last executing test programs: 7.82855172s ago: executing program 0 (id=10972): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r0) sendmsg$auto_NL80211_CMD_GET_WIPHY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="810b25bd7080fbdbdf25010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004) recvmmsg$auto(r0, &(0x7f0000000180)={{0x0, 0x5, 0x0, 0x0, 0x0, 0x2, 0x6}, 0x803}, 0x10a, 0x6, 0x0) 7.533309071s ago: executing program 0 (id=10976): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2800, 0x0) close_range$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x2) select$auto(0x5, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948e, 0x8000000000008, 0x15f4da0a, 0x1, 0xfffffffffffffffe, 0x1, 0x2, 0x7, 0xd, 0x5, 0x2, 0x1]}, 0x0) 6.998281858s ago: executing program 0 (id=10985): r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0) landlock_restrict_self$auto(r0, 0x3) r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20443, 0x0) ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x5450, 0x0) 5.909976451s ago: executing program 0 (id=11000): writev$auto(0xffffffffffffffff, 0x0, 0x1) setresuid$auto(0xffffffff, 0x7, 0x3) r0 = clone$auto(0x6fc, 0x4dbb2, 0x0, 0x0, 0x4000c1a) tkill$auto(r0, 0x9) 4.005471443s ago: executing program 3 (id=11024): mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x44, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 3.871914506s ago: executing program 3 (id=11026): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x0, 0x100000000008000) sysfs$auto(0x2, 0x3f, 0x0) fsopen$auto(0x0, 0x1) close_range$auto(0x0, 0xfffffffffffff000, 0x0) 3.50865655s ago: executing program 0 (id=11029): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x17, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto_SHMEM_HUGE_NEVER(r0, 0x1, &(0x7f0000000000)='-\x00', &(0x7f0000000040), 0x0) 3.240873133s ago: executing program 2 (id=11031): socket(0x2, 0x3, 0x6) mmap$auto(0x0, 0x8, 0xdf, 0x9b72, 0x2, 0x8000) mincore$auto(0x0, 0x10000, 0x0) setsockopt$auto(0x3, 0x0, 0x31, 0x0, 0x28) 3.165240776s ago: executing program 0 (id=11033): close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000500)='/proc/fs/cifs/traceSMB\x00', 0xea102, 0x0) write$auto(0x3, 0x0, 0x7fffffff) 3.152267436s ago: executing program 3 (id=11034): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000100)='.\x00', 0x0, 0x408) getdents$auto(r0, 0x0, 0x5f) fcntl$auto(0x8000000000000001, 0x25, 0x8) 3.058915605s ago: executing program 1 (id=11035): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="13002ebd7000dddbdf250200000008000300", @ANYRES32=r2, @ANYBLOB="05003d005c"], 0x24}, 0x1, 0x0, 0x0, 0x4c0d4}, 0x20040894) 2.962181523s ago: executing program 3 (id=11036): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) r0 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0xc0040, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r0, 0x40305839, 0x0) 2.895634435s ago: executing program 1 (id=11037): socket(0xa, 0x3, 0x3b) ioctl$auto_TCFLSH2(0xffffffffffffffff, 0x5453, 0x0) mmap$auto(0x0, 0x10, 0x7f, 0xeb1, 0x401, 0x8000) getsockopt$auto(0x3, 0x200000000001, 0x1c, 0x0, 0x0) 2.839263739s ago: executing program 3 (id=11038): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)) exit$auto(0x2) fchdir$auto(r0) pivot_root$auto(&(0x7f0000000300)='.\x00\xaf\xeb)\xae$\xfc\x00\xf8\x05AC\x9f\xbbR\xec\xc6c\x85\xc8\xa7\xe84sF\xe3U\x94\x99\x8fR\xd0\x98\f\xa5\xb1S\x7f\xc3\xa5\xc0\x97\x10qa\r\x02\xd2\xc8\xd2\x8e\xc7\x80\x11\x06#\xf5\x18|\xdc\x81Ai\xb6\x96iaR\xdbA\x04\x10\x99\xe6\xdb\xae`G\x1d9`T\xd8\xc6\xea\xf7\x96\xb5\xe9\x164e\xb1 S\x8f\x12_\x15y\x91F\xc89\xb1\xd24?\x89.,Z\xba,\"v\xde\xc4\xe0\x84\xca|\"\x96V\xd5P\xe4\xb9\xea\x88\x15\xacs\xc6\x83\xd6\x81\xd7\x11\x88\x9c\xdd\x8a\x0e\xea\x19|\x7f\xe3A8x\xce\xc1!q\xbbi\\\xd8\xa9\xe0\xed\x9e\x19\xc0IC9^\xfcJG\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000280)='.\x00') 2.737900189s ago: executing program 1 (id=11039): socket(0xa, 0x2, 0x88) sendmsg$auto_NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000d80)=ANY=[@ANYBLOB="05000000", @ANYRES16=0x0, @ANYBLOB="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"], 0xb5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x48880) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x55) 2.707012324s ago: executing program 2 (id=11040): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) write$auto(0x3, 0x0, 0x81) recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0) 2.605486906s ago: executing program 1 (id=11041): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_datapath(&(0x7f0000004440), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ip6gre0\x00', 0x0}) sendmsg$auto_OVS_DP_CMD_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000004540)={&(0x7f0000000140)={0x38, r1, 0x1, 0x70bd2b, 0x25dfdbff, {}, [@OVS_DP_ATTR_IFINDEX={0x8, 0x9, r2}, @OVS_DP_ATTR_USER_FEATURES={0x8, 0x5, 0x6}, @OVS_DP_ATTR_NAME={0x11, 0x1, 'ovs_\x12\xff\xfe\x02\xff\xfe\x00\x00\x02'}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x2000000) 1.488143361s ago: executing program 2 (id=11042): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) sysfs$auto(0x2, 0x47, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 1.185030376s ago: executing program 2 (id=11043): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)={0x14, r1, 0x936355e497c8b7e5, 0x70bd25, 0x25dddbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x4048800) syz_genetlink_get_family_id$auto_ila(&(0x7f0000000140), r0) 1.184205539s ago: executing program 3 (id=11044): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x28, 0x1, 0x0) listen$auto(0x3, 0x81) 573.495416ms ago: executing program 1 (id=11045): close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000180), 0x983, 0x0) openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec8\x00', 0x101901, 0x0) select$auto(0x7, 0x0, &(0x7f0000000080)={[0x3, 0xe9e, 0x5, 0x15, 0x1002, 0x100000002, 0xb, 0xf, 0x40000000000008, 0x3a, 0x20000000009, 0x0, 0x101, 0xff, 0x2]}, 0x0, 0x0) 427.319196ms ago: executing program 1 (id=11046): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) settimeofday$auto(&(0x7f0000000080)={0x7fffffff, 0x5}, 0x0) 367.245884ms ago: executing program 2 (id=11047): close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) r0 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000300), 0x8000, 0x0) r1 = socketcall$auto(0x9, 0x0) fcntl$auto_F_DUPFD_QUERY(r0, 0x403, r1) 0s ago: executing program 2 (id=11048): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r0 = openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000002340)='/dev/binderfs/binder1\x00', 0x0, 0x0) dup$auto(r0) kernel console output (not intermixed with test programs): oup_charge+0x2b/0x1e0 [ 494.118238][ T6187] do_wp_page+0xf57/0x4f00 [ 494.118259][ T6187] ? __pfx_do_wp_page+0x10/0x10 [ 494.118276][ T6187] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 494.118301][ T6187] __handle_mm_fault+0x1ac8/0x2b60 [ 494.118324][ T6187] ? reacquire_held_locks+0xce/0x1e0 [ 494.118348][ T6187] ? __pfx___handle_mm_fault+0x10/0x10 [ 494.118370][ T6187] ? lock_vma_under_rcu+0x17c/0x590 [ 494.118399][ T6187] handle_mm_fault+0x36d/0xa20 [ 494.118422][ T6187] do_user_addr_fault+0x5a3/0x12f0 [ 494.118451][ T6187] exc_page_fault+0x6f/0xd0 [ 494.118467][ T6187] asm_exc_page_fault+0x26/0x30 [ 494.118481][ T6187] RIP: 0033:0x7f83affb7b50 [ 494.118494][ T6187] Code: da 5e d9 00 00 00 00 00 c7 05 c8 5e d9 00 00 00 00 00 c3 0f 1f 80 00 00 00 00 85 c0 74 0c 83 e8 01 89 05 b7 5e d9 00 c3 66 90 <48> c7 05 ad 5e d9 00 00 00 00 00 87 05 9f 5e d9 00 83 f8 01 7e e7 [ 494.118508][ T6187] RSP: 002b:00007ffceaa96198 EFLAGS: 00010246 [ 494.118520][ T6187] RAX: 0000000000000000 RBX: 00000000000010af RCX: 00007f83aff3dce7 [ 494.118529][ T6187] RDX: 0000000000000000 RSI: 00007ffceaa96170 RDI: 0000000000000002 [ 494.118538][ T6187] RBP: 00007ffceaa962fc R08: 00007f83b0d48060 R09: 0000000000000000 [ 494.118547][ T6187] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001 [ 494.118555][ T6187] R13: ffffffffffffffe8 R14: 0000000000000006 R15: 00007ffceaa96350 [ 494.118574][ T6187] [ 494.118580][ T6187] memory: usage 3072kB, limit 3072kB, failcnt 107623 [ 494.761591][ T6187] memory+swap: usage 96384kB, limit 9007199254740988kB, failcnt 0 [ 494.785238][ T6187] kmem: usage 1436kB, limit 9007199254740988kB, failcnt 0 [ 494.810335][ T6187] Memory cgroup stats for /syz3: [ 494.810438][ T6187] cache 1634304 [ 494.840218][ T6187] rss 40960 [ 494.864128][ T6187] rss_huge 0 [ 494.867339][ T6187] shmem 1626112 [ 494.912835][ T6187] mapped_file 0 [ 494.918817][ T6187] dirty 0 [ 494.929915][ T6187] writeback 0 [ 494.957216][ T6187] workingset_refault_anon 3944 [ 494.994285][ T6187] workingset_refault_file 41782 [ 495.004542][T25287] openvswitch: netlink: Multiple metadata blocks provided [ 495.014632][ T6187] swap 95551488 [ 495.018101][ T6187] swapcached 347365376 [ 495.041655][ T6187] pgpgin 241180 [ 495.061484][ T6187] pgpgout 245413 [ 495.065435][ T6187] pgfault 254597 [ 495.100089][ T6187] pgmajfault 1587 [ 495.116241][ T6187] inactive_anon 1568768 [ 495.131079][ T6187] active_anon 98304 [ 495.134890][ T6187] inactive_file 4096 [ 495.165157][ T6187] active_file 4096 [ 495.190064][ T6187] unevictable 0 [ 495.193576][ T6187] hierarchical_memory_limit 3145728 [ 495.227886][ T6187] hierarchical_memsw_limit 9223372036854771712 [ 495.249908][ T6187] total_cache 1634304 [ 495.269668][ T6187] total_rss 40960 [ 495.273340][ T6187] total_rss_huge 0 [ 495.302634][ T6187] total_shmem 1626112 [ 495.306631][ T6187] total_mapped_file 0 [ 495.341383][ T6187] total_dirty 0 [ 495.345298][ T6187] total_writeback 0 [ 495.380172][ T6187] total_workingset_refault_anon 3944 [ 495.385480][ T6187] total_workingset_refault_file 41782 [ 495.432305][ T6187] total_swap 95551488 [ 495.453975][ T6187] total_swapcached 347365376 [ 495.483085][ T6187] total_pgpgin 241180 [ 495.505472][ T6187] total_pgpgout 245413 [ 495.518855][ T6187] total_pgfault 254597 [ 495.523232][ T6187] total_pgmajfault 1587 [ 495.556065][ T6187] total_inactive_anon 1568768 [ 495.577410][ T6187] total_active_anon 98304 [ 495.599551][ T6187] total_inactive_file 4096 [ 495.603977][ T6187] total_active_file 4096 [ 495.637658][ T6187] total_unevictable 0 [ 495.644543][ T6187] anon_cost 333 [ 495.677637][ T6187] file_cost 92 [ 495.681030][ T6187] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.8766,pid=24645,uid=0 [ 495.756772][ T6187] Memory cgroup out of memory: Killed process 24645 (syz.3.8766) total-vm:108504kB, anon-rss:1228kB, file-rss:56052kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:1000 [ 495.909659][T25320] netlink: 'syz.0.9065': attribute type 11 has an invalid length. [ 495.944652][T25320] netlink: 'syz.0.9065': attribute type 11 has an invalid length. [ 495.976683][T25320] netlink: 'syz.0.9065': attribute type 11 has an invalid length. [ 496.014071][T25320] netlink: 'syz.0.9065': attribute type 11 has an invalid length. [ 496.064403][T25317] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 496.902088][T25358] vivid-001: ================= START STATUS ================= [ 496.933642][T25358] vivid-001: Radio HW Seek Mode: Bounded [ 496.939542][T25358] vivid-001: Radio Programmable HW Seek: false [ 496.995310][T25358] vivid-001: RDS Rx I/O Mode: Block I/O [ 497.012024][T25358] vivid-001: Generate RBDS Instead of RDS: false [ 497.042448][T25358] vivid-001: RDS Reception: true [ 497.063278][T25358] vivid-001: RDS Program Type: 0 inactive [ 497.099559][T25358] vivid-001: RDS PS Name: inactive [ 497.130507][T25358] vivid-001: RDS Radio Text: inactive [ 497.157035][T25358] vivid-001: RDS Traffic Announcement: false inactive [ 497.191380][T25358] vivid-001: RDS Traffic Program: false inactive [ 497.198021][T25368] FAULT_INJECTION: forcing a failure. [ 497.198021][T25368] name failslab, interval 1, probability 0, space 0, times 0 [ 497.219712][T25358] vivid-001: RDS Music: false inactive [ 497.239639][T25358] vivid-001: ================== END STATUS ================== [ 497.248981][T25368] CPU: 0 UID: 0 PID: 25368 Comm: syz.1.9087 Tainted: G U syzkaller #0 PREEMPT(full) [ 497.249007][T25368] Tainted: [U]=USER [ 497.249012][T25368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 497.249021][T25368] Call Trace: [ 497.249026][T25368] [ 497.249032][T25368] dump_stack_lvl+0x100/0x190 [ 497.249058][T25368] should_fail_ex.cold+0x5/0xa [ 497.249077][T25368] should_failslab+0xc2/0x120 [ 497.249092][T25368] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 497.249113][T25368] ? __d_alloc+0x34/0xa80 [ 497.249127][T25368] ? make_vfsgid+0xf1/0x140 [ 497.249149][T25368] __d_alloc+0x34/0xa80 [ 497.249163][T25368] ? bpf_lsm_inode_permission+0x9/0x10 [ 497.249185][T25368] d_alloc+0x4a/0x1e0 [ 497.249201][T25368] vfs_tmpfile+0x148/0x9a0 [ 497.249227][T25368] path_openat+0x164e/0x31a0 [ 497.249240][T25368] ? kasan_save_stack+0x3f/0x50 [ 497.249261][T25368] ? kasan_save_stack+0x30/0x50 [ 497.249285][T25368] ? __kasan_slab_alloc+0x89/0x90 [ 497.249306][T25368] ? kmem_cache_alloc_noprof+0x241/0x6e0 [ 497.249325][T25368] ? do_getname+0x35/0x390 [ 497.249341][T25368] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.249358][T25368] ? __pfx_path_openat+0x10/0x10 [ 497.249379][T25368] do_file_open+0x20e/0x430 [ 497.249394][T25368] ? __pfx_do_file_open+0x10/0x10 [ 497.249421][T25368] ? _raw_spin_unlock+0x28/0x50 [ 497.249443][T25368] ? alloc_fd+0x476/0x790 [ 497.249470][T25368] do_sys_openat2+0x10d/0x1e0 [ 497.249488][T25368] ? __pfx_do_sys_openat2+0x10/0x10 [ 497.249512][T25368] __x64_sys_open+0xfe/0x1d0 [ 497.249529][T25368] ? __pfx___x64_sys_open+0x10/0x10 [ 497.249554][T25368] do_syscall_64+0x106/0xf80 [ 497.249569][T25368] ? clear_bhb_loop+0x40/0x90 [ 497.249586][T25368] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 497.249601][T25368] RIP: 0033:0x7fcd67d9c629 [ 497.249614][T25368] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 497.249628][T25368] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 497.249643][T25368] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 497.249653][T25368] RDX: 0000000000000408 RSI: 0000000000595002 RDI: 0000200000000100 [ 497.249661][T25368] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 497.249670][T25368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 497.249678][T25368] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 497.249698][T25368] [ 498.939708][T25408] mmap: syz.0.9103 (25408): VmData 45879296 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 499.613499][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 499.620522][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 499.643779][T25433] netlink: 'syz.0.9115': attribute type 1 has an invalid length. [ 500.426683][T25463] NFSD: Failed to start, no listeners configured. [ 500.861454][T25488] netlink: 346 bytes leftover after parsing attributes in process `syz.1.9139'. [ 501.262689][T25504] openvswitch: netlink: ct_state flags aa1414ac unsupported [ 501.305281][T25500] NFSD: Failed to start, no listeners