last executing test programs: 3m56.259134245s ago: executing program 1 (id=324): r0 = openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$auto_dma_heap_fops_dma_heap(r0, 0xffffffffffdffe00, &(0x7f0000000140)=';') openat$auto_adf_hb_cfg_fops_adf_heartbeat_dbgfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/ieee80211/phy1/netdev:wlan1/tkip_mic_test\x00', 0x80002, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video15\x00', 0x180, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x42, 0x0) r1 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000340)='/dev/snd/midiC2D1\x00', 0x1, 0x0) statmount$auto(&(0x7f0000000000)={0x3, @raw=0x5, 0x1800000000000000, 0x400}, &(0x7f0000001180)={0x80000001, 0x5, 0x5, 0x779, 0x129, 0x8, 0x9, 0x7000, 0xffff, 0x4, 0x7fff, 0x3, 0x401, 0xa, 0x3, 0x4c, 0x9e, 0xd6, 0x5, 0xffffffffffffffff, 0x1ff, 0x2, 0x400, 0x6, 0x2, 0x6, [0xffffffff, 0x1000, 0x2, 0x3, 0xffab, 0xa, 0x1ff, 0x8, 0x2, 0x2, 0x1, 0x1, 0x1, 0xea72, 0x1, 0x7, 0x7, 0x5, 0x5, 0x7, 0xf974, 0x80, 0x5a, 0xf, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0xffffffff, 0x9, 0x7, 0x3, 0x0, 0xfff, 0x6b, 0x0, 0x8, 0x8, 0x1, 0x4, 0x2, 0x1000000000, 0x6, 0xfffffffffffffff8, 0x1, 0x1, 0x9], "f995aea1a1fc01aa93d7437bfe9a5fc51aa06eafeeeb363d23e1cbc815b08d24c3469f7df0105660635e0edcc2ddc6d68b5ee6800936c6bc1d4ce1e8bf6cbb073a77d430928a5c12fd0989a0960b34296b9becf12c5abdddbaf5d2ebf35441e5def8"}, 0x6, 0x5) write$auto(r1, &(0x7f0000000400)='/dev/audio1\x00', 0xa3d9) select$auto(0xe, 0x0, 0x0, &(0x7f0000000180)={[0x0, 0xd5b, 0x8, 0x37, 0x948a, 0x2, 0x15f4da0a, 0x1, 0x3, 0x4, 0xfffffffffffffffe, 0x52d, 0x6d3c, 0x5]}, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x8, 0x2, 0x9b72, 0x5, 0x0) io_uring_setup$auto(0x8, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x2, 0x2, 0x1) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xffeb}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0xb00) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) close_range$auto(0x2, 0x8, 0x0) socketpair$auto(0x1e, 0x5, 0x80000000, 0x0) socket(0xa, 0x5, 0x0) socket(0xa, 0x801, 0x84) connect$auto(0x3, 0x0, 0x55) listen$auto(0x3, 0x81) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) accept$auto(0x3, 0x0, 0x0) 3m53.082755669s ago: executing program 1 (id=331): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) read$auto_mon_fops_text_t_mon_text(r0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0) 3m51.258961889s ago: executing program 1 (id=336): r0 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000003040)='/proc/self/io\x00', 0x440, 0x0) mmap$auto(0x0, 0xdb33, 0xe2, 0xeb1, 0x405, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_TIPC_NL_LINK_RESET_STATS(r1, &(0x7f0000003e40)={0x0, 0x0, &(0x7f0000003e00)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000ea5f04450475a1edc9fedb48b39bc4d37c899e6b3ecb5f8e3f20730e92a43d9c66ed526a5de085c79225196a06bd896bc396393af6f0d1d0ce943c355cb96ad961a1a51cacf54a70d6f6bf90e6293efd51592497f1cde21be309e50703d3bcdaa0261298252226c420d1b0ede38caa17195ce97be2c66e4a174f3c25bc106180d945725d4ddae6404e563d77b769e8814cf865048adfecc5e70c9720b82c2946e66d9acbed0bfd72ccee5fe2bd1cb592ca0570feebd9a22afdd07abc8d7c", @ANYRES16=r2, @ANYBLOB="00012cbd7000ffdbdf250a00000004000480"], 0x18}, 0x1, 0x0, 0x0, 0x4}, 0x44000050) r3 = open(0x0, 0x7ffd, 0x12) write$auto(0xffffffffffffffff, 0x0, 0xffe) syz_genetlink_get_family_id$auto_ethtool(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x1ff, 0xdf, 0x200000810, r3, 0x8000) madvise$auto(0x0, 0x200007, 0x8) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0x2003f0, 0x15) write$auto(0x3, 0x0, 0x100082) io_uring_setup$auto(0x6, 0x0) madvise$auto(0x0, 0x200007, 0x19) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0x29a02, 0x0) mmap$auto(0x0, 0x4020009, 0x6, 0xeb1, 0x401, 0x8000) socket(0xa, 0x3, 0x3a) setsockopt$auto(0x400000000000003, 0x2b, 0xc5, 0x0, 0x4569) r4 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000001080)='/dev/v4l-touch5\x00', 0x2040, 0x0) read$auto_v4l2_fops_v4l2_dev(r4, &(0x7f00000010c0)=""/22, 0x16) openat$auto_tracing_cpumask_fops_trace(0xffffffffffffff9c, 0x0, 0x8002, 0x0) r5 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, 0x0, 0x401, 0x0) r6 = openat$auto_rtc_dev_fops_dev(0xffffffffffffff9c, &(0x7f0000000000), 0x902, 0x0) ioctl$auto_RTC_WKALM_SET(r6, 0x4028700f, &(0x7f0000000000)={0x0, 0x3, {0x5, 0x4, 0x9, 0x7, 0x5, 0x3a50, 0x1, 0xffff, 0xfd}}) ioctl$auto_SNDCTL_DSP_RESET(r5, 0x5000, 0xffffffffffffffff) read$auto_proc_single_file_operations_base(r0, &(0x7f0000000040)=""/9, 0x9) 3m48.628254201s ago: executing program 1 (id=344): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/usb/usbmon/9t\x00', 0x0, 0x0) read$auto_mon_fops_text_t_mon_text(r0, 0x0, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, 0x0, 0xa101, 0x0) 3m46.779943027s ago: executing program 1 (id=347): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) sendmsg$auto_NBD_CMD_CONNECT(r0, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f0000000080)={0x30, r1, 0x1, 0x70bd25, 0x25dfcbfd, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x4000000000000007}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x48080) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xc, 0x800008000) socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0) sendmsg$auto_CTRL_CMD_GETPOLICY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x10004010) msync$auto(0xb56, 0x9, 0x5) sendmsg$auto_IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4000) r2 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp1\x00', 0x20b42, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, 0x0) clone$auto(0xd, 0xfe, 0x0, 0x0, 0x800) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/mtd/mtd0/oobavail\x00', 0x42000, 0x0) ioctl$auto_SNDCTL_DSP_SETFMT(r2, 0xc0045005, &(0x7f0000000080)) connect$auto(0x3, 0x0, 0x54) 3m44.792921531s ago: executing program 1 (id=354): ioperm$auto(0x3, 0xe, 0x2000000000000149) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0xa, 0x4, 0x7) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) socket(0x11, 0x80003, 0x300) sysfs$auto(0x2, 0x2, 0x0) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x20048800) unshare$auto(0x40000080) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/current_tracer\x00', 0x0, 0x0) read$auto_set_tracer_fops_trace(r0, &(0x7f0000000e00)=""/4096, 0x1000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80001, 0x73) socket(0xa, 0x1, 0x84) setsockopt$auto(r1, 0x400, 0xc, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x02\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000115) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r2) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x4a82, 0x0) write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900)='\t', 0x1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf25040000002d0011002f50136a450cf972f5a3d28479f92a9b221ca46c2d19fda4f47902c296fa844c2caa527356c83b"], 0x44}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 3m29.51394745s ago: executing program 32 (id=354): ioperm$auto(0x3, 0xe, 0x2000000000000149) mbind$auto(0x9, 0x84, 0x4, 0x0, 0x80000000, 0x7f) mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0xa, 0x4, 0x7) recvmmsg$auto(0x3, 0x0, 0x10000, 0x6, 0x0) socket(0x11, 0x80003, 0x300) sysfs$auto(0x2, 0x2, 0x0) shutdown$auto(0x200000003, 0x2) sendmsg$auto_NLBL_MGMT_C_LISTDEF(0xffffffffffffffff, 0x0, 0x20048800) unshare$auto(0x40000080) recvmmsg$auto(0x3, 0x0, 0x687bcbd, 0x8, 0x0) syz_genetlink_get_family_id$auto_nlctrl(0x0, 0xffffffffffffffff) mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_set_tracer_fops_trace(0xffffffffffffff9c, &(0x7f0000000240)='/sys/kernel/debug/tracing/current_tracer\x00', 0x0, 0x0) read$auto_set_tracer_fops_trace(r0, &(0x7f0000000e00)=""/4096, 0x1000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) r1 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80001, 0x73) socket(0xa, 0x1, 0x84) setsockopt$auto(r1, 0x400, 0xc, &(0x7f0000000880)='\x15!\xa8^J/\xddCx4!\x00\xd3\x8f\xff\x1b\x01\x1e\xe2\xa8\xd6\xd9\xc0\xa2\x0f\x88\xb1e\x8a\xd8?\xfe\xda\xc4\xef\xff(i\xc6@\xf2Vw\xbe\x1c$\xddm\x8a\x9d\x91_\vBj\x0eQ\xce\x16\'C\x8c\x01\x80\x92u\xd5\xb8\\\x82,\xe2=y\x9bR\xbcn\xa0c\x16~\x86\"t\x00\x00\x00\x02\xe4\xa5\xfe\xb5h\xae\xec%\xf9\x94>\xd6,\xf3\x98\'\xb0\t~~\xb4\x98\xbb3=A\x9c\x17\xaa\xce\fh-M\xdb-\x15VX\xfe\xca+\xb5\x95\xb3JL\x0fl\xe84\xbd\xa3nO\x9f\xfa\xb1\x06$\b$i3\x83\xd7\x06\xd6\x1e\xdbB\x9bb\x1cXC\x8c\x8b\xd9\xff\xf2Bf\x99!Z\x13\xff\xca\xf3e\x015\x9b\x86\xd6$\x1a\r3\x91\xb7\x942\xeb\xadVA\xfc\x1f\xbf1\xb7T\xc1\xbf\xc0\xc2\xfc\xe8w\xd33\xb2,\xb0\x9fA3\xc2\xa2\x1cM\x825\x94U\xbbNeb\xd2\xa9\x0f\xed\x8b\xea\xfa\x8a\x04.\xffMIw\x0f\xd6\xae^\xd2\xf1j\xcb\r\xa4\x1d0d\xca\x81\x9c\x80GL\x0e\xe6\x19\x8au\x1a7\xc5|\xf6\x1e\xe00\xc6\"\x83\x1c\xa2\x9e\a\x1c\xea\xa3\x9c\xe1BF\x05b\xf6\xdcf\x04\xd9B\xb9\x98\x9cq\xbd\xfb\xb5~\xf2\x8d\x9f`\xec\xd0\xafY\xcf\x84', 0x18000115) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000000080), r2) r4 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/zswap/parameters/compressor\x00', 0x4a82, 0x0) write$auto_ocfs2_control_fops_stack_user(r4, &(0x7f0000003900)='\t', 0x1) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf25040000002d0011002f50136a450cf972f5a3d28479f92a9b221ca46c2d19fda4f47902c296fa844c2caa527356c83b"], 0x44}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000800) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/bus/pci/rescan\x00', 0x20681, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) 1m39.379249225s ago: executing program 2 (id=766): r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="1300"], 0x24}, 0x1, 0x0, 0x0, 0x4004080}, 0x20044894) sendmsg$auto_NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x3c, r0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_ANTENNA_RX={0x8, 0x6a, 0xfffffbff}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'ip6gre0\x00'}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x80000001}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2000c080}, 0xc1) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram7\x00', 0x60742, 0x0) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mtrr\x00', 0x1c1040, 0x0) ioctl$auto(0x3, 0x400c4d00, r2) r3 = syz_open_procfs$namespace(0x0, 0x0) fstat$auto(r3, 0x0) r4 = syz_genetlink_get_family_id$auto_gtp(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, r4, 0x500, 0x70bd28, 0x25dfdbfc, {}, [@GTPA_LINK={0x8, 0x1, 0xa}, @GTPA_FLOW={0x6, 0x6, 0x6}, @GTPA_FLOW={0x6, 0x6, 0xa}, @GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}, @GTPA_LINK={0x8, 0x1, 0x5}, @GTPA_MS_ADDR6={0x14, 0xc, @mcast1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$auto(0x3, 0x40081271, 0x38) write$auto(0x3, 0x0, 0xfdef) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_ADD_UEID(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x1c, r6, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@SMC_NLA_EID_TABLE_ENTRY={0x5, 0x1, '['}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4880}, 0x8092) sendmsg$auto_SMC_NETLINK_DUMP_SEID(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)={0x108, r6, 0x800, 0x70bd27, 0x25dfdbfb, {}, "e2718ae842b928a21368ddd3c5d21e54ca506094f15c9f7c25fdddc67b6628b579b52952524141ce4cb122258284d7318ce587a3c2a111a0bc7ac055e2d42f605bd4b8137627e714f6ae650ab2ef74e6eee4f856677ee5b3d2beac649c415d16eab62056a9ff2a58d8f3baf0f93bc5872c5661c1a680260541c746efe8c69b14621a2892734b9811011818ab4f475c601f936a808fcbdf03fa143759812482a8bf54c13a441f1d8512660828cc4629d8c6da747a0c4fb12dc7ddc8bf2999bcd0f3e1c73cffe813ba166eafccc7f91c75d26ef07315f8b6ebf1d7fe756d360b7d59d06c80e4e241ab1e14925ed53ff09f7128"}, 0x108}, 0x1, 0x0, 0x0, 0x8800}, 0x0) mmap$auto(0x0, 0x580f, 0xffb, 0x8000000008011, 0x3, 0x0) madvise$auto(0x0, 0x2003f0, 0x15) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) r7 = syz_genetlink_get_family_id$auto_netdev(&(0x7f0000000680), r5) sendmsg$auto_NETDEV_CMD_DEV_GET2(r5, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x8008000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, r7, 0x100, 0x70bd2a, 0x25dfdbfd, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x4004001) madvise$auto(0x0, 0xfffffffffff70001, 0x1) fsconfig$auto(r1, 0x6, &(0x7f0000000200)=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', &(0x7f0000000240)="0b83f658f21028bb1b27afafea90442bd687fe2665aaef654c2f4cd9019e161d17247ce2a816df2605fb2dbd6671c11081d702fe18dcd5e45d2b961af122f42eb9d216772e97d2fefba477307842fd8a349e7ad466a25b7399895e7c03464f50ffa83f8c7483c067117d67358397b9f232b0603041413f363476e7217cd9747ebc2322d952dd85156b3da77198a38816a919c54312e25560308033e16deb31a16f7c53ac34ae5edbaaa67ef927921c3cb7fdf791e150c9d4113edcfe1b4585fccf6655e9a0c5868f1327cf406fc3950a08ede1bfa33765aec23d6597e31a34eff15d6671fddabf42289d", 0xee01) preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0xfffffffd}, 0x6, 0x8, 0x5) 1m37.402822785s ago: executing program 3 (id=768): r0 = getsockopt$auto_SO_NOFCS(0xffffffffffffffff, 0x8, 0x2b, &(0x7f0000000000)='\x00', &(0x7f0000000040)=0x2) ioctl$auto(0xffffffffffffffff, 0x100, r0) r1 = socket(0x18, 0x800, 0x2) accept$auto(r1, 0x0, 0x0) 1m36.537705106s ago: executing program 4 (id=770): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) (async) r0 = socket(0x11, 0x2, 0x9) sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000500)="42b505fe798518ffff99010082d5bd19067d406b58ffb4b272d52a0c5639f9c8d39de09cd4daedcf092922295275288eeee69fc06e468007002f17e01527882f0bd298556b9e5bf66524387e23407dc140c317c339aaa67a", 0x5ac, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006bba861b000004000000a32457895897071b", 0x49}, 0x2, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) (async) close_range$auto(0x2, 0x8, 0x0) (async) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) socket(0xa, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_msr_fops_msr(0xffffffffffffff9c, &(0x7f0000000200)='/dev/cpu/0/msr\x00', 0x38401, 0x0) (async, rerun: 32) lseek$auto(0x3, 0x7fffffffffffffff, 0x0) (async, rerun: 32) socket(0x2c, 0x3, 0x0) (async) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2b, 0x1, 0x1) (async, rerun: 32) socket(0x22, 0x2, 0x24) (async, rerun: 32) r2 = getsockopt$auto(0x200000000006, 0x84, 0x7, 0xfffffffffffffffc, 0xffffffffffffffff) r3 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sda\x00', 0x8001, 0x0) ioctl$auto(r3, 0x2272, r3) (async, rerun: 64) r4 = syz_genetlink_get_family_id$auto_batadv(&(0x7f0000000140), 0xffffffffffffffff) (rerun: 64) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000280), r5) (async, rerun: 64) r6 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000f40)={'batadv0\x00', 0x0}) sendmsg$auto_BATADV_CMD_SET_MESH(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)={0x24, r4, 0x1, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x2b9}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x8d1) sendmsg$auto_BATADV_CMD_SET_MESH(r2, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000440)={&(0x7f0000000180)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="000125bd7000fbdb9f250f00000005002a00000000000600280040000000080036003b00000008001700c40000000c000c0002000000000000000600286b1d000008000b000300000807001500afe10000006514cdc8fe3fdab0873aa8aa08bf470951076522"], 0x58}, 0x1, 0x0, 0x0, 0x4048804}, 0x800) (async, rerun: 64) sendto$auto(r3, 0x0, 0x402, 0xacf8, &(0x7f0000000040)=@generic={0xa, "e2e18340cba8fe8000"}, 0x8) (async, rerun: 64) r8 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) (async) sendmmsg$auto(r8, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ac, &(0x7f00000000c0)={&(0x7f0000000080)="4c0300006bba861b000004000000a32457895897861b", 0x49}, 0x2, &(0x7f0000000700), 0x5, 0x1}, 0x5}, 0x2, 0x100) (async) syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f00000000c0), 0xffffffffffffffff) (async) openat$auto_uhid_fops_uhid(0xffffffffffffff9c, &(0x7f0000000340), 0x10002, 0x0) 1m36.364821006s ago: executing program 3 (id=771): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x11, 0x80003, 0x300) munlock$auto(0x9, 0x29b9) sendto$auto(0x3, 0x0, 0x13, 0x2, &(0x7f0000000440)=@hci={0x1f, 0x418, 0x3}, 0x1e) 1m34.956674516s ago: executing program 0 (id=773): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/net/ip_mr_cache\x00', 0x2000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r1 = socket(0x2b, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x4e22, @remote}, 0x6a) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) syz_genetlink_get_family_id$auto_nl80211(0x0, r1) sendmsg$auto_NL80211_CMD_DISASSOCIATE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x60}, 0x1, 0x0, 0x0, 0x54}, 0x0) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) read$auto_proc_reg_file_ops_compat_inode(r0, &(0x7f00000001c0)=""/18, 0x12) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00'}) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000010c0)='./cgroup.net/blkio.bfq.dequeue\x00', 0x8ad00, 0x0) poll$auto(&(0x7f0000000000)={r3, 0x800, 0x1}, 0x0, 0x3) 1m34.517357048s ago: executing program 3 (id=774): mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x2, 0x3, 0xa) futex$auto(0x0, 0x6, 0x47, 0x0, 0x0, 0x0) connect$auto(0x3, &(0x7f0000000280)=@in={0x2, 0x0, @local}, 0x9) r1 = open(&(0x7f0000000800)='./file0\x00', 0x62240, 0x154) r2 = socket(0x10, 0x3, 0xa) sendmsg$auto_NLBL_MGMT_C_LISTDEF(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000825bd7000fcdbdf2526000000320001002f7379732f6b65726e656c2f64656275672f626c7565746f6f74682f686369302f666f7263655f77616b65756c000000"], 0x48}, 0x1, 0x0, 0x0, 0x20008810}, 0x800) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket$nl_generic(0x10, 0x3, 0x10) pidfd_open$auto(0x1, 0x0) pidfd_send_signal$auto(0x1, 0xfffff495, &(0x7f0000000140)={@siginfo_0_0={0xfffff495, 0x4, 0xfffffff0, @_timer={0xffffffffffffffff, 0x8000, @sival_int=0x8, 