last executing test programs: 44.181917274s ago: executing program 0 (id=3252): bind$auto(0x3, 0x0, 0x6a) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/dev/cdrom/info\x00', 0x2000, 0x0) read$auto(r0, 0x0, 0x1ff) 44.047581204s ago: executing program 0 (id=3255): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0xa, 0x801, 0x84) getsockopt$auto(r0, 0x84, 0x74, 0x0, &(0x7f0000000040)=0x9000c) 43.794109387s ago: executing program 0 (id=3259): mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) r0 = socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) statx$auto(r0, 0x0, 0x401004, 0x8, 0x0) setsockopt$auto(0x3, 0x1, 0x41, 0x0, 0x88) 43.598567682s ago: executing program 0 (id=3263): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x100000000000037, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) 43.439110168s ago: executing program 0 (id=3266): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) tkill$auto(0x1, 0x7) 42.974150475s ago: executing program 0 (id=3273): close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x5, 0x84) connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) 42.58092651s ago: executing program 32 (id=3273): close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x5, 0x84) connect$auto(0x3, &(0x7f00000000c0)=@generic={0xa, "ab06fdffff00fff500"}, 0x55) 3.09618307s ago: executing program 4 (id=3734): close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x4) bind$auto(0x3, &(0x7f0000000000)=@generic={0x10, "a500acb75c9cedd1b5e9a0d76293"}, 0x68) 2.90515034s ago: executing program 4 (id=3738): r0 = socket(0x29, 0x5, 0x0) sendmmsg$auto(r0, &(0x7f0000000040)={{0x0, 0xffc, &(0x7f0000000100)={&(0x7f00000000c0), 0x34000}, 0x1, &(0x7f0000000080)="65b36960c8c6631879", 0x3, 0xab}, 0x80670}, 0x3f7ffffc, 0xd9) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/kcm\x00', 0x480, 0x0) read$auto(r1, &(0x7f0000000300)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xec4\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb0\x18\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk#_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1w\x1eP\xd0\xea\xab\x8f\xc7\a\xe6\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xdd\xbb\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3#\x00\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda', 0x805644) 2.707464013s ago: executing program 4 (id=3742): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x0, 0x5, 0x7) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) getresgid$auto(0x0, 0x0, 0x0) 2.513479026s ago: executing program 4 (id=3746): syz_clone3(&(0x7f0000000100)={0x2100000, 0x0, 0x0, 0x0, {0x21}, 0x0, 0x0, 0x0, 0x0}, 0x58) r0 = open(&(0x7f0000000800)='./file0\x00', 0x22240, 0x154) fcntl$auto(r0, 0x400, 0x1) execve$auto(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) 1.51364411s ago: executing program 4 (id=3764): mmap$auto(0x0, 0x4020009, 0xdf, 0x40000eb1, 0x401, 0x8000) clone$auto(0x100000008, 0x9, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x4000006) clone$auto(0x1, 0x1, 0x0, 0x0, 0x2) madvise$auto(0x0, 0x200007, 0x19) 1.304936789s ago: executing program 2 (id=3767): mmap$auto(0x0, 0x400008, 0x5f, 0x9b72, 0x2, 0x8000) r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) write$auto(r0, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x40) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) 1.158047639s ago: executing program 3 (id=3769): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) socket(0xa, 0x801, 0x84) io_uring_setup$auto(0x12, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x14, 0x0, 0x8) 1.015102767s ago: executing program 3 (id=3771): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$auto(0x3, 0x80000541b, 0x38) 837.804989ms ago: executing program 3 (id=3773): mknod$auto(&(0x7f0000000180)=':,\x00', 0xcb, 0xfffffffa) execve$auto(&(0x7f0000000000)=':,\x00', 0x0, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000580)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9\xe8\xb2\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6E*\xc9\xdd.q\xdbAX\xf6\xfaD\xcdz\xbc~\xf30LE\xb5\x18Wf\xd3\x9b\\\x1c\xbb^\xfb9\xe5\x1b:\xa4\xdd\x81\x91\\\xbc\x1fUl\xfa)\xbf\x9dPV\xae\xa9\x9c)\x01|\xfe\xd0!Rx\a\xc4\xb1$\x8eE\xc2j\x83sLS\xa8H\xf6\xf2,R\x90:\x8fx\xab\x90\xfe$h\x80!\xe2\nY#\xee\x1b}O=\x8bn\xd7zZ\x18\xa7\x9e~\x94k\x8e\xdba\xf2\xc3G\x8egR3\x1d\x01J\x87\x14(}\f\xb1}%N|z,\xbe\x1fB\xd3\xeb\xec\x83X\x8f\x97\x95\xfd\xed\xe6wt\x1d\xb3\xa8\xfb)L~}\x9f\xbf\xd0\xc9\x9d\x82-C\xc3Ez@\x8c\xbf\xa2 \x88\\\r6M\x83', 0x7, 0x0) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8f\xa2~?\xe2\x82fg\xb3G\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\tI\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd_\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xfd\rw\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xe1\xa8\xda\x80\xc5\x8f\xb41\x81\xf0\xa3\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14', 0x7, 0x0) 785.284793ms ago: executing program 1 (id=3774): r0 = socket(0x2c, 0x3, 0x0) r1 = socket(0x2, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(r0, &(0x7f0000000080)=@xdp={0x2c, 0x0, r2, 0x1c}, 0x6b) 758.143572ms ago: executing program 2 (id=3775): socket(0x2d, 0x2, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) ioctl$auto(0x3, 0x89e2, 0x91) close_range$auto(0x2, 0x8000, 0x0) 664.962976ms ago: executing program 3 (id=3776): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000280)='/sys/power/pm_freeze_timeout\x00', 0x80002, 0x0) read$auto(0x3, 0x0, 0x80) write$auto(0x3, 0x0, 0xfffffdef) 618.760737ms ago: executing program 1 (id=3777): pread64$auto(0xffffffffffffffff, 0x0, 0x7ff, 0x400) statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x3, 0x1ff, 0x1001, 0x5, 0x717e, 0x0, 0x7, 0x200000000000003, 0xd, 0x2, 0x80003, 0x4, 0x1ffffffffffd, 0xb4, 0xfffffffffffffffe, 0x7, 0x10002, 0x7f, 0x2a2, 0x5, 0xa, 0x22000, 0x3c36, 0x4, 0x84, 0x0, 0x0, 0x0, 0x0, 0x0, [0x192, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x6, 0x0, 0x0, 0x4, 0x400, 0xf567, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xffffffffffffffff, 0x100000000000]}, 0x1fe, 0xd) r0 = openat$auto__ctl_fops_dm_ioctl(0xffffffffffffff9c, &(0x7f00000003c0), 0x1541, 0x0) ioctl$auto__ctl_fops_dm_ioctl(r0, 0xfffffffffffffd03, &(0x7f00000001c0)) 587.069418ms ago: executing program 2 (id=3778): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000b00)={'veth0_to_bridge\x00', 0x0}) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b40)={0x20, r2, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4880}, 0x2002c810) 468.326757ms ago: executing program 1 (id=3779): mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x41555856, 0xc, 0x2008, 0x0, 0x0) r0 = socket(0xa, 0x3, 0x3a) ioctl$auto(r0, 0x890c, 0x1) 427.219479ms ago: executing program 2 (id=3780): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) close_range$auto(0x2, 0x8, 0x0) fsopen$auto(0x0, 0x1) 324.588947ms ago: executing program 1 (id=3781): mmap$auto(0x0, 0x20009, 0x7fffffff, 0xeb1, 0x401, 0x8000) setfsuid$auto(0xee00) r0 = pidfd_open$auto(0x1, 0x0) process_madvise$auto(r0, 0x0, 0x3, 0x3, 0x8000000000000000) 227.307997ms ago: executing program 2 (id=3782): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ucma_fops_ucma(0xffffffffffffff9c, &(0x7f0000000180), 0x101002, 0x0) io_uring_setup$auto(0x4, 0x0) write$auto(r0, 0x0, 0xc3) 192.813532ms ago: executing program 3 (id=3783): r0 = setfsuid$auto(0xee01) r1 = setfsuid$auto(0xee01) setresuid$auto(r0, r1, r0) landlock_restrict_self$auto(0xffffffffffffffff, 0x0) 159.350678ms ago: executing program 1 (id=3784): mmap$auto(0x0, 0x2000d, 0x7, 0xeb1, 0x404, 0x10008000) openat$auto_binder_fops_binder_internal(0xffffffffffffff9c, &(0x7f0000000240)='/dev/binderfs/binder1\x00', 0x40502, 0x0) r0 = openat$auto_stats_fops_(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) pread64$auto(r0, 0x0, 0x2, 0x3) 121.254508ms ago: executing program 4 (id=3785): r0 = timerfd_create$auto(0x9, 0x0) setuid$auto(0xe) write$auto(0x3, 0x0, 0xfffffdef) timerfd_settime$auto(r0, 0x0, &(0x7f0000000000)={{0x10, 0x3ff}, {0x10, 0x9}}, 0x0) 37.876056ms ago: executing program 2 (id=3786): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) move_pages$auto(0x1, 0xf54, 0x0, 0x0, 0x0, 0x8000000000000000) r0 = socket(0x11, 0x80003, 0x0) setsockopt$auto(r0, 0x107, 0x5, 0x0, 0xce24) 30.477683ms ago: executing program 3 (id=3787): open(&(0x7f0000000000)='./file0\x00', 0x161342, 0x130) r0 = open(&(0x7f0000000080)='./file0\x00', 0xeee00, 0x31) mmap$auto(0xf000, 0x1, 0x3ff, 0x12, r0, 0x0) mmap$auto(0x0, 0x643, 0x4000000000df, 0x11, r0, 0x300000000000) 0s ago: executing program 1 (id=3788): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0x24, 0x0, 0x0) kernel console output (not intermixed with test programs): 92][ T7456] __debugfs_create_file+0xa7/0x6b0 [ 134.330207][ T7456] debugfs_create_file_full+0x41/0x60 [ 134.330222][ T7456] ref_tracker_dir_debugfs+0x19d/0x290 [ 134.330245][ T7456] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 134.330300][ T7456] ? lockdep_init_map_type+0x5c/0x280 [ 134.330322][ T7456] preinit_net.part.0+0x24e/0x8a0 [ 134.330338][ T7456] copy_net_ns+0x3ba/0x690 [ 134.330355][ T7456] create_new_namespaces+0x3ea/0xa90 [ 134.330375][ T7456] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 134.330393][ T7456] ksys_unshare+0x45b/0xa40 [ 134.330412][ T7456] ? __pfx_ksys_unshare+0x10/0x10 [ 134.330430][ T7456] ? xfd_validate_state+0x61/0x180 [ 134.330455][ T7456] __x64_sys_unshare+0x31/0x40 [ 134.330472][ T7456] do_syscall_64+0xcd/0xfa0 [ 134.330488][ T7456] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.330502][ T7456] RIP: 0033:0x7faf47d8efc9 [ 134.330519][ T7456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 134.330532][ T7456] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 134.330548][ T7456] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 134.330558][ T7456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 134.330566][ T7456] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 134.330574][ T7456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 134.330583][ T7456] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 134.330605][ T7456] [ 135.028082][ T7454] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 135.926066][ T7510] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 136.366731][ T7522] batman_adv: Routing algorithm '' is not supported [ 136.589655][ T7531] netlink: 184 bytes leftover after parsing attributes in process `syz.2.758'. [ 136.879013][ T7538] svc: failed to register nfsdv3 RPC service (errno 111). [ 136.940792][ T7538] svc: failed to register nfsaclv3 RPC service (errno 111). [ 138.002060][ T7584] netlink: zone id is out of range [ 138.044928][ T7584] netlink: zone id is out of range [ 139.877274][ T7651] FAULT_INJECTION: forcing a failure. [ 139.877274][ T7651] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 139.953439][ T7651] CPU: 0 UID: 0 PID: 7651 Comm: syz.2.813 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 139.953473][ T7651] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 139.953480][ T7651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 139.953488][ T7651] Call Trace: [ 139.953493][ T7651] [ 139.953499][ T7651] dump_stack_lvl+0x16c/0x1f0 [ 139.953520][ T7651] should_fail_ex+0x512/0x640 [ 139.953544][ T7651] should_fail_alloc_page+0xe7/0x130 [ 139.953564][ T7651] prepare_alloc_pages+0x3c2/0x610 [ 139.953582][ T7651] ? rcu_is_watching+0x12/0xc0 [ 139.953599][ T7651] __alloc_frozen_pages_noprof+0x18b/0x2470 [ 139.953614][ T7651] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 139.953631][ T7651] ? is_bpf_text_address+0x94/0x1a0 [ 139.953651][ T7651] ? kernel_text_address+0x8d/0x100 [ 139.953672][ T7651] ? __kernel_text_address+0xd/0x40 [ 139.953683][ T7651] ? unwind_get_return_address+0x59/0xa0 [ 139.953698][ T7651] ? arch_stack_walk+0xa6/0x100 [ 139.953719][ T7651] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 139.953741][ T7651] ? stack_depot_save_flags+0x29/0x9c0 [ 139.953762][ T7651] ? __pfx_stack_trace_save+0x10/0x10 [ 139.953780][ T7651] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 139.953804][ T7651] ? policy_nodemask+0xea/0x4e0 [ 139.953823][ T7651] alloc_pages_mpol+0x1fb/0x550 [ 139.953842][ T7651] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 139.953865][ T7651] alloc_pages_noprof+0x131/0x390 [ 139.953884][ T7651] kimage_alloc_pages+0x74/0x350 [ 139.953899][ T7651] kimage_alloc_control_pages+0x153/0xa00 [ 139.953918][ T7651] ? __pfx_kimage_alloc_control_pages+0x10/0x10 [ 139.953938][ T7651] do_kexec_load+0x5d9/0x8a0 [ 139.953953][ T7651] ? __pfx_do_kexec_load+0x10/0x10 [ 139.953970][ T7651] ? _copy_from_user+0x59/0xd0 [ 139.953993][ T7651] __x64_sys_kexec_load+0x1bf/0x230 [ 139.954010][ T7651] do_syscall_64+0xcd/0xfa0 [ 139.954026][ T7651] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 139.954040][ T7651] RIP: 0033:0x7f03ecd8efc9 [ 139.954051][ T7651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 139.954064][ T7651] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f6 [ 139.954077][ T7651] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 139.954086][ T7651] RDX: 0000200000000040 RSI: 0000000000000001 RDI: 0000200000000007 [ 139.954094][ T7651] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 139.954102][ T7651] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 139.954110][ T7651] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 139.954128][ T7651] [ 139.954135][ T7651] kexec: Could not allocate swap buffer [ 140.265979][ T7654] FAULT_INJECTION: forcing a failure. [ 140.265979][ T7654] name failslab, interval 1, probability 0, space 0, times 0 [ 140.289151][ T7654] CPU: 0 UID: 0 PID: 7654 Comm: syz.1.815 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 140.289185][ T7654] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 140.289193][ T7654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 140.289201][ T7654] Call Trace: [ 140.289206][ T7654] [ 140.289212][ T7654] dump_stack_lvl+0x16c/0x1f0 [ 140.289232][ T7654] should_fail_ex+0x512/0x640 [ 140.289254][ T7654] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 140.289272][ T7654] should_failslab+0xc2/0x120 [ 140.289290][ T7654] kmem_cache_alloc_noprof+0x75/0x6e0 [ 140.289304][ T7654] ? kcm_create+0x11e/0x690 [ 140.289328][ T7654] ? kcm_create+0x11e/0x690 [ 140.289347][ T7654] kcm_create+0x11e/0x690 [ 140.289369][ T7654] __sock_create+0x338/0x8d0 [ 140.289390][ T7654] __sys_socket+0x14d/0x260 [ 140.289407][ T7654] ? __pfx___sys_socket+0x10/0x10 [ 140.289424][ T7654] ? xfd_validate_state+0x61/0x180 [ 140.289443][ T7654] ? __pfx_ksys_write+0x10/0x10 [ 140.289462][ T7654] __x64_sys_socket+0x72/0xb0 [ 140.289478][ T7654] ? lockdep_hardirqs_on+0x7c/0x110 [ 140.289493][ T7654] do_syscall_64+0xcd/0xfa0 [ 140.289509][ T7654] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 140.289523][ T7654] RIP: 0033:0x7f672598efc9 [ 140.289534][ T7654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 140.289547][ T7654] RSP: 002b:00007f6726740038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 140.289560][ T7654] RAX: ffffffffffffffda RBX: 00007f6725be5fa0 RCX: 00007f672598efc9 [ 140.289569][ T7654] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000029 [ 140.289577][ T7654] RBP: 00007f6725a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 140.289585][ T7654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 140.289592][ T7654] R13: 00007f6725be6038 R14: 00007f6725be5fa0 R15: 00007ffebff85888 [ 140.289611][ T7654] [ 140.487390][ C0] vkms_vblank_simulate: vblank timer overrun [ 140.578632][ T7658] netlink: 2 bytes leftover after parsing attributes in process `syz.0.816'. [ 140.942089][ T7673] netlink: 'syz.0.823': attribute type 8 has an invalid length. [ 141.821376][ T7703] openvswitch: netlink: Invalid MD length 0 for MD type 0 [ 145.202778][ T7806] synth uevent: /module/orangefs: unknown uevent action string [ 145.695979][ T7818] openvswitch: netlink: Message has 4 unknown bytes. [ 146.423746][ T7841] FAULT_INJECTION: forcing a failure. [ 146.423746][ T7841] name failslab, interval 1, probability 0, space 0, times 0 [ 146.475596][ T7841] CPU: 0 UID: 0 PID: 7841 Comm: syz.2.899 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 146.475630][ T7841] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 146.475638][ T7841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 146.475646][ T7841] Call Trace: [ 146.475651][ T7841] [ 146.475657][ T7841] dump_stack_lvl+0x16c/0x1f0 [ 146.475678][ T7841] should_fail_ex+0x512/0x640 [ 146.475698][ T7841] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 146.475716][ T7841] should_failslab+0xc2/0x120 [ 146.475735][ T7841] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 146.475750][ T7841] ? __d_alloc+0x32/0xae0 [ 146.475770][ T7841] ? __d_alloc+0x32/0xae0 [ 146.475784][ T7841] __d_alloc+0x32/0xae0 [ 146.475801][ T7841] d_alloc_parallel+0x111/0x1510 [ 146.475828][ T7841] ? __pfx_d_alloc_parallel+0x10/0x10 [ 146.475850][ T7841] ? lockdep_init_map_type+0x5c/0x280 [ 146.475871][ T7841] ? lockdep_init_map_type+0x5c/0x280 [ 146.475893][ T7841] __lookup_slow+0x193/0x460 [ 146.475913][ T7841] ? __pfx___lookup_slow+0x10/0x10 [ 146.475935][ T7841] ? lruvec_init+0x210/0x210 [ 146.475957][ T7841] ? lruvec_init+0x210/0x210 [ 146.475975][ T7841] ? d_lookup+0xe7/0x190 [ 146.475997][ T7841] lookup_noperm+0xe1/0x110 [ 146.476017][ T7841] simple_start_creating+0xd1/0x1b0 [ 146.476042][ T7841] debugfs_start_creating.part.0+0x82/0x190 [ 146.476065][ T7841] __debugfs_create_file+0xa7/0x6b0 [ 146.476080][ T7841] debugfs_create_file_full+0x41/0x60 [ 146.476095][ T7841] ref_tracker_dir_debugfs+0x19d/0x290 [ 146.476122][ T7841] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 146.476162][ T7841] ? lockdep_init_map_type+0x5c/0x280 [ 146.476185][ T7841] preinit_net.part.0+0x24e/0x8a0 [ 146.476201][ T7841] copy_net_ns+0x3ba/0x690 [ 146.476218][ T7841] create_new_namespaces+0x3ea/0xa90 [ 146.476238][ T7841] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 146.476255][ T7841] ksys_unshare+0x45b/0xa40 [ 146.476273][ T7841] ? __pfx_ksys_unshare+0x10/0x10 [ 146.476292][ T7841] ? xfd_validate_state+0x61/0x180 [ 146.476316][ T7841] __x64_sys_unshare+0x31/0x40 [ 146.476333][ T7841] do_syscall_64+0xcd/0xfa0 [ 146.476350][ T7841] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 146.476364][ T7841] RIP: 0033:0x7f03ecd8efc9 [ 146.476376][ T7841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 146.476390][ T7841] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 146.476404][ T7841] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 146.476412][ T7841] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 146.476420][ T7841] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 146.476428][ T7841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 146.476436][ T7841] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 146.476455][ T7841] [ 149.034554][ T7875] netlink: 'syz.2.913': attribute type 1 has an invalid length. [ 150.086398][ T7910] program syz.3.928 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 150.744497][ T7926] FAULT_INJECTION: forcing a failure. [ 150.744497][ T7926] name failslab, interval 1, probability 0, space 0, times 0 [ 150.877802][ T7926] CPU: 0 UID: 0 PID: 7926 Comm: syz.0.936 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 150.877836][ T7926] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 150.877844][ T7926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 150.877852][ T7926] Call Trace: [ 150.877857][ T7926] [ 150.877863][ T7926] dump_stack_lvl+0x16c/0x1f0 [ 150.877883][ T7926] should_fail_ex+0x512/0x640 [ 150.877904][ T7926] ? __kmalloc_cache_noprof+0x5f/0x780 [ 150.877936][ T7926] should_failslab+0xc2/0x120 [ 150.877955][ T7926] __kmalloc_cache_noprof+0x72/0x780 [ 150.877977][ T7926] ? rcu_is_watching+0x12/0xc0 [ 150.877991][ T7926] ? call_usermodehelper_setup+0xaf/0x360 [ 150.878006][ T7926] ? __pfx_free_modprobe_argv+0x10/0x10 [ 150.878028][ T7926] ? call_usermodehelper_setup+0xaf/0x360 [ 150.878040][ T7926] call_usermodehelper_setup+0xaf/0x360 [ 150.878057][ T7926] __request_module+0x3bd/0x690 [ 150.878078][ T7926] ? __pfx___request_module+0x10/0x10 [ 150.878106][ T7926] ? rcu_is_watching+0x12/0xc0 [ 150.878121][ T7926] ? lockdep_hardirqs_on+0x7c/0x110 [ 150.878139][ T7926] netlink_create+0x226/0x620 [ 150.878164][ T7926] __sock_create+0x338/0x8d0 [ 150.878185][ T7926] __sys_socket+0x14d/0x260 [ 150.878202][ T7926] ? __pfx___sys_socket+0x10/0x10 [ 150.878219][ T7926] ? xfd_validate_state+0x61/0x180 [ 150.878238][ T7926] ? __pfx_ksys_write+0x10/0x10 [ 150.878257][ T7926] __x64_sys_socket+0x72/0xb0 [ 150.878273][ T7926] ? lockdep_hardirqs_on+0x7c/0x110 [ 150.878287][ T7926] do_syscall_64+0xcd/0xfa0 [ 150.878303][ T7926] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 150.878317][ T7926] RIP: 0033:0x7fe912b8efc9 [ 150.878332][ T7926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 150.878345][ T7926] RSP: 002b:00007fe913943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 150.878358][ T7926] RAX: ffffffffffffffda RBX: 00007fe912de5fa0 RCX: 00007fe912b8efc9 [ 150.878367][ T7926] RDX: 000000000000001f RSI: 0000000000000003 RDI: 0000000000000010 [ 150.878376][ T7926] RBP: 00007fe912c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 150.878385][ T7926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 150.878393][ T7926] R13: 00007fe912de6038 R14: 00007fe912de5fa0 R15: 00007fffe1140868 [ 150.878412][ T7926] [ 151.742277][ T7947] FAULT_INJECTION: forcing a failure. [ 151.742277][ T7947] name failslab, interval 1, probability 0, space 0, times 0 [ 151.777798][ T7947] CPU: 0 UID: 0 PID: 7947 Comm: syz.0.945 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 151.777832][ T7947] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 151.777839][ T7947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 151.777848][ T7947] Call Trace: [ 151.777853][ T7947] [ 151.777859][ T7947] dump_stack_lvl+0x16c/0x1f0 [ 151.777878][ T7947] should_fail_ex+0x512/0x640 [ 151.777899][ T7947] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 151.777917][ T7947] should_failslab+0xc2/0x120 [ 151.777936][ T7947] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 151.777951][ T7947] ? __d_alloc+0x32/0xae0 [ 151.777971][ T7947] ? __d_alloc+0x32/0xae0 [ 151.777985][ T7947] __d_alloc+0x32/0xae0 [ 151.777999][ T7947] ? bpf_lsm_inode_permission+0x9/0x10 [ 151.778017][ T7947] d_alloc+0x4a/0x1e0 [ 151.778033][ T7947] vfs_tmpfile+0x148/0x890 [ 151.778052][ T7947] path_openat+0x1683/0x2cb0 [ 151.778073][ T7947] ? __pfx_path_openat+0x10/0x10 [ 151.778093][ T7947] do_filp_open+0x20b/0x470 [ 151.778108][ T7947] ? __pfx_do_filp_open+0x10/0x10 [ 151.778136][ T7947] ? _raw_spin_unlock+0x28/0x50 [ 151.778148][ T7947] ? alloc_fd+0x471/0x7d0 [ 151.778167][ T7947] do_sys_openat2+0x11b/0x1d0 [ 151.778186][ T7947] ? __pfx_do_sys_openat2+0x10/0x10 [ 151.778213][ T7947] __x64_sys_open+0x153/0x1e0 [ 151.778232][ T7947] ? __pfx___x64_sys_open+0x10/0x10 [ 151.778256][ T7947] ? rcu_is_watching+0x12/0xc0 [ 151.778272][ T7947] do_syscall_64+0xcd/0xfa0 [ 151.778288][ T7947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 151.778302][ T7947] RIP: 0033:0x7fe912b8efc9 [ 151.778314][ T7947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 151.778327][ T7947] RSP: 002b:00007fe913943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 151.778340][ T7947] RAX: ffffffffffffffda RBX: 00007fe912de5fa0 RCX: 00007fe912b8efc9 [ 151.778349][ T7947] RDX: 0000000000000408 RSI: 0000000000591002 RDI: 0000200000000100 [ 151.778357][ T7947] RBP: 00007fe912c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 151.778365][ T7947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 151.778373][ T7947] R13: 00007fe912de6038 R14: 00007fe912de5fa0 R15: 00007fffe1140868 [ 151.778392][ T7947] [ 152.349542][ T7938] could not allocate digest TFM handle [ 152.824996][ T7981] FAULT_INJECTION: forcing a failure. [ 152.824996][ T7981] name failslab, interval 1, probability 0, space 0, times 0 [ 152.909880][ T7981] CPU: 0 UID: 0 PID: 7981 Comm: syz.0.958 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 152.909913][ T7981] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 152.909921][ T7981] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 152.909929][ T7981] Call Trace: [ 152.909934][ T7981] [ 152.909941][ T7981] dump_stack_lvl+0x16c/0x1f0 [ 152.909960][ T7981] should_fail_ex+0x512/0x640 [ 152.909981][ T7981] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 152.909998][ T7981] should_failslab+0xc2/0x120 [ 152.910017][ T7981] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 152.910032][ T7981] ? __d_alloc+0x32/0xae0 [ 152.910051][ T7981] ? __d_alloc+0x32/0xae0 [ 152.910065][ T7981] __d_alloc+0x32/0xae0 [ 152.910082][ T7981] d_alloc_parallel+0x111/0x1510 [ 152.910109][ T7981] ? __pfx_d_alloc_parallel+0x10/0x10 [ 152.910131][ T7981] ? lockdep_init_map_type+0x5c/0x280 [ 152.910152][ T7981] ? lockdep_init_map_type+0x5c/0x280 [ 152.910174][ T7981] __lookup_slow+0x193/0x460 [ 152.910195][ T7981] ? __pfx___lookup_slow+0x10/0x10 [ 152.910217][ T7981] ? lruvec_init+0x210/0x210 [ 152.910239][ T7981] ? lruvec_init+0x210/0x210 [ 152.910257][ T7981] ? d_lookup+0xe7/0x190 [ 152.910279][ T7981] lookup_noperm+0xe1/0x110 [ 152.910299][ T7981] simple_start_creating+0xd1/0x1b0 [ 152.910323][ T7981] debugfs_start_creating.part.0+0x82/0x190 [ 152.910347][ T7981] __debugfs_create_file+0xa7/0x6b0 [ 152.910363][ T7981] debugfs_create_file_full+0x41/0x60 [ 152.910378][ T7981] ref_tracker_dir_debugfs+0x19d/0x290 [ 152.910399][ T7981] ? __pfx_ref_tracker_dir_debugfs+0x10/0x10 [ 152.910438][ T7981] ? lockdep_init_map_type+0x5c/0x280 [ 152.910459][ T7981] preinit_net.part.0+0x24e/0x8a0 [ 152.910483][ T7981] copy_net_ns+0x3ba/0x690 [ 152.910501][ T7981] create_new_namespaces+0x3ea/0xa90 [ 152.910522][ T7981] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 152.910540][ T7981] ksys_unshare+0x45b/0xa40 [ 152.910559][ T7981] ? __pfx_ksys_unshare+0x10/0x10 [ 152.910578][ T7981] ? xfd_validate_state+0x61/0x180 [ 152.910602][ T7981] __x64_sys_unshare+0x31/0x40 [ 152.910620][ T7981] do_syscall_64+0xcd/0xfa0 [ 152.910637][ T7981] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 152.910651][ T7981] RIP: 0033:0x7fe912b8efc9 [ 152.910663][ T7981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 152.910677][ T7981] RSP: 002b:00007fe913943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 152.910691][ T7981] RAX: ffffffffffffffda RBX: 00007fe912de5fa0 RCX: 00007fe912b8efc9 [ 152.910700][ T7981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 152.910707][ T7981] RBP: 00007fe912c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 152.910715][ T7981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 152.910723][ T7981] R13: 00007fe912de6038 R14: 00007fe912de5fa0 R15: 00007fffe1140868 [ 152.910742][ T7981] [ 157.060318][ T8101] openvswitch: netlink: nsh attribute has 14 unknown bytes. [ 157.749157][ T8130] usb usb37: usbfs: process 8130 (syz.2.1025) did not claim interface 0 before use [ 159.310580][ T30] audit: type=1107 audit(4294967344.650:3): pid=8184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 159.367305][ T30] audit: type=1107 audit(4294967344.670:4): pid=8184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 159.470530][ T8190] mmap: syz.2.1053 (8190): VmData 37470208 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 159.710630][ T8199] __vm_enough_memory: pid: 8199, comm: syz.1.1055, bytes: 4398046511104 not enough memory for the allocation [ 160.596393][ T8230] openvswitch: netlink: IP tunnel dst address not specified [ 163.082790][ T8322] svc: failed to register nfsdv3 RPC service (errno 111). [ 163.123118][ T8322] svc: failed to register nfsaclv3 RPC service (errno 111). [ 163.624153][ T8344] FAULT_INJECTION: forcing a failure. [ 163.624153][ T8344] name failslab, interval 1, probability 0, space 0, times 0 [ 163.708701][ T8344] CPU: 0 UID: 0 PID: 8344 Comm: syz.1.1125 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 163.708735][ T8344] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 163.708743][ T8344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 163.708751][ T8344] Call Trace: [ 163.708757][ T8344] [ 163.708762][ T8344] dump_stack_lvl+0x16c/0x1f0 [ 163.708782][ T8344] should_fail_ex+0x512/0x640 [ 163.708807][ T8344] should_failslab+0xc2/0x120 [ 163.708826][ T8344] __kmalloc_cache_noprof+0x72/0x780 [ 163.708849][ T8344] ? __task_pid_nr_ns+0x1f5/0x500 [ 163.708868][ T8344] ? proc_self_get_link+0x1a9/0x230 [ 163.708888][ T8344] ? proc_self_get_link+0x1a9/0x230 [ 163.708905][ T8344] proc_self_get_link+0x1a9/0x230 [ 163.708922][ T8344] ? __pfx_proc_self_get_link+0x10/0x10 [ 163.708939][ T8344] step_into+0x189e/0x21a0 [ 163.708956][ T8344] ? __pfx_step_into+0x10/0x10 [ 163.708971][ T8344] ? lookup_fast+0x156/0x610 [ 163.708986][ T8344] walk_component+0xfc/0x5b0 [ 163.709000][ T8344] link_path_walk+0x627/0xe20 [ 163.709019][ T8344] path_openat+0x1b0/0x2cb0 [ 163.709040][ T8344] ? __pfx_path_openat+0x10/0x10 [ 163.709056][ T8344] ? __lock_acquire+0xb8a/0x1c90 [ 163.709076][ T8344] do_filp_open+0x20b/0x470 [ 163.709091][ T8344] ? __pfx_do_filp_open+0x10/0x10 [ 163.709119][ T8344] ? alloc_fd+0x471/0x7d0 [ 163.709138][ T8344] do_sys_openat2+0x11b/0x1d0 [ 163.709158][ T8344] ? __pfx_do_sys_openat2+0x10/0x10 [ 163.709185][ T8344] __x64_sys_openat+0x174/0x210 [ 163.709204][ T8344] ? __pfx___x64_sys_openat+0x10/0x10 [ 163.709232][ T8344] do_syscall_64+0xcd/0xfa0 [ 163.709248][ T8344] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 163.709262][ T8344] RIP: 0033:0x7f672598efc9 [ 163.709273][ T8344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 163.709286][ T8344] RSP: 002b:00007f6726740038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 163.709300][ T8344] RAX: ffffffffffffffda RBX: 00007f6725be5fa0 RCX: 00007f672598efc9 [ 163.709309][ T8344] RDX: 0000000000002100 RSI: 00002000000000c0 RDI: ffffffffffffff9c [ 163.709317][ T8344] RBP: 00007f6725a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 163.709325][ T8344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 163.709333][ T8344] R13: 00007f6725be6038 R14: 00007f6725be5fa0 R15: 00007ffebff85888 [ 163.709352][ T8344] [ 163.951665][ C0] vkms_vblank_simulate: vblank timer overrun [ 165.702396][ T8417] netlink: 'syz.1.1160': attribute type 1 has an invalid length. [ 165.911721][ T8429] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535 [ 166.916024][ T8470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1184'. [ 167.194509][ T8478] netlink: 'syz.3.1188': attribute type 11 has an invalid length. [ 167.235062][ T8478] netlink: 'syz.3.1188': attribute type 11 has an invalid length. [ 167.272691][ T8478] netlink: 'syz.3.1188': attribute type 11 has an invalid length. [ 167.307863][ T8478] netlink: 'syz.3.1188': attribute type 11 has an invalid length. [ 167.348358][ T8478] netlink: 'syz.3.1188': attribute type 11 has an invalid length. [ 167.607249][ T8492] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1195'. [ 167.672897][ T8492] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1195'. [ 168.092673][ T8509] netlink: 'syz.0.1202': attribute type 1 has an invalid length. [ 168.136595][ T8509] netlink: 33 bytes leftover after parsing attributes in process `syz.0.1202'. [ 171.104624][ T8617] netlink: 'syz.3.1251': attribute type 1 has an invalid length. [ 171.196708][ T8621] writing to auto_msgmni has no effect [ 172.468040][ T8670] misc userio: No port type given on /dev/userio [ 173.963555][ T8728] netlink: 'syz.3.1302': attribute type 1 has an invalid length. [ 174.909113][ T8763] netlink: 'syz.1.1319': attribute type 11 has an invalid length. [ 174.938696][ T8763] netlink: 'syz.1.1319': attribute type 11 has an invalid length. [ 174.972116][ T8763] netlink: 'syz.1.1319': attribute type 11 has an invalid length. [ 176.037855][ T8801] input input11: cannot allocate more than FF_MAX_EFFECTS effects [ 176.114381][ T8802] nbd: illegal input index 65536 [ 177.587819][ T8853] openvswitch: netlink: ERSPAN option length err (len 256, max 255). [ 181.004340][ T8965] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 181.847441][ T8986] delete_channel: no stack [ 182.980665][ T9023] FAULT_INJECTION: forcing a failure. [ 182.980665][ T9023] name failslab, interval 1, probability 0, space 0, times 0 [ 183.065954][ T9023] CPU: 0 UID: 0 PID: 9023 Comm: syz.1.1438 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 183.065988][ T9023] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 183.065996][ T9023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 183.066004][ T9023] Call Trace: [ 183.066009][ T9023] [ 183.066015][ T9023] dump_stack_lvl+0x16c/0x1f0 [ 183.066035][ T9023] should_fail_ex+0x512/0x640 [ 183.066057][ T9023] ? __kmalloc_cache_noprof+0x5f/0x780 [ 183.066081][ T9023] should_failslab+0xc2/0x120 [ 183.066100][ T9023] __kmalloc_cache_noprof+0x72/0x780 [ 183.066122][ T9023] ? mqueue_init_fs_context+0x4b/0x480 [ 183.066145][ T9023] ? __pfx_mqueue_init_fs_context+0x10/0x10 [ 183.066163][ T9023] ? mqueue_init_fs_context+0x4b/0x480 [ 183.066181][ T9023] mqueue_init_fs_context+0x4b/0x480 [ 183.066199][ T9023] ? __pfx_mqueue_init_fs_context+0x10/0x10 [ 183.066219][ T9023] alloc_fs_context+0x54d/0x9c0 [ 183.066239][ T9023] mq_init_ns+0x172/0x620 [ 183.066261][ T9023] copy_ipcs+0x2d6/0x550 [ 183.066282][ T9023] create_new_namespaces+0x20a/0xa90 [ 183.066299][ T9023] ? security_capable+0x7e/0x260 [ 183.066320][ T9023] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 183.066337][ T9023] ksys_unshare+0x45b/0xa40 [ 183.066355][ T9023] ? __pfx_ksys_unshare+0x10/0x10 [ 183.066374][ T9023] ? xfd_validate_state+0x61/0x180 [ 183.066398][ T9023] __x64_sys_unshare+0x31/0x40 [ 183.066416][ T9023] do_syscall_64+0xcd/0xfa0 [ 183.066432][ T9023] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.066445][ T9023] RIP: 0033:0x7f672598efc9 [ 183.066457][ T9023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.066471][ T9023] RSP: 002b:00007f6726740038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 183.066484][ T9023] RAX: ffffffffffffffda RBX: 00007f6725be5fa0 RCX: 00007f672598efc9 [ 183.066493][ T9023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000000 [ 183.066501][ T9023] RBP: 00007f6725a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 183.066509][ T9023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.066517][ T9023] R13: 00007f6725be6038 R14: 00007f6725be5fa0 R15: 00007ffebff85888 [ 183.066535][ T9023] [ 183.798355][ T9035] netlink: 'syz.2.1444': attribute type 2 has an invalid length. [ 183.844425][ T9035] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1444'. [ 184.403485][ T9063] nfsd: Unknown parameter 'TšR‚Ð' [ 184.787081][ T9078] openvswitch: netlink: IP tunnel dst address not specified [ 186.185563][ T5835] Bluetooth: hci2: unexpected event 0x3e length: 728 > 260 [ 186.185594][ T5835] Bluetooth: hci2: unexpected subevent 0x03 length: 727 > 9 [ 186.590650][ T30] audit: type=1800 audit(4294967322.410:5): pid=9148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1497" name="discovery_nqn" dev="configfs" ino=18758 res=0 errno=0 [ 187.796056][ T30] audit: type=1800 audit(4294967323.630:6): pid=9192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1517" name="discovery_nqn" dev="configfs" ino=18909 res=0 errno=0 [ 188.005987][ T9201] ksmbd: Unknown IPC event: 14, ignore. syzkaller syzkaller login: [ 188.222440][ T9207] MTRR 1 not used [ 188.991913][ T9235] nbd: couldn't find a device at index 0 [ 189.074967][ T9237] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„ [ 189.347446][ T9247] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 189.914155][ T9266] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1552'. [ 190.754443][ T9297] svc: failed to register nfsdv3 RPC service (errno 111). [ 190.799280][ T9297] svc: failed to register nfsaclv3 RPC service (errno 111). [ 191.885608][ T9341] netlink: Conntrack attr has 16 unknown bytes [ 192.332727][ T9357] netlink: zone id is out of range [ 192.353432][ T9357] netlink: zone id is out of range [ 192.358550][ T9357] netlink: zone id is out of range [ 192.403503][ T9357] netlink: zone id is out of range [ 192.436095][ T9357] netlink: zone id is out of range [ 192.455584][ T9357] netlink: zone id is out of range [ 192.482594][ T9357] netlink: zone id is out of range [ 192.502835][ T9357] netlink: zone id is out of range [ 192.543611][ T9357] netlink: zone id is out of range [ 193.373796][ T9397] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 193.599333][ T9405] FAULT_INJECTION: forcing a failure. [ 193.599333][ T9405] name failslab, interval 1, probability 0, space 0, times 0 [ 193.640526][ T9405] CPU: 0 UID: 0 PID: 9405 Comm: syz.1.1618 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 193.640560][ T9405] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 193.640568][ T9405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 193.640576][ T9405] Call Trace: [ 193.640581][ T9405] [ 193.640587][ T9405] dump_stack_lvl+0x16c/0x1f0 [ 193.640608][ T9405] should_fail_ex+0x512/0x640 [ 193.640635][ T9405] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 193.640652][ T9405] should_failslab+0xc2/0x120 [ 193.640670][ T9405] kmem_cache_alloc_noprof+0x75/0x6e0 [ 193.640684][ T9405] ? dup_fd+0x4e/0xb90 [ 193.640701][ T9405] ? dup_fd+0x4e/0xb90 [ 193.640713][ T9405] dup_fd+0x4e/0xb90 [ 193.640733][ T9405] ksys_unshare+0x831/0xa40 [ 193.640752][ T9405] ? __pfx_ksys_unshare+0x10/0x10 [ 193.640770][ T9405] ? xfd_validate_state+0x61/0x180 [ 193.640794][ T9405] __x64_sys_unshare+0x31/0x40 [ 193.640812][ T9405] do_syscall_64+0xcd/0xfa0 [ 193.640828][ T9405] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 193.640842][ T9405] RIP: 0033:0x7f672598efc9 [ 193.640853][ T9405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 193.640866][ T9405] RSP: 002b:00007f6726740038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 193.640880][ T9405] RAX: ffffffffffffffda RBX: 00007f6725be5fa0 RCX: 00007f672598efc9 [ 193.640889][ T9405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000008000400 [ 193.640897][ T9405] RBP: 00007f6725a11f91 R08: 0000000000000000 R09: 0000000000000000 [ 193.640905][ T9405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 193.640913][ T9405] R13: 00007f6725be6038 R14: 00007f6725be5fa0 R15: 00007ffebff85888 [ 193.640932][ T9405] [ 194.236508][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.242856][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.695668][ T30] audit: type=1800 audit(4294967330.530:7): pid=9430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1628" name="lu_gp_id" dev="configfs" ino=19773 res=0 errno=0 syzkaller syzkaller login: [ 196.042861][ T9483] phram: parameter too long [ 196.089443][ T9484] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 198.731320][ T9583] netlink: 'syz.2.1701': attribute type 11 has an invalid length. [ 198.766477][ T9583] netlink: 'syz.2.1701': attribute type 11 has an invalid length. [ 198.813401][ T9583] netlink: 'syz.2.1701': attribute type 11 has an invalid length. [ 198.971966][ T9590] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1704'. [ 199.440353][ T9610] net_ratelimit: 50 callbacks suppressed [ 199.440368][ T9610] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 199.747892][ T9619] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 200.433750][ T9645] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 201.584665][ T9693] netlink: 'syz.3.1753': attribute type 1 has an invalid length. [ 202.117749][ T9714] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1763'. [ 203.053564][ T9743] openvswitch: netlink: IP tunnel TTL not specified. [ 204.434384][ T9794] Â: entered promiscuous mode [ 206.265234][ T5835] Bluetooth: hci2: SCO packet too small [ 206.458169][ T9870] : entered promiscuous mode [ 206.629291][ T9877] netlink: 'syz.2.1837': attribute type 1 has an invalid length. [ 206.800651][ T9879] syz.0.1838 (9879) used greatest stack depth: 19720 bytes left [ 206.987638][ T9887] netlink: Conntrack attr type has unexpected length (type=3, length=0, expected=8) [ 207.781264][ T9915] binder: 9913:9915 ioctl 400c620e 0 returned -14 [ 208.394531][ T9936] FAULT_INJECTION: forcing a failure. [ 208.394531][ T9936] name failslab, interval 1, probability 0, space 0, times 0 [ 208.457003][ T9936] CPU: 0 UID: 0 PID: 9936 Comm: syz.2.1865 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 208.457037][ T9936] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 208.457045][ T9936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 208.457053][ T9936] Call Trace: [ 208.457058][ T9936] [ 208.457064][ T9936] dump_stack_lvl+0x16c/0x1f0 [ 208.457084][ T9936] should_fail_ex+0x512/0x640 [ 208.457105][ T9936] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 208.457122][ T9936] should_failslab+0xc2/0x120 [ 208.457142][ T9936] kmem_cache_alloc_noprof+0x75/0x6e0 [ 208.457156][ T9936] ? alloc_empty_file+0x55/0x1e0 [ 208.457179][ T9936] ? alloc_empty_file+0x55/0x1e0 [ 208.457196][ T9936] alloc_empty_file+0x55/0x1e0 [ 208.457224][ T9936] alloc_file_pseudo+0x13a/0x230 [ 208.457244][ T9936] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 208.457265][ T9936] ? security_inode_init_security_anon+0x79/0x240 [ 208.457292][ T9936] __anon_inode_getfile+0xe8/0x280 [ 208.457313][ T9936] new_userfaultfd+0x25e/0x3d0 [ 208.457334][ T9936] __x64_sys_userfaultfd+0x4b/0xb0 [ 208.457348][ T9936] do_syscall_64+0xcd/0xfa0 [ 208.457364][ T9936] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 208.457378][ T9936] RIP: 0033:0x7f03ecd8efc9 [ 208.457389][ T9936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 208.457402][ T9936] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000143 [ 208.457415][ T9936] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 208.457424][ T9936] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 208.457432][ T9936] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 208.457440][ T9936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 208.457447][ T9936] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 208.457466][ T9936] [ 209.311954][ T9965] queue_state_write: unsupported operation '' [ 209.363390][ T9965] queue_state_write: use 'run', 'start' or 'kick' [ 210.788895][T10010] kafs: addr_prefs: Invalid Command [ 211.645707][ T5147] Bluetooth: hci1: command 0x0406 tx timeout [ 211.651738][ T5147] Bluetooth: hci2: command 0x0406 tx timeout [ 211.657998][ T5833] Bluetooth: hci0: command 0x0406 tx timeout [ 211.664037][ T5842] Bluetooth: hci3: command 0x0406 tx timeout [ 212.465897][T10084] sctp: [Deprecated]: syz.0.1934 (pid 10084) Use of int in max_burst socket option deprecated. [ 212.465897][T10084] Use struct sctp_assoc_value instead [ 213.123670][T10114] netlink: 206 bytes leftover after parsing attributes in process `syz.0.1949'. [ 215.485667][ T30] audit: type=1800 audit(4294967304.540:8): pid=10202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1993" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 218.319952][T10315] .^: entered promiscuous mode [ 219.471302][T10354] syz.2.2064 (10354) used obsolete PPPIOCDETACH ioctl [ 220.931647][T10412] netlink: 'syz.2.2090': attribute type 12 has an invalid length. [ 221.524079][T10433] netlink: 'syz.3.2100': attribute type 1 has an invalid length. [ 222.900940][T10493] netlink: 'syz.0.2129': attribute type 1 has an invalid length. [ 223.821239][T10520] openvswitch: netlink: Key type 261 is out of range max 32 [ 224.188063][T10534] bond0: invalid ARP target specified [ 224.904193][ T52] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260 [ 224.904218][ T52] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260 [ 224.921381][ T52] Bluetooth: hci2: Unknown advertising packet type: 0x7f [ 224.921437][ T52] Bluetooth: hci2: Malformed LE Event: 0x0d [ 225.447662][T10572] nbd: must specify a size in bytes for the device [ 225.518184][T10576] nfs4: Unknown parameter 'nfsd' [ 225.778290][T10583] ë4—fRd: entered promiscuous mode [ 226.046048][T10592] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 226.784853][T10621] netlink: 'syz.1.2188': attribute type 1 has an invalid length. [ 227.321226][T10634] vhci_hcd: invalid port number 21 [ 227.328295][T10636] kernel read not supported for file /dynamic_events (pid: 10636 comm: syz.3.2196) [ 227.338078][ T30] audit: type=1804 audit(4294967316.380:9): pid=10636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2196" name="/newroot/sys/kernel/debug/tracing/dynamic_events" dev="tracefs" ino=14 res=1 errno=0 [ 227.432847][T10638] netlink: 'syz.1.2197': attribute type 11 has an invalid length. [ 227.450969][ T30] audit: type=1800 audit(4294967316.460:10): pid=10636 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2196" name="dynamic_events" dev="tracefs" ino=14 res=0 errno=0 [ 227.488002][T10638] netlink: 'syz.1.2197': attribute type 11 has an invalid length. [ 227.517611][T10638] netlink: 'syz.1.2197': attribute type 11 has an invalid length. [ 227.730449][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.875100][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.956094][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.144285][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 228.689224][ T13] bridge_slave_1: left allmulticast mode [ 228.743667][ T13] bridge_slave_1: left promiscuous mode [ 228.749885][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.895417][ T13] bridge_slave_0: left allmulticast mode [ 228.901071][ T13] bridge_slave_0: left promiscuous mode [ 228.967001][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.983408][ T5835] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 229.003534][ T5835] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 229.013192][ T5835] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 229.021453][ T5835] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 229.033778][ T5835] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 230.622521][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 230.654613][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 230.682973][ T13] bond0 (unregistering): Released all slaves [ 230.875535][ T13] Â: left promiscuous mode [ 231.088337][ T5835] Bluetooth: hci4: command tx timeout [ 231.134174][ T5835] Bluetooth: hci3: unexpected event 0x2c length: 42 > 17 [ 231.688886][T10673] chnl_net:caif_netlink_parms(): no params data found [ 232.106696][ T13] hsr_slave_0: left promiscuous mode [ 232.133939][ T13] hsr_slave_1: left promiscuous mode [ 232.155393][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 232.199455][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 232.258504][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 232.293879][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 232.379267][ T13] veth1_macvtap: left promiscuous mode [ 232.409017][ T13] veth0_macvtap: left promiscuous mode [ 232.434982][ T13] veth1_vlan: left promiscuous mode [ 