configured. [ 501.896182][T25536] netlink: 'syz.3.9158': attribute type 11 has an invalid length. [ 502.144164][T25544] NFSD: Failed to start, no listeners configured. [ 502.869665][T25578] netlink: 'syz.1.9175': attribute type 11 has an invalid length. [ 502.897764][T25581] FAULT_INJECTION: forcing a failure. [ 502.897764][T25581] name failslab, interval 1, probability 0, space 0, times 0 [ 502.912168][T25578] netlink: 'syz.1.9175': attribute type 11 has an invalid length. [ 502.935632][T25578] netlink: 'syz.1.9175': attribute type 11 has an invalid length. [ 502.954512][T25581] CPU: 0 UID: 0 PID: 25581 Comm: syz.3.9177 Tainted: G U syzkaller #0 PREEMPT(full) [ 502.954539][T25581] Tainted: [U]=USER [ 502.954544][T25581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 502.954554][T25581] Call Trace: [ 502.954560][T25581] [ 502.954565][T25581] dump_stack_lvl+0x100/0x190 [ 502.954593][T25581] should_fail_ex.cold+0x5/0xa [ 502.954611][T25581] should_failslab+0xc2/0x120 [ 502.954627][T25581] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 502.954647][T25581] ? ptlock_alloc+0x1f/0x70 [ 502.954669][T25581] ptlock_alloc+0x1f/0x70 [ 502.954686][T25581] pte_alloc_one+0x84/0x3e0 [ 502.954703][T25581] __pte_alloc+0x6d/0x3f0 [ 502.954717][T25581] ? __pfx___pte_alloc+0x10/0x10 [ 502.954730][T25581] ? _raw_spin_unlock+0x28/0x50 [ 502.954753][T25581] ? __pmd_alloc+0x6aa/0x9c0 [ 502.954769][T25581] move_page_tables+0x257e/0x4500 [ 502.954790][T25581] ? __pfx_copy_vma+0x10/0x10 [ 502.954816][T25581] ? __pfx_move_page_tables+0x10/0x10 [ 502.954846][T25581] ? finish_task_switch.isra.0+0x200/0xb80 [ 502.954865][T25581] copy_vma_and_data+0x25c/0x7c0 [ 502.954886][T25581] ? __pfx_copy_vma_and_data+0x10/0x10 [ 502.954914][T25581] ? __vma_start_write+0x17f/0x280 [ 502.954931][T25581] ? __pfx___vma_start_write+0x10/0x10 [ 502.954947][T25581] ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10 [ 502.954975][T25581] move_vma+0x51b/0x1890 [ 502.954997][T25581] ? __pfx_move_vma+0x10/0x10 [ 502.955017][T25581] ? thp_get_unmapped_area_vmflags+0x27f/0x2d0 [ 502.955036][T25581] ? cap_mmap_addr+0x4b/0x120 [ 502.955054][T25581] ? bpf_lsm_mmap_addr+0x9/0x30 [ 502.955074][T25581] ? security_mmap_addr+0x71/0x1e0 [ 502.955097][T25581] ? __get_unmapped_area+0x255/0x3e0 [ 502.955114][T25581] ? vrm_set_new_addr+0x204/0x290 [ 502.955134][T25581] mremap_to+0x1b7/0x450 [ 502.955154][T25581] do_mremap+0xb76/0x2130 [ 502.955181][T25581] ? __pfx_do_mremap+0x10/0x10 [ 502.955205][T25581] ? ksys_write+0x190/0x250 [ 502.955230][T25581] __do_sys_mremap+0x126/0x170 [ 502.955249][T25581] ? __pfx___do_sys_mremap+0x10/0x10 [ 502.955274][T25581] ? __x64_sys_futex+0x34f/0x4d0 [ 502.955303][T25581] do_syscall_64+0x106/0xf80 [ 502.955319][T25581] ? clear_bhb_loop+0x40/0x90 [ 502.955336][T25581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.955351][T25581] RIP: 0033:0x7f83aff9c629 [ 502.955373][T25581] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 502.955388][T25581] RSP: 002b:00007f83b0df4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 502.955403][T25581] RAX: ffffffffffffffda RBX: 00007f83b0215fa0 RCX: 00007f83aff9c629 [ 502.955413][T25581] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 000000110c231000 [ 502.955422][T25581] RBP: 00007f83b0032b39 R08: 0000000100000000 R09: 0000000000000000 [ 502.955431][T25581] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 502.955441][T25581] R13: 00007f83b0216038 R14: 00007f83b0215fa0 R15: 00007ffceaa95f58 [ 502.955461][T25581] [ 503.458006][T25593] FAULT_INJECTION: forcing a failure. [ 503.458006][T25593] name failslab, interval 1, probability 0, space 0, times 0 [ 503.471078][T25593] CPU: 0 UID: 0 PID: 25593 Comm: syz.0.9181 Tainted: G U syzkaller #0 PREEMPT(full) [ 503.471105][T25593] Tainted: [U]=USER [ 503.471110][T25593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 503.471119][T25593] Call Trace: [ 503.471125][T25593] [ 503.471134][T25593] dump_stack_lvl+0x100/0x190 [ 503.471160][T25593] should_fail_ex.cold+0x5/0xa [ 503.471179][T25593] should_failslab+0xc2/0x120 [ 503.471194][T25593] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 503.471213][T25593] ? __anon_vma_prepare+0xae/0x5e0 [ 503.471235][T25593] __anon_vma_prepare+0xae/0x5e0 [ 503.471253][T25593] ? do_raw_spin_lock+0x128/0x260 [ 503.471276][T25593] __vmf_anon_prepare+0x11f/0x250 [ 503.471292][T25593] do_huge_pmd_anonymous_page+0x15c/0x1a60 [ 503.471314][T25593] ? __pmd_alloc+0x6aa/0x9c0 [ 503.471330][T25593] __handle_mm_fault+0x1e9e/0x2b60 [ 503.471351][T25593] ? mt_find+0x45e/0x8e0 [ 503.471369][T25593] ? __pfx___handle_mm_fault+0x10/0x10 [ 503.471386][T25593] ? __pfx_mt_find+0x10/0x10 [ 503.471418][T25593] handle_mm_fault+0x36d/0xa20 [ 503.471439][T25593] __get_user_pages+0xf9c/0x34d0 [ 503.471461][T25593] ? __pfx___get_user_pages+0x10/0x10 [ 503.471482][T25593] populate_vma_page_range+0x267/0x3f0 [ 503.471500][T25593] ? __pfx_populate_vma_page_range+0x10/0x10 [ 503.471516][T25593] ? __pfx_find_vma_intersection+0x10/0x10 [ 503.471539][T25593] ? do_mmap+0x93f/0x12f0 [ 503.471556][T25593] __mm_populate+0x107/0x3a0 [ 503.471572][T25593] ? __pfx___mm_populate+0x10/0x10 [ 503.471590][T25593] ? up_write+0x290/0x4f0 [ 503.471611][T25593] vm_mmap_pgoff+0x37f/0x470 [ 503.471636][T25593] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 503.471653][T25593] ? do_futex+0x192/0x350 [ 503.471672][T25593] ? __pfx_do_futex+0x10/0x10 [ 503.471694][T25593] ksys_mmap_pgoff+0xe1/0x650 [ 503.471708][T25593] ? __x64_sys_futex+0x34f/0x4d0 [ 503.471726][T25593] ? __x64_sys_futex+0x358/0x4d0 [ 503.471745][T25593] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 503.471759][T25593] ? xfd_validate_state+0x129/0x190 [ 503.471783][T25593] __x64_sys_mmap+0x125/0x190 [ 503.471805][T25593] do_syscall_64+0x106/0xf80 [ 503.471820][T25593] ? clear_bhb_loop+0x40/0x90 [ 503.471838][T25593] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 503.471853][T25593] RIP: 0033:0x7f5c3019c629 [ 503.471866][T25593] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 503.471880][T25593] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 503.471895][T25593] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 503.471905][T25593] RDX: 00000000000000df RSI: 0000000000400008 RDI: 0000000000000000 [ 503.471913][T25593] RBP: 00007f5c30232b39 R08: 0000000000000002 R09: 0000000000008000 [ 503.471922][T25593] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000000 [ 503.471930][T25593] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 503.471949][T25593] [ 504.208462][T25611] bond0: option lp_interval: invalid value () [ 504.230329][T25611] bond0: option lp_interval: allowed values 1 - 2147483647 [ 505.438882][T25661] NFSD: Failed to start, no listeners configured. [ 505.880763][T25694] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 505.887250][T25694] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 506.412561][T25719] netlink: 'syz.2.9236': attribute type 1 has an invalid length. [ 506.594129][T25725] FAULT_INJECTION: forcing a failure. [ 506.594129][T25725] name failslab, interval 1, probability 0, space 0, times 0 [ 506.654345][T25725] CPU: 0 UID: 0 PID: 25725 Comm: syz.1.9238 Tainted: G U syzkaller #0 PREEMPT(full) [ 506.654375][T25725] Tainted: [U]=USER [ 506.654381][T25725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 506.654390][T25725] Call Trace: [ 506.654396][T25725] [ 506.654401][T25725] dump_stack_lvl+0x100/0x190 [ 506.654428][T25725] should_fail_ex.cold+0x5/0xa [ 506.654447][T25725] ? alloc_pipe_info+0x1ec/0x590 [ 506.654460][T25725] should_failslab+0xc2/0x120 [ 506.654475][T25725] __kmalloc_noprof+0xe0/0x850 [ 506.654495][T25725] ? bpf_lsm_capable+0x9/0x10 [ 506.654509][T25725] ? security_capable+0x80/0x260 [ 506.654529][T25725] alloc_pipe_info+0x1ec/0x590 [ 506.654545][T25725] create_pipe_files+0x8c/0x970 [ 506.654561][T25725] do_pipe2+0xbd/0x1e0 [ 506.654574][T25725] ? __pfx_do_pipe2+0x10/0x10 [ 506.654587][T25725] ? xfd_validate_state+0x129/0x190 [ 506.654614][T25725] __x64_sys_pipe2+0x54/0x80 [ 506.654628][T25725] do_syscall_64+0x106/0xf80 [ 506.654643][T25725] ? clear_bhb_loop+0x40/0x90 [ 506.654661][T25725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 506.654676][T25725] RIP: 0033:0x7fcd67d9c629 [ 506.654689][T25725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 506.654703][T25725] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 506.654717][T25725] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 506.654727][T25725] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 506.654736][T25725] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 506.654744][T25725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 506.654753][T25725] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 506.654772][T25725] [ 507.312295][T25749] nbd: illegal input index -1073741824 [ 507.598431][T25763] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 507.972334][T25783] dlm: non-version read from control device 255 [ 508.468336][T25805] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9277'. [ 508.498082][T25806] netlink: 'syz.2.9278': attribute type 2 has an invalid length. [ 508.880830][T25830] vivid-007: ================= START STATUS ================= [ 508.908904][T25830] vivid-007: Generate PTS: true [ 508.926525][T25830] vivid-007: Generate SCR: true [ 508.941457][T25830] tpg source WxH: 320x240 (Y'CbCr) [ 508.963569][T25830] tpg field: 1 [ 508.975700][T25830] tpg crop: (0,0)/320x240 [ 508.993832][T25830] tpg compose: (0,0)/320x240 [ 509.011152][T25830] tpg colorspace: 8 [ 509.025833][T25830] tpg transfer function: 0/0 [ 509.041606][T25830] tpg Y'CbCr encoding: 0/0 [ 509.054263][T25830] tpg quantization: 0/0 [ 509.072773][T25830] tpg RGB range: 0/2 [ 509.090384][T25830] vivid-007: ================== END STATUS ================== [ 509.246336][T25836] Process accounting resumed [ 509.902920][T17109] Bluetooth: hci1: unexpected event 0x36 length: 123 > 7 [ 510.779603][T25896] snd_aloop snd_aloop.0: control 7:265:7::2463 is already present [ 512.213300][T25957] FAULT_INJECTION: forcing a failure. [ 512.213300][T25957] name failslab, interval 1, probability 0, space 0, times 0 [ 512.271376][T25957] CPU: 0 UID: 0 PID: 25957 Comm: syz.0.9346 Tainted: G U L syzkaller #0 PREEMPT(full) [ 512.271404][T25957] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 512.271441][T25957] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 512.271450][T25957] Call Trace: [ 512.271456][T25957] [ 512.271462][T25957] dump_stack_lvl+0x100/0x190 [ 512.271490][T25957] should_fail_ex.cold+0x5/0xa [ 512.271508][T25957] should_failslab+0xc2/0x120 [ 512.271523][T25957] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 512.271544][T25957] ? security_file_alloc+0x34/0x2c0 [ 512.271567][T25957] ? trace_kmem_cache_alloc+0xf3/0x120 [ 512.271584][T25957] security_file_alloc+0x34/0x2c0 [ 512.271608][T25957] init_file+0x95/0x480 [ 512.271623][T25957] alloc_empty_file+0x73/0x1c0 [ 512.271640][T25957] alloc_file_pseudo+0x13a/0x230 [ 512.271658][T25957] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 512.271673][T25957] ? alloc_fd+0x476/0x790 [ 512.271695][T25957] ? do_raw_spin_unlock+0x145/0x1e0 [ 512.271718][T25957] __anon_inode_getfile+0xe8/0x280 [ 512.271737][T25957] anon_inode_getfile_fmode+0x37/0xa0 [ 512.271754][T25957] do_signalfd4+0x1ed/0x480 [ 512.271771][T25957] __x64_sys_signalfd+0x120/0x1a0 [ 512.271788][T25957] ? __pfx___x64_sys_signalfd+0x10/0x10 [ 512.271810][T25957] do_syscall_64+0x106/0xf80 [ 512.271826][T25957] ? clear_bhb_loop+0x40/0x90 [ 512.271844][T25957] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.271859][T25957] RIP: 0033:0x7f5c3019c629 [ 512.271872][T25957] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 512.271886][T25957] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 000000000000011a [ 512.271901][T25957] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 512.271910][T25957] RDX: 0000000000000008 RSI: 00002000000000c0 RDI: ffffffffffffffff [ 512.271919][T25957] RBP: 00007f5c30232b39 R08: 0000000000000000 R09: 0000000000000000 [ 512.271928][T25957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 512.271936][T25957] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 512.271955][T25957] [ 514.207950][T26043] nfs: Unknown parameter 'm?LH>「^eko}* ' [ 515.511379][T26102] input input38: cannot allocate more than FF_MAX_EFFECTS effects [ 516.023059][T26129] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE r҄y*"l-y– [ 516.387155][T26153] openvswitch: netlink: IP tunnel dst address not specified [ 516.505278][T26158] netlink: NAT attribute has 4 unknown bytes [ 517.363691][T26193] netlink: Setting conntrack mark requires 'commit' flag. [ 517.914626][T26213] sctp: [Deprecated]: syz.0.9458 (pid 26213) Use of int in max_burst socket option deprecated. [ 517.914626][T26213] Use struct sctp_assoc_value instead [ 518.090171][T26222] netlink: 206 bytes leftover after parsing attributes in process `syz.2.9463'. [ 518.295589][T26230] FAULT_INJECTION: forcing a failure. [ 518.295589][T26230] name failslab, interval 1, probability 0, space 0, times 0 [ 518.366693][T26230] CPU: 0 UID: 0 PID: 26230 Comm: syz.0.9467 Tainted: G U L syzkaller #0 PREEMPT(full) [ 518.366723][T26230] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 518.366729][T26230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 518.366738][T26230] Call Trace: [ 518.366744][T26230] [ 518.366750][T26230] dump_stack_lvl+0x100/0x190 [ 518.366777][T26230] should_fail_ex.cold+0x5/0xa [ 518.366795][T26230] should_failslab+0xc2/0x120 [ 518.366811][T26230] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 518.366838][T26230] ? sock_alloc_inode+0x25/0x1c0 [ 518.366859][T26230] ? __debug_object_init+0x2de/0x3d0 [ 518.366879][T26230] ? __pfx_sock_alloc_inode+0x10/0x10 [ 518.366900][T26230] sock_alloc_inode+0x25/0x1c0 [ 518.366918][T26230] alloc_inode+0x68/0x250 [ 518.366937][T26230] sock_alloc+0x44/0x280 [ 518.366953][T26230] ? security_socket_create+0x7f/0x250 [ 518.366974][T26230] __sock_create+0xc2/0x860 [ 518.366999][T26230] smc_create_clcsk+0x37/0xd0 [ 518.367012][T26230] ? __pfx_smc_inet_init_sock+0x10/0x10 [ 518.367030][T26230] inet6_create+0xb21/0x12b0 [ 518.367050][T26230] ? inet6_create+0x7f/0x12b0 [ 518.367068][T26230] __sock_create+0x339/0x860 [ 518.367092][T26230] __sys_socket+0x14d/0x260 [ 518.367112][T26230] ? __pfx___sys_socket+0x10/0x10 [ 518.367139][T26230] __x64_sys_socket+0x72/0xb0 [ 518.367158][T26230] ? lockdep_hardirqs_on+0x78/0x100 [ 518.367174][T26230] do_syscall_64+0x106/0xf80 [ 518.367189][T26230] ? clear_bhb_loop+0x40/0x90 [ 518.367206][T26230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 518.367222][T26230] RIP: 0033:0x7f5c3019c629 [ 518.367235][T26230] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 518.367249][T26230] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 518.367263][T26230] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 518.367273][T26230] RDX: 0000000000000100 RSI: 0000000000000001 RDI: 000000000000000a [ 