last executing test programs: 6.251204379s ago: executing program 3 (id=1013): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000000400), r0) sendmsg$auto_NFSD_CMD_VERSION_SET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fbdbdf25040000001400018008000200000000000800010002"], 0x28}, 0x1, 0x0, 0x3000000000000, 0x24000001}, 0x844) unshare$auto(0x1) mprotect$auto(0x200000000000, 0x806121, 0x8) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/platform/vhci_hcd.4/usb18/18-0:1.0/usb18-port1/power/runtime_active_time\x00', 0x8502, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7ffff000) close_range$auto(0x2, 0x8, 0x0) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000280)='/dev/snd/controlC2\x00', 0x2584, 0x0) ioctl$auto(0x3, 0x40045542, 0xffffffffffffffff) landlock_create_ruleset$auto(&(0x7f0000000000)={0xdaa1, 0x0, 0xfffffffffffffffd}, 0x8, 0x0) socket(0x2, 0x5, 0x0) mmap$auto(0x0, 0x4000002, 0xfffffffffffffe01, 0x8051, 0x3, 0x0) 5.310021764s ago: executing program 3 (id=1022): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socket(0x2, 0x2, 0x88) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r0 = openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, &(0x7f0000002640), 0x0, 0x0) ioctl$auto_USB_RAW_IOCTL_RUN(r0, 0x5501, 0x1f) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) syz_genetlink_get_family_id$auto_macsec(0x0, 0xffffffffffffffff) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r1, @ANYBLOB="060006000500dfff08000d"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x10000000) 4.759289501s ago: executing program 3 (id=1024): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_handshake(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$auto_HANDSHAKE_CMD_ACCEPT(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000000c0)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdc00, {}, [@HANDSHAKE_A_ACCEPT_HANDLER_CLASS={0x8}]}, 0x1c}, 0x1, 0x0, 0xf0ffffff, 0x4002040}, 0x2004881c) 4.564626324s ago: executing program 3 (id=1026): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x101000, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) syz_genetlink_get_family_id$auto_net_shaper(0x0, 0xffffffffffffffff) execve$auto(&(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)=&(0x7f0000000140)='6@\xc0\x04\xb9y\xcc\xad3\x00') socket(0xa, 0x5, 0x84) r0 = socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x18, 0x0, 0x8) r1 = openat$auto_cec_devnode_fops_cec_priv(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cec2\x00', 0x101000, 0x0) ioctl$auto_CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f00000000c0)={"58f99464", 0x8, 0x6, 0x1, 0x3, 0x5, "4bb69ec4b3f4c14539898e4c5682f5", "347f00", "a630df9d", "a0ed9959", ["cd9196b8fe1a8a7eb90401a9", "2f9c30017721de33c560b95a", "d3fe6c55a78d6932211c9b69", "ea334f1f1e5e27a1320d6edb"]}) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f00000048c0)='/dev/dsp1\x00', 0x20000, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4c894}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB=' \x00\''], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x8002, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x9}, 0x3, 0x6000000) select$auto(0x4, 0x0, &(0x7f0000000100)={[0x9, 0x7, 0xfffffffffffffff9, 0x9, 0x7ff, 0x3, 0x6, 0x2, 0x9, 0xffff, 0x1ff, 0xd, 0x3, 0x200000201, 0x7, 0x6]}, 0x0, 0x0) waitid$auto_P_PID(0x1, 0xffffffffffffffff, 0x0, 0x4866, &(0x7f0000000200)={{0x41, 0x9}, {0x80, 0x1ff}, 0x2, 0x64, 0x3, 0x1, 0x100000000, 0x800, 0x7fffffffffffffff, 0x2, 0xfffffffffffffff7, 0x8000000000000001, 0x100000000, 0x2, 0x3, 0x6}) bpf$auto(0x5, &(0x7f0000000580)=@raw_tracepoint={0x7, r0, 0x0, 0x9}, 0x6f4) 3.939733207s ago: executing program 3 (id=1032): r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x14be02, 0x0) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, &(0x7f0000000080)={0x0, 0x80000000}, 0x6, 0xffffffffffffffff, 0x4, 0x2e) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$auto_lru_gen_rw_fops_vmscan(0xffffffffffffff9c, &(0x7f0000000200)='/sys/kernel/debug/lru_gen\x00', 0xc0000, 0x0) r1 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/net/rpc/nfs4.idtoname/content\x00', 0x181b80, 0x0) read$auto(r1, &(0x7f0000000440)='2\x06J Nwe0\xbd\"\x8f\xe5h_b\xde\x19\xa5\x0e\xfa\xe0\xcb\xb7\xaceW\x1a\x1f\xae\xd8\xfe\x01Y\xd6\xba\xde3\xc7\xf8\x91\xda\xf6_%\xf30\xdc\x97<\xf3A\xa7\xb4\x8dj\xbd\x02\xb1}{e\xf64\xecC\x83,\xecp7j\xf8<\xc8x\xd4\xb0\x1d\b\xb08\x01\x9e\x9et\x8aa\xe1\re\xcf\x8e\x02\xeeW\xf0z\vk\x02_\xdb\x15f8>;zM\xa95\x16\xe9l\xf5\xaa\xaa\x03\x18p\x0e\xde$\xc3\xa9\xac\xc7\x98\x05<\xef\xcd@z\fx}F\x93\xe1\xbd\xb3s\x80\xc1e\xe9T1\xbf\xc8_^\a\x03\xad\ni\n~-u)\x88\x97\xed\xa7\x9b\x0f\xef\x99\x13\xdc<\xd1{\br\xd6[\xd3\xa9-(KH\b\xdfJ\xdek\xef\xc9\xd7\n\x83m\x86\xf2\a\x8d\x19\xe0\\\xf0lg?\x98\xc8\x8e\xbd2?C\xa5\x8a\xe3\xc6\xd7\x00\x14n\xb8<\xab\x96\x8d\xa1\xf4\x87\xe5\a:z\xea\xcc\xa1\x8d\xae8\x12\xa6\xb9\xd99\xaa\xc5\x10\xad\xdd\x89\xddC\xf5\xd2Q\x92\xcd\xcc\x9f\x1a\xdbR\xeeL:\x87\xb3\xb0\x84\x1bR\xf2\xe2/\xa3\x0e\x90\x98\x8c\xc0\xa4\xda+U\b\x88\xa7\x88\x1fC\xbb\xa8\xce\x0f\xd5\xdew\x99\x18G.s\x16\xfa\xf2\x96|\x1e]\xe5\xf8\xb1\x8b.}\x841\xd8\x98\xd8f86h\xab\x94\x7f\xc4<\x03\xdd\x86=\xb6\x1e@\xab6\x81\xce\xaa\xcf\xfd\x947\xc3\x86\xfe\xb7O\xd9\xa9\xb6[\xcc\xd8\xe1\xa9\x84[\xe0\xd4\x03\x90@\x03\xbe\xba\xee\xed\xe9\xb1\xd2\xf1\x8cgn\xb7m/\xf1\"\xc2\xeb\x1d\x04\xf3\xf1\x96\xf2\x00C\xf0wg\xd6\x11\x18\xb5o\x9d\xd7`\xce\x81\x9b1b\x8ce\x99*\xa3\xd2\x8dAw\xd9\xa6l\\\x17\xbb\xf6\xe2\xa2<\n\xc0\f:\x97\xff\xc6y\x05<\xa6\x81\xd92\xc9\x9e\f[\xf9\xfc\xf1ih\"J\x92\xd2\xd4\xc2\xe8\x89 \x81\xbf8C\xa9\x1at\xa1\xdc\x94\xc5\xc8K\xbb\x14h\xa9)\xaa\xf2\xda\xaf\xb1\rs\xe6\x97\x1e\xcc6\x94\xff\x1b\x8e\x98\xf7\xa0', 0x67b) socket(0x1e, 0x6, 0x0) r2 = openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) write$auto(r2, &(0x7f0000000340)='/Eev/audio1\x00VI\xa3\xaa\xb1;\x9dJ\xc6\xc0\'\xdbV\xd4\xee\xc2\xdd\xa7\xee$\x8d\xc4\xe9d\x03\rF\xec\xb8\xb1Z|\xffGP\x97)\xcf\a\xfb\\n\x89C:\x84D\x1du\xb4\x9ab\xce\xa7tU\x14w\xb4\x14\x1dU\x9d\x8b\xa4U\x953.O\xab\"4\x8a\xbbY8@Z5`\xa4m\xffb\x17\xbb\x7f\xea4*\xa4\xf4\xb4\x90\xc0\xbf\xd4m\xbf\xc7\x15\xbe\x01\x98\xd7lD\x97)}\xfaK\xdf>f\xb8&\x959-\n\xccW\x1c\x94t\x98\xc6\xd7\x9dh\xdf\x91\xd9\x1ew\xe2\x9cK\fE\a\xca\xd36\xe8\xcb?(\xfaI\xe2\xae,\x95k8\x83\xcf\xc5,\xcc\xfa`\xfa\x90\xf0C\xdc\xbebBW\x8a\x95\xf4\x14\xc7\x90V\xe7a\xfb*\xcc6\xba\x9ef\x19R\xff\xd2\xd8\x98\xa8\x17\xcb\x84\xe8\xfb\x00`\xc2\xce~U\xca\\\xc1\xb7\xf1\n\xb9\xbfk\x1e\xdb\xed\x81{\x1f\x18j\x16\rk\x0eO\xe3\xa78&Z\x9e\xbf\x84\xd6\x1f\xe8\x88\x1f\xbc\x1eT\xa6{9hb\xbc\x1a\\\xb3\x846&\x1a\xbb\x9c:e\x9c\x18\x11\xf0\x8eQ\xd8\x8a3^?\x13\x00\xcbx\xb2\x18e\x95$\x9d\x804', 0x100000a3d9) setsockopt$auto(0xffffffffffffffff, 0x9, 0x69ce, &(0x7f0000000040)='(%}[\x00', 0x3) r3 = syz_genetlink_get_family_id$auto_tipcv2(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_TIPC_NL_LINK_GET(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000051c0)={&(0x7f0000000440)={0x1c, r3, 0x301, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0x8, 0x4, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x1c}, 0x1, 0xe000000, 0x0, 0x24000055}, 0x4) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x800, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400108, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000340)='/sys/devices/virtual/tty/ptyqe/power/control\x00', 0xa0b02, 0x0) r5 = openat$auto_tomoyo_operations_securityfs_if(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/security/tomoyo/profile\x00', 0x48802, 0x0) read$auto(r5, 0x0, 0xb4d3) write$auto(0x3, 0x0, 0x70) write$auto(0x3, 0x0, 0xfdef) mmap$auto(0x0, 0xa, 0xdb, 0x9b72, 0x5, 0x8000) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) mbind$auto(0x0, 0x2091d2, 0x4, 0x0, 0x6, 0x2) mremap$auto(0x4000, 0xb8, 0x13fd4, 0x3, 0xfffff000) ioctl$auto(0xc8, 0x800454da, 0x5) 2.586043059s ago: executing program 0 (id=1040): openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/sctp/remaddr\x00', 0xb00, 0x0) rseq$auto(&(0x7f0000000300)={0xe, 0x401, 0x0, 0x6, 0xffffffff, 0x2}, 0x8000, 0x0, 0x6) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='./file0\x00', 0x2000, 0x104) r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002dbd7000fddbdf250800030008000300", @ANYRES32=r2], 0x24}, 0x1, 0x0, 0x0, 0x5c5fd097f751b33e}, 0x80) 2.383662473s ago: executing program 1 (id=1041): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) close_range$auto(r0, r0, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) r2 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyr7\x00', 0x101e83, 0x0) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) socket(0x26, 0x80805, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/fs/cifs/SecurityFlags\x00', 0x48041, 0x0) mmap$auto(0x0, 0x2000d, 0x4000000000df, 0xeb1, 0x800000404, 0x8000) socket(0x2, 0x1, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/sync_on_suspend\x00', 0x1a1942, 0x0) read$auto(0x3, 0x0, 0x80) openat$auto_trace_options_fops_trace(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/options/blk_cgname\x00', 0x101, 0x0) writev$auto(r2, &(0x7f0000000280)={0x0, 0x5}, 0x1) setresuid$auto(0x2, 0x7, 0x8080) ioctl$auto_TIOCSETD2(r2, 0x5423, 0x0) mmap$auto(0x0, 