6c1938999f4de57a9a5bd20985aa87ed8995315ff9e6ae782684a9353e5f436a54ef5d273f48831fe5c549549e1fd23acc819e9a1ee5d69b55b1539fea28d727d8287a3f8b7cc2987383ca81ad545669ca5479a6f39d5513a240d0ef9e73c6dac702c538c3db3b644f61bfdf095d361e0054f9d47b8e31a204ecb39a539d7eb7a754948595de7ad78e9fdd31198503eec23bbac8fb9dd33467d9121ff652ece0fa1fba1ff6e52e93fba0375bc741c5e134d065134b39f1a5de2ae8145001035c68362bc82557674764c051b83c350ba0e9e974c8335b23e5e913a98a3c526ac7daebb8bb4f00c8c2420374fe4329f002e7bb7723baa1bae0da3e22737c489eef2625a5c0c289c4e22c94634386c80482039732a8b27a4ac99e0579fcc072f11d8070b60c25725a1dcf53ed1a4087de5bda0845db79212aa75318a7b4e6fcc5638a51a7b80b8a277171c10ad7bdaef43bf7448ae9ec4f8a8c41edec4d8bb83e6140b06e16b6699ce5da95b63b6e87f99f40bc158904e3b2bf741e3cb24e7e94137d2b3da6fc8f8eca8c2d1abd169523104ef2a709c65bd7508849304fffce7f91cc70462ea1ad011c2c6811cbda176c6efcb2266595937fa7c4f36be79bd3455f6c0d9edd95b08afb503abb919b340cdcd835590e245ae22660fc247c4e627e3ef045156e84ea24ba65c9e5ab205a82bc7faa74ef3f114e378599224d4f23d3fc055407a35b4ef86a22c4822391927bb563c832fc40109453e07f96977f759e3c5477dc0e312fbcafb74b9161a85fb275546f1cc830ef4bbc00c1f6e18c783f8ac38031622a39a4bf9773b45e683c3884f455d0d3b643eaaecac98010e792ba605430de2936d1c925e814f671f712a6c8f6711067fd65e1c36a84caf49bb2f24d8e9ee354d188029884bd73dbd221b960951bc55b8bd32ae37bdfcd04e6edbcfb39c931328688f34ad453cbdea356384ae545163acbf7c1a45dfd58af3fa1f23471c1eae941d1f8ce0883d37444d2f245b465e11a6cc7528fe704d40f2e1aebb3306cbaeeec9e3271c53e2d3d0152504179aa0d110b571e8b9477e8dcfd0d3b7cdb3ac96ad46da54ad7bdf4ea8f150507cc6a6753dd4df4d7940ad8d22494efe4ec8e915754a757f8143138d3cd8a168726c84010695415a6c260d6ceb313278c600c2b6cc9f8b18ec075bf390b7c7a26463aa4ec03e4197ffdb9e630a6072b5faa9a15935d7b2616422d0c07d9ec14bdf886d990a3819a672a6210b7e3e92f2639ad7e36da5783b117579e0a7c790dcc56d4795d76fc2f56b02c7159d8978543b23dd4d1e6b3449ca586b78ab3db28b43fc4b31e8110153437c0a05697e2b778fa545ccda367dc9c391338c637384032f1864aefcdf3906ced453622f3d8e56f71f20cdeaafa91dfbd02c2eaa4512b3aa5d8758149c3efbabaf68d2d0c81e31db1c0d8aebf0c744bf3a542c3f46a7c372f02a05efe5314693d42a490bdd57571146b48fd0368494511509b74063070c71a459db5b137cdb7f538ae86364cc906cc3c36c5fa8d0f7a6fa80cf62835cfa736d4fc6a7d18303727e3c20f5ddf78807a4ddeff3afc4f3b437fdd77c322bc8f27dc9655a3f1ce0696d9c58c7c78286835d4940abf603052b2bcc3b817965e84965575af25261483720d392a83bb04d14c8736a3961abbc6c9648bda96101c799982118b15d0610f6525979e1d6d3c7de51dede9ef4b36fe492e3298683eabadea0bbc5a33852b46200307d3792985ced1d5db1c77cf8c152960200844ac397b8b364d98b1d4de0dbf8b06a8d8614c6404d70bfb0a3d0ec30e85d5318344cbc962c8faa4a581b1d2484b558165e69fedf91aece12ff7211ded11b7e962b01b29d7f686b4c456f8304ae65fca8ef2e4a134d4338954e3a893f52375afd9878d43b1da4d411d1919a3f158840a0463b2abe2003fd0d8236208f41ccd522462e745ebe2a1bb4d2fd4e4461c51010cb207a81eb933eafdfaeae238cead931692ff4f3176e5fe5fd406f3b2888a77cb3e22bf90c2c23fa7d7b4d4f8324745a7fee14a0bf0733a88b09ab880b09432e2c26fc713af156e063be7a43d722c708a312b3403beae916b8ab3606059e516819865e45b684197b1b636429ebe0e844d87f6dca34b325118a6253c419bbaf8a0c9f0ebb86008344cf67083937616b98301168c28b7f58d0c1f724684aedc6d143abcc61dbf969e0b821deae581128cb9a61990734309b9d5bf630f622334abc248208c1be3d530ae5635b5320cd1041cb92d897aa9567d4d439e638983508131bca43e038a880c4e91640d48341c7874809be2ad825e3e23ed8ca04b99ac8b2799d4fbb133e0a4239674e635e29058327c7a21eebb6ee522cab2df1ae655e4dfe099cc8b673bdf8c6e4f769bbf7fb2ad9be659948c2d4057d80edcb7bb41a5241f7e5c98e9f0ae37d8ebde385d2858549e5197a4aa05b95fd4427e7e03fea9e8b39a600998c86df19bdc661c2411fcade01cfb3ad01767bdc53aa94fd7e9913f51584363d9efc96bd36defa0cc765109bd438a6ec9eb1d05ae05d6a82a153327bf7efbaa16a1e5d9431dbb74b64644abbfe8a7d1d919c92437c83deeed558cb63f75ea654e60818961d58d6f832c7858fbc3acc3697c86058d63f54039b4aa65691e326185a560ba5c06ace95fb5d4c6fc860707fe2e2e8e0064ad599db6815e146e94fc99648e35450a79b102820e3b42c3abf237e7a5fa1bc7becd94ac1f4b161eaef62145c3c9ca5da70390962e6b6d234aa6d8a959f9a61241cf20c984165f46c859d35d0563b9e002f8840d66080b65693e39a43dde0bbc31fa895f340a5c477050d79502b34ab77a4c2b96153ce802cbd6ee962742f88f8feea69bdd3bcfa0acbefc10bf3e729a32db971c9090209b6334d7137779068ced9f35fe5814798457398438f159ec524249d59ba06552f381b958a80d708ca37e1459cdc8dc10a4430f1370ca805b7967fcfc71a213ad1b183698a07828af9e16282a7ccc4148e77c0ccc9dc87c7510f76c56f337ab7bf547e95613b27f2ca28a5bc5ccc90f82c2a3c69d9c3ab1abea492f6c2a702778a4e1d80653394e98546d9de6ae44565bcfdf8fc76896fb30d1facb9e99c8d978a098584c9f9306682ee72b5412c7eb10ac26d52fe5f8ea5eb35a75eb993d04b242f34ab81280f2ef5a2b9ba50f35ffdc07169c1fdec8d452f2f1148be292b1857e362cbfbdb7cc652ad261a20f75f5d5b58d3312cd2396926f2a4e6e59487822283439eb3c67974c4e51ee1d3c41af0f7c344d25864b4f65e4c44bc78d53f6661028013e3d97c69b6bd145487f8453ffb3fc1a81c699a94df2c0a226567aa9f80cdf14277b2e90ba04c93ee58eb0f36cf07ff125610b4c959e3fe39e7c858a84d25645f8e9a377824cb921818a1af729769f5e8b3cecf59de71741a20a7789f829947de067c17179e8d93784f8e1af9c620a303887dc9b2326c4f0c95e06401a0792480b4e6d235f2612337f48fe31f7aa011efead59ef0d151846e028d8c47117b324035e73f84f0b0c"}) 15.013090531s ago: executing program 3 (id=1865): unshare$auto(0x40000080) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) r0 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20004803}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x408000) clone$auto(0x20003b4a, 0xecc, 0x0, 0x0, 0x2) socket(0x1e, 0x1, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x4f1f, 0x6, 0x5, 0x7) r1 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x1, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000240)={0x0, 0x7}, 0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video2\x00', 0x0, 0x0) r4 = socket(0xa, 0x2, 0x3a) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) setsockopt$auto(r4, 0x29, 0x32, 0x0, 0x113) 14.81694035s ago: executing program 1 (id=1866): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) uname$auto(0x0) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x0) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) connect$auto(0x3, 0x0, 0x55) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r3 = socket(0xa, 0x3, 0xff) connect$auto(r3, &(0x7f00000018c0)=@generic={0xa}, 0x55) sendfile$auto(r2, r1, 0x0, 0x1000202) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x121480, 0x0) ioctl$auto_SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth1_to_batadv\x00'}) shmctl$auto_SHM_LOCK(0x6, 0xb, &(0x7f0000000340)={{0x7f, 0xee00, 0xee01, 0x200, 0xc, 0x2}, 0x7, 0x1, 0x3, 0xc3, @inferred=0xffffffffffffffff, @raw=0x2, 0x8, 0x0, &(0x7f00000001c0)="eb2c1ed0d52ec2b286bde5a479e43f0ecba7bb832ee8fbec4f4d28a9404aa37f41c74b7f20547c523bb6c8be7951241c8e76302fc028420c090c04362fcfb0f5541d8dbe0e16c9f35833915e74ca2af821ea172285e496513c2c3bb40c62e26a8edffcb39ad880437d73c2a0e56313175d7feba226a8cfdf1045ea6e0cb91a439ef086372fbc8088499e85c78eae2e9fb8b2ee1a57945f33b7276139abe65525bbeecb79cd7d9598e94cf641b44db2d765216e", &(0x7f0000000280)="988543088f23fb8bd6bee77a0db84bf4b8d968411ba47a6223c97bc1174c6c282f8d9b8b30d3c3474b5e0f1346266b020cf614ee5cabdaa68505eb53847889547770241bebbd8e1bc9ad028c0e3efe303e5e22661df9fba46a8b09f41e6014e4c25fc6ea220a4c5d5a250c027358ca1d994609c39bc248b8929374eebdbbbaf499216a76331a1c3f8462d37082baecca0dfa91c1f0a588e8f71d2b5b26a0d08baf154bd9e47d93798546364ba13906686d12e9"}) shmctl$auto_IPC_INFO(0x9, 0x3, &(0x7f00000004c0)={{0x7, 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x9, 0x8}, 0x0, 0x10, 0xd, 0x7, @raw=0x6, @inferred, 0x6, 0x0, &(0x7f00000003c0)="579fac047cbfdc74b0b576a26f06", &(0x7f0000000400)="21acb93901ca343612be23eafb38566528880adecb77d7d6208f550f821102cbed338f29807a244661ec6f17b71f771ef9128880282dfaa869e1f680de6a64623a99e3f58e81520d6639781473b153c394473ce578711f2de6a0f19f27b88ddb375e144bbe130be7529ec5968537d14300356d1dfdf9bd1186fe44db56484d6d17a4dbda49d07316ae394107656e901bd3f6dd3fb9603a95df05174a31abdf7cf42d120ce416f6"}) 13.898438849s ago: executing program 1 (id=1867): unshare$auto(0x40000080) mmap$auto(0x0, 0x2a, 0xdf, 0x9b72, 0x1000, 0x28000) r0 = socket(0x10, 0x2, 0x14) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000003000)={0x0, 0x0, &(0x7f0000002fc0)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20004803}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x4c084}, 0x51) sendmmsg$auto(r0, &(0x7f0000000080)={{0x0, 0x8001c01, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x1}, 0x7}, 0x3d55, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x408000) clone$auto(0x20003b4a, 0xecc, 0x0, 0x0, 0x2) socket(0x1e, 0x1, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x1, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto_PR_GET_TID_ADDRESS(0x28, 0x4f1f, 0x6, 0x5, 0x7) r1 = socket(0x2, 0x1, 0x0) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sendto$auto(0x3, 0x0, 0xfffffffffffffdef, 0x101, 0x0, 0x1c) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) mmap$auto(0x0, 0x1, 0x3, 0xeb2, 0xffffffffffffffff, 0x8000) r2 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0) read$auto(r2, 0x0, 0x7) r3 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r3, &(0x7f0000000240)={0x0, 0x7}, 0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video2\x00', 0x0, 0x0) r4 = socket(0xa, 0x2, 0x3a) close_range$auto(0x2, 0x8, 0x0) socket(0x15, 0x5, 0x0) socket(0x2, 0x1, 0x106) setsockopt$auto(r4, 0x29, 0x32, 0x0, 0x113) 10.042280424s ago: executing program 2 (id=1868): readv$auto(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f0000000680), 0x7}, 0x5) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS0\x00', 0x101e81, 0x0) write$auto_tty_fops_tty_io(r0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socketpair$auto(0x20000001, 0x2, 0x3, 0x0) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0) r3 = epoll_create$auto(0x4) r4 = socket(0x2, 0x5, 0x0) epoll_ctl$auto(r3, 0x1, r4, 0x0) r5 = epoll_create$auto(0x3e) epoll_ctl$auto(r5, 0x1, r3, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, 0x6) r6 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/memory_hotplug/parameters/online_policy\x00', 0x60302, 0x0) futex$auto(0x0, 0xc, 0xffffffff, 0x0, 0x0, 0x4) read$auto_proc_iter_file_ops_compat_inode(0xffffffffffffffff, 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x10, 0x0) r7 = fsopen$auto(0x0, 0x1) fsconfig$auto(r7, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x1, 0x0) read$auto(r6, 0x0, 0x800) ioctl$auto_IOCTL_VMCI_QUEUEPAIR_ALLOC(r2, 0x7a8, 0x0) r8 = syz_genetlink_get_family_id$auto_nlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_NLBL_MGMT_C_REMOVE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) 9.919832075s ago: executing program 2 (id=1869): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0) kexec_load$auto(0x7ceb, 0x1, &(0x7f00000000c0)={@buf=&(0x7f0000000000)="e47d84feaa8d27", 0x7, 0x0, 0xffffffffffffffff}, 0xff) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001180)='/proc/self/fail-nth\x00', 0x60ab00, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x100e42, 0x0) mmap$auto(0x4, 0x2020005, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0xffffffffffffffff, 0x41045508, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r0, 0x0, 0x80, 0x0, 0x0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x5, 0x14, 0x944, 0x1ffe2, 0x3, 0x6, 0x7, 0x9, 0xffffff64, 0x4000fff, 0x8000007, 0x8001, 0xd, 0x5, 0x3, 0x40, 0x7, 0x3, 0x309, 0x6, 0x0, 0x7fffffff, 0x3, 0x1, 0x0, 0xffffffff, 0x0, 0x0, [0x0, 0x0, 0x0, 0x4, 0x9, 0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x800000000002, 0x9, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10, 0xfffffffffffffffe, 0xffffffffffffd059, 0x0, 0x0, 0x0, 0x2961]}, 0x1fb, 0x81) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r1 = gettid() close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/broken_parity_status\x00', 0xc3002, 0x0) r2 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r2, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) write$auto(0x3, 0x0, 0x7fffffff) kill$auto(r1, 0x11) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 8.698766528s ago: executing program 3 (id=1870): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) set_mempolicy$auto(0xc000, 0x0, 0xe) prctl$auto(0x3e, 0x4000000000001, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x18, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x28, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000088}, 0x20000000) sendmsg$auto_SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x8c, r1, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@SEG6_ATTR_DST={0x14, 0x1, @loopback}, @SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xfffffffd}, @SEG6_ATTR_DST={0x14, 0x1, @local}, @SEG6_ATTR_SECRET={0x2d, 0x4, "bda1ace279302f2b8183d7ea76b246a0811dccb2b7ba47205dbeafb5a4247110b248e418ad3052c145"}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xc}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xb1}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x2) r2 = openat$auto_ftrace_system_enable_fops_trace_events(0xffffffffffffff9c, &(0x7f0000001580)='/sys/kernel/debug/tracing/events/vmalloc/enable\x00', 0x204, 0x1a00) read$auto(r2, 0x0, 0x0) 8.513004002s ago: executing program 1 (id=1871): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0xe6e43, 0x0) ioctl$auto_BLKFLSBUF(r0, 0x1261, 0x0) keyctl$auto(0x4, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x8000000e) lseek$auto(0x3, 0x7fffffffffffffff, 0x1) r1 = openat$auto_generic(0xffffffffffffff9c, &(0x7f0000000840)='/proc/kmsg\x00', 0x0, 0x0) read$auto_fops_u32_(r1, &(0x7f0000000880)=""/17, 0x11) ioctl$auto_SNDCTL_DSP_GETIPTR(r1, 0x800c5011, &(0x7f0000000100)="b8241412a34e3396f70d9e") bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e24, @rand_addr=0x64010102}, 0x6a) socket$nl_generic(0x10, 0x3, 0x10) ioctl$auto_BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, 0x0) statmount$auto(0x0, 0x0, 0x1fe, 0x5) unshare$auto(0x40000080) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) openat$auto_cpuid_fops_cpuid(0xffffffffffffff9c, 0x0, 0x101500, 0x0) 8.478746022s ago: executing program 0 (id=1872): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2a, 0x2, 0x1) connect$auto(r0, &(0x7f00000000c0)=@qipcrtr={0x2a, 0x1, 0xfffffffe}, 0x55) openat$auto_qrtr_tun_ops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x10002}, 0x1) close_range$auto(0x2, 0x8, 0x40000) r1 = openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2201, 0x0) write$auto_uhid_fops_uhid(r1, 0x0, 0xfccd) 6.833996698s ago: executing program 2 (id=1873): r0 = openat$auto_tracing_readme_fops_trace(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/README\x00', 0x0, 0x0) ioctl$auto_EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000280)={0x0, 0x2b, 0x1, 0x0, 0xb, 0x2963}) fsconfig$auto(r0, 0x9, &(0x7f0000000080)='/\x00', &(0x7f0000000180), r1) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x400, 0x1, 0x0, 0x1, 0x4) write$auto(r2, &(0x7f00000000c0)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccWw\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5D\xcc', 0x100000a3d9) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x103e81, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) setsockopt$auto(0x400000000000003, 0x29, 0xd2, 0x0, 0x567) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x48402, 0x0) r3 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NL80211_CMD_RELOAD_REGDB(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="01002dbd7000fe00000000000000"], 0x14}, 0x1, 0x68, 0x0, 0x24000000}, 0xd0) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1fd, 0xffd, 0x5, 0x0, 0x0, 0x6, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0x5, 0xfffffffffffffffe, 0x7, 0x6, 0x1000, 0x5, 0x4, 0xa, 0x22000, 0x203, 0x4, 0x84, 0x0, 0x3, 0x0, 0x0, 0x0, [0x6, 0x0, 0x0, 0x0, 0x0, 0x800000000000000, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x800000000000400, 0x0, 0x1, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x400000000000010, 0x0, 0x0, 0x0, 0x0, 0x4, 0xa8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x6, 0x7fffffff) r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x3d00, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd03, &(0x7f00000001c0)) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x2, 0x80, 0x4, 0x40, 0x3) madvise$auto(0x0, 0xffffffffffff0005, 0x19) getpriority$auto_PRIO_USER(0x2, 0x0) r6 = setfsuid$auto(0x0) setresuid$auto(0xffffffffffffffff, r6, 0xffffffffffffffff) msgctl$auto_IPC_INFO(0x10, 0x3, &(0x7f0000000080)={{0x5, 0xee00, 0xffffffffffffffff, 0x47, 0x2, 0x78c5fe5b, 0x9}, &(0x7f0000000000)=0x9, &(0x7f0000000040)=0x2, 0xe, 0x800, 0x7ff, 0x6, 0x9, 0x9, 0x5, 0x6, @raw=0x8, @inferred=0xffffffffffffffff}) shmctl$auto_SHM_LOCK(0x5, 0xb, &(0x7f0000001400)={{0xca01, 0xee01, 0xffffffffffffffff, 0x0, 0xc, 0x8, 0x5}, 0x1000, 0x103, 0xb1, 0xfff, @raw=0x1e, @inferred=0xffffffffffffffff, 0x728c, 0x0, &(0x7f0000000100)="54c361a4963f46ec762cbd930936d43cc0", &(0x7f0000000400)="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"}) 6.757044252s ago: executing program 0 (id=1874): openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bus/usb/013/001\x00', 0xa901, 0x0) kexec_load$auto(0x7ceb, 0x1, &(0x7f00000000c0)={@buf=&(0x7f0000000000)="e47d84feaa8d27", 0x7, 0x0, 0xffffffffffffffff}, 0xff) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000001180)='/proc/self/fail-nth\x00', 0x60ab00, 0x0) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mknod$auto(&(0x7f0000001040)=':,\x00', 0xca, 0xfffffffa) openat$auto_sg_fops_sg(0xffffffffffffff9c, 0x0, 0x100e42, 0x0) mmap$auto(0x4, 0x2020005, 0x10, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa901, 0x0) ioctl$auto(r0, 0x41045508, r0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socket(0x2b, 0x1, 0x1) getsockopt$auto(r1, 0x0, 0x80, 0x0, 0x0) statmount$auto(0x0, 0x0, 0x1fb, 0x81) madvise$auto(0x0, 0xffffffffffff0006, 0x17) r2 = gettid() close_range$auto(0x2, 0x8, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/devices/pci0000:00/0000:00:04.0/broken_parity_status\x00', 0xc3002, 0x0) r3 = socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) sendmmsg$auto(r3, 0x0, 0x5, 0x20000000) write$auto(0x3, 0x0, 0x7fffffff) kill$auto(r2, 0x11) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) 4.875164102s ago: executing program 3 (id=1875): r0 = pidfd_open$auto(0x1, 0x0) move_mount$auto(0xffffffffffffffff, 0x0, r0, 0x0, 0x273) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x24, r2, 0x13, 0x70bd2e, 0x25dfdbdd, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r4}, @NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x81}]}, 0x24}}, 0x20040894) mmap$auto(0x0, 0x2020005, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) sysfs$auto(0x2, 0x7, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) r5 = openat$auto_i2cdev_fops_i2c_dev(0xffffffffffffff9c, &(0x7f0000008040), 0x2, 0x0) io_uring_register$auto(0xffffffffffffffff, 0x23, 0x0, 0x0) r6 = socket(0x22, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x80044943, 0x0) ioctl$auto_I2C_SMBUS(r5, 0x720, 0x0) r7 = syz_genetlink_get_family_id$auto_seg6(&(0x7f0000000040), 0xffffffffffffffff) r8 = socket(0xa, 0x2, 0x88) ioctl$auto_XFS_IOC_FREESP(r0, 0x4030580b, &(0x7f00000000c0)={0xd, 0x5, 0x5, 0x8, 0x53f, 0x0}) r10 = bpf$auto(0x0, &(0x7f0000000000)=@task_fd_query={r9, r0, 0x67, 0x3, 0x7, 0x9, r0, 0x0, 0x1}, 0xa3) read$auto_check_wx_fops_(r10, &(0x7f0000000300)=""/113, 0x71) r12 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000140)='/dev/input/event1\x00', 0x80, 0x0) ioctl$auto_EVIOCGREP(r12, 0x80084503, 0x0) sendmsg$auto_SEG6_CMD_SETHMAC(r1, &(0x7f0000001440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYRESOCT=r8, @ANYRES64=r1, @ANYRES16=r7], 0x34}, 0x1, 0x0, 0x0, 0x40448c4}, 0x0) ioctl$auto_dvb_frontend_fops_dvb_frontend(r11, 0x5, &(0x7f0000000200)="4e141f987bcfa4999e323cb2c2a7ffcfc45e725956d50757630c7616d8fc37c16c22b5854875a10b72a158a79efdf8d6d619e41c31fd4bbdb3e3ed56a06b9635942c2fb4f48a4ee8983a7043958b036d90858b38f20719ffb7b6db8b9a004a7f0abdd2535dab3c7c3ffc0d53b917760f5f3299ba74b03753f45c27bbef5b9dae73d135bc721cc19786da32360a47c11f999ee5255dd80929fe25b6d5a3e64cfa6274b1acaa135b2795531360a6494b94001f278cd821f6e8bb807789b46c31e76ab445180ba07d92b4f26e520703ed9c176ec30b706111d100c509fb560d9352") openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/fail-nth\x00', 0x8000, 0x0) 4.861815448s ago: executing program 1 (id=1876): openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000980), 0x40200, 0x0) socket(0xa, 0x5, 0x0) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) write$auto(r0, &(0x7f0000000040)='//\xf2\x00', 0x80000000) mmap$auto(0x0, 0x810001, 0xfffffffffffff121, 0x8000000008011, r0, 0x8000) mmap$auto(0x0, 0x2020006, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) write$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffffff, &(0x7f00000002c0)="dd", 0x1) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0xffff01f1, 0x1, 0x0, 0x5, 0x7) kill$auto(0x0, 0x11) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x800, 0x0) ioctl$auto_SNDCTL_SEQ_TESTMIDI(r1, 0x40045108, 0x0) pwrite64$auto(0xffffffffffffffff, &(0x7f0000000180)='\vX\xb5n\x91p\xe6\x1eRN8\x99\x86\xdde\x1cJ\x99\x00\x00/\x00\x00\x00\xfd\xfdX\xd3\x1d\xf8\xbebZ\xddL\x01\x00\x00\x00^\x0fo\x84\xfc\x89\v\xea\x1b\x95\xafQ;CL\"\x01\x88\v\xae\xa9i8W\xe5\x00!