0x80}}}, 0x4) execveat$auto(r1, &(0x7f0000000240)='\x00', 0x0, 0x0, 0x7) chmod$auto(&(0x7f00000000c0)='./file0\x00', 0xf4ba) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) execve$auto(&(0x7f0000000100)='./file0\x00', 0x0, &(0x7f00000001c0)=&(0x7f0000000180)='=\\y\x11\x9f\x97\xc3*e\xabTc\xc7,\xc0\x85Xb\x00r4, [0xf5, 0x1, 0xf76], {0x3, 0x8, 0x5, 0x8, 0xfffffffa, 0x5, 0x156c, 0x8004, 0x83}, {0x7ff, 0x13, 0x3b, 0x8, 0x2, 0x553, 0x3, 0x9, 0x4}}) syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f00000001c0), r5) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/233, 0xe9) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) mmap$auto(0x1, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) 1m30.032486598s ago: executing program 3 (id=789): mmap$auto(0x2800, 0xb, 0xe1, 0x9b72, 0x2, 0x800007ffd) madvise$auto(0x0, 0xffffffffffff0001, 0x15) (async) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb2, 0x403, 0x8000) clone$auto(0x20003b46, 0x2, 0x0, 0x0, 0x2) mlock$auto(0xfbe8, 0x1000000000000004) getsockopt$auto(0xffffffffffffffff, 0xfffffff8, 0x7, 0x0, 0x0) (async) r0 = getsockopt$auto(0xffffffffffffffff, 0xfffffff8, 0x7, 0x0, 0x0) connect$auto(0x3, &(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x55) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x800008000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00'}) r1 = openat$auto_proc_single_file_operations_base(0xffffffffffffff9c, &(0x7f0000000080)='/proc/scsi/sg/device_hdr\x00', 0x800, 0x0) read$auto_proc_single_file_operations_base(r0, 0x0, 0xfffffffffffffeab) setsockopt$auto_SO_PASSSEC(r1, 0x8000001, 0x22, &(0x7f0000000340)='*\'-\xd5{-,#-\x00', 0xb) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40480c0}, 0x400c811) (async) sendmsg$auto_NL80211_CMD_SET_WIPHY(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40480c0}, 0x400c811) r2 = socket(0x10, 0x2, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0) (async) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/devices/platform/vkms/graphics/fb0/bits_per_pixel\x00', 0x82942, 0x0) fcntl$auto_F_ADD_SEALS(r3, 0x409, 0xffffffffffffffff) (async) r4 = fcntl$auto_F_ADD_SEALS(r3, 0x409, 0xffffffffffffffff) read$auto_force_wakeup_fops_hci_vhci(r4, &(0x7f0000000200)=""/178, 0xb2) (async) read$auto_force_wakeup_fops_hci_vhci(r4, &(0x7f0000000200)=""/178, 0xb2) sendfile$auto(r3, r3, 0x0, 0x200) (async) sendfile$auto(r3, r3, 0x0, 0x200) r5 = openat$auto_nvram_misc_fops_nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x101440, 0x0) sendmmsg$auto(r5, 0x0, 0x80004, 0x6) r6 = open(0x0, 0x2f71c2, 0x195) ioctl$auto_dma_heap_fops_dma_heap(0xffffffffffffffff, 0xffffffffffdffe00, 0x0) setsockopt$auto(r5, 0xa, 0x3, 0x0, 0x3ff) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto(0x3, 0x541b, 0xffffffffffffffff) openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x497b41, 0x0) (async) openat$auto_trace_time_stamp_mode_fops_trace(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/tracing/timestamp_mode\x00', 0x497b41, 0x0) ioctl$auto_XFS_IOC_READLINK_BY_HANDLE(r6, 0xc038586c, &(0x7f0000000300)={r2, 0x0, 0x7, &(0x7f0000000480)="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", 0x4df, &(0x7f0000000040)="4e604e6adf510e9935b57bf567d0d6eefac3d1639a1c2445b651f8d4d277df4918629acbb0137dc33187163ac65f990986c0", &(0x7f0000000140)=0x9}) mmap$auto(0x2, 0x20009, 0x921, 0xeb1, r7, 0x8000) (async) mmap$auto(0x2, 0x20009, 0x921, 0xeb1, r7, 0x8000) listmount$auto(&(0x7f0000000100)={0x1f, @raw, 0x80000002, 0xfffffffffffffff7, 0x2}, 0x0, 0xf4240, 0x1) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) (async) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/mm/transparent_hugepage/khugepaged/scan_sleep_millisecs\x00', 0xa0582, 0x0) 1m29.676798492s ago: executing program 2 (id=790): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop6\x00', 0x0, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000de, 0xeb1, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/block/ram9/diskseq\x00', 0x0, 0x0) read$auto(r2, 0x0, 0x20) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) mmap$auto(0xf000, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$auto_wireguard(&(0x7f0000000240), 0xffffffffffffffff) r5 = socket(0x1d, 0x2, 0x6) r6 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r7, 0xfd}, 0x6a) sendmsg$auto_ETHTOOL_MSG_FEC_SET(r5, &(0x7f0000001940)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={0x14, 0x0, 0x400, 0x70bd2c, 0x25dfdc02}, 0x14}, 0x1, 0x0, 0x0, 0x4005}, 0x44080) r8 = gettid() syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000140), r5) tkill$auto(r8, 0x7) sendmsg$auto_WG_CMD_SET_DEVICE(r3, &(0x7f00000028c0)={0x0, 0x0, &(0x7f0000002880)={&(0x7f0000000000)={0x30, r4, 0x21, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) ioctl$auto_SG_GET_RESERVED_SIZE(r0, 0x4c08, 0x0) 1m29.390484588s ago: executing program 0 (id=791): ioctl$auto_VHOST_NET_SET_BACKEND(0xffffffffffffffff, 0x4008af30, &(0x7f0000000000)={0x3, 0xffffffffffffffff}) ioctl$auto_SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, &(0x7f0000000180)={{0x1, 0x0, 0x40, 0x5, 0x6}, 0x2, 0xa, "507994b533ed641c719982f3cfd7d99e6323c95b5b0a68bf1beef14453aab2cd2306417e5c94a55624fb9496ad3f5488cbec74f2495fca0b272def85778495a6", "617408fca1328a2edf5eb4ea5196638b958cfeb8a5ef85838827f8572ccad02a873b13e090240aaff4159368abc19c76f93ce54196b3514dc9e9fa73e234c134a6588a2204698bed9d3ea4b9fe631467", 0xace, 0x2, 0x8, 0x7, 0x4, "ecfb94f3279d50cc108533cd49bd250717fb4fd326a0148bebab9031d482da86"}) mmap$auto(0x0, 0x8, 0xdf, 0xeb1, 0x0, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x1e, 0x805, 0x0) r1 = openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp1\x00', 0x48002, 0x0) ioctl$auto_SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, 0x0) read$auto(0x3, 0x0, 0x1f40) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x66) openat$auto_proc_setgroups_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/setgroups\x00', 0x80100, 0x0) 1m28.630415477s ago: executing program 0 (id=792): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x181842, 0x94) ioperm$auto(0x7, 0x6, 0xffffffffffff4064) map_shadow_stack$auto(0x2, 0x3, 0x1) socket(0xa, 0x801, 0x84) syz_genetlink_get_family_id$auto_netdev(&(0x7f00000000c0), 0xffffffffffffffff) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r1 = socket(0xa, 0x1, 0x84) r2 = openat$auto_force_devcoredump_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000c40)='/sys/kernel/debug/bluetooth/hci0/force_devcoredump\x00', 0x2, 0x0) openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/fb0\x00', 0x2000, 0x0) write$auto(r2, 0x0, 0xe) getsockopt$auto(r1, 0x84, 0x1, 0x0, &(0x7f0000000000)=0x9d) r3 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) read$auto_v4l2_fops_v4l2_dev(r3, &(0x7f0000000080)=""/27, 0x1b) close_range$auto(0x2, 0x8, 0x0) r4 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x840, 0x0) ioctl$auto(r4, 0x560a, 0x7) openat$auto_mousedev_fops_mousedev(0xffffffffffffff9c, 0x0, 0x1a1382, 0x0) sendmmsg$auto(0xffffffffffffffff, 0x0, 0x2, 0x100) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x20, r6, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE={0x4}, @HWSIM_ATTR_REG_CUSTOM_REG={0x8, 0xc, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x18800) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x4001) socket(0x10, 0x2, 0xc) bind$auto(0x3, 0x0, 0x6b) socket(0x23, 0x1, 0x2) close_range$auto(0x2, 0x8000, 0x0) madvise$auto_MADV_GUARD_REMOVE(0x7, 0x8, 0x67) read$auto(r0, 0x0, 0x1) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/rpc/use-gss-proxy\x00', 0x48041, 0x0) 0s ago: executing program 33 (id=788): write$auto(0x800000000000c8, 0x0, 0x1a) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x60742, 0x0) shutdown$auto(0x200000003, 0x2) set_mempolicy$auto(0x8003, &(0x7f0000000280)=0x200000007b, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x19) r0 = openat$auto_tap_fops_tap(0xffffffffffffff9c, &(0x7f0000000100), 0x20400, 0x0) ioctl$auto_TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000140)=0xbc) r1 = epoll_create$auto(0x3e) r2 = socket(0xa, 0x2, 0x3a) setsockopt$auto(r2, 0x29, 0x2, 0x0, 0x1) epoll_ctl$auto(r1, 0x1, 0x8000000000000000, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x400000, 0xc0) renameat2$auto(r3, &(0x7f0000000000)='./file0\x00', r3, &(0x7f0000000280)='./file0\x00', 0x4000) ioctl$auto_SNDRV_RAWMIDI_IOCTL_PVERSION(r1, 0x80045700, &(0x7f0000000200)=0xfff) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x800eb1, r2, 0x8000) r4 = openat$auto_bm_register_operations_binfmt_misc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) io_uring_setup$auto(0x7, &(0x7f0000000040)={0x5, 0x3ff, 0x5968, 0xfffffffd, 0x1, 0x8, r4, [0xf5, 0x1, 0xf76], {0x3, 0x8, 0x5, 0x8, 0xfffffffa, 0x5, 0x156c, 0x8004, 0x83}, {0x7ff, 0x13, 0x3b, 0x8, 0x2, 0x553, 0x3, 0x9, 0x4}}) syz_genetlink_get_family_id$auto_nlbl_cipsov4(&(0x7f00000001c0), r5) read$auto_kernfs_file_fops_kernfs_internal(r5, &(0x7f00000000c0)=""/233, 0xe9) keyctl$auto(0x200000000000020, 0xffffffffffffffff, 0x5, 0x5, 0x8) keyctl$auto(0x15, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8) move_pages$auto(0x0, 0x1002, 0x0, &(0x7f0000001140), 0x0, 0x2) mmap$auto(0x1, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mbind$auto(0x2000, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) kernel console output (not intermixed with test programs): 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.191943][ T7326] RSP: 002b:00007f113e5ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125 [ 185.191967][ T7326] RAX: ffffffffffffffda RBX: 00007f113d9a5fa0 RCX: 00007f113d78d0a9 [ 185.191983][ T7326] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000000000000000 [ 185.191998][ T7326] RBP: 00007f113d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 185.192012][ T7326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.192026][ T7326] R13: 0000000000000000 R14: 00007f113d9a5fa0 R15: 00007ffd2305c948 [ 185.192064][ T7326] [ 185.758201][ T7336] FAULT_INJECTION: forcing a failure. [ 185.758201][ T7336] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 185.795765][ T7336] CPU: 0 UID: 0 PID: 7336 Comm: syz.0.351 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 185.795795][ T7336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 185.795808][ T7336] Call Trace: [ 185.795814][ T7336] [ 185.795824][ T7336] dump_stack_lvl+0x16c/0x1f0 [ 185.795857][ T7336] should_fail_ex+0x50a/0x650 [ 185.795897][ T7336] _copy_to_user+0x32/0xd0 [ 185.795924][ T7336] simple_read_from_buffer+0xd0/0x160 [ 185.795963][ T7336] proc_fail_nth_read+0x198/0x270 [ 185.795992][ T7336] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 185.796023][ T7336] ? rw_verify_area+0xcf/0x680 [ 185.796050][ T7336] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 185.796077][ T7336] vfs_read+0x1df/0xbf0 [ 185.796108][ T7336] ? __fget_files+0x1fc/0x3a0 [ 185.796139][ T7336] ? __pfx___mutex_lock+0x10/0x10 [ 185.796168][ T7336] ? __pfx_vfs_read+0x10/0x10 [ 185.796206][ T7336] ? __fget_files+0x206/0x3a0 [ 185.796247][ T7336] ksys_read+0x12b/0x250 [ 185.796276][ T7336] ? __pfx_ksys_read+0x10/0x10 [ 185.796316][ T7336] do_syscall_64+0xcd/0x250 [ 185.796346][ T7336] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.796377][ T7336] RIP: 0033:0x7fb99258babc [ 185.796395][ T7336] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 185.796416][ T7336] RSP: 002b:00007fb993374030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 185.796437][ T7336] RAX: ffffffffffffffda RBX: 00007fb9927a5fa0 RCX: 00007fb99258babc [ 185.796452][ T7336] RDX: 000000000000000f RSI: 00007fb9933740a0 RDI: 0000000000000004 [ 185.796466][ T7336] RBP: 00007fb993374090 R08: 0000000000000000 R09: 0000000180000000 [ 185.796480][ T7336] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001 [ 185.796493][ T7336] R13: 0000000000000000 R14: 00007fb9927a5fa0 R15: 00007ffe9750f638 [ 185.796523][ T7336] [ 186.392092][ T7340] netlink: 146 bytes leftover after parsing attributes in process `syz.0.353'. [ 189.526221][ T7371] Invalid ELF header magic: != ELF [ 190.444999][ T7371] netlink: 28 bytes leftover after parsing attributes in process `syz.0.359'. [ 192.622681][ T7406] netlink: 8 bytes leftover after parsing attributes in process `syz.0.368'. [ 192.692880][ T7404] svc: failed to register nfsdv3 RPC service (errno 111). [ 192.722903][ T7404] svc: failed to register nfsaclv3 RPC service (errno 111). [ 194.519968][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.526369][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.510251][ T7430] Invalid ELF header magic: != ELF [ 195.682031][ T7431] netlink: 28 bytes leftover after parsing attributes in process `syz.2.373'. [ 196.883932][ T7446] vivid-010: ================= START STATUS ================= [ 196.921143][ T7446] vivid-010: Generate PTS: true [ 196.926261][ T7446] vivid-010: Generate SCR: true [ 196.972584][ T7446] tpg source WxH: 640x360 (Y'CbCr) [ 196.977744][ T7446] tpg field: 1 [ 197.031269][ T7446] tpg crop: 640x360@0x0 [ 197.035471][ T7446] tpg compose: 640x360@0x0 [ 197.039910][ T7446] tpg colorspace: 8 [ 197.102737][ T7446] tpg transfer function: 0/0 [ 197.107369][ T7446] tpg Y'CbCr encoding: 0/0 [ 197.122239][ T7446] tpg quantization: 0/0 [ 197.130939][ T7446] tpg RGB range: 0/2 [ 197.139439][ T7446] vivid-010: ================== END STATUS ================== [ 197.832929][ T7455] FAULT_INJECTION: forcing a failure. [ 197.832929][ T7455] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.218651][ T7455] CPU: 0 UID: 0 PID: 7455 Comm: syz.2.381 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 198.218684][ T7455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 198.218697][ T7455] Call Trace: [ 198.218704][ T7455] [ 198.218712][ T7455] dump_stack_lvl+0x16c/0x1f0 [ 198.218753][ T7455] should_fail_ex+0x50a/0x650 [ 198.218792][ T7455] _copy_from_user+0x2e/0xd0 [ 198.218817][ T7455] core_sys_select+0x361/0xb80 [ 198.218856][ T7455] ? __pfx_core_sys_select+0x10/0x10 [ 198.218891][ T7455] ? find_held_lock+0x2d/0x110 [ 198.218943][ T7455] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 198.218979][ T7455] kern_select+0x15e/0x1e0 [ 198.219010][ T7455] ? __pfx_kern_select+0x10/0x10 [ 198.219046][ T7455] ? __pfx_ksys_write+0x10/0x10 [ 198.219082][ T7455] __x64_sys_select+0xbd/0x160 [ 198.219111][ T7455] ? do_syscall_64+0x91/0x250 [ 198.219138][ T7455] ? lockdep_hardirqs_on+0x7c/0x110 [ 198.219164][ T7455] do_syscall_64+0xcd/0x250 [ 198.219193][ T7455] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.219224][ T7455] RIP: 0033:0x7f7b2a78d0a9 [ 198.219242][ T7455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.219262][ T7455] RSP: 002b:00007f7b2b578038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 198.219284][ T7455] RAX: ffffffffffffffda RBX: 00007f7b2a9a6080 RCX: 00007f7b2a78d0a9 [ 198.219299][ T7455] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000000000e [ 198.219312][ T7455] RBP: 00007f7b2b578090 R08: 0000000000000000 R09: 0000000000000000 [ 198.219325][ T7455] R10: 0000400000000180 R11: 0000000000000246 R12: 0000000000000001 [ 198.219339][ T7455] R13: 0000000000000001 R14: 00007f7b2a9a6080 R15: 00007ffdb585d1e8 [ 198.219369][ T7455] [ 199.156323][ T7462] batman_adv: Routing algorithm '0x' is not supported [ 199.269123][ T7465] FAULT_INJECTION: forcing a failure. [ 199.269123][ T7465] name fail_futex, interval 1, probability 0, space 0, times 0 [ 199.345929][ T7465] CPU: 1 UID: 0 PID: 7465 Comm: syz.3.382 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 199.345961][ T7465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 199.345974][ T7465] Call Trace: [ 199.345980][ T7465] [ 199.345990][ T7465] dump_stack_lvl+0x16c/0x1f0 [ 199.346023][ T7465] should_fail_ex+0x50a/0x650 [ 199.346056][ T7465] ? __lock_acquire+0x15a9/0x3c40 [ 199.346090][ T7465] get_futex_key+0x4a3/0x1000 [ 199.346121][ T7465] ? __pfx_get_futex_key+0x10/0x10 [ 199.346160][ T7465] futex_wake+0xe8/0x4e0 [ 199.346194][ T7465] ? __pfx_futex_wake+0x10/0x10 [ 199.346229][ T7465] ? find_held_lock+0x2d/0x110 [ 199.346262][ T7465] do_futex+0x1e5/0x350 [ 199.346290][ T7465] ? __pfx_do_futex+0x10/0x10 [ 199.346316][ T7465] ? __might_fault+0xe3/0x190 [ 199.346340][ T7465] ? __might_fault+0xe3/0x190 [ 199.346367][ T7465] mm_release+0x24e/0x300 [ 199.346406][ T7465] do_exit+0x886/0x2d70 [ 199.346434][ T7465] ? get_signal+0x8f7/0x26c0 [ 199.346466][ T7465] ? __pfx_do_exit+0x10/0x10 [ 199.346490][ T7465] ? do_raw_spin_lock+0x12d/0x2c0 [ 199.346512][ T7465] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 199.346539][ T7465] do_group_exit+0xd3/0x2a0 [ 199.346565][ T7465] get_signal+0x24ed/0x26c0 [ 199.346601][ T7465] ? find_held_lock+0x2d/0x110 [ 199.346629][ T7465] ? __pfx_get_signal+0x10/0x10 [ 199.346664][ T7465] ? __pfx_do_futex+0x10/0x10 [ 199.346695][ T7465] arch_do_signal_or_restart+0x90/0x7e0 [ 199.346723][ T7465] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 199.346758][ T7465] ? __bitmap_clear+0xdc/0x150 [ 199.346791][ T7465] syscall_exit_to_user_mode+0x150/0x2a0 [ 199.346821][ T7465] do_syscall_64+0xda/0x250 [ 199.346851][ T7465] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.346882][ T7465] RIP: 0033:0x7f113d78d0a9 [ 199.346900][ T7465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.346921][ T7465] RSP: 002b:00007f113e58a0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 199.346943][ T7465] RAX: fffffffffffffe00 RBX: 00007f113d9a6088 RCX: 00007f113d78d0a9 [ 199.346958][ T7465] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f113d9a6088 [ 199.346971][ T7465] RBP: 00007f113d9a6080 R08: 0000000000000000 R09: 0000000000000000 [ 199.346985][ T7465] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f113d9a608c [ 199.346998][ T7465] R13: 0000000000000000 R14: 00007ffd2305c860 R15: 00007ffd2305c948 [ 199.347027][ T7465] [ 199.831765][ T7467] FAULT_INJECTION: forcing a failure. [ 199.831765][ T7467] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 199.896178][ T7467] CPU: 0 UID: 0 PID: 7467 Comm: syz.0.384 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 199.896225][ T7467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 199.896238][ T7467] Call Trace: [ 199.896246][ T7467] [ 199.896255][ T7467] dump_stack_lvl+0x16c/0x1f0 [ 199.896293][ T7467] should_fail_ex+0x50a/0x650 [ 199.896334][ T7467] _copy_from_user+0x2e/0xd0 [ 199.896360][ T7467] tty_ioctl+0xca2/0x15d0 [ 199.896388][ T7467] ? __pfx_tty_ioctl+0x10/0x10 [ 199.896421][ T7467] ? __pfx_lock_release+0x10/0x10 [ 199.896452][ T7467] ? trace_lock_acquire+0x14e/0x1f0 [ 199.896492][ T7467] ? __fget_files+0x206/0x3a0 [ 199.896526][ T7467] ? __pfx_tty_ioctl+0x10/0x10 [ 199.896553][ T7467] __x64_sys_ioctl+0x190/0x200 [ 199.896592][ T7467] do_syscall_64+0xcd/0x250 [ 199.896624][ T7467] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 199.896655][ T7467] RIP: 0033:0x7fb99258d0a9 [ 199.896672][ T7467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 199.896693][ T7467] RSP: 002b:00007fb993353038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 199.896716][ T7467] RAX: ffffffffffffffda RBX: 00007fb9927a6080 RCX: 00007fb99258d0a9 [ 199.896732][ T7467] RDX: 0000000000000000 RSI: 0000000000005414 RDI: 0000000000000009 [ 199.896745][ T7467] RBP: 00007fb99260e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 199.896759][ T7467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.896772][ T7467] R13: 0000000000000000 R14: 00007fb9927a6080 R15: 00007ffe9750f638 [ 199.896802][ T7467] [ 202.261456][ T5847] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 202.271634][ T5841] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 202.281174][ T5841] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 202.298998][ T5841] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 202.317260][ T5841] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 202.331611][ T5841] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 202.338964][ T5841] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 203.050789][ T7490] chnl_net:caif_netlink_parms(): no params data found [ 203.658318][ T7490] bridge0: port 1(bridge_slave_0) entered blocking state [ 203.668392][ T7490] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.708597][ T7490] bridge_slave_0: entered allmulticast mode [ 203.728994][ T7490] bridge_slave_0: entered promiscuous mode [ 203.748590][ T7490] bridge0: port 2(bridge_slave_1) entered blocking state [ 203.796949][ T7490] bridge0: port 2(bridge_slave_1) entered disabled state [ 203.804525][ T7490] bridge_slave_1: entered allmulticast mode [ 203.819098][ T7511] Invalid ELF header magic: != ELF [ 203.825121][ T7490] bridge_slave_1: entered promiscuous mode [ 203.878983][ T7511] Invalid ELF header magic: != ELF [ 203.971859][ T7490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 204.012129][ T7490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 204.038304][ T7513] Invalid ELF header magic: != ELF [ 204.255826][ T7490] team0: Port device team_slave_0 added [ 204.286620][ T7490] team0: Port device team_slave_1 added [ 204.335510][ T7518] netlink: 28 bytes leftover after parsing attributes in process `syz.3.396'. [ 204.437005][ T5841] Bluetooth: hci5: command tx timeout [ 204.448712][ T7490] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 204.476064][ T7490] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.553074][ T7490] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 204.589231][ T7490] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 204.613242][ T7490] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 204.816747][ T7490] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 205.025283][ T7490] hsr_slave_0: entered promiscuous mode [ 205.052546][ T7490] hsr_slave_1: entered promiscuous mode [ 205.071632][ T7490] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 205.141813][ T7490] Cannot create hsr debugfs directory [ 206.286505][ T7490] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 206.366140][ T7490] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 206.441238][ T7530] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 206.501211][ T5841] Bluetooth: hci5: command tx timeout [ 206.531344][ T7530] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 206.537410][ T7530] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 206.677924][ T7530] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 206.684153][ T7490] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 206.714338][ T7490] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 206.735586][ T7530] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 206.841263][ T7530] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 206.870011][ T7552] Ignoring unsupported numa_zonelist_order value: [ 206.870011][ T7552] [ 206.970695][ T7530] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 207.056132][ T7490] 8021q: adding VLAN 0 to HW filter on device bond0 [ 207.154042][ T7490] 8021q: adding VLAN 0 to HW filter on device team0 [ 207.227887][ T1003] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.235067][ T1003] bridge0: port 1(bridge_slave_0) entered forwarding state [ 207.293138][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.300262][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state [ 207.416534][ T7490] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 207.519947][ T7562] Invalid ELF header magic: != ELF [ 207.849258][ T7490] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 207.909708][ T29] audit: type=1800 audit(6035060237.954:3): pid=7574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.410" name="version" dev="configfs" ino=14982 res=0 errno=0 [ 208.072197][ T7566] netlink: 28 bytes leftover after parsing attributes in process `syz.0.407'. [ 208.513040][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout [ 208.534016][ T7490] veth0_vlan: entered promiscuous mode [ 208.545156][ T7490] veth1_vlan: entered promiscuous mode [ 208.581433][ T5841] Bluetooth: hci3: command 0x0c1a tx timeout [ 208.583699][ T5151] Bluetooth: hci1: command 0x0c1a tx timeout [ 208.741988][ T5151] Bluetooth: hci5: command 0x0419 tx timeout [ 208.747465][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout [ 208.831771][ T7490] veth0_macvtap: entered promiscuous mode [ 208.875245][ T7490] veth1_macvtap: entered promiscuous mode [ 208.975231][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 208.998731][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.041135][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 209.094904][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.131123][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 209.149557][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.179807][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 209.210809][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.248822][ T7490] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 209.329201][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 209.384616][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.421868][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 209.451083][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.481040][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 209.515088][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.541211][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 209.571071][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 209.598676][ T7490] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 209.652111][ T7490] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 209.660850][ T7490] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 209.942372][ T7490] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.051027][ T7490] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 210.074514][ T7614] openvswitch: HfR: Dropping previously announced user features [ 210.437673][ T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 210.481951][ T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 210.546613][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 210.575643][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 210.672137][ T7621] Invalid ELF header magic: != ELF [ 210.822641][ T5841] Bluetooth: hci5: command 0x0419 tx timeout [ 211.095307][ T7624] netlink: 28 bytes leftover after parsing attributes in process `syz.3.422'. [ 211.489305][ T63] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.553174][ T7633] netlink: 28 bytes leftover after parsing attributes in process `syz.4.388'. [ 211.705016][ T63] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 211.916131][ T7645] netlink: 8 bytes leftover after parsing attributes in process `syz.3.425'. [ 211.973066][ T63] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.193071][ T63] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.200683][ T7649] netlink: 326 bytes leftover after parsing attributes in process `syz.2.427'. [ 212.241842][ T7649] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 212.244695][ T7649] bridge0: port 3(vlan1) entered disabled state [ 212.244883][ T7649] bridge0: port 2(bridge_slave_1) entered disabled state [ 212.245815][ T7649] bridge0: port 1(bridge_slave_0) entered disabled state [ 212.529917][ T63] bridge_slave_1: left allmulticast mode [ 212.897045][ T63] bridge_slave_1: left promiscuous mode [ 212.898505][ T63] bridge0: port 2(bridge_slave_1) entered disabled state [ 212.911096][ T5841] Bluetooth: hci5: command 0x0419 tx timeout [ 213.325004][ T63] bridge_slave_0: left allmulticast mode [ 213.325035][ T63] bridge_slave_0: left promiscuous mode [ 213.325194][ T63] bridge0: port 1(bridge_slave_0) entered disabled state [ 213.636779][ T7666] FAULT_INJECTION: forcing a failure. [ 213.636779][ T7666] name failslab, interval 1, probability 0, space 0, times 0 [ 213.731748][ T7669] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 213.736746][ T7666] CPU: 1 UID: 0 PID: 7666 Comm: syz.3.430 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 213.736774][ T7666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 213.736787][ T7666] Call Trace: [ 213.736794][ T7666] [ 213.736802][ T7666] dump_stack_lvl+0x16c/0x1f0 [ 213.736836][ T7666] should_fail_ex+0x50a/0x650 [ 213.736869][ T7666] ? fs_reclaim_acquire+0xae/0x150 [ 213.736900][ T7666] ? madvise_collapse+0x1cc/0xb10 [ 213.736923][ T7666] should_failslab+0xc2/0x120 [ 213.736945][ T7666] __kmalloc_cache_noprof+0x68/0x410 [ 213.736991][ T7666] madvise_collapse+0x1cc/0xb10 [ 213.737020][ T7666] ? mtree_range_walk+0x715/0xbe0 [ 213.737044][ T7666] ? __pfx_madvise_collapse+0x10/0x10 [ 213.737073][ T7666] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 213.737112][ T7666] madvise_vma_behavior+0xbb8/0x1de0 [ 213.737142][ T7666] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 213.737169][ T7666] ? find_vma_prev+0xdb/0x160 [ 213.737198][ T7666] ? __pfx_find_vma_prev+0x10/0x10 [ 213.737233][ T7666] ? __pfx_rwsem_read_trylock+0x10/0x10 [ 213.737268][ T7666] ? do_madvise+0x2b3/0x7c0 [ 213.737295][ T7666] ? __pfx_madvise_vma_behavior+0x10/0x10 [ 213.737318][ T7666] madvise_walk_vmas+0x1cf/0x2c0 [ 213.737343][ T7666] ? __pfx_madvise_walk_vmas+0x10/0x10 [ 213.737375][ T7666] do_madvise+0x366/0x7c0 [ 213.737403][ T7666] ? __pfx_do_madvise+0x10/0x10 [ 213.737435][ T7666] ? ksys_write+0x1ba/0x250 [ 213.737465][ T7666] ? __pfx_ksys_write+0x10/0x10 [ 213.737500][ T7666] __x64_sys_madvise+0xa9/0x110 [ 213.737523][ T7666] ? lockdep_hardirqs_on+0x7c/0x110 [ 213.737549][ T7666] do_syscall_64+0xcd/0x250 [ 213.737578][ T7666] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 213.737608][ T7666] RIP: 0033:0x7f113d78d0a9 [ 213.737626][ T7666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 213.737646][ T7666] RSP: 002b:00007f113e58a038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c [ 213.737667][ T7666] RAX: ffffffffffffffda RBX: 00007f113d9a6080 RCX: 00007f113d78d0a9 [ 213.737682][ T7666] RDX: 0000000000000019 RSI: ffffffffffff0005 RDI: 0000000000000000 [ 213.737695][ T7666] RBP: 00007f113e58a090 R08: 0000000000000000 R09: 0000000000000000 [ 213.737708][ T7666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 213.737721][ T7666] R13: 0000000000000000 R14: 00007f113d9a6080 R15: 00007ffd2305c948 [ 213.737750][ T7666] [ 214.069228][ T7675] Invalid ELF header magic: != ELF [ 214.397420][ T7686] FAULT_INJECTION: forcing a failure. [ 214.397420][ T7686] name failslab, interval 1, probability 0, space 0, times 0 [ 214.459042][ T7686] CPU: 0 UID: 0 PID: 7686 Comm: syz.4.437 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 214.459074][ T7686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 214.459086][ T7686] Call Trace: [ 214.459092][ T7686] [ 214.459101][ T7686] dump_stack_lvl+0x16c/0x1f0 [ 214.459134][ T7686] should_fail_ex+0x50a/0x650 [ 214.459167][ T7686] ? fs_reclaim_acquire+0xae/0x150 [ 214.459205][ T7686] ? iter_file_splice_write+0x1cd/0x10b0 [ 214.459234][ T7686] should_failslab+0xc2/0x120 [ 214.459256][ T7686] __kmalloc_noprof+0xcb/0x510 [ 214.459295][ T7686] iter_file_splice_write+0x1cd/0x10b0 [ 214.459335][ T7686] ? __pfx___lock_acquire+0x10/0x10 [ 214.459368][ T7686] ? __pfx_iter_file_splice_write+0x10/0x10 [ 214.459411][ T7686] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 214.459449][ T7686] ? splice_direct_to_actor+0x346/0xa40 [ 214.459481][ T7686] ? __pfx_iter_file_splice_write+0x10/0x10 [ 214.459514][ T7686] direct_splice_actor+0x18f/0x6c0 [ 214.459547][ T7686] splice_direct_to_actor+0x346/0xa40 [ 214.459577][ T7686] ? __pfx_direct_splice_actor+0x10/0x10 [ 214.459612][ T7686] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 214.459644][ T7686] ? __fget_files+0x1fc/0x3a0 [ 214.459678][ T7686] do_splice_direct+0x178/0x250 [ 214.459707][ T7686] ? __pfx_do_splice_direct+0x10/0x10 [ 214.459738][ T7686] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 214.459772][ T7686] ? rw_verify_area+0xcf/0x680 [ 214.459802][ T7686] do_sendfile+0xafb/0xe40 [ 214.459838][ T7686] ? __pfx_do_sendfile+0x10/0x10 [ 214.459867][ T7686] ? __fget_files+0x206/0x3a0 [ 214.459906][ T7686] __x64_sys_sendfile64+0x1da/0x220 [ 214.459927][ T7686] ? ksys_write+0x1ba/0x250 [ 214.459955][ T7686] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 214.459989][ T7686] do_syscall_64+0xcd/0x250 [ 214.460018][ T7686] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.460049][ T7686] RIP: 0033:0x7f3bda38d0a9 [ 214.460067][ T7686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.460087][ T7686] RSP: 002b:00007f3bdb17f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 214.460108][ T7686] RAX: ffffffffffffffda RBX: 00007f3bda5a5fa0 RCX: 00007f3bda38d0a9 [ 214.460123][ T7686] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004 [ 214.460136][ T7686] RBP: 00007f3bdb17f090 R08: 0000000000000000 R09: 0000000000000000 [ 214.460149][ T7686] R10: 000000007ffff004 R11: 0000000000000246 R12: 0000000000000001 [ 214.460163][ T7686] R13: 0000000000000000 R14: 00007f3bda5a5fa0 R15: 00007ffc730aa6c8 [ 214.460199][ T7686] [ 214.463617][ T7678] netlink: 28 bytes leftover after parsing attributes in process `syz.0.434'. [ 214.982647][ T5841] Bluetooth: hci5: command 0x0419 tx timeout [ 215.529197][ T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 215.553845][ T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 215.604445][ T63] bond0 (unregistering): Released all slaves [ 216.226955][ T7719] Invalid ELF header magic: != ELF [ 217.395758][ T7705] kexec: Could not allocate control_code_buffer [ 217.617123][ T63] hsr_slave_0: left promiscuous mode [ 217.646062][ T63] hsr_slave_1: left promiscuous mode [ 217.646649][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 217.646703][ T63] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 217.733155][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 217.733186][ T63] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 217.792369][ T63] veth1_macvtap: left promiscuous mode [ 217.792667][ T63] veth0_macvtap: left promiscuous mode [ 217.794049][ T63] veth1_vlan: left promiscuous mode [ 217.794329][ T63] veth0_vlan: left promiscuous mode [ 218.096672][ T7715] tty tty63: ldisc open failed (-12), clearing slot 62 [ 218.795790][ T7770] Invalid ELF header magic: != ELF [ 218.846206][ T7773] Invalid ELF header magic: != ELF [ 219.103711][ T7766] slcan: can't register candev [ 219.109003][ T7766] Falling back ldisc for pty96. [ 219.679029][ T63] team0 (unregistering): Port device team_slave_1 removed [ 219.686294][ T7775] netlink: 28 bytes leftover after parsing attributes in process `syz.2.454'. [ 219.841591][ T63] team0 (unregistering): Port device team_slave_0 removed [ 220.861889][ T7772] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 220.881840][ T7772] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 220.888841][ T7772] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 220.904244][ T7772] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 222.680878][ T7825] Invalid ELF header magic: != ELF [ 222.909596][ T5841] Bluetooth: hci0: command 0x0c1a tx timeout [ 222.915715][ T5841] Bluetooth: hci1: command 0x0c1a tx timeout [ 222.921799][ T5151] Bluetooth: hci2: command 0x0c1a tx timeout [ 222.981124][ T5847] Bluetooth: hci5: command 0x0419 tx timeout [ 223.654933][ T7845] Invalid ELF header magic: != ELF [ 224.542385][ T7881] netlink: 60 bytes leftover after parsing attributes in process `syz.4.477'. [ 224.618601][ T7884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.479'. [ 225.389422][ T7913] netlink: 20 bytes leftover after parsing attributes in process `syz.0.484'. [ 225.967348][ T7921] FAULT_INJECTION: forcing a