0x20006, 0xdf, 0xeb1, 0x40000000000a5, 0x7ffc) close_range$auto(0xffffffffffffffff, 0x8, 0x40000a) socket$nl_generic(0x10, 0x3, 0x10) futex$auto(0x0, 0x6, 0x9, &(0x7f0000000040)={0x2}, 0x0, 0x6) mq_open$auto(0x0, 0x56a, 0xb275, 0x0) 2.104784367s ago: executing program 1 (id=1042): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, 0x0, 0x80) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/system/cpu/cpu1/hotplug/target\x00', 0x800, 0x0) read$auto(r0, 0x0, 0x7) close_range$auto(0x0, 0xffffffffffffffff, 0x4000000000002) r1 = open(0x0, 0x22240, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) socket(0x18, 0x80000, 0x0) openat$auto_proc_fault_inject_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/make-it-fail\x00', 0x40002, 0x0) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) mmap$auto(0x6, 0x5, 0x7, 0x12, r1, 0x3) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000040)='/dev/video3\x00', 0x10b000, 0x0) ioctl$auto_proc_reg_file_ops_compat_inode(r1, 0x6, &(0x7f00000003c0)="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") membarrier$auto(0x5, 0xfff, 0x7b3) 2.008476821s ago: executing program 0 (id=1043): bpf$auto(0x0, 0x0, 0xa3) mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, 0xffffffffffffffff, 0x5d63) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) r0 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sg0\x00', 0x141000, 0x0) bpf$auto(0x40, &(0x7f00000000c0)=@bpf_attr_0={0x0, 0x6, 0x8, 0x4, 0x800, 0xffffffffffffffff, 0x13, "f0f59673e700", 0x0, 0xffffffffffffffff, 0xfffff588, 0x9, 0x2, 0x100000000000200}, 0x7f) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r0, 0x1, &(0x7f00000000c0)) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r1, &(0x7f00000001c0)="bf5b1a8c24000000dbcbc7a996eea7f3804ca6c7591afff6578d2f5f520f687f316ba7327b581cd8d58309037c0ae2c7", 0x30) 1.63941815s ago: executing program 2 (id=1044): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$auto_OVS_CT_LIMIT_CMD_DEL(r0, &(0x7f0000003480)={0x0, 0x0, &(0x7f0000003440)={&(0x7f0000000180)={0x1c, r1, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}, @OVS_CT_LIMIT_ATTR_ZONE_LIMIT={0x4}]}, 0x1c}, 0x1, 0x0, 0xf0ff, 0x40c4}, 0xc000) 1.632753211s ago: executing program 1 (id=1045): close_range$auto(0x2, 0x8, 0x0) (async) socket(0x10, 0x2, 0xc) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) (async) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) r2 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) (async) sendmmsg$auto(r2, &(0x7f00000001c0)={{&(0x7f0000000000), 0x1aa, &(0x7f0000000100)={&(0x7f00000003c0)="4a67d23edb317545d9bc87452a055975210d2de45906c24c7be790", 0x49}, 0x5, &(0x7f0000000180), 0x5, 0x1000}, 0x5}, 0x2, 0x100) mremap$auto(0x0, 0x7, 0x3fd6, 0x3, 0x20000000) mlockall$auto(0x7) (async) mmap$auto(0x0, 0x61, 0x100001000000004, 0xfa31, 0x400, 0x8000) (async) setreuid$auto(0x3, 0x7) (async) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sda1\x00', 0x900, 0x0) mmap$auto(0x0, 0x580f, 0x1000000000001, 0x8000000008011, 0x3, 0x0) (async) madvise$auto(0x0, 0x2003f0, 0x15) mremap$auto(0x0, 0xffffffffffffffff, 0x3fd6, 0x3, 0x7fffffffb000) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) (async) ioctl$auto(0x3, 0xae41, r1) close_range$auto(0x2, r0, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) 1.403258132s ago: executing program 2 (id=1046): setrlimit$auto(0x7, &(0x7f0000000080)={0x0, 0x6}) setrlimit$auto(0x378d, &(0x7f0000000040)={0xffffffff}) eventfd$auto(0x6) openat$auto_kernel_debug_fops_orangefs_debugfs(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) 1.372841344s ago: executing program 0 (id=1047): sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0xffffffff}, 0x40000) 1.261467369s ago: executing program 2 (id=1048): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_SMC_NETLINK_GET_DEV_SMCD(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f0000004340)={&(0x7f0000004300)=ANY=[@ANYBLOB="14000000", @ANYRES16, @ANYBLOB='\v'], 0x14}, 0x1, 0x0, 0x0, 0x8010}, 0x810) (async, rerun: 64) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000040), r0) (async, rerun: 64) read$auto(r0, &(0x7f0000000100)='nl80211\x00', 0xbe62) (async) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x401, 0x8000) (async) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ram1\x00', 0x1, 0x0) ioctl$auto_BLKPG(r1, 0x1269, 0x0) (async) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000226bd7000fedbdf25030000000800030004020000060007000080000000000600010000000a0005000000000000000000b3fc010000000000000000000a0001000000000000000000060006000500000008000200", @ANYRES32=0x0, @ANYBLOB="080004000301"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40090) (async) socket(0x2, 0x3, 0x6) socket(0x10, 0x2, 0x0) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) (async) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) (async, rerun: 64) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) (rerun: 64) 1.132184511s ago: executing program 0 (id=1049): socket(0x11, 0x2, 0x2) r0 = socket(0x1d, 0x3, 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x40400, 0x48) creat$auto(&(0x7f0000000280)=']\\\xe8@!^).\'\x00', 0xcc38) syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NBD_CMD_CONNECT(r1, 0x0, 0x4c884) getsockopt$auto(r0, 0x65, 0x1, 0xffffffffffffffff, 0x0) openat$auto_configfs_file_operations_configfs_internal(0xffffffffffffff9c, &(0x7f00000005c0)='/sys/kernel/config/target/core/alua/lu_gps/default_lu_gp/members\x00', 0x101000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$auto_nbd(&(0x7f0000001d00), 0xffffffffffffffff) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000440)='/dev/bus/usb/029/001\x00', 0x2, 0x0) sendmsg$auto_NBD_CMD_CONNECT(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001dc0)={&(0x7f00000000c0)={0x3c, r3, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@NBD_ATTR_SOCKETS={0x10, 0x7, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@nested={0x8, 0x1, 0x0, 0x1, [@generic='\x00\x00\x00\x00']}]}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xfffffffffffffff7}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x8880) sendmsg$auto_NL80211_CMD_REGISTER_FRAME(r2, &(0x7f0000000580)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000540)={&(0x7f0000001640)={0x454, 0x0, 0x408, 0x70bd28, 0x25dfdbfc, {}, [@NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x10, 0x6e, 0x0, 0x1, [@nested={0xc, 0x13f, 0x0, 0x1, [@typed={0x8, 0x4, 0x0, 0x0, @ipv4=@multicast1}]}]}, @NL80211_ATTR_IE_RIC={0x424, 0xb2, "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"}, @NL80211_ATTR_MAX_HW_TIMESTAMP_PEERS={0x6}]}, 0x454}, 0x1, 0x0, 0x0, 0x760e9c1d8b97e44b}, 0x4004) 976.358955ms ago: executing program 1 (id=1050): r0 = socket(0x10, 0x2, 0x4) r1 = socket(0x10, 0x3, 0x6) r2 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="f0020000", @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2505000000da0203800800c000e000000204002a000400110008002e00", @ANYRES32, @ANYBLOB="d152e64e22695352dd73864415aa8a78c65e6ab752fb4d469a47a092ae7d5061cdd9690cac4138553ecfbb1b32dd7c33b14cc842bc1e2a5da4203e64ceaa9db5223aa655b6313c011b3e73a75f1aa1f7b2ea43344b15bd494886e355cf6d92c8fe670a42bc677830013e9c4aa4fa30c3e6630bf0ed13206d5a18f6813c6fb03466112aedf5d67bb5b99fe96a6dcd279916b0bce029925b63c48d41ca8a76e46c6014100005800c00c50003000000000000000c02368008027a8087010c800800e8", @ANYRES32=r0, @ANYBLOB='\b'], 0x2f0}, 0x1, 0x18000000, 0x0, 0x40000}, 0x50) 921.150474ms ago: executing program 3 (id=1051): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x20038045) bpf$auto_BPF_TASK_FD_QUERY(0x14, &(0x7f0000001400)=@bpf_attr_3={0x9, 0x3980, 0x9, 0xfffffffffffffffc, 0x9a2d, 0xba0, 0x5, 0x0, 0x80, "931bcb8d96de85c087a1d2590dc12815", 0x0, 0xdf7f, 0xffffffffffffffff, 0xf8, 0x10001, 0xd9, 0x198f, 0x1, 0x486f, 0x6, @attach_btf_obj_fd, 0x0, 0x238ce248, 0xab9, 0x2, 0xfffffff8}, 0x204) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000240)='/proc/fs/lockd/nlm_end_grace\x00', 0x8282, 0x0) write$auto(0x3, 0x0, 0x7) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000040)='/dev/tty51\x00', 0x40001, 0x0) mmap$auto(0x0, 0x400007, 0xdf, 0x9b72, 0xffffffffffffffff, 0x0) write$auto(0x3, 0x0, 0x7fffffff) ioctl$auto(0x3, 0x80000541b, 0x38) unshare$auto(0x1) write$auto(0xffffffffffffffff, 0x0, 0x9) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/ip_vs_conn_sync\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), r3) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) accept4$auto(0xffffffffffffffff, &(0x7f0000000000)=@qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, &(0x7f0000000040), 0x6) setresuid$auto(0x0, 0x7, 0x8080) setfsuid$auto(0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000380)='/sys/devices/virtual/bdi/7:14/max_bytes\x00', 0x182a02, 0x0) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = open(&(0x7f0000000240)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x138) open_by_handle_at$auto(r4, &(0x7f0000000040)={0x8, 0x2, '\a\x00\x00\x00\x00\x00\x00\x00'}, 