518.367281][T26230] RBP: 00007f5c30232b39 R08: 0000000000000000 R09: 0000000000000000 [ 518.367290][T26230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 518.367298][T26230] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 518.367317][T26230] [ 518.367336][T26230] socket: no more sockets [ 518.838597][T26245] netlink: Conntrack attr has 16 unknown bytes [ 518.847664][T26246] netlink: 'syz.2.9474': attribute type 2 has an invalid length. [ 519.528190][T26279] nbd: must specify a device to reconfigure [ 520.140992][T26305] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 521.051190][T26342] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 521.672745][T26370] FAULT_INJECTION: forcing a failure. [ 521.672745][T26370] name failslab, interval 1, probability 0, space 0, times 0 [ 521.734601][T26370] CPU: 0 UID: 0 PID: 26370 Comm: syz.1.9532 Tainted: G U L syzkaller #0 PREEMPT(full) [ 521.734630][T26370] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 521.734636][T26370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 521.734645][T26370] Call Trace: [ 521.734651][T26370] [ 521.734657][T26370] dump_stack_lvl+0x100/0x190 [ 521.734684][T26370] should_fail_ex.cold+0x5/0xa [ 521.734702][T26370] should_failslab+0xc2/0x120 [ 521.734717][T26370] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 521.734738][T26370] ? __d_alloc+0x34/0xa80 [ 521.734757][T26370] __d_alloc+0x34/0xa80 [ 521.734774][T26370] d_alloc+0x4a/0x1e0 [ 521.734789][T26370] lookup_one_qstr_excl+0x175/0x250 [ 521.734809][T26370] start_dirop+0x59/0xb0 [ 521.734829][T26370] simple_start_creating+0xf9/0x110 [ 521.734851][T26370] ? __pfx_simple_start_creating+0x10/0x10 [ 521.734872][T26370] ? mntput+0x70/0xa0 [ 521.734891][T26370] ? simple_pin_fs+0xa3/0x190 [ 521.734911][T26370] debugfs_start_creating.part.0+0x82/0x170 [ 521.734932][T26370] __debugfs_create_file+0xb3/0x4f0 [ 521.734955][T26370] debugfs_create_file_full+0x41/0x60 [ 521.734977][T26370] ref_tracker_dir_debugfs+0x19e/0x2e0 [ 521.734993][T26370] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 521.735007][T26370] ? rcu_is_watching+0x12/0xc0 [ 521.735044][T26370] ? lockdep_init_map_type+0x5c/0x250 [ 521.735065][T26370] preinit_net.part.0+0x24e/0x8f0 [ 521.735084][T26370] copy_net_ns+0x339/0x7c0 [ 521.735104][T26370] create_new_namespaces+0x3ea/0xac0 [ 521.735124][T26370] unshare_nsproxy_namespaces+0xc3/0x1f0 [ 521.735141][T26370] ksys_unshare+0x455/0xab0 [ 521.735160][T26370] ? __pfx_ksys_unshare+0x10/0x10 [ 521.735185][T26370] __x64_sys_unshare+0x31/0x40 [ 521.735201][T26370] do_syscall_64+0x106/0xf80 [ 521.735222][T26370] ? clear_bhb_loop+0x40/0x90 [ 521.735240][T26370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 521.735256][T26370] RIP: 0033:0x7fcd67d9c629 [ 521.735269][T26370] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 521.735283][T26370] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 521.735297][T26370] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 521.735307][T26370] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 521.735315][T26370] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 521.735324][T26370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 521.735332][T26370] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 521.735352][T26370] [ 524.467328][T26479] netlink: ct_mark mask cannot be 0 [ 525.059781][T26505] netlink: 'syz.3.9583': attribute type 1 has an invalid length. [ 525.171574][T26509] device-mapper: ioctl: Invalid ioctl structure: name , dev 3ff [ 525.680665][T26536] blktrace: Concurrent blktraces are not allowed on loop2 [ 526.230040][T26561] netlink: 'syz.0.9607': attribute type 1 has an invalid length. [ 526.355536][T26567] ksmbd: Unknown IPC event: 14, ignore. [ 527.966819][T26640] nbd: must specify a size in bytes for the device [ 528.409962][T26660] FAULT_INJECTION: forcing a failure. [ 528.409962][T26660] name failslab, interval 1, probability 0, space 0, times 0 [ 528.462003][T26660] CPU: 0 UID: 0 PID: 26660 Comm: syz.2.9654 Tainted: G U L syzkaller #0 PREEMPT(full) [ 528.462032][T26660] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 528.462037][T26660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 528.462047][T26660] Call Trace: [ 528.462052][T26660] [ 528.462058][T26660] dump_stack_lvl+0x100/0x190 [ 528.462085][T26660] should_fail_ex.cold+0x5/0xa [ 528.462104][T26660] should_failslab+0xc2/0x120 [ 528.462118][T26660] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 528.462138][T26660] ? dup_fd+0x4d/0xd10 [ 528.462160][T26660] ? trace_kmalloc+0x101/0x130 [ 528.462177][T26660] dup_fd+0x4d/0xd10 [ 528.462201][T26660] ? apparmor_task_alloc+0x2c1/0x3b0 [ 528.462222][T26660] copy_process+0x2631/0x7a10 [ 528.462247][T26660] ? __pfx_copy_process+0x10/0x10 [ 528.462274][T26660] kernel_clone+0xfc/0x9a0 [ 528.462289][T26660] ? __pfx_futex_wait+0x10/0x10 [ 528.462312][T26660] ? __pfx_kernel_clone+0x10/0x10 [ 528.462338][T26660] __do_sys_clone+0xd9/0x120 [ 528.462355][T26660] ? __pfx___do_sys_clone+0x10/0x10 [ 528.462386][T26660] do_syscall_64+0x106/0xf80 [ 528.462402][T26660] ? clear_bhb_loop+0x40/0x90 [ 528.462419][T26660] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 528.462434][T26660] RIP: 0033:0x7f4a9af9c629 [ 528.462447][T26660] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 528.462461][T26660] RSP: 002b:00007f4a9bf41fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 528.462475][T26660] RAX: ffffffffffffffda RBX: 00007f4a9b215fa0 RCX: 00007f4a9af9c629 [ 528.462485][T26660] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000004001000 [ 528.462493][T26660] RBP: 00007f4a9b032b39 R08: 0000000000000000 R09: 0000000000000000 [ 528.462502][T26660] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 528.462510][T26660] R13: 00007f4a9b216038 R14: 00007f4a9b215fa0 R15: 00007ffebe1ddf88 [ 528.462529][T26660] [ 528.709943][T26663] debugfs: '!PjE r҄y*"l-y–L̓]' already exists in 'ieee80211' [ 528.854932][T26677] IPVS: length: 131 != 8 [ 529.484234][T26704] openvswitch: netlink: Key 15 has unexpected len 16 expected 4 [ 529.959480][T26725] FAULT_INJECTION: forcing a failure. [ 529.959480][T26725] name failslab, interval 1, probability 0, space 0, times 0 [ 530.018888][T26725] CPU: 0 UID: 0 PID: 26725 Comm: syz.3.9683 Tainted: G U L syzkaller #0 PREEMPT(full) [ 530.018920][T26725] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 530.018926][T26725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 530.018935][T26725] Call Trace: [ 530.018940][T26725] [ 530.018947][T26725] dump_stack_lvl+0x100/0x190 [ 530.018974][T26725] should_fail_ex.cold+0x5/0xa [ 530.018993][T26725] should_failslab+0xc2/0x120 [ 530.019008][T26725] __kvmalloc_node_noprof+0xfa/0xa00 [ 530.019028][T26725] ? io_alloc_cache_init+0x38/0x170 [ 530.019048][T26725] ? lockdep_init_map_type+0x5c/0x250 [ 530.019070][T26725] io_alloc_cache_init+0x38/0x170 [ 530.019090][T26725] io_uring_setup.cold+0x3cd/0x1d09 [ 530.019113][T26725] ? __pfx_io_uring_setup+0x10/0x10 [ 530.019130][T26725] ? do_futex+0x192/0x350 [ 530.019149][T26725] ? __pfx_do_futex+0x10/0x10 [ 530.019175][T26725] ? xfd_validate_state+0x129/0x190 [ 530.019201][T26725] __x64_sys_io_uring_setup+0xc2/0x170 [ 530.019218][T26725] do_syscall_64+0x106/0xf80 [ 530.019234][T26725] ? clear_bhb_loop+0x40/0x90 [ 530.019252][T26725] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 530.019267][T26725] RIP: 0033:0x7f83aff9c629 [ 530.019280][T26725] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 530.019294][T26725] RSP: 002b:00007f83b0df4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 530.019309][T26725] RAX: ffffffffffffffda RBX: 00007f83b0215fa0 RCX: 00007f83aff9c629 [ 530.019319][T26725] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000001d48 [ 530.019327][T26725] RBP: 00007f83b0032b39 R08: 0000000000000000 R09: 0000000000000000 [ 530.019336][T26725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 530.019344][T26725] R13: 00007f83b0216038 R14: 00007f83b0215fa0 R15: 00007ffceaa95f58 [ 530.019363][T26725] [ 532.688530][T26870] netlink: del zone limit has 8 unknown bytes [ 534.946910][T26950] sd 0:0:1:0: PR command failed: 1026 [ 534.966797][T26950] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 534.986398][T26950] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 535.012142][T26952] netlink: 2 bytes leftover after parsing attributes in process `syz.3.9778'. [ 535.129923][T17109] Bluetooth: hci1: Malformed LE Event: 0x1b [ 535.285286][T26960] [U] ^@ [ 536.856212][T27043] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 537.047408][T27052] netlink: 'syz.1.9825': attribute type 1 has an invalid length. [ 537.989229][T27110] FAULT_INJECTION: forcing a failure. [ 537.989229][T27110] name failslab, interval 1, probability 0, space 0, times 0 [ 538.065406][T27110] CPU: 0 UID: 0 PID: 27110 Comm: syz.1.9842 Tainted: G U L syzkaller #0 PREEMPT(full) [ 538.065435][T27110] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 538.065441][T27110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 538.065450][T27110] Call Trace: [ 538.065456][T27110] [ 538.065462][T27110] dump_stack_lvl+0x100/0x190 [ 538.065489][T27110] should_fail_ex.cold+0x5/0xa [ 538.065507][T27110] should_failslab+0xc2/0x120 [ 538.065522][T27110] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 538.065543][T27110] ? security_file_alloc+0x34/0x2c0 [ 538.065565][T27110] ? trace_kmem_cache_alloc+0xf3/0x120 [ 538.065583][T27110] security_file_alloc+0x34/0x2c0 [ 538.065606][T27110] init_file+0x95/0x480 [ 538.065622][T27110] alloc_empty_file+0x73/0x1c0 [ 538.065639][T27110] alloc_file_pseudo+0x13a/0x230 [ 538.065656][T27110] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 538.065673][T27110] ? security_inode_init_security_anon+0x7b/0x230 [ 538.065697][T27110] __do_sys_memfd_secret+0x11d/0x3d0 [ 538.065722][T27110] do_syscall_64+0x106/0xf80 [ 538.065737][T27110] ? clear_bhb_loop+0x40/0x90 [ 538.065754][T27110] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 538.065769][T27110] RIP: 0033:0x7fcd67d9c629 [ 538.065782][T27110] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 538.065796][T27110] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf [ 538.065811][T27110] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 538.065821][T27110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 538.065829][T27110] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 538.065838][T27110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 538.065846][T27110] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 538.065873][T27110] [ 538.296330][T27115] openvswitch: netlink: IP tunnel TTL not specified. [ 539.584334][T27136] Process accounting paused [ 540.141021][T27212] openvswitch: netlink: Missing valid actions attribute. [ 541.689687][T17109] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 541.689711][T17109] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 541.704674][T17109] Bluetooth: hci0: Dropping invalid advertising data [ 541.711798][T17109] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 541.711819][T17109] Bluetooth: hci0: Dropping invalid advertising data [ 541.725739][T17109] Bluetooth: hci0: Malformed LE Event: 0x02 [ 541.813360][T27282] sd 0:0:1:0: PR command failed: 1026 [ 541.840739][T27282] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 541.881742][T27282] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 542.142073][T27301] delete_channel: no stack [ 542.702511][T17109] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260 [ 542.702535][T17109] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260 [ 542.717559][T17109] Bluetooth: hci3: Dropping invalid advertising data [ 542.724284][T17109] Bluetooth: hci3: unknown advertising packet type: 0xe9 [ 542.724303][T17109] Bluetooth: hci3: Dropping invalid advertising data [ 542.738169][T17109] Bluetooth: hci3: Malformed LE Event: 0x02 [ 542.914042][T27360] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 544.823549][T27459] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9957'. [ 545.224557][T27478] netlink: zone id is out of range [ 545.240562][T27478] netlink: zone id is out of range [ 545.653836][T17109] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260 [ 545.653860][T17109] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260 [ 545.670776][T17109] Bluetooth: hci2: Dropping invalid advertising data [ 545.678140][T17109] Bluetooth: hci2: unknown advertising packet type: 0xe9 [ 545.678160][T17109] Bluetooth: hci2: Dropping invalid advertising data [ 545.693496][T17109] Bluetooth: hci2: Malformed LE Event: 0x02 [ 545.771684][T27508] : entered promiscuous mode [ 547.138355][T27593] openvswitch: netlink: Key type 261 is out of range max 32 [ 547.323912][T27605] crash hp: kexec_trylock() failed, kdump image may be inaccurate [ 547.611847][T27617] FAULT_INJECTION: forcing a failure. [ 547.611847][T27617] name failslab, interval 1, probability 0, space 0, times 0 [ 547.669725][T27617] CPU: 0 UID: 0 PID: 27617 Comm: syz.3.10020 Tainted: G U L syzkaller #0 PREEMPT(full) [ 547.669753][T27617] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 547.669759][T27617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 547.669767][T27617] Call Trace: [ 547.669773][T27617] [ 547.669779][T27617] dump_stack_lvl+0x100/0x190 [ 547.669806][T27617] should_fail_ex.cold+0x5/0xa [ 547.669830][T27617] should_failslab+0xc2/0x120 [ 547.669845][T27617] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 547.669865][T27617] ? copy_process+0x27a4/0x7a10 [ 547.669886][T27617] copy_process+0x27a4/0x7a10 [ 547.669912][T27617] ? __pfx_copy_process+0x10/0x10 [ 547.669937][T27617] kernel_clone+0xfc/0x9a0 [ 547.669952][T27617] ? __pfx_futex_wait+0x10/0x10 [ 547.669975][T27617] ? __pfx_kernel_clone+0x10/0x10 [ 547.670001][T27617] __do_sys_clone+0xd9/0x120 [ 547.670017][T27617] ? __pfx___do_sys_clone+0x10/0x10 [ 547.670049][T27617] do_syscall_64+0x106/0xf80 [ 547.670065][T27617] ? clear_bhb_loop+0x40/0x90 [ 547.670083][T27617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 547.670098][T27617] RIP: 0033:0x7f83aff9c629 [ 547.670111][T27617] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 547.670125][T27617] RSP: 002b:00007f83b0df3fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038 [ 547.670140][T27617] RAX: ffffffffffffffda RBX: 00007f83b0215fa0 RCX: 00007f83aff9c629 [ 547.670150][T27617] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000600 [ 547.670158][T27617] RBP: 00007f83b0032b39 R08: 0000000000000000 R09: 0000000000000000 [ 547.670167][T27617] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 547.670175][T27617] R13: 00007f83b0216038 R14: 00007f83b0215fa0 R15: 00007ffceaa95f58 [ 547.670194][T27617] [ 548.952238][T27598] kexec: Could not allocate control_code_buffer [ 549.068936][T27663] sg_read: process 4751 (syz.3.10042) changed security contexts after opening file descriptor, this is not allowed. [ 549.599979][T27686] FAULT_INJECTION: forcing a failure. [ 549.599979][T27686] name fail_futex, interval 1, probability 