failure. [ 225.967348][ T7921] name fail_futex, interval 1, probability 0, space 0, times 0 [ 225.983120][ T7921] CPU: 1 UID: 0 PID: 7921 Comm: syz.0.486 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 225.983151][ T7921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 225.983173][ T7921] Call Trace: [ 225.983180][ T7921] [ 225.983190][ T7921] dump_stack_lvl+0x16c/0x1f0 [ 225.983226][ T7921] should_fail_ex+0x50a/0x650 [ 225.983263][ T7921] ? __pfx___lock_acquire+0x10/0x10 [ 225.983298][ T7921] get_futex_key+0x4a3/0x1000 [ 225.983330][ T7921] ? __pfx_get_futex_key+0x10/0x10 [ 225.983359][ T7921] ? hlock_class+0x4e/0x130 [ 225.983384][ T7921] ? __lock_acquire+0x15a9/0x3c40 [ 225.983421][ T7921] futex_wait_setup+0x78/0x290 [ 225.983463][ T7921] __futex_wait+0x267/0x3c0 [ 225.983498][ T7921] ? __pfx___futex_wait+0x10/0x10 [ 225.983539][ T7921] ? __pfx_futex_wake_mark+0x10/0x10 [ 225.983579][ T7921] ? fd_install+0x223/0x750 [ 225.983617][ T7921] futex_wait+0xe9/0x380 [ 225.983650][ T7921] ? __pfx_futex_wait+0x10/0x10 [ 225.983691][ T7921] ? rcu_is_watching+0x12/0xc0 [ 225.983716][ T7921] ? io_uring_setup+0x1762/0x2200 [ 225.983746][ T7921] do_futex+0x22b/0x350 [ 225.983775][ T7921] ? __pfx_do_futex+0x10/0x10 [ 225.983811][ T7921] __x64_sys_futex+0x1e1/0x4c0 [ 225.983844][ T7921] ? __pfx___x64_sys_futex+0x10/0x10 [ 225.983873][ T7921] ? rcu_is_watching+0x12/0xc0 [ 225.983907][ T7921] do_syscall_64+0xcd/0x250 [ 225.983940][ T7921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 225.983972][ T7921] RIP: 0033:0x7fb99258d0a9 [ 225.983992][ T7921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 225.984016][ T7921] RSP: 002b:00007fb9933740e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 225.984039][ T7921] RAX: ffffffffffffffda RBX: 00007fb9927a5fa8 RCX: 00007fb99258d0a9 [ 225.984063][ T7921] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb9927a5fa8 [ 225.984078][ T7921] RBP: 00007fb9927a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 225.984092][ T7921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb9927a5fac [ 225.984107][ T7921] R13: 0000000000000000 R14: 00007ffe9750f550 R15: 00007ffe9750f638 [ 225.984139][ T7921] [ 226.085946][ T7935] program syz.3.487 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 226.153754][ C0] vkms_vblank_simulate: vblank timer overrun [ 226.862473][ T7954] netlink: 'syz.2.492': attribute type 2 has an invalid length. [ 226.870198][ T7954] netlink: 12 bytes leftover after parsing attributes in process `syz.2.492'. [ 228.518006][ T8001] Invalid ELF header magic: != ELF [ 231.164546][ T8069] Invalid ELF header magic: != ELF [ 231.486753][ T29] audit: type=1800 audit(6035060261.534:4): pid=8078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.512" name="SYSV0000000a" dev="hugetlbfs" ino=0 res=0 errno=0 [ 233.780775][ T8134] bridge0: port 3(veth0_to_bridge) entered blocking state [ 233.840025][ T8134] bridge0: port 3(veth0_to_bridge) entered disabled state [ 233.862523][ T8134] veth0_to_bridge: entered allmulticast mode [ 233.898543][ T8134] veth0_to_bridge: entered promiscuous mode [ 233.926824][ T8134] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 233.961744][ T8134] bridge0: port 3(veth0_to_bridge) entered blocking state [ 233.968977][ T8134] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 237.233422][ T8160] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 237.924520][ T8197] can: request_module (can-proto-0) failed. [ 238.940422][ T8234] netlink: 836 bytes leftover after parsing attributes in process `syz.2.547'. [ 243.945792][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 243.952189][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 244.809146][ T8353] FAULT_INJECTION: forcing a failure. [ 244.809146][ T8353] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 244.904236][ T8357] netlink: 12 bytes leftover after parsing attributes in process `syz.0.569'. [ 244.923806][ T8354] HfR: entered promiscuous mode [ 244.978765][ T8357] HfR: left promiscuous mode [ 244.980054][ T8353] CPU: 0 UID: 0 PID: 8353 Comm: syz.2.568 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 244.980082][ T8353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 244.980094][ T8353] Call Trace: [ 244.980101][ T8353] [ 244.980110][ T8353] dump_stack_lvl+0x16c/0x1f0 [ 244.980142][ T8353] should_fail_ex+0x50a/0x650 [ 244.980181][ T8353] _copy_from_user+0x2e/0xd0 [ 244.980206][ T8353] kstrtouint_from_user+0xd7/0x1c0 [ 244.980235][ T8353] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 244.980274][ T8353] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 244.980309][ T8353] proc_fail_nth_write+0x84/0x250 [ 244.980336][ T8353] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 244.980360][ T8353] ? ksys_write+0x12b/0x250 [ 244.980397][ T8353] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 244.980422][ T8353] vfs_write+0x24c/0x1150 [ 244.980452][ T8353] ? __fget_files+0x1fc/0x3a0 [ 244.980482][ T8353] ? __pfx___mutex_lock+0x10/0x10 [ 244.980509][ T8353] ? __pfx_vfs_write+0x10/0x10 [ 244.980547][ T8353] ? __fget_files+0x206/0x3a0 [ 244.980586][ T8353] ksys_write+0x12b/0x250 [ 244.980615][ T8353] ? __pfx_ksys_write+0x10/0x10 [ 244.980653][ T8353] do_syscall_64+0xcd/0x250 [ 244.980682][ T8353] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 244.980713][ T8353] RIP: 0033:0x7f7b2a78bb5f [ 244.980731][ T8353] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 244.980750][ T8353] RSP: 002b:00007f7b2b578030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 244.980772][ T8353] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7b2a78bb5f [ 244.980786][ T8353] RDX: 0000000000000001 RSI: 00007f7b2b5780a0 RDI: 0000000000000003 [ 244.980799][ T8353] RBP: 00007f7b2b578090 R08: 0000000000000000 R09: 0000000000000000 [ 244.980812][ T8353] R10: 0000000000000002 R11: 0000000000000293 R12: 0000000000000001 [ 244.980825][ T8353] R13: 0000000000000000 R14: 00007f7b2a9a6080 R15: 00007ffdb585d1e8 [ 244.980855][ T8353] [ 245.649293][ T8356] netlink: 306 bytes leftover after parsing attributes in process `syz.3.570'. [ 245.734582][ T8370] FAULT_INJECTION: forcing a failure. [ 245.734582][ T8370] name failslab, interval 1, probability 0, space 0, times 0 [ 245.821115][ T8370] CPU: 0 UID: 0 PID: 8370 Comm: syz.4.571 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 245.821167][ T8370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 245.821182][ T8370] Call Trace: [ 245.821189][ T8370] [ 245.821199][ T8370] dump_stack_lvl+0x16c/0x1f0 [ 245.821235][ T8370] should_fail_ex+0x50a/0x650 [ 245.821273][ T8370] ? fs_reclaim_acquire+0xae/0x150 [ 245.821305][ T8370] ? realloc_user_queue+0x278/0x310 [ 245.821333][ T8370] should_failslab+0xc2/0x120 [ 245.821358][ T8370] __kmalloc_noprof+0xcb/0x510 [ 245.821390][ T8370] ? lockdep_init_map_type+0x16d/0x7d0 [ 245.821431][ T8370] realloc_user_queue+0x278/0x310 [ 245.821457][ T8370] ? __pfx_snd_timer_user_open+0x10/0x10 [ 245.821485][ T8370] ? __pfx_snd_timer_user_open+0x10/0x10 [ 245.821514][ T8370] snd_timer_user_open+0xfc/0x180 [ 245.821541][ T8370] snd_open+0x1fe/0x450 [ 245.821565][ T8370] ? __pfx_snd_open+0x10/0x10 [ 245.821587][ T8370] chrdev_open+0x237/0x6a0 [ 245.821621][ T8370] ? __pfx_apparmor_file_open+0x10/0x10 [ 245.821651][ T8370] ? __pfx_chrdev_open+0x10/0x10 [ 245.821688][ T8370] ? file_set_fsnotify_mode_from_watchers+0x163/0x640 [ 245.821725][ T8370] do_dentry_open+0x735/0x1c40 [ 245.821760][ T8370] ? __pfx_chrdev_open+0x10/0x10 [ 245.821797][ T8370] ? inode_permission+0xdd/0x5f0 [ 245.821826][ T8370] vfs_open+0x82/0x3f0 [ 245.821848][ T8370] ? may_open+0x1f2/0x400 [ 245.821877][ T8370] path_openat+0x1e88/0x2d80 [ 245.821922][ T8370] ? __pfx_path_openat+0x10/0x10 [ 245.821955][ T8370] ? __pfx___lock_acquire+0x10/0x10 [ 245.821985][ T8370] ? lock_acquire.part.0+0x11b/0x380 [ 245.822017][ T8370] ? find_held_lock+0x2d/0x110 [ 245.822047][ T8370] do_filp_open+0x20c/0x470 [ 245.822080][ T8370] ? __pfx_do_filp_open+0x10/0x10 [ 245.822111][ T8370] ? find_held_lock+0x2d/0x110 [ 245.822166][ T8370] ? alloc_fd+0x41f/0x760 [ 245.822207][ T8370] do_sys_openat2+0x17a/0x1e0 [ 245.822232][ T8370] ? __pfx_do_sys_openat2+0x10/0x10 [ 245.822256][ T8370] ? __sys_sendmsg+0x19a/0x220 [ 245.822293][ T8370] __x64_sys_openat+0x175/0x210 [ 245.822317][ T8370] ? __pfx___x64_sys_openat+0x10/0x10 [ 245.822353][ T8370] do_syscall_64+0xcd/0x250 [ 245.822383][ T8370] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 245.822413][ T8370] RIP: 0033:0x7f3bda38d0a9 [ 245.822431][ T8370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 245.822451][ T8370] RSP: 002b:00007f3bdb17f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 245.822473][ T8370] RAX: ffffffffffffffda RBX: 00007f3bda5a5fa0 RCX: 00007f3bda38d0a9 [ 245.822488][ T8370] RDX: 0000000000000100 RSI: 00004000000001c0 RDI: ffffffffffffff9c [ 245.822502][ T8370] RBP: 00007f3bda40e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 245.822515][ T8370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 245.822528][ T8370] R13: 0000000000000000 R14: 00007f3bda5a5fa0 R15: 00007ffc730aa6c8 [ 245.822556][ T8370] [ 246.194403][ T8375] netlink: 8 bytes leftover after parsing attributes in process `syz.0.573'. [ 246.998209][ T8395] Invalid ELF header magic: != ELF [ 247.406188][ T8407] can: request_module (can-proto-0) failed. [ 247.846483][ T8417] netlink: 146 bytes leftover after parsing attributes in process `syz.3.580'. [ 248.296893][ T8431] Invalid ELF header magic: != ELF [ 249.771057][ T8469] can: request_module (can-proto-5) failed. [ 250.691264][ T8488] random: crng reseeded on system resumption [ 254.126849][ T8488] kexec: Could not allocate control_code_buffer [ 254.632219][ T8562] syz.2.604 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 255.565358][ T8581] FAULT_INJECTION: forcing a failure. [ 255.565358][ T8581] name failslab, interval 1, probability 0, space 0, times 0 [ 255.578159][ T8581] CPU: 1 UID: 0 PID: 8581 Comm: syz.0.609 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 255.578190][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 255.578204][ T8581] Call Trace: [ 255.578211][ T8581] [ 255.578221][ T8581] dump_stack_lvl+0x16c/0x1f0 [ 255.578258][ T8581] should_fail_ex+0x50a/0x650 [ 255.578296][ T8581] ? fs_reclaim_acquire+0xae/0x150 [ 255.578331][ T8581] should_failslab+0xc2/0x120 [ 255.578356][ T8581] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 255.578393][ T8581] ? __xlate_proc_name+0x173/0x210 [ 255.578427][ T8581] ? __proc_create+0x2c0/0x8b0 [ 255.578472][ T8581] __proc_create+0x2c0/0x8b0 [ 255.578510][ T8581] ? __pfx___proc_create+0x10/0x10 [ 255.578551][ T8581] ? _raw_write_unlock+0x28/0x50 [ 255.578590][ T8581] proc_create_reg+0x7d/0x180 [ 255.578616][ T8581] proc_create_net_data+0x8f/0x1b0 [ 255.578655][ T8581] ? __pfx_proc_create_net_data+0x10/0x10 [ 255.578698][ T8581] ? __pfx_inet_init_net+0x10/0x10 [ 255.578733][ T8581] ? __pfx_raw_init_net+0x10/0x10 [ 255.578768][ T8581] raw_init_net+0x57/0x80 [ 255.578801][ T8581] ops_init+0x1df/0x5f0 [ 255.578840][ T8581] setup_net+0x21f/0x860 [ 255.578878][ T8581] ? __pfx_setup_net+0x10/0x10 [ 255.578911][ T8581] ? down_read_killable+0xcc/0x380 [ 255.578943][ T8581] ? __pfx_down_read_killable+0x10/0x10 [ 255.578982][ T8581] ? __raw_spin_lock_init+0x3a/0x110 [ 255.579026][ T8581] ? debug_mutex_init+0x37/0x70 [ 255.579056][ T8581] copy_net_ns+0x2b4/0x6c0 [ 255.579084][ T8581] create_new_namespaces+0x3ea/0xad0 [ 255.579129][ T8581] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 255.579170][ T8581] ksys_unshare+0x45d/0xa40 [ 255.579195][ T8581] ? __pfx_ksys_unshare+0x10/0x10 [ 255.579218][ T8581] ? xfd_validate_state+0x5d/0x180 [ 255.579262][ T8581] __x64_sys_unshare+0x31/0x40 [ 255.579287][ T8581] do_syscall_64+0xcd/0x250 [ 255.579318][ T8581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 255.579352][ T8581] RIP: 0033:0x7fb99258d0a9 [ 255.579371][ T8581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 255.579393][ T8581] RSP: 002b:00007fb993353038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 255.579416][ T8581] RAX: ffffffffffffffda RBX: 00007fb9927a6080 RCX: 00007fb99258d0a9 [ 255.579433][ T8581] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 255.579447][ T8581] RBP: 00007fb99260e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 255.579462][ T8581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 255.579477][ T8581] R13: 0000000000000000 R14: 00007fb9927a6080 R15: 00007ffe9750f638 [ 255.579509][ T8581] [ 256.021598][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.027932][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 257.121294][ T8591] Invalid ELF header magic: != ELF [ 258.912927][ T8604] Invalid ELF header magic: != ELF [ 260.742439][ T8620] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78800 [ 260.799946][ T8620] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 260.874254][ T8620] memcg:ffff88807df25bc1 [ 260.926898][ T8620] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 260.988963][ T8620] page_type: f5(slab) [ 261.055150][ T8620] raw: 00fff00000000040 ffff88801b04f500 ffffea0000945a00 dead000000000003 [ 261.151303][ T8620] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88807df25bc1 [ 261.159958][ T8620] head: 00fff00000000040 ffff88801b04f500 ffffea0000945a00 dead000000000003 [ 261.281062][ T8620] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88807df25bc1 [ 261.289800][ T8620] head: 00fff00000000003 ffffea0001e20001 ffffffffffffffff 0000000000000000 [ 261.371301][ T8620] head: 0000000700000008 0000000000000000 00000000ffffffff 0000000000000000 [ 261.411655][ T8620] page dumped because: unmovable page [ 261.417088][ T8620] page_owner tracks the page as allocated [ 261.461403][ T8620] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5834, tgid 5834 (syz-executor), ts 66809874746, free_ts 65565812267 [ 261.494503][ T8632] device-mapper: ioctl: device name cannot contain '/' [ 261.561017][ T8620] post_alloc_hook+0x181/0x1b0 [ 261.565880][ T8620] get_page_from_freelist+0xfce/0x2f80 [ 261.636613][ T8620] __alloc_frozen_pages_noprof+0x221/0x2470 [ 261.651047][ T8620] alloc_pages_mpol+0x1fc/0x540 [ 261.655958][ T8620] new_slab+0x23d/0x330 [ 261.660162][ T8620] ___slab_alloc+0xc5d/0x1720 [ 262.256794][ T8620] __slab_alloc.constprop.0+0x56/0xb0 [ 262.301125][ T8620] __kmalloc_cache_noprof+0xfa/0x410 [ 262.336119][ T8620] ipv6_add_dev+0x5ed/0x13f0 [ 262.340779][ T8620] addrconf_notify+0x53e/0x19c0 [ 262.385705][ T8620] notifier_call_chain+0xb7/0x410 [ 262.411056][ T8620] call_netdevice_notifiers_info+0xbe/0x140 [ 262.449089][ T8620] register_netdevice+0x17c2/0x1eb0 [ 262.515639][ T8620] wg_newlink+0x376/0x700 [ 262.530672][ T8620] rtnl_newlink+0xb95/0x1d60 [ 262.585997][ T8620] rtnetlink_rcv_msg+0x95b/0xea0 [ 262.611050][ T8620] page last free pid 5824 tgid 5824 stack trace: [ 262.641130][ T8620] free_unref_folios+0xa7b/0x1500 [ 262.679668][ T8620] folios_put_refs+0x587/0x7b0 [ 262.705125][ T8620] free_pages_and_swap_cache+0x351/0x500 [ 262.710822][ T8620] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 262.751039][ T8620] tlb_finish_mmu+0x168/0x7b0 [ 262.755788][ T8620] vms_clear_ptes+0x560/0x770 [ 262.811051][ T8620] vms_complete_munmap_vmas+0x1ca/0x970 [ 262.826950][ T8620] do_vmi_align_munmap+0x619/0x890 [ 262.851093][ T8620] do_vmi_munmap+0x208/0x3e0 [ 262.855741][ T8620] __vm_munmap+0x19b/0x390 [ 262.940883][ T8620] __x64_sys_munmap+0x59/0x80 [ 262.967140][ T8620] do_syscall_64+0xcd/0x250 [ 263.014644][ T8620] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.057277][ T5939] Process accounting resumed [ 263.057756][ T29] audit: type=1800 audit(6035060293.094:5): pid=8643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.626" name="dbroot" dev="configfs" ino=19795 res=0 errno=0 [ 265.054250][ T5841] Bluetooth: hci5: unexpected event 0x35 length: 13 > 6 [ 268.871689][ T8730] queue_state_write: operation too long [ 268.931042][ T8730] queue_state_write: use 'run', 'start' or 'kick' [ 270.877876][ T8780] FAULT_INJECTION: forcing a failure. [ 270.877876][ T8780] name failslab, interval 1, probability 0, space 0, times 0 [ 270.941221][ T8780] CPU: 1 UID: 0 PID: 8780 Comm: syz.0.668 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 270.941253][ T8780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 270.941266][ T8780] Call Trace: [ 270.941273][ T8780] [ 270.941282][ T8780] dump_stack_lvl+0x16c/0x1f0 [ 270.941316][ T8780] should_fail_ex+0x50a/0x650 [ 270.941351][ T8780] ? fs_reclaim_acquire+0xae/0x150 [ 270.941391][ T8780] should_failslab+0xc2/0x120 [ 270.941415][ T8780] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 270.941453][ T8780] ? getname_flags.part.0+0x4c/0x550 [ 270.941485][ T8780] getname_flags.part.0+0x4c/0x550 [ 270.941516][ T8780] getname+0x8d/0xe0 [ 270.941546][ T8780] do_sys_openat2+0x104/0x1e0 [ 270.941572][ T8780] ? __pfx_do_sys_openat2+0x10/0x10 [ 270.941600][ T8780] ? __pfx___might_resched+0x10/0x10 [ 270.941644][ T8780] __x64_sys_openat+0x175/0x210 [ 270.941670][ T8780] ? __pfx___x64_sys_openat+0x10/0x10 [ 270.941718][ T8780] do_syscall_64+0xcd/0x250 [ 270.941752][ T8780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.941785][ T8780] RIP: 0033:0x7fb99258d0a9 [ 270.941805][ T8780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.941827][ T8780] RSP: 002b:00007fb993374038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 270.941850][ T8780] RAX: ffffffffffffffda RBX: 00007fb9927a5fa0 RCX: 00007fb99258d0a9 [ 270.941866][ T8780] RDX: 0000000000000000 RSI: 0000400000000200 RDI: ffffffffffffff9c [ 270.941881][ T8780] RBP: 00007fb99260e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 270.941896][ T8780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.941910][ T8780] R13: 0000000000000000 R14: 00007fb9927a5fa0 R15: 