0x2) write$auto(0xffffffffffffffff, &(0x7f0000000200)='\x01\x00^\xa2\x02\x00\x00\x00\x00\x00\xd8l\x00\x00\x00\x00\x00\x00\xb2s\x83\xbd\xc5_%\xc1\xa3\xd0\x95Hq\xf4zG\x01[{\x17\x05I\xe0\xb1d)\x04z8L\xe6&[\xa9X6\x7f\xec\x94\xdal\xa1\xbb\x86\x9c\xc2\xef\x02\r9%\x06\xc5\'b%m_\x96A\"\xdd\xe40\xa7\xc3\x9ah\xf3B\xc2\xec\xf8\r\f[\xe5\x9dK\xe1\x99\x86\xfc\xac\x9f\x8ad{\xe9\xa5e\x9a\x80\xa7\xc4\x90\x0f\xef@\x87\x8b\xed\x81\\\xf4\xde3\xe12PY\xdb\x10?', 0x100) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000380)=""/23, 0x17) close_range$auto(r0, 0x8, 0x0) open(0x0, 0x6242, 0x0) 899.601032ms ago: executing program 2 (id=1052): mmap$auto(0x0, 0x7ffffffff000, 0x8004, 0xeb1, 0xfffffffffffffffa, 0x801e) 829.51113ms ago: executing program 0 (id=1053): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) msgctl$auto_MSG_INFO(0x0, 0xc, &(0x7f0000000180)={{0xfffffffc, 0x0, 0x0, 0x5, 0x5f, 0xcf, 0x3}, 0x0, 0x0, 0x7, 0x7, 0x6, 0x3, 0x14cd21ec, 0x3, 0x7, 0x4, @inferred, @raw=0x1}) close_range$auto(0x2, 0x8, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) socket(0x2, 0x3, 0x100) r0 = socket(0x10, 0x2, 0x0) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00082dbd7000fedbdf250300000008000400b70a0000060007000080000008000200", @ANYRES32, @ANYBLOB="0a0005000180c200000e00000a0001000180c200000e00000a000100aaaaaaaaaa35000008000200", @ANYRES32=r0, @ANYBLOB="060006000500dfff08000d"], 0x68}, 0x1, 0x0, 0x0, 0x40080}, 0x40) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="13"], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x1c03, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x1f00) 713.123076ms ago: executing program 2 (id=1054): ioctl$auto_VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f00000000c0)) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000140)={{0x0, 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) mmap$auto(0x0, 0xfff, 0xdf, 0x9b72, 0x400, 0x28000) socket(0xa, 0x1, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0xc8, 0x0, 0x567) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$auto_NET_SHAPER_CMD_DELETE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x44000}, 0xc050) waitid$auto_P_ALL(0x0, 0x8000, &(0x7f0000000340)={@siginfo_0_0={0x4, 0x3, 0x3, @_sigsys={&(0x7f0000000480)="c258161241691b3bb9d197b1198fd2a187d97b29b3c74b919fa6e717ab0c770ca6b38d71449faaca469f6c6f4548f46ddc1a51fca00b33d4165f1dffd4ebbbcfff97cdac0e5b3796f7bbb0cdaa512772e90cc2a5bf77061d8dc7cb2a2273c9", 0x8, 0x1}}}, 0x4, &(0x7f00000003c0)={{0x6, 0x9}, {0x4, 0xffffffff00000000}, 0xd9ad, 0x6, 0x1, 0x1, 0x2, 0x3, 0x8, 0x7, 0x80000000, 0xcb3, 0x1, 0xe, 0x7}) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$auto(0x100000006, 0x0, 0x50, 0x0, 0x0) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket(0xa, 0x2, 0x0) close_range$auto(0x2, 0x8, 0x0) socket(0xf, 0x4, 0x84) io_uring_setup$auto(0x6, 0x0) mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) io_uring_enter$auto(r0, 0x8, 0x82400004, 0x4b, 0x0, 0x10) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) read$auto(r1, 0x0, 0x20) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r2, &(0x7f0000000200)={0x0, 0x7}, 0x400000003) socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r3) 711.483747ms ago: executing program 1 (id=1055): prctl$auto_PR_SET_MM_START_DATA(0x5, 0x3, 0x0, 0x7dde823a, 0x2a1) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap$auto_tracing_buffers_fops_trace(&(0x7f0000fec000/0x14000)=nil, 0x14000, 0x4d428b4f6a88cc39, 0x10014, 0xffffffffffffffff, 0x9) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) mmap$auto(0x0, 0x2000c, 0x4000000000df, 0xeb1, r0, 0x9) close_range$auto(0x2, 0x8, 0x1000000) r1 = io_uring_setup$auto(0xd, 0x0) io_uring_register$auto(0x2, 0x1a, 0x0, 0x1) write$auto(r1, 0x0, 0xa5) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) r2 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x101c82, 0x0) write$auto(r2, &(0x7f0000000080)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) madvise$auto(0xd000000, 0x2003f2, 0x15) socket(0x2, 0x80802, 0x0) openat$auto_component_list_fops_(0xffffffffffffff9c, &(0x7f0000000300), 0x301a40, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000"], 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r3 = socket(0x10, 0x2, 0x0) sendmmsg$auto(r3, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) r4 = openat$auto_mtd_fops_mtdchar(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mtd0\x00', 0x301400, 0x0) ioctl$auto_MEMSETBADBLOCK(r4, 0x40084d0c, &(0x7f0000000280)=0x7) 456.452105ms ago: executing program 1 (id=1056): bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) mmap$auto(0x2000000000000, 0xfffffffffffffffe, 0x8, 0x810, r0, 0x5d63) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x2, 0x1, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x802, 0x0) openat$auto_snd_pcm_oss_f_reg_pcm_oss(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x20b42, 0x0) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sg0\x00', 0x141000, 0x0) bpf$auto(0x40, &(0x7f00000000c0)=@bpf_attr_0={0x0, 0x6, 0x8, 0x4, 0x800, 0xffffffffffffffff, 0x13, "f0f59673e700", 0x0, 0xffffffffffffffff, 0xfffff588, 0x9, 0x2, 0x100000000000200}, 0x7f) ioctl$auto_SCSI_IOCTL_SEND_COMMAND2(r1, 0x1, &(0x7f00000000c0)) r2 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x100e42, 0x0) write$auto_sg_fops_sg(r2, &(0x7f00000001c0)="bf5b1a8c24000000dbcbc7a996eea7f3804ca6c7591afff6578d2f5f520f687f316ba7327b581cd8d58309037c0ae2c7", 0x30) 63.652172ms ago: executing program 0 (id=1057): openat$auto_mon_fops_text_t_mon_text(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/usb/usbmon/0u\x00', 0x22202, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/007/001\x00', 0xa901, 0x0) ioctl$auto_USBDEVFS_SUBMITURB32(r0, 0x802c550a, &(0x7f0000000300)=ANY=[@ANYBLOB="0200000600a1e6ff040000000100400008"]) 0s ago: executing program 2 (id=1058): unshare$auto(0x40000080) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mremap$auto(0x1ff000, 0x8, 0x843, 0x3, 0xfffff000) mremap$auto(0xfffff000, 0x4, 0x4, 0x7, 0x1001ff000) mmap$auto(0x0, 0x20009, 0x4400000000df, 0xc157, 0x101000000000000, 0x7) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socketpair$auto(0x1, 0x2, 0x8000000000000000, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) socket(0x2, 0x1, 0x0) epoll_create$auto(0x4) mq_open$auto(0x0, 0x5, 0x3, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000840)='/proc/sys/vm/dirty_background_ratio\x00', 0x80000, 0x0) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x2, 0x0) select$auto(0xe, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x7, 0xd, 0x1, 0x948b, 0x3, 0x15f4da0a, 0xa, 0x3, 0x3, 0x80000001, 0x7, 0x6d3f, 0x9, 0x2, 0x8000]}, 0x0) sched_get_priority_min$auto(0x40) socket(0x2, 0xa, 0x0) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) unshare$auto(0x40000080) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video43\x00', 0x129900, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/platform/dummy_hcd.5/usb6/power/autosuspend_delay_ms\x00', 0x88b02, 0x0) sendfile$auto(r0, r0, 0x0, 0x3) write$auto(0xca, 0x0, 0x7f) kernel console output (not intermixed with test programs): ame: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 183.602323][ T7584] Call Trace: [ 183.602328][ T7584] [ 183.602334][ T7584] dump_stack_lvl+0x16c/0x1f0 [ 183.602371][ T7584] should_fail_ex+0x512/0x640 [ 183.602404][ T7584] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 183.602423][ T7584] should_failslab+0xc2/0x120 [ 183.602444][ T7584] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 183.602460][ T7584] ? __pmd_alloc+0xbf/0x930 [ 183.602482][ T7584] __pmd_alloc+0xbf/0x930 [ 183.602499][ T7584] ? find_held_lock+0x2b/0x80 [ 183.602515][ T7584] __handle_mm_fault+0xaac/0x5390 [ 183.602534][ T7584] ? __pfx___handle_mm_fault+0x10/0x10 [ 183.602545][ T7584] ? __pfx_mt_find+0x10/0x10 [ 183.602573][ T7584] ? find_vma+0xbf/0x140 [ 183.602592][ T7584] ? __pfx_find_vma+0x10/0x10 [ 183.602613][ T7584] handle_mm_fault+0x589/0xd10 [ 183.602627][ T7584] ? __pkru_allows_pkey+0x51/0xb0 [ 183.602649][ T7584] do_user_addr_fault+0x7a6/0x1370 [ 183.602671][ T7584] ? rcu_is_watching+0x12/0xc0 [ 183.602693][ T7584] exc_page_fault+0x5c/0xb0 [ 183.602711][ T7584] asm_exc_page_fault+0x26/0x30 [ 183.602725][ T7584] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 183.602747][ T7584] Code: c4 10 e9 44 21 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 21 04 00 66 66 [ 183.602759][ T7584] RSP: 0018:ffffc9000bd37a78 EFLAGS: 00050202 [ 183.602771][ T7584] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000004 [ 183.602779][ T7584] RDX: fffff520017a6f7e RSI: 0000000000000008 RDI: ffffc9000bd37bf0 [ 183.602787][ T7584] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520017a6f7e [ 183.602796][ T7584] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000 [ 183.602803][ T7584] R13: ffffc9000bd37bf0 R14: 0000000000000008 R15: 0000200000000040 [ 183.602822][ T7584] _copy_from_user+0x98/0xd0 [ 183.602836][ T7584] __htab_map_lookup_and_delete_batch+0xed0/0x23d0 [ 183.602855][ T7584] ? __lock_acquire+0x622/0x1c90 [ 183.602884][ T7584] ? find_held_lock+0x2b/0x80 [ 183.602898][ T7584] ? __fget_files+0x204/0x3c0 [ 183.602915][ T7584] ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10 [ 183.602938][ T7584] ? __pfx_htab_lru_percpu_map_lookup_batch+0x10/0x10 [ 183.602954][ T7584] bpf_map_do_batch+0x264/0x680 [ 183.602975][ T7584] __sys_bpf+0x4d9f/0x4e70 [ 183.602990][ T7584] ? __pfx___sys_bpf+0x10/0x10 [ 183.603003][ T7584] ? ksys_write+0x190/0x250 [ 183.603021][ T7584] ? __mutex_unlock_slowpath+0x163/0x800 [ 183.603050][ T7584] ? fput+0x70/0xf0 [ 183.603067][ T7584] ? ksys_write+0x1ac/0x250 [ 183.603080][ T7584] ? __pfx_ksys_write+0x10/0x10 [ 183.603097][ T7584] __x64_sys_bpf+0x78/0xc0 [ 183.603111][ T7584] ? lockdep_hardirqs_on+0x7c/0x110 [ 183.603126][ T7584] do_syscall_64+0xcd/0x490 [ 183.603144][ T7584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.603157][ T7584] RIP: 0033:0x7f9d9878e9a9 [ 183.603168][ T7584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.603180][ T7584] RSP: 002b:00007f9d99523038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 183.603192][ T7584] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878e9a9 [ 183.603201][ T7584] RDX: 0000000000000092 RSI: 0000200000000040 RDI: 0000000000000018 [ 183.603209][ T7584] RBP: 00007f9d99523090 R08: 0000000000000000 R09: 0000000000000000 [ 183.603217][ T7584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 183.603224][ T7584] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 183.603242][ T7584] [ 185.443003][ T7605] netlink: 342 bytes leftover after parsing attributes in process `syz.1.389'. [ 185.557752][ T7610] FAULT_INJECTION: forcing a failure. [ 185.557752][ T7610] name failslab, interval 1, probability 0, space 0, times 0 [ 185.652609][ T7610] CPU: 1 UID: 0 PID: 7610 Comm: syz.3.391 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 185.652635][ T7610] Tainted: [U]=USER [ 185.652640][ T7610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 185.652648][ T7610] Call Trace: [ 185.652653][ T7610] [ 185.652658][ T7610] dump_stack_lvl+0x16c/0x1f0 [ 185.652680][ T7610] should_fail_ex+0x512/0x640 [ 185.652701][ T7610] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 185.652720][ T7610] should_failslab+0xc2/0x120 [ 185.652737][ T7610] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 185.652753][ T7610] ? __d_alloc+0x32/0xae0 [ 185.652784][ T7610] __d_alloc+0x32/0xae0 [ 185.652801][ T7610] d_alloc_pseudo+0x1c/0xc0 [ 185.652821][ T7610] alloc_file_pseudo+0xcf/0x230 [ 185.652845][ T7610] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 185.652863][ T7610] ? alloc_fd+0x471/0x7d0 [ 185.652879][ T7610] sock_alloc_file+0x50/0x210 [ 185.652898][ T7610] __sys_socket+0x1c0/0x260 [ 185.652912][ T7610] ? __pfx___sys_socket+0x10/0x10 [ 185.652925][ T7610] ? syscall_user_dispatch+0x78/0x140 [ 185.652949][ T7610] __x64_sys_socket+0x72/0xb0 [ 185.652963][ T7610] do_syscall_64+0xcd/0x490 [ 185.652981][ T7610] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.652995][ T7610] RIP: 0033:0x7fcba458e9a9 [ 185.653006][ T7610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.653019][ T7610] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 185.653032][ T7610] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 185.653041][ T7610] RDX: 0000000000000000 RSI: 0000000000080802 RDI: 0000000000000002 [ 185.653049][ T7610] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 185.653057][ T7610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.653065][ T7610] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 185.653082][ T7610] [ 186.322970][ T7641] FAULT_INJECTION: forcing a failure. [ 186.322970][ T7641] name failslab, interval 1, probability 0, space 0, times 0 [ 186.371564][ T7641] CPU: 1 UID: 0 PID: 7641 Comm: syz.3.401 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 186.371593][ T7641] Tainted: [U]=USER [ 186.371598][ T7641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 186.371608][ T7641] Call Trace: [ 186.371613][ T7641] [ 186.371619][ T7641] dump_stack_lvl+0x16c/0x1f0 [ 186.371642][ T7641] should_fail_ex+0x512/0x640 [ 186.371665][ T7641] ? __kmalloc_noprof+0xbf/0x510 [ 186.371684][ T7641] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 186.371702][ T7641] should_failslab+0xc2/0x120 [ 186.371721][ T7641] __kmalloc_noprof+0xd2/0x510 [ 186.371738][ T7641] ? __pfx___mutex_trylock_common+0x10/0x10 [ 186.371763][ T7641] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 186.371785][ T7641] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 186.371802][ T7641] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 186.371818][ T7641] ? genl_get_cmd+0x194/0x580 [ 186.371847][ T7641] ? __radix_tree_lookup+0x21f/0x2c0 [ 186.371867][ T7641] genl_rcv_msg+0x55c/0x800 [ 186.371885][ T7641] ? __pfx_genl_rcv_msg+0x10/0x10 [ 186.371901][ T7641] ? __pfx_ctrl_getfamily+0x10/0x10 [ 186.371924][ T7641] netlink_rcv_skb+0x158/0x420 [ 186.371945][ T7641] ? __pfx_genl_rcv_msg+0x10/0x10 [ 186.371962][ T7641] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 186.371991][ T7641] ? netlink_deliver_tap+0x1ae/0xd30 [ 186.372015][ T7641] genl_rcv+0x28/0x40 [ 186.372037][ T7641] netlink_unicast+0x58a/0x850 [ 186.372154][ T7641] ? __pfx_netlink_unicast+0x10/0x10 [ 186.372186][ T7641] netlink_sendmsg+0x8d1/0xdd0 [ 186.372214][ T7641] ? __pfx_netlink_sendmsg+0x10/0x10 [ 186.372244][ T7641] __sys_sendto+0x4a0/0x520 [ 186.372263][ T7641] ? __pfx___sys_sendto+0x10/0x10 [ 186.372296][ T7641] ? fd_install+0x225/0x750 [ 186.372322][ T7641] ? __pfx___sys_socket+0x10/0x10 [ 186.372338][ T7641] ? xfd_validate_state+0x61/0x180 [ 186.372466][ T7641] ? __pfx_do_writev+0x10/0x10 [ 186.372498][ T7641] __x64_sys_sendto+0xe0/0x1c0 [ 186.372519][ T7641] ? do_syscall_64+0x91/0x490 [ 186.372541][ T7641] ? lockdep_hardirqs_on+0x7c/0x110 [ 186.372559][ T7641] do_syscall_64+0xcd/0x490 [ 186.372579][ T7641] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 186.372595][ T7641] RIP: 0033:0x7fcba459083c [ 186.372612][ T7641] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 186.372626][ T7641] RSP: 002b:00007fcba5442ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 186.372642][ T7641] RAX: ffffffffffffffda RBX: 00007fcba5442fc0 RCX: 00007fcba459083c [ 186.372654][ T7641] RDX: 000000000000001c RSI: 00007fcba5443010 RDI: 0000000000000006 [ 186.372663][ T7641] RBP: 0000000000000000 R08: 00007fcba5442f14 R09: 000000000000000c [ 186.372673][ T7641] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000006 [ 186.372682][ T7641] R13: 00007fcba5442f68 R14: 00007fcba5443010 R15: 0000000000000000 [ 186.372702][ T7641] [ 186.824771][ T7648] bcachefs: bch2_ioctl_fsck_offline() ret EFAULT [ 187.862092][ T7668] Invalid ELF header magic: != ELF [ 188.638613][ T7676] FAULT_INJECTION: forcing a failure. [ 188.638613][ T7676] name failslab, interval 1, probability 0, space 0, times 0 [ 188.767611][ T7676] CPU: 1 UID: 0 PID: 7676 Comm: syz.3.402 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 188.767638][ T7676] Tainted: [U]=USER [ 188.767643][ T7676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 188.767651][ T7676] Call Trace: [ 188.767657][ T7676] [ 188.767663][ T7676] dump_stack_lvl+0x16c/0x1f0 [ 188.767685][ T7676] should_fail_ex+0x512/0x640 [ 188.767707][ T7676] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 188.767726][ T7676] should_failslab+0xc2/0x120 [ 188.767744][ T7676] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 188.767759][ T7676] ? __asan_memcpy+0x3c/0x60 [ 188.767772][ T7676] ? __kernfs_new_node+0xd2/0x8e0 [ 188.767791][ T7676] __kernfs_new_node+0xd2/0x8e0 [ 188.767815][ T7676] ? __pfx___kernfs_new_node+0x10/0x10 [ 188.767837][ T7676] ? find_held_lock+0x2b/0x80 [ 188.767854][ T7676] ? kernfs_root+0xee/0x2a0 [ 188.767884][ T7676] kernfs_new_node+0x13c/0x1e0 [ 188.767906][ T7676] __kernfs_create_file+0x53/0x350 [ 188.767937][ T7676] cgroup_addrm_files+0x546/0xc20 [ 188.767967][ T7676] ? __xa_store+0x1dc/0x2e0 [ 188.767986][ T7676] ? __pfx_cgroup_addrm_files+0x10/0x10 [ 188.768008][ T7676] ? __pfx___xa_store+0x10/0x10 [ 188.768032][ T7676] ? do_raw_spin_unlock+0x172/0x230 [ 188.768056][ T7676] css_populate_dir+0x169/0x580 [ 188.768075][ T7676] cgroup_apply_control_enable+0x3f3/0xbb0 [ 188.768104][ T7676] cgroup_mkdir+0x5e7/0x11f0 [ 188.768120][ T7676] ? __pfx_cgroup_mkdir+0x10/0x10 [ 188.768136][ T7676] kernfs_iop_mkdir+0x10e/0x190 [ 188.768152][ T7676] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 188.768170][ T7676] vfs_mkdir+0x593/0x8c0 [ 188.768192][ T7676] do_mkdirat+0x304/0x3e0 [ 188.768209][ T7676] ? __pfx_do_mkdirat+0x10/0x10 [ 188.768226][ T7676] ? getname_flags.part.0+0x1c5/0x550 [ 188.768247][ T7676] __x64_sys_mkdir+0xef/0x140 [ 188.768262][ T7676] do_syscall_64+0xcd/0x490 [ 188.768280][ T7676] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 188.768294][ T7676] RIP: 0033:0x7fcba458e9a9 [ 188.768307][ T7676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 188.768321][ T7676] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 188.768335][ T7676] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 188.768344][ T7676] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 188.768353][ T7676] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 188.768362][ T7676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 188.768371][ T7676] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 188.768390][ T7676] [ 188.768440][ T7676] cgroup: cgroup_addrm_files: failed to add kmem.slabinfo, err=-12 [ 189.383005][ T7678] zswap: compressor 000 not