\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#)\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd0\xbdn\x1d\x00\xeb]B\xa0\x99/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xa6\xf2\xc1\"\xact\xee\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xd9\xe5H.-\x14\xee\xbc\xae\xe1\x85\xb2b\xd42\x89\x05e\x03z\xe6q\xcd\x91\tM\xd2\x90\xc91\xd9\x86\xe4\x8e\x0fI\xf0b2\nfa\xb8\x1a\xdb\xaa0P\xca\xb2W\xe3\x14\xb9Cx\x0e4\xc9\xb4\xdc4\xe3\x8f\x1c\xa5\x89\x8d\x84V\x97dg \x9f\xcd\x8fA\x16\x01\xc5.\x7fG\x86L\xa4\xd6h\xea\x11x\xce\x96t\xc7~# )\x8c6\x06\xd7\xfcu\x8c{t\xa5\x92JW\x8b\xb3Oj%\xb5H\x91F\x1b\x01\xef\x0e\xc5\xac\xcfK\xd5\x98\xce\xd6?\t\xa8\xb7\xce\x87\xdb\xb0\xaa\x8al8qF\re\xa7\xda\x1f\x9ad\b!\xddBD\xd9', 0x3c, 0x200001000) r2 = socket(0x11, 0x3, 0x6) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x80047, 0x4}) r3 = setfsuid$auto(0xee00) setreuid$auto(r3, 0x0) ioctl$auto_XFS_IOC_SWAPEXT(0xffffffffffffffff, 0xc0c0586d, &(0x7f0000000340)={0xb, @inferred=r0, @inferred=r2, 0x0, 0x100000000, '\x00', {0xe54, 0x3ff, 0x1, 0x0, 0x0, 0x0, 0x1, 0xfffffffffffffffa, {0x7, 0x8}, {0x0, 0x9}, {0x101, 0x6}, 0x80000000, 0xff, 0xfffffffc, 0x800, 0xeb83, 0xfff3, 0x2, 0x4, 0xff9a, 0x3, '\x00', 0x0, 0x5, 0x7fff, 0x2}}) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x5aa, &(0x7f0000000100)={&(0x7f0000000180), 0x5ea}, 0x7, 0x0, 0x0, 0x1001}, 0x5}, 0x2, 0x140) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) socket(0x10, 0x2, 0xfffffffe) socket(0xa, 0x3, 0x3b) openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x28000, 0x0) socket(0x2a, 0x2, 0x1) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0xf, 0x3, 0x2) 4.182112567s ago: executing program 0 (id=1877): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) uname$auto(0x0) setsockopt$auto(0x3, 0x10000000084, 0x85, 0x0, 0x90) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv6/conf/all/forwarding\x00', 0x42a81, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x1, 0x0) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) close_range$auto(0x2, 0xa, 0x0) socket(0xa, 0x2, 0x0) r3 = socket(0xa, 0x3, 0xff) connect$auto(r3, 0x0, 0x55) sendfile$auto(r2, r1, 0x0, 0x1000202) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x121480, 0x0) ioctl$auto_SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth1_to_batadv\x00'}) shmctl$auto_SHM_LOCK(0x6, 0xb, &(0x7f0000000340)={{0x7f, 0xee00, 0xee01, 0x200, 0xc, 0x2}, 0x7, 0x1, 0x3, 0xc3, @inferred=0xffffffffffffffff, @raw=0x2, 0x8, 0x0, &(0x7f00000001c0)="eb2c1ed0d52ec2b286bde5a479e43f0ecba7bb832ee8fbec4f4d28a9404aa37f41c74b7f20547c523bb6c8be7951241c8e76302fc028420c090c04362fcfb0f5541d8dbe0e16c9f35833915e74ca2af821ea172285e496513c2c3bb40c62e26a8edffcb39ad880437d73c2a0e56313175d7feba226a8cfdf1045ea6e0cb91a439ef086372fbc8088499e85c78eae2e9fb8b2ee1a57945f33b7276139abe65525bbeecb79cd7d9598e94cf641b44db2d765216e", &(0x7f0000000280)="988543088f23fb8bd6bee77a0db84bf4b8d968411ba47a6223c97bc1174c6c282f8d9b8b30d3c3474b5e0f1346266b020cf614ee5cabdaa68505eb53847889547770241bebbd8e1bc9ad028c0e3efe303e5e22661df9fba46a8b09f41e6014e4c25fc6ea220a4c5d5a250c027358ca1d994609c39bc248b8929374eebdbbbaf499216a76331a1c3f8462d37082baecca0dfa91c1f0a588e8f71d2b5b26a0d08baf154bd9e47d93798546364ba13906686d12e9"}) shmctl$auto_IPC_INFO(0x9, 0x3, &(0x7f00000004c0)={{0x7, 0x0, 0xffffffffffffffff, 0x1, 0x1, 0x9, 0x8}, 0x0, 0x10, 0xd, 0x7, @raw=0x6, @inferred, 0x6, 0x0, &(0x7f00000003c0)="579fac047cbfdc74b0b576a26f06", &(0x7f0000000400)="21acb93901ca343612be23eafb38566528880adecb77d7d6208f550f821102cbed338f29807a244661ec6f17b71f771ef9128880282dfaa869e1f680de6a64623a99e3f58e81520d6639781473b153c394473ce578711f2de6a0f19f27b88ddb375e144bbe130be7529ec5968537d14300356d1dfdf9bd1186fe44db56484d6d17a4dbda49d07316ae394107656e901bd3f6dd3fb9603a95df05174a31abdf7cf42d120ce416f6"}) 3.618503277s ago: executing program 1 (id=1878): mmap$auto(0x0, 0x2020009, 0x3, 0x4009000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x1, 0xdf, 0xeb4, 0x401, 0xe) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0xa, 0x2, 0x0) r1 = socket(0xa, 0x801, 0x84) connect$auto(r1, &(0x7f0000000080)=@can, 0x53) socket(0x10, 0x3, 0x2) socket(0x10, 0x2, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x608900, 0x0) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) ioctl$auto_KVM_CREATE_VM(r2, 0x4048aecb, 0x0) utimensat$auto(0xffffffffffffffff, &(0x7f0000001c80)='\x00', &(0x7f0000001cc0)={0x23, 0x3fffffff}, 0x1000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x8002, 0x0) ioctl$auto_SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000080)="ec") openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffff7fffff0005, 0x8) openat$auto_proc_pid_maps_operations_internal(0xffffffffffffff9c, &(0x7f0000000300)='/proc/self/smaps_rollup\x00', 0x40000, 0x0) r4 = socket(0x25, 0x1, 0x0) setsockopt$auto(r4, 0x111, 0x7f, 0x0, 0x400) 3.485325017s ago: executing program 3 (id=1879): r0 = landlock_create_ruleset$auto(0x0, 0xd, 0xf4e) mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) r1 = io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x5, 0xdf, 0xfffffffffffffff7, 0x2, 0x73) socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(r1, r0, 0x9) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) socket(0x2, 0x80002, 0x73) socket(0x11, 0x80003, 0x300) dup2$auto(0x0, 0x3) ioctl$auto(0x3, 0x5760, 0x10000000000402) 3.215298011s ago: executing program 0 (id=1880): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) mmap$auto(0x6, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) ioctl$auto_XFS_IOC_ATTRMULTI_BY_HANDLE(0xffffffffffffffff, 0x4048587b, &(0x7f0000000400)={{r0, &(0x7f00000004c0)="ce2f7de8a6e14d302e3514cbf80ad5684d75c3", 0x7ff, &(0x7f00000000c0)="5539868c9e7cf654c4a5c86e2714a047f05f4073a3ec16e3c09fc9d0308f63bee4034edb19e94829499ae2b94a10cd1c9d7d835ffb09403db5f59c5e08b34db60a0ba6f6a5ba4612597060f67027e71db3e0fff0e9448a4e0ed6d3fc8d1fa3ad11bd240bb3cf0d5ce73d", 0xffffffbc, &(0x7f0000000140)="0ae71726ba3a4dee653c37219d2dd346a9c11e256c24337bac494c9d07f4cd33087c9c", &(0x7f0000000180)=0x3}, 0xc9d, &(0x7f00000003c0)={0xff, 0x78a0, &(0x7f00000001c0)="97433d7bedf04b1227665ea88b434bc3c4461a0ccffe823adb330aaf9d758de1c53671a57e847767ae01759a56fb279a11a19fc2e7b464f30be2fffb61f2979172e669fa556147915fb4724e3d385cea0133cf1b0a903d45d3194c70659316d6ba1373599bc5ef659c3cb54b5b60ffd716ad341e1e48518d1a0bc04c6c1d3e20eeab85aaa874669128338944e51aac27cc607dfc022ba0eedc806a08a02d759d02fbf2a821e55525b884ea0d", &(0x7f00000002c0)="9ec7e71664b433d650916920fcf9d1a80a0317fcd674c0d73c3c334038badcac3febd2532fabf80f6a8828e8565090e88291acb70b6dc2b0aa11d23174a12308948d91480b8383ac0eda2d44318f2cadf932ddc4a92d57b22339ae3d6bd34f03cba74dfaf41e9373ca252ee3552384f1be6e009fc4a5bfe08a84e1e6475d507e7577a62c6a5e9fe8b9575419cf3c291a3d6057a35f01a4102b179d176c59f53e98d51ac91bcfd65d0a37dee97adfdd32daa3f4196a87e61279e53c2f8f0749c6397c30d402971befee5a441d14b3520ffe4ff0bbea17423b7690e0bacabca40501dcf3cfbe", 0xd, 0xd}}) ioctl$auto_VHOST_SET_VRING_KICK2(r1, 0x4008af20, &(0x7f0000000480)={0x1}) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv6/conf/macvtap0/stable_secret\x00', 0x42042, 0x0) pread64$auto(r2, 0x0, 0x54e3, 0x80000001) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r3, 0x0, 0x20) r4 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r4, &(0x7f0000000540)={0x0, 0x10000000007}, 0x3) ioctl$auto_SNDCTL_DSP_GETODELAY(0xffffffffffffffff, 0x80045035, 0x0) mount$auto(&(0x7f0000000000)='pim6reg1\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)='hfs\x00\x81\xe2N\x89\x02\x00\x00\x00\x00\x00\x00{\xf1\x86\xf7d@\xe8\x05\x00\x00\x00\x00\x00\x00\x00\'6\xba\xa9s\x1d\xf4\xe1i\xc5\xb6_B\xa7KFS\xc1\xa7\x8e*h\xe3\x8b\x7f\xca\xfcNEi\x84?\x82\xff\xf2\xac\xd1\xee\xff\xff\x00\x00\x00\x00\x00\x00\x84\xe6o\a\x9a\t\xddx\xb8\xdf\vHv\xb5\f\xbc\b\xc0\xfa\xc0\xfe\xa6\xce\xbd\x03\x00\x93,\xdc4\x97\xce\xd5&\x93\xae\x05q\xe9\xa8?\x00\xbdi\x88q\xd0w\xfd@\r\xce\xe4\xadr\xe9c\xf8`b\xbf\xeci\x93a\xc6o\x9ej\xe4\xa3\x99\xaa\xe1\xe1N\n\xbc\xb1\n[\"5\xd4\xa6\x96#).\xbd\x8a^\x88>8J\v\xb5\x99H\xc5\a\xc9\xcf\xbc\x85\xbf\x85\x81\x0f\x7f8\xf8\x05\xcd\xbb\xc03_\xb7Q@\xf2G', 0x7, 0x0) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x8000, 0x0) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x6a742, 0x0) openat$auto_blk_mq_debugfs_fops_blk_mq_debugfs(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$auto_SNDCTL_DSP_SPEED(r5, 0xc0045002, 0x0) ioprio_set$auto(0x2, 0x800000000, 0x8) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/input/mouse0\x00', 0x181502, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x11}}, 0x54) getsockopt$auto(0xffffffffffffffff, 0x84, 0x6d, 0x0, &(0x7f0000000280)=0x1000c0) r6 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000300)='/dev/snd/controlC2\x00', 0x8100, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x80, 0x0) ioctl$auto_SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000580)={{@inferred, 0xf0ee, 0x20009, 0x3, "790eb700ffff8eac2cdab25160860043eeb0b053030001ffff000e00"}, 0x4, 0x966, 0x3, @inferred, @integer={0x800000000000400e, 0x2000000b752, 0x1}, "6cc1294d63a4f1b4285854c5368de438f8cc142ef6df12bf3373a1183bedbd31b642b4051b078fa1c1c61c329794e5311121c760cb9611c78e6947a99807bcc1"}) 2.854266073s ago: executing program 1 (id=1881): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x6, 0x80000, 0x3) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket(0x2, 0x2, 0x1) set_mempolicy$auto(0x6, 0x0, 0x3) unshare$auto(0x40000080) r0 = openat$auto_debugfs_full_proxy_file_operations_internal(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/netdevsim/netdevsim3/hwstats/l3/disable_ifindex\x00', 0x1242, 0x0) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/neigh/batadv0/mcast_solicit\x00', 0x2000, 0x0) read$auto(r1, 0x0, 0x1ff) write$auto(r0, 0x0, 0x9) 2.3343131s ago: executing program 3 (id=1882): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) unshare$auto(0x40000080) mmap$auto(0x0, 0x20009, 0x4000000000db, 0x12, 0x400, 0x18002) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(0xffffffffffffffff, 0x0, 0xfff) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0x100000a3d9) r2 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB='&\x00', @ANYBLOB="5de1"], 0x1ac}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) read$auto(r2, &(0x7f0000002300)='MAC802154_HWSIM\x00', 0xfdef) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000001a40)='/dev/input/event1\x00', 0x34d802, 0x0) r3 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000bc0)='/dev/binderfs/binder0\x00', 0x102, 0x0) ioctl$auto_BINDER_SET_CONTEXT_MGR(r3, 0x40046207, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) r4 = openat$auto_state_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x1e9482, 0x0) read$auto_state_fops_(r4, &(0x7f0000000180)=""/61, 0xfffffeeb) syz_genetlink_get_family_id$auto_ovs_flow(&(0x7f0000000180), r2) mmap$auto(0x0, 0x4, 0x4000000000df, 0x18, 0x401, 0x300000000000) prctl$auto_SECCOMP_MODE_STRICT(0xf, 0x1, 0x0, 0x9, 0x2) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/lu_gp_id\x00', 0x189002, 0x0) ptrace$auto(0x3, r0, 0x5, 0x4) keyctl$auto(0x2000000000000017, 0x3ff, 0x0, 0x0, 0x3) statmount$auto(0x0, &(0x7f0000000180)={0x9, 0x1, 0x6, 0x1, 0x89, 0x7181, 0x3ffde, 0x4, 0x10, 0x9, 0x6, 0x80003, 0x4, 0x11ffffffffffd, 0x85, 0xfffffffffffffffb, 0x9, 0x50007, 0x2, 0x0, 0x0, 0x80000001, 0x1, 0x202, 0x9, 0x8000, 0x0, 0x0, 0x2, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x3, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x400000004, 0x3, 0x2000000800000000, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000009, 0x0, 0x0, 0x0, 0x6, 0x0, 0x1, 0x0, 0xfffffffffffffffd, 0xfffffffffffffffc]}, 0x1fe, 0xd) r5 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f0000000180), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r5, 0xfffffffffffffd02, &(0x7f00000001c0)) 358.378323ms ago: executing program 2 (id=1883): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000140), 0x2002, 0x0) socket(0x29, 0x2, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) r1 = socket(0x23, 0x2, 0x0) sendmsg$auto_NL80211_CMD_EXTERNAL_AUTH(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x23, 0x0, 0x0, 0x1080020}, 0x1a, &(0x7f00000000c0)={&(0x7f0000000340)={0x28, 0x0, 0x20, 0x70bd29, 0x25dfdbfd}, 0x28}, 0x1, 0x0, 0x0, 0x4048800}, 0x40) r2 = prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r0, &(0x7f0000000400)='\x00\x00\x00\x00', 0x100000a3d9) mremap$auto(0x0, 0x4000007, 0x3fd7, 0x0, 0x20000020000000) process_vm_readv$auto(0x0, &(0x7f0000000000)={0x0, 0xfff}, 0x40000000001, 0x0, 0xa, 0x0) ioctl$auto(0x3, 0x400454ca, 0x38) ioctl$auto_BLKTRACESTOP2(r2, 0x1275, 0x0) close_range$auto(0x2, 0x8, 0x0) memfd_create$auto(0x0, 0xe) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x2000, 0x0) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000080), r2) write$auto(r3, &(0x7f0000000180)='D,\x05\x00', 0x80000000) ioprio_set$auto(0x3, 0x0, 0x4b34) socket(0x2, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r4 = openat$auto_drm_edid_fops_drm_debugfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/dri/vkms/Virtual-1/edid_override\x00', 0x2082, 0x0) write$auto_drm_edid_fops_drm_debugfs(r4, &(0x7f0000000380)="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", 0x4e00) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0xa, 0x2, 0x88) 0s ago: executing program 0 (id=1884): r0 = openat$auto_evdev_fops_evdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/input/event1\x00', 0x4e8c02, 0x0) ioctl$auto_EVIOCGMASK(r0, 0x80104592, 0x0) mmap$auto(0x0, 0x2040009, 0x20000000df, 0x400000015, 0x7, 0x28000) timer_create$auto_CLOCK_REALTIME(0x0, &(0x7f0000000380)={@sival_ptr=&(0x7f0000000200)="afa552d334084791053325ee56d498f6c3f42144ec46b48433326cbc2bc6f4d96944a365d46f36dc41dcb0c3d18df09e8e20f4fc6a448fa25df12d66116e1726c1bf26e7ec32cac731403320123658d9cc1d9430be511803dbb8a1ad1bda045dcb68a480e405999ab36a4ca1d77e107b05a77e73988a148e332127b8c89eba14aca22de54e97a50b70656b5a3098f2b8e1791b76f99361a03d9b1a75e0cce97ce37216424b215d40dc3be17e8c9c4502376a00f5866cf9b995e0c208da9e5cecd9b6a7ad365d1beae5577ef2beebefc478a0f5dd724154f18c6234589f6f4fdd65108b53", @raw=0x1, 0xf, @_sigev_thread={&(0x7f0000000300)=&(0x7f0000000100)=0xea, &(0x7f0000000340)="0038ca129a0c30cade34"}}, &(0x7f00000003c0)=0x7) r1 = openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000000), 0x8001, 0x0) mmap$auto(0xfffffffffffffffd, 0x20005, 0x0, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, r1, 0xfffffffc) r2 = socket(0xb, 0x80000, 0x8000037) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x0, 0x2000000005, 0x6) setfsuid$auto(0x0) write$auto(0xca, &(0x7f0000000040)='\x04\x1c\xdc\xec7z\xdf3\xf2\xd3!\v\xb0M\xf8Q\x15\f', 0x2d8) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x80002, 0x73) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @local}, 0x54) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nfsd(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) fanotify_mark$auto(0xffffffffffffffff, 0x205, 0xa, 0x4, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) sendmsg$auto_L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="34010084ec06978567debc9bb00d60d55b5b280e9dcd136326c1879253d9e80989d135a79552e5b6ba33152dcc6d2afa7a54629b4674fa7f7006bb33c8c19acb2aab7702f045e00e45c2bd36154d56590086cdf3e4e4f37d8f06cd32fdd0b4ec239dd66e8042398e78529a565dfdaf4612b0ac2202863081a2", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fcdbdf25010000000c00160002000000000000000c0010000900000000"], 0x34}, 0x1, 0x0, 0x0, 0x8044}, 0x40000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) kernel console output (not intermixed with test programs): mer overrun [ 460.694179][T12321] lowmem_reserve[]: 0 0 0 0 0 [ 460.740255][T12321] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 460.794420][T12321] Node 0 DMA32: 4544*4kB (UME) 911*8kB (UM) 852*16kB (UM) 711*32kB (UME) 148*64kB (UM) 70*128kB (UM) 71*256kB (UME) 58*512kB (M) 35*1024kB (UM) 10*2048kB (UME) 294*4096kB (M) = 1388696kB [ 460.816393][ C0] vkms_vblank_simulate: vblank timer overrun [ 460.826378][T12325] FAULT_INJECTION: forcing a failure. [ 460.826378][T12325] name failslab, interval 1, probability 0, space 0, times 0 [ 460.845624][T12325] CPU: 0 UID: 0 PID: 12325 Comm: syz.0.1476 Not tainted syzkaller #0 PREEMPT(full) [ 460.845662][T12325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 460.845679][T12325] Call Trace: [ 460.845689][T12325] [ 460.845700][T12325] dump_stack_lvl+0x16c/0x1f0 [ 460.845735][T12325] should_fail_ex+0x512/0x640 [ 460.845769][T12325] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 460.845805][T12325] should_failslab+0xc2/0x120 [ 460.845839][T12325] __kvmalloc_node_noprof+0x141/0x9c0 [ 460.845871][T12325] ? v4l2_ctrl_new+0x982/0x2190 [ 460.845901][T12325] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 460.845951][T12325] ? v4l2_ctrl_new+0x982/0x2190 [ 460.845995][T12325] v4l2_ctrl_new+0x982/0x2190 [ 460.846045][T12325] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 460.846078][T12325] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 460.846123][T12325] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 460.846166][T12325] v4l2_ctrl_new_std+0x1be/0x290 [ 460.846209][T12325] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 460.846240][T12325] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 460.846278][T12325] ? trace_kmalloc+0x2b/0xd0 [ 460.846315][T12325] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 460.846352][T12325] ? media_request_object_init+0x100/0x180 [ 460.846381][T12325] vicodec_open+0x1d9/0xf70 [ 460.846407][T12325] ? kobject_get_unless_zero+0x156/0x1e0 [ 460.846450][T12325] v4l2_open+0x1d2/0x5e0 [ 460.846481][T12325] ? __pfx_v4l2_open+0x10/0x10 [ 460.846509][T12325] chrdev_open+0x234/0x6a0 [ 460.846539][T12325] ? __pfx_apparmor_file_open+0x10/0x10 [ 