0, space 0, times 1 [ 549.668502][T27686] CPU: 0 UID: 0 PID: 27686 Comm: syz.0.10053 Tainted: G U L syzkaller #0 PREEMPT(full) [ 549.668531][T27686] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 549.668537][T27686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 549.668546][T27686] Call Trace: [ 549.668551][T27686] [ 549.668558][T27686] dump_stack_lvl+0x100/0x190 [ 549.668585][T27686] should_fail_ex.cold+0x5/0xa [ 549.668603][T27686] get_futex_key+0x106f/0x1620 [ 549.668624][T27686] ? __pfx_get_futex_key+0x10/0x10 [ 549.668648][T27686] futex_wait_setup+0x81/0x500 [ 549.668674][T27686] __futex_wait+0x19f/0x300 [ 549.668697][T27686] ? __pfx___futex_wait+0x10/0x10 [ 549.668721][T27686] ? __pfx_futex_wake_mark+0x10/0x10 [ 549.668744][T27686] ? __hrtimer_setup+0x178/0x280 [ 549.668765][T27686] ? ktime_add_safe+0x60/0x70 [ 549.668785][T27686] futex_wait+0xed/0x380 [ 549.668806][T27686] ? __pfx_futex_wait+0x10/0x10 [ 549.668825][T27686] ? __lock_acquire+0x4a5/0x2630 [ 549.668845][T27686] ? __pfx_hrtimer_wakeup+0x10/0x10 [ 549.668870][T27686] do_futex+0x1ef/0x350 [ 549.668888][T27686] ? __pfx_do_futex+0x10/0x10 [ 549.668914][T27686] ? ktime_get+0x200/0x300 [ 549.668929][T27686] ? lockdep_hardirqs_on+0x78/0x100 [ 549.668946][T27686] ? read_tsc+0x9/0x20 [ 549.668964][T27686] __x64_sys_futex+0x34f/0x4d0 [ 549.668985][T27686] ? __pfx___x64_sys_futex+0x10/0x10 [ 549.669011][T27686] do_syscall_64+0x106/0xf80 [ 549.669027][T27686] ? clear_bhb_loop+0x40/0x90 [ 549.669044][T27686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 549.669059][T27686] RIP: 0033:0x7f5c3019c629 [ 549.669072][T27686] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 549.669086][T27686] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 549.669101][T27686] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 549.669111][T27686] RDX: 0000000000000eec RSI: 0000000000000000 RDI: 0000200000000000 [ 549.669120][T27686] RBP: 00007f5c30232b39 R08: 0000000000000000 R09: 0000000000000006 [ 549.669129][T27686] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000000 [ 549.669138][T27686] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 549.669157][T27686] [ 551.778318][T27759] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 552.411988][T27785] openvswitch: netlink: IP tunnel dst address not specified [ 552.790615][T27797] netlink: 'syz.1.10100': attribute type 1 has an invalid length. [ 553.474862][T27825] netlink: 'syz.0.10112': attribute type 1 has an invalid length. [ 554.535290][T27871] nfs: Unknown parameter 'nl802154' [ 555.042385][T27896] netlink: 'syz.1.10147': attribute type 11 has an invalid length. [ 555.070852][T27896] netlink: 'syz.1.10147': attribute type 11 has an invalid length. [ 555.097192][T27896] netlink: 'syz.1.10147': attribute type 11 has an invalid length. [ 555.857363][T27930] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 555.905116][T27930] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 558.491484][T28058] netlink: 'syz.1.10216': attribute type 1 has an invalid length. [ 558.524467][T28058] netlink: 33 bytes leftover after parsing attributes in process `syz.1.10216'. [ 558.755664][T28066] NFSD: Failed to start, no listeners configured. [ 558.762538][T28068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10221'. [ 559.042267][T28084] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 559.436551][T28103] openvswitch: netlink: IPv6 tunnel dst address is zero [ 559.807963][T28125] program syz.3.10246 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 560.733918][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 560.741555][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 562.265366][T28251] netlink: 'syz.0.10300': attribute type 2 has an invalid length. [ 562.303590][T28251] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10300'. [ 562.573620][T28267] netlink: 'syz.1.10307': attribute type 4 has an invalid length. [ 562.615604][T28267] netlink: 'syz.1.10307': attribute type 1 has an invalid length. [ 563.845138][T28326] HfR: entered promiscuous mode [ 563.904870][T28332] HfR: entered promiscuous mode [ 564.212317][T28350] FAULT_INJECTION: forcing a failure. [ 564.212317][T28350] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 564.280899][T28350] CPU: 0 UID: 0 PID: 28350 Comm: syz.0.10346 Tainted: G U L syzkaller #0 PREEMPT(full) [ 564.280928][T28350] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 564.280935][T28350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 564.280944][T28350] Call Trace: [ 564.280950][T28350] [ 564.280956][T28350] dump_stack_lvl+0x100/0x190 [ 564.280984][T28350] should_fail_ex.cold+0x5/0xa [ 564.281002][T28350] _copy_to_user+0x32/0xd0 [ 564.281026][T28350] put_timespec64+0xb5/0x130 [ 564.281042][T28350] ? __pfx_put_timespec64+0x10/0x10 [ 564.281057][T28350] ? lockdep_hardirqs_on+0x78/0x100 [ 564.281073][T28350] ? read_tsc+0x9/0x20 [ 564.281088][T28350] ? ktime_get_ts64+0x256/0x3f0 [ 564.281103][T28350] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 564.281127][T28350] poll_select_finish+0x54b/0x670 [ 564.281149][T28350] ? __pfx_poll_select_finish+0x10/0x10 [ 564.281169][T28350] ? timespec64_add_safe+0x192/0x220 [ 564.281185][T28350] ? __pfx_timespec64_add_safe+0x10/0x10 [ 564.281200][T28350] ? set_user_sigmask+0x1e1/0x270 [ 564.281229][T28350] ? __pfx_set_user_sigmask+0x10/0x10 [ 564.281253][T28350] ? read_tsc+0x9/0x20 [ 564.281268][T28350] ? ktime_get_ts64+0x256/0x3f0 [ 564.281286][T28350] __x64_sys_ppoll+0x2c7/0x350 [ 564.281310][T28350] ? __pfx___x64_sys_ppoll+0x10/0x10 [ 564.281340][T28350] do_syscall_64+0x106/0xf80 [ 564.281356][T28350] ? clear_bhb_loop+0x40/0x90 [ 564.281373][T28350] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 564.281388][T28350] RIP: 0033:0x7f5c3019c629 [ 564.281401][T28350] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 564.281417][T28350] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 000000000000010f [ 564.281432][T28350] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 564.281442][T28350] RDX: 0000200000003640 RSI: 00000000000000d6 RDI: 0000200000003600 [ 564.281451][T28350] RBP: 00007f5c30232b39 R08: 0000000000000008 R09: 0000000000000000 [ 564.281460][T28350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 564.281469][T28350] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 564.281489][T28350] [ 564.656129][T28363] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10353'. [ 566.975997][T28496] netlink: Unknown conntrack attr (type=257, max=9) [ 568.962338][T28564] openvswitch: netlink: Flow key attr not present in new flow. [ 569.501826][T28578] Process accounting resumed [ 569.840809][T28587] nbd: couldn't find a device at index 35644 [ 570.385288][T28609] netlink: 'syz.3.10439': attribute type 2 has an invalid length. [ 572.572514][T28681] openvswitch: netlink: VXLAN extension 64 out of range max 1 [ 574.363594][T28774] .^: entered promiscuous mode [ 574.723566][T28790] FAULT_INJECTION: forcing a failure. [ 574.723566][T28790] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 574.781327][T28790] CPU: 0 UID: 0 PID: 28790 Comm: syz.0.10512 Tainted: G U L syzkaller #0 PREEMPT(full) [ 574.781365][T28790] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 574.781370][T28790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 574.781379][T28790] Call Trace: [ 574.781385][T28790] [ 574.781391][T28790] dump_stack_lvl+0x100/0x190 [ 574.781419][T28790] should_fail_ex.cold+0x5/0xa [ 574.781438][T28790] core_sys_select+0x5d1/0xbb0 [ 574.781465][T28790] ? __pfx_core_sys_select+0x10/0x10 [ 574.781505][T28790] ? ktime_get_ts64+0x2d2/0x3f0 [ 574.781522][T28790] ? read_tsc+0x9/0x20 [ 574.781537][T28790] ? ktime_get_ts64+0x256/0x3f0 [ 574.781554][T28790] kern_select+0x20c/0x270 [ 574.781577][T28790] ? __pfx_kern_select+0x10/0x10 [ 574.781604][T28790] __x64_sys_select+0xbd/0x160 [ 574.781624][T28790] ? do_syscall_64+0x95/0xf80 [ 574.781640][T28790] ? lockdep_hardirqs_on+0x78/0x100 [ 574.781655][T28790] do_syscall_64+0x106/0xf80 [ 574.781670][T28790] ? clear_bhb_loop+0x40/0x90 [ 574.781687][T28790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.781703][T28790] RIP: 0033:0x7f5c3019c629 [ 574.781716][T28790] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 574.781730][T28790] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 574.781745][T28790] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 574.781754][T28790] RDX: 0000200000000180 RSI: 0000000000000000 RDI: 0000000000000003 [ 574.781763][T28790] RBP: 00007f5c30232b39 R08: 00002000000000c0 R09: 0000000000000000 [ 574.781772][T28790] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000 [ 574.781780][T28790] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 574.781799][T28790] [ 576.006941][T28833] netlink: set zone limit has 8 unknown bytes [ 576.806122][T28862] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 577.318380][T28886] FAULT_INJECTION: forcing a failure. [ 577.318380][T28886] name failslab, interval 1, probability 0, space 0, times 0 [ 577.331340][T28886] CPU: 0 UID: 0 PID: 28886 Comm: syz.1.10557 Tainted: G U L syzkaller #0 PREEMPT(full) [ 577.331367][T28886] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 577.331373][T28886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 577.331383][T28886] Call Trace: [ 577.331389][T28886] [ 577.331395][T28886] dump_stack_lvl+0x100/0x190 [ 577.331421][T28886] should_fail_ex.cold+0x5/0xa [ 577.331440][T28886] should_failslab+0xc2/0x120 [ 577.331455][T28886] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 577.331475][T28886] ? radix_tree_node_alloc.constprop.0+0x66/0x340 [ 577.331502][T28886] radix_tree_node_alloc.constprop.0+0x66/0x340 [ 577.331528][T28886] idr_get_free+0x52e/0xa00 [ 577.331549][T28886] idr_alloc_u32+0x1ac/0x320 [ 577.331566][T28886] ? __pfx_idr_alloc_u32+0x10/0x10 [ 577.331583][T28886] ? lock_acquire+0x1cf/0x380 [ 577.331604][T28886] idr_alloc_cyclic+0x10b/0x230 [ 577.331620][T28886] ? __pfx_idr_alloc_cyclic+0x10/0x10 [ 577.331634][T28886] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 577.331660][T28886] map_create+0x14d8/0x2ba0 [ 577.331681][T28886] ? futex_unqueue+0x13d/0x2c0 [ 577.331699][T28886] ? __futex_wait+0x256/0x300 [ 577.331723][T28886] ? __pfx_map_create+0x10/0x10 [ 577.331744][T28886] ? __might_fault+0xc5/0x140 [ 577.331762][T28886] ? __might_fault+0xc5/0x140 [ 577.331788][T28886] __sys_bpf+0x2091/0x4b90 [ 577.331806][T28886] ? __pfx___sys_bpf+0x10/0x10 [ 577.331821][T28886] ? __pfx_futex_wait+0x10/0x10 [ 577.331856][T28886] ? ksys_write+0x190/0x250 [ 577.331884][T28886] ? do_futex+0x192/0x350 [ 577.331912][T28886] ? xfd_validate_state+0x129/0x190 [ 577.331937][T28886] __x64_sys_bpf+0x7b/0xc0 [ 577.331953][T28886] ? lockdep_hardirqs_on+0x78/0x100 [ 577.331969][T28886] do_syscall_64+0x106/0xf80 [ 577.331984][T28886] ? clear_bhb_loop+0x40/0x90 [ 577.332001][T28886] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.332016][T28886] RIP: 0033:0x7fcd67d9c629 [ 577.332030][T28886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 577.332044][T28886] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 577.332059][T28886] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 577.332069][T28886] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000000 [ 577.332077][T28886] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 577.332086][T28886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 577.332095][T28886] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 577.332115][T28886] [ 577.732509][T28899] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 577.775039][T28901] netlink: ct family unspecified [ 577.864881][T28897] syz.3.10561 invoked oom-killer: gfp_mask=0x402cc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 577.904076][T28897] CPU: 0 UID: 0 PID: 28897 Comm: syz.3.10561 Tainted: G U L syzkaller #0 PREEMPT(full) [ 577.904105][T28897] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 577.904111][T28897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 577.904120][T28897] Call Trace: [ 577.904126][T28897] [ 577.904132][T28897] dump_stack_lvl+0x100/0x190 [ 577.904159][T28897] dump_header+0xfb/0x606 [ 577.904176][T28897] oom_kill_process.cold+0xd/0x330 [ 577.904194][T28897] out_of_memory+0x340/0x14f0 [ 577.904219][T28897] ? __pfx_out_of_memory+0x10/0x10 [ 577.904245][T28897] mem_cgroup_out_of_memory+0xc6/0x130 [ 577.904264][T28897] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 577.904282][T28897] ? find_held_lock+0x2b/0x80 [ 577.904299][T28897] ? do_raw_spin_unlock+0x145/0x1e0 [ 577.904321][T28897] ? _raw_spin_unlock+0x28/0x50 [ 577.904346][T28897] try_charge_memcg+0x652/0xc90 [ 577.904365][T28897] ? __pfx_try_charge_memcg+0x10/0x10 [ 577.904378][T28897] ? rcu_read_unlock+0x17/0x60 [ 577.904392][T28897] ? rcu_read_unlock+0x17/0x60 [ 577.904410][T28897] ? get_mem_cgroup_from_objcg+0xd3/0x330 [ 577.904433][T28897] __memcg_kmem_charge_page+0xd0/0x530 [ 577.904450][T28897] __alloc_frozen_pages_noprof+0x328/0x2ba0 [ 577.904478][T28897] ? lock_acquire+0x1cf/0x380 [ 577.904497][T28897] ? find_held_lock+0x2b/0x80 [ 577.904509][T28897] ? __free_frozen_pages+0x87a/0x10d0 [ 577.904527][T28897] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 577.904548][T28897] ? do_raw_spin_unlock+0x145/0x1e0 [ 577.904570][T28897] ? _raw_spin_unlock+0x28/0x50 [ 577.904591][T28897] ? __free_frozen_pages+0x884/0x10d0 [ 577.904613][T28897] ? __alloc_frozen_pages_noprof+0x2b1/0x2ba0 [ 577.904637][T28897] ? __pfx_vmap_small_pages_range_noflush+0x10/0x10 [ 577.904662][T28897] ? __split_page_owner+0x1f9/0x350 [ 577.904687][T28897] alloc_pages_bulk_noprof+0x782/0x1490 [ 577.904713][T28897] ? __kasan_unpoison_vmalloc+0x22/0x30 [ 577.904733][T28897] ? __vmalloc_node_range_noprof+0x11eb/0x1530 [ 577.904751][T28897] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 577.904780][T28897] ? __lock_acquire+0x4a5/0x2630 [ 577.904799][T28897] ? interleave_nodes+0x170/0x400 [ 577.904826][T28897] alloc_pages_bulk_mempolicy_noprof+0x427/0x1270 [ 577.904850][T28897] ? __pfx_alloc_pages_bulk_mempolicy_noprof+0x10/0x10 [ 577.904870][T28897] ? rcu_read_unlock+0x17/0x60 [ 577.904889][T28897] __vmalloc_node_range_noprof+0x54b/0x1530 [ 577.904913][T28897] ? __do_sys_listmount+0x289/0xee0 [ 577.904940][T28897] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 577.904961][T28897] ? rcu_is_watching+0x12/0xc0 [ 577.904988][T28897] __kvmalloc_node_noprof+0x3de/0xa00 [ 577.905010][T28897] ? __do_sys_listmount+0x289/0xee0 [ 577.905030][T28897] ? __do_sys_listmount+0x289/0xee0 [ 577.905049][T28897] ? _copy_from_user+0x59/0xd0 [ 577.905072][T28897] ? copy_mnt_id_req+0x1b1/0x350 [ 577.905092][T28897] __do_sys_listmount+0x289/0xee0 [ 577.905112][T28897] ? __pfx_do_futex+0x10/0x10 [ 577.905135][T28897] ? __pfx___do_sys_listmount+0x10/0x10 [ 577.905158][T28897] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 577.905181][T28897] do_syscall_64+0x106/0xf80 [ 577.905197][T28897] ? clear_bhb_loop+0x40/0x90 [ 577.905215][T28897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 