232.451425][ T13] veth0_vlan: left promiscuous mode [ 232.746528][T10792] delete_channel: no stack [ 233.163623][ T5835] Bluetooth: hci4: command tx timeout [ 233.695161][ T13] team0 (unregistering): Port device team_slave_1 removed [ 233.758270][ T13] team0 (unregistering): Port device team_slave_0 removed [ 234.245510][T10832] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 234.252029][T10832] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 234.662650][T10673] bridge0: port 1(bridge_slave_0) entered blocking state [ 234.697461][T10673] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.753575][T10673] bridge_slave_0: entered allmulticast mode [ 234.794721][T10673] bridge_slave_0: entered promiscuous mode [ 234.831822][T10673] bridge0: port 2(bridge_slave_1) entered blocking state [ 234.893430][T10673] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.959408][T10673] bridge_slave_1: entered allmulticast mode [ 235.007305][T10673] bridge_slave_1: entered promiscuous mode [ 235.244180][ T5835] Bluetooth: hci4: command tx timeout [ 235.315440][T10673] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 235.383884][T10673] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 235.694341][T10673] team0: Port device team_slave_0 added [ 235.728985][T10673] team0: Port device team_slave_1 added [ 235.945386][T10673] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 235.989787][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 236.163719][T10673] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 236.209304][T10673] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 236.262021][T10673] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 236.378271][T10898] netlink: zone id is out of range [ 236.389178][T10673] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 236.615068][T10673] hsr_slave_0: entered promiscuous mode [ 236.668499][T10673] hsr_slave_1: entered promiscuous mode [ 237.328338][ T5835] Bluetooth: hci4: command tx timeout [ 238.364937][T10673] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 238.380292][T10957] openvswitch: netlink: nsh attr 36 is out of range max 3 [ 238.414894][T10673] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 238.490550][T10673] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 238.591020][T10673] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 238.979969][T10987] netlink: 'syz.2.2322': attribute type 1 has an invalid length. [ 239.040587][T10673] 8021q: adding VLAN 0 to HW filter on device bond0 [ 239.126706][T10673] 8021q: adding VLAN 0 to HW filter on device team0 [ 239.222751][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.229868][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 239.308178][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.315345][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 239.465970][T10673] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 239.518072][T11006] netlink: 'syz.2.2329': attribute type 2 has an invalid length. [ 240.193060][T10673] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 240.409608][T10673] veth0_vlan: entered promiscuous mode [ 240.485544][T10673] veth1_vlan: entered promiscuous mode [ 240.609588][T10673] veth0_macvtap: entered promiscuous mode [ 240.700425][T10673] veth1_macvtap: entered promiscuous mode [ 240.806466][T10673] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 240.860149][T10673] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 240.988889][ T50] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.033716][ T50] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.098490][T11061] IPVS: length: 131 != 8 [ 241.131190][ T50] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.179659][ T50] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 241.424846][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.432673][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 241.556008][ T994] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 241.583871][ T994] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.945923][T11172] netlink: 'syz.3.2385': attribute type 11 has an invalid length. [ 244.809171][T11204] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 245.430860][T11224] svc: failed to register nfsdv3 RPC service (errno 111). [ 245.468479][T11224] svc: failed to register nfsaclv3 RPC service (errno 111). [ 245.750627][T11236] random: crng reseeded on system resumption [ 246.269724][T11259] FAULT_INJECTION: forcing a failure. [ 246.269724][T11259] name failslab, interval 1, probability 0, space 0, times 0 [ 246.355415][T11259] CPU: 0 UID: 0 PID: 11259 Comm: syz.2.2415 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 246.355449][T11259] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 246.355457][T11259] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 246.355466][T11259] Call Trace: [ 246.355471][T11259] [ 246.355477][T11259] dump_stack_lvl+0x16c/0x1f0 [ 246.355498][T11259] should_fail_ex+0x512/0x640 [ 246.355521][T11259] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 246.355541][T11259] should_failslab+0xc2/0x120 [ 246.355560][T11259] __kvmalloc_node_noprof+0x141/0x9c0 [ 246.355577][T11259] ? io_alloc_cache_init+0x38/0x170 [ 246.355600][T11259] ? io_alloc_cache_init+0x38/0x170 [ 246.355624][T11259] io_alloc_cache_init+0x38/0x170 [ 246.355645][T11259] io_uring_setup+0x62f/0x20e0 [ 246.355664][T11259] ? __pfx_io_uring_setup+0x10/0x10 [ 246.355679][T11259] ? do_futex+0x122/0x350 [ 246.355699][T11259] ? __pfx_do_futex+0x10/0x10 [ 246.355726][T11259] ? xfd_validate_state+0x61/0x180 [ 246.355745][T11259] ? __pfx_ksys_write+0x10/0x10 [ 246.355764][T11259] __x64_sys_io_uring_setup+0xc2/0x170 [ 246.355781][T11259] do_syscall_64+0xcd/0xfa0 [ 246.355797][T11259] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.355811][T11259] RIP: 0033:0x7f03ecd8efc9 [ 246.355822][T11259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.355835][T11259] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 246.355849][T11259] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 246.355858][T11259] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000001d48 [ 246.355866][T11259] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 246.355874][T11259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.355882][T11259] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 246.355900][T11259] [ 247.110339][T11272] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 247.139928][T11272] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 247.393738][T11279] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 247.889492][T11298] binder_alloc: binder_alloc_mmap_handler: 11297 0-1000 already mapped failed -16 [ 250.440539][T11384] openvswitch: netlink: Message has 8 unknown bytes. [ 250.817042][T11398] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0 [ 251.781096][T11443] aoe: copy from user failed [ 251.798916][T11443] aoe: could not set interface list: too many interfaces [ 252.154905][T11459] netlink: ct family unspecified [ 253.034438][T11495] netlink: 'syz.3.2525': attribute type 10 has an invalid length. [ 254.582305][T11561] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 254.588728][T11561] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 254.608665][T11562] netlink: 'syz.0.2557': attribute type 1 has an invalid length. [ 255.544108][T11602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2576'. [ 255.648960][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.655343][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.981689][T11618] tipc: Enabling of bearer <@):^\/\> rejected, media not registered [ 256.539217][T11643] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 257.231783][T11668] netlink: 'syz.1.2607': attribute type 4 has an invalid length. [ 257.263880][T11668] netlink: 'syz.1.2607': attribute type 1 has an invalid length. [ 257.543709][T11678] nbd: illegal input index -560326505 [ 258.482804][T11716] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2630'. [ 258.633878][T11720] futex_wake_op: syz.2.2632 tries to shift op by -9; fix this program [ 259.447661][T11756] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4.131072.4294967293), cmd(3) [ 259.932672][T11777] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 260.079270][T11777] CIFS mount error: No usable UNC path provided in device string! [ 260.079270][T11777] [ 260.131147][T11777] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 260.189492][T11782] netlink: set zone limit has 8 unknown bytes [ 260.257018][T11786] netlink: set zone limit has 8 unknown bytes [ 260.662135][T11800] HSR: entered promiscuous mode [ 261.284159][T11822] netlink: 29 bytes leftover after parsing attributes in process `syz.1.2680'. [ 262.120228][T11851] FAULT_INJECTION: forcing a failure. [ 262.120228][T11851] name failslab, interval 1, probability 0, space 0, times 0 [ 262.203377][T11851] CPU: 0 UID: 0 PID: 11851 Comm: syz.2.2693 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 262.203411][T11851] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 262.203419][T11851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 262.203427][T11851] Call Trace: [ 262.203432][T11851] [ 262.203437][T11851] dump_stack_lvl+0x16c/0x1f0 [ 262.203458][T11851] should_fail_ex+0x512/0x640 [ 262.203479][T11851] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 262.203497][T11851] should_failslab+0xc2/0x120 [ 262.203515][T11851] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 262.203531][T11851] ? __d_alloc+0x32/0xae0 [ 262.203550][T11851] ? __d_alloc+0x32/0xae0 [ 262.203564][T11851] __d_alloc+0x32/0xae0 [ 262.203581][T11851] d_alloc_pseudo+0x1c/0xc0 [ 262.203600][T11851] alloc_file_pseudo+0xcf/0x230 [ 262.203621][T11851] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 262.203641][T11851] ? alloc_fd+0x471/0x7d0 [ 262.203656][T11851] sock_alloc_file+0x50/0x210 [ 262.203672][T11851] __sys_socket+0x1c0/0x260 [ 262.203689][T11851] ? __pfx___sys_socket+0x10/0x10 [ 262.203706][T11851] ? xfd_validate_state+0x61/0x180 [ 262.203726][T11851] ? __pfx_ksys_write+0x10/0x10 [ 262.203744][T11851] __x64_sys_socket+0x72/0xb0 [ 262.203760][T11851] ? lockdep_hardirqs_on+0x7c/0x110 [ 262.203775][T11851] do_syscall_64+0xcd/0xfa0 [ 262.203791][T11851] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.203805][T11851] RIP: 0033:0x7f03ecd8efc9 [ 262.203816][T11851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 262.203829][T11851] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 262.203842][T11851] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 262.203851][T11851] RDX: 0000000000000000 RSI: 0000000000080805 RDI: 0000000000000023 [ 262.203859][T11851] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 262.203867][T11851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 262.203875][T11851] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 262.203893][T11851] [ 262.439301][T11856] openvswitch: netlink: Geneve option length err (len 256, max 255). [ 262.719258][T11867] debugfs: '!PjE ùrõ£Ò„yù*›"¤l-ý¤ôy–ú„L̓÷ÓÄ]' already exists in 'ieee80211' [ 263.144562][T11880] netlink: 'syz.0.2707': attribute type 11 has an invalid length. [ 263.162998][T11880] netlink: 'syz.0.2707': attribute type 11 has an invalid length. [ 263.192410][T11880] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2707'. [ 263.244160][T11880] netlink: 'syz.0.2707': attribute type 11 has an invalid length. [ 263.271113][T11880] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2707'. [ 263.303422][T11880] netlink: 200 bytes leftover after parsing attributes in process `syz.0.2707'. [ 263.609501][T11897] FAULT_INJECTION: forcing a failure. [ 263.609501][T11897] name failslab, interval 1, probability 0, space 0, times 0 [ 263.665554][T11897] CPU: 0 UID: 0 PID: 11897 Comm: syz.0.2714 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 263.665590][T11897] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 263.665597][T11897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 263.665605][T11897] Call Trace: [ 263.665611][T11897] [ 263.665616][T11897] dump_stack_lvl+0x16c/0x1f0 [ 263.665636][T11897] should_fail_ex+0x512/0x640 [ 263.665658][T11897] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 263.665676][T11897] should_failslab+0xc2/0x120 [ 263.665696][T11897] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 263.665709][T11897] ? set_normalized_timespec64+0x69/0xc0 [ 263.665728][T11897] ? __d_alloc+0x32/0xae0 [ 263.665746][T11897] ? __d_alloc+0x32/0xae0 [ 263.665760][T11897] __d_alloc+0x32/0xae0 [ 263.665777][T11897] d_alloc_pseudo+0x1c/0xc0 [ 263.665796][T11897] alloc_file_pseudo+0xcf/0x230 [ 263.665816][T11897] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 263.665837][T11897] ? hugetlbfs_get_inode+0x31f/0x730 [ 263.665856][T11897] hugetlb_file_setup+0x4ce/0x620 [ 263.665872][T11897] ksys_mmap_pgoff+0x189/0x5c0 [ 263.665893][T11897] __x64_sys_mmap+0x125/0x190 [ 263.665916][T11897] do_syscall_64+0xcd/0xfa0 [ 263.665932][T11897] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.665947][T11897] RIP: 0033:0x7fd46758efc9 [ 263.665959][T11897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 263.665971][T11897] RSP: 002b:00007fd4683ab038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 263.665985][T11897] RAX: ffffffffffffffda RBX: 00007fd4677e5fa0 RCX: 00007fd46758efc9 [ 263.665994][T11897] RDX: 00004000000000df RSI: 0000000000000004 RDI: 0000000000000000 [ 263.666002][T11897] RBP: 00007fd467611f91 R08: 0000000000000004 R09: 0000300000000000 [ 263.666010][T11897] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000 [ 263.666017][T11897] R13: 00007fd4677e6038 R14: 00007fd4677e5fa0 R15: 00007ffc006658e8 [ 263.666035][T11897] [ 264.599623][T11929] netlink: 'syz.0.2729': attribute type 1 has an invalid length. [ 264.888472][T11939] netlink: zone id is out of range [ 264.908376][T11939] netlink: zone id is out of range [ 264.924162][T11939] netlink: zone id is out of range [ 264.943964][T11939] netlink: zone id is out of range [ 264.962764][T11939] netlink: zone id is out of range [ 264.980530][T11939] netlink: zone id is out of range [ 264.996935][T11942] netlink: 'syz.0.2735': attribute type 1 has an invalid length. [ 265.005702][T11939] netlink: zone id is out of range [ 265.017722][T11939] netlink: zone id is out of range [ 265.030571][T11939] netlink: zone id is out of range [ 267.863734][T12040] net_ratelimit: 163 callbacks suppressed [ 267.863749][T12040] openvswitch: netlink: IP tunnel dst address not specified [ 268.093524][T12047] netlink: 'syz.2.2783': attribute type 11 has an invalid length. [ 268.101362][T12047] netlink: 'syz.2.2783': attribute type 11 has an invalid length. [ 268.165256][T12047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'. [ 268.212394][T12047] netlink: 'syz.2.2783': attribute type 11 has an invalid length. [ 268.252445][T12047] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2783'. [ 268.291339][T12047] netlink: 200 bytes leftover after parsing attributes in process `syz.2.2783'. [ 270.049820][T12118] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 270.712421][T12142] FAULT_INJECTION: forcing a failure. [ 270.712421][T12142] name fail_futex, interval 1, probability 0, space 0, times 1 [ 270.807159][T12142] CPU: 0 UID: 0 PID: 12142 Comm: syz.0.2824 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 270.807193][T12142] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 270.807201][T12142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 270.807209][T12142] Call Trace: [ 270.807214][T12142] [ 270.807220][T12142] dump_stack_lvl+0x16c/0x1f0 [ 270.807241][T12142] should_fail_ex+0x512/0x640 [ 270.807266][T12142] get_futex_key+0x293/0x1560 [ 270.807285][T12142] ? __pfx___futex_wait+0x10/0x10 [ 270.807306][T12142] ? __pfx_get_futex_key+0x10/0x10 [ 270.807329][T12142] ? __pfx_futex_wake_mark+0x10/0x10 [ 270.807360][T12142] futex_wake_op+0x167/0xe40 [ 270.807383][T12142] ? futex_private_hash_put+0x18a/0x300 [ 270.807402][T12142] ? __pfx_futex_wake_op+0x10/0x10 [ 270.807423][T12142] ? __pfx_futex_wait+0x10/0x10 [ 270.807451][T12142] ? ksys_write+0x190/0x250 [ 270.807469][T12142] do_futex+0x2e9/0x350 [ 270.807487][T12142] ? __pfx_do_futex+0x10/0x10 [ 270.807510][T12142] __x64_sys_futex+0x1e0/0x4c0 [ 270.807529][T12142] ? fput+0x9b/0xd0 [ 270.807546][T12142] ? __pfx___x64_sys_futex+0x10/0x10 [ 270.807564][T12142] ? xfd_validate_state+0x61/0x180 [ 270.807583][T12142] ? __pfx_ksys_write+0x10/0x10 [ 270.807602][T12142] do_syscall_64+0xcd/0xfa0 [ 270.807618][T12142] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.807632][T12142] RIP: 0033:0x7fd46758efc9 [ 270.807644][T12142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 270.807657][T12142] RSP: 002b:00007fd4683ab038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 270.807671][T12142] RAX: ffffffffffffffda RBX: 00007fd4677e5fa0 RCX: 00007fd46758efc9 [ 270.807681][T12142] RDX: 0000000000000004 RSI: 0000000000000005 RDI: 0000200000000000 [ 270.807689][T12142] RBP: 00007fd467611f91 R08: 0000000000000000 R09: 000000000a000000 [ 270.807698][T12142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 270.807706][T12142] R13: 00007fd4677e6038 R14: 00007fd4677e5fa0 R15: 00007ffc006658e8 [ 270.807724][T12142] [ 272.969390][T12219] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2861'. [ 272.999136][T12221] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2862'. [ 274.346393][T12280] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 274.619101][ T30] audit: type=1107 audit(4295032900.672:11): pid=12290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 274.694609][ T30] audit: type=1107 audit(4295032900.692:12): pid=12290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 275.220063][T12315] openvswitch: netlink: Tunnel attr 242 out of range max 16 [ 275.780096][T12341] FAULT_INJECTION: forcing a failure. [ 275.780096][T12341] name failslab, interval 1, probability 0, space 0, times 0 [ 275.850460][T12341] CPU: 0 UID: 0 PID: 12341 Comm: syz.3.2921 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 275.850493][T12341] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 275.850501][T12341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 275.850509][T12341] Call Trace: [ 275.850514][T12341] [ 275.850519][T12341] dump_stack_lvl+0x16c/0x1f0 [ 275.850539][T12341] should_fail_ex+0x512/0x640 [ 275.850560][T12341] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 275.850577][T12341] should_failslab+0xc2/0x120 [ 275.850596][T12341] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 275.850610][T12341] ? __d_alloc+0x32/0xae0 [ 275.850629][T12341] ? __d_alloc+0x32/0xae0 [ 275.850643][T12341] __d_alloc+0x32/0xae0 [ 275.850660][T12341] d_alloc_pseudo+0x1c/0xc0 [ 275.850679][T12341] alloc_file_pseudo+0xcf/0x230 [ 275.850699][T12341] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 275.850718][T12341] ? alloc_fd+0x471/0x7d0 [ 275.850734][T12341] sock_alloc_file+0x50/0x210 [ 275.850749][T12341] __sys_socket+0x1c0/0x260 [ 275.850767][T12341] ? __pfx___sys_socket+0x10/0x10 [ 275.850784][T12341] ? xfd_validate_state+0x61/0x180 [ 275.850802][T12341] ? __pfx_ksys_write+0x10/0x10 [ 275.850820][T12341] __x64_sys_socket+0x72/0xb0 [ 275.850837][T12341] ? lockdep_hardirqs_on+0x7c/0x110 [ 275.850862][T12341] do_syscall_64+0xcd/0xfa0 [ 275.850879][T12341] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 275.850893][T12341] RIP: 0033:0x7faf47d8efc9 [ 275.850905][T12341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 275.850918][T12341] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 275.850932][T12341] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 275.850941][T12341] RDX: 0000000000000002 RSI: 0000000000000005 RDI: 0000000000000018 [ 275.850949][T12341] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 275.850957][T12341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 275.850966][T12341] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 275.850985][T12341] [ 277.115538][T12389] ptrace attach of "./syz-executor exec"[10673] was attempted by ""[12389] [ 277.284619][T12393] netlink: 'syz.0.2946': attribute type 11 has an invalid length. [ 278.518339][T12444] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2969'. [ 278.582189][T12444] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2969'. [ 282.203536][T12486] sctp: [Deprecated]: syz.3.2988 (pid 12486) Use of int in max_burst socket option deprecated. [ 282.203536][T12486] Use struct sctp_assoc_value instead [ 282.480827][T12496] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2991'. [ 282.961749][T12511] HfR: entered promiscuous mode [ 283.020631][T12514] openvswitch: netlink: IP tunnel dst address not specified [ 284.369847][T12568] openvswitch: netlink: nsh attribute has 4 unknown bytes. [ 284.388587][T12565] smc: net device dummy0 applied user defined pnetid DUMMY0 [ 285.432342][T12611] FAULT_INJECTION: forcing a failure. [ 285.432342][T12611] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 285.498551][T12611] CPU: 0 UID: 0 PID: 12611 Comm: syz.2.3045 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 285.498585][T12611] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 285.498593][T12611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 285.498601][T12611] Call Trace: [ 285.498607][T12611] [ 285.498612][T12611] dump_stack_lvl+0x16c/0x1f0 [ 285.498633][T12611] should_fail_ex+0x512/0x640 [ 285.498657][T12611] strncpy_from_user+0x3b/0x2e0 [ 285.498678][T12611] getname_flags.part.0+0x2d1/0x550 [ 285.498703][T12611] getname_flags+0x93/0xf0 [ 285.498716][T12611] __x64_sys_symlink+0x65/0x90 [ 285.498733][T12611] do_syscall_64+0xcd/0xfa0 [ 285.498749][T12611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 285.498764][T12611] RIP: 0033:0x7f03ecd8efc9 [ 285.498775][T12611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 285.498788][T12611] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058 [ 285.498801][T12611] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 285.498810][T12611] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180 [ 285.498818][T12611] RBP: 00007f03ece11f91 R08: 0000000000000000 R09: 0000000000000000 [ 285.498826][T12611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 285.498834][T12611] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 285.498852][T12611] [ 286.430621][T12638] block nbd8: Unsupported socket: should be TCP or UNIX. [ 286.775058][T12648] sg_write: data in/out 2359516/158 bytes for SCSI command 0x0-- guessing data in; [ 286.775058][T12648] program syz.3.3061 not setting count and/or reply_len properly [ 287.385645][T12671] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3072'. [ 288.855990][ T5915] Process accounting resumed [ 289.441331][T12742] Invalid ELF header len 5 [ 289.623842][T12756] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3111'. [ 290.653548][T12798] usb usb38: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 290.698084][T12798] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 290.912236][T12809] netlink: 342 bytes leftover after parsing attributes in process `syz.2.3137'. [ 294.497219][T12945] FAULT_INJECTION: forcing a failure. [ 294.497219][T12945] name failslab, interval 1, probability 0, space 0, times 0 [ 294.559211][T12945] CPU: 0 UID: 0 PID: 12945 Comm: syz.3.3194 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 294.559244][T12945] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 294.559252][T12945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 294.559261][T12945] Call Trace: [ 294.559266][T12945] [ 294.559272][T12945] dump_stack_lvl+0x16c/0x1f0 [ 294.559292][T12945] should_fail_ex+0x512/0x640 [ 294.559314][T12945] ? __kmalloc_noprof+0xca/0x880 [ 294.559338][T12945] should_failslab+0xc2/0x120 [ 294.559358][T12945] __kmalloc_noprof+0xdd/0x880 [ 294.559378][T12945] ? __lock_acquire+0x622/0x1c90 [ 294.559396][T12945] ? sk_prot_alloc+0x1a8/0x2a0 [ 294.559415][T12945] ? sk_prot_alloc+0x1a8/0x2a0 [ 294.559429][T12945] sk_prot_alloc+0x1a8/0x2a0 [ 294.559446][T12945] sk_alloc+0x36/0xc20 [ 294.559467][T12945] pptp_create+0x32/0x340 [ 294.559485][T12945] pppox_create+0x15c/0x2c0 [ 294.559501][T12945] __sock_create+0x338/0x8d0 [ 294.559522][T12945] __sys_socket+0x14d/0x260 [ 294.559540][T12945] ? __pfx___sys_socket+0x10/0x10 [ 294.559557][T12945] ? xfd_validate_state+0x61/0x180 [ 294.559576][T12945] ? __pfx_ksys_write+0x10/0x10 [ 294.559595][T12945] __x64_sys_socket+0x72/0xb0 [ 294.559611][T12945] ? lockdep_hardirqs_on+0x7c/0x110 [ 294.559626][T12945] do_syscall_64+0xcd/0xfa0 [ 294.559642][T12945] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.559656][T12945] RIP: 0033:0x7faf47d8efc9 [ 294.559667][T12945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 294.559680][T12945] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 294.559694][T12945] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 294.559703][T12945] RDX: 0000000000000002 RSI: 0000000000000004 RDI: 0000000000000018 [ 294.559711][T12945] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 294.559719][T12945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 294.559727][T12945] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 294.559745][T12945] [ 295.123978][T12960] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3201'. [ 295.387687][ T30] audit: type=1807 audit(4295032921.442:13): UNKNOWN=òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿ [ 295.404632][T12965] ima: policy update failed [ 295.503693][ T30] audit: type=1802 audit(4295032921.462:14): pid=12966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.3.3203" res=0 errno=0 [ 295.847659][ T30] audit: type=1802 audit(4295032921.902:15): pid=12965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.3.3203" res=0 errno=0 [ 297.109924][T13022] netlink: zone id is out of range [ 297.136532][T13022] netlink: zone id is out of range [ 297.220973][T13022] netlink: set zone limit has 8 unknown bytes [ 297.451914][ T30] audit: type=1807 audit(4295032923.502:16): UNKNOWN=òÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿÿÿòÿ [ 297.454081][ T30] audit: type=1802 audit(4295032923.502:17): pid=13032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.2.3233" res=0 errno=0 [ 297.564516][T13030] ima: policy update failed [ 298.072132][ T30] audit: type=1802 audit(4295032923.622:18): pid=13030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.3233" res=0 errno=0 [ 298.680715][T13082] ptrace attach of "./syz-executor exec"[5828] was attempted by ""[13082] [ 299.735970][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.844486][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.935651][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.125781][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 300.633505][ T13] bridge_slave_1: left allmulticast mode [ 300.662268][ T13] bridge_slave_1: left promiscuous mode [ 300.729339][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 300.883978][ T13] bridge_slave_0: left allmulticast mode [ 300.906541][ T13] bridge_slave_0: left promiscuous mode [ 300.912288][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 301.026515][ T52] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 301.035175][ T52] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 301.042815][ T52] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 301.051892][ T52] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 301.059475][ T52] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 302.822623][T13198] Invalid ELF header magic: != ELF [ 302.956445][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 302.977725][T13200] FAULT_INJECTION: forcing a failure. [ 302.977725][T13200] name failslab, interval 1, probability 0, space 0, times 0 [ 303.004883][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 303.025871][ T13] bond0 (unregistering): Released all slaves [ 303.129294][ T13] HSR: left promiscuous mode [ 303.161174][T13200] CPU: 0 UID: 0 PID: 13200 Comm: syz.3.3303 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 303.161209][T13200] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 303.161217][T13200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 303.161234][T13200] Call Trace: [ 303.161239][T13200] [ 303.161251][T13200] dump_stack_lvl+0x16c/0x1f0 [ 303.161272][T13200] should_fail_ex+0x512/0x640 [ 303.161293][T13200] ? __kmalloc_noprof+0xca/0x880 [ 303.161317][T13200] should_failslab+0xc2/0x120 [ 303.161335][T13200] __kmalloc_noprof+0xdd/0x880 [ 303.161355][T13200] ? lockdep_init_map_type+0x5c/0x280 [ 303.161375][T13200] ? udp_init_sock+0x24e/0x450 [ 303.161399][T13200] ? udp_init_sock+0x24e/0x450 [ 303.161419][T13200] udp_init_sock+0x24e/0x450 [ 303.161441][T13200] udplite_sk_init+0x15/0x60 [ 303.161457][T13200] ? __pfx_udplite_sk_init+0x10/0x10 [ 303.161473][T13200] inet_create+0x939/0x1040 [ 303.161492][T13200] ? inet_create+0x93/0x1040 [ 303.161514][T13200] __sock_create+0x338/0x8d0 [ 303.161535][T13200] __sys_socket+0x14d/0x260 [ 303.161552][T13200] ? __pfx___sys_socket+0x10/0x10 [ 303.161569][T13200] ? xfd_validate_state+0x61/0x180 [ 303.161588][T13200] ? __pfx_ksys_write+0x10/0x10 [ 303.161606][T13200] __x64_sys_socket+0x72/0xb0 [ 303.161623][T13200] ? lockdep_hardirqs_on+0x7c/0x110 [ 303.161638][T13200] do_syscall_64+0xcd/0xfa0 [ 303.161653][T13200] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 303.161667][T13200] RIP: 0033:0x7faf47d8efc9 [ 303.161679][T13200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 303.161693][T13200] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 303.161707][T13200] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 303.161716][T13200] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 0000000000000002 [ 303.161724][T13200] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 303.161732][T13200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 303.161740][T13200] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 303.161758][T13200] [ 303.633340][ T52] Bluetooth: hci4: command tx timeout [ 304.622806][T13143] chnl_net:caif_netlink_parms(): no params data found [ 305.374279][T13143] bridge0: port 1(bridge_slave_0) entered blocking state [ 305.381369][T13143] bridge0: port 1(bridge_slave_0) entered disabled state [ 305.443607][T13143] bridge_slave_0: entered allmulticast mode [ 305.475740][T13143] bridge_slave_0: entered promiscuous mode [ 305.530447][T13143] bridge0: port 2(bridge_slave_1) entered blocking state [ 305.560811][T13143] bridge0: port 2(bridge_slave_1) entered disabled state [ 305.593826][T13143] bridge_slave_1: entered allmulticast mode [ 305.635462][T13143] bridge_slave_1: entered promiscuous mode [ 305.646552][ T52] Bluetooth: hci4: command tx timeout [ 305.808123][T13143] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 305.981364][ T13] hsr_slave_0: left promiscuous mode [ 306.013773][ T13] hsr_slave_1: left promiscuous mode [ 306.031462][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 306.065537][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 306.172770][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 306.216400][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 306.414171][ T13] veth1_macvtap: left promiscuous mode [ 306.464351][ T13] veth0_macvtap: left promiscuous mode [ 306.469928][ T13] veth1_vlan: left promiscuous mode [ 306.517207][ T13] veth0_vlan: left promiscuous mode [ 307.726791][ T52] Bluetooth: hci4: command tx timeout [ 307.783495][T13326] block nbd1: Unsupported socket: should be TCP or UNIX. [ 308.657149][ T13] team0 (unregistering): Port device team_slave_1 removed [ 308.744879][ T52] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260 [ 308.744903][ T52] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260 [ 308.759993][ T52] Bluetooth: hci3: Unknown advertising packet type: 0x7f [ 308.760030][ T52] Bluetooth: hci3: adv larger than maximum supported [ 308.771607][ T52] Bluetooth: hci3: Malformed LE Event: 0x0d [ 308.951980][ T13] team0 (unregistering): Port device team_slave_0 removed [ 309.509938][T13352] device-mapper: ioctl: device name cannot be "control", ".", or ".." [ 309.807764][ T52] Bluetooth: hci4: command tx timeout [ 309.877325][T13143] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 310.075261][T13143] team0: Port device team_slave_0 added [ 310.116393][T13143] team0: Port device team_slave_1 added [ 310.217526][T13361] FAULT_INJECTION: forcing a failure. [ 310.217526][T13361] name failslab, interval 1, probability 0, space 0, times 0 [ 310.300478][T13143] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 310.343135][T13361] CPU: 0 UID: 0 PID: 13361 Comm: syz.3.3358 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 310.343170][T13361] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 310.343178][T13361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 310.343187][T13361] Call Trace: [ 310.343192][T13361] [ 310.343198][T13361] dump_stack_lvl+0x16c/0x1f0 [ 310.343219][T13361] should_fail_ex+0x512/0x640 [ 310.343244][T13361] ? __kmalloc_cache_noprof+0x5f/0x780 [ 310.343269][T13361] should_failslab+0xc2/0x120 [ 310.343287][T13361] __kmalloc_cache_noprof+0x72/0x780 [ 310.343309][T13361] ? do_raw_spin_lock+0x12c/0x2b0 [ 310.343330][T13361] ? alloc_fdtable+0xbd/0x2d0 [ 310.343345][T13361] ? alloc_fdtable+0xbd/0x2d0 [ 310.343356][T13361] alloc_fdtable+0xbd/0x2d0 [ 310.343369][T13361] dup_fd+0x83b/0xb90 [ 310.343388][T13361] __do_sys_close_range+0x4ca/0x730 [ 310.343405][T13361] ? __pfx___do_sys_close_range+0x10/0x10 [ 310.343426][T13361] do_syscall_64+0xcd/0xfa0 [ 310.343442][T13361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 310.343456][T13361] RIP: 0033:0x7faf47d8efc9 [ 310.343467][T13361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 310.343480][T13361] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 310.343493][T13361] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 310.343502][T13361] RDX: 0000000000000006 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 310.343510][T13361] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 310.343518][T13361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 310.343526][T13361] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 310.343544][T13361] [ 310.524277][ C0] vkms_vblank_simulate: vblank timer overrun [ 310.723367][T13143] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 310.810199][T13143] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 310.844778][T13143] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 310.851720][T13143] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 310.877598][ C0] vkms_vblank_simulate: vblank timer overrun [ 310.995580][T13143] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 311.028831][T13368] bridge0: port 3(gretap0) entered blocking state [ 311.046798][T13368] bridge0: port 3(gretap0) entered disabled state [ 311.072382][T13368] gretap0: entered allmulticast mode [ 311.082502][T13368] gretap0: entered promiscuous mode [ 311.088664][T13368] bridge0: port 3(gretap0) entered blocking state [ 311.095345][T13368] bridge0: port 3(gretap0) entered forwarding state [ 311.472103][T13143] hsr_slave_0: entered promiscuous mode [ 311.513520][T13143] hsr_slave_1: entered promiscuous mode [ 312.266696][T13143] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 312.344937][T13143] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 312.398461][T13143] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 312.430996][T13143] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 312.773428][T13419] FAULT_INJECTION: forcing a failure. [ 312.773428][T13419] name failslab, interval 1, probability 0, space 0, times 0 [ 312.804821][T13143] 8021q: adding VLAN 0 to HW filter on device bond0 [ 312.861495][T13143] 8021q: adding VLAN 0 to HW filter on device team0 [ 312.922461][T13419] CPU: 0 UID: 0 PID: 13419 Comm: syz.3.3373 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 312.922496][T13419] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 312.922504][T13419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.922512][T13419] Call Trace: [ 312.922517][T13419] [ 312.922523][T13419] dump_stack_lvl+0x16c/0x1f0 [ 312.922543][T13419] should_fail_ex+0x512/0x640 [ 312.922565][T13419] ? __kmalloc_noprof+0xca/0x880 [ 312.922589][T13419] should_failslab+0xc2/0x120 [ 312.922608][T13419] __kmalloc_noprof+0xdd/0x880 [ 312.922629][T13419] ? __pfx_inc_ucount+0x10/0x10 [ 312.922646][T13419] ? net_alloc_generic+0x1e/0x70 [ 312.922662][T13419] ? net_alloc_generic+0x1e/0x70 [ 312.922674][T13419] net_alloc_generic+0x1e/0x70 [ 312.922687][T13419] copy_net_ns+0xc7/0x690 [ 312.922701][T13419] ? copy_cgroup_ns+0x71/0x6b0 [ 312.922720][T13419] create_new_namespaces+0x3ea/0xa90 [ 312.922740][T13419] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 312.922757][T13419] ksys_unshare+0x45b/0xa40 [ 312.922775][T13419] ? __pfx_ksys_unshare+0x10/0x10 [ 312.922794][T13419] ? xfd_validate_state+0x61/0x180 [ 312.922818][T13419] __x64_sys_unshare+0x31/0x40 [ 312.922835][T13419] do_syscall_64+0xcd/0xfa0 [ 312.922851][T13419] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 312.922865][T13419] RIP: 0033:0x7faf47d8efc9 [ 312.922877][T13419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 312.922889][T13419] RSP: 002b:00007faf48b9e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 312.922902][T13419] RAX: ffffffffffffffda RBX: 00007faf47fe5fa0 RCX: 00007faf47d8efc9 [ 312.922911][T13419] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 312.922919][T13419] RBP: 00007faf47e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 312.922927][T13419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 312.922935][T13419] R13: 00007faf47fe6038 R14: 00007faf47fe5fa0 R15: 00007fff38adfd28 [ 312.922953][T13419] [ 313.834447][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 313.841547][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 313.916396][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 313.923528][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 314.529323][T13462] netlink: 342 bytes leftover after parsing attributes in process `syz.1.3389'. [ 314.617148][T13143] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 314.773959][T13470] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3393'. [ 315.153716][ T52] Bluetooth: hci1: Malformed HCI Event [ 315.285313][T13488] sctp: [Deprecated]: syz.3.3398 (pid 13488) Use of struct sctp_assoc_value in delayed_ack socket option. [ 315.285313][T13488] Use struct sctp_sack_info instead [ 315.342691][T13143] veth0_vlan: entered promiscuous mode [ 315.410593][T13143] veth1_vlan: entered promiscuous mode [ 315.501687][T13143] veth0_macvtap: entered promiscuous mode [ 315.568678][T13143] veth1_macvtap: entered promiscuous mode [ 315.632555][T13143] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 315.680112][T13143] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 315.736067][ T994] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.769622][ T994] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.800481][ T994] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.910670][ T994] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 316.089037][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 316.127234][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 316.234575][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 316.266096][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 317.088627][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.095140][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.208251][T13544] FAULT_INJECTION: forcing a failure. [ 317.208251][T13544] name failslab, interval 1, probability 0, space 0, times 0 [ 317.270442][T13544] CPU: 0 UID: 0 PID: 13544 Comm: syz.4.3423 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 317.270477][T13544] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 317.270485][T13544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 317.270493][T13544] Call Trace: [ 317.270498][T13544] [ 317.270505][T13544] dump_stack_lvl+0x16c/0x1f0 [ 317.270524][T13544] should_fail_ex+0x512/0x640 [ 317.270546][T13544] ? __kmalloc_noprof+0xca/0x880 [ 317.270570][T13544] should_failslab+0xc2/0x120 [ 317.270589][T13544] __kmalloc_noprof+0xdd/0x880 [ 317.270611][T13544] ? sk_prot_alloc+0x1a8/0x2a0 [ 317.270629][T13544] ? sk_prot_alloc+0x1a8/0x2a0 [ 317.270643][T13544] sk_prot_alloc+0x1a8/0x2a0 [ 317.270660][T13544] sk_alloc+0x36/0xc20 [ 317.270681][T13544] __netlink_create+0x5e/0x2c0 [ 317.270700][T13544] ? __wake_up+0x3f/0x60 [ 317.270717][T13544] netlink_create+0x39e/0x620 [ 317.270737][T13544] ? __pfx_genl_bind+0x10/0x10 [ 317.270751][T13544] ? __pfx_genl_unbind+0x10/0x10 [ 317.270765][T13544] ? __pfx_genl_release+0x10/0x10 [ 317.270782][T13544] __sock_create+0x338/0x8d0 [ 317.270802][T13544] __sys_socket+0x14d/0x260 [ 317.270820][T13544] ? __pfx___sys_socket+0x10/0x10 [ 317.270837][T13544] ? xfd_validate_state+0x61/0x180 [ 317.270856][T13544] ? __task_pid_nr_ns+0x1f5/0x500 [ 317.270879][T13544] __x64_sys_socket+0x72/0xb0 [ 317.270895][T13544] ? lockdep_hardirqs_on+0x7c/0x110 [ 317.270917][T13544] do_syscall_64+0xcd/0xfa0 [ 317.270939][T13544] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 317.270954][T13544] RIP: 0033:0x7fb713b8efc9 [ 317.270967][T13544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 317.270981][T13544] RSP: 002b:00007fb714962038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 317.270995][T13544] RAX: ffffffffffffffda RBX: 00007fb713de5fa0 RCX: 00007fb713b8efc9 [ 317.271004][T13544] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010 [ 317.271012][T13544] RBP: 00007fb713c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 317.271020][T13544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 317.271027][T13544] R13: 00007fb713de6038 R14: 00007fb713de5fa0 R15: 00007ffd1cbb8298 [ 317.271045][T13544] [ 318.162950][T13573] netlink: 2468 bytes leftover after parsing attributes in process `syz.1.3438'. [ 320.606140][T13661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3476'. [ 325.863458][T13835] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3549'. [ 326.619528][T13862] mtrr: base(0x7961000) is not aligned on a size(0x0000) boundary [ 330.014928][T13977] dyndbg: expected <4096 bytes into control [ 331.997084][T14038] FAULT_INJECTION: forcing a failure. [ 331.997084][T14038] name failslab, interval 1, probability 0, space 0, times 0 [ 332.085273][T14038] CPU: 0 UID: 0 PID: 14038 Comm: syz.4.3625 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 332.085308][T14038] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 332.085316][T14038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 332.085324][T14038] Call Trace: [ 332.085329][T14038] [ 332.085335][T14038] dump_stack_lvl+0x16c/0x1f0 [ 332.085355][T14038] should_fail_ex+0x512/0x640 [ 332.085377][T14038] ? __kmalloc_noprof+0xca/0x880 [ 332.085402][T14038] should_failslab+0xc2/0x120 [ 332.085421][T14038] __kmalloc_noprof+0xdd/0x880 [ 332.085441][T14038] ? lockdep_init_map_type+0x5c/0x280 [ 332.085461][T14038] ? udpv6_init_sock+0x24e/0x450 [ 332.085477][T14038] ? udpv6_init_sock+0x24e/0x450 [ 332.085488][T14038] udpv6_init_sock+0x24e/0x450 [ 332.085502][T14038] udplitev6_sk_init+0x15/0x60 [ 332.085516][T14038] ? __pfx_udplitev6_sk_init+0x10/0x10 [ 332.085530][T14038] inet6_create+0xb30/0x12b0 [ 332.085547][T14038] ? inet6_create+0x7f/0x12b0 [ 332.085564][T14038] __sock_create+0x338/0x8d0 [ 332.085585][T14038] __sys_socket+0x14d/0x260 [ 332.085602][T14038] ? __pfx___sys_socket+0x10/0x10 [ 332.085619][T14038] ? xfd_validate_state+0x61/0x180 [ 332.085638][T14038] ? __pfx_ksys_write+0x10/0x10 [ 332.085656][T14038] __x64_sys_socket+0x72/0xb0 [ 332.085673][T14038] ? lockdep_hardirqs_on+0x7c/0x110 [ 332.085687][T14038] do_syscall_64+0xcd/0xfa0 [ 332.085704][T14038] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.085718][T14038] RIP: 0033:0x7fb713b8efc9 [ 332.085729][T14038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.085742][T14038] RSP: 002b:00007fb714962038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 332.085755][T14038] RAX: ffffffffffffffda RBX: 00007fb713de5fa0 RCX: 00007fb713b8efc9 [ 332.085764][T14038] RDX: 0000000000000088 RSI: 0000000000000002 RDI: 000000000000000a [ 332.085772][T14038] RBP: 00007fb713c11f91 R08: 0000000000000000 R09: 0000000000000000 [ 332.085780][T14038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.085796][T14038] R13: 00007fb713de6038 R14: 00007fb713de5fa0 R15: 00007ffd1cbb8298 [ 332.085815][T14038] [ 334.547845][T14119] device-mapper: ioctl: Invalid new mapped device name or uuid string supplied. [ 334.790376][T14123] zswap: compressor not available [ 336.059855][T14170] netlink: 186 bytes leftover after parsing attributes in process `syz.4.3682'. [ 336.383539][T14184] bridge0: port 3(hsr0) entered blocking state [ 336.406201][T14184] bridge0: port 3(hsr0) entered disabled state [ 336.426837][T14184] hsr0: entered allmulticast mode [ 336.447028][T14184] hsr_slave_0: entered allmulticast mode [ 336.469165][T14184] hsr_slave_1: entered allmulticast mode [ 336.510584][T14184] hsr0: entered promiscuous mode [ 336.543848][T14184] bridge0: port 3(hsr0) entered blocking state [ 336.550089][T14184] bridge0: port 3(hsr0) entered forwarding state [ 336.975552][T14203] FAULT_INJECTION: forcing a failure. [ 336.975552][T14203] name failslab, interval 1, probability 0, space 0, times 0 [ 337.024435][T14203] CPU: 0 UID: 0 PID: 14203 Comm: syz.2.3696 Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 337.024469][T14203] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 337.024477][T14203] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 337.024485][T14203] Call Trace: [ 337.024490][T14203] [ 337.024496][T14203] dump_stack_lvl+0x16c/0x1f0 [ 337.024516][T14203] should_fail_ex+0x512/0x640 [ 337.024538][T14203] ? __kmalloc_noprof+0xca/0x880 [ 337.024562][T14203] should_failslab+0xc2/0x120 [ 337.024581][T14203] __kmalloc_noprof+0xdd/0x880 [ 337.024602][T14203] ? __pfx___might_resched+0x10/0x10 [ 337.024615][T14203] ? load_msg+0x118/0x4a0 [ 337.024633][T14203] ? load_msg+0x118/0x4a0 [ 337.024647][T14203] load_msg+0x118/0x4a0 [ 337.024668][T14203] do_msgrcv+0x202/0x16c0 [ 337.024684][T14203] ? do_futex+0x122/0x350 [ 337.024703][T14203] ? __pfx_do_msg_fill+0x10/0x10 [ 337.024724][T14203] ? __pfx_do_msgrcv+0x10/0x10 [ 337.024740][T14203] ? __x64_sys_futex+0x1e0/0x4c0 [ 337.024758][T14203] ? fput+0x9b/0xd0 [ 337.024777][T14203] ? xfd_validate_state+0x61/0x180 [ 337.024796][T14203] ? __pfx_ksys_write+0x10/0x10 [ 337.024815][T14203] ? do_syscall_64+0xcd/0xfa0 [ 337.024830][T14203] do_syscall_64+0xcd/0xfa0 [ 337.024845][T14203] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 337.024859][T14203] RIP: 0033:0x7f03ecd8efc9 [ 337.024871][T14203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 337.024884][T14203] RSP: 002b:00007f03edb4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000046 [ 337.024897][T14203] RAX: ffffffffffffffda RBX: 00007f03ecfe5fa0 RCX: 00007f03ecd8efc9 [ 337.024906][T14203] RDX: 