460.846579][T12325] ? __pfx_chrdev_open+0x10/0x10 [ 460.846613][T12325] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 460.846650][T12325] do_dentry_open+0x982/0x1530 [ 460.846682][T12325] ? __pfx_chrdev_open+0x10/0x10 [ 460.846722][T12325] vfs_open+0x82/0x3f0 [ 460.846780][T12325] path_openat+0x1de4/0x2cb0 [ 460.846824][T12325] ? __pfx_path_openat+0x10/0x10 [ 460.846858][T12325] ? __lock_acquire+0xb8a/0x1c90 [ 460.846899][T12325] do_filp_open+0x20b/0x470 [ 460.846931][T12325] ? __pfx_do_filp_open+0x10/0x10 [ 460.846997][T12325] ? alloc_fd+0x471/0x7d0 [ 460.847037][T12325] do_sys_openat2+0x11b/0x1d0 [ 460.847075][T12325] ? __pfx_do_sys_openat2+0x10/0x10 [ 460.847129][T12325] __x64_sys_openat+0x174/0x210 [ 460.847168][T12325] ? __pfx___x64_sys_openat+0x10/0x10 [ 460.847221][T12325] do_syscall_64+0xcd/0xfa0 [ 460.847257][T12325] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 460.847285][T12325] RIP: 0033:0x7fe95998f7c9 [ 460.847308][T12325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 460.847334][T12325] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 460.847360][T12325] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 460.847379][T12325] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 460.847396][T12325] RBP: 00007fe959a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 460.847413][T12325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 460.847430][T12325] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 460.847469][T12325] [ 460.935504][T12321] Node 0 [ 460.936370][ C0] vkms_vblank_simulate: vblank timer overrun [ 461.170839][ C0] vkms_vblank_simulate: vblank timer overrun [ 461.176820][ C0] hrtimer: interrupt took 321459995 ns [ 461.182376][T12321] Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 461.195463][T12321] Node 1 Normal: 196*4kB (UM) 51*8kB (UME) 47*16kB (UME) 230*32kB (UME) 87*64kB (UME) 15*128kB (UME) 5*256kB (UME) 4*512kB (UM) 1*1024kB (M) 2*2048kB (ME) 943*4096kB (M) = 3887768kB [ 461.230882][T12321] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 461.265423][T12321] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 461.274765][T12321] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 461.276913][ C0] vkms_vblank_simulate: vblank timer overrun [ 461.324002][T12321] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 461.378012][T12321] 46901 total pagecache pages [ 461.393029][T12321] 52 pages in swap cache [ 461.400786][T12321] Free swap = 119176kB [ 461.415583][T12321] Total swap = 124996kB [ 461.419783][T12321] 2097051 pages RAM [ 461.453975][T12321] 0 pages HighMem/MovableOnly [ 461.473068][T12321] 428697 pages reserved [ 461.502526][T12321] 0 pages cma reserved [ 461.521424][T12321] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 465.624847][T12418] nvme_fabrics: unknown parameter or missing value 'û@è' in ctrl creation request [ 465.644955][T12418] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1498'. [ 465.709366][ T5833] Bluetooth: hci3: unknown advertising packet type: 0xea [ 465.722088][T12417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1497'. [ 466.394183][T12431] netlink: set zone limit has 8 unknown bytes [ 466.927516][T12440] random: crng reseeded on system resumption [ 467.131526][ T5833] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 468.443557][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 469.087291][T12465] FAULT_INJECTION: forcing a failure. [ 469.087291][T12465] name failslab, interval 1, probability 0, space 0, times 0 [ 469.125514][T12465] CPU: 0 UID: 0 PID: 12465 Comm: syz.3.1505 Not tainted syzkaller #0 PREEMPT(full) [ 469.125553][T12465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 469.125570][T12465] Call Trace: [ 469.125579][T12465] [ 469.125591][T12465] dump_stack_lvl+0x16c/0x1f0 [ 469.125630][T12465] should_fail_ex+0x512/0x640 [ 469.125669][T12465] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 469.125707][T12465] should_failslab+0xc2/0x120 [ 469.125744][T12465] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 469.125775][T12465] ? __alloc_workqueue+0x670/0x1810 [ 469.125818][T12465] ? __alloc_workqueue+0x670/0x1810 [ 469.125852][T12465] __alloc_workqueue+0x670/0x1810 [ 469.125898][T12465] alloc_workqueue_noprof+0xd2/0x200 [ 469.125956][T12465] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 469.125997][T12465] ? rcu_is_watching+0x12/0xc0 [ 469.126027][T12465] ? trace_kmalloc+0x2b/0xd0 [ 469.126059][T12465] ? __kmalloc_noprof+0x34f/0x880 [ 469.126085][T12465] ? ieee80211_register_hw+0x15c9/0x4120 [ 469.126138][T12465] ieee80211_register_hw+0x1f1a/0x4120 [ 469.126190][T12465] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 469.126228][T12465] ? __pfx___debug_object_init+0x10/0x10 [ 469.126273][T12465] ? find_held_lock+0x2b/0x80 [ 469.126302][T12465] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 469.126347][T12465] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 469.126381][T12465] ? __hrtimer_setup+0x176/0x280 [ 469.126424][T12465] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 469.126477][T12465] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 469.126518][T12465] hwsim_new_radio_nl+0xba2/0x1330 [ 469.126551][T12465] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 469.126592][T12465] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 469.126628][T12465] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 469.126671][T12465] genl_family_rcv_msg_doit+0x209/0x2f0 [ 469.126708][T12465] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 469.126754][T12465] ? bpf_lsm_capable+0x9/0x10 [ 469.126788][T12465] ? security_capable+0x7e/0x260 [ 469.126826][T12465] ? ns_capable+0xd7/0x110 [ 469.126858][T12465] genl_rcv_msg+0x55c/0x800 [ 469.126895][T12465] ? __pfx_genl_rcv_msg+0x10/0x10 [ 469.126929][T12465] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 469.126972][T12465] netlink_rcv_skb+0x158/0x420 [ 469.127001][T12465] ? __pfx_genl_rcv_msg+0x10/0x10 [ 469.127035][T12465] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 469.127079][T12465] ? netlink_deliver_tap+0x1ae/0xd30 [ 469.127113][T12465] genl_rcv+0x28/0x40 [ 469.127149][T12465] netlink_unicast+0x5aa/0x870 [ 469.127185][T12465] ? __pfx_netlink_unicast+0x10/0x10 [ 469.127230][T12465] netlink_sendmsg+0x8c8/0xdd0 [ 469.127266][T12465] ? __pfx_netlink_sendmsg+0x10/0x10 [ 469.127301][T12465] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 469.127345][T12465] ____sys_sendmsg+0xa98/0xc70 [ 469.127376][T12465] ? copy_msghdr_from_user+0x10a/0x160 [ 469.127399][T12465] ? __pfx_____sys_sendmsg+0x10/0x10 [ 469.127439][T12465] ? __pfx_futex_wake_mark+0x10/0x10 [ 469.127488][T12465] ___sys_sendmsg+0x134/0x1d0 [ 469.127512][T12465] ? find_held_lock+0x2b/0x80 [ 469.127542][T12465] ? __pfx____sys_sendmsg+0x10/0x10 [ 469.127566][T12465] ? __lock_acquire+0x622/0x1c90 [ 469.127646][T12465] __sys_sendmsg+0x16d/0x220 [ 469.127673][T12465] ? __pfx___sys_sendmsg+0x10/0x10 [ 469.127699][T12465] ? __x64_sys_futex+0x1e0/0x4c0 [ 469.127758][T12465] do_syscall_64+0xcd/0xfa0 [ 469.127794][T12465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 469.127821][T12465] RIP: 0033:0x7f8cb318f7c9 [ 469.127842][T12465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 469.127868][T12465] RSP: 002b:00007f8cb4006038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 469.127895][T12465] RAX: ffffffffffffffda RBX: 00007f8cb33e5fa0 RCX: 00007f8cb318f7c9 [ 469.127914][T12465] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 469.127932][T12465] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 469.127949][T12465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 469.127966][T12465] R13: 00007f8cb33e6038 R14: 00007f8cb33e5fa0 R15: 00007fff3a100278 [ 469.128005][T12465] [ 469.637807][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 469.692067][T12475] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1509'. [ 470.910253][T12494] FAULT_INJECTION: forcing a failure. [ 470.910253][T12494] name failslab, interval 1, probability 0, space 0, times 0 [ 470.955774][T12494] CPU: 0 UID: 0 PID: 12494 Comm: syz.0.1516 Not tainted syzkaller #0 PREEMPT(full) [ 470.955812][T12494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 470.955831][T12494] Call Trace: [ 470.955840][T12494] [ 470.955852][T12494] dump_stack_lvl+0x16c/0x1f0 [ 470.955892][T12494] should_fail_ex+0x512/0x640 [ 470.955932][T12494] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 470.955973][T12494] should_failslab+0xc2/0x120 [ 470.956010][T12494] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 470.956048][T12494] ? kasprintf+0xc7/0x100 [ 470.956081][T12494] ? kvasprintf+0xbc/0x160 [ 470.956106][T12494] kvasprintf+0xbc/0x160 [ 470.956132][T12494] ? __pfx_kvasprintf+0x10/0x10 [ 470.956161][T12494] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 470.956192][T12494] ? lockdep_hardirqs_on+0x7c/0x110 [ 470.956361][T12494] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 470.956399][T12494] kasprintf+0xc7/0x100 [ 470.956425][T12494] ? __pfx_kasprintf+0x10/0x10 [ 470.956461][T12494] ? __pfx_sta_info_cleanup+0x10/0x10 [ 470.956501][T12494] ieee80211_alloc_led_names+0x11b/0x420 [ 470.956543][T12494] ieee80211_alloc_hw_nm+0x197c/0x22b0 [ 470.956587][T12494] mac80211_hwsim_new_radio+0x1d3/0x50b0 [ 470.956635][T12494] ? __asan_memset+0x23/0x50 [ 470.956666][T12494] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 470.956709][T12494] hwsim_new_radio_nl+0xba2/0x1330 [ 470.956743][T12494] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 470.956786][T12494] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 470.956823][T12494] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 470.956868][T12494] genl_family_rcv_msg_doit+0x209/0x2f0 [ 470.956906][T12494] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 470.956954][T12494] ? bpf_lsm_capable+0x9/0x10 [ 470.956989][T12494] ? security_capable+0x7e/0x260 [ 470.957029][T12494] ? ns_capable+0xd7/0x110 [ 470.957062][T12494] genl_rcv_msg+0x55c/0x800 [ 470.957101][T12494] ? __pfx_genl_rcv_msg+0x10/0x10 [ 470.957138][T12494] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 470.957194][T12494] netlink_rcv_skb+0x158/0x420 [ 470.957226][T12494] ? __pfx_genl_rcv_msg+0x10/0x10 [ 470.957264][T12494] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 470.957312][T12494] ? netlink_deliver_tap+0x1ae/0xd30 [ 470.957347][T12494] genl_rcv+0x28/0x40 [ 470.957377][T12494] netlink_unicast+0x5aa/0x870 [ 470.957411][T12494] ? __pfx_netlink_unicast+0x10/0x10 [ 470.957458][T12494] netlink_sendmsg+0x8c8/0xdd0 [ 470.957495][T12494] ? __pfx_netlink_sendmsg+0x10/0x10 [ 470.957527][T12494] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 470.957570][T12494] ____sys_sendmsg+0xa98/0xc70 [ 470.957609][T12494] ? copy_msghdr_from_user+0x10a/0x160 [ 470.957636][T12494] ? __pfx_____sys_sendmsg+0x10/0x10 [ 470.957674][T12494] ? __pfx_futex_wake_mark+0x10/0x10 [ 470.957718][T12494] ___sys_sendmsg+0x134/0x1d0 [ 470.957747][T12494] ? __pfx____sys_sendmsg+0x10/0x10 [ 470.957768][T12494] ? __lock_acquire+0x622/0x1c90 [ 470.957840][T12494] __sys_sendmsg+0x16d/0x220 [ 470.957871][T12494] ? __pfx___sys_sendmsg+0x10/0x10 [ 470.957900][T12494] ? __x64_sys_futex+0x1e0/0x4c0 [ 470.957954][T12494] do_syscall_64+0xcd/0xfa0 [ 470.957997][T12494] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 470.958024][T12494] RIP: 0033:0x7fe95998f7c9 [ 470.958046][T12494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 470.958073][T12494] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 470.958099][T12494] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 470.958115][T12494] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 470.958133][T12494] RBP: 00007fe959a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 470.958149][T12494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 470.958177][T12494] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 470.958218][T12494] [ 471.894788][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 471.900365][T12486] FAULT_INJECTION: forcing a failure. [ 471.900365][T12486] name failslab, interval 1, probability 0, space 0, times 0 [ 471.904815][T12505] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1518'. [ 471.916536][T12486] CPU: 1 UID: 0 PID: 12486 Comm: syz.1.1514 Not tainted syzkaller #0 PREEMPT(full) [ 471.916575][T12486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 471.916592][T12486] Call Trace: [ 471.916603][T12486] [ 471.916614][T12486] dump_stack_lvl+0x16c/0x1f0 [ 471.916654][T12486] should_fail_ex+0x512/0x640 [ 471.916692][T12486] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 471.916729][T12486] should_failslab+0xc2/0x120 [ 471.916764][T12486] __kvmalloc_node_noprof+0x141/0x9c0 [ 471.916812][T12486] ? v4l2_ctrl_new+0x982/0x2190 [ 471.916846][T12486] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 471.916895][T12486] ? v4l2_ctrl_new+0x982/0x2190 [ 471.916926][T12486] v4l2_ctrl_new+0x982/0x2190 [ 471.916978][T12486] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 471.917013][T12486] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 471.917055][T12486] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 471.917099][T12486] v4l2_ctrl_new_std+0x1be/0x290 [ 471.917145][T12486] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 471.917175][T12486] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 471.917214][T12486] ? trace_kmalloc+0x2b/0xd0 [ 471.917250][T12486] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 471.917289][T12486] ? media_request_object_init+0x100/0x180 [ 471.917322][T12486] vicodec_open+0x1d9/0xf70 [ 471.917349][T12486] ? kobject_get_unless_zero+0x156/0x1e0 [ 471.917391][T12486] v4l2_open+0x1d2/0x5e0 [ 471.917421][T12486] ? __pfx_v4l2_open+0x10/0x10 [ 471.917449][T12486] chrdev_open+0x234/0x6a0 [ 471.917480][T12486] ? __pfx_apparmor_file_open+0x10/0x10 [ 471.917518][T12486] ? __pfx_chrdev_open+0x10/0x10 [ 471.917551][T12486] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 471.917587][T12486] do_dentry_open+0x982/0x1530 [ 471.917619][T12486] ? __pfx_chrdev_open+0x10/0x10 [ 471.917657][T12486] vfs_open+0x82/0x3f0 [ 471.917697][T12486] path_openat+0x1de4/0x2cb0 [ 471.917738][T12486] ? __pfx_path_openat+0x10/0x10 [ 471.917778][T12486] ? __lock_acquire+0xb8a/0x1c90 [ 471.917819][T12486] do_filp_open+0x20b/0x470 [ 471.917850][T12486] ? __pfx_do_filp_open+0x10/0x10 [ 471.917906][T12486] ? alloc_fd+0x471/0x7d0 [ 471.917944][T12486] do_sys_openat2+0x11b/0x1d0 [ 471.917981][T12486] ? __pfx_do_sys_openat2+0x10/0x10 [ 471.918032][T12486] __x64_sys_openat+0x174/0x210 [ 471.918069][T12486] ? __pfx___x64_sys_openat+0x10/0x10 [ 471.918121][T12486] do_syscall_64+0xcd/0xfa0 [ 471.918155][T12486] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 471.918181][T12486] RIP: 0033:0x7f03fab8f7c9 [ 471.918203][T12486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 471.918228][T12486] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 471.918253][T12486] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 471.918271][T12486] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 471.918288][T12486] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 471.918304][T12486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 471.918321][T12486] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 471.918359][T12486] [ 473.731953][T12530] random: crng reseeded on system resumption [ 473.843570][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 474.762429][T12542] netlink: set zone limit has 8 unknown bytes [ 476.170481][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 478.094236][T12612] FAULT_INJECTION: forcing a failure. [ 478.094236][T12612] name failslab, interval 1, probability 0, space 0, times 0 [ 478.168651][T12612] CPU: 0 UID: 0 PID: 12612 Comm: syz.0.1543 Not tainted syzkaller #0 PREEMPT(full) [ 478.168691][T12612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 478.168709][T12612] Call Trace: [ 478.168719][T12612] [ 478.168730][T12612] dump_stack_lvl+0x16c/0x1f0 [ 478.168770][T12612] should_fail_ex+0x512/0x640 [ 478.168810][T12612] ? __kmalloc_noprof+0xca/0x880 [ 478.168840][T12612] should_failslab+0xc2/0x120 [ 478.168882][T12612] __kmalloc_noprof+0xdd/0x880 [ 478.168913][T12612] ? __alloc_workqueue+0x112/0x1810 [ 478.168956][T12612] ? __alloc_workqueue+0x112/0x1810 [ 478.168989][T12612] __alloc_workqueue+0x112/0x1810 [ 478.169037][T12612] alloc_workqueue_noprof+0xd2/0x200 [ 478.169072][T12612] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 478.169111][T12612] ? rcu_is_watching+0x12/0xc0 [ 478.169140][T12612] ? trace_kmalloc+0x2b/0xd0 [ 478.169171][T12612] ? __kmalloc_noprof+0x34f/0x880 [ 478.169197][T12612] ? ieee80211_register_hw+0x15c9/0x4120 [ 478.169251][T12612] ieee80211_register_hw+0x1f1a/0x4120 [ 478.169304][T12612] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 478.169343][T12612] ? __pfx___debug_object_init+0x10/0x10 [ 478.169380][T12612] ? find_held_lock+0x2b/0x80 [ 478.169407][T12612] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 478.169448][T12612] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 478.169483][T12612] ? __hrtimer_setup+0x176/0x280 [ 478.169528][T12612] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 478.169582][T12612] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 478.169624][T12612] hwsim_new_radio_nl+0xba2/0x1330 [ 478.169657][T12612] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 478.169698][T12612] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 478.169735][T12612] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 478.169778][T12612] genl_family_rcv_msg_doit+0x209/0x2f0 [ 478.169815][T12612] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 478.169860][T12612] ? bpf_lsm_capable+0x9/0x10 [ 478.169891][T12612] ? security_capable+0x7e/0x260 [ 478.169925][T12612] ? ns_capable+0xd7/0x110 [ 478.169953][T12612] genl_rcv_msg+0x55c/0x800 [ 478.169988][T12612] ? __pfx_genl_rcv_msg+0x10/0x10 [ 478.170021][T12612] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 478.170063][T12612] netlink_rcv_skb+0x158/0x420 [ 478.170092][T12612] ? __pfx_genl_rcv_msg+0x10/0x10 [ 478.170127][T12612] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 478.170182][T12612] genl_rcv+0x28/0x40 [ 478.170219][T12612] netlink_unicast+0x5aa/0x870 [ 478.170256][T12612] ? __pfx_netlink_unicast+0x10/0x10 [ 478.170300][T12612] netlink_sendmsg+0x8c8/0xdd0 [ 478.170338][T12612] ? __pfx_netlink_sendmsg+0x10/0x10 [ 478.170372][T12612] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 478.170418][T12612] ____sys_sendmsg+0xa98/0xc70 [ 478.170453][T12612] ? copy_msghdr_from_user+0x10a/0x160 [ 478.170479][T12612] ? __pfx_____sys_sendmsg+0x10/0x10 [ 478.170515][T12612] ? preempt_schedule_thunk+0x16/0x30 [ 478.170564][T12612] ? try_to_wake_up+0xa67/0x1870 [ 478.170599][T12612] ___sys_sendmsg+0x134/0x1d0 [ 478.170622][T12612] ? find_held_lock+0x2b/0x80 [ 478.170651][T12612] ? __pfx____sys_sendmsg+0x10/0x10 [ 478.170676][T12612] ? __lock_acquire+0x622/0x1c90 [ 478.170751][T12612] __sys_sendmsg+0x16d/0x220 [ 478.170779][T12612] ? __pfx___sys_sendmsg+0x10/0x10 [ 478.170805][T12612] ? __x64_sys_futex+0x1e0/0x4c0 [ 478.170863][T12612] do_syscall_64+0xcd/0xfa0 [ 478.170899][T12612] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.170927][T12612] RIP: 0033:0x7fe95998f7c9 [ 478.170949][T12612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.170975][T12612] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 478.171001][T12612] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 