00007ffe9750f638 [ 270.941941][ T8780] [ 271.127549][ C1] vkms_vblank_simulate: vblank timer overrun [ 271.412455][ T5841] Bluetooth: hci0: Unable to find connection for big 0xd2 [ 273.068413][ T8806] netlink: 28 bytes leftover after parsing attributes in process `syz.3.672'. [ 279.886933][ T8908] Invalid ELF header magic: != ELF [ 281.836577][ T8920] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x7f30c31d9 pfn:0x78808 [ 281.856153][ T8920] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 281.889426][ T8920] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 281.923300][ T8920] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 281.965783][ T8920] raw: 00000007f30c31d9 0000000000000000 00000001ffffffff 0000000000000000 [ 282.054418][ T8920] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 282.153696][ T8920] head: 00000007f30c31d9 0000000000000000 00000001ffffffff 0000000000000000 [ 282.216933][ T8920] head: 00fff00000000003 ffffea0001e20201 ffffffffffffffff 0000000000000000 [ 282.295350][ T8920] head: 0000000700000008 0000000000000000 00000000ffffffff 0000000000000000 [ 282.351199][ T8920] page dumped because: unmovable page [ 282.381095][ T8920] page_owner tracks the page as allocated [ 282.431044][ T8920] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x446dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP|__GFP_ZERO), pid 5835, tgid 5835 (syz-executor), ts 66818920992, free_ts 65565882857 [ 282.581085][ T8920] post_alloc_hook+0x181/0x1b0 [ 282.585973][ T8920] get_page_from_freelist+0xfce/0x2f80 [ 282.613887][ T8920] __alloc_frozen_pages_noprof+0x221/0x2470 [ 282.619890][ T8920] __alloc_pages_noprof+0xb/0x1b0 [ 282.701053][ T8920] ___kmalloc_large_node+0x84/0x1b0 [ 282.706365][ T8920] __kmalloc_large_node_noprof+0x1c/0x70 [ 282.771059][ T8920] __kmalloc_node_noprof.cold+0x5/0x5f [ 282.776597][ T8920] __kvmalloc_node_noprof+0x6f/0x1a0 [ 282.821271][ T8920] alloc_netdev_mqs+0xd9/0x15d0 [ 282.826219][ T8920] rtnl_create_link+0xc10/0xfa0 [ 282.901169][ T8920] rtnl_newlink+0x14c6/0x1d60 [ 282.920875][ T8920] rtnetlink_rcv_msg+0x95b/0xea0 [ 282.975486][ T8920] netlink_rcv_skb+0x16b/0x440 [ 282.980340][ T8920] netlink_unicast+0x53c/0x7f0 [ 283.031015][ T8920] netlink_sendmsg+0x8b8/0xd70 [ 283.038172][ T8920] __sys_sendto+0x488/0x4f0 [ 283.091056][ T8920] page last free pid 5824 tgid 5824 stack trace: [ 283.111067][ T8920] free_unref_folios+0xa7b/0x1500 [ 283.116177][ T8920] folios_put_refs+0x587/0x7b0 [ 283.171040][ T8920] free_pages_and_swap_cache+0x351/0x500 [ 283.241448][ T8920] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 283.247519][ T8920] tlb_finish_mmu+0x168/0x7b0 [ 283.281038][ T8920] vms_clear_ptes+0x560/0x770 [ 283.321047][ T8920] vms_complete_munmap_vmas+0x1ca/0x970 [ 283.340903][ T8920] do_vmi_align_munmap+0x619/0x890 [ 283.346377][ T8920] do_vmi_munmap+0x208/0x3e0 [ 283.381107][ T8920] __vm_munmap+0x19b/0x390 [ 283.385677][ T8920] __x64_sys_munmap+0x59/0x80 [ 283.390439][ T8920] do_syscall_64+0xcd/0x250 [ 283.441052][ T8920] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.696403][ T8929] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x7f30c31d9 pfn:0x78808 [ 283.721037][ T8929] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 283.830204][ T8929] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 283.902989][ T8929] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 283.951490][ T8929] raw: 00000007f30c31d9 0000000000000000 00000001ffffffff 0000000000000000 [ 284.001048][ T8929] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000 [ 284.021247][ T8929] head: 00000007f30c31d9 0000000000000000 00000001ffffffff 0000000000000000 [ 284.029999][ T8929] head: 00fff00000000003 ffffea0001e20201 ffffffffffffffff 0000000000000000 [ 284.064985][ T8929] head: 0000000700000008 0000000000000000 00000000ffffffff 0000000000000000 [ 284.121188][ T8929] page dumped because: unmovable page [ 284.126630][ T8929] page_owner tracks the page as allocated [ 284.201125][ T8929] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x446dc0(GFP_KERNEL_ACCOUNT|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP|__GFP_ZERO), pid 5835, tgid 5835 (syz-executor), ts 66818920992, free_ts 65565882857 [ 284.321014][ T8929] post_alloc_hook+0x181/0x1b0 [ 284.325891][ T8929] get_page_from_freelist+0xfce/0x2f80 [ 284.381012][ T8929] __alloc_frozen_pages_noprof+0x221/0x2470 [ 284.441047][ T8929] __alloc_pages_noprof+0xb/0x1b0 [ 284.471035][ T8929] ___kmalloc_large_node+0x84/0x1b0 [ 284.476320][ T8929] __kmalloc_large_node_noprof+0x1c/0x70 [ 284.543256][ T8929] __kmalloc_node_noprof.cold+0x5/0x5f [ 284.548796][ T8929] __kvmalloc_node_noprof+0x6f/0x1a0 [ 284.591046][ T8929] alloc_netdev_mqs+0xd9/0x15d0 [ 284.595975][ T8929] rtnl_create_link+0xc10/0xfa0 [ 284.600871][ T8929] rtnl_newlink+0x14c6/0x1d60 [ 284.665961][ T8929] rtnetlink_rcv_msg+0x95b/0xea0 [ 284.701050][ T8929] netlink_rcv_skb+0x16b/0x440 [ 284.705917][ T8929] netlink_unicast+0x53c/0x7f0 [ 284.710729][ T8929] netlink_sendmsg+0x8b8/0xd70 [ 284.771062][ T8929] __sys_sendto+0x488/0x4f0 [ 284.776403][ T8929] page last free pid 5824 tgid 5824 stack trace: [ 284.793045][ T8929] free_unref_folios+0xa7b/0x1500 [ 284.798139][ T8929] folios_put_refs+0x587/0x7b0 [ 284.921045][ T8929] free_pages_and_swap_cache+0x351/0x500 [ 284.926760][ T8929] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 285.001072][ T8929] tlb_finish_mmu+0x168/0x7b0 [ 285.005863][ T8929] vms_clear_ptes+0x560/0x770 [ 285.010582][ T8929] vms_complete_munmap_vmas+0x1ca/0x970 [ 285.100993][ T8929] do_vmi_align_munmap+0x619/0x890 [ 285.106229][ T8929] do_vmi_munmap+0x208/0x3e0 [ 285.110872][ T8929] __vm_munmap+0x19b/0x390 [ 285.161005][ T8929] __x64_sys_munmap+0x59/0x80 [ 285.165765][ T8929] do_syscall_64+0xcd/0x250 [ 285.170339][ T8929] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.295332][ T8978] netlink: 8 bytes leftover after parsing attributes in process `syz.3.712'. [ 288.359009][ T8972] svc: failed to register nfsdv3 RPC service (errno 111). [ 288.417781][ T8977] Invalid ELF header magic: != ELF [ 288.468331][ T8972] svc: failed to register nfsaclv3 RPC service (errno 111). [ 288.951969][ T8979] netlink: 28 bytes leftover after parsing attributes in process `syz.4.713'. [ 289.581073][ T8979] netdevsim netdevsim4 netdevsim1: entered allmulticast mode [ 289.701244][ T8970] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 289.707365][ T8970] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 289.731563][ T8970] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 289.737663][ T8970] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 289.841423][ T8980] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_cmd_wq": -EINTR [ 291.159091][ T9002] Invalid ELF header magic: != ELF [ 291.636847][ T9009] can0: slcan on ttyS2. [ 291.781807][ T5847] Bluetooth: hci1: command 0x0c1a tx timeout [ 291.781980][ T5841] Bluetooth: hci2: command 0x0c1a tx timeout [ 291.788113][ T5847] Bluetooth: hci5: command 0x0419 tx timeout [ 291.794015][ T5151] Bluetooth: hci0: command 0x0c1a tx timeout [ 292.469173][ T9008] can0 (unregistered): slcan off ttyS2. [ 293.280719][ T9036] netlink: 60 bytes leftover after parsing attributes in process `syz.0.723'. [ 295.452150][ T5151] Bluetooth: hci5: ACL packet for unknown connection handle 0 [ 296.088056][ T9070] FAULT_INJECTION: forcing a failure. [ 296.088056][ T9070] name failslab, interval 1, probability 0, space 0, times 0 [ 296.249973][ T9070] CPU: 1 UID: 0 PID: 9070 Comm: syz.0.731 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 296.250015][ T9070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 296.250030][ T9070] Call Trace: [ 296.250037][ T9070] [ 296.250047][ T9070] dump_stack_lvl+0x16c/0x1f0 [ 296.250084][ T9070] should_fail_ex+0x50a/0x650 [ 296.250121][ T9070] ? fs_reclaim_acquire+0xae/0x150 [ 296.250154][ T9070] ? lsm_blob_alloc+0x68/0x90 [ 296.250186][ T9070] should_failslab+0xc2/0x120 [ 296.250210][ T9070] __kmalloc_noprof+0xcb/0x510 [ 296.250250][ T9070] lsm_blob_alloc+0x68/0x90 [ 296.250286][ T9070] security_sk_alloc+0x30/0x270 [ 296.250313][ T9070] sk_prot_alloc+0xfb/0x2a0 [ 296.250340][ T9070] sk_alloc+0x36/0xb90 [ 296.250372][ T9070] smc_create+0x110/0x240 [ 296.250407][ T9070] __sock_create+0x335/0x8d0 [ 296.250439][ T9070] __sys_socket+0x14f/0x260 [ 296.250465][ T9070] ? __pfx___sys_socket+0x10/0x10 [ 296.250493][ T9070] ? rcu_is_watching+0x12/0xc0 [ 296.250525][ T9070] __x64_sys_socket+0x72/0xb0 [ 296.250549][ T9070] ? lockdep_hardirqs_on+0x7c/0x110 [ 296.250577][ T9070] do_syscall_64+0xcd/0x250 [ 296.250608][ T9070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.250640][ T9070] RIP: 0033:0x7fb99258d0a9 [ 296.250660][ T9070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.250683][ T9070] RSP: 002b:00007fb993374038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 296.250705][ T9070] RAX: ffffffffffffffda RBX: 00007fb9927a5fa0 RCX: 00007fb99258d0a9 [ 296.250722][ T9070] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000002b [ 296.250736][ T9070] RBP: 00007fb99260e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 296.250750][ T9070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 296.250764][ T9070] R13: 0000000000000000 R14: 00007fb9927a5fa0 R15: 00007ffe9750f638 [ 296.250796][ T9070] [ 298.039265][ T29] audit: type=1800 audit(6035060328.084:6): pid=9087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.736" name="dbroot" dev="configfs" ino=21094 res=0 errno=0 [ 298.091019][ T5907] Process accounting resumed [ 298.150084][ T9090] netlink: 8 bytes leftover after parsing attributes in process `syz.0.737'. [ 300.324309][ T9114] device-mapper: ioctl: Invalid ioctl structure: uuid , name , dev 3000000000 [ 301.720640][ T9133] FAULT_INJECTION: forcing a failure. [ 301.720640][ T9133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 301.786201][ T9133] CPU: 0 UID: 0 PID: 9133 Comm: syz.0.747 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 301.786231][ T9133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 301.786242][ T9133] Call Trace: [ 301.786249][ T9133] [ 301.786257][ T9133] dump_stack_lvl+0x16c/0x1f0 [ 301.786290][ T9133] should_fail_ex+0x50a/0x650 [ 301.786327][ T9133] _copy_from_iter+0x2a1/0x1560 [ 301.786368][ T9133] ? trace_lock_acquire+0x14e/0x1f0 [ 301.786393][ T9133] ? sk_leave_memory_pressure+0x7c/0x130 [ 301.786421][ T9133] ? __pfx__copy_from_iter+0x10/0x10 [ 301.786441][ T9133] ? __virt_addr_valid+0x1a4/0x590 [ 301.786469][ T9133] ? __virt_addr_valid+0x5e/0x590 [ 301.786489][ T9133] ? __phys_addr+0xc6/0x150 [ 301.786510][ T9133] ? __phys_addr_symbol+0x30/0x80 [ 301.786531][ T9133] ? __check_object_size+0x488/0x710 [ 301.786556][ T9133] tcp_sendmsg_locked+0x1979/0x37c0 [ 301.786611][ T9133] ? __pfx_tcp_sendmsg_locked+0x10/0x10 [ 301.786647][ T9133] ? tcp_sendmsg+0x20/0x50 [ 301.786683][ T9133] ? mark_held_locks+0x9f/0xe0 [ 301.786716][ T9133] ? __local_bh_enable_ip+0xa4/0x120 [ 301.786760][ T9133] tcp_sendmsg+0x2e/0x50 [ 301.786790][ T9133] ? __pfx_tcp_sendmsg+0x10/0x10 [ 301.786821][ T9133] inet_sendmsg+0xb9/0x140 [ 301.786856][ T9133] sock_write_iter+0x4ac/0x5b0 [ 301.786881][ T9133] ? __pfx_sock_write_iter+0x10/0x10 [ 301.786917][ T9133] ? bpf_lsm_file_permission+0x9/0x10 [ 301.786950][ T9133] ? security_file_permission+0x71/0x210 [ 301.786982][ T9133] ? rw_verify_area+0xcf/0x680 [ 301.787012][ T9133] vfs_write+0x5ae/0x1150 [ 301.787043][ T9133] ? __pfx_sock_write_iter+0x10/0x10 [ 301.787071][ T9133] ? __pfx_vfs_write+0x10/0x10 [ 301.787103][ T9133] ? __fget_files+0x40/0x3a0 [ 301.787151][ T9133] ksys_write+0x207/0x250 [ 301.787180][ T9133] ? __pfx_ksys_write+0x10/0x10 [ 301.787221][ T9133] do_syscall_64+0xcd/0x250 [ 301.787251][ T9133] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.787280][ T9133] RIP: 0033:0x7fb99258d0a9 [ 301.787298][ T9133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.787317][ T9133] RSP: 002b:00007fb993332038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.787339][ T9133] RAX: ffffffffffffffda RBX: 00007fb9927a6160 RCX: 00007fb99258d0a9 [ 301.787354][ T9133] RDX: 0000000000100082 RSI: 0000000000000000 RDI: 0000000000000003 [ 301.787368][ T9133] RBP: 00007fb993332090 R08: 0000000000000000 R09: 0000000000000000 [ 301.787381][ T9133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 301.787394][ T9133] R13: 0000000000000000 R14: 00007fb9927a6160 R15: 00007ffe9750f638 [ 301.787425][ T9133] [ 302.053450][ C1] net_ratelimit: 8 callbacks suppressed [ 302.053480][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.071723][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.084161][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.096504][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.108827][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.121215][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.133537][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.145922][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.158259][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 302.170616][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.061031][ C1] net_ratelimit: 15693 callbacks suppressed [ 307.061053][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.079307][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.091595][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.103884][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.116219][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.128488][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.140805][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.153103][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.165418][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.177716][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 307.605254][ T9157] FAULT_INJECTION: forcing a failure. [ 307.605254][ T9157] name failslab, interval 1, probability 0, space 0, times 0 [ 307.679194][ T9157] CPU: 0 UID: 0 PID: 9157 Comm: syz.2.754 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 307.679229][ T9157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 307.679243][ T9157] Call Trace: [ 307.679251][ T9157] [ 307.679260][ T9157] dump_stack_lvl+0x16c/0x1f0 [ 307.679297][ T9157] should_fail_ex+0x50a/0x650 [ 307.679333][ T9157] ? fs_reclaim_acquire+0xae/0x150 [ 307.679366][ T9157] ? constrain_params_by_rules+0x176/0xca0 [ 307.679393][ T9157] should_failslab+0xc2/0x120 [ 307.679417][ T9157] __kmalloc_noprof+0xcb/0x510 [ 307.679451][ T9157] ? unwind_get_return_address+0x59/0xa0 [ 307.679495][ T9157] constrain_params_by_rules+0x176/0xca0 [ 307.679529][ T9157] ? stack_trace_save+0x95/0xd0 [ 307.679559][ T9157] ? stack_depot_save_flags+0x28/0x9c0 [ 307.679596][ T9157] ? __pfx_constrain_params_by_rules+0x10/0x10 [ 307.679633][ T9157] ? __kasan_kmalloc+0xaa/0xb0 [ 307.679665][ T9157] ? snd_pcm_hw_param_near.constprop.0+0xbe/0x8f0 [ 307.679691][ T9157] ? snd_pcm_oss_change_params_locked+0x13cd/0x3a60 [ 307.679716][ T9157] ? snd_pcm_oss_make_ready+0xe6/0x1b0 [ 307.679754][ T9157] ? snd_interval_refine+0x2fa/0x580 [ 307.679792][ T9157] snd_pcm_hw_refine+0x7e8/0xad0 [ 307.679826][ T9157] ? __pfx_snd_pcm_hw_refine+0x10/0x10 [ 307.679868][ T9157] ? _snd_pcm_hw_param_min+0x259/0x630 [ 307.679898][ T9157] snd_pcm_hw_param_near.constprop.0+0x597/0x8f0 [ 307.679930][ T9157] ? __pfx_snd_pcm_hw_param_near.constprop.0+0x10/0x10 [ 307.679960][ T9157] ? calc_src_frames.isra.0+0x187/0x1d0 [ 307.679995][ T9157] snd_pcm_oss_change_params_locked+0x13cd/0x3a60 [ 307.680037][ T9157] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 307.680067][ T9157] ? __pfx___mutex_lock+0x10/0x10 [ 307.680119][ T9157] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 307.680156][ T9157] snd_pcm_oss_sync+0x1d7/0x7f0 [ 307.680188][ T9157] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 307.680215][ T9157] snd_pcm_oss_release+0x28b/0x310 [ 307.680244][ T9157] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 307.680269][ T9157] __fput+0x3ff/0xb70 [ 307.680301][ T9157] task_work_run+0x14e/0x250 [ 307.680335][ T9157] ? __pfx_task_work_run+0x10/0x10 [ 307.680368][ T9157] ? __pfx___do_sys_close_range+0x10/0x10 [ 307.680412][ T9157] syscall_exit_to_user_mode+0x27b/0x2a0 [ 307.680443][ T9157] do_syscall_64+0xda/0x250 [ 307.680475][ T9157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 307.680507][ T9157] RIP: 0033:0x7f7b2a78d0a9 [ 307.680526][ T9157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 307.680548][ T9157] RSP: 002b:00007f7b2b578038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 307.680571][ T9157] RAX: 0000000000000000 RBX: 00007f7b2a9a6080 RCX: 00007f7b2a78d0a9 [ 307.680587][ T9157] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000002 [ 307.680601][ T9157] RBP: 00007f7b2a80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 307.680615][ T9157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 307.680629][ T9157] R13: 0000000000000000 R14: 00007f7b2a9a6080 R15: 00007ffdb585d1e8 [ 307.680661][ T9157] [ 308.811896][ T9166] FAULT_INJECTION: forcing a failure. [ 308.811896][ T9166] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 308.996001][ T9166] CPU: 1 UID: 0 PID: 9166 Comm: syz.3.755 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 308.996041][ T9166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 308.996055][ T9166] Call Trace: [ 308.996062][ T9166] [ 308.996072][ T9166] dump_stack_lvl+0x16c/0x1f0 [ 308.996106][ T9166] should_fail_ex+0x50a/0x650 [ 308.996146][ T9166] _copy_from_user+0x2e/0xd0 [ 308.996172][ T9166] kstrtouint_from_user+0xd7/0x1c0 [ 308.996204][ T9166] ? __pfx_kstrtouint_from_user+0x10/0x10 [ 308.996246][ T9166] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 308.996283][ T9166] proc_fail_nth_write+0x84/0x250 [ 308.996312][ T9166] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 