0000002400000000 RSI: 0000000000000000 RDI: 00000000000000fe [ 337.024914][T14203] RBP: 00007f03ece11f91 R08: 000000006bc2cc7d R09: 0000000000000000 [ 337.024923][T14203] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000 [ 337.024930][T14203] R13: 00007f03ecfe6038 R14: 00007f03ecfe5fa0 R15: 00007ffec38cf5c8 [ 337.024949][T14203] [ 337.841148][T14228] ovs_ÿþ: entered promiscuous mode [ 338.538160][T14254] bridge0: port 4(veth0_to_bridge) entered blocking state [ 338.566826][T14254] bridge0: port 4(veth0_to_bridge) entered disabled state [ 338.589627][T14254] veth0_to_bridge: entered allmulticast mode [ 338.603126][T14254] veth0_to_bridge: entered promiscuous mode [ 338.613041][T14254] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 338.626250][T14254] bridge0: port 4(veth0_to_bridge) entered blocking state [ 338.633456][T14254] bridge0: port 4(veth0_to_bridge) entered forwarding state [ 339.457939][T14279] vhci_hcd: invalid port number 23 [ 342.650106][ T30] audit: type=1804 audit(4295032968.702:19): pid=14401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.3787" name="/newroot/905/file0" dev="tmpfs" ino=4596 res=1 errno=0 [ 342.687861][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.700348][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.713272][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.725744][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.738892][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.751283][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.764550][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.776958][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.790582][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 342.802991][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.259698][ C0] sched: DL replenish lagged too much [ 347.693893][ C0] net_ratelimit: 6532 callbacks suppressed [ 347.693911][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 347.712659][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.725053][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.737504][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.750472][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 347.763357][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.775686][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 347.788132][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 347.801733][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 347.814611][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.703485][ C0] net_ratelimit: 7058 callbacks suppressed [ 352.703506][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 352.722200][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.734599][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.747070][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.759967][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 352.772808][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.785122][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 352.797569][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 352.810717][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 352.823580][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.713947][ C0] net_ratelimit: 7250 callbacks suppressed [ 357.713964][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 357.732667][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.745073][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.757458][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.770374][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 357.783183][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.795579][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 357.807966][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 357.821058][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 357.833939][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.723265][ C0] net_ratelimit: 7476 callbacks suppressed [ 362.723283][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.741512][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.754395][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 362.767387][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.779780][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.792220][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.805125][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 362.817945][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 362.830278][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 362.843001][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.733654][ C0] net_ratelimit: 7756 callbacks suppressed [ 367.733672][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 367.752292][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.764624][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.777026][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.789882][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 367.802690][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.814986][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 367.828085][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 367.840995][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 367.853787][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.743709][ C0] net_ratelimit: 7608 callbacks suppressed [ 372.743726][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 372.762395][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.776150][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.788862][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.801216][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 372.813642][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.826490][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 372.839275][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.852523][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 372.864956][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.753625][ C0] net_ratelimit: 7048 callbacks suppressed [ 377.753642][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.771893][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.784261][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 377.796683][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.809561][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 377.822000][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 377.834852][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.848133][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.860512][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 377.872838][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 378.635451][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.648745][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 382.763365][ C0] net_ratelimit: 7524 callbacks suppressed [ 382.763383][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 382.781553][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.794383][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.807704][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.820151][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.832490][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 382.844906][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 382.857788][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 382.870192][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 382.882555][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.773483][ C0] net_ratelimit: 7697 callbacks suppressed [ 387.773500][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.791752][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.804099][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.816468][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.829368][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 387.841773][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 387.854127][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 387.866905][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.880256][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 387.892701][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.783249][ C0] net_ratelimit: 7788 callbacks suppressed [ 392.783266][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.801868][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.815067][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.827482][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.839795][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.852197][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 392.865162][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 392.877563][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 392.889874][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 392.902666][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.793658][ C0] net_ratelimit: 7761 callbacks suppressed [ 397.793674][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.811833][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.824226][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.837113][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 397.849533][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 397.861868][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 397.874632][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.887872][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.900255][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 397.912594][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.803596][ C0] net_ratelimit: 7665 callbacks suppressed [ 402.803613][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 402.821903][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 402.834230][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.847034][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.860283][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.872830][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.885177][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 402.897553][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 402.910413][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 402.922795][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 407.813386][ C0] net_ratelimit: 7698 callbacks suppressed [ 407.813402][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.831735][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.844110][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.856571][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.869467][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 407.881916][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 407.894243][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 407.907019][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.920239][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 407.932720][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.823561][ C0] net_ratelimit: 7687 callbacks suppressed [ 412.823578][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.841742][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.854130][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.867418][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 412.879832][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 412.892160][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 412.904944][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.918165][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.930555][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 412.942928][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.833470][ C0] net_ratelimit: 7797 callbacks suppressed [ 417.833486][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.851737][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.864064][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.876434][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.889354][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 417.901763][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 417.914082][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 417.926853][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.940048][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 417.952469][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.843461][ C0] net_ratelimit: 7643 callbacks suppressed [ 422.843478][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 422.861677][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.874486][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.887717][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.900106][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.912447][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 422.924824][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 422.937701][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 422.950112][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 422.962428][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.853547][ C0] net_ratelimit: 7674 callbacks suppressed [ 427.853563][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.871737][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.884130][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.897359][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 427.909771][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 427.922116][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 427.935165][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.948384][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.960773][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 427.973085][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.863240][ C0] net_ratelimit: 7510 callbacks suppressed [ 432.863257][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 432.881445][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.894715][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.907940][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.920343][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.932660][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 432.945025][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.957815][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.970205][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 432.983445][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 437.873298][ C0] net_ratelimit: 7549 callbacks suppressed [ 437.873315][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.892447][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 437.904898][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 437.917247][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.929685][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 437.942447][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.955695][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.968081][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.980431][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 437.992817][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 439.167748][ T5845] Bluetooth: hci4: command 0x0406 tx timeout [ 442.883543][ C0] net_ratelimit: 7527 callbacks suppressed [ 442.883560][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 442.901726][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.914133][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 442.927040][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.940365][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.952854][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.965226][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 