478.171022][T12612] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 478.171040][T12612] RBP: 00007fe959a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 478.171057][T12612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.171073][T12612] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 478.171112][T12612] [ 480.657976][T12656] netlink: set zone limit has 8 unknown bytes [ 481.324626][T12659] nvme_fcloop: unknown parameter or missing value '7' [ 481.633292][T12666] syz.0.1554 (12666) used obsolete PPPIOCDETACH ioctl [ 481.997444][T12670] FAULT_INJECTION: forcing a failure. [ 481.997444][T12670] name failslab, interval 1, probability 0, space 0, times 0 [ 482.012373][T12670] CPU: 0 UID: 0 PID: 12670 Comm: syz.3.1555 Not tainted syzkaller #0 PREEMPT(full) [ 482.012415][T12670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 482.012433][T12670] Call Trace: [ 482.012442][T12670] [ 482.012451][T12670] dump_stack_lvl+0x16c/0x1f0 [ 482.012490][T12670] should_fail_ex+0x512/0x640 [ 482.012527][T12670] ? __kmalloc_noprof+0xca/0x880 [ 482.012553][T12670] should_failslab+0xc2/0x120 [ 482.012588][T12670] __kmalloc_noprof+0xdd/0x880 [ 482.012613][T12670] ? __alloc_workqueue+0x112/0x1810 [ 482.012652][T12670] ? __alloc_workqueue+0x112/0x1810 [ 482.012682][T12670] __alloc_workqueue+0x112/0x1810 [ 482.012723][T12670] alloc_workqueue_noprof+0xd2/0x200 [ 482.012769][T12670] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 482.012810][T12670] ? rcu_is_watching+0x12/0xc0 [ 482.012840][T12670] ? trace_kmalloc+0x2b/0xd0 [ 482.012871][T12670] ? __kmalloc_noprof+0x34f/0x880 [ 482.012895][T12670] ? ieee80211_register_hw+0x15c9/0x4120 [ 482.012939][T12670] ieee80211_register_hw+0x1f1a/0x4120 [ 482.012983][T12670] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 482.013017][T12670] ? __pfx___debug_object_init+0x10/0x10 [ 482.013052][T12670] ? find_held_lock+0x2b/0x80 [ 482.013079][T12670] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 482.013119][T12670] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 482.013152][T12670] ? __hrtimer_setup+0x176/0x280 [ 482.013191][T12670] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 482.013239][T12670] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 482.013282][T12670] hwsim_new_radio_nl+0xba2/0x1330 [ 482.013314][T12670] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 482.013353][T12670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 482.013385][T12670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 482.013428][T12670] genl_family_rcv_msg_doit+0x209/0x2f0 [ 482.013464][T12670] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 482.013510][T12670] ? bpf_lsm_capable+0x9/0x10 [ 482.013543][T12670] ? security_capable+0x7e/0x260 [ 482.013579][T12670] ? ns_capable+0xd7/0x110 [ 482.013611][T12670] genl_rcv_msg+0x55c/0x800 [ 482.013646][T12670] ? __pfx_genl_rcv_msg+0x10/0x10 [ 482.013678][T12670] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 482.013716][T12670] netlink_rcv_skb+0x158/0x420 [ 482.013745][T12670] ? __pfx_genl_rcv_msg+0x10/0x10 [ 482.013787][T12670] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 482.013832][T12670] ? netlink_deliver_tap+0x1ae/0xd30 [ 482.013865][T12670] genl_rcv+0x28/0x40 [ 482.013893][T12670] netlink_unicast+0x5aa/0x870 [ 482.013927][T12670] ? __pfx_netlink_unicast+0x10/0x10 [ 482.013970][T12670] netlink_sendmsg+0x8c8/0xdd0 [ 482.014004][T12670] ? __pfx_netlink_sendmsg+0x10/0x10 [ 482.014039][T12670] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 482.014083][T12670] ____sys_sendmsg+0xa98/0xc70 [ 482.014119][T12670] ? copy_msghdr_from_user+0x10a/0x160 [ 482.014145][T12670] ? __pfx_____sys_sendmsg+0x10/0x10 [ 482.014187][T12670] ? __pfx_futex_wake_mark+0x10/0x10 [ 482.014233][T12670] ___sys_sendmsg+0x134/0x1d0 [ 482.014257][T12670] ? find_held_lock+0x2b/0x80 [ 482.014286][T12670] ? __pfx____sys_sendmsg+0x10/0x10 [ 482.014310][T12670] ? __lock_acquire+0x622/0x1c90 [ 482.014391][T12670] __sys_sendmsg+0x16d/0x220 [ 482.014419][T12670] ? __pfx___sys_sendmsg+0x10/0x10 [ 482.014445][T12670] ? __x64_sys_futex+0x1e0/0x4c0 [ 482.014500][T12670] do_syscall_64+0xcd/0xfa0 [ 482.014535][T12670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.014561][T12670] RIP: 0033:0x7f8cb318f7c9 [ 482.014583][T12670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 482.014609][T12670] RSP: 002b:00007f8cb4006038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 482.014634][T12670] RAX: ffffffffffffffda RBX: 00007f8cb33e5fa0 RCX: 00007f8cb318f7c9 [ 482.014650][T12670] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 482.014665][T12670] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 482.014680][T12670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 482.014694][T12670] R13: 00007f8cb33e6038 R14: 00007f8cb33e5fa0 R15: 00007fff3a100278 [ 482.014728][T12670] [ 483.558820][T12688] FAULT_INJECTION: forcing a failure. [ 483.558820][T12688] name failslab, interval 1, probability 0, space 0, times 0 [ 483.657688][T12688] CPU: 0 UID: 0 PID: 12688 Comm: syz.3.1559 Not tainted syzkaller #0 PREEMPT(full) [ 483.657729][T12688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 483.657747][T12688] Call Trace: [ 483.657757][T12688] [ 483.657775][T12688] dump_stack_lvl+0x16c/0x1f0 [ 483.657814][T12688] should_fail_ex+0x512/0x640 [ 483.657852][T12688] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 483.657887][T12688] should_failslab+0xc2/0x120 [ 483.657932][T12688] __kvmalloc_node_noprof+0x141/0x9c0 [ 483.657968][T12688] ? v4l2_ctrl_new+0x982/0x2190 [ 483.658002][T12688] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 483.658053][T12688] ? v4l2_ctrl_new+0x982/0x2190 [ 483.658092][T12688] v4l2_ctrl_new+0x982/0x2190 [ 483.658142][T12688] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 483.658177][T12688] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 483.658223][T12688] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 483.658277][T12688] v4l2_ctrl_new_std+0x1be/0x290 [ 483.658323][T12688] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 483.658358][T12688] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 483.658398][T12688] ? trace_kmalloc+0x2b/0xd0 [ 483.658435][T12688] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 483.658476][T12688] ? media_request_object_init+0x100/0x180 [ 483.658510][T12688] vicodec_open+0x1d9/0xf70 [ 483.658538][T12688] ? kobject_get_unless_zero+0x156/0x1e0 [ 483.658582][T12688] v4l2_open+0x1d2/0x5e0 [ 483.658612][T12688] ? __pfx_v4l2_open+0x10/0x10 [ 483.658641][T12688] chrdev_open+0x234/0x6a0 [ 483.658672][T12688] ? __pfx_apparmor_file_open+0x10/0x10 [ 483.658713][T12688] ? __pfx_chrdev_open+0x10/0x10 [ 483.658749][T12688] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 483.658788][T12688] do_dentry_open+0x982/0x1530 [ 483.658820][T12688] ? __pfx_chrdev_open+0x10/0x10 [ 483.658860][T12688] vfs_open+0x82/0x3f0 [ 483.658903][T12688] path_openat+0x1de4/0x2cb0 [ 483.658953][T12688] ? __pfx_path_openat+0x10/0x10 [ 483.658987][T12688] ? __lock_acquire+0xb8a/0x1c90 [ 483.659030][T12688] do_filp_open+0x20b/0x470 [ 483.659063][T12688] ? __pfx_do_filp_open+0x10/0x10 [ 483.659120][T12688] ? alloc_fd+0x471/0x7d0 [ 483.659159][T12688] do_sys_openat2+0x11b/0x1d0 [ 483.659197][T12688] ? __pfx_do_sys_openat2+0x10/0x10 [ 483.659251][T12688] __x64_sys_openat+0x174/0x210 [ 483.659290][T12688] ? __pfx___x64_sys_openat+0x10/0x10 [ 483.659345][T12688] do_syscall_64+0xcd/0xfa0 [ 483.659381][T12688] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 483.659409][T12688] RIP: 0033:0x7f8cb318f7c9 [ 483.659432][T12688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 483.659459][T12688] RSP: 002b:00007f8cb3fe5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 483.659486][T12688] RAX: ffffffffffffffda RBX: 00007f8cb33e6090 RCX: 00007f8cb318f7c9 [ 483.659505][T12688] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 483.659522][T12688] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 483.659539][T12688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 483.659556][T12688] R13: 00007f8cb33e6128 R14: 00007f8cb33e6090 R15: 00007fff3a100278 [ 483.659595][T12688] [ 484.716091][T12701] mtrr: base(0x1000) is not aligned on a size(0x0000) boundary [ 484.746055][T12701] bridge0: port 3(veth1_to_bridge) entered blocking state [ 484.753416][T12701] bridge0: port 3(veth1_to_bridge) entered disabled state [ 484.784435][T12701] veth1_to_bridge: entered allmulticast mode [ 484.807444][T12701] veth1_to_bridge: entered promiscuous mode [ 484.826671][T12701] bridge0: adding interface veth1_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 484.845911][T12701] bridge0: port 3(veth1_to_bridge) entered blocking state [ 484.853537][T12701] bridge0: port 3(veth1_to_bridge) entered forwarding state [ 486.115086][T12732] random: crng reseeded on system resumption [ 486.299263][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 487.015532][T12746] nfs4: Unknown parameter 'ÿ' [ 487.259490][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 487.280311][T12760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1577'. [ 487.394063][T12755] usb usb4: usbfs: process 12755 (syz.0.1576) did not claim interface 0 before use [ 488.234675][T12771] FAULT_INJECTION: forcing a failure. [ 488.234675][T12771] name failslab, interval 1, probability 0, space 0, times 0 [ 488.250783][T12771] CPU: 0 UID: 0 PID: 12771 Comm: syz.1.1580 Not tainted syzkaller #0 PREEMPT(full) [ 488.250822][T12771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 488.250840][T12771] Call Trace: [ 488.250850][T12771] [ 488.250860][T12771] dump_stack_lvl+0x16c/0x1f0 [ 488.250896][T12771] should_fail_ex+0x512/0x640 [ 488.250936][T12771] ? __kmalloc_noprof+0xca/0x880 [ 488.250964][T12771] should_failslab+0xc2/0x120 [ 488.250999][T12771] __kmalloc_noprof+0xdd/0x880 [ 488.251025][T12771] ? __alloc_workqueue+0x112/0x1810 [ 488.251062][T12771] ? __alloc_workqueue+0x112/0x1810 [ 488.251091][T12771] __alloc_workqueue+0x112/0x1810 [ 488.251133][T12771] alloc_workqueue_noprof+0xd2/0x200 [ 488.251166][T12771] ? __pfx_alloc_workqueue_noprof+0x10/0x10 [ 488.251204][T12771] ? rcu_is_watching+0x12/0xc0 [ 488.251232][T12771] ? trace_kmalloc+0x2b/0xd0 [ 488.251263][T12771] ? __kmalloc_noprof+0x34f/0x880 [ 488.251288][T12771] ? ieee80211_register_hw+0x15c9/0x4120 [ 488.251333][T12771] ieee80211_register_hw+0x1f1a/0x4120 [ 488.251380][T12771] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 488.251425][T12771] ? __pfx___debug_object_init+0x10/0x10 [ 488.251462][T12771] ? find_held_lock+0x2b/0x80 [ 488.251488][T12771] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 488.251528][T12771] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 488.251561][T12771] ? __hrtimer_setup+0x176/0x280 [ 488.251605][T12771] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 488.251657][T12771] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 488.251696][T12771] hwsim_new_radio_nl+0xba2/0x1330 [ 488.251729][T12771] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 488.251767][T12771] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 488.251801][T12771] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 488.251843][T12771] genl_family_rcv_msg_doit+0x209/0x2f0 [ 488.251879][T12771] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 488.251925][T12771] ? bpf_lsm_capable+0x9/0x10 [ 488.251958][T12771] ? security_capable+0x7e/0x260 [ 488.251994][T12771] ? ns_capable+0xd7/0x110 [ 488.252023][T12771] genl_rcv_msg+0x55c/0x800 [ 488.252058][T12771] ? __pfx_genl_rcv_msg+0x10/0x10 [ 488.252091][T12771] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 488.252131][T12771] netlink_rcv_skb+0x158/0x420 [ 488.252155][T12771] ? __pfx_genl_rcv_msg+0x10/0x10 [ 488.252186][T12771] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 488.252225][T12771] ? netlink_deliver_tap+0x1ae/0xd30 [ 488.252259][T12771] genl_rcv+0x28/0x40 [ 488.252286][T12771] netlink_unicast+0x5aa/0x870 [ 488.252318][T12771] ? __pfx_netlink_unicast+0x10/0x10 [ 488.252361][T12771] netlink_sendmsg+0x8c8/0xdd0 [ 488.252404][T12771] ? __pfx_netlink_sendmsg+0x10/0x10 [ 488.252439][T12771] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 488.252486][T12771] ____sys_sendmsg+0xa98/0xc70 [ 488.252521][T12771] ? copy_msghdr_from_user+0x10a/0x160 [ 488.252549][T12771] ? __pfx_____sys_sendmsg+0x10/0x10 [ 488.252579][T12771] ? preempt_schedule_thunk+0x16/0x30 [ 488.252623][T12771] ? try_to_wake_up+0xa67/0x1870 [ 488.252658][T12771] ___sys_sendmsg+0x134/0x1d0 [ 488.252682][T12771] ? find_held_lock+0x2b/0x80 [ 488.252711][T12771] ? __pfx____sys_sendmsg+0x10/0x10 [ 488.252736][T12771] ? __lock_acquire+0x622/0x1c90 [ 488.252815][T12771] __sys_sendmsg+0x16d/0x220 [ 488.252841][T12771] ? __pfx___sys_sendmsg+0x10/0x10 [ 488.252867][T12771] ? __x64_sys_futex+0x1e0/0x4c0 [ 488.252921][T12771] do_syscall_64+0xcd/0xfa0 [ 488.252955][T12771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.252980][T12771] RIP: 0033:0x7f03fab8f7c9 [ 488.253001][T12771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.253027][T12771] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 488.253054][T12771] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 488.253073][T12771] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 488.253089][T12771] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 488.253103][T12771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.253116][T12771] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 488.253151][T12771] [ 489.056109][T12784] netlink: 'syz.2.1583': attribute type 1 has an invalid length. [ 489.063954][T12784] netlink: 13 bytes leftover after parsing attributes in process `syz.2.1583'. [ 489.159218][T12789] random: crng reseeded on system resumption [ 489.295886][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 489.411672][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 489.514398][T12786] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1584'. [ 490.655090][T12805] zswap: compressor not available [ 490.748540][T12805] dmxdev: DVB (dvb_dmxdev_filter_start): could not set feed [ 490.766609][T12805] dvb_demux: dvb_demux_feed_del: feed not in list (type=1 state=0 pid=ffff) [ 492.160855][ T30] audit: type=1800 audit(4294967484.240:6): pid=12832 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1590" name="lu_gp_id" dev="configfs" ino=54108 res=0 errno=0 [ 492.430296][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 492.485331][T12836] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1593'. [ 492.534521][T12838] random: crng reseeded on system resumption [ 492.688627][ T5833] Bluetooth: hci1: unexpected event 0x1c length: 725 > 5 [ 493.585884][T12855] netlink: set zone limit has 8 unknown bytes [ 495.747600][T12885] FAULT_INJECTION: forcing a failure. [ 495.747600][T12885] name failslab, interval 1, probability 0, space 0, times 0 [ 495.796117][T12885] CPU: 0 UID: 0 PID: 12885 Comm: syz.1.1602 Not tainted syzkaller #0 PREEMPT(full) [ 495.796157][T12885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 495.796174][T12885] Call Trace: [ 495.796184][T12885] [ 495.796194][T12885] dump_stack_lvl+0x16c/0x1f0 [ 495.796231][T12885] should_fail_ex+0x512/0x640 [ 495.796267][T12885] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 495.796302][T12885] should_failslab+0xc2/0x120 [ 495.796337][T12885] __kvmalloc_node_noprof+0x141/0x9c0 [ 495.796371][T12885] ? v4l2_ctrl_new+0x982/0x2190 [ 495.796417][T12885] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 495.796468][T12885] ? v4l2_ctrl_new+0x982/0x2190 [ 495.796500][T12885] v4l2_ctrl_new+0x982/0x2190 [ 495.796548][T12885] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 495.796582][T12885] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 495.796624][T12885] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 495.796667][T12885] v4l2_ctrl_new_std+0x1be/0x290 [ 495.796711][T12885] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 495.796743][T12885] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 495.796780][T12885] ? trace_kmalloc+0x2b/0xd0 [ 495.796814][T12885] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 495.796852][T12885] ? media_request_object_init+0x100/0x180 [ 495.796884][T12885] vicodec_open+0x1d9/0xf70 [ 495.796911][T12885] ? kobject_get_unless_zero+0x156/0x1e0 [ 495.796953][T12885] v4l2_open+0x1d2/0x5e0 [ 495.796982][T12885] ? __pfx_v4l2_open+0x10/0x10 [ 495.797011][T12885] chrdev_open+0x234/0x6a0 [ 495.797042][T12885] ? __pfx_apparmor_file_open+0x10/0x10 [ 495.797079][T12885] ? __pfx_chrdev_open+0x10/0x10 [ 495.797111][T12885] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 495.797146][T12885] do_dentry_open+0x982/0x1530 [ 495.797177][T12885] ? __pfx_chrdev_open+0x10/0x10 [ 495.797214][T12885] vfs_open+0x82/0x3f0 [ 495.797255][T12885] path_openat+0x1de4/0x2cb0 [ 495.797296][T12885] ? __pfx_path_openat+0x10/0x10 [ 495.797327][T12885] ? __lock_acquire+0xb8a/0x1c90 [ 495.797372][T12885] do_filp_open+0x20b/0x470 [ 495.797401][T12885] ? __pfx_do_filp_open+0x10/0x10 [ 495.797464][T12885] ? alloc_fd+0x471/0x7d0 [ 495.797503][T12885] do_sys_openat2+0x11b/0x1d0 [ 495.797540][T12885] ? __pfx_do_sys_openat2+0x10/0x10 [ 495.797593][T12885] __x64_sys_openat+0x174/0x210 [ 495.797632][T12885] ? __pfx___x64_sys_openat+0x10/0x10 [ 495.797683][T12885] do_syscall_64+0xcd/0xfa0 [ 495.797718][T12885] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 495.797746][T12885] RIP: 0033:0x7f03fab8f7c9 [ 495.797769][T12885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 495.797794][T12885] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 495.797819][T12885] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 495.797838][T12885] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 495.797855][T12885] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 495.797872][T12885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 495.797889][T12885] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 495.797927][T12885] [ 496.328065][T12896] random: crng reseeded on system resumption [ 496.565280][T12903] overlayfs: missing 'lowerdir' [ 496.576115][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 499.426583][T12934] zswap: compressor û not available [ 499.606952][T12940] zswap: compressor not available [ 500.328153][T12950] netlink: 'syz.2.1614': attribute type 1 has an invalid length. [ 500.363322][T12950] netlink: 33 bytes leftover after parsing attributes in process `syz.2.1614'. [ 500.991972][T12961] input: f¬ as /devices/virtual/input/input10 [ 501.091295][T12966] random: crng reseeded on system resumption [ 501.365549][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 501.571166][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.585689][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.925624][T12982] netlink: 'syz.3.1623': attribute type 1 has an invalid length. [ 501.953978][T12982] netlink: 13 bytes leftover after parsing attributes in process `syz.3.1623'. [ 502.860450][T12986] FAULT_INJECTION: forcing a failure. [ 502.860450][T12986] name failslab, interval 1, probability 0, space 0, times 0 [ 502.937399][T12986] CPU: 0 UID: 0 PID: 12986 Comm: syz.1.1624 Not tainted syzkaller #0 PREEMPT(full) [ 502.937438][T12986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 502.937454][T12986] Call Trace: [ 502.937462][T12986] [ 502.937473][T12986] dump_stack_lvl+0x16c/0x1f0 [ 502.937512][T12986] should_fail_ex+0x512/0x640 [ 502.937545][T12986] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 502.937580][T12986] should_failslab+0xc2/0x120 [ 502.937611][T12986] __kvmalloc_node_noprof+0x141/0x9c0 [ 502.937645][T12986] ? v4l2_ctrl_new+0x982/0x2190 [ 502.937687][T12986] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 502.937736][T12986] ? v4l2_ctrl_new+0x982/0x2190 [ 502.937767][T12986] v4l2_ctrl_new+0x982/0x2190 [ 502.937814][T12986] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 502.937847][T12986] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 502.937891][T12986] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 502.937934][T12986] v4l2_ctrl_new_std+0x1be/0x290 [ 502.937980][T12986] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 502.938014][T12986] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 502.938053][T12986] ? trace_kmalloc+0x2b/0xd0 [ 502.938090][T12986] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 502.938130][T12986] ? media_request_object_init+0x100/0x180 [ 502.938164][T12986] vicodec_open+0x1d9/0xf70 [ 502.938190][T12986] ? kobject_get_unless_zero+0x156/0x1e0 [ 502.938235][T12986] v4l2_open+0x1d2/0x5e0 [ 502.938265][T12986] ? __pfx_v4l2_open+0x10/0x10 [ 502.938294][T12986] chrdev_open+0x234/0x6a0 [ 502.938325][T12986] ? __pfx_apparmor_file_open+0x10/0x10 [ 502.938364][T12986] ? __pfx_chrdev_open+0x10/0x10 [ 502.938400][T12986] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 502.938436][T12986] do_dentry_open+0x982/0x1530 [ 502.938465][T12986] ? __pfx_chrdev_open+0x10/0x10 [ 502.938505][T12986] vfs_open+0x82/0x3f0 [ 502.938544][T12986] path_openat+0x1de4/0x2cb0 [ 502.938583][T12986] ? __pfx_path_openat+0x10/0x10 [ 502.938616][T12986] ? __lock_acquire+0xb8a/0x1c90 [ 502.938666][T12986] do_filp_open+0x20b/0x470 [ 502.938698][T12986] ? __pfx_do_filp_open+0x10/0x10 [ 502.938754][T12986] ? alloc_fd+0x471/0x7d0 [ 502.938789][T12986] do_sys_openat2+0x11b/0x1d0 [ 502.938827][T12986] ? __pfx_do_sys_openat2+0x10/0x10 [ 502.938880][T12986] __x64_sys_openat+0x174/0x210 [ 502.938917][T12986] ? __pfx___x64_sys_openat+0x10/0x10 [ 502.938971][T12986] do_syscall_64+0xcd/0xfa0 [ 502.939006][T12986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.939034][T12986] RIP: 0033:0x7f03fab8f7c9 [ 502.939057][T12986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.939083][T12986] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 502.939110][T12986] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 502.939130][T12986] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 502.939149][T12986] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 502.939167][T12986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 502.939185][T12986] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 502.939224][T12986] [ 504.753930][T13030] netlink: set zone limit has 8 unknown bytes [ 506.591142][T13049] FAULT_INJECTION: forcing a failure. [ 506.591142][T13049] name failslab, interval 1, probability 0, space 0, times 0 [ 506.607504][T13049] CPU: 0 UID: 0 PID: 13049 Comm: syz.3.1634 Not tainted syzkaller #0 PREEMPT(full) [ 506.607543][T13049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 506.607559][T13049] Call Trace: [ 506.607568][T13049] [ 506.607580][T13049] dump_stack_lvl+0x16c/0x1f0 [ 506.607618][T13049] should_fail_ex+0x512/0x640 [ 506.607658][T13049] ? __kmalloc_noprof+0xca/0x880 [ 506.607688][T13049] should_failslab+0xc2/0x120 [ 506.607725][T13049] __kmalloc_noprof+0xdd/0x880 [ 506.607751][T13049] ? handler_new_ref+0x1b0/0xc60 [ 506.607792][T13049] ? handler_new_ref+0x1b0/0xc60 [ 506.607823][T13049] ? handler_new_ref+0x827/0xc60 [ 506.607855][T13049] handler_new_ref+0x1b0/0xc60 [ 506.607899][T13049] v4l2_ctrl_new+0x196c/0x2190 [ 506.607943][T13049] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 506.607990][T13049] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 506.608037][T13049] v4l2_ctrl_new_std+0x1be/0x290 [ 506.608084][T13049] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 506.608121][T13049] ? rcu_is_watching+0x12/0xc0 [ 506.608150][T13049] ? trace_kmalloc+0x2b/0xd0 [ 506.608181][T13049] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 506.608215][T13049] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 506.608257][T13049] ? media_request_object_init+0x100/0x180 [ 506.608298][T13049] vicodec_open+0x1b2/0xf70 [ 506.608325][T13049] ? kobject_get_unless_zero+0x156/0x1e0 [ 506.608369][T13049] v4l2_open+0x1d2/0x5e0 [ 506.608400][T13049] ? __pfx_v4l2_open+0x10/0x10 [ 506.608431][T13049] chrdev_open+0x234/0x6a0 [ 506.608463][T13049] ? __pfx_apparmor_file_open+0x10/0x10 [ 506.608502][T13049] ? __pfx_chrdev_open+0x10/0x10 [ 506.608536][T13049] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 506.608574][T13049] do_dentry_open+0x982/0x1530 [ 506.608606][T13049] ? __pfx_chrdev_open+0x10/0x10 [ 506.608646][T13049] vfs_open+0x82/0x3f0 [ 506.608687][T13049] path_openat+0x1de4/0x2cb0 [ 506.608730][T13049] ? __pfx_path_openat+0x10/0x10 [ 506.608762][T13049] ? __lock_acquire+0xb8a/0x1c90 [ 506.608802][T13049] do_filp_open+0x20b/0x470 [ 506.608833][T13049] ? __pfx_do_filp_open+0x10/0x10 [ 506.608891][T13049] ? alloc_fd+0x471/0x7d0 [ 506.608929][T13049] do_sys_openat2+0x11b/0x1d0 [ 506.608967][T13049] ? __pfx_do_sys_openat2+0x10/0x10 [ 506.609020][T13049] __x64_sys_openat+0x174/0x210 [ 506.609059][T13049] ? __pfx___x64_sys_openat+0x10/0x10 [ 506.609114][T13049] do_syscall_64+0xcd/0xfa0 [ 506.609149][T13049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.609177][T13049] RIP: 0033:0x7f8cb318f7c9 [ 506.609199][T13049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 506.609225][T13049] RSP: 002b:00007f8cb4006038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 506.609251][T13049] RAX: ffffffffffffffda RBX: 00007f8cb33e5fa0 RCX: 00007f8cb318f7c9 [ 506.609270][T13049] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 506.609294][T13049] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 506.609311][T13049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.609328][T13049] R13: 00007f8cb33e6038 R14: 00007f8cb33e5fa0 R15: 00007fff3a100278 [ 506.609367][T13049] [ 507.136507][T13058] random: crng reseeded on system resumption [ 507.479899][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 508.970124][T13082] netlink: 62 bytes leftover after parsing attributes in process `syz.0.1641'. [ 509.077718][T13085] netlink: 'syz.1.1642': attribute type 10 has an invalid length. [ 511.850029][ T30] audit: type=1800 audit(4294967503.900:7): pid=13120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1647" name="lu_gp_id" dev="configfs" ino=56928 res=0 errno=0 [ 512.724456][T13128] random: crng reseeded on system resumption [ 513.116238][ T5833] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 513.534224][T13140] random: crng reseeded on system resumption [ 513.665509][ T5833] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 514.279925][T13135] FAULT_INJECTION: forcing a failure. [ 514.279925][T13135] name failslab, interval 1, probability 0, space 0, times 0 [ 514.335635][T13135] CPU: 0 UID: 0 PID: 13135 Comm: syz.1.1653 Not tainted syzkaller #0 PREEMPT(full) [ 514.335677][T13135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 514.335697][T13135] Call Trace: [ 514.335707][T13135] [ 514.335720][T13135] dump_stack_lvl+0x16c/0x1f0 [ 514.335760][T13135] should_fail_ex+0x512/0x640 [ 514.335811][T13135] ? __kmalloc_noprof+0xca/0x880 [ 514.335842][T13135] should_failslab+0xc2/0x120 [ 514.335880][T13135] __kmalloc_noprof+0xdd/0x880 [ 514.335907][T13135] ? handler_new_ref+0x1b0/0xc60 [ 514.335949][T13135] ? handler_new_ref+0x1b0/0xc60 [ 514.335984][T13135] ? handler_new_ref+0x827/0xc60 [ 514.336017][T13135] handler_new_ref+0x1b0/0xc60 [ 514.336065][T13135] v4l2_ctrl_new+0x196c/0x2190 [ 514.336115][T13135] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 514.336161][T13135] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 514.336214][T13135] v4l2_ctrl_new_std+0x1be/0x290 [ 514.336263][T13135] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 514.336301][T13135] ? rcu_is_watching+0x12/0xc0 [ 514.336331][T13135] ? trace_kmalloc+0x2b/0xd0 [ 514.336362][T13135] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 514.336398][T13135] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 514.336440][T13135] ? media_request_object_init+0x100/0x180 [ 514.336477][T13135] vicodec_open+0x1b2/0xf70 [ 514.336504][T13135] ? kobject_get_unless_zero+0x156/0x1e0 [ 514.336548][T13135] v4l2_open+0x1d2/0x5e0 [ 514.336579][T13135] ? __pfx_v4l2_open+0x10/0x10 [ 514.336609][T13135] chrdev_open+0x234/0x6a0 [ 514.336641][T13135] ? __pfx_apparmor_file_open+0x10/0x10 [ 514.336681][T13135] ? __pfx_chrdev_open+0x10/0x10 [ 514.336716][T13135] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 514.336756][T13135] do_dentry_open+0x982/0x1530 [ 514.336794][T13135] ? __pfx_chrdev_open+0x10/0x10 [ 514.336831][T13135] vfs_open+0x82/0x3f0 [ 514.336868][T13135] path_openat+0x1de4/0x2cb0 [ 514.336904][T13135] ? __pfx_path_openat+0x10/0x10 [ 514.336933][T13135] ? __lock_acquire+0xb8a/0x1c90 [ 514.336970][T13135] do_filp_open+0x20b/0x470 [ 514.336998][T13135] ? __pfx_do_filp_open+0x10/0x10 [ 514.337051][T13135] ? alloc_fd+0x471/0x7d0 [ 514.337088][T13135] do_sys_openat2+0x11b/0x1d0 [ 514.337133][T13135] ? __pfx_do_sys_openat2+0x10/0x10 [ 514.337189][T13135] __x64_sys_openat+0x174/0x210 [ 514.337230][T13135] ? __pfx___x64_sys_openat+0x10/0x10 [ 514.337285][T13135] do_syscall_64+0xcd/0xfa0 [ 514.337322][T13135] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 514.337350][T13135] RIP: 0033:0x7f03fab8f7c9 [ 514.337373][T13135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 514.337399][T13135] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 514.337426][T13135] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 514.337445][T13135] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 514.337463][T13135] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 514.337480][T13135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 514.337497][T13135] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 514.337536][T13135] [ 515.762769][T13176] ubi31: attaching mtd0 [ 515.794548][T13176] ubi31: scanning is finished [ 515.831016][T13176] ubi31 error: ubi_read_volume_table: the layout volume was not found [ 516.030954][T13176] ubi31 error: ubi_attach_mtd_dev: failed to attach mtd0, error -22 [ 516.429056][T13192] netlink: set zone limit has 8 unknown bytes [ 517.320971][ T30] audit: type=1800 audit(4294967509.410:8): pid=13209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1670" name="lu_gp_id" dev="configfs" ino=57859 res=0 errno=0 [ 517.354841][T13209] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 517.922321][ T30] audit: type=1800 audit(4294967510.010:9): pid=13223 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1671" name="lu_gp_id" dev="configfs" ino=57877 res=0 errno=0 [ 517.950576][T13223] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 519.484716][ T30] audit: type=1800 audit(4294967511.570:10): pid=13232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1676" name="lu_gp_id" dev="configfs" ino=57925 res=0 errno=0 [ 520.273789][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 520.285224][T13261] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1681'. [ 520.740041][T13270] netlink: set zone limit has 8 unknown bytes [ 521.456215][T13274] netlink: set zone limit has 8 unknown bytes [ 522.228047][ T5833] Bluetooth: hci1: unknown advertising packet type: 0xea [ 522.264589][T13301] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1689'. [ 522.421607][T13296] zswap: compressor 000 not available [ 523.405476][T13296] EXT4-fs error (device sda1): trigger_test_error:129: comm syz.2.1688: 7 [ 523.461245][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 525.531187][T13343] netlink: set zone limit has 8 unknown bytes [ 525.647187][ T30] audit: type=1800 audit(4294967517.740:11): pid=13359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1695" name="lu_gp_id" dev="configfs" ino=59458 res=0 errno=0 [ 525.651691][T13359] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(2) [ 529.024680][ T5833] Bluetooth: hci0: unknown advertising packet type: 0xea [ 529.058775][T13387] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1704'. [ 529.808227][ T30] audit: type=1800 audit(4294967521.900:12): pid=13402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1705" name="lu_gp_id" dev="configfs" ino=58731 res=0 errno=0 [ 531.224495][T13414] FAULT_INJECTION: forcing a failure. [ 531.224495][T13414] name failslab, interval 1, probability 0, space 0, times 0 [ 531.327869][T13414] CPU: 0 UID: 0 PID: 13414 Comm: syz.3.1708 Not tainted syzkaller #0 PREEMPT(full) [ 531.327905][T13414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 531.327920][T13414] Call Trace: [ 531.327929][T13414] [ 531.327939][T13414] dump_stack_lvl+0x16c/0x1f0 [ 531.327974][T13414] should_fail_ex+0x512/0x640 [ 531.328008][T13414] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 531.328040][T13414] should_failslab+0xc2/0x120 [ 531.328073][T13414] __kvmalloc_node_noprof+0x141/0x9c0 [ 531.328101][T13414] ? __pfx_aa_file_perm+0x10/0x10 [ 531.328133][T13414] ? seq_read_iter+0x830/0x12d0 [ 531.328169][T13414] ? __lock_acquire+0xb8a/0x1c90 [ 531.328209][T13414] ? seq_read_iter+0x830/0x12d0 [ 531.328244][T13414] seq_read_iter+0x830/0x12d0 [ 531.328297][T13414] kernfs_fop_read_iter+0x46c/0x610 [ 531.328325][T13414] ? rw_verify_area+0xcf/0x6c0 [ 531.328354][T13414] vfs_read+0x8bf/0xcf0 [ 531.328387][T13414] ? __pfx___mutex_lock+0x10/0x10 [ 531.328419][T13414] ? __pfx_vfs_read+0x10/0x10 [ 531.328469][T13414] ksys_read+0x12a/0x250 [ 531.328495][T13414] ? __pfx_ksys_read+0x10/0x10 [ 531.328534][T13414] do_syscall_64+0xcd/0xfa0 [ 531.328566][T13414] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 531.328592][T13414] RIP: 0033:0x7f8cb318f7c9 [ 531.328613][T13414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 531.328638][T13414] RSP: 002b:00007f8cb3fe5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 531.328663][T13414] RAX: ffffffffffffffda RBX: 00007f8cb33e6090 RCX: 00007f8cb318f7c9 [ 531.328681][T13414] RDX: 0000000000001000 RSI: 0000200000000040 RDI: 0000000000000008 [ 531.328698][T13414] RBP: 00007f8cb3fe5090 R08: 0000000000000000 R09: 0000000000000000 [ 531.328713][T13414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 531.328729][T13414] R13: 00007f8cb33e6128 R14: 00007f8cb33e6090 R15: 00007fff3a100278 [ 531.328768][T13414] [ 531.692028][T13410] zswap: compressor not available [ 533.963497][ T5833] Bluetooth: hci1: unknown advertising packet type: 0xea [ 534.023418][T13456] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1718'. [ 534.865007][ T30] audit: type=1800 audit(4294967526.940:13): pid=13466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1720" name="lu_gp_id" dev="configfs" ino=59205 res=0 errno=0 [ 536.571008][ T5833] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 541.346120][T13543] sd 0:0:1:0: PR command failed: 1026 [ 541.395601][T13543] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 541.424674][T13543] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 542.208623][T13551] netlink: set zone limit has 8 unknown bytes [ 542.780793][ T30] audit: type=1800 audit(4294967534.870:14): pid=13544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1740" name="lu_gp_id" dev="configfs" ino=59852 res=0 errno=0 [ 543.427378][T13558] FAULT_INJECTION: forcing a failure. [ 543.427378][T13558] name failslab, interval 1, probability 0, space 0, times 0 [ 543.465692][T13558] CPU: 1 UID: 0 PID: 13558 Comm: syz.3.1743 Not tainted syzkaller #0 PREEMPT(full) [ 543.465732][T13558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 543.465750][T13558] Call Trace: [ 543.465760][T13558] [ 543.465771][T13558] dump_stack_lvl+0x16c/0x1f0 [ 543.465810][T13558] should_fail_ex+0x512/0x640 [ 543.465849][T13558] ? __kmalloc_noprof+0xca/0x880 [ 543.465879][T13558] should_failslab+0xc2/0x120 [ 543.465915][T13558] __kmalloc_noprof+0xdd/0x880 [ 543.465942][T13558] ? handler_new_ref+0x1b0/0xc60 [ 543.465983][T13558] ? handler_new_ref+0x1b0/0xc60 [ 543.466015][T13558] ? handler_new_ref+0x827/0xc60 [ 543.466047][T13558] handler_new_ref+0x1b0/0xc60 [ 543.466091][T13558] v4l2_ctrl_new+0x196c/0x2190 [ 543.466139][T13558] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 543.466184][T13558] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 543.466231][T13558] v4l2_ctrl_new_std+0x1be/0x290 [ 543.466277][T13558] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 543.466314][T13558] ? rcu_is_watching+0x12/0xc0 [ 543.466343][T13558] ? trace_kmalloc+0x2b/0xd0 [ 543.466374][T13558] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 543.466405][T13558] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 543.466444][T13558] ? media_request_object_init+0x100/0x180 [ 543.466479][T13558] vicodec_open+0x1b2/0xf70 [ 543.466506][T13558] ? kobject_get_unless_zero+0x156/0x1e0 [ 543.466558][T13558] v4l2_open+0x1d2/0x5e0 [ 543.466590][T13558] ? __pfx_v4l2_open+0x10/0x10 [ 543.466620][T13558] chrdev_open+0x234/0x6a0 [ 543.466653][T13558] ? __pfx_apparmor_file_open+0x10/0x10 [ 543.466692][T13558] ? __pfx_chrdev_open+0x10/0x10 [ 543.466726][T13558] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 543.466764][T13558] do_dentry_open+0x982/0x1530 [ 543.466796][T13558] ? __pfx_chrdev_open+0x10/0x10 [ 543.466836][T13558] vfs_open+0x82/0x3f0 [ 543.466879][T13558] path_openat+0x1de4/0x2cb0 [ 543.466921][T13558] ? __pfx_path_openat+0x10/0x10 [ 543.466954][T13558] ? __lock_acquire+0xb8a/0x1c90 [ 543.466994][T13558] do_filp_open+0x20b/0x470 [ 543.467024][T13558] ? __pfx_do_filp_open+0x10/0x10 [ 543.467082][T13558] ? alloc_fd+0x471/0x7d0 [ 543.467120][T13558] do_sys_openat2+0x11b/0x1d0 [ 543.467158][T13558] ? __pfx_do_sys_openat2+0x10/0x10 [ 543.467211][T13558] __x64_sys_openat+0x174/0x210 [ 543.467250][T13558] ? __pfx___x64_sys_openat+0x10/0x10 [ 543.467304][T13558] do_syscall_64+0xcd/0xfa0 [ 543.467339][T13558] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 543.467367][T13558] RIP: 0033:0x7f8cb318f7c9 [ 543.467390][T13558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 543.467415][T13558] RSP: 002b:00007f8cb4006038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 543.467443][T13558] RAX: ffffffffffffffda RBX: 00007f8cb33e5fa0 RCX: 00007f8cb318f7c9 [ 543.467462][T13558] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 543.467481][T13558] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 543.467499][T13558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 543.467517][T13558] R13: 00007f8cb33e6038 R14: 00007f8cb33e5fa0 R15: 00007fff3a100278 [ 543.467562][T13558] [ 544.069395][ T30] audit: type=1800 audit(4294967536.160:15): pid=13577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1746" name="lu_gp_id" dev="configfs" ino=60549 res=0 errno=0 [ 545.088427][ T30] audit: type=1800 audit(4294967537.160:16): pid=13596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1750" name="lu_gp_id" dev="configfs" ino=59915 res=0 errno=0 [ 546.015168][T13606] FAULT_INJECTION: forcing a failure. [ 546.015168][T13606] name failslab, interval 1, probability 0, space 0, times 0 [ 546.065233][T13606] CPU: 1 UID: 0 PID: 13606 Comm: syz.0.1752 Not tainted syzkaller #0 PREEMPT(full) [ 546.065272][T13606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 546.065288][T13606] Call Trace: [ 546.065296][T13606] [ 546.065307][T13606] dump_stack_lvl+0x16c/0x1f0 [ 546.065345][T13606] should_fail_ex+0x512/0x640 [ 546.065384][T13606] ? __kmalloc_noprof+0xca/0x880 [ 