577.905231][T28897] RIP: 0033:0x7f83aff9c629 [ 577.905244][T28897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 577.905259][T28897] RSP: 002b:00007f83b0df4028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ca [ 577.905274][T28897] RAX: ffffffffffffffda RBX: 00007f83b0215fa0 RCX: 00007f83aff9c629 [ 577.905284][T28897] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000200000000080 [ 577.905293][T28897] RBP: 00007f83b0032b39 R08: 0000000000000000 R09: 0000000000000000 [ 577.905302][T28897] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000 [ 577.905310][T28897] R13: 00007f83b0216038 R14: 00007f83b0215fa0 R15: 00007ffceaa95f58 [ 577.905330][T28897] [ 577.905336][T28897] memory: usage 3072kB, limit 3072kB, failcnt 127955 [ 578.706747][T28897] memory+swap: usage 3644kB, limit 9007199254740988kB, failcnt 0 [ 578.744323][T28897] kmem: usage 2884kB, limit 9007199254740988kB, failcnt 0 [ 578.773428][T28897] Memory cgroup stats for /syz3: [ 578.773639][T28897] cache 4096 [ 578.802976][T28897] rss 0 [ 578.816771][T28897] rss_huge 0 [ 578.830726][T28897] shmem 0 [ 578.833687][T28897] mapped_file 0 [ 578.867133][T28897] dirty 0 [ 578.870086][T28897] writeback 0 [ 578.873346][T28897] workingset_refault_anon 5258 [ 578.924997][T28897] workingset_refault_file 42862 [ 578.944859][T28897] swap 585728 [ 578.948554][T28897] swapcached 443830272 [ 578.952596][T28897] pgpgin 287991 [ 578.996698][T28897] pgpgout 297638 [ 579.014339][T28897] pgfault 320482 [ 579.031618][T28897] pgmajfault 2231 [ 579.043456][T28897] inactive_anon 4096 [ 579.071297][T28897] active_anon 0 [ 579.095141][T28897] inactive_file 4096 [ 579.099779][T28897] active_file 0 [ 579.103218][T28897] unevictable 0 [ 579.133900][T28897] hierarchical_memory_limit 3145728 [ 579.160815][T28897] hierarchical_memsw_limit 9223372036854771712 [ 579.182580][T28897] total_cache 4096 [ 579.211766][T28897] total_rss 0 [ 579.221751][T28897] total_rss_huge 0 [ 579.247827][T28897] total_shmem 0 [ 579.251298][T28897] total_mapped_file 0 [ 579.270277][T28897] total_dirty 0 [ 579.287306][T28897] total_writeback 0 [ 579.291137][T28897] total_workingset_refault_anon 5258 [ 579.324410][T28897] total_workingset_refault_file 42862 [ 579.329896][T28897] total_swap 585728 [ 579.379737][T28897] total_swapcached 443830272 [ 579.404643][T28897] total_pgpgin 287991 [ 579.408638][T28897] total_pgpgout 297638 [ 579.444496][T28897] total_pgfault 320482 [ 579.480240][T28897] total_pgmajfault 2231 [ 579.491698][T28897] total_inactive_anon 4096 [ 579.496119][T28897] total_active_anon 0 [ 579.500077][T28897] total_inactive_file 4096 [ 579.545483][T28897] total_active_file 0 [ 579.549478][T28897] total_unevictable 0 [ 579.581353][T28897] anon_cost 333 [ 579.584862][T28897] file_cost 0 [ 579.622203][T28897] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.10561,pid=28896,uid=0 [ 579.686135][T28897] Memory cgroup out of memory: Killed process 28896 (syz.3.10561) total-vm:169940kB, anon-rss:1228kB, file-rss:22260kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000 [ 579.719304][ T30] audit: type=1800 audit(4294967375.747:38): pid=28947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10585" name="dbroot" dev="configfs" ino=79857 res=0 errno=0 [ 579.854676][T28951] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12 [ 580.450676][T28978] openvswitch: netlink: Duplicate or invalid key (type 0). [ 581.146032][T29005] FAULT_INJECTION: forcing a failure. [ 581.146032][T29005] name failslab, interval 1, probability 0, space 0, times 0 [ 581.208689][T29005] CPU: 0 UID: 0 PID: 29005 Comm: syz.1.10613 Tainted: G U L syzkaller #0 PREEMPT(full) [ 581.208732][T29005] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 581.208738][T29005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 581.208747][T29005] Call Trace: [ 581.208752][T29005] [ 581.208758][T29005] dump_stack_lvl+0x100/0x190 [ 581.208786][T29005] should_fail_ex.cold+0x5/0xa [ 581.208805][T29005] should_failslab+0xc2/0x120 [ 581.208820][T29005] __kmalloc_cache_noprof+0x7a/0x6f0 [ 581.208839][T29005] ? assoc_array_insert+0x262/0x32c0 [ 581.208862][T29005] assoc_array_insert+0x262/0x32c0 [ 581.208880][T29005] ? __mutex_lock+0x26a/0x1b90 [ 581.208899][T29005] ? key_link+0x2bb/0x390 [ 581.208920][T29005] ? __pfx_assoc_array_insert+0x10/0x10 [ 581.208937][T29005] ? __pfx___might_resched+0x10/0x10 [ 581.208962][T29005] ? down_write+0x146/0x1f0 [ 581.208983][T29005] __key_link_begin+0xf5/0x260 [ 581.209000][T29005] key_link+0x103/0x390 [ 581.209016][T29005] ? __up_read+0x2c5/0x700 [ 581.209036][T29005] ? __pfx_key_link+0x10/0x10 [ 581.209051][T29005] ? bpf_lsm_key_permission+0x9/0x10 [ 581.209074][T29005] ? key_task_permission+0x2c7/0x3c0 [ 581.209097][T29005] keyctl_get_persistent+0x5e2/0x8b0 [ 581.209114][T29005] ? __pfx_keyctl_get_persistent+0x10/0x10 [ 581.209132][T29005] ? __x64_sys_futex+0x34f/0x4d0 [ 581.209150][T29005] ? __x64_sys_futex+0x358/0x4d0 [ 581.209170][T29005] ? xfd_validate_state+0x129/0x190 [ 581.209194][T29005] __do_sys_keyctl+0x3b2/0x5a0 [ 581.209215][T29005] do_syscall_64+0x106/0xf80 [ 581.209231][T29005] ? clear_bhb_loop+0x40/0x90 [ 581.209249][T29005] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 581.209265][T29005] RIP: 0033:0x7fcd67d9c629 [ 581.209277][T29005] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 581.209291][T29005] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa [ 581.209306][T29005] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 581.209315][T29005] RDX: 7fffffffffffffff RSI: 000000000000ee00 RDI: 0000000000000016 [ 581.209324][T29005] RBP: 00007fcd67e32b39 R08: 000000000000000c R09: 0000000000000000 [ 581.209333][T29005] R10: 00000000000099a7 R11: 0000000000000246 R12: 0000000000000000 [ 581.209342][T29005] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 581.209362][T29005] [ 581.778907][T29017] netlink: NAT attribute has 4 unknown bytes [ 581.907893][T29021] : entered promiscuous mode [ 585.558716][T29183] nfsd: Unknown parameter '*' [ 585.761354][T29190] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10682'. [ 586.242167][T29203] zswap: compressor 3PZvvĀ3 ֨@QA xmr>σ not available [ 586.502781][T29206] zswap: compressor query not available [ 586.696266][T29226] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10697'. [ 586.902269][T29233] aoe: could not set interface list: too many interfaces [ 588.898904][T29302] FAULT_INJECTION: forcing a failure. [ 588.898904][T29302] name failslab, interval 1, probability 0, space 0, times 0 [ 588.959464][T29302] CPU: 0 UID: 0 PID: 29302 Comm: syz.1.10732 Tainted: G U L syzkaller #0 PREEMPT(full) [ 588.959493][T29302] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 588.959499][T29302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 588.959508][T29302] Call Trace: [ 588.959513][T29302] [ 588.959520][T29302] dump_stack_lvl+0x100/0x190 [ 588.959547][T29302] should_fail_ex.cold+0x5/0xa [ 588.959566][T29302] should_failslab+0xc2/0x120 [ 588.959581][T29302] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 588.959602][T29302] ? prepare_creds+0x2c/0x950 [ 588.959622][T29302] ? __sys_socket+0xac/0x260 [ 588.959646][T29302] prepare_creds+0x2c/0x950 [ 588.959668][T29302] __sys_setuid+0x9c/0x440 [ 588.959683][T29302] do_syscall_64+0x106/0xf80 [ 588.959699][T29302] ? clear_bhb_loop+0x40/0x90 [ 588.959717][T29302] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 588.959733][T29302] RIP: 0033:0x7fcd67d9c629 [ 588.959747][T29302] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 588.959762][T29302] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 0000000000000069 [ 588.959777][T29302] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 588.959787][T29302] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 588.959795][T29302] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 588.959804][T29302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 588.959812][T29302] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 588.959831][T29302] [ 589.910531][T29313] syz.2.10734 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 589.974406][T29313] CPU: 0 UID: 0 PID: 29313 Comm: syz.2.10734 Tainted: G U L syzkaller #0 PREEMPT(full) [ 589.974433][T29313] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 589.974439][T29313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 589.974447][T29313] Call Trace: [ 589.974453][T29313] [ 589.974458][T29313] dump_stack_lvl+0x100/0x190 [ 589.974484][T29313] dump_header+0xfb/0x606 [ 589.974501][T29313] oom_kill_process.cold+0xd/0x330 [ 589.974519][T29313] out_of_memory+0x340/0x14f0 [ 589.974544][T29313] ? __pfx_out_of_memory+0x10/0x10 [ 589.974569][T29313] mem_cgroup_out_of_memory+0xc6/0x130 [ 589.974589][T29313] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 589.974606][T29313] ? find_held_lock+0x2b/0x80 [ 589.974623][T29313] ? do_raw_spin_unlock+0x145/0x1e0 [ 589.974648][T29313] ? _raw_spin_unlock+0x28/0x50 [ 589.974673][T29313] try_charge_memcg+0x652/0xc90 [ 589.974692][T29313] ? __pfx_try_charge_memcg+0x10/0x10 [ 589.974710][T29313] ? find_held_lock+0x2b/0x80 [ 589.974722][T29313] ? rcu_read_unlock+0x17/0x60 [ 589.974736][T29313] ? rcu_read_unlock+0x17/0x60 [ 589.974753][T29313] charge_memcg+0xa6/0x280 [ 589.974766][T29313] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 589.974786][T29313] __swap_cache_prepare_and_add+0x528/0x9e0 [ 589.974822][T29313] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 589.974841][T29313] ? __pfx_swap_entry_swapped+0x10/0x10 [ 589.974869][T29313] swap_cache_alloc_folio+0x1cb/0x300 [ 589.974889][T29313] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 589.974911][T29313] ? __lock_acquire+0x4a5/0x2630 [ 589.974930][T29313] swap_cluster_readahead+0x411/0x770 [ 589.974955][T29313] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 589.974974][T29313] ? do_raw_spin_lock+0x128/0x260 [ 589.974994][T29313] ? print_kernel_ident+0x10/0x40 [ 589.975008][T29313] ? move_cluster+0x1f7/0x570 [ 589.975036][T29313] ? get_vma_policy+0x23f/0x3b0 [ 589.975053][T29313] swapin_readahead+0x160/0x12c0 [ 589.975078][T29313] ? __pfx_swapin_readahead+0x10/0x10 [ 589.975096][T29313] ? find_held_lock+0x2b/0x80 [ 589.975109][T29313] ? swap_table_get+0x103/0x2c0 [ 589.975125][T29313] ? swap_table_get+0x103/0x2c0 [ 589.975145][T29313] ? swap_table_get+0x10d/0x2c0 [ 589.975163][T29313] ? swap_cache_get_folio+0x1ae/0x600 [ 589.975182][T29313] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 589.975199][T29313] ? __pfx_get_swap_device+0x10/0x10 [ 589.975226][T29313] ? do_swap_page+0xb2e/0x68e0 [ 589.975242][T29313] do_swap_page+0xb2e/0x68e0 [ 589.975270][T29313] ? __pfx_do_swap_page+0x10/0x10 [ 589.975293][T29313] ? rcu_is_watching+0x12/0xc0 [ 589.975315][T29313] ? __pte_offset_map+0x179/0x310 [ 589.975340][T29313] __handle_mm_fault+0x18c1/0x2b60 [ 589.975362][T29313] ? reacquire_held_locks+0xce/0x1e0 [ 589.975380][T29313] ? __pfx___handle_mm_fault+0x10/0x10 [ 589.975402][T29313] ? lock_vma_under_rcu+0x17c/0x590 [ 589.975432][T29313] handle_mm_fault+0x36d/0xa20 [ 589.975453][T29313] do_user_addr_fault+0x5a3/0x12f0 [ 589.975482][T29313] exc_page_fault+0x6f/0xd0 [ 589.975498][T29313] asm_exc_page_fault+0x26/0x30 [ 589.975513][T29313] RIP: 0033:0x7f4a9ae70daa [ 589.975526][T29313] Code: 68 07 77 08 49 c7 47 68 08 00 00 00 41 8b 4f 30 48 f7 d9 48 89 ce 83 e6 07 0f 85 19 01 00 00 be 08 00 00 00 4c 89 ff 83 c5 01 e1 94 fe ff 49 8b 47 40 41 83 47 30 08 48 8d 48 f8 49 89 4f 40 [ 589.975541][T29313] RSP: 002b:00007ffebe1ddfd0 EFLAGS: 00010202 [ 589.975553][T29313] RAX: 000000110c5bc000 RBX: ffffffff84b5dc5b RCX: ffffffffffffff70 [ 589.975562][T29313] RDX: 0000000000001c5b RSI: 0000000000000008 RDI: 00007f4a9bd45720 [ 589.975571][T29313] RBP: 0000000000000013 R08: 00007f4a9b200000 R09: 00007f4a9b202000 [ 589.975580][T29313] R10: 0000000084b5dc5f R11: 0000000000000000 R12: 00007f4a9b216038 [ 589.975588][T29313] R13: 0000000000000012 R14: ffffffff84b5d87b R15: 00007f4a9bd45720 [ 589.975598][T29313] ? ima_file_mmap+0x6b/0x1f0 [ 589.975617][T29313] ? ima_bprm_check+0xb/0x180 [ 589.975641][T29313] [ 590.354115][T29313] memory: usage 3072kB, limit 3072kB, failcnt 92433 [ 590.361642][T29313] memory+swap: usage 77920kB, limit 9007199254740988kB, failcnt 0 [ 590.369651][T29313] kmem: usage 2608kB, limit 9007199254740988kB, failcnt 0 [ 590.378617][T29313] Memory cgroup stats for /syz2: [ 590.378740][T29313] cache 471040 [ 590.387238][T29313] rss 4096 [ 590.390253][T29313] rss_huge 0 [ 590.393431][T29313] shmem 0 [ 590.396411][T29313] mapped_file 0 [ 590.399914][T29313] dirty 0 [ 590.402840][T29313] writeback 4096 [ 590.406395][T29313] workingset_refault_anon 5318 [ 590.411177][T29313] workingset_refault_file 22265 [ 590.416023][T29313] swap 76644352 [ 590.419469][T29313] swapcached 275492864 [ 590.423587][T29313] pgpgin 275162 [ 590.427058][T29313] pgpgout 284248 [ 590.430580][T29313] pgfault 334934 [ 590.434139][T29313] pgmajfault 2599 [ 590.437766][T29313] inactive_anon 0 [ 590.441379][T29313] active_anon 0 [ 590.444875][T29313] inactive_file 471040 [ 590.448918][T29313] active_file 0 [ 590.452421][T29313] unevictable 0 [ 590.456716][T29313] hierarchical_memory_limit 3145728 [ 590.461899][T29313] hierarchical_memsw_limit 9223372036854771712 [ 590.468169][T29313] total_cache 471040 [ 590.472047][T29313] total_rss 4096 [ 590.477071][T29313] total_rss_huge 0 [ 590.481296][T29313] total_shmem 0 [ 590.484777][T29313] total_mapped_file 0 [ 590.488737][T29313] total_dirty 0 [ 590.492224][T29313] total_writeback 4096 [ 590.496331][T29313] total_workingset_refault_anon 5318 [ 590.501591][T29313] total_workingset_refault_file 22265 [ 590.507017][T29313] total_swap 76644352 [ 590.510976][T29313] total_swapcached 275492864 [ 590.515557][T29313] total_pgpgin 275162 [ 590.519564][T29313] total_pgpgout 284248 [ 590.523605][T29313] total_pgfault 334934 [ 590.527672][T29313] total_pgmajfault 2599 [ 590.531840][T29313] total_inactive_anon 0 [ 590.535988][T29313] total_active_anon 0 [ 590.539943][T29313] total_inactive_file 471040 [ 590.544577][T29313] total_active_file 0 [ 590.548541][T29313] total_unevictable 0 [ 590.552495][T29313] anon_cost 85 [ 590.556619][T29313] file_cost 25 [ 590.560142][T29313] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.8880,pid=24915,uid=0 [ 590.575417][T29313] Memory cgroup out of memory: Killed process 24915 (syz.2.8880) total-vm:104272kB, anon-rss:1236kB, file-rss:20800kB, shmem-rss:0kB, UID:0 pgtables:96kB oom_score_adj:1000 [ 595.760561][T29462] random: crng reseeded on system resumption [ 595.784481][T29463] FAULT_INJECTION: forcing a failure. [ 595.784481][T29463] name failslab, interval 1, probability 0, space 0, times 0 [ 595.846833][T29463] CPU: 0 UID: 0 PID: 29463 Comm: syz.1.10793 Tainted: G U L syzkaller #0 PREEMPT(full) [ 595.846862][T29463] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 595.846868][T29463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 595.846877][T29463] Call Trace: [ 595.846883][T29463] [ 595.846889][T29463] dump_stack_lvl+0x100/0x190 [ 595.846916][T29463] should_fail_ex.cold+0x5/0xa [ 595.846935][T29463] should_failslab+0xc2/0x120 [ 595.846950][T29463] __kmalloc_cache_noprof+0x7a/0x6f0 [ 595.846969][T29463] ? snd_seq_port_connect+0x61/0x560 [ 595.846988][T29463] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 595.847005][T29463] ? snd_seq_port_use_ptr+0x14d/0x1b0 [ 595.847026][T29463] snd_seq_port_connect+0x61/0x560 [ 595.847044][T29463] ? _raw_read_unlock+0x28/0x50 [ 595.847058][T29463] ? check_subscription_permission.isra.0+0x146/0x240 [ 595.847080][T29463] snd_seq_ioctl_subscribe_port+0x219/0x490 [ 595.847104][T29463] ? __pfx_snd_seq_ioctl_subscribe_port+0x10/0x10 [ 595.847125][T29463] ? do_raw_spin_lock+0x128/0x260 [ 595.847152][T29463] call_seq_client_ctl+0xa3/0x130 [ 595.847172][T29463] snd_seq_kernel_client_ctl+0x77/0xd0 [ 595.847191][T29463] snd_seq_oss_midi_open+0x48b/0x6b0 [ 595.847208][T29463] ? __pfx_snd_seq_oss_midi_open+0x10/0x10 [ 595.847231][T29463] ? snd_seq_oss_midi_reset+0x11a/0x4c0 [ 595.847251][T29463] ? __mutex_lock+0x26a/0x1b90 [ 595.847272][T29463] snd_seq_oss_synth_reset+0x439/0x8e0 [ 595.847296][T29463] ? __pfx___mutex_lock+0x10/0x10 [ 595.847312][T29463] ? __pfx_snd_seq_oss_synth_reset+0x10/0x10 [ 595.847336][T29463] ? __pfx___fsnotify_parent+0x10/0x10 [ 595.847363][T29463] snd_seq_oss_reset+0x73/0x290 [ 595.847382][T29463] ? __pfx_odev_release+0x10/0x10 [ 595.847401][T29463] snd_seq_oss_release+0x7c/0x180 [ 595.847421][T29463] ? __pfx_odev_release+0x10/0x10 [ 595.847438][T29463] odev_release+0x56/0xa0 [ 595.847455][T29463] __fput+0x3ff/0xb40 [ 595.847475][T29463] task_work_run+0x150/0x240 [ 595.847496][T29463] ? __pfx_task_work_run+0x10/0x10 [ 595.847522][T29463] exit_to_user_mode_loop+0x100/0x4a0 [ 595.847542][T29463] do_syscall_64+0x668/0xf80 [ 595.847557][T29463] ? clear_bhb_loop+0x40/0x90 [ 595.847575][T29463] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 595.847589][T29463] RIP: 0033:0x7fcd67d9c629 [ 595.847603][T29463] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 595.847617][T29463] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 595.847631][T29463] RAX: 0000000000000000 RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 595.847641][T29463] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 595.847649][T29463] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 595.847658][T29463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 595.847667][T29463] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 595.847686][T29463] [ 596.339610][T29402] syz.0.10762 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=1000 [ 596.349576][T29402] CPU: 0 UID: 0 PID: 29402 Comm: syz.0.10762 Tainted: G U L syzkaller #0 PREEMPT(full) [ 596.349601][T29402] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 596.349606][T29402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 596.349616][T29402] Call Trace: [ 596.349622][T29402] [ 596.349627][T29402] dump_stack_lvl+0x100/0x190 [ 596.349653][T29402] dump_header+0xfb/0x606 [ 596.349669][T29402] oom_kill_process.cold+0xd/0x330 [ 596.349687][T29402] out_of_memory+0x340/0x14f0 [ 596.349712][T29402] ? __pfx_out_of_memory+0x10/0x10 [ 596.349737][T29402] mem_cgroup_out_of_memory+0xc6/0x130 [ 596.349757][T29402] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 596.349774][T29402] ? find_held_lock+0x2b/0x80 [ 596.349791][T29402] ? do_raw_spin_unlock+0x145/0x1e0 [ 596.349812][T29402] ? _raw_spin_unlock+0x28/0x50 [ 596.349837][T29402] try_charge_memcg+0x652/0xc90 [ 596.349856][T29402] ? __pfx_try_charge_memcg+0x10/0x10 [ 596.349869][T29402] ? find_held_lock+0x2b/0x80 [ 596.349882][T29402] ? rcu_read_unlock+0x17/0x60 [ 596.349896][T29402] ? rcu_read_unlock+0x17/0x60 [ 596.349916][T29402] charge_memcg+0xa6/0x280 [ 596.349930][T29402] __mem_cgroup_charge+0x2b/0x1e0 [ 596.349948][T29402] shmem_alloc_and_add_folio+0x451/0xd40 [ 596.349973][T29402] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 596.349996][T29402] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 596.350021][T29402] shmem_get_folio_gfp+0x6ab/0x1900 [ 596.350045][T29402] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 596.350072][T29402] shmem_write_begin+0x1a4/0x420 [ 596.350094][T29402] ? __pfx_shmem_write_begin+0x10/0x10 [ 596.350116][T29402] ? balance_dirty_pages_ratelimited_flags+0x91/0x1170 [ 596.350132][T29402] ? lockdep_hardirqs_on+0x78/0x100 [ 596.350150][T29402] generic_perform_write+0x292/0xa40 [ 596.350177][T29402] ? __pfx_generic_perform_write+0x10/0x10 [ 596.350204][T29402] ? file_update_time_flags+0x373/0x500 [ 596.350223][T29402] ? __pfx_shmem_file_write_iter+0x10/0x10 [ 596.350237][T29402] shmem_file_write_iter+0x10e/0x140 [ 596.350253][T29402] __kernel_write_iter+0x2ac/0x920 [ 596.350276][T29402] ? __pfx___kernel_write_iter+0x10/0x10 [ 596.350298][T29402] ? __up_read+0x2c5/0x700 [ 596.350320][T29402] ? dump_user_range+0x73b/0xb50 [ 596.350339][T29402] dump_user_range+0x3f9/0xb50 [ 596.350358][T29402] ? __pfx_dump_user_range+0x10/0x10 [ 596.350379][T29402] ? __pfx_writenote+0x10/0x10 [ 596.350400][T29402] elf_core_dump+0x2d5f/0x3d10 [ 596.350427][T29402] ? __pfx_elf_core_dump+0x10/0x10 [ 596.350443][T29402] ? kasan_save_stack+0x3f/0x50 [ 596.350464][T29402] ? kasan_save_stack+0x30/0x50 [ 596.350483][T29402] ? __kasan_kmalloc+0xaa/0xb0 [ 596.350502][T29402] ? __kvmalloc_node_noprof+0x360/0xa00 [ 596.350523][T29402] ? vfs_coredump+0x2105/0x5570 [ 596.350537][T29402] ? asm_exc_page_fault+0x26/0x30 [ 596.350554][T29402] ? 0xffffffffff600000 [ 596.350598][T29402] ? vfs_coredump+0x27bc/0x5570 [ 596.350611][T29402] vfs_coredump+0x27bc/0x5570 [ 596.350634][T29402] ? __pfx_vfs_coredump+0x10/0x10 [ 596.350649][T29402] ? __lock_acquire+0x4a5/0x2630 [ 596.350675][T29402] ? lock_acquire+0x1cf/0x380 [ 596.350700][T29402] ? is_bpf_text_address+0x8a/0x1a0 [ 596.350722][T29402] ? bpf_ksym_find+0x124/0x1c0 [ 596.350743][T29402] ? __kernel_text_address+0xd/0x30 [ 596.350764][T29402] ? unwind_get_return_address+0x59/0xa0 [ 596.350780][T29402] ? arch_stack_walk+0xa6/0xf0 [ 596.350800][T29402] ? __sigqueue_free+0xbe/0x2a0 [ 596.350818][T29402] ? stack_trace_save+0x8e/0xc0 [ 596.350832][T29402] ? __pfx_stack_trace_save+0x10/0x10 [ 596.350846][T29402] ? stack_depot_save_flags+0x27/0x9d0 [ 596.350869][T29402] ? __lock_acquire+0x4a5/0x2630 [ 596.350918][T29402] ? proc_coredump_connector+0x2d3/0x4f0 [ 596.350935][T29402] ? __pfx_proc_coredump_connector+0x10/0x10 [ 596.350955][T29402] ? rcu_is_watching+0x12/0xc0 [ 596.350990][T29402] get_signal+0x1f2a/0x21e0 [ 596.351013][T29402] ? __pfx_get_signal+0x10/0x10 [ 596.351034][T29402] arch_do_signal_or_restart+0x91/0x770 [ 596.351053][T29402] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 596.351076][T29402] ? do_user_addr_fault+0x8d6/0x12f0 [ 596.351108][T29402] irqentry_exit+0x1f8/0x670 [ 596.351126][T29402] asm_exc_page_fault+0x26/0x30 [ 596.351144][T29402] RIP: 0033:0x7f5c3019c631 [ 596.351157][T29402] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 596.351171][T29402] RSP: 002b:0000000000000004 EFLAGS: 00010217 [ 596.351187][T29402] RAX: 0000000000000000 RBX: 00007f5c30416090 RCX: 00007f5c3019c629 [ 596.351196][T29402] RDX: 9999999999999999 RSI: 0000000000000004 RDI: 0000000000000000 [ 596.351205][T29402] RBP: 00007f5c30232b39 R08: 0000000000000009 R09: 0000000000000000 [ 596.351213][T29402] R10: ffffffff81000000 R11: 0000000000000246 R12: 0000000000000000 [ 596.351222][T29402] R13: 00007f5c30416128 R14: 00007f5c30416090 R15: 00007fff09697138 [ 596.351234][T29402] ? 0xffffffff81000000 [ 596.351252][T29402] [ 596.351257][T29402] memory: usage 3072kB, limit 3072kB, failcnt 78076 [ 597.306421][T29402] memory+swap: usage 27412kB, limit 9007199254740988kB, failcnt 0 [ 597.328258][T29402] kmem: usage 2168kB, limit 9007199254740988kB, failcnt 0 [ 597.367863][T29402] Memory cgroup stats for /syz0: [ 597.367969][T29402] cache 733184 [ 597.408042][T29402] rss 4096 [ 597.428072][T29402] rss_huge 0 [ 597.450685][T29402] shmem 733184 [ 597.475254][T29402] mapped_file 0 [ 597.489384][T29402] dirty 0 [ 597.492334][T29402] writeback 0 [ 597.531977][T29402] workingset_refault_anon 4653 [ 597.564474][T29402] workingset_refault_file 6479 [ 597.597528][T29402] swap 24928256 [ 597.628719][T29402] swapcached 320118784 [ 597.638582][T29402] pgpgin 230319 [ 597.648549][T29402] pgpgout 236045 [ 597.667853][T29402] pgfault 345497 [ 597.671451][T29402] pgmajfault 2082 [ 597.700389][T29402] inactive_anon 716800 [ 597.734150][T29402] active_anon 20480 [ 597.756741][T29402] inactive_file 0 [ 597.800800][T29402] active_file 0 [ 597.804271][T29402] unevictable 0 [ 597.852051][T29402] hierarchical_memory_limit 3145728 [ 597.885437][T29402] hierarchical_memsw_limit 9223372036854771712 [ 597.938837][T29402] total_cache 733184 [ 597.942747][T29402] total_rss 4096 [ 597.984412][T29504] FAULT_INJECTION: forcing a failure. [ 597.984412][T29504] name failslab, interval 1, probability 0, space 0, times 0 [ 598.029513][T29402] total_rss_huge 0 [ 598.047815][T29402] total_shmem 733184 [ 598.057971][T29402] total_mapped_file 0 [ 598.067973][T29504] CPU: 0 UID: 0 PID: 29504 Comm: syz.0.10810 Tainted: G U L syzkaller #0 PREEMPT(full) [ 598.068006][T29504] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 598.068012][T29504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 598.068022][T29504] Call Trace: [ 598.068028][T29504] [ 598.068034][T29504] dump_stack_lvl+0x100/0x190 [ 598.068062][T29504] should_fail_ex.cold+0x5/0xa [ 598.068080][T29504] should_failslab+0xc2/0x120 [ 598.068095][T29504] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 598.068116][T29504] ? ptlock_alloc+0x1f/0x70 [ 598.068138][T29504] ptlock_alloc+0x1f/0x70 [ 598.068155][T29504] pte_alloc_one+0x84/0x3e0 [ 598.068172][T29504] do_fault+0x8cc/0x1950 [ 598.068187][T29504] ? __pmd_alloc+0x6aa/0x9c0 [ 598.068203][T29504] __handle_mm_fault+0x180f/0x2b60 [ 598.068224][T29504] ? mt_find+0x45e/0x8e0 [ 598.068242][T29504] ? __pfx___handle_mm_fault+0x10/0x10 [ 598.068259][T29504] ? __pfx_mt_find+0x10/0x10 [ 598.068290][T29504] handle_mm_fault+0x36d/0xa20 [ 598.068312][T29504] __get_user_pages+0xf9c/0x34d0 [ 598.068334][T29504] ? __pfx___get_user_pages+0x10/0x10 [ 598.068355][T29504] populate_vma_page_range+0x267/0x3f0 [ 598.068373][T29504] ? __pfx_populate_vma_page_range+0x10/0x10 [ 598.068389][T29504] ? __pfx_find_vma_intersection+0x10/0x10 [ 598.068412][T29504] ? __pfx_apply_vma_lock_flags+0x10/0x10 [ 598.068435][T29504] __mm_populate+0x107/0x3a0 [ 598.068452][T29504] ? __pfx___mm_populate+0x10/0x10 [ 598.068469][T29504] ? up_write+0x290/0x4f0 [ 598.068491][T29504] do_mlock+0x3f0/0x7f0 [ 598.068512][T29504] ? __pfx_do_mlock+0x10/0x10 [ 598.068530][T29504] ? __x64_sys_futex+0x34f/0x4d0 [ 598.068547][T29504] ? __x64_sys_futex+0x358/0x4d0 [ 598.068567][T29504] ? xfd_validate_state+0x129/0x190 [ 598.068593][T29504] __x64_sys_mlock+0x59/0x80 [ 598.068612][T29504] do_syscall_64+0x106/0xf80 [ 598.068628][T29504] ? clear_bhb_loop+0x40/0x90 [ 598.068646][T29504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 598.068661][T29504] RIP: 0033:0x7f5c3019c629 [ 598.068674][T29504] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 598.068689][T29504] RSP: 002b:00007f5c310b3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095 [ 598.068703][T29504] RAX: ffffffffffffffda RBX: 00007f5c30415fa0 RCX: 00007f5c3019c629 [ 598.068713][T29504] RDX: 0000000000000000 RSI: 0000000000080006 RDI: 0000000000000112 [ 598.068722][T29504] RBP: 00007f5c30232b39 R08: 0000000000000000 R09: 0000000000000000 [ 598.068731][T29504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 598.068740][T29504] R13: 00007f5c30416038 R14: 00007f5c30415fa0 R15: 00007fff09697138 [ 598.068760][T29504] [ 598.820826][T29402] total_dirty 0 [ 598.867996][T29402] total_writeback 0 [ 598.879184][T29402] total_workingset_refault_anon 4653 [ 598.918589][T29402] total_workingset_refault_file 6479 [ 598.944460][T29402] total_swap 24928256 [ 598.959387][T29402] total_swapcached 320118784 [ 598.975585][T29402] total_pgpgin 230319 [ 598.989389][T29402] total_pgpgout 236045 [ 599.003662][T29402] total_pgfault 345497 [ 599.021460][T29402] total_pgmajfault 2082 [ 599.036526][T29402] total_inactive_anon 716800 [ 599.050468][T29402] total_active_anon 20480 [ 599.068536][T29402] total_inactive_file 0 [ 599.081591][T29402] total_active_file 0 [ 599.095318][T29402] total_unevictable 0 [ 599.108469][T29402] anon_cost 163 [ 599.122314][T29402] file_cost 0 [ 599.136270][T29402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.10762,pid=29402,uid=0 [ 599.188669][T29402] Memory cgroup out of memory: Killed process 29402 (syz.0.10762) total-vm:104404kB, anon-rss:1232kB, file-rss:44880kB, shmem-rss:0kB, UID:0 pgtables:164kB oom_score_adj:1000 [ 599.551226][T29538] Process accounting paused [ 601.415334][T29601] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input42 [ 602.664136][T29652] bridge0: port 3(veth0_to_bridge) entered blocking state [ 602.701258][T29652] bridge0: port 3(veth0_to_bridge) entered disabled state [ 602.730101][T29652] veth0_to_bridge: entered allmulticast mode [ 602.779885][T29652] veth0_to_bridge: entered promiscuous mode [ 602.811288][T29652] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 602.854539][T29652] bridge0: port 3(veth0_to_bridge) entered blocking state [ 602.862274][T29652] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 602.940599][T29660] vivid-007: ================= START STATUS ================= [ 602.948253][T29660] vivid-007: Generate PTS: true [ 602.997607][T29660] vivid-007: Generate SCR: true [ 603.027296][T29660] tpg source WxH: 320x240 (Y'CbCr) [ 603.054790][T29660] tpg field: 1 [ 603.058183][T29660] tpg crop: (0,0)/320x240 [ 603.090822][T29660] tpg compose: (0,0)/320x240 [ 603.103313][T29665] netlink: 'syz.2.10878': attribute type 4 has an invalid length. [ 603.116471][T29660] tpg colorspace: 8 [ 603.139326][T29660] tpg transfer function: 0/0 [ 603.143947][T29660] tpg Y'CbCr encoding: 0/0 [ 603.148377][T29660] tpg quantization: 0/0 [ 603.153196][T29665] netlink: 62 bytes leftover after parsing attributes in process `syz.2.10878'. [ 603.201436][T29660] tpg RGB range: 0/2 [ 603.218338][T29660] vivid-007: ================== END STATUS ================== [ 604.918123][T29741] netlink: 350 bytes leftover after parsing attributes in process `syz.3.10911'. [ 605.179833][T29758] sd 0:0:1:0: PR command failed: 1026 [ 605.198488][T29758] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 605.227884][T29758] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 607.016568][T29816] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10944'. [ 607.311739][T29831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10951'. [ 607.423601][T29834] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10953'. [ 607.863041][T29847] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10958'. [ 607.882783][T29849] sctp: [Deprecated]: syz.2.10959 (pid 29849) Use of struct sctp_assoc_value in delayed_ack socket option. [ 607.882783][T29849] Use struct