308.996337][ T9166] ? ksys_write+0x12b/0x250 [ 308.996376][ T9166] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 308.996402][ T9166] vfs_write+0x24c/0x1150 [ 308.996435][ T9166] ? __fget_files+0x1fc/0x3a0 [ 308.996466][ T9166] ? __pfx___mutex_lock+0x10/0x10 [ 308.996494][ T9166] ? __pfx_vfs_write+0x10/0x10 [ 308.996534][ T9166] ? __fget_files+0x206/0x3a0 [ 308.996577][ T9166] ksys_write+0x12b/0x250 [ 308.996607][ T9166] ? __pfx_ksys_write+0x10/0x10 [ 308.996647][ T9166] do_syscall_64+0xcd/0x250 [ 308.996679][ T9166] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 308.996710][ T9166] RIP: 0033:0x7f113d78bb5f [ 308.996729][ T9166] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 308.996750][ T9166] RSP: 002b:00007f113e58a030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 308.996771][ T9166] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f113d78bb5f [ 308.996786][ T9166] RDX: 0000000000000001 RSI: 00007f113e58a0a0 RDI: 0000000000000004 [ 308.996800][ T9166] RBP: 00007f113e58a090 R08: 0000000000000000 R09: 0000000000000000 [ 308.996814][ T9166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 308.996827][ T9166] R13: 0000000000000001 R14: 00007f113d9a6080 R15: 00007ffd2305c948 [ 308.996859][ T9166] [ 309.873171][ T9175] Invalid ELF header magic: != ELF [ 312.071036][ C1] net_ratelimit: 13965 callbacks suppressed [ 312.071059][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.089314][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.101616][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.113993][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.126313][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.138674][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.151072][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.163421][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.175741][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 312.188146][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 313.745021][ T29] audit: type=1800 audit(6035060343.794:7): pid=9185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.763" name="file0" dev="tmpfs" ino=1151 res=0 errno=0 [ 313.871021][ T29] audit: type=1800 audit(6035060343.874:8): pid=9185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.763" name="file0" dev="tmpfs" ino=1151 res=0 errno=0 [ 315.372073][ T9230] FAULT_INJECTION: forcing a failure. [ 315.372073][ T9230] name fail_futex, interval 1, probability 0, space 0, times 0 [ 315.511314][ T9230] CPU: 0 UID: 0 PID: 9230 Comm: syz.0.772 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 315.511351][ T9230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 315.511366][ T9230] Call Trace: [ 315.511373][ T9230] [ 315.511382][ T9230] dump_stack_lvl+0x16c/0x1f0 [ 315.511419][ T9230] should_fail_ex+0x50a/0x650 [ 315.511460][ T9230] get_futex_key+0x4a3/0x1000 [ 315.511493][ T9230] ? __pfx_get_futex_key+0x10/0x10 [ 315.511522][ T9230] ? pick_eevdf+0x2f6/0x6b0 [ 315.511555][ T9230] ? update_curr_se+0x8b/0x220 [ 315.511591][ T9230] ? find_held_lock+0x2d/0x110 [ 315.511620][ T9230] futex_wait_setup+0x78/0x290 [ 315.511664][ T9230] __futex_wait+0x267/0x3c0 [ 315.511700][ T9230] ? __pfx___futex_wait+0x10/0x10 [ 315.511735][ T9230] ? try_to_wake_up+0x158/0x1490 [ 315.511770][ T9230] ? __pfx_futex_wake_mark+0x10/0x10 [ 315.511817][ T9230] futex_wait+0xe9/0x380 [ 315.511850][ T9230] ? __pfx_futex_wait+0x10/0x10 [ 315.511889][ T9230] ? lock_acquire.part.0+0x11b/0x380 [ 315.511922][ T9230] ? find_held_lock+0x2d/0x110 [ 315.511954][ T9230] do_futex+0x22b/0x350 [ 315.511983][ T9230] ? __pfx_do_futex+0x10/0x10 [ 315.512021][ T9230] __x64_sys_futex+0x1e1/0x4c0 [ 315.512051][ T9230] ? __sys_socket+0xad/0x260 [ 315.512078][ T9230] ? __pfx___x64_sys_futex+0x10/0x10 [ 315.512108][ T9230] ? rcu_is_watching+0x12/0xc0 [ 315.512151][ T9230] do_syscall_64+0xcd/0x250 [ 315.512186][ T9230] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 315.512220][ T9230] RIP: 0033:0x7fb99258d0a9 [ 315.512239][ T9230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 315.512262][ T9230] RSP: 002b:00007fb9933740e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 315.512285][ T9230] RAX: ffffffffffffffda RBX: 00007fb9927a5fa8 RCX: 00007fb99258d0a9 [ 315.512302][ T9230] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb9927a5fa8 [ 315.512318][ T9230] RBP: 00007fb9927a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 315.512333][ T9230] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb9927a5fac [ 315.512348][ T9230] R13: 0000000000000000 R14: 00007ffe9750f550 R15: 00007ffe9750f638 [ 315.512380][ T9230] [ 315.971472][ T9216] delete_channel: no stack [ 316.037637][ T9216] delete_channel: no stack [ 316.092238][ T9216] delete_channel: no stack [ 316.127998][ T9216] delete_channel: no stack [ 316.213223][ T9216] delete_channel: no stack [ 316.233440][ T9216] delete_channel: no stack [ 316.238016][ T9216] delete_channel: no stack [ 316.438683][ T9216] delete_channel: no stack [ 316.558758][ T9216] delete_channel: no stack [ 316.573343][ T9216] delete_channel: no stack [ 316.577917][ T9216] delete_channel: no stack [ 316.675936][ T9216] delete_channel: no stack [ 316.680520][ T9216] delete_channel: no stack [ 316.751294][ T9216] delete_channel: no stack [ 316.825482][ T9216] delete_channel: no stack [ 316.830079][ T9216] delete_channel: no stack [ 316.913558][ T9216] delete_channel: no stack [ 316.918148][ T9216] delete_channel: no stack [ 317.017837][ T9216] delete_channel: no stack [ 317.081040][ C1] net_ratelimit: 15524 callbacks suppressed [ 317.081063][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.099312][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.111598][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.124008][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.136298][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.148628][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.160979][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.173352][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.185677][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.198045][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 317.385304][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.391785][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.758073][ T9241] FAULT_INJECTION: forcing a failure. [ 317.758073][ T9241] name failslab, interval 1, probability 0, space 0, times 0 [ 317.858190][ T9241] CPU: 1 UID: 0 PID: 9241 Comm: syz.0.776 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 317.858221][ T9241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 317.858234][ T9241] Call Trace: [ 317.858241][ T9241] [ 317.858250][ T9241] dump_stack_lvl+0x16c/0x1f0 [ 317.858284][ T9241] should_fail_ex+0x50a/0x650 [ 317.858316][ T9241] ? fs_reclaim_acquire+0xae/0x150 [ 317.858347][ T9241] should_failslab+0xc2/0x120 [ 317.858369][ T9241] kmem_cache_alloc_noprof+0x6e/0x3d0 [ 317.858402][ T9241] ? vma_merge_new_range+0x40a/0xbb0 [ 317.858434][ T9241] ? vm_area_alloc+0x1f/0x230 [ 317.858471][ T9241] vm_area_alloc+0x1f/0x230 [ 317.858503][ T9241] __mmap_region+0x108d/0x2760 [ 317.858529][ T9241] ? __pfx___mmap_region+0x10/0x10 [ 317.858572][ T9241] ? hlock_class+0x4e/0x130 [ 317.858596][ T9241] ? mark_lock+0xb5/0xc60 [ 317.858637][ T9241] ? hlock_class+0x4e/0x130 [ 317.858660][ T9241] ? __lock_acquire+0xcc5/0x3c40 [ 317.858730][ T9241] ? cap_capable+0xb3/0x250 [ 317.858761][ T9241] mmap_region+0x1ab/0x3f0 [ 317.858788][ T9241] do_mmap+0xd8d/0x11b0 [ 317.858824][ T9241] ? __pfx_do_mmap+0x10/0x10 [ 317.858854][ T9241] ? __pfx_down_write_killable+0x10/0x10 [ 317.858891][ T9241] vm_mmap_pgoff+0x203/0x3a0 [ 317.858936][ T9241] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 317.858967][ T9241] ? __fget_files+0x206/0x3a0 [ 317.859007][ T9241] ksys_mmap_pgoff+0x7d/0x5c0 [ 317.859036][ T9241] ? __pfx_ksys_write+0x10/0x10 [ 317.859069][ T9241] __x64_sys_mmap+0x125/0x190 [ 317.859105][ T9241] do_syscall_64+0xcd/0x250 [ 317.859136][ T9241] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.859167][ T9241] RIP: 0033:0x7fb99258d0a9 [ 317.859185][ T9241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.859205][ T9241] RSP: 002b:00007fb993374038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 317.859226][ T9241] RAX: ffffffffffffffda RBX: 00007fb9927a5fa0 RCX: 00007fb99258d0a9 [ 317.859241][ T9241] RDX: 00000000000000df RSI: 0000000000400007 RDI: 0000000000000000 [ 317.859254][ T9241] RBP: 00007fb993374090 R08: 0000000000000002 R09: 0000000000008000 [ 317.859269][ T9241] R10: 0000000000009b72 R11: 0000000000000246 R12: 0000000000000001 [ 317.859282][ T9241] R13: 0000000000000000 R14: 00007fb9927a5fa0 R15: 00007ffe9750f638 [ 317.859313][ T9241] [ 318.197488][ T9216] delete_channel: no stack [ 318.210065][ T9216] delete_channel: no stack [ 318.219198][ T9216] delete_channel: no stack [ 318.232281][ T9216] delete_channel: no stack [ 318.280733][ T9216] delete_channel: no stack [ 318.290575][ T9216] delete_channel: no stack [ 318.383134][ T9216] delete_channel: no stack [ 318.471299][ T9216] delete_channel: no stack [ 318.510246][ T9216] delete_channel: no stack [ 318.551284][ T9216] delete_channel: no stack [ 318.611286][ T9216] delete_channel: no stack [ 318.641780][ T9216] delete_channel: no stack [ 318.694155][ T9216] delete_channel: no stack [ 318.704432][ T9254] FAULT_INJECTION: forcing a failure. [ 318.704432][ T9254] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 318.801170][ T9254] CPU: 1 UID: 0 PID: 9254 Comm: syz.0.779 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 318.801202][ T9254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 318.801215][ T9254] Call Trace: [ 318.801222][ T9254] [ 318.801232][ T9254] dump_stack_lvl+0x16c/0x1f0 [ 318.801264][ T9254] should_fail_ex+0x50a/0x650 [ 318.801304][ T9254] _copy_to_user+0x32/0xd0 [ 318.801332][ T9254] mon_text_copy_to_user+0xd7/0x190 [ 318.801369][ T9254] mon_text_read_t+0x47c/0x5f0 [ 318.801403][ T9254] ? __debugfs_file_get+0x1ff/0x850 [ 318.801433][ T9254] ? __pfx_mon_text_read_t+0x10/0x10 [ 318.801474][ T9254] full_proxy_read+0x13c/0x200 [ 318.801504][ T9254] ? __pfx_full_proxy_read+0x10/0x10 [ 318.801533][ T9254] vfs_readv+0x6c2/0x8a0 [ 318.801560][ T9254] ? mark_held_locks+0x9f/0xe0 [ 318.801600][ T9254] ? __pfx_vfs_readv+0x10/0x10 [ 318.801625][ T9254] ? __mutex_lock+0x1cc/0xb10 [ 318.801650][ T9254] ? find_held_lock+0x2d/0x110 [ 318.801682][ T9254] ? __pfx___mutex_lock+0x10/0x10 [ 318.801708][ T9254] ? trace_lock_acquire+0x14e/0x1f0 [ 318.801747][ T9254] ? __fget_files+0x206/0x3a0 [ 318.801788][ T9254] ? do_readv+0x133/0x340 [ 318.801813][ T9254] do_readv+0x133/0x340 [ 318.801840][ T9254] ? __pfx_do_readv+0x10/0x10 [ 318.801878][ T9254] do_syscall_64+0xcd/0x250 [ 318.801909][ T9254] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.801940][ T9254] RIP: 0033:0x7fb99258d0a9 [ 318.801959][ T9254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.801980][ T9254] RSP: 002b:00007fb993353038 EFLAGS: 00000246 ORIG_RAX: 0000000000000013 [ 318.802002][ T9254] RAX: ffffffffffffffda RBX: 00007fb9927a6080 RCX: 00007fb99258d0a9 [ 318.802018][ T9254] RDX: 0000000000000001 RSI: 0000400000000a80 RDI: 0000000000000003 [ 318.802032][ T9254] RBP: 00007fb993353090 R08: 0000000000000000 R09: 0000000000000000 [ 318.802046][ T9254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 318.802059][ T9254] R13: 0000000000000001 R14: 00007fb9927a6080 R15: 00007ffe9750f638 [ 318.802098][ T9254] [ 319.136220][ T9259] FAULT_INJECTION: forcing a failure. [ 319.136220][ T9259] name fail_futex, interval 1, probability 0, space 0, times 0 [ 319.151782][ T9216] delete_channel: no stack [ 319.213521][ T9259] CPU: 0 UID: 0 PID: 9259 Comm: syz.2.781 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 319.213557][ T9259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 319.213572][ T9259] Call Trace: [ 319.213579][ T9259] [ 319.213589][ T9259] dump_stack_lvl+0x16c/0x1f0 [ 319.213630][ T9259] should_fail_ex+0x50a/0x650 [ 319.213673][ T9259] get_futex_key+0x4a3/0x1000 [ 319.213705][ T9259] ? __pfx_get_futex_key+0x10/0x10 [ 319.213733][ T9259] ? kasan_save_stack+0x42/0x60 [ 319.213769][ T9259] ? kasan_save_stack+0x33/0x60 [ 319.213809][ T9259] ? kasan_save_track+0x14/0x30 [ 319.213843][ T9259] ? __kasan_slab_alloc+0x89/0x90 [ 319.213878][ T9259] ? kmem_cache_alloc_noprof+0x226/0x3d0 [ 319.213912][ T9259] ? security_file_alloc+0x34/0x2b0 [ 319.213948][ T9259] futex_wait_setup+0x78/0x290 [ 319.213990][ T9259] __futex_wait+0x267/0x3c0 [ 319.214025][ T9259] ? __pfx___futex_wait+0x10/0x10 [ 319.214065][ T9259] ? __pfx_futex_wake_mark+0x10/0x10 [ 319.214113][ T9259] futex_wait+0xe9/0x380 [ 319.214146][ T9259] ? __pfx_futex_wait+0x10/0x10 [ 319.214187][ T9259] ? lock_acquire.part.0+0x11b/0x380 [ 319.214220][ T9259] ? find_held_lock+0x2d/0x110 [ 319.214252][ T9259] do_futex+0x22b/0x350 [ 319.214282][ T9259] ? __pfx_do_futex+0x10/0x10 [ 319.214319][ T9259] __x64_sys_futex+0x1e1/0x4c0 [ 319.214350][ T9259] ? __sys_socket+0xad/0x260 [ 319.214377][ T9259] ? __pfx___x64_sys_futex+0x10/0x10 [ 319.214407][ T9259] ? rcu_is_watching+0x12/0xc0 [ 319.214441][ T9259] do_syscall_64+0xcd/0x250 [ 319.214473][ T9259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 319.214507][ T9259] RIP: 0033:0x7f7b2a78d0a9 [ 319.214528][ T9259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 319.214550][ T9259] RSP: 002b:00007f7b2b5990e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 319.214574][ T9259] RAX: ffffffffffffffda RBX: 00007f7b2a9a5fa8 RCX: 00007f7b2a78d0a9 [ 319.214592][ T9259] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f7b2a9a5fa8 [ 319.214607][ T9259] RBP: 00007f7b2a9a5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 319.214621][ T9259] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7b2a9a5fac [ 319.214636][ T9259] R13: 0000000000000000 R14: 00007ffdb585d100 R15: 00007ffdb585d1e8 [ 319.214667][ T9259] [ 322.091047][ C1] net_ratelimit: 13471 callbacks suppressed [ 322.091070][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.091475][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.091777][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.092168][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.092459][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.092859][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.093130][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.093527][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.093816][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 322.094204][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.101065][ C1] net_ratelimit: 31675 callbacks suppressed [ 327.101089][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.101373][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.101469][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.101707][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.101730][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.102028][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.102114][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.102363][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.102389][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 327.102677][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 327.860589][ C1] sched: DL replenish lagged too much [ 332.111152][ C0] net_ratelimit: 32413 callbacks suppressed [ 332.111177][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.111387][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 332.111495][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.111762][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 332.111820][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.112024][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 332.112151][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.112414][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 332.112482][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 332.112670][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.120989][ C1] net_ratelimit: 32884 callbacks suppressed [ 337.121014][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.121181][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.121275][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.121512][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.121640][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.121834][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.121892][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.122172][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 337.122293][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 337.122517][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.131004][ C1] net_ratelimit: 33079 callbacks suppressed [ 342.131028][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.131126][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.131422][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.131457][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.131691][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.131777][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.132087][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.132104][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 342.132345][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.132420][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.140970][ C0] net_ratelimit: 33391 callbacks suppressed [ 