546.065410][T13606] should_failslab+0xc2/0x120 [ 546.065442][T13606] __kmalloc_noprof+0xdd/0x880 [ 546.065466][T13606] ? ieee80211_register_hw+0x15c9/0x4120 [ 546.065507][T13606] ? ieee80211_register_hw+0x15c9/0x4120 [ 546.065543][T13606] ieee80211_register_hw+0x15c9/0x4120 [ 546.065603][T13606] ? __pfx_ieee80211_register_hw+0x10/0x10 [ 546.065643][T13606] ? __pfx___debug_object_init+0x10/0x10 [ 546.065683][T13606] ? find_held_lock+0x2b/0x80 [ 546.065713][T13606] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 546.065758][T13606] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 546.065794][T13606] ? __hrtimer_setup+0x176/0x280 [ 546.065837][T13606] mac80211_hwsim_new_radio+0x32d8/0x50b0 [ 546.065889][T13606] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 546.065931][T13606] hwsim_new_radio_nl+0xba2/0x1330 [ 546.065965][T13606] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 546.066006][T13606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 546.066044][T13606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 546.066088][T13606] genl_family_rcv_msg_doit+0x209/0x2f0 [ 546.066125][T13606] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 546.066171][T13606] ? bpf_lsm_capable+0x9/0x10 [ 546.066205][T13606] ? security_capable+0x7e/0x260 [ 546.066244][T13606] ? ns_capable+0xd7/0x110 [ 546.066281][T13606] genl_rcv_msg+0x55c/0x800 [ 546.066319][T13606] ? __pfx_genl_rcv_msg+0x10/0x10 [ 546.066354][T13606] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 546.066397][T13606] netlink_rcv_skb+0x158/0x420 [ 546.066427][T13606] ? __pfx_genl_rcv_msg+0x10/0x10 [ 546.066462][T13606] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 546.066507][T13606] ? netlink_deliver_tap+0x1ae/0xd30 [ 546.066541][T13606] genl_rcv+0x28/0x40 [ 546.066577][T13606] netlink_unicast+0x5aa/0x870 [ 546.066613][T13606] ? __pfx_netlink_unicast+0x10/0x10 [ 546.066659][T13606] netlink_sendmsg+0x8c8/0xdd0 [ 546.066695][T13606] ? __pfx_netlink_sendmsg+0x10/0x10 [ 546.066730][T13606] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 546.066775][T13606] ____sys_sendmsg+0xa98/0xc70 [ 546.066811][T13606] ? copy_msghdr_from_user+0x10a/0x160 [ 546.066839][T13606] ? __pfx_____sys_sendmsg+0x10/0x10 [ 546.066882][T13606] ? __pfx_futex_wake_mark+0x10/0x10 [ 546.066929][T13606] ___sys_sendmsg+0x134/0x1d0 [ 546.066960][T13606] ? __pfx____sys_sendmsg+0x10/0x10 [ 546.066984][T13606] ? __lock_acquire+0x622/0x1c90 [ 546.067065][T13606] __sys_sendmsg+0x16d/0x220 [ 546.067094][T13606] ? __pfx___sys_sendmsg+0x10/0x10 [ 546.067121][T13606] ? __x64_sys_futex+0x1e0/0x4c0 [ 546.067180][T13606] do_syscall_64+0xcd/0xfa0 [ 546.067216][T13606] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 546.067244][T13606] RIP: 0033:0x7fe95998f7c9 [ 546.067267][T13606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 546.067293][T13606] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 546.067320][T13606] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 546.067339][T13606] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000007 [ 546.067357][T13606] RBP: 00007fe959a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 546.067375][T13606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 546.067392][T13606] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 546.067430][T13606] [ 546.566156][T13619] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1545045708.978930451.2972666798), cmd(3) [ 547.226319][ T5833] Bluetooth: hci1: unknown advertising packet type: 0xea [ 547.253567][T13638] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1760'. [ 547.381097][T13644] random: crng reseeded on system resumption [ 547.606367][ T5833] Bluetooth: hci2: unexpected event 0x1c length: 725 > 5 [ 548.191968][T13651] netlink: 334 bytes leftover after parsing attributes in process `syz.0.1763'. [ 548.296596][T13655] random: crng reseeded on system resumption [ 548.412998][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 548.694848][T13668] random: crng reseeded on system resumption [ 550.431262][T13700] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(1545045708.978930451.2972666798), cmd(3) [ 550.866114][T13711] random: crng reseeded on system resumption [ 551.293319][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 551.477460][T13719] device-mapper: ioctl: only supply one of name or uuid, cmd(12) [ 554.085461][T13744] FAULT_INJECTION: forcing a failure. [ 554.085461][T13744] name failslab, interval 1, probability 0, space 0, times 0 [ 554.116473][T13744] CPU: 0 UID: 0 PID: 13744 Comm: syz.1.1785 Not tainted syzkaller #0 PREEMPT(full) [ 554.116513][T13744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 554.116531][T13744] Call Trace: [ 554.116540][T13744] [ 554.116552][T13744] dump_stack_lvl+0x16c/0x1f0 [ 554.116591][T13744] should_fail_ex+0x512/0x640 [ 554.116629][T13744] ? __kmalloc_noprof+0xca/0x880 [ 554.116659][T13744] should_failslab+0xc2/0x120 [ 554.116696][T13744] __kmalloc_noprof+0xdd/0x880 [ 554.116722][T13744] ? handler_new_ref+0x1b0/0xc60 [ 554.116762][T13744] ? handler_new_ref+0x1b0/0xc60 [ 554.116803][T13744] ? handler_new_ref+0x827/0xc60 [ 554.116836][T13744] handler_new_ref+0x1b0/0xc60 [ 554.116881][T13744] v4l2_ctrl_new+0x196c/0x2190 [ 554.116930][T13744] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 554.116976][T13744] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 554.117023][T13744] v4l2_ctrl_new_std+0x1be/0x290 [ 554.117070][T13744] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 554.117107][T13744] ? rcu_is_watching+0x12/0xc0 [ 554.117134][T13744] ? trace_kmalloc+0x2b/0xd0 [ 554.117164][T13744] ? __kvmalloc_node_noprof+0x3c0/0x9c0 [ 554.117199][T13744] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 554.117241][T13744] ? media_request_object_init+0x100/0x180 [ 554.117275][T13744] vicodec_open+0x1b2/0xf70 [ 554.117322][T13744] ? kobject_get_unless_zero+0x156/0x1e0 [ 554.117366][T13744] v4l2_open+0x1d2/0x5e0 [ 554.117398][T13744] ? __pfx_v4l2_open+0x10/0x10 [ 554.117427][T13744] chrdev_open+0x234/0x6a0 [ 554.117458][T13744] ? __pfx_apparmor_file_open+0x10/0x10 [ 554.117498][T13744] ? __pfx_chrdev_open+0x10/0x10 [ 554.117532][T13744] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 554.117570][T13744] do_dentry_open+0x982/0x1530 [ 554.117602][T13744] ? __pfx_chrdev_open+0x10/0x10 [ 554.117642][T13744] vfs_open+0x82/0x3f0 [ 554.117683][T13744] path_openat+0x1de4/0x2cb0 [ 554.117725][T13744] ? __pfx_path_openat+0x10/0x10 [ 554.117757][T13744] ? __lock_acquire+0xb8a/0x1c90 [ 554.117805][T13744] do_filp_open+0x20b/0x470 [ 554.117837][T13744] ? __pfx_do_filp_open+0x10/0x10 [ 554.117896][T13744] ? alloc_fd+0x471/0x7d0 [ 554.117935][T13744] do_sys_openat2+0x11b/0x1d0 [ 554.117973][T13744] ? __pfx_do_sys_openat2+0x10/0x10 [ 554.118026][T13744] __x64_sys_openat+0x174/0x210 [ 554.118064][T13744] ? __pfx___x64_sys_openat+0x10/0x10 [ 554.118119][T13744] do_syscall_64+0xcd/0xfa0 [ 554.118154][T13744] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 554.118181][T13744] RIP: 0033:0x7f03fab8f7c9 [ 554.118204][T13744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 554.118230][T13744] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 554.118257][T13744] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 554.118276][T13744] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 554.118295][T13744] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 554.118312][T13744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 554.118328][T13744] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 554.118367][T13744] [ 554.818896][T13764] random: crng reseeded on system resumption [ 554.997790][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 555.581826][T13769] FAULT_INJECTION: forcing a failure. [ 555.581826][T13769] name failslab, interval 1, probability 0, space 0, times 0 [ 555.646480][T13769] CPU: 1 UID: 0 PID: 13769 Comm: syz.3.1792 Not tainted syzkaller #0 PREEMPT(full) [ 555.646519][T13769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 555.646534][T13769] Call Trace: [ 555.646542][T13769] [ 555.646553][T13769] dump_stack_lvl+0x16c/0x1f0 [ 555.646590][T13769] should_fail_ex+0x512/0x640 [ 555.646628][T13769] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 555.646666][T13769] should_failslab+0xc2/0x120 [ 555.646703][T13769] __kvmalloc_node_noprof+0x141/0x9c0 [ 555.646738][T13769] ? v4l2_ctrl_new+0x982/0x2190 [ 555.646771][T13769] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 555.646820][T13769] ? v4l2_ctrl_new+0x982/0x2190 [ 555.646852][T13769] v4l2_ctrl_new+0x982/0x2190 [ 555.646907][T13769] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 555.646940][T13769] ? __pfx_v4l2_ctrl_new+0x10/0x10 [ 555.646985][T13769] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 555.647031][T13769] v4l2_ctrl_new_std+0x1be/0x290 [ 555.647076][T13769] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 555.647108][T13769] ? __pfx_v4l2_ctrl_new_std+0x10/0x10 [ 555.647147][T13769] ? trace_kmalloc+0x2b/0xd0 [ 555.647184][T13769] ? v4l2_ctrl_handler_init_class+0x201/0x350 [ 555.647223][T13769] ? media_request_object_init+0x100/0x180 [ 555.647257][T13769] vicodec_open+0x1d9/0xf70 [ 555.647284][T13769] ? kobject_get_unless_zero+0x156/0x1e0 [ 555.647332][T13769] v4l2_open+0x1d2/0x5e0 [ 555.647365][T13769] ? __pfx_v4l2_open+0x10/0x10 [ 555.647394][T13769] chrdev_open+0x234/0x6a0 [ 555.647425][T13769] ? __pfx_apparmor_file_open+0x10/0x10 [ 555.647462][T13769] ? __pfx_chrdev_open+0x10/0x10 [ 555.647492][T13769] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 555.647525][T13769] do_dentry_open+0x982/0x1530 [ 555.647555][T13769] ? __pfx_chrdev_open+0x10/0x10 [ 555.647592][T13769] vfs_open+0x82/0x3f0 [ 555.647627][T13769] path_openat+0x1de4/0x2cb0 [ 555.647668][T13769] ? __pfx_path_openat+0x10/0x10 [ 555.647697][T13769] ? __lock_acquire+0xb8a/0x1c90 [ 555.647733][T13769] do_filp_open+0x20b/0x470 [ 555.647762][T13769] ? __pfx_do_filp_open+0x10/0x10 [ 555.647817][T13769] ? alloc_fd+0x471/0x7d0 [ 555.647853][T13769] do_sys_openat2+0x11b/0x1d0 [ 555.647888][T13769] ? __pfx_do_sys_openat2+0x10/0x10 [ 555.647937][T13769] __x64_sys_openat+0x174/0x210 [ 555.647974][T13769] ? __pfx___x64_sys_openat+0x10/0x10 [ 555.648027][T13769] do_syscall_64+0xcd/0xfa0 [ 555.648062][T13769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.648090][T13769] RIP: 0033:0x7f8cb318f7c9 [ 555.648113][T13769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.648138][T13769] RSP: 002b:00007f8cb3fe5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 555.648164][T13769] RAX: ffffffffffffffda RBX: 00007f8cb33e6090 RCX: 00007f8cb318f7c9 [ 555.648183][T13769] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 555.648200][T13769] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 555.648217][T13769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 555.648233][T13769] R13: 00007f8cb33e6128 R14: 00007f8cb33e6090 R15: 00007fff3a100278 [ 555.648272][T13769] [ 558.717171][T13814] random: crng reseeded on system resumption [ 558.821348][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 559.724163][T13827] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1803'. [ 559.976606][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 559.984194][T13837] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1805'. [ 560.152425][ T30] audit: type=1800 audit(4294967309.180:17): pid=13839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1804" name="lu_gp_id" dev="configfs" ino=61695 res=0 errno=0 [ 561.163113][T13850] FAULT_INJECTION: forcing a failure. [ 561.163113][T13850] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 561.186165][T13850] CPU: 1 UID: 0 PID: 13850 Comm: syz.0.1809 Not tainted syzkaller #0 PREEMPT(full) [ 561.186204][T13850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 561.186220][T13850] Call Trace: [ 561.186229][T13850] [ 561.186240][T13850] dump_stack_lvl+0x16c/0x1f0 [ 561.186276][T13850] should_fail_ex+0x512/0x640 [ 561.186319][T13850] _copy_to_user+0x32/0xd0 [ 561.186346][T13850] crtc_crc_read+0x86e/0xb00 [ 561.186392][T13850] ? __pfx_crtc_crc_read+0x10/0x10 [ 561.186423][T13850] ? __pfx_aa_file_perm+0x10/0x10 [ 561.186456][T13850] ? __pfx_autoremove_wake_function+0x10/0x10 [ 561.186519][T13850] full_proxy_read+0x131/0x1a0 [ 561.186554][T13850] ? __pfx_full_proxy_read+0x10/0x10 [ 561.186589][T13850] vfs_read+0x1e4/0xcf0 [ 561.186623][T13850] ? __pfx___mutex_lock+0x10/0x10 [ 561.186656][T13850] ? __pfx_vfs_read+0x10/0x10 [ 561.186694][T13850] ? __fget_files+0x20e/0x3c0 [ 561.186732][T13850] ksys_read+0x12a/0x250 [ 561.186760][T13850] ? __pfx_ksys_read+0x10/0x10 [ 561.186798][T13850] do_syscall_64+0xcd/0xfa0 [ 561.186832][T13850] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.186860][T13850] RIP: 0033:0x7fe95998f7c9 [ 561.186880][T13850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.186906][T13850] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 561.186930][T13850] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 561.186948][T13850] RDX: 0000000000000017 RSI: 0000000000000000 RDI: 0000000000000007 [ 561.186964][T13850] RBP: 00007fe95a88b090 R08: 0000000000000000 R09: 0000000000000000 [ 561.186981][T13850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 561.186996][T13850] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 561.187039][T13850] [ 561.796628][T13861] FAULT_INJECTION: forcing a failure. [ 561.796628][T13861] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 561.891903][T13861] CPU: 0 UID: 0 PID: 13861 Comm: syz.0.1813 Not tainted syzkaller #0 PREEMPT(full) [ 561.891936][T13861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 561.891951][T13861] Call Trace: [ 561.891967][T13861] [ 561.891977][T13861] dump_stack_lvl+0x16c/0x1f0 [ 561.892012][T13861] should_fail_ex+0x512/0x640 [ 561.892053][T13861] _copy_from_user+0x2e/0xd0 [ 561.892092][T13861] copy_msghdr_from_user+0x98/0x160 [ 561.892118][T13861] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 561.892148][T13861] ? kfree+0x252/0x6d0 [ 561.892170][T13861] ? __lock_acquire+0x622/0x1c90 [ 561.892203][T13861] ___sys_recvmsg+0xdb/0x1a0 [ 561.892226][T13861] ? __pfx____sys_recvmsg+0x10/0x10 [ 561.892269][T13861] ? __pfx___might_resched+0x10/0x10 [ 561.892303][T13861] do_recvmmsg+0x2fe/0x750 [ 561.892332][T13861] ? __pfx_do_recvmmsg+0x10/0x10 [ 561.892362][T13861] ? __mutex_unlock_slowpath+0x161/0x7b0 [ 561.892406][T13861] ? __fget_files+0x20e/0x3c0 [ 561.892443][T13861] __x64_sys_recvmmsg+0x22a/0x280 [ 561.892472][T13861] ? __pfx___x64_sys_recvmmsg+0x10/0x10 [ 561.892509][T13861] do_syscall_64+0xcd/0xfa0 [ 561.892541][T13861] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 561.892569][T13861] RIP: 0033:0x7fe95998f7c9 [ 561.892590][T13861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 561.892615][T13861] RSP: 002b:00007fe95a88b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 561.892639][T13861] RAX: ffffffffffffffda RBX: 00007fe959be5fa0 RCX: 00007fe95998f7c9 [ 561.892658][T13861] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 0000000000000003 [ 561.892673][T13861] RBP: 00007fe95a88b090 R08: 0000000000000000 R09: 0000000000000000 [ 561.892689][T13861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 561.892703][T13861] R13: 00007fe959be6038 R14: 00007fe959be5fa0 R15: 00007ffe7d7e1a98 [ 561.892735][T13861] [ 562.465598][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 562.489331][T13880] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1816'. [ 563.011895][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.019694][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 565.753736][ T5833] Bluetooth: hci1: unknown advertising packet type: 0xea [ 565.818729][T13937] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1828'. [ 566.819251][ T30] audit: type=1800 audit(4294967315.840:18): pid=13955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1830" name="lu_gp_id" dev="configfs" ino=62123 res=0 errno=0 [ 568.484103][T13986] FAULT_INJECTION: forcing a failure. [ 568.484103][T13986] name fail_futex, interval 1, probability 0, space 0, times 0 [ 568.569814][T13986] CPU: 1 UID: 0 PID: 13986 Comm: syz.3.1837 Not tainted syzkaller #0 PREEMPT(full) [ 568.569851][T13986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 568.569867][T13986] Call Trace: [ 568.569875][T13986] [ 568.569886][T13986] dump_stack_lvl+0x16c/0x1f0 [ 568.569922][T13986] should_fail_ex+0x512/0x640 [ 568.569965][T13986] get_futex_key+0x1d0/0x1560 [ 568.570000][T13986] ? __pfx_get_futex_key+0x10/0x10 [ 568.570033][T13986] ? __mutex_trylock_common+0xe9/0x250 [ 568.570079][T13986] futex_wake+0xea/0x530 [ 568.570120][T13986] ? __pfx_futex_wake+0x10/0x10 [ 568.570152][T13986] ? __lock_acquire+0xb8a/0x1c90 [ 568.570201][T13986] do_futex+0x1e3/0x350 [ 568.570234][T13986] ? __pfx_do_futex+0x10/0x10 [ 568.570272][T13986] ? __might_fault+0xe3/0x190 [ 568.570308][T13986] mm_release+0x24e/0x300 [ 568.570338][T13986] do_exit+0x68e/0x2bf0 [ 568.570380][T13986] ? __pfx_do_exit+0x10/0x10 [ 568.570414][T13986] ? do_raw_spin_lock+0x12c/0x2b0 [ 568.570451][T13986] ? find_held_lock+0x2b/0x80 [ 568.570484][T13986] do_group_exit+0xd3/0x2a0 [ 568.570516][T13986] get_signal+0x2671/0x26d0 [ 568.570540][T13986] ? kmem_cache_free+0x2d4/0x6c0 [ 568.570573][T13986] ? __pfx_get_signal+0x10/0x10 [ 568.570598][T13986] ? do_futex+0x122/0x350 [ 568.570626][T13986] ? __pfx_do_futex+0x10/0x10 [ 568.570657][T13986] arch_do_signal_or_restart+0x8f/0x790 [ 568.570684][T13986] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 568.570727][T13986] exit_to_user_mode_loop+0x85/0x130 [ 568.570766][T13986] do_syscall_64+0x426/0xfa0 [ 568.570800][T13986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.570827][T13986] RIP: 0033:0x7f8cb318f7c9 [ 568.570850][T13986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.570876][T13986] RSP: 002b:00007f8cb3fa30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 568.570901][T13986] RAX: fffffffffffffe00 RBX: 00007f8cb33e6278 RCX: 00007f8cb318f7c9 [ 568.570920][T13986] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f8cb33e6278 [ 568.570937][T13986] RBP: 00007f8cb33e6270 R08: 0000000000000000 R09: 0000000000000000 [ 568.570953][T13986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.570969][T13986] R13: 00007f8cb33e6308 R14: 00007fff3a100190 R15: 00007fff3a100278 [ 568.571005][T13986] [ 569.322158][ T5833] Bluetooth: hci2: unknown advertising packet type: 0xea [ 569.358353][T14003] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1843'. [ 569.386824][T14007] random: crng reseeded on system resumption [ 569.503874][ T5833] Bluetooth: hci3: unexpected event 0x1c length: 725 > 5 [ 570.133894][T14016] FAULT_INJECTION: forcing a failure. [ 570.133894][T14016] name failslab, interval 1, probability 0, space 0, times 0 [ 570.209478][T14016] CPU: 1 UID: 0 PID: 14016 Comm: syz.3.1848 Not tainted syzkaller #0 PREEMPT(full) [ 570.209514][T14016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 570.209531][T14016] Call Trace: [ 570.209539][T14016] [ 570.209549][T14016] dump_stack_lvl+0x16c/0x1f0 [ 570.209584][T14016] should_fail_ex+0x512/0x640 [ 570.209619][T14016] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 570.209650][T14016] should_failslab+0xc2/0x120 [ 570.209683][T14016] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 570.209710][T14016] ? find_inode_fast+0x1da/0x600 [ 570.209743][T14016] ? alloc_inode+0xc3/0x240 [ 570.209779][T14016] ? alloc_inode+0xc3/0x240 [ 570.209807][T14016] alloc_inode+0xc3/0x240 [ 570.209840][T14016] iget_locked+0x2fa/0x860 [ 570.209876][T14016] ? __pfx_iget_locked+0x10/0x10 [ 570.209917][T14016] ? find_held_lock+0x2b/0x80 [ 570.209948][T14016] ? kernfs_root+0xee/0x2a0 [ 570.209990][T14016] kernfs_get_inode+0x48/0x460 [ 570.210025][T14016] kernfs_iop_lookup+0x1a7/0x2d0 [ 570.210063][T14016] ? __pfx_kernfs_iop_lookup+0x10/0x10 [ 570.210109][T14016] lookup_open.isra.0+0x4da/0x1580 [ 570.210163][T14016] ? __pfx_lookup_open.isra.0+0x10/0x10 [ 570.210229][T14016] ? lookup_fast+0x156/0x610 [ 570.210259][T14016] path_openat+0x893/0x2cb0 [ 570.210302][T14016] ? __pfx_path_openat+0x10/0x10 [ 570.210339][T14016] ? __lock_acquire+0xb8a/0x1c90 [ 570.210379][T14016] do_filp_open+0x20b/0x470 [ 570.210416][T14016] ? __pfx_do_filp_open+0x10/0x10 [ 570.210475][T14016] ? alloc_fd+0x471/0x7d0 [ 570.210515][T14016] do_sys_openat2+0x11b/0x1d0 [ 570.210555][T14016] ? __pfx_do_sys_openat2+0x10/0x10 [ 570.210608][T14016] __x64_sys_openat+0x174/0x210 [ 570.210648][T14016] ? __pfx___x64_sys_openat+0x10/0x10 [ 570.210704][T14016] do_syscall_64+0xcd/0xfa0 [ 570.210740][T14016] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.210768][T14016] RIP: 0033:0x7f8cb318f7c9 [ 570.210791][T14016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.210818][T14016] RSP: 002b:00007f8cb4006038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 570.210842][T14016] RAX: ffffffffffffffda RBX: 00007f8cb33e5fa0 RCX: 00007f8cb318f7c9 [ 570.210859][T14016] RDX: 0000000000080000 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 570.210877][T14016] RBP: 00007f8cb3213f91 R08: 0000000000000000 R09: 0000000000000000 [ 570.210894][T14016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.210910][T14016] R13: 00007f8cb33e6038 R14: 00007f8cb33e5fa0 R15: 00007fff3a100278 [ 570.210950][T14016] [ 572.193686][T14058] random: crng reseeded on system resumption [ 572.306808][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 573.223574][ T30] audit: type=1800 audit(4294967322.250:19): pid=14061 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1857" name="lu_gp_id" dev="configfs" ino=63822 res=0 errno=0 [ 573.255308][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.267843][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.280840][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.293113][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.305528][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.317763][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.330060][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.342265][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.354784][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 573.367240][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 574.865171][ T30] audit: type=1800 audit(4294967323.890:20): pid=14086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1859" name="lu_gp_id" dev="configfs" ino=63858 res=0 errno=0 [ 576.558992][T14089] FAULT_INJECTION: forcing a failure. [ 576.558992][T14089] name failslab, interval 1, probability 0, space 0, times 0 [ 576.600392][T14089] CPU: 1 UID: 0 PID: 14089 Comm: syz.1.1863 Not tainted syzkaller #0 PREEMPT(full) [ 576.600429][T14089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 576.600445][T14089] Call Trace: [ 576.600454][T14089] [ 576.600465][T14089] dump_stack_lvl+0x16c/0x1f0 [ 576.600501][T14089] should_fail_ex+0x512/0x640 [ 576.600538][T14089] ? __kmalloc_noprof+0xca/0x880 [ 576.600566][T14089] should_failslab+0xc2/0x120 [ 576.600601][T14089] __kmalloc_noprof+0xdd/0x880 [ 576.600624][T14089] ? rcu_is_watching+0x12/0xc0 [ 576.600651][T14089] ? sk_prot_alloc+0x1a8/0x2a0 [ 576.600688][T14089] ? sk_prot_alloc+0x1a8/0x2a0 [ 576.600716][T14089] sk_prot_alloc+0x1a8/0x2a0 [ 576.600750][T14089] sk_alloc+0x36/0xc20 [ 576.600789][T14089] packet_create+0x127/0x8e0 [ 576.600830][T14089] __sock_create+0x338/0x8d0 [ 576.600869][T14089] __sys_socket+0x14d/0x260 [ 576.600904][T14089] ? __pfx___sys_socket+0x10/0x10 [ 576.600936][T14089] ? xfd_validate_state+0x61/0x180 [ 576.600981][T14089] __x64_sys_socket+0x72/0xb0 [ 576.601013][T14089] ? lockdep_hardirqs_on+0x7c/0x110 [ 576.601044][T14089] do_syscall_64+0xcd/0xfa0 [ 576.601077][T14089] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.601104][T14089] RIP: 0033:0x7f03fab8f7c9 [ 576.601126][T14089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.601158][T14089] RSP: 002b:00007f03fba5c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 576.601183][T14089] RAX: ffffffffffffffda RBX: 00007f03fade5fa0 RCX: 00007f03fab8f7c9 [ 576.601201][T14089] RDX: 0000000000000300 RSI: 0000000000080003 RDI: 0000000000000011 [ 576.601217][T14089] RBP: 00007f03fac13f91 R08: 0000000000000000 R09: 0000000000000000 [ 576.601233][T14089] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.601249][T14089] R13: 00007f03fade6038 R14: 00007f03fade5fa0 R15: 00007ffe09c8b718 [ 576.601286][T14089] [ 577.035965][T14090] netlink: 'syz.3.1861': attribute type 31 has an invalid length. [ 578.255632][ C1] net_ratelimit: 15460 callbacks suppressed [ 578.255661][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.274102][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.286702][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.299196][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.311898][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.324391][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.336940][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.349440][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.362042][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 578.374598][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.265435][ C1] net_ratelimit: 11587 callbacks suppressed [ 583.265459][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.283989][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.296530][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.309137][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.321660][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.334258][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.346813][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.359477][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.371955][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 583.384595][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.275469][ C1] net_ratelimit: 14582 callbacks suppressed [ 588.275495][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.294067][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 588.306630][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.319153][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.331708][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 588.344288][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.356763][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.369363][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 588.381924][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 588.394427][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.285442][ C1] net_ratelimit: 8381 callbacks suppressed [ 593.285460][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.303610][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 593.316480][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.328711][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.341000][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 593.354646][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.366852][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.379115][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 593.392109][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 593.404311][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 595.371318][T14180] random: crng reseeded on system resumption [ 597.035861][ T5833] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5 [ 598.295567][ C1] net_ratelimit: 10872 callbacks suppressed [ 598.295585][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 598.314397][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.326597][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.338874][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 598.351747][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.363941][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.376223][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 598.389075][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.401254][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 598.413532][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 601.615194][ C1] sched: DL replenish lagged too much [ 603.305394][ C0] net_ratelimit: 16153 callbacks suppressed [ 603.305394][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 603.305420][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 603.312768][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 603.323807][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 603.335763][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 603.347601][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 603.359506][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 603.371485][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 603.384387][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 603.395460][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.315474][ C1] net_ratelimit: 17256 callbacks suppressed [ 608.315499][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 608.315498][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.315921][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.321871][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 608.333911][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.345720][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 608.357646][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.371186][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 608.381568][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 608.393505][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 613.325473][ C0] net_ratelimit: 16582 callbacks suppressed [ 613.325501][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 613.325942][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 613.331899][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 613.343839][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 613.355869][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 613.367641][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 613.379741][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 613.392707][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 613.403576][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 613.416067][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 618.335821][ C0] net_ratelimit: 17213 callbacks suppressed [ 618.335848][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 618.336094][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 618.342203][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 618.354204][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 618.366041][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 618.377994][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 618.390130][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 618.402871][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 618.413951][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 618.425928][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 623.345925][ C0] net_ratelimit: 18002 callbacks suppressed [ 623.345951][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 623.346120][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 623.352298][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 623.364286][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 623.376140][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 623.388078][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 623.400067][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 623.413145][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 623.424011][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 623.435905][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.020413][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 626.039796][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 628.355659][ C0] net_ratelimit: 17216 callbacks suppressed [ 628.355683][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 628.356528][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 628.362040][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 628.373971][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 628.385894][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 628.397774][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 628.409741][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 628.422712][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 628.433663][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 628.445578][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 633.365630][ C1] net_ratelimit: 17564 callbacks suppressed [ 633.365637][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 633.365655][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 633.366108][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 633.372002][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 633.383994][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 633.395837][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 633.409528][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 633.419759][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 633.431856][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 633.443769][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.375529][ C0] net_ratelimit: 17426 callbacks suppressed [ 638.375555][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.375807][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 638.381962][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.393858][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 638.405787][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.417693][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 638.429674][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.442445][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 638.453593][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 638.465467][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 643.385440][ C0] net_ratelimit: 16974 callbacks suppressed [ 643.385464][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 643.386852][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 643.391935][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 643.403959][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 643.415785][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 643.427894][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 643.439793][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 643.453326][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 643.464817][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 643.476178][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 648.395439][ C0] net_ratelimit: 17816 callbacks suppressed [ 648.395464][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 648.395527][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 648.401835][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 648.413747][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 648.425734][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 648.438601][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 648.449637][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 648.461596][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 648.473444][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 648.485336][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 653.405533][ C0] net_ratelimit: 17102 callbacks suppressed [ 653.405559][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 653.406332][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 653.411930][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 653.423848][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 653.435831][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 653.447711][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 653.459709][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 653.472521][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 653.483608][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 653.495535][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 658.415391][ C1] net_ratelimit: 17211 callbacks suppressed [ 658.415417][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 658.415496][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 658.421755][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 658.433786][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 658.446631][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 658.457676][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 658.469597][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 658.481509][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 658.493371][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 658.505429][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 663.425399][ C1] net_ratelimit: 17021 callbacks suppressed [ 663.425426][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 663.425810][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 663.432758][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 663.443863][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 663.455770][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 663.467656][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 663.479506][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 663.491539][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 663.504384][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 663.515541][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.435441][ C0] net_ratelimit: 17196 callbacks suppressed [ 668.435465][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.435891][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 668.441853][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.453745][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 668.465673][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.477587][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 668.489550][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.502404][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 668.513460][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 668.525372][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 673.445627][ C0] net_ratelimit: 17367 callbacks suppressed [ 673.445654][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 673.446019][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 673.452131][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 673.464034][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 673.476703][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 673.487884][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 673.499941][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 673.512837][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 673.523812][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 673.535878][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 678.455570][ C1] net_ratelimit: 