442.977623][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 442.990458][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 443.002887][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 447.633177][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 447.640129][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P14362/1:b..l [ 447.648402][ C0] rcu: (detected by 0, t=10502 jiffies, g=56041, q=1235 ncpus=1) [ 447.656210][ C0] task:syz.4.3764 state:R running task stack:27480 pid:14362 tgid:14362 ppid:13143 task_flags:0x400040 flags:0x00080000 [ 447.670169][ C0] Call Trace: [ 447.673434][ C0] [ 447.676353][ C0] __schedule+0x1190/0x5de0 [ 447.680853][ C0] ? __pfx___schedule+0x10/0x10 [ 447.685682][ C0] ? css_rstat_updated+0x1c2/0x510 [ 447.690778][ C0] ? mark_held_locks+0x49/0x80 [ 447.695530][ C0] preempt_schedule_irq+0x51/0x90 [ 447.700539][ C0] irqentry_exit+0x36/0x90 [ 447.704938][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 447.710897][ C0] RIP: 0010:lock_acquire+0x62/0x350 [ 447.716078][ C0] Code: 7c 08 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 b2 c6 e9 0e 0f 82 74 02 00 00 8b 35 0a f7 e9 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 c9 7b 08 12 0f 85 c7 02 00 00 48 83 c4 [ 447.735662][ C0] RSP: 0000:ffffc9000475f018 EFLAGS: 00000206 [ 447.741710][ C0] RAX: 0000000000000046 RBX: ffffffff8e3c42e0 RCX: 000000007b6deba3 [ 447.749664][ C0] RDX: 0000000000000000 RSI: ffffffff8da01492 RDI: ffffffff8bf071c0 [ 447.757614][ C0] RBP: 0000000000000002 R08: 37d455ab2b274425 R09: 0000000000000000 [ 447.765579][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 447.773532][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 447.781493][ C0] ? unwind_next_frame+0x3f4/0x20a0 [ 447.786677][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 447.792811][ C0] unwind_next_frame+0xd1/0x20a0 [ 447.797727][ C0] ? unwind_next_frame+0xbd/0x20a0 [ 447.802814][ C0] ? alloc_pages_mpol+0x1fb/0x550 [ 447.807827][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 447.813963][ C0] arch_stack_walk+0x94/0x100 [ 447.818629][ C0] ? alloc_pages_mpol+0x1fb/0x550 [ 447.823640][ C0] stack_trace_save+0x8e/0xc0 [ 447.828301][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 447.833652][ C0] ? unwind_get_return_address+0x59/0xa0 [ 447.839266][ C0] ? __lock_acquire+0x622/0x1c90 [ 447.844188][ C0] save_stack+0x160/0x1f0 [ 447.848500][ C0] ? __pfx_save_stack+0x10/0x10 [ 447.853332][ C0] ? post_alloc_hook+0x1c0/0x230 [ 447.858255][ C0] ? get_page_from_freelist+0x10a3/0x3a30 [ 447.863954][ C0] ? __alloc_frozen_pages_noprof+0x25f/0x2470 [ 447.870001][ C0] ? alloc_pages_mpol+0x1fb/0x550 [ 447.875015][ C0] ? __lock_acquire+0x622/0x1c90 [ 447.879938][ C0] __set_page_owner+0x91/0x560 [ 447.884689][ C0] ? __pfx___set_page_owner+0x10/0x10 [ 447.890041][ C0] ? bad_range+0x261/0x4c0 [ 447.894438][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 447.899645][ C0] post_alloc_hook+0x1c0/0x230 [ 447.904399][ C0] get_page_from_freelist+0x10a3/0x3a30 [ 447.909934][ C0] ? prepare_alloc_pages+0x3c2/0x610 [ 447.915204][ C0] ? rcu_is_watching+0x12/0xc0 [ 447.919956][ C0] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 447.925830][ C0] ? __lock_acquire+0xb8a/0x1c90 [ 447.930759][ C0] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 447.937066][ C0] ? do_raw_spin_lock+0x12c/0x2b0 [ 447.942078][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 447.947439][ C0] ? find_held_lock+0x2b/0x80 [ 447.952103][ C0] ? __lock_acquire+0xb8a/0x1c90 [ 447.957021][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 447.962901][ C0] ? policy_nodemask+0xea/0x4e0 [ 447.967737][ C0] alloc_pages_mpol+0x1fb/0x550 [ 447.972575][ C0] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 447.977935][ C0] folio_alloc_mpol_noprof+0x36/0x2f0 [ 447.983294][ C0] shmem_alloc_folio+0x135/0x160 [ 447.988219][ C0] shmem_alloc_and_add_folio+0x499/0xc20 [ 447.993842][ C0] ? __pfx_shmem_alloc_and_add_folio+0x10/0x10 [ 447.999987][ C0] ? shmem_allowable_huge_orders+0xd4/0x3f0 [ 448.005861][ C0] shmem_get_folio_gfp+0x67f/0x1610 [ 448.011079][ C0] ? __pfx_shmem_get_folio_gfp+0x10/0x10 [ 448.016702][ C0] ? filemap_map_pages+0xe01/0x1b70 [ 448.021881][ C0] shmem_fault+0x1fe/0xa30 [ 448.026300][ C0] ? __pfx_shmem_fault+0x10/0x10 [ 448.031219][ C0] ? __pfx_filemap_map_pages+0x10/0x10 [ 448.036661][ C0] ? __pfx_filemap_map_pages+0x10/0x10 [ 448.042097][ C0] __do_fault+0x10d/0x490 [ 448.046408][ C0] ? __pfx_filemap_map_pages+0x10/0x10 [ 448.051843][ C0] do_pte_missing+0xf4a/0x3ba0 [ 448.056593][ C0] ? find_held_lock+0x2b/0x80 [ 448.061249][ C0] ? __handle_mm_fault+0x1529/0x2aa0 [ 448.066523][ C0] __handle_mm_fault+0x1556/0x2aa0 [ 448.071625][ C0] ? __pfx___handle_mm_fault+0x10/0x10 [ 448.077071][ C0] ? lock_vma_under_rcu+0x176/0x530 [ 448.082259][ C0] ? __pfx_lock_vma_under_rcu+0x10/0x10 [ 448.087794][ C0] handle_mm_fault+0x589/0xd10 [ 448.092547][ C0] ? rcu_watching_snap_stopped_since+0x81/0x110 [ 448.098770][ C0] do_user_addr_fault+0x60c/0x1370 [ 448.103862][ C0] ? rcu_is_watching+0x12/0xc0 [ 448.108614][ C0] exc_page_fault+0x64/0xc0 [ 448.113100][ C0] asm_exc_page_fault+0x26/0x30 [ 448.117948][ C0] RIP: 0033:0xa4d000 [ 448.121833][ C0] RSP: 002b:0000000000000009 EFLAGS: 00010246 [ 448.127882][ C0] RAX: 0000000000000000 RBX: 00007fb713de5fa0 RCX: 00007fb713b8efc9 [ 448.135832][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000001 [ 448.143781][ C0] RBP: 00007fb713c11f91 R08: 0000000000000002 R09: 0000000000000000 [ 448.151730][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 448.159682][ C0] R13: 00007fb713de6038 R14: 00007fb713de5fa0 R15: 00007ffd1cbb8298 [ 448.167647][ C0] [ 448.170652][ C0] rcu: rcu_preempt kthread starved for 2726 jiffies! g56041 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 448.181733][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 448.191679][ C0] rcu: RCU grace-period kthread stack dump: [ 448.197542][ C0] task:rcu_preempt state:R running task stack:28552 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 448.211007][ C0] Call Trace: [ 448.214262][ C0] [ 448.217172][ C0] __schedule+0x1190/0x5de0 [ 448.221665][ C0] ? __lock_acquire+0x622/0x1c90 [ 448.226593][ C0] ? __pfx___schedule+0x10/0x10 [ 448.231426][ C0] ? find_held_lock+0x2b/0x80 [ 448.236081][ C0] ? schedule+0x2d7/0x3a0 [ 448.240390][ C0] schedule+0xe7/0x3a0 [ 448.244438][ C0] schedule_timeout+0x123/0x290 [ 448.249307][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 448.254665][ C0] ? __pfx_process_timeout+0x10/0x10 [ 448.259934][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 448.265720][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 448.271163][ C0] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 448.275912][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 448.281209][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.286386][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 448.291304][ C0] ? rcu_gp_cleanup+0x7c1/0xd90 [ 448.296138][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 448.301941][ C0] rcu_gp_kthread+0x26d/0x380 [ 448.306614][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 448.311799][ C0] ? rcu_is_watching+0x12/0xc0 [ 448.316548][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.321725][ C0] ? __kthread_parkme+0x19e/0x250 [ 448.326733][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 448.331914][ C0] kthread+0x3c5/0x780 [ 448.335969][ C0] ? __pfx_kthread+0x10/0x10 [ 448.340546][ C0] ? rcu_is_watching+0x12/0xc0 [ 448.345291][ C0] ? __pfx_kthread+0x10/0x10 [ 448.349867][ C0] ret_from_fork+0x675/0x7d0 [ 448.354440][ C0] ? __pfx_kthread+0x10/0x10 [ 448.359020][ C0] ret_from_fork_asm+0x1a/0x30 [ 448.363781][ C0] [ 448.366777][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 448.373082][ C0] CPU: 0 UID: 0 PID: 3409 Comm: kworker/R-bat_e Tainted: G U W L XTNJ syzkaller #0 PREEMPT(full) [ 448.384348][ C0] Tainted: [U]=USER, [W]=WARN, [L]=SOFTLOCKUP, [X]=AUX, [T]=RANDSTRUCT, [N]=TEST, [J]=FWCTL [ 448.394381][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 448.404414][ C0] Workqueue: bat_events batadv_dat_purge [ 448.410048][ C0] RIP: 0010:br_validate_ipv6+0xb0/0x740 [ 448.415575][ C0] Code: 00 00 00 00 fc ff df 48 8b 6b 10 48 8d bd c0 00 00 00 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 33 06 00 00 48 8b 85 c0 00 00 00 <48> 89 04 24 e8 37 25 25 01 31 ff 89 c5 89 c6 e8 2c 83 84 f7 85 ed [ 448.435158][ C0] RSP: 0018:ffffc900000070b0 EFLAGS: 00000246 [ 448.441202][ C0] RAX: ffff8880312b1000 RBX: ffff8880afd83000 RCX: ffffffff8a37b064 [ 448.449150][ C0] RDX: 1ffff1100b9d8c18 RSI: ffffffff8a37e1be RDI: ffff88805cec60c0 [ 448.457102][ C0] RBP: ffff88805cec6000 R08: 0000000000000001 R09: 000000000000000a [ 448.465048][ C0] R10: 000000000000000a R11: 0200000000000000 R12: ffffc90000007290 [ 448.472996][ C0] R13: 1ffff92000000e18 R14: ffff8880afd830b4 R15: ffffc900000072b0 [ 448.480950][ C0] FS: 0000000000000000(0000) GS:ffff888124a12000(0000) knlGS:0000000000000000 [ 448.489860][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 448.496430][ C0] CR2: 00007f40ce59f26f CR3: 00000000733e0000 CR4: 00000000003526f0 [ 448.504394][ C0] Call Trace: [ 448.507653][ C0] [ 448.510480][ C0] ? __pfx_br_validate_ipv6+0x10/0x10 [ 448.515835][ C0] ? skb_ext_add+0x457/0x7b0 [ 448.520412][ C0] br_nf_forward_ip.part.0+0x445/0x810 [ 448.525862][ C0] br_nf_forward+0xf0f/0x1be0 [ 448.530521][ C0] ? __pfx_br_nf_forward+0x10/0x10 [ 448.535610][ C0] nf_hook_slow+0xbe/0x200 [ 448.540018][ C0] nf_hook+0x45e/0x780 [ 448.544063][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 448.549500][ C0] ? __pfx_nf_hook+0x10/0x10 [ 448.554068][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 448.559508][ C0] __br_forward+0x1be/0x5b0 [ 448.563988][ C0] ? __pfx_br_forward_finish+0x10/0x10 [ 448.569426][ C0] maybe_deliver+0xf1/0x180 [ 448.573928][ C0] br_flood+0x17c/0x650 [ 448.578080][ C0] br_handle_frame_finish+0x10e6/0x1ec0 [ 448.583613][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 448.589501][ C0] ? ip6t_do_table+0xc25/0x1c30 [ 448.594343][ C0] ? nf_hook_slow+0x132/0x200 [ 448.599014][ C0] br_nf_hook_thresh+0x307/0x410 [ 448.603941][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 448.609823][ C0] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 448.615262][ C0] ? ip6table_mangle_hook+0xcb/0x770 [ 448.620540][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 448.626417][ C0] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 448.632126][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 448.638003][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 448.643889][ C0] br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 448.649849][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 448.655734][ C0] br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 448.661087][ C0] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 448.666957][ C0] ? lock_acquire+0x179/0x350 [ 448.671624][ C0] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 448.678108][ C0] ? net_generic+0xea/0x2a0 [ 448.682596][ C0] br_nf_pre_routing+0x860/0x15b0 [ 448.687605][ C0] br_handle_frame+0xad8/0x14b0 [ 448.692451][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 448.697723][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 448.703601][ C0] ? __pfx_br_handle_frame+0x10/0x10 [ 448.708890][ C0] __netif_receive_skb_core.constprop.0+0xa25/0x4bd0 [ 448.715555][ C0] ? kmem_cache_free+0x2d4/0x6c0 [ 448.720492][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 448.725156][ C0] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 448.732256][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 448.736929][ C0] ? kfree_skbmem+0x1a4/0x1f0 [ 448.741589][ C0] ? sk_skb_reason_drop+0x136/0x1a0 [ 448.746765][ C0] ? ip6_mc_input+0x515/0xf60 [ 448.751460][ C0] ? __pfx_ip6_mc_input+0x10/0x10 [ 448.756470][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 448.761663][ C0] ? __lock_acquire+0x622/0x1c90 [ 448.766587][ C0] ? process_backlog+0x3e7/0x15e0 [ 448.771596][ C0] __netif_receive_skb_one_core+0xb0/0x1e0 [ 448.777386][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 448.783807][ C0] ? lock_acquire+0x179/0x350 [ 448.788498][ C0] ? process_backlog+0x3e7/0x15e0 [ 448.793529][ C0] __netif_receive_skb+0x1d/0x160 [ 448.798557][ C0] process_backlog+0x439/0x15e0 [ 448.803446][ C0] __napi_poll.constprop.0+0xba/0x550 [ 448.808806][ C0] ? skb_defer_free_flush+0x149/0x280 [ 448.814161][ C0] net_rx_action+0x97f/0xef0 [ 448.818743][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 448.823842][ C0] ? mark_held_locks+0x49/0x80 [ 448.828592][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.833778][ C0] ? tmigr_handle_remote+0x132/0x380 [ 448.839056][ C0] ? mark_held_locks+0x49/0x80 [ 448.843825][ C0] handle_softirqs+0x219/0x8e0 [ 448.848579][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 448.853850][ C0] ? __batadv_dat_purge.part.0+0x279/0x3a0 [ 448.859647][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 448.865268][ C0] do_softirq+0xb2/0xf0 [ 448.869407][ C0] [ 448.872323][ C0] [ 448.875236][ C0] __local_bh_enable_ip+0x100/0x120 [ 448.880423][ C0] __batadv_dat_purge.part.0+0x279/0x3a0 [ 448.886046][ C0] batadv_dat_purge+0x4b/0xa0 [ 448.890708][ C0] process_one_work+0x9cf/0x1b70 [ 448.895640][ C0] ? __pfx_process_one_work+0x10/0x10 [ 448.901003][ C0] ? assign_work+0x1a0/0x250 [ 448.905579][ C0] rescuer_thread+0x620/0xea0 [ 448.910250][ C0] ? rcu_is_watching+0x12/0xc0 [ 448.915018][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 448.920212][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 448.925396][ C0] ? __kthread_parkme+0x19e/0x250 [ 448.930412][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 448.935611][ C0] kthread+0x3c5/0x780 [ 448.939679][ C0] ? __pfx_kthread+0x10/0x10 [ 448.944268][ C0] ? rcu_is_watching+0x12/0xc0 [ 448.949017][ C0] ? __pfx_kthread+0x10/0x10 [ 448.953600][ C0] ret_from_fork+0x675/0x7d0 [ 448.958181][ C0] ? __pfx_kthread+0x10/0x10 [ 448.962773][ C0] ret_from_fork_asm+0x1a/0x30 [ 448.967546][ C0] [ 448.971387][ C0] net_ratelimit: 7249 callbacks suppressed [ 448.971400][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 448.990075][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.003399][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.015828][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.028198][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 449.040596][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.062586][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.075216][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 449.088971][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 449.101434][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 453.974149][ C0] net_ratelimit: 5746 callbacks suppressed [ 453.974167][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 453.992311][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 454.004695][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 454.017022][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 454.029391][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:ba:1e:2d:59:9c:c1, vlan:0) [ 454.042119][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 454.055304][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 454.067674][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 454.079999][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 454.092494][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 454.435270][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 454.448002][ T1302] ieee802154 phy1 wpan1: encryption failed: -22