sctp_sack_info instead [ 607.918866][T29847] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10958'. [ 608.227099][T29857] netlink: 29 bytes leftover after parsing attributes in process `syz.2.10963'. [ 610.063555][T29918] netlink: 'syz.1.10991': attribute type 2 has an invalid length. [ 611.235847][T29950] FAULT_INJECTION: forcing a failure. [ 611.235847][T29950] name failslab, interval 1, probability 0, space 0, times 0 [ 611.299977][T29950] CPU: 0 UID: 0 PID: 29950 Comm: syz.3.11005 Tainted: G U L syzkaller #0 PREEMPT(full) [ 611.300005][T29950] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 611.300011][T29950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 611.300020][T29950] Call Trace: [ 611.300028][T29950] [ 611.300035][T29950] dump_stack_lvl+0x100/0x190 [ 611.300062][T29950] should_fail_ex.cold+0x5/0xa [ 611.300079][T29950] ? sk_prot_alloc+0x10b/0x2a0 [ 611.300099][T29950] should_failslab+0xc2/0x120 [ 611.300114][T29950] __kmalloc_noprof+0xe0/0x850 [ 611.300138][T29950] sk_prot_alloc+0x10b/0x2a0 [ 611.300158][T29950] sk_alloc+0x36/0xe80 [ 611.300174][T29950] pfkey_create+0x105/0x600 [ 611.300191][T29950] __sock_create+0x339/0x860 [ 611.300215][T29950] __sys_socket+0x14d/0x260 [ 611.300236][T29950] ? __pfx___sys_socket+0x10/0x10 [ 611.300262][T29950] __x64_sys_socket+0x72/0xb0 [ 611.300282][T29950] ? lockdep_hardirqs_on+0x78/0x100 [ 611.300298][T29950] do_syscall_64+0x106/0xf80 [ 611.300313][T29950] ? clear_bhb_loop+0x40/0x90 [ 611.300336][T29950] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 611.300351][T29950] RIP: 0033:0x7f83aff9c629 [ 611.300365][T29950] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 611.300379][T29950] RSP: 002b:00007f83b0df4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 611.300395][T29950] RAX: ffffffffffffffda RBX: 00007f83b0215fa0 RCX: 00007f83aff9c629 [ 611.300404][T29950] RDX: 0000000000000002 RSI: 0000000000000003 RDI: 000000000000000f [ 611.300413][T29950] RBP: 00007f83b0032b39 R08: 0000000000000000 R09: 0000000000000000 [ 611.300421][T29950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 611.300430][T29950] R13: 00007f83b0216038 R14: 00007f83b0215fa0 R15: 00007ffceaa95f58 [ 611.300449][T29950] [ 614.178660][T30014] syz.0.11033 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 614.257874][T30014] CPU: 0 UID: 0 PID: 30014 Comm: syz.0.11033 Tainted: G U L syzkaller #0 PREEMPT(full) [ 614.257901][T30014] Tainted: [U]=USER, [L]=SOFTLOCKUP [ 614.257907][T30014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 614.257916][T30014] Call Trace: [ 614.257921][T30014] [ 614.257928][T30014] dump_stack_lvl+0x100/0x190 [ 614.257955][T30014] dump_header+0xfb/0x606 [ 614.257972][T30014] oom_kill_process.cold+0xd/0x330 [ 614.257990][T30014] out_of_memory+0x340/0x14f0 [ 614.258015][T30014] ? __pfx_out_of_memory+0x10/0x10 [ 614.258041][T30014] mem_cgroup_out_of_memory+0xc6/0x130 [ 614.258061][T30014] ? __pfx_mem_cgroup_out_of_memory+0x10/0x10 [ 614.258079][T30014] ? find_held_lock+0x2b/0x80 [ 614.258096][T30014] ? do_raw_spin_unlock+0x145/0x1e0 [ 614.258124][T30014] ? _raw_spin_unlock+0x28/0x50 [ 614.258149][T30014] try_charge_memcg+0x652/0xc90 [ 614.258168][T30014] ? __pfx_try_charge_memcg+0x10/0x10 [ 614.258186][T30014] ? find_held_lock+0x2b/0x80 [ 614.258199][T30014] ? rcu_read_unlock+0x17/0x60 [ 614.258213][T30014] ? rcu_read_unlock+0x17/0x60 [ 614.258230][T30014] charge_memcg+0xa6/0x280 [ 614.258244][T30014] mem_cgroup_swapin_charge_folio+0xeb/0x470 [ 614.258263][T30014] __swap_cache_prepare_and_add+0x528/0x9e0 [ 614.258292][T30014] ? __pfx___swap_cache_prepare_and_add+0x10/0x10 [ 614.258311][T30014] ? __pfx_swap_entry_swapped+0x10/0x10 [ 614.258339][T30014] swap_cache_alloc_folio+0x1cb/0x300 [ 614.258360][T30014] ? __pfx_swap_cache_alloc_folio+0x10/0x10 [ 614.258379][T30014] ? __lock_acquire+0x4a5/0x2630 [ 614.258401][T30014] swap_cluster_readahead+0x411/0x770 [ 614.258426][T30014] ? __pfx_swap_cluster_readahead+0x10/0x10 [ 614.258445][T30014] ? trace_ignore_this_task+0xbc/0x100 [ 614.258466][T30014] ? trace_ignore_this_task+0xbc/0x100 [ 614.258494][T30014] ? finish_task_switch.isra.0+0x200/0xb80 [ 614.258512][T30014] ? get_vma_policy+0x23f/0x3b0 [ 614.258529][T30014] swapin_readahead+0x160/0x12c0 [ 614.258549][T30014] ? rcu_is_watching+0x12/0xc0 [ 614.258576][T30014] ? __pfx_swapin_readahead+0x10/0x10 [ 614.258594][T30014] ? find_held_lock+0x2b/0x80 [ 614.258607][T30014] ? swap_table_get+0x103/0x2c0 [ 614.258624][T30014] ? swap_table_get+0x103/0x2c0 [ 614.258644][T30014] ? swap_table_get+0x10d/0x2c0 [ 614.258662][T30014] ? swap_cache_get_folio+0x1ae/0x600 [ 614.258682][T30014] ? __pfx_swap_cache_get_folio+0x10/0x10 [ 614.258699][T30014] ? __pfx_get_swap_device+0x10/0x10 [ 614.258725][T30014] ? do_swap_page+0xb2e/0x68e0 [ 614.258742][T30014] do_swap_page+0xb2e/0x68e0 [ 614.258764][T30014] ? __pfx___futex_wait+0x10/0x10 [ 614.258785][T30014] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 614.258800][T30014] ? lockdep_hardirqs_on+0x78/0x100 [ 614.258819][T30014] ? __pfx_do_swap_page+0x10/0x10 [ 614.258840][T30014] ? find_held_lock+0x2b/0x80 [ 614.258854][T30014] ? rcu_is_watching+0x12/0xc0 [ 614.258875][T30014] ? __pte_offset_map+0x179/0x310 [ 614.258901][T30014] __handle_mm_fault+0x18c1/0x2b60 [ 614.258923][T30014] ? reacquire_held_locks+0xce/0x1e0 [ 614.258941][T30014] ? __pfx___handle_mm_fault+0x10/0x10 [ 614.258963][T30014] ? lock_vma_under_rcu+0x17c/0x590 [ 614.258993][T30014] handle_mm_fault+0x36d/0xa20 [ 614.259015][T30014] do_user_addr_fault+0x5a3/0x12f0 [ 614.259045][T30014] exc_page_fault+0x6f/0xd0 [ 614.259061][T30014] asm_exc_page_fault+0x26/0x30 [ 614.259075][T30014] RIP: 0033:0x7f5c3019c631 [ 614.259089][T30014] Code: 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f [ 614.259107][T30014] RSP: 002b:00007f5c310b30e8 EFLAGS: 00010217 [ 614.259119][T30014] RAX: 0000000000000000 RBX: 00007f5c30415fa8 RCX: 00007f5c3019c629 [ 614.259129][T30014] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f5c30415fa8 [ 614.259138][T30014] RBP: 00007f5c30415fa0 R08: 0000000000000000 R09: 0000000000000000 [ 614.259146][T30014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 614.259155][T30014] R13: 00007f5c30416038 R14: 00007fff09697050 R15: 00007fff09697138 [ 614.259175][T30014] [ 615.062394][T30014] memory: usage 3072kB, limit 3072kB, failcnt 92962 [ 615.078881][T30014] memory+swap: usage 44980kB, limit 9007199254740988kB, failcnt 0 [ 615.096533][T30014] kmem: usage 2572kB, limit 9007199254740988kB, failcnt 0 [ 615.103659][T30014] Memory cgroup stats for /syz0: [ 615.103760][T30014] cache 479232 [ 615.126405][T30014] rss 4096 [ 615.130853][T30014] rss_huge 0 [ 615.134035][T30014] shmem 0 [ 615.146292][T30014] mapped_file 0 [ 615.149762][T30014] dirty 0 [ 615.153219][T30014] writeback 20480 [ 615.166718][T30014] workingset_refault_anon 5573 [ 615.171588][T30014] workingset_refault_file 12305 [ 615.181121][T30014] swap 42913792 [ 615.184589][T30014] swapcached 371150848 [ 615.188716][T30014] pgpgin 251214 [ 615.192231][T30014] pgpgout 256995 [ 615.195761][T30014] pgfault 353384 [ 615.199342][T30014] pgmajfault 2567 [ 615.203012][T30014] inactive_anon 4096 [ 615.213131][T30014] active_anon 0 [ 615.216702][T30014] inactive_file 479232 [ 615.246795][T30014] active_file 0 [ 615.250270][T30014] unevictable 0 [ 615.253714][T30014] hierarchical_memory_limit 3145728 [ 615.290181][T30014] hierarchical_memsw_limit 9223372036854771712 [ 615.305476][T30014] total_cache 479232 [ 615.315377][T30014] total_rss 4096 [ 615.325354][T30014] total_rss_huge 0 [ 615.329075][T30014] total_shmem 0 [ 615.333917][T30014] total_mapped_file 0 [ 615.345381][T30014] total_dirty 0 [ 615.348838][T30014] total_writeback 20480 [ 615.352977][T30014] total_workingset_refault_anon 5573 [ 615.399325][T30014] total_workingset_refault_file 12305 [ 615.404715][T30014] total_swap 42913792 [ 615.430442][T30014] total_swapcached 371150848 [ 615.444737][T30014] total_pgpgin 251214 [ 615.448724][T30014] total_pgpgout 256995 [ 615.453457][T30014] total_pgfault 353384 [ 615.488155][T30014] total_pgmajfault 2567 [ 615.492432][T30014] total_inactive_anon 4096 [ 615.516273][T30014] total_active_anon 0 [ 615.520271][T30014] total_inactive_file 479232 [ 615.539802][T30014] total_active_file 0 [ 615.543789][T30014] total_unevictable 0 [ 615.577851][T30014] anon_cost 0 [ 615.581146][T30014] file_cost 26 [ 615.594144][T30014] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0-1,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.10915,pid=29754,uid=0 [ 615.643746][T30014] Memory cgroup out of memory: Killed process 29754 (syz.0.10915) total-vm:104272kB, anon-rss:1232kB, file-rss:58252kB, shmem-rss:0kB, UID:0 pgtables:212kB oom_score_adj:1000 [ 616.760849][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.774472][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.786896][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.799159][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.811404][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.823602][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.835892][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.848124][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.860443][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 616.873036][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.741984][ C0] net_ratelimit: 21394 callbacks suppressed [ 621.742001][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.760179][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.772420][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.784667][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.796969][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.809287][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.821582][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.833823][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.846052][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 621.858280][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 623.628558][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.278054][ T32] oom_reaper: reaped process 29754 (syz.0.10915), now anon-rss:0kB, file-rss:58188kB, shmem-rss:0kB [ 624.296708][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 626.726053][ C0] net_ratelimit: 21258 callbacks suppressed [ 626.726071][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.744231][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.756429][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.769533][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.781728][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.793946][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.806168][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.818390][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.830584][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 626.842775][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.710148][ C0] net_ratelimit: 22025 callbacks suppressed [ 631.710165][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.728333][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.740550][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.752894][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.765113][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.777405][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.789624][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.801852][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.814046][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 631.826242][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.694188][ C0] net_ratelimit: 22541 callbacks suppressed [ 636.694206][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.712362][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.724571][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.736867][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.749189][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.762170][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.775491][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.787764][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.800116][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 636.812341][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.678393][ C0] net_ratelimit: 22678 callbacks suppressed [ 641.678412][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.697576][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.709800][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.722005][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.734208][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.746480][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.758908][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.771273][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.783520][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 641.795828][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.662336][ C0] net_ratelimit: 22768 callbacks suppressed [ 646.662353][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.680482][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.692685][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.704887][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.717107][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.729298][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.741502][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.753704][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.765901][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 646.778095][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.646460][ C0] net_ratelimit: 22937 callbacks suppressed [ 651.646477][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.664614][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.676815][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.689039][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.701230][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.713423][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.725608][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.737793][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.749995][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 651.762223][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.630602][ C0] net_ratelimit: 22706 callbacks suppressed [ 656.630618][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.648769][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.661001][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.673195][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.685385][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.697577][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.709780][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.722006][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.734199][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 