347.140996][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.141001][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.141335][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.141377][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.141629][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.141648][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.141988][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.142005][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.142264][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.142300][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.151087][ C0] net_ratelimit: 28109 callbacks suppressed [ 352.151112][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.151219][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 352.151428][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.151758][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.152085][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.152391][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.152700][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.152870][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.153016][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.153158][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.160944][ C1] net_ratelimit: 26063 callbacks suppressed [ 357.160983][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 357.161154][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.161492][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.161824][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.162019][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.162145][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.162282][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.162472][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.162689][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 357.162787][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.170948][ C0] net_ratelimit: 26216 callbacks suppressed [ 362.170973][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.171289][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.171631][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.171884][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.171948][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.172260][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 362.172570][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.172882][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.173197][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.173284][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.180978][ C0] net_ratelimit: 26248 callbacks suppressed [ 367.181004][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.181318][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.181634][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.181864][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.181944][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.182149][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.182266][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.182529][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 367.182599][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.182907][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.191064][ C0] net_ratelimit: 26047 callbacks suppressed [ 372.191088][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.191288][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.191419][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.191548][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.191760][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.191928][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 372.192124][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.192448][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.192772][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.192911][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.201108][ C0] net_ratelimit: 26107 callbacks suppressed [ 377.201134][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.201436][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.201454][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.201711][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.201779][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.202100][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.202138][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 377.202418][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.202727][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.203035][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 379.102836][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.112663][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.211045][ C0] net_ratelimit: 26295 callbacks suppressed [ 382.211072][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.211343][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.211442][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.211599][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.211804][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.211982][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 382.212181][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.212544][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.212906][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.212964][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.221052][ C0] net_ratelimit: 25156 callbacks suppressed [ 387.221076][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.221385][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.221570][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.221699][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.221836][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.222005][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.222219][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 387.222326][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.222637][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.222959][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.230941][ C0] net_ratelimit: 25987 callbacks suppressed [ 392.230967][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.231289][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.231334][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.231593][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.231607][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.231945][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.231979][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 392.232260][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.232593][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.232917][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.241067][ C0] net_ratelimit: 25403 callbacks suppressed [ 397.241092][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.241198][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.241460][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.241468][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.241810][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.241860][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 397.242160][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.242516][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.242868][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.242887][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.250965][ C0] net_ratelimit: 25389 callbacks suppressed [ 402.250989][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.251323][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.251654][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.251798][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.252006][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.252064][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.252335][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.252443][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 402.252886][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.253219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.261078][ C0] net_ratelimit: 25435 callbacks suppressed [ 407.261104][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.261431][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.261707][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.261744][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.261974][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.262074][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.262361][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 407.262395][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.262707][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.263036][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.271025][ C0] net_ratelimit: 25958 callbacks suppressed [ 412.271050][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.271115][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.271382][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.271390][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.271708][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.271782][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 412.272031][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.272362][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.272677][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.272819][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.280912][ C0] net_ratelimit: 25726 callbacks suppressed [ 417.280937][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.280945][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 417.281262][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.281608][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.281930][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.282199][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.282219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.282572][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 417.282609][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.282944][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.291000][ C0] net_ratelimit: 25591 callbacks suppressed [ 422.291025][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.291049][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.291341][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.291438][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 422.291683][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.291990][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.292304][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.292447][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.292640][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.292719][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.301140][ C0] net_ratelimit: 25709 callbacks suppressed [ 427.301164][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.301500][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.301810][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.301867][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.302119][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.302264][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.302422][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.302669][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 427.302730][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.303210][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.310934][ C0] net_ratelimit: 25030 callbacks suppressed [ 432.310958][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.311305][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.311329][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.311605][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.311640][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.311969][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.312015][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 432.312305][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.312636][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.313007][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.321074][ C0] net_ratelimit: 26066 callbacks suppressed [ 437.321099][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.321319][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.321414][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.321572][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.321724][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.321945][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 437.322033][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.322366][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.322678][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.322937][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 441.069888][ T1299] ieee802154 phy0 wpan0: encryption failed: -22 [ 441.079642][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.330983][ C0] net_ratelimit: 26586 callbacks suppressed [ 442.331007][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.331326][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.331371][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.331644][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.331659][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.331984][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.332016][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 442.332298][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.332632][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.332971][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.340946][ C1] net_ratelimit: 25617 callbacks suppressed [ 447.340972][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 447.341174][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.341534][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.341872][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.341990][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.342194][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.342272][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.342523][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 447.342647][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 447.342860][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.350964][ C1] net_ratelimit: 25614 callbacks suppressed [ 452.350988][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 452.351024][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.351375][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.351719][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.352003][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.352079][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.352269][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 452.352437][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 452.352644][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 452.352781][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.360946][ C1] net_ratelimit: 25351 callbacks suppressed [ 457.360971][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.361186][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.361231][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.361515][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.361605][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 457.361835][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.362154][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.362480][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 457.362618][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 457.362817][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.371009][ C1] net_ratelimit: 25928 callbacks suppressed [ 462.371034][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 462.371077][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.371385][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.371712][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.372029][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.372061][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.372330][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 462.372336][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.372661][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 462.372726][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 467.380932][ C0] net_ratelimit: 25881 callbacks suppressed [ 467.380957][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.381047][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.381274][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.381442][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 467.381590][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.381914][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.382225][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.382453][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 467.382557][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 467.382717][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.390977][ C0] net_ratelimit: 26378 callbacks suppressed [ 472.391005][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.391099][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.391316][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.391363][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 472.391634][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.391932][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.391965][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:b6:e1:7f:bf:8b, vlan:0) [ 472.392247][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.392570][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.392878][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 