17018 callbacks suppressed [ 678.455597][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 678.455639][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 678.462880][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 678.474012][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 678.485944][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 678.497822][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 678.509747][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 678.522394][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 678.534530][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 678.545626][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 683.465440][ C1] net_ratelimit: 16916 callbacks suppressed [ 683.465465][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 683.465485][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 683.471824][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 683.484625][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 683.495728][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 683.507655][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 683.520543][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 683.531559][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 683.543420][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 683.555819][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 688.475424][ C1] net_ratelimit: 16199 callbacks suppressed [ 688.475447][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 688.475497][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 688.481835][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 688.493787][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 688.505742][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 688.517671][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 688.530516][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 688.541567][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 688.553443][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 688.565484][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.485620][ C0] net_ratelimit: 15611 callbacks suppressed [ 693.485645][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.486068][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 693.492037][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.504004][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 693.515906][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.527750][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 693.539791][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.552653][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 693.563767][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 693.575791][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 698.495500][ C0] net_ratelimit: 15620 callbacks suppressed [ 698.495525][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 698.495590][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 698.501959][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 698.514860][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 698.525902][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 698.537720][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 698.549678][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 698.561532][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 698.573581][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 698.586500][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 703.505575][ C1] net_ratelimit: 15513 callbacks suppressed [ 703.505600][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 703.505792][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 703.512962][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 703.524038][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 703.535896][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 703.547917][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 703.559762][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 703.571743][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 703.584673][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 703.595673][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 705.245367][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 705.252359][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P14183/3:b..l [ 705.260850][ C0] rcu: (detected by 0, t=10503 jiffies, g=77305, q=665 ncpus=2) [ 705.268595][ C0] task:syz.0.1884 state:R running task stack:27304 pid:14183 tgid:14179 ppid:5830 task_flags:0x400140 flags:0x00080003 [ 705.283268][ C0] Call Trace: [ 705.286576][ C0] [ 705.289527][ C0] __schedule+0x1190/0x5de0 [ 705.294071][ C0] ? bpf_ksym_find+0x124/0x1c0 [ 705.298876][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 705.305070][ C0] ? __pfx___schedule+0x10/0x10 [ 705.309959][ C0] ? arch_stack_walk+0xa6/0x100 [ 705.314861][ C0] ? preempt_schedule_thunk+0x16/0x30 [ 705.320276][ C0] preempt_schedule_common+0x44/0xc0 [ 705.325596][ C0] preempt_schedule_thunk+0x16/0x30 [ 705.330842][ C0] ? ipt_do_table+0xd48/0x1ae0 [ 705.335634][ C0] __local_bh_enable_ip+0x107/0x120 [ 705.340860][ C0] ipt_do_table+0xd55/0x1ae0 [ 705.345512][ C0] ? __pfx_ipt_do_table+0x10/0x10 [ 705.350572][ C0] ? iptable_mangle_hook+0x71/0x4b0 [ 705.355819][ C0] ? nf_nat_ipv4_local_fn+0xb2/0x590 [ 705.361144][ C0] ? __pfx_ipt_do_table+0x10/0x10 [ 705.366205][ C0] nf_hook_slow+0xbe/0x200 [ 705.370654][ C0] nf_hook+0x371/0x680 [ 705.374754][ C0] ? __pfx_dst_output+0x10/0x10 [ 705.379635][ C0] ? __pfx_nf_hook+0x10/0x10 [ 705.384263][ C0] ? __pfx_dst_output+0x10/0x10 [ 705.389149][ C0] ? do_csum+0x26f/0x2d0 [ 705.393427][ C0] __ip_local_out+0x33a/0x7c0 [ 705.398140][ C0] ? __pfx_dst_output+0x10/0x10 [ 705.403028][ C0] __ip_queue_xmit+0x866/0x2330 [ 705.407928][ C0] l2tp_ip_sendmsg+0x66d/0x1980 [ 705.412813][ C0] ? __pfx_l2tp_ip_sendmsg+0x10/0x10 [ 705.418131][ C0] inet_sendmsg+0x11c/0x140 [ 705.422672][ C0] ____sys_sendmsg+0x973/0xc70 [ 705.427468][ C0] ? copy_msghdr_from_user+0x10a/0x160 [ 705.432995][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 705.438319][ C0] ? kfree+0x252/0x6d0 [ 705.442422][ C0] ___sys_sendmsg+0x134/0x1d0 [ 705.447132][ C0] ? __pfx____sys_sendmsg+0x10/0x10 [ 705.452393][ C0] ? __pfx___might_resched+0x10/0x10 [ 705.457715][ C0] __sys_sendmmsg+0x200/0x420 [ 705.462421][ C0] ? __pfx___sys_sendmmsg+0x10/0x10 [ 705.467656][ C0] ? __pfx_do_futex+0x10/0x10 [ 705.472365][ C0] ? rcu_is_watching+0x12/0xc0 [ 705.477179][ C0] ? xfd_validate_state+0x61/0x180 [ 705.482323][ C0] ? __sys_setsockopt+0x140/0x1a0 [ 705.487395][ C0] __x64_sys_sendmmsg+0x9c/0x100 [ 705.492362][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 705.497589][ C0] do_syscall_64+0xcd/0xfa0 [ 705.502129][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 705.508051][ C0] RIP: 0033:0x7fe95998f7c9 [ 705.512490][ C0] RSP: 002b:00007fe95a86a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 705.520929][ C0] RAX: ffffffffffffffda RBX: 00007fe959be6090 RCX: 00007fe95998f7c9 [ 705.528927][ C0] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 705.536921][ C0] RBP: 00007fe959a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 705.544915][ C0] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 705.552912][ C0] R13: 00007fe959be6128 R14: 00007fe959be6090 R15: 00007ffe7d7e1a98 [ 705.560923][ C0] [ 705.563961][ C0] rcu: rcu_preempt kthread starved for 1981 jiffies! g77305 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 705.575098][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 705.585094][ C0] rcu: RCU grace-period kthread stack dump: [ 705.590999][ C0] task:rcu_preempt state:R running task stack:28136 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 705.604547][ C0] Call Trace: [ 705.607838][ C0] [ 705.610794][ C0] __schedule+0x1190/0x5de0 [ 705.615337][ C0] ? __lock_acquire+0x622/0x1c90 [ 705.620307][ C0] ? __pfx___schedule+0x10/0x10 [ 705.625192][ C0] ? find_held_lock+0x2b/0x80 [ 705.629900][ C0] ? schedule+0x2d7/0x3a0 [ 705.634259][ C0] schedule+0xe7/0x3a0 [ 705.638359][ C0] schedule_timeout+0x123/0x290 [ 705.643236][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 705.648632][ C0] ? __pfx_process_timeout+0x10/0x10 [ 705.653947][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 705.659780][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 705.665281][ C0] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 705.670094][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 705.675413][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 705.680645][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 705.685616][ C0] ? rcu_gp_cleanup+0x7c1/0xd90 [ 705.690507][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 705.696346][ C0] rcu_gp_kthread+0x26d/0x380 [ 705.701064][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 705.706300][ C0] ? rcu_is_watching+0x12/0xc0 [ 705.711093][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 705.716324][ C0] ? __kthread_parkme+0x19e/0x250 [ 705.721379][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 705.726613][ C0] kthread+0x3c5/0x780 [ 705.730719][ C0] ? __pfx_kthread+0x10/0x10 [ 705.735350][ C0] ? rcu_is_watching+0x12/0xc0 [ 705.740130][ C0] ? __pfx_kthread+0x10/0x10 [ 705.744752][ C0] ret_from_fork+0x675/0x7d0 [ 705.749390][ C0] ? __pfx_kthread+0x10/0x10 [ 705.754024][ C0] ret_from_fork_asm+0x1a/0x30 [ 705.758844][ C0] [ 705.761879][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 705.768253][ C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) [ 705.777210][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 705.787287][ C0] RIP: 0010:lock_acquire+0x62/0x350 [ 705.792530][ C0] Code: dd 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 a2 00 ea 0e 0f 82 74 02 00 00 8b 35 fa 30 ea 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 b9 dc 08 12 0f 85 c7 02 00 00 48 83 c4 [ 705.812168][ C0] RSP: 0018:ffffc90000006bf0 EFLAGS: 00000206 [ 705.818265][ C0] RAX: 0000000000000046 RBX: ffffffff8e3c45e0 RCX: 000000007938eb5a [ 705.826268][ C0] RDX: 0000000000000000 RSI: ffffffff8da03cc9 RDI: ffffffff8bf07940 [ 705.834265][ C0] RBP: 0000000000000002 R08: 39529a686290c103 R09: 0000000000000000 [ 705.842265][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 705.850264][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 705.858258][ C0] FS: 0000000000000000(0000) GS:ffff888124a0d000(0000) knlGS:0000000000000000 [ 705.867217][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 705.873820][ C0] CR2: 00007f2d293b0e34 CR3: 00000000314e8000 CR4: 00000000003526f0 [ 705.881816][ C0] Call Trace: [ 705.885109][ C0] [ 705.887967][ C0] ? unwind_next_frame+0x3f4/0x20a0 [ 705.893196][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 705.899381][ C0] unwind_next_frame+0xd1/0x20a0 [ 705.904346][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 705.909484][ C0] ? br_handle_frame+0xb28/0x14e0 [ 705.914540][ C0] ? kasan_save_stack+0x42/0x60 [ 705.919421][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 705.925613][ C0] arch_stack_walk+0x94/0x100 [ 705.930331][ C0] ? br_handle_frame+0xb28/0x14e0 [ 705.935384][ C0] stack_trace_save+0x8e/0xc0 [ 705.940092][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 705.945509][ C0] ? lock_acquire+0x179/0x350 [ 705.950233][ C0] kasan_save_stack+0x33/0x60 [ 705.954948][ C0] ? kasan_save_stack+0x33/0x60 [ 705.959826][ C0] ? kasan_save_track+0x14/0x30 [ 705.964702][ C0] ? __kasan_slab_alloc+0x89/0x90 [ 705.969756][ C0] ? kmem_cache_alloc_noprof+0x250/0x6e0 [ 705.975415][ C0] ? skb_ext_add+0xf8/0x7b0 [ 705.979947][ C0] ? br_nf_forward_ip.part.0+0x28/0x810 [ 705.985523][ C0] ? br_nf_forward+0xf0f/0x1be0 [ 705.990400][ C0] ? nf_hook_slow+0xbe/0x200 [ 705.995012][ C0] ? nf_hook+0x45e/0x780 [ 705.999281][ C0] ? __br_forward+0x1be/0x5b0 [ 706.003981][ C0] ? maybe_deliver+0xf1/0x180 [ 706.008689][ C0] ? br_flood+0x17c/0x650 [ 706.013036][ C0] ? br_handle_frame_finish+0x1117/0x1f00 [ 706.018784][ C0] ? br_nf_hook_thresh+0x307/0x410 [ 706.024009][ C0] ? br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 706.030193][ C0] ? br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 706.035774][ C0] ? br_nf_pre_routing+0x860/0x15b0 [ 706.040995][ C0] ? br_handle_frame+0xb28/0x14e0 [ 706.046082][ C0] kasan_save_track+0x14/0x30 [ 706.050791][ C0] __kasan_slab_alloc+0x89/0x90 [ 706.055675][ C0] kmem_cache_alloc_noprof+0x250/0x6e0 [ 706.061163][ C0] ? skb_ext_add+0xf8/0x7b0 [ 706.065710][ C0] ? skb_ext_add+0xf8/0x7b0 [ 706.070243][ C0] skb_ext_add+0xf8/0x7b0 [ 706.074620][ C0] ? find_held_lock+0x2b/0x80 [ 706.079330][ C0] br_nf_forward_ip.part.0+0x28/0x810 [ 706.084743][ C0] br_nf_forward+0xf0f/0x1be0 [ 706.089457][ C0] ? __pfx_br_nf_forward+0x10/0x10 [ 706.094597][ C0] nf_hook_slow+0xbe/0x200 [ 706.099043][ C0] nf_hook+0x45e/0x780 [ 706.103137][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 706.108622][ C0] ? __pfx_nf_hook+0x10/0x10 [ 706.113239][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 706.118752][ C0] __br_forward+0x1be/0x5b0 [ 706.123285][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 706.128772][ C0] maybe_deliver+0xf1/0x180 [ 706.133306][ C0] br_flood+0x17c/0x650 [ 706.137499][ C0] br_handle_frame_finish+0x1117/0x1f00 [ 706.143080][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 706.149017][ C0] ? ip6t_do_table+0xc25/0x1c30 [ 706.153950][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 706.159096][ C0] ? nf_hook_slow+0x132/0x200 [ 706.163798][ C0] br_nf_hook_thresh+0x307/0x410 [ 706.168763][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 706.174689][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 706.180182][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 706.186106][ C0] ? __pfx_nf_nat_ipv6_in+0x10/0x10 [ 706.191345][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 706.197279][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 706.203226][ C0] br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 706.209264][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 706.215198][ C0] br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 706.220619][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 706.226540][ C0] ? lock_acquire+0x179/0x350 [ 706.231263][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 706.237803][ C0] ? net_generic+0xea/0x2a0 [ 706.242344][ C0] br_nf_pre_routing+0x860/0x15b0 [ 706.247414][ C0] br_handle_frame+0xb28/0x14e0 [ 706.252297][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 706.257616][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 706.263550][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 706.268866][ C0] __netif_receive_skb_core.constprop.0+0xa25/0x4bd0 [ 706.275593][ C0] ? kasan_quarantine_put+0xc0/0x240 [ 706.280919][ C0] ? kmem_cache_free+0x2d4/0x6c0 [ 706.285883][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 706.290600][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 706.297752][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 706.302462][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 706.307172][ C0] ? sk_skb_reason_drop+0x136/0x1a0 [ 706.312398][ C0] ? ip6_mc_input+0x515/0xf60 [ 706.317101][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 706.322151][ C0] ? __lock_acquire+0x622/0x1c90 [ 706.327134][ C0] ? process_backlog+0x3e7/0x15e0 [ 706.332203][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 706.338052][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 706.344510][ C0] ? lock_acquire+0x179/0x350 [ 706.349257][ C0] ? process_backlog+0x3e7/0x15e0 [ 706.354326][ C0] __netif_receive_skb+0x1d/0x160 [ 706.359395][ C0] process_backlog+0x439/0x15e0 [ 706.364309][ C0] __napi_poll.constprop.0+0xba/0x550 [ 706.369729][ C0] ? skb_defer_free_flush+0x149/0x280 [ 706.375148][ C0] net_rx_action+0x97f/0xef0 [ 706.379802][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 706.384963][ C0] ? lock_acquire+0x179/0x350 [ 706.389687][ C0] ? kvm_sched_clock_read+0x11/0x20 [ 706.394952][ C0] ? sched_clock+0x38/0x60 [ 706.399411][ C0] ? sched_clock_cpu+0x6c/0x530 [ 706.404315][ C0] handle_softirqs+0x219/0x8e0 [ 706.409129][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 706.414462][ C0] __irq_exit_rcu+0x109/0x170 [ 706.419170][ C0] irq_exit_rcu+0x9/0x30 [ 706.423438][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0 [ 706.429101][ C0] [ 706.432048][ C0] [ 706.434998][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 706.441016][ C0] RIP: 0010:pv_native_safe_halt+0xf/0x20 [ 706.446685][ C0] Code: 47 6f 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 23 54 2c 00 fb f4 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 [ 706.466325][ C0] RSP: 0018:ffffffff8e007df8 EFLAGS: 000002c6 [ 706.472425][ C0] RAX: 0000000000535d3f RBX: 0000000000000000 RCX: ffffffff8b5dd2a9 [ 706.480415][ C0] RDX: 0000000000000000 RSI: ffffffff8da2967a RDI: ffffffff8bf07940 [ 706.488409][ C0] RBP: fffffbfff1c12f40 R08: 0000000000000001 R09: ffffed1017086655 [ 706.496404][ C0] R10: ffff8880b84332ab R11: 0000000000000001 R12: 0000000000000000 [ 706.504398][ C0] R13: ffffffff8e097a00 R14: ffffffff908253d0 R15: 0000000000000000 [ 706.512405][ C0] ? ct_kernel_exit+0x139/0x190 [ 706.517300][ C0] default_idle+0x13/0x20 [ 706.521667][ C0] default_idle_call+0x6c/0xb0 [ 706.526472][ C0] do_idle+0x38d/0x500 [ 706.530568][ C0] ? __pfx_do_idle+0x10/0x10 [ 706.535192][ C0] ? trace_sched_exit_tp+0x2f/0x120 [ 706.540443][ C0] cpu_startup_entry+0x4f/0x60 [ 706.545236][ C0] rest_init+0x16b/0x2b0 [ 706.549510][ C0] ? acpi_subsystem_init+0x133/0x180 [ 706.554833][ C0] ? __pfx_x86_late_time_init+0x10/0x10 [ 706.560404][ C0] start_kernel+0x3f6/0x4e0 [ 706.564948][ C0] x86_64_start_reservations+0x18/0x30 [ 706.570432][ C0] x86_64_start_kernel+0x130/0x190 [ 706.575567][ C0] common_startup_64+0x13e/0x148 [ 706.580634][ C0] [ 708.089486][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 708.515431][ C0] net_ratelimit: 13887 callbacks suppressed [ 708.515457][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 708.516409][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 708.521838][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 708.533761][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 708.546004][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 708.557830][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 708.569812][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 708.582914][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 708.593798][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 708.605692][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 711.432775][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 713.525492][ C0] net_ratelimit: 16868 callbacks suppressed [ 713.525518][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 713.525727][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 713.532036][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 713.544863][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 713.555858][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 713.567815][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 713.579772][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 713.591635][ C1] bridge0: received packet on veth1_to_bridge with own address as source address (addr:1e:3f:c6:74:0d:d2, vlan:0) [ 713.603630][ C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 713.616564][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)