656.746387][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.614692][ C0] net_ratelimit: 22818 callbacks suppressed [ 661.614709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.632843][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.645037][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.657231][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.669427][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.681619][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.693827][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.706021][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.718205][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 661.730391][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.598641][ C0] net_ratelimit: 23058 callbacks suppressed [ 666.598658][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.616802][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.629025][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.641252][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.653527][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.665739][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.677960][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.690160][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.702353][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 666.714553][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.582897][ C0] net_ratelimit: 22784 callbacks suppressed [ 671.582915][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.601062][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.613273][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.625480][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.637666][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.649879][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.662108][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.674337][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.686534][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 671.698727][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.566849][ C0] net_ratelimit: 22713 callbacks suppressed [ 676.566865][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.584986][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.597193][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.609385][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.621586][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.633784][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.645997][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.658197][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.670378][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 676.682562][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.551040][ C0] net_ratelimit: 10507 callbacks suppressed [ 681.551056][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.569709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.582442][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.595152][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.607889][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.621262][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.633997][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.646742][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.659456][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 681.672178][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 683.084141][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.535255][ C0] net_ratelimit: 6629 callbacks suppressed [ 686.535271][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.553831][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.566568][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.579298][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.592007][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.604729][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.617449][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.630171][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.642980][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 686.655702][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.519474][ C0] net_ratelimit: 6616 callbacks suppressed [ 691.519490][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.538033][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.550755][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.563483][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.576261][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.589000][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.602441][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.615210][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.627970][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 691.640686][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.503360][ C0] net_ratelimit: 6529 callbacks suppressed [ 696.503377][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.521943][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.534666][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.547427][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.560166][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.572908][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.585633][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.598357][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.611082][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 696.623822][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.487264][ C0] net_ratelimit: 6521 callbacks suppressed [ 701.487281][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.505856][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.518604][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.531335][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.544099][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.556856][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.569561][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.582308][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.595546][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 701.608279][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.471707][ C0] net_ratelimit: 6597 callbacks suppressed [ 706.471729][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.490313][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.503051][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.515764][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.528520][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.541248][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.553982][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.566786][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.579501][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 706.592215][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.455689][ C0] net_ratelimit: 6608 callbacks suppressed [ 711.455707][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.474302][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.487049][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.499798][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.512527][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.525278][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.538005][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.550774][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.563523][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 711.576233][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.439483][ C0] net_ratelimit: 6527 callbacks suppressed [ 716.439501][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.458104][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.470822][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.483560][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.496297][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.509062][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.521824][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.534533][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.547255][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 716.560058][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.194701][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 721.201664][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P30038/1:b..l [ 721.210155][ C0] rcu: (detected by 0, t=10502 jiffies, g=153253, q=662 ncpus=1) [ 721.217979][ C0] task:syz.1.11046 state:R running task stack:26328 pid:30038 tgid:30037 ppid:6182 task_flags:0x400140 flags:0x00080000 [ 721.232314][ C0] Call Trace: [ 721.235582][ C0] [ 721.238500][ C0] __schedule+0xfee/0x60e0 [ 721.242907][ C0] ? __kernel_text_address+0xd/0x30 [ 721.248089][ C0] ? unwind_get_return_address+0x59/0xa0 [ 721.253699][ C0] ? arch_stack_walk+0x88/0xf0 [ 721.258439][ C0] ? __pfx___schedule+0x10/0x10 [ 721.263269][ C0] ? mark_held_locks+0x40/0x70 [ 721.268026][ C0] preempt_schedule_irq+0x50/0x90 [ 721.273030][ C0] irqentry_exit+0x17b/0x670 [ 721.277601][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 721.283564][ C0] RIP: 0010:__update_page_owner_handle+0x242/0x550 [ 721.290055][ C0] Code: 89 ff 4d 39 fe 0f 83 6f 01 00 00 e8 78 69 89 ff 48 8b 1d 71 f8 21 0c 48 01 eb 48 8d 7b 08 48 89 f8 48 c1 e8 03 42 0f b6 04 28 <84> c0 74 08 3c 03 0f 8e d2 02 00 00 8b 44 24 0c 89 43 08 48 89 d8 [ 721.309643][ C0] RSP: 0018:ffffc90004aeeea8 EFLAGS: 00000a02 [ 721.315689][ C0] RAX: 0000000000000000 RBX: ffff88801de13fe8 RCX: ffffc90004399000 [ 721.323638][ C0] RDX: 0000000000080000 RSI: ffffffff827e91c8 RDI: ffff88801de13ff0 [ 721.331586][ C0] RBP: ffff88801de13fe0 R08: 0000000000000006 R09: 0000000000000002 [ 721.339532][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001 [ 721.347477][ C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000002 [ 721.355431][ C0] ? __update_page_owner_handle+0x228/0x550 [ 721.361318][ C0] ? __update_page_owner_handle+0x228/0x550 [ 721.367210][ C0] __set_page_owner+0x11f/0x540 [ 721.372053][ C0] ? __pfx___set_page_owner+0x10/0x10 [ 721.377409][ C0] ? bad_range+0x261/0x400 [ 721.381803][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 721.386985][ C0] post_alloc_hook+0x153/0x170 [ 721.391731][ C0] get_page_from_freelist+0x111d/0x3140 [ 721.397275][ C0] __alloc_frozen_pages_noprof+0x27c/0x2ba0 [ 721.403155][ C0] ? rcu_is_watching+0x12/0xc0 [ 721.407918][ C0] ? __lock_acquire+0x4a5/0x2630 [ 721.412840][ C0] ? __lock_acquire+0x4a5/0x2630 [ 721.417757][ C0] ? css_rstat_updated+0x1ce/0x5a0 [ 721.422848][ C0] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 721.429156][ C0] ? __pfx_css_rstat_updated+0x10/0x10 [ 721.434600][ C0] ? __lock_acquire+0x4a5/0x2630 [ 721.439526][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 721.445405][ C0] ? policy_nodemask+0xed/0x4f0 [ 721.450235][ C0] alloc_pages_mpol+0x1fb/0x550 [ 721.455064][ C0] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 721.460413][ C0] ? __pfx_xa_find+0x10/0x10 [ 721.464985][ C0] folio_alloc_mpol_noprof+0x36/0x340 [ 721.470338][ C0] shmem_alloc_folio+0x135/0x160 [ 721.475258][ C0] shmem_alloc_and_add_folio+0x833/0xd40 [ 721.480879][ C0] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 721.487017][ C0] ? shmem_allowable_huge_orders+0x2bd/0x400 [ 721.492984][ C0] shmem_get_folio_gfp+0xab1/0x1900 [ 721.498171][ C0] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 721.503797][ C0] ? __pfx_css_rstat_updated+0x10/0x10 [ 721.509234][ C0] ? __pfx_warn_bogus_irq_restore+0x10/0x10 [ 721.515108][ C0] shmem_fault+0x1f9/0xa20 [ 721.519511][ C0] ? __lock_acquire+0x4a5/0x2630 [ 721.524431][ C0] ? __pfx_shmem_fault+0x10/0x10 [ 721.529351][ C0] ? __pfx_folios_put_refs+0x10/0x10 [ 721.534626][ C0] ? __pfx_filemap_map_pages+0x10/0x10 [ 721.540066][ C0] __do_fault+0x10d/0x550 [ 721.544384][ C0] ? __pfx_filemap_map_pages+0x10/0x10 [ 721.549825][ C0] do_fault+0x2db/0x1950 [ 721.554048][ C0] __handle_mm_fault+0x180f/0x2b60 [ 721.559146][ C0] ? __pfx___handle_mm_fault+0x10/0x10 [ 721.564596][ C0] ? pte_offset_map_lock+0x174/0x320 [ 721.569867][ C0] ? find_held_lock+0x2b/0x80 [ 721.574525][ C0] ? follow_page_pte+0x5b3/0x1400 [ 721.579533][ C0] handle_mm_fault+0x36d/0xa20 [ 721.584282][ C0] __get_user_pages+0xf9c/0x34d0 [ 721.589210][ C0] ? down_read_killable+0x30e/0x4c0 [ 721.594394][ C0] ? __pfx___get_user_pages+0x10/0x10 [ 721.599750][ C0] faultin_page_range+0x1f1/0x9e0 [ 721.604758][ C0] madvise_do_behavior+0x354/0x510 [ 721.609853][ C0] ? __pfx_madvise_do_behavior+0x10/0x10 [ 721.615473][ C0] do_madvise+0x195/0x240 [ 721.619782][ C0] ? __pfx_do_madvise+0x10/0x10 [ 721.624612][ C0] ? do_futex+0x192/0x350 [ 721.628939][ C0] __x64_sys_madvise+0xa9/0x110 [ 721.633771][ C0] ? lockdep_hardirqs_on+0x78/0x100 [ 721.638948][ C0] do_syscall_64+0x106/0xf80 [ 721.643520][ C0] ? clear_bhb_loop+0x40/0x90 [ 721.648179][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 721.654048][ C0] RIP: 0033:0x7fcd67d9c629 [ 721.658440][ C0] RSP: 002b:00007fcd68b6f028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 721.666828][ C0] RAX: ffffffffffffffda RBX: 00007fcd68015fa0 RCX: 00007fcd67d9c629 [ 721.674775][ C0] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000 [ 721.682722][ C0] RBP: 00007fcd67e32b39 R08: 0000000000000000 R09: 0000000000000000 [ 721.690669][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 721.698614][ C0] R13: 00007fcd68016038 R14: 00007fcd68015fa0 R15: 00007ffc27d8e0d8 [ 721.706572][ C0] [ 721.710213][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 721.717021][ C0] net_ratelimit: 6203 callbacks suppressed [ 721.717032][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.735563][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.748279][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.761010][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.773700][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.786433][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.799128][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.811854][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.824548][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 721.837258][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.696875][ C0] net_ratelimit: 6161 callbacks suppressed [ 726.696892][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.715572][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.728881][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.741703][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.754472][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.767263][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.780049][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.792808][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.805596][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0) [ 726.818366][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:c6:38:23:1c:c2:01, vlan:0)