472.920384][ T30] INFO: task syz.3.789:9291 blocked for more than 143 seconds. [ 472.920413][ T30] Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 472.920430][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 472.920441][ T30] task:syz.3.789 state:D stack:27936 pid:9291 tgid:9286 ppid:5836 task_flags:0x400140 flags:0x00000004 [ 472.920529][ T30] Call Trace: [ 472.920538][ T30] [ 472.920556][ T30] __schedule+0xf43/0x5890 [ 472.920589][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 472.920627][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 472.920670][ T30] ? __pfx___schedule+0x10/0x10 [ 472.920698][ T30] ? schedule+0x298/0x350 [ 472.920723][ T30] ? __pfx_lock_release+0x10/0x10 [ 472.920758][ T30] ? __mutex_trylock_common+0x78/0x250 [ 472.920796][ T30] ? lock_acquire+0x2f/0xb0 [ 472.920826][ T30] ? schedule+0x1fd/0x350 [ 472.940812][ T30] schedule+0xe7/0x350 [ 472.940852][ T30] schedule_preempt_disabled+0x13/0x30 [ 472.960747][ T30] __mutex_lock+0x6bd/0xb10 [ 472.960786][ T30] ? trace_contention_end+0xee/0x140 [ 472.960826][ T30] ? kernfs_seq_start+0x4d/0x240 [ 472.980540][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 472.980585][ T30] ? __pfx___mutex_lock+0x10/0x10 [ 472.980631][ T30] ? kernfs_seq_start+0x4d/0x240 [ 472.980656][ T30] kernfs_seq_start+0x4d/0x240 [ 472.980685][ T30] seq_read_iter+0x2ab/0x12b0 [ 472.980731][ T30] kernfs_fop_read_iter+0x414/0x580 [ 472.980764][ T30] copy_splice_read+0x61d/0xb80 [ 472.980804][ T30] ? __pfx_copy_splice_read+0x10/0x10 [ 472.980842][ T30] ? __pfx_register_lock_class+0x10/0x10 [ 473.000763][ T30] ? __pfx_copy_splice_read+0x10/0x10 [ 473.000804][ T30] do_splice_read+0x282/0x370 [ 473.000841][ T30] splice_direct_to_actor+0x2a4/0xa40 [ 473.011094][ T30] ? __pfx_direct_splice_actor+0x10/0x10 [ 473.011141][ T30] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 473.011185][ T30] ? __fget_files+0x1fc/0x3a0 [ 473.011224][ T30] do_splice_direct+0x178/0x250 [ 473.011257][ T30] ? __pfx_do_splice_direct+0x10/0x10 [ 473.011290][ T30] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 473.011328][ T30] ? rw_verify_area+0xcf/0x680 [ 473.011362][ T30] do_sendfile+0xafb/0xe40 [ 473.011401][ T30] ? __pfx_do_sendfile+0x10/0x10 [ 473.011432][ T30] ? __sys_sendmsg+0x19a/0x220 [ 473.011470][ T30] ? __x64_sys_futex+0x1e1/0x4c0 [ 473.011500][ T30] ? __x64_sys_futex+0x1ea/0x4c0 [ 473.011534][ T30] __x64_sys_sendfile64+0x1da/0x220 [ 473.011561][ T30] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 473.011597][ T30] do_syscall_64+0xcd/0x250 [ 473.011631][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 473.011666][ T30] RIP: 0033:0x7f113d78d0a9 [ 473.011687][ T30] RSP: 002b:00007f113e569038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 473.011715][ T30] RAX: ffffffffffffffda RBX: 00007f113d9a6160 RCX: 00007f113d78d0a9 [ 473.011734][ T30] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000007 [ 473.011750][ T30] RBP: 00007f113d80e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 473.011767][ T30] R10: 0000000000000200 R11: 0000000000000246 R12: 0000000000000000 [ 473.011783][ T30] R13: 0000000000000000 R14: 00007f113d9a6160 R15: 00007ffd2305c948 [ 473.011816][ T30] [ 473.011832][ T30] [ 473.011832][ T30] Showing all locks held in the system: [ 473.011843][ T30] 1 lock held by kthreadd/2: [ 473.011860][ T30] 3 locks held by kworker/0:0/8: [ 473.011874][ T30] #0: ffff88801b081d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 [ 473.011948][ T30] #1: ffffc900000d7d18 ((reg_check_chans).work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 473.012020][ T30] #2: ffffffff8fef8a28 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x84/0x1130 [ 473.012092][ T30] 3 locks held by kworker/u8:1/12: [ 473.012111][ T30] 1 lock held by khungtaskd/30: [ 473.012126][ T30] #0: ffffffff8e1bcc80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 [ 473.012212][ T30] 3 locks held by kworker/u8:3/52: [ 473.012229][ T30] 3 locks held by kworker/u8:4/63: [ 473.012251][ T30] 3 locks held by kworker/0:2/974: [ 473.012266][ T30] #0: ffff88801b080d48 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 [ 473.012338][ T30] #1: ffffc90003edfd18 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 473.012409][ T30] #2: ffffffff8fef8a28 (rtnl_mutex){+.+.}-{4:4}, at: switchdev_deferred_process_work+0xe/0x20 [ 473.012479][ T30] 6 locks held by kworker/u8:5/1003: [ 473.012498][ T30] 3 locks held by kworker/u8:6/1099: [ 473.012513][ T30] #0: ffff888031366148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 [ 473.012586][ T30] #1: ffffc9000425fd18 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 473.012659][ T30] #2: ffffffff8fef8a28 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x12/0x30 [ 473.012728][ T30] 3 locks held by kworker/u8:7/1129: [ 473.012763][ T30] 3 locks held by kworker/u8:12/3533: [ 473.012779][ T30] 4 locks held by kworker/u8:13/3565: [ 473.012793][ T30] #0: ffff88801bef5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x1293/0x1ba0 [ 473.012865][ T30] #1: ffffc9000ce37d18 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 473.012936][ T30] #2: ffffffff8fee2d50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0xca/0xbf0 [ 473.013012][ T30] #3: ffffffff8fef8a28 (rtnl_mutex){+.+.}-{4:4}, at: ip6mr_net_exit_batch+0x15/0xa0 [ 473.013087][ T30] 1 lock held by syslogd/5195: [ 473.013102][ T30] 2 locks held by dhcpcd/5506: [ 473.013118][ T30] 4 locks held by dhcpcd/5507: [ 473.013133][ T30] 2 locks held by getty/5605: [ 473.013156][ T30] #0: ffff888031e290a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 473.013224][ T30] #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480 [ 473.013302][ T30] 5 locks held by syz-executor/5834: [ 473.013318][ T30] 3 locks held by syz-executor/5835: [ 473.013340][ T30] 2 locks held by syz.3.740/9104: [ 473.013354][ T30] 1 lock held by syz.2.777/9247: [ 473.013370][ T30] 3 locks held by syz.4.788/9299: [ 473.013385][ T30] 5 locks held by syz.3.789/9288: [ 473.013400][ T30] 2 locks held by syz.3.789/9291: [ 473.013415][ T30] #0: ffff88806332d790 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xd8/0x12b0 [ 473.013484][ T30] #1: ffff88803582f888 (&of->mutex){+.+.}-{4:4}, at: kernfs_seq_start+0x4d/0x240 [ 473.013550][ T30] 3 locks held by kworker/u8:9/9302: [ 473.013565][ T30] 3 locks held by kworker/u8:10/9303: [ 473.013581][ T30] 2 locks held by kworker/0:5/9306: [ 473.013596][ T30] 3 locks held by kworker/u8:14/9307: [ 473.013611][ T30] 2 locks held by syz-executor/9310: [ 473.013626][ T30] [ 473.013634][ T30] ============================================= [ 473.013634][ T30] [ 473.013657][ T30] NMI backtrace for cpu 1 [ 473.013670][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 473.013697][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 473.013709][ T30] Call Trace: [ 473.013716][ T30] [ 473.013724][ T30] dump_stack_lvl+0x116/0x1f0 [ 473.013753][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 473.013790][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 473.013820][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 473.013857][ T30] watchdog+0xf62/0x12b0 [ 473.013896][ T30] ? __pfx_watchdog+0x10/0x10 [ 473.013927][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 473.013955][ T30] ? __kthread_parkme+0x148/0x220 [ 473.013978][ T30] ? __pfx_watchdog+0x10/0x10 [ 473.014012][ T30] kthread+0x3af/0x750 [ 473.014039][ T30] ? __pfx_kthread+0x10/0x10 [ 473.014071][ T30] ? __pfx_kthread+0x10/0x10 [ 473.014098][ T30] ret_from_fork+0x45/0x80 [ 473.014126][ T30] ? __pfx_kthread+0x10/0x10 [ 473.014159][ T30] ret_from_fork_asm+0x1a/0x30 [ 473.014199][ T30] [ 473.014207][ T30] Sending NMI from CPU 1 to CPUs 0: [ 473.014242][ C0] NMI backtrace for cpu 0 [ 473.014253][ C0] CPU: 0 UID: 0 PID: 1003 Comm: kworker/u8:5 Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 473.014281][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 473.014297][ C0] Workqueue: bat_events batadv_tt_purge [ 473.014332][ C0] RIP: 0010:ip6t_do_table+0x5f3/0x1d40 [ 473.014363][ C0] Code: 00 0f 85 c9 13 00 00 49 8d 7f 20 49 23 46 30 48 be 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 32 00 0f 85 94 13 00 00 <49> 8d 7e 18 4d 8b 6f 20 48 b9 00 00 00 00 00 fc ff df 48 89 fa 48 [ 473.014386][ C0] RSP: 0018:ffffc90000006a00 EFLAGS: 00000246 [ 473.014404][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000 [ 473.014419][ C0] RDX: 1ffff1100cc6cc86 RSI: dffffc0000000000 RDI: ffff888066366430 [ 473.014436][ C0] RBP: ffff888032423500 R08: 0000000000000000 R09: 0000000000000000 [ 473.014451][ C0] R10: 0000000000000000 R11: 0000000000000005 R12: ffff888061589404 [ 473.014465][ C0] R13: 0000000000000000 R14: ffff888061589380 R15: ffff888066366410 [ 473.014480][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 473.014503][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 473.014519][ C0] CR2: 00007f30ca82aff8 CR3: 0000000034882000 CR4: 00000000003526f0 [ 473.014534][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 473.014548][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 473.014563][ C0] Call Trace: [ 473.014570][ C0] [ 473.014577][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 473.014616][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 473.014647][ C0] ? nmi_handle+0x1ac/0x5d0 [ 473.014681][ C0] ? ip6t_do_table+0x5f3/0x1d40 [ 473.014711][ C0] ? default_do_nmi+0x6a/0x160 [ 473.014746][ C0] ? exc_nmi+0x170/0x1e0 [ 473.014781][ C0] ? end_repeat_nmi+0xf/0x53 [ 473.014820][ C0] ? ip6t_do_table+0x5f3/0x1d40 [ 473.014849][ C0] ? ip6t_do_table+0x5f3/0x1d40 [ 473.014878][ C0] ? ip6t_do_table+0x5f3/0x1d40 [ 473.014913][ C0] [ 473.014920][ C0] [ 473.014927][ C0] ? __skb_ext_put+0x20/0x2c0 [ 473.014956][ C0] ? mark_lock+0xb5/0xc60 [ 473.014990][ C0] ? __lock_acquire+0xcc5/0x3c40 [ 473.015024][ C0] ? __pfx_ip6t_do_table+0x10/0x10 [ 473.015056][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 473.015090][ C0] ip6table_mangle_hook+0xc4/0x770 [ 473.015123][ C0] ? lock_acquire.part.0+0x11b/0x380 [ 473.015157][ C0] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 473.015189][ C0] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 473.015224][ C0] ? rcu_is_watching+0x12/0xc0 [ 473.015248][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 473.015276][ C0] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 473.015309][ C0] nf_hook_slow+0xbb/0x200 [ 473.015332][ C0] nf_hook+0x486/0x810 [ 473.015369][ C0] ? __pfx_br_nf_dev_queue_xmit+0x10/0x10 [ 473.015407][ C0] ? __pfx_nf_hook+0x10/0x10 [ 473.015442][ C0] ? __pfx_lock_release+0x10/0x10 [ 473.015475][ C0] ? __pfx_br_nf_dev_queue_xmit+0x10/0x10 [ 473.015518][ C0] br_nf_post_routing+0x8c4/0x11b0 [ 473.015555][ C0] ? __pfx_br_nf_dev_queue_xmit+0x10/0x10 [ 473.015595][ C0] ? __pfx_br_nf_post_routing+0x10/0x10 [ 473.015633][ C0] nf_hook_slow+0xbb/0x200 [ 473.015656][ C0] nf_hook+0x474/0x7d0 [ 473.015687][ C0] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 473.015721][ C0] ? __pfx_nf_hook+0x10/0x10 [ 473.015754][ C0] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 473.015789][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 473.015824][ C0] br_forward_finish+0xcd/0x130 [ 473.015857][ C0] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 473.015891][ C0] br_nf_hook_thresh+0x303/0x410 [ 473.015933][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.015969][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 473.016006][ C0] ? __pfx_lock_release+0x10/0x10 [ 473.016038][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 473.016066][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.016103][ C0] br_nf_forward_finish+0x66a/0xba0 [ 473.016125][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.016161][ C0] br_nf_forward_ip.part.0+0x610/0x820 [ 473.016187][ C0] br_nf_forward+0xf11/0x1bd0 [ 473.016210][ C0] ? __pfx_br_nf_forward+0x10/0x10 [ 473.016232][ C0] nf_hook_slow+0xbb/0x200 [ 473.016256][ C0] nf_hook+0x474/0x7d0 [ 473.016286][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.016320][ C0] ? __pfx_nf_hook+0x10/0x10 [ 473.016352][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.016385][ C0] ? __asan_memcpy+0x3c/0x60 [ 473.016420][ C0] __br_forward+0x1be/0x5b0 [ 473.016452][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 473.016486][ C0] deliver_clone+0x5b/0xa0 [ 473.016518][ C0] br_flood+0x491/0x5e0 [ 473.016554][ C0] br_handle_frame_finish+0xea2/0x1c90 [ 473.016594][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 473.016637][ C0] ? ip6t_do_table+0xd20/0x1d40 [ 473.016665][ C0] ? __local_bh_enable_ip+0xa4/0x120 [ 473.016700][ C0] ? ip6t_do_table+0xd50/0x1d40 [ 473.016730][ C0] ? nf_hook_slow+0x132/0x200 [ 473.016753][ C0] br_nf_hook_thresh+0x303/0x410 [ 473.016791][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 473.016832][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 473.016871][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 473.016916][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 473.016951][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 473.016989][ C0] br_nf_pre_routing_finish_ipv6+0x76a/0xfb0 [ 473.017014][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 473.017056][ C0] br_nf_pre_routing_ipv6+0x3ce/0x8c0 [ 473.017081][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 473.017105][ C0] ? __pfx_lock_release+0x10/0x10 [ 473.017137][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 473.017164][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 473.017194][ C0] br_nf_pre_routing+0x860/0x15b0 [ 473.017219][ C0] br_handle_frame+0xad7/0x14a0 [ 473.017258][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 473.017297][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 473.017335][ C0] ? mark_lock+0xb5/0xc60 [ 473.017368][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 473.017405][ C0] __netif_receive_skb_core.constprop.0+0xa20/0x4330 [ 473.017441][ C0] ? kmem_cache_free+0x2e2/0x4d0 [ 473.017475][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 473.017503][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 473.017534][ C0] ? hlock_class+0x4e/0x130 [ 473.017558][ C0] ? __lock_acquire+0xcc5/0x3c40 [ 473.017594][ C0] ? mark_lock+0xb5/0xc60 [ 473.017625][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 473.017657][ C0] ? __pfx_mark_lock+0x10/0x10 [ 473.017693][ C0] ? process_backlog+0x3f1/0x15f0 [ 473.017720][ C0] __netif_receive_skb_one_core+0xb1/0x1e0 [ 473.017750][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 473.017780][ C0] ? rcu_is_watching+0x12/0xc0 [ 473.017805][ C0] ? process_backlog+0x3f1/0x15f0 [ 473.017835][ C0] ? process_backlog+0x3f1/0x15f0 [ 473.017862][ C0] __netif_receive_skb+0x1d/0x160 [ 473.017893][ C0] process_backlog+0x443/0x15f0 [ 473.017930][ C0] __napi_poll.constprop.0+0xb7/0x550 [ 473.017961][ C0] net_rx_action+0xa94/0x1010 [ 473.017995][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 473.018023][ C0] ? mark_held_locks+0x20/0xe0 [ 473.018056][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 473.018083][ C0] ? tmigr_handle_remote+0x133/0x380 [ 473.018111][ C0] ? run_timer_base+0x121/0x190 [ 473.018142][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 473.018176][ C0] handle_softirqs+0x213/0x8f0 [ 473.018212][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 473.018249][ C0] ? batadv_tt_purge+0x251/0xb90 [ 473.018283][ C0] do_softirq+0xb2/0xf0 [ 473.018316][ C0] [ 473.018323][ C0] [ 473.018330][ C0] __local_bh_enable_ip+0x100/0x120 [ 473.018366][ C0] batadv_tt_purge+0x251/0xb90 [ 473.018403][ C0] ? __pfx_batadv_tt_purge+0x10/0x10 [ 473.018437][ C0] ? rcu_is_watching+0x12/0xc0 [ 473.018461][ C0] ? trace_lock_acquire+0x14e/0x1f0 [ 473.018488][ C0] ? process_one_work+0x921/0x1ba0 [ 473.018519][ C0] ? lock_acquire+0x2f/0xb0 [ 473.018550][ C0] ? process_one_work+0x921/0x1ba0 [ 473.018583][ C0] process_one_work+0x9c5/0x1ba0 [ 473.018618][ C0] ? __pfx_nsim_dev_trap_report_work+0x10/0x10 [ 473.018649][ C0] ? __pfx_process_one_work+0x10/0x10 [ 473.018684][ C0] ? assign_work+0x1a0/0x250 [ 473.018714][ C0] worker_thread+0x6c8/0xf00 [ 473.018749][ C0] ? __kthread_parkme+0x148/0x220 [ 473.018772][ C0] ? __pfx_worker_thread+0x10/0x10 [ 473.018804][ C0] kthread+0x3af/0x750 [ 473.018832][ C0] ? __pfx_kthread+0x10/0x10 [ 473.018859][ C0] ? lock_acquire+0x2f/0xb0 [ 473.018893][ C0] ? __pfx_kthread+0x10/0x10 [ 473.018925][ C0] ret_from_fork+0x45/0x80 [ 473.018956][ C0] ? __pfx_kthread+0x10/0x10 [ 473.018984][ C0] ret_from_fork_asm+0x1a/0x30 [ 473.019016][ C0] [ 473.019240][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 473.019253][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 473.019280][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 473.019294][ T30] Call Trace: [ 473.019302][ T30] [ 473.019311][ T30] dump_stack_lvl+0x3d/0x1f0 [ 473.019340][ T30] panic+0x71d/0x800 [ 473.019366][ T30] ? __pfx_panic+0x10/0x10 [ 473.019390][ T30] ? __pfx__printk+0x10/0x10 [ 473.019420][ T30] ? ret_from_fork_asm+0x1a/0x30 [ 473.019450][ T30] ? irq_work_claim+0x76/0xa0 [ 473.019484][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 473.019514][ T30] ? irq_work_queue+0x2a/0x80 [ 473.019546][ T30] ? watchdog+0xdcc/0x12b0 [ 473.019579][ T30] ? watchdog+0xdbf/0x12b0 [ 473.019616][ T30] watchdog+0xddd/0x12b0 [ 473.019655][ T30] ? __pfx_watchdog+0x10/0x10 [ 473.019686][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 473.019711][ T30] ? __kthread_parkme+0x148/0x220 [ 473.019736][ T30] ? __pfx_watchdog+0x10/0x10 [ 473.019771][ T30] kthread+0x3af/0x750 [ 473.019799][ T30] ? __pfx_kthread+0x10/0x10 [ 473.019832][ T30] ? __pfx_kthread+0x10/0x10 [ 473.019860][ T30] ret_from_fork+0x45/0x80 [ 473.019889][ T30] ? __pfx_kthread+0x10/0x10 [ 473.019916][ T30] ret_from_fork_asm+0x1a/0x30 [ 473.019956][ T30] [ 473.020185][ T30] Kernel Offset: disabled