available [ 189.400718][ T7681] zswap: compressor not available [ 189.892216][ T7689] zswap: compressor 000 not available [ 189.972955][ T7691] zswap: compressor not available [ 190.121654][ T7685] vhci_hcd: default hub control req: 8c0c v0004 i0000 l8 [ 190.425996][ T30] audit: type=1800 audit(6048862008.767:7): pid=7716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.408" name="dbroot" dev="configfs" ino=15052 res=0 errno=0 [ 193.037903][ T7759] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'. [ 193.100619][ T7759] netlink: 24 bytes leftover after parsing attributes in process `syz.1.416'. [ 193.670339][ T7767] netlink: 350 bytes leftover after parsing attributes in process `syz.1.419'. [ 194.131824][ T7785] netlink: 504 bytes leftover after parsing attributes in process `syz.3.424'. [ 194.251439][ T7786] netlink: 338 bytes leftover after parsing attributes in process `syz.1.422'. [ 194.415862][ T7777] program syz.2.421 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 194.447079][ T7786] macsec0: entered allmulticast mode [ 194.459062][ T7786] veth1_macvtap: entered allmulticast mode [ 194.469996][ T7791] netlink: 146 bytes leftover after parsing attributes in process `syz.0.426'. [ 194.491886][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.498683][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.845260][ T30] audit: type=1800 audit(6048862013.185:8): pid=7799 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.427" name="members" dev="configfs" ino=15464 res=0 errno=0 [ 195.270453][ T7805] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input6 [ 195.388988][ T30] audit: type=1326 audit(6048862013.735:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.1.429" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd073b8e9a9 code=0x0 [ 195.467610][ T7806] netlink: 342 bytes leftover after parsing attributes in process `syz.0.430'. [ 196.397182][ T7825] FAULT_INJECTION: forcing a failure. [ 196.397182][ T7825] name failslab, interval 1, probability 0, space 0, times 0 [ 196.455381][ T7825] CPU: 1 UID: 0 PID: 7825 Comm: syz.0.434 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 196.455408][ T7825] Tainted: [U]=USER [ 196.455413][ T7825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 196.455422][ T7825] Call Trace: [ 196.455427][ T7825] [ 196.455433][ T7825] dump_stack_lvl+0x16c/0x1f0 [ 196.455455][ T7825] should_fail_ex+0x512/0x640 [ 196.455476][ T7825] ? __kmalloc_node_track_caller_noprof+0xc3/0x510 [ 196.455497][ T7825] should_failslab+0xc2/0x120 [ 196.455515][ T7825] __kmalloc_node_track_caller_noprof+0xd6/0x510 [ 196.455533][ T7825] ? kstrdup_const+0x63/0x80 [ 196.455551][ T7825] kstrdup+0x53/0x100 [ 196.455567][ T7825] kstrdup_const+0x63/0x80 [ 196.455581][ T7825] __kernfs_new_node+0x9b/0x8e0 [ 196.455600][ T7825] ? __pfx___kernfs_new_node+0x10/0x10 [ 196.455624][ T7825] ? find_held_lock+0x2b/0x80 [ 196.455639][ T7825] ? kernfs_root+0xee/0x2a0 [ 196.455658][ T7825] kernfs_new_node+0x13c/0x1e0 [ 196.455680][ T7825] kernfs_create_link+0xcc/0x240 [ 196.455702][ T7825] sysfs_do_create_link_sd+0x90/0x140 [ 196.455718][ T7825] sysfs_create_link+0x61/0xc0 [ 196.455733][ T7825] device_add+0x62c/0x1a70 [ 196.455756][ T7825] ? __pfx_device_add+0x10/0x10 [ 196.455776][ T7825] ? lockdep_init_map_type+0x5c/0x280 [ 196.455795][ T7825] ? __init_waitqueue_head+0xca/0x150 [ 196.455812][ T7825] netdev_register_kobject+0x182/0x3a0 [ 196.455836][ T7825] register_netdevice+0x13dc/0x2270 [ 196.455859][ T7825] ? __pfx_register_netdevice+0x10/0x10 [ 196.455885][ T7825] __ip_tunnel_create+0x540/0x6e0 [ 196.455907][ T7825] ? __pfx___ip_tunnel_create+0x10/0x10 [ 196.455933][ T7825] ip_tunnel_init_net+0x22f/0x7d0 [ 196.455948][ T7825] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 196.455965][ T7825] ? rcu_is_watching+0x12/0xc0 [ 196.455979][ T7825] ? trace_kmalloc+0x2b/0xd0 [ 196.455996][ T7825] ? __kmalloc_noprof+0x242/0x510 [ 196.456011][ T7825] ? __pfx_vti_init_net+0x10/0x10 [ 196.456025][ T7825] vti_init_net+0x2e/0x140 [ 196.456039][ T7825] ops_init+0x1e2/0x5f0 [ 196.456059][ T7825] setup_net+0x1ff/0x510 [ 196.456076][ T7825] ? lockdep_init_map_type+0x5c/0x280 [ 196.456094][ T7825] ? __pfx_setup_net+0x10/0x10 [ 196.456114][ T7825] ? debug_mutex_init+0x37/0x70 [ 196.456129][ T7825] copy_net_ns+0x2a6/0x5f0 [ 196.456151][ T7825] create_new_namespaces+0x3ea/0xa90 [ 196.456171][ T7825] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 196.456188][ T7825] ksys_unshare+0x45b/0xa40 [ 196.456206][ T7825] ? __pfx_ksys_unshare+0x10/0x10 [ 196.456225][ T7825] ? xfd_validate_state+0x61/0x180 [ 196.456250][ T7825] __x64_sys_unshare+0x31/0x40 [ 196.456266][ T7825] do_syscall_64+0xcd/0x490 [ 196.456286][ T7825] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 196.456300][ T7825] RIP: 0033:0x7f1bb778e9a9 [ 196.456313][ T7825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.456336][ T7825] RSP: 002b:00007f1bb86ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 196.456352][ T7825] RAX: ffffffffffffffda RBX: 00007f1bb79b5fa0 RCX: 00007f1bb778e9a9 [ 196.456363][ T7825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 196.456372][ T7825] RBP: 00007f1bb7810d69 R08: 0000000000000000 R09: 0000000000000000 [ 196.456381][ T7825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 196.456390][ T7825] R13: 0000000000000000 R14: 00007f1bb79b5fa0 R15: 00007ffd1b0c9318 [ 196.456410][ T7825] [ 197.731920][ T5843] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 197.784142][ T7836] random: crng reseeded on system resumption [ 198.660329][ T7840] FAULT_INJECTION: forcing a failure. [ 198.660329][ T7840] name failslab, interval 1, probability 0, space 0, times 0 [ 198.736863][ T7840] CPU: 1 UID: 0 PID: 7840 Comm: syz.1.440 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 198.736889][ T7840] Tainted: [U]=USER [ 198.736894][ T7840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 198.736903][ T7840] Call Trace: [ 198.736908][ T7840] [ 198.736913][ T7840] dump_stack_lvl+0x16c/0x1f0 [ 198.736935][ T7840] should_fail_ex+0x512/0x640 [ 198.736955][ T7840] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 198.736971][ T7840] should_failslab+0xc2/0x120 [ 198.736990][ T7840] __kmalloc_cache_noprof+0x6a/0x3e0 [ 198.737003][ T7840] ? dropmon_net_event+0x15d/0x360 [ 198.737025][ T7840] dropmon_net_event+0x15d/0x360 [ 198.737043][ T7840] notifier_call_chain+0xb9/0x410 [ 198.737059][ T7840] ? __pfx_dropmon_net_event+0x10/0x10 [ 198.737080][ T7840] call_netdevice_notifiers_info+0xbe/0x140 [ 198.737104][ T7840] register_netdevice+0x182e/0x2270 [ 198.737126][ T7840] ? __pfx_register_netdevice+0x10/0x10 [ 198.737149][ T7840] ? __pfx_loopback_net_init+0x10/0x10 [ 198.737171][ T7840] register_netdev+0x34/0x50 [ 198.737191][ T7840] loopback_net_init+0x7a/0x170 [ 198.737205][ T7840] ? __pfx_loopback_net_init+0x10/0x10 [ 198.737218][ T7840] ops_init+0x1e2/0x5f0 [ 198.737240][ T7840] setup_net+0x1ff/0x510 [ 198.737258][ T7840] ? lockdep_init_map_type+0x5c/0x280 [ 198.737277][ T7840] ? __pfx_setup_net+0x10/0x10 [ 198.737296][ T7840] ? debug_mutex_init+0x37/0x70 [ 198.737311][ T7840] copy_net_ns+0x2a6/0x5f0 [ 198.737333][ T7840] create_new_namespaces+0x3ea/0xa90 [ 198.737352][ T7840] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 198.737369][ T7840] ksys_unshare+0x45b/0xa40 [ 198.737388][ T7840] ? __pfx_ksys_unshare+0x10/0x10 [ 198.737406][ T7840] ? xfd_validate_state+0x61/0x180 [ 198.737431][ T7840] __x64_sys_unshare+0x31/0x40 [ 198.737447][ T7840] do_syscall_64+0xcd/0x490 [ 198.737466][ T7840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 198.737481][ T7840] RIP: 0033:0x7fd073b8e9a9 [ 198.737492][ T7840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 198.737506][ T7840] RSP: 002b:00007fd07497f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 198.737519][ T7840] RAX: ffffffffffffffda RBX: 00007fd073db5fa0 RCX: 00007fd073b8e9a9 [ 198.737529][ T7840] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 198.737537][ T7840] RBP: 00007fd073c10d69 R08: 0000000000000000 R09: 0000000000000000 [ 198.737545][ T7840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 198.737553][ T7840] R13: 0000000000000000 R14: 00007fd073db5fa0 R15: 00007fff889478f8 [ 198.737571][ T7840] [ 199.017498][ C1] vkms_vblank_simulate: vblank timer overrun [ 201.010491][ T7878] FAULT_INJECTION: forcing a failure. [ 201.010491][ T7878] name failslab, interval 1, probability 0, space 0, times 0 [ 201.056126][ T7878] CPU: 1 UID: 0 PID: 7878 Comm: syz.2.448 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 201.056154][ T7878] Tainted: [U]=USER [ 201.056159][ T7878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 201.056167][ T7878] Call Trace: [ 201.056174][ T7878] [ 201.056181][ T7878] dump_stack_lvl+0x16c/0x1f0 [ 201.056204][ T7878] should_fail_ex+0x512/0x640 [ 201.056225][ T7878] ? __kmalloc_noprof+0xbf/0x510 [ 201.056243][ T7878] ? kobject_get_path+0xd2/0x2a0 [ 201.056271][ T7878] should_failslab+0xc2/0x120 [ 201.056289][ T7878] __kmalloc_noprof+0xd2/0x510 [ 201.056310][ T7878] kobject_get_path+0xd2/0x2a0 [ 201.056331][ T7878] kobject_uevent_env+0x289/0x1870 [ 201.056350][ T7878] ? ksys_unshare+0x9c0/0xa40 [ 201.056375][ T7878] netdev_queue_update_kobjects+0x1a7/0x720 [ 201.056402][ T7878] netdev_register_kobject+0x28c/0x3a0 [ 201.056425][ T7878] register_netdevice+0x13dc/0x2270 [ 201.056449][ T7878] ? __pfx_register_netdevice+0x10/0x10 [ 201.056473][ T7878] __ip_tunnel_create+0x540/0x6e0 [ 201.056496][ T7878] ? __pfx___ip_tunnel_create+0x10/0x10 [ 201.056521][ T7878] ip_tunnel_init_net+0x22f/0x7d0 [ 201.056537][ T7878] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 201.056553][ T7878] ? trace_kmalloc+0x2b/0xd0 [ 201.056570][ T7878] ? __kmalloc_noprof+0x242/0x510 [ 201.056584][ T7878] ? lockdep_init_map_type+0x5c/0x280 [ 201.056605][ T7878] ? __pfx_erspan_init_net+0x10/0x10 [ 201.056623][ T7878] ops_init+0x1e2/0x5f0 [ 201.056643][ T7878] setup_net+0x1ff/0x510 [ 201.056660][ T7878] ? lockdep_init_map_type+0x5c/0x280 [ 201.056678][ T7878] ? __pfx_setup_net+0x10/0x10 [ 201.056697][ T7878] ? debug_mutex_init+0x37/0x70 [ 201.056713][ T7878] copy_net_ns+0x2a6/0x5f0 [ 201.056734][ T7878] create_new_namespaces+0x3ea/0xa90 [ 201.056754][ T7878] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 201.056771][ T7878] ksys_unshare+0x45b/0xa40 [ 201.056789][ T7878] ? __pfx_ksys_unshare+0x10/0x10 [ 201.056807][ T7878] ? xfd_validate_state+0x61/0x180 [ 201.056832][ T7878] __x64_sys_unshare+0x31/0x40 [ 201.056849][ T7878] do_syscall_64+0xcd/0x490 [ 201.056868][ T7878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 201.056882][ T7878] RIP: 0033:0x7f9d9878e9a9 [ 201.056895][ T7878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.056909][ T7878] RSP: 002b:00007f9d99523038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 201.056923][ T7878] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878e9a9 [ 201.056932][ T7878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 201.056941][ T7878] RBP: 00007f9d98810d69 R08: 0000000000000000 R09: 0000000000000000 [ 201.056949][ T7878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.056957][ T7878] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 201.056981][ T7878] [ 201.364206][ C1] vkms_vblank_simulate: vblank timer overrun [ 202.019690][ T7896] FAULT_INJECTION: forcing a failure. [ 202.019690][ T7896] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 202.075821][ T7896] CPU: 1 UID: 0 PID: 7896 Comm: syz.0.452 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 202.075847][ T7896] Tainted: [U]=USER [ 202.075852][ T7896] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 202.075860][ T7896] Call Trace: [ 202.075865][ T7896] [ 202.075871][ T7896] dump_stack_lvl+0x16c/0x1f0 [ 202.075894][ T7896] should_fail_ex+0x512/0x640 [ 202.075918][ T7896] should_fail_alloc_page+0xe7/0x130 [ 202.075945][ T7896] prepare_alloc_pages+0x3c2/0x610 [ 202.075968][ T7896] __alloc_frozen_pages_noprof+0x18b/0x23f0 [ 202.075985][ T7896] ? kasan_save_stack+0x42/0x60 [ 202.076000][ T7896] ? kasan_save_stack+0x33/0x60 [ 202.076013][ T7896] ? kasan_save_track+0x14/0x30 [ 202.076026][ T7896] ? __kasan_slab_alloc+0x89/0x90 [ 202.076041][ T7896] ? kmem_cache_alloc_noprof+0x1cb/0x3b0 [ 202.076055][ T7896] ? __pmd_alloc+0xbf/0x930 [ 202.076073][ T7896] ? __handle_mm_fault+0xaac/0x5390 [ 202.076085][ T7896] ? handle_mm_fault+0x589/0xd10 [ 202.076096][ T7896] ? do_user_addr_fault+0x7a6/0x1370 [ 202.076116][ T7896] ? exc_page_fault+0x5c/0xb0 [ 202.076131][ T7896] ? asm_exc_page_fault+0x26/0x30 [ 202.076143][ T7896] ? rep_movs_alternative+0xf/0x90 [ 202.076162][ T7896] ? _copy_from_user+0x98/0xd0 [ 202.076176][ T7896] ? __htab_map_lookup_and_delete_batch+0xed0/0x23d0 [ 202.076200][ T7896] ? bpf_map_do_batch+0x264/0x680 [ 202.076220][ T7896] ? __sys_bpf+0x4d9f/0x4e70 [ 202.076232][ T7896] ? __x64_sys_bpf+0x78/0xc0 [ 202.076244][ T7896] ? do_syscall_64+0xcd/0x490 [ 202.076260][ T7896] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.076274][ T7896] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 202.076300][ T7896] ? __lock_acquire+0xb8a/0x1c90 [ 202.076319][ T7896] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 202.076342][ T7896] ? policy_nodemask+0xea/0x4e0 [ 202.076361][ T7896] alloc_pages_mpol+0x1fb/0x550 [ 202.076379][ T7896] ? __pfx_alloc_pages_mpol+0x10/0x10 [ 202.076397][ T7896] ? __thp_vma_allowable_orders+0x1c5/0xb10 [ 202.076420][ T7896] alloc_pages_noprof+0x131/0x390 [ 202.076438][ T7896] pte_alloc_one+0x1c/0x3a0 [ 202.076453][ T7896] __handle_mm_fault+0x3a36/0x5390 [ 202.076472][ T7896] ? __pfx___handle_mm_fault+0x10/0x10 [ 202.076484][ T7896] ? __pfx_mt_find+0x10/0x10 [ 202.076513][ T7896] ? find_vma+0xbf/0x140 [ 202.076530][ T7896] ? __pfx_find_vma+0x10/0x10 [ 202.076549][ T7896] handle_mm_fault+0x589/0xd10 [ 202.076564][ T7896] ? __pkru_allows_pkey+0x51/0xb0 [ 202.076584][ T7896] do_user_addr_fault+0x7a6/0x1370 [ 202.076606][ T7896] ? rcu_is_watching+0x12/0xc0 [ 202.076623][ T7896] exc_page_fault+0x5c/0xb0 [ 202.076639][ T7896] asm_exc_page_fault+0x26/0x30 [ 202.076652][ T7896] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 202.076673][ T7896] Code: c4 10 e9 44 21 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 21 04 00 66 66 [ 202.076690][ T7896] RSP: 0018:ffffc9000c0f7a78 EFLAGS: 00050202 [ 202.076702][ T7896] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000004 [ 202.076711][ T7896] RDX: fffff5200181ef7e RSI: 0000000000000008 RDI: ffffc9000c0f7bf0 [ 202.076719][ T7896] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff5200181ef7e [ 202.076727][ T7896] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000 [ 202.076735][ T7896] R13: ffffc9000c0f7bf0 R14: 0000000000000008 R15: 0000200000000040 [ 202.076754][ T7896] _copy_from_user+0x98/0xd0 [ 202.076768][ T7896] __htab_map_lookup_and_delete_batch+0xed0/0x23d0 [ 202.076785][ T7896] ? __lock_acquire+0x622/0x1c90 [ 202.076812][ T7896] ? find_held_lock+0x2b/0x80 [ 202.076826][ T7896] ? __fget_files+0x204/0x3c0 [ 202.076841][ T7896] ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10 [ 202.076865][ T7896] ? __pfx_htab_lru_percpu_map_lookup_batch+0x10/0x10 [ 202.076880][ T7896] bpf_map_do_batch+0x264/0x680 [ 202.076900][ T7896] __sys_bpf+0x4d9f/0x4e70 [ 202.076916][ T7896] ? __pfx___sys_bpf+0x10/0x10 [ 202.077015][ T7896] ? ksys_write+0x190/0x250 [ 202.077036][ T7896] ? __mutex_unlock_slowpath+0x163/0x800 [ 202.077066][ T7896] ? fput+0x70/0xf0 [ 202.077085][ T7896] ? ksys_write+0x1ac/0x250 [ 202.077103][ T7896] ? __pfx_ksys_write+0x10/0x10 [ 202.077121][ T7896] __x64_sys_bpf+0x78/0xc0 [ 202.077136][ T7896] ? lockdep_hardirqs_on+0x7c/0x110 [ 202.077152][ T7896] do_syscall_64+0xcd/0x490 [ 202.077173][ T7896] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 202.077188][ T7896] RIP: 0033:0x7f1bb778e9a9 [ 202.077201][ T7896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 202.077215][ T7896] RSP: 002b:00007f1bb86ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 202.077228][ T7896] RAX: ffffffffffffffda RBX: 00007f1bb79b5fa0 RCX: 00007f1bb778e9a9 [ 202.077238][ T7896] RDX: 0000000000000092 RSI: 0000200000000040 RDI: 0000000000000018 [ 202.077247][ T7896] RBP: 00007f1bb86ad090 R08: 0000000000000000 R09: 0000000000000000 [ 202.077256][ T7896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 202.077265][ T7896] R13: 0000000000000000 R14: 00007f1bb79b5fa0 R15: 00007ffd1b0c9318 [ 202.077284][ T7896] [ 202.629709][ C1] vkms_vblank_simulate: vblank timer overrun [ 202.697784][ T7900] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input7 [ 203.633135][ T7908] kafs: addr_prefs: Invalid Command [ 203.743626][ T7909] i2c i2c-0: dvb_frontend_start: failed to start kthread (-4) [ 203.846368][ T7913] FAULT_INJECTION: forcing a failure. [ 203.846368][ T7913] name failslab, interval 1, probability 0, space 0, times 0 [ 203.883651][ T7913] CPU: 1 UID: 0 PID: 7913 Comm: syz.3.458 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 203.883681][ T7913] Tainted: [U]=USER [ 203.883686][ T7913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 203.883695][ T7913] Call Trace: [ 203.883701][ T7913] [ 203.883708][ T7913] dump_stack_lvl+0x16c/0x1f0 [ 203.883731][ T7913] should_fail_ex+0x512/0x640 [ 203.883753][ T7913] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 203.883773][ T7913] should_failslab+0xc2/0x120 [ 203.883798][ T7913] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 203.883815][ T7913] ? __kernfs_new_node+0xd2/0x8e0 [ 203.883834][ T7913] __kernfs_new_node+0xd2/0x8e0 [ 203.883853][ T7913] ? __pfx___kernfs_new_node+0x10/0x10 [ 203.883874][ T7913] ? find_held_lock+0x2b/0x80 [ 203.883889][ T7913] ? kernfs_root+0xee/0x2a0 [ 203.883908][ T7913] kernfs_new_node+0x13c/0x1e0 [ 203.883929][ T7913] __kernfs_create_file+0x53/0x350 [ 203.883956][ T7913] sysfs_add_file_mode_ns+0x207/0x3c0 [ 203.883975][ T7913] internal_create_group+0x578/0xf30 [ 203.883997][ T7913] ? __pfx_internal_create_group+0x10/0x10 [ 203.884105][ T7913] ? kernfs_create_link+0x1bd/0x240 [ 203.884144][ T7913] internal_create_groups+0x9d/0x150 [ 203.884164][ T7913] device_add+0x6d1/0x1a70 [ 203.884189][ T7913] ? __pfx_device_add+0x10/0x10 [ 203.884209][ T7913] ? lockdep_init_map_type+0x5c/0x280 [ 203.884230][ T7913] ? __init_waitqueue_head+0xca/0x150 [ 203.884248][ T7913] netdev_register_kobject+0x182/0x3a0 [ 203.884272][ T7913] register_netdevice+0x13dc/0x2270 [ 203.884297][ T7913] ? __pfx_register_netdevice+0x10/0x10 [ 203.884322][ T7913] __ip_tunnel_create+0x540/0x6e0 [ 203.884345][ T7913] ? __pfx___ip_tunnel_create+0x10/0x10 [ 203.884372][ T7913] ip_tunnel_init_net+0x22f/0x7d0 [ 203.884389][ T7913] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 203.884408][ T7913] ? rcu_is_watching+0x12/0xc0 [ 203.884423][ T7913] ? trace_kmalloc+0x2b/0xd0 [ 203.884441][ T7913] ? __kmalloc_noprof+0x242/0x510 [ 203.884457][ T7913] ? __pfx_vti_init_net+0x10/0x10 [ 203.884472][ T7913] vti_init_net+0x2e/0x140 [ 203.884486][ T7913] ops_init+0x1e2/0x5f0 [ 203.884508][ T7913] setup_net+0x1ff/0x510 [ 203.884526][ T7913] ? lockdep_init_map_type+0x5c/0x280 [ 203.884545][ T7913] ? __pfx_setup_net+0x10/0x10 [ 203.884566][ T7913] ? debug_mutex_init+0x37/0x70 [ 203.884583][ T7913] copy_net_ns+0x2a6/0x5f0 [ 203.884606][ T7913] create_new_namespaces+0x3ea/0xa90 [ 203.884627][ T7913] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 203.884646][ T7913] ksys_unshare+0x45b/0xa40 [ 203.884666][ T7913] ? __pfx_ksys_unshare+0x10/0x10 [ 203.884691][ T7913] ? xfd_validate_state+0x61/0x180 [ 203.884721][ T7913] __x64_sys_unshare+0x31/0x40 [ 203.884740][ T7913] do_syscall_64+0xcd/0x490 [ 203.884762][ T7913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 203.884777][ T7913] RIP: 0033:0x7fcba458e9a9 [ 203.884792][ T7913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 203.884818][ T7913] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 203.884833][ T7913] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 203.884843][ T7913] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 203.884853][ T7913] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 203.884862][ T7913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 203.884871][ T7913] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 203.884891][ T7913] [ 207.014584][ T7955] sg_write: data in/out 589824/1 bytes for SCSI command 0x7b-- guessing data in; [ 207.014584][ T7955] program syz.0.472 not setting count and/or reply_len properly [ 211.273937][ T8000] blktrace: Concurrent blktraces are not allowed on loop2 [ 211.424588][ T8007] netlink: 342 bytes leftover after parsing attributes in process `syz.3.485'. [ 211.921961][ T8019] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input8 [ 211.937921][ T5158] Bluetooth: hci1: command 0x0406 tx timeout [ 211.949063][ T5840] Bluetooth: hci3: command 0x0406 tx timeout [ 211.959216][ T5843] Bluetooth: hci2: command 0x0406 tx timeout [ 211.968487][ T5158] Bluetooth: hci0: command 0x0406 tx timeout [ 212.390153][ T8030] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 214.716027][ T8059] FAULT_INJECTION: forcing a failure. [ 214.716027][ T8059] name failslab, interval 1, probability 0, space 0, times 0 [ 214.822405][ T8070] zswap: compressor not available [ 214.864578][ T8059] CPU: 1 UID: 0 PID: 8059 Comm: syz.1.497 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 214.864605][ T8059] Tainted: [U]=USER [ 214.864610][ T8059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 214.864620][ T8059] Call Trace: [ 214.864625][ T8059] [ 214.864631][ T8059] dump_stack_lvl+0x16c/0x1f0 [ 214.864653][ T8059] should_fail_ex+0x512/0x640 [ 214.864674][ T8059] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 214.864694][ T8059] should_failslab+0xc2/0x120 [ 214.864711][ T8059] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 214.864727][ T8059] ? __kernfs_new_node+0xd2/0x8e0 [ 214.864746][ T8059] __kernfs_new_node+0xd2/0x8e0 [ 214.864764][ T8059] ? kernfs_add_one+0x37d/0x840 [ 214.864780][ T8059] ? __pfx___kernfs_new_node+0x10/0x10 [ 214.864801][ T8059] ? find_held_lock+0x2b/0x80 [ 214.864815][ T8059] ? kernfs_root+0xee/0x2a0 [ 214.864834][ T8059] kernfs_new_node+0x13c/0x1e0 [ 214.864855][ T8059] __kernfs_create_file+0x53/0x350 [ 214.864878][ T8059] sysfs_add_file_mode_ns+0x207/0x3c0 [ 214.864898][ T8059] sysfs_create_file_ns+0x13d/0x1d0 [ 214.864912][ T8059] ? __pfx_sysfs_create_file_ns+0x10/0x10 [ 214.864926][ T8059] ? down_read+0x13d/0x480 [ 214.864944][ T8059] ? __pfx___up_read+0x10/0x10 [ 214.864964][ T8059] ? acpi_device_notify+0x351/0x480 [ 214.864983][ T8059] device_create_file+0xf2/0x1e0 [ 214.864999][ T8059] device_add+0x2bf/0x1a70 [ 214.865104][ T8059] ? __pfx_dev_set_name+0x10/0x10 [ 214.865120][ T8059] ? __pfx_device_add+0x10/0x10 [ 214.865141][ T8059] ? lockdep_init_map_type+0x5c/0x280 [ 214.865160][ T8059] ? __init_waitqueue_head+0xca/0x150 [ 214.865178][ T8059] netdev_register_kobject+0x182/0x3a0 [ 214.865201][ T8059] register_netdevice+0x13dc/0x2270 [ 214.865224][ T8059] ? __pfx_register_netdevice+0x10/0x10 [ 214.865249][ T8059] __ip_tunnel_create+0x540/0x6e0 [ 214.865272][ T8059] ? __pfx___ip_tunnel_create+0x10/0x10 [ 214.865297][ T8059] ip_tunnel_init_net+0x22f/0x7d0 [ 214.865313][ T8059] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 214.865330][ T8059] ? rcu_is_watching+0x12/0xc0 [ 214.865344][ T8059] ? trace_kmalloc+0x2b/0xd0 [ 214.865361][ T8059] ? __kmalloc_noprof+0x242/0x510 [ 214.865377][ T8059] ? __pfx_vti_init_net+0x10/0x10 [ 214.865391][ T8059] vti_init_net+0x2e/0x140 [ 214.865404][ T8059] ops_init+0x1e2/0x5f0 [ 214.865425][ T8059] setup_net+0x1ff/0x510 [ 214.865441][ T8059] ? lockdep_init_map_type+0x5c/0x280 [ 214.865459][ T8059] ? __pfx_setup_net+0x10/0x10 [ 214.865478][ T8059] ? debug_mutex_init+0x37/0x70 [ 214.865494][ T8059] copy_net_ns+0x2a6/0x5f0 [ 214.865515][ T8059] create_new_namespaces+0x3ea/0xa90 [ 214.865535][ T8059] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 214.865552][ T8059] ksys_unshare+0x45b/0xa40 [ 214.865571][ T8059] ? __pfx_ksys_unshare+0x10/0x10 [ 214.865589][ T8059] ? xfd_validate_state+0x61/0x180 [ 214.865617][ T8059] __x64_sys_unshare+0x31/0x40 [ 214.865635][ T8059] do_syscall_64+0xcd/0x490 [ 214.865653][ T8059] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.865668][ T8059] RIP: 0033:0x7fd073b8e9a9 [ 214.865681][ T8059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.865695][ T8059] RSP: 002b:00007fd07497f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 214.865710][ T8059] RAX: ffffffffffffffda RBX: 00007fd073db5fa0 RCX: 00007fd073b8e9a9 [ 214.865720][ T8059] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 214.865729][ T8059] RBP: 00007fd073c10d69 R08: 0000000000000000 R09: 0000000000000000 [ 214.865738][ T8059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 214.865747][ T8059] R13: 0000000000000000 R14: 00007fd073db5fa0 R15: 00007fff889478f8 [ 214.865766][ T8059] [ 218.574591][ T8112] netlink: 330 bytes leftover after parsing attributes in process `syz.2.507'. [ 219.750967][ T8132] FAULT_INJECTION: forcing a failure. [ 219.750967][ T8132] name failslab, interval 1, probability 0, space 0, times 0 [ 219.798812][ T8132] CPU: 1 UID: 0 PID: 8132 Comm: syz.0.514 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 219.798840][ T8132] Tainted: [U]=USER [ 219.798845][ T8132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 219.798853][ T8132] Call Trace: [ 219.798859][ T8132] [ 219.798864][ T8132] dump_stack_lvl+0x16c/0x1f0 [ 219.798886][ T8132] should_fail_ex+0x512/0x640 [ 219.798913][ T8132] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 219.798933][ T8132] should_failslab+0xc2/0x120 [ 219.798951][ T8132] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 219.798968][ T8132] ? __kernfs_new_node+0xd2/0x8e0 [ 219.798987][ T8132] __kernfs_new_node+0xd2/0x8e0 [ 219.799003][ T8132] ? kernfs_add_one+0x37d/0x840 [ 219.799020][ T8132] ? __pfx___kernfs_new_node+0x10/0x10 [ 219.799041][ T8132] ? find_held_lock+0x2b/0x80 [ 219.799056][ T8132] ? kernfs_root+0xee/0x2a0 [ 219.799075][ T8132] kernfs_new_node+0x13c/0x1e0 [ 219.799092][ T8132] ? net_ns_get_ownership+0xf8/0x1b0 [ 219.799113][ T8132] kernfs_create_dir_ns+0x4c/0x1a0 [ 219.799133][ T8132] internal_create_group+0x34d/0xf30 [ 219.799155][ T8132] ? __pfx_internal_create_group+0x10/0x10 [ 219.799172][ T8132] ? __pfx_internal_create_group+0x10/0x10 [ 219.799190][ T8132] ? __pfx_dev_add_physical_location+0x10/0x10 [ 219.799211][ T8132] ? bus_to_subsys+0x131/0x160 [ 219.799227][ T8132] dpm_sysfs_add+0x80/0x280 [ 219.799247][ T8132] device_add+0x9a6/0x1a70 [ 219.799269][ T8132] ? __pfx_device_add+0x10/0x10 [ 219.799289][ T8132] ? lockdep_init_map_type+0x5c/0x280 [ 219.799308][ T8132] ? __init_waitqueue_head+0xca/0x150 [ 219.799325][ T8132] netdev_register_kobject+0x182/0x3a0 [ 219.799349][ T8132] register_netdevice+0x13dc/0x2270 [ 219.799372][ T8132] ? __pfx_register_netdevice+0x10/0x10 [ 219.799397][ T8132] __ip_tunnel_create+0x540/0x6e0 [ 219.799418][ T8132] ? __pfx___ip_tunnel_create+0x10/0x10 [ 219.799447][ T8132] ip_tunnel_init_net+0x22f/0x7d0 [ 219.799463][ T8132] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 219.799479][ T8132] ? trace_kmalloc+0x2b/0xd0 [ 219.799497][ T8132] ? __kmalloc_noprof+0x242/0x510 [ 219.799511][ T8132] ? lockdep_init_map_type+0x5c/0x280 [ 219.799532][ T8132] ? __pfx_ipgre_tap_init_net+0x10/0x10 [ 219.799550][ T8132] ops_init+0x1e2/0x5f0 [ 219.799570][ T8132] setup_net+0x1ff/0x510 [ 219.799586][ T8132] ? lockdep_init_map_type+0x5c/0x280 [ 219.799604][ T8132] ? __pfx_setup_net+0x10/0x10 [ 219.799623][ T8132] ? debug_mutex_init+0x37/0x70 [ 219.799639][ T8132] copy_net_ns+0x2a6/0x5f0 [ 219.799667][ T8132] create_new_namespaces+0x3ea/0xa90 [ 219.799706][ T8132] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 219.799740][ T8132] ksys_unshare+0x45b/0xa40 [ 219.799766][ T8132] ? __pfx_ksys_unshare+0x10/0x10 [ 219.799785][ T8132] ? xfd_validate_state+0x61/0x180 [ 219.799811][ T8132] __x64_sys_unshare+0x31/0x40 [ 219.799828][ T8132] do_syscall_64+0xcd/0x490 [ 219.799847][ T8132] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 219.799861][ T8132] RIP: 0033:0x7f1bb778e9a9 [ 219.799874][ T8132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 219.799887][ T8132] RSP: 002b:00007f1bb86ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 219.799914][ T8132] RAX: ffffffffffffffda RBX: 00007f1bb79b5fa0 RCX: 00007f1bb778e9a9 [ 219.799923][ T8132] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 219.799933][ T8132] RBP: 00007f1bb7810d69 R08: 0000000000000000 R09: 0000000000000000 [ 219.799942][ T8132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 219.799951][ T8132] R13: 0000000000000000 R14: 00007f1bb79b5fa0 R15: 00007ffd1b0c9318 [ 219.799970][ T8132] [ 220.511289][ T8146] FAULT_INJECTION: forcing a failure. [ 220.511289][ T8146] name failslab, interval 1, probability 0, space 0, times 0 [ 220.525223][ T8146] CPU: 1 UID: 0 PID: 8146 Comm: syz.1.517 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 220.525246][ T8146] Tainted: [U]=USER [ 220.525251][ T8146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 220.525259][ T8146] Call Trace: [ 220.525264][ T8146] [ 220.525271][ T8146] dump_stack_lvl+0x16c/0x1f0 [ 220.525292][ T8146] should_fail_ex+0x512/0x640 [ 220.525313][ T8146] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 220.525331][ T8146] should_failslab+0xc2/0x120 [ 220.525356][ T8146] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 220.525376][ T8146] ? __thp_vma_allowable_orders+0x1c5/0xb10 [ 220.525398][ T8146] ? ptlock_alloc+0x1f/0x70 [ 220.525414][ T8146] ptlock_alloc+0x1f/0x70 [ 220.525426][ T8146] pte_alloc_one+0x82/0x3a0 [ 220.525441][ T8146] __handle_mm_fault+0x3a36/0x5390 [ 220.525460][ T8146] ? __pfx___handle_mm_fault+0x10/0x10 [ 220.525472][ T8146] ? __pfx_mt_find+0x10/0x10 [ 220.525500][ T8146] ? find_vma+0xbf/0x140 [ 220.525518][ T8146] ? __pfx_find_vma+0x10/0x10 [ 220.525537][ T8146] handle_mm_fault+0x589/0xd10 [ 220.525551][ T8146] ? __pkru_allows_pkey+0x51/0xb0 [ 220.525572][ T8146] do_user_addr_fault+0x7a6/0x1370 [ 220.525594][ T8146] ? rcu_is_watching+0x12/0xc0 [ 220.525683][ T8146] exc_page_fault+0x5c/0xb0 [ 220.525699][ T8146] asm_exc_page_fault+0x26/0x30 [ 220.525713][ T8146] RIP: 0010:rep_movs_alternative+0xf/0x90 [ 220.525735][ T8146] Code: c4 10 e9 44 21 04 00 0f 1f 40 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 83 f9 40 73 44 83 f9 08 73 25 85 c9 74 0f <8a> 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 0d 21 04 00 66 66 [ 220.525749][ T8146] RSP: 0018:ffffc90002f57a78 EFLAGS: 00050202 [ 220.525761][ T8146] RAX: 0000000000000001 RBX: 0000000000000008 RCX: 0000000000000004 [ 220.525769][ T8146] RDX: fffff520005eaf7e RSI: 0000000000000008 RDI: ffffc90002f57bf0 [ 220.525785][ T8146] RBP: 0000000000000004 R08: 0000000000000001 R09: fffff520005eaf7e [ 220.525793][ T8146] R10: 0000000000000003 R11: 0000000000000001 R12: 0000000000000000 [ 220.525801][ T8146] R13: ffffc90002f57bf0 R14: 0000000000000008 R15: 0000200000000040 [ 220.525821][ T8146] _copy_from_user+0x98/0xd0 [ 220.525836][ T8146] __htab_map_lookup_and_delete_batch+0xed0/0x23d0 [ 220.525858][ T8146] ? __lock_acquire+0x622/0x1c90 [ 220.525887][ T8146] ? find_held_lock+0x2b/0x80 [ 220.525901][ T8146] ? __fget_files+0x204/0x3c0 [ 220.525916][ T8146] ? __pfx___htab_map_lookup_and_delete_batch+0x10/0x10 [ 220.525940][ T8146] ? __pfx_htab_lru_percpu_map_lookup_batch+0x10/0x10 [ 220.525956][ T8146] bpf_map_do_batch+0x264/0x680 [ 220.525977][ T8146] __sys_bpf+0x4d9f/0x4e70 [ 220.525993][ T8146] ? __pfx___sys_bpf+0x10/0x10 [ 220.526007][ T8146] ? ksys_write+0x190/0x250 [ 220.526030][ T8146] ? __mutex_unlock_slowpath+0x163/0x800 [ 220.526059][ T8146] ? fput+0x70/0xf0 [ 220.526076][ T8146] ? ksys_write+0x1ac/0x250 [ 220.526090][ T8146] ? __pfx_ksys_write+0x10/0x10 [ 220.526108][ T8146] __x64_sys_bpf+0x78/0xc0 [ 220.526121][ T8146] ? lockdep_hardirqs_on+0x7c/0x110 [ 220.526145][ T8146] do_syscall_64+0xcd/0x490 [ 220.526163][ T8146] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 220.526177][ T8146] RIP: 0033:0x7fd073b8e9a9 [ 220.526189][ T8146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.526202][ T8146] RSP: 002b:00007fd07497f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 220.526215][ T8146] RAX: ffffffffffffffda RBX: 00007fd073db5fa0 RCX: 00007fd073b8e9a9 [ 220.526224][ T8146] RDX: 0000000000000092 RSI: 0000200000000040 RDI: 0000000000000018 [ 220.526232][ T8146] RBP: 00007fd07497f090 R08: 0000000000000000 R09: 0000000000000000 [ 220.526240][ T8146] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 220.526248][ T8146] R13: 0000000000000000 R14: 00007fd073db5fa0 R15: 00007fff889478f8 [ 220.526267][ T8146] [ 221.813790][ T8148] tipc: Started in network mode [ 221.828195][ T8148] tipc: Node identity ee00, cluster identity 4711 [ 221.845632][ T8148] tipc: Node number set to 60928 [ 222.759089][ T8153] netlink: 28 bytes leftover after parsing attributes in process `syz.3.520'. [ 222.966434][ T8156] hub 8-0:1.0: USB hub found [ 223.008119][ T8156] hub 8-0:1.0: 1 port detected [ 223.539402][ T7994] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 223.752169][ T8176] netlink: 338 bytes leftover after parsing attributes in process `syz.1.526'. [ 224.017548][ T30] audit: type=1800 audit(6048864088.346:10): pid=8183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.527" name="SYSVffffffff" dev="tmpfs" ino=0 res=0 errno=0 [ 224.615396][ T8195] netlink: 16 bytes leftover after parsing attributes in process `syz.0.532'. [ 224.754387][ T8196] ksmbd: Unknown IPC event: 14, ignore. [ 225.609580][ T8213] netlink: 326 bytes leftover after parsing attributes in process `syz.3.537'. [ 226.674331][ T8232] FAULT_INJECTION: forcing a failure. [ 226.674331][ T8232] name failslab, interval 1, probability 0, space 0, times 0 [ 226.871663][ T8238] netlink: 28 bytes leftover after parsing attributes in process `syz.0.543'. [ 226.905272][ T8232] CPU: 1 UID: 0 PID: 8232 Comm: syz.3.541 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 226.905299][ T8232] Tainted: [U]=USER [ 226.905303][ T8232] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 226.905312][ T8232] Call Trace: [ 226.905318][ T8232] [ 226.905325][ T8232] dump_stack_lvl+0x16c/0x1f0 [ 226.905347][ T8232] should_fail_ex+0x512/0x640 [ 226.905368][ T8232] ? __kmalloc_noprof+0xbf/0x510 [ 226.905387][ T8232] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 226.905410][ T8232] should_failslab+0xc2/0x120 [ 226.905428][ T8232] __kmalloc_noprof+0xd2/0x510 [ 226.905443][ T8232] ? __pfx___mutex_trylock_common+0x10/0x10 [ 226.905467][ T8232] genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290 [ 226.905486][ T8232] genl_family_rcv_msg_doit+0xbf/0x2f0 [ 226.905501][ T8232] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 226.905515][ T8232] ? genl_get_cmd+0x194/0x580 [ 226.905542][ T8232] ? __radix_tree_lookup+0x21f/0x2c0 [ 226.905561][ T8232] genl_rcv_msg+0x55c/0x800 [ 226.905577][ T8232] ? __pfx_genl_rcv_msg+0x10/0x10 [ 226.905591][ T8232] ? __pfx_ctrl_getfamily+0x10/0x10 [ 226.905617][ T8232] netlink_rcv_skb+0x158/0x420 [ 226.905640][ T8232] ? __pfx_genl_rcv_msg+0x10/0x10 [ 226.905655][ T8232] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 226.905683][ T8232] ? netlink_deliver_tap+0x1ae/0xd30 [ 226.905705][ T8232] genl_rcv+0x28/0x40 [ 226.905725][ T8232] netlink_unicast+0x58a/0x850 [ 226.905752][ T8232] ? __pfx_netlink_unicast+0x10/0x10 [ 226.905777][ T8232] netlink_sendmsg+0x8d1/0xdd0 [ 226.905799][ T8232] ? __pfx_netlink_sendmsg+0x10/0x10 [ 226.905825][ T8232] __sys_sendto+0x4a0/0x520 [ 226.905844][ T8232] ? __pfx___sys_sendto+0x10/0x10 [ 226.905868][ T8232] ? fd_install+0x225/0x750 [ 226.905889][ T8232] ? __pfx___sys_socket+0x10/0x10 [ 226.905903][ T8232] ? xfd_validate_state+0x61/0x180 [ 226.905921][ T8232] ? __pfx_do_writev+0x10/0x10 [ 226.905937][ T8232] __x64_sys_sendto+0xe0/0x1c0 [ 226.905952][ T8232] ? do_syscall_64+0x91/0x490 [ 226.905968][ T8232] ? lockdep_hardirqs_on+0x7c/0x110 [ 226.905983][ T8232] do_syscall_64+0xcd/0x490 [ 226.906002][ T8232] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 226.906016][ T8232] RIP: 0033:0x7fcba459083c [ 226.906028][ T8232] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 226.906042][ T8232] RSP: 002b:00007fcba5442ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 226.906056][ T8232] RAX: ffffffffffffffda RBX: 00007fcba5442fc0 RCX: 00007fcba459083c [ 226.906065][ T8232] RDX: 000000000000001c RSI: 00007fcba5443010 RDI: 0000000000000009 [ 226.906074][ T8232] RBP: 0000000000000000 R08: 00007fcba5442f14 R09: 000000000000000c [ 226.906083][ T8232] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000009 [ 226.906091][ T8232] R13: 00007fcba5442f68 R14: 00007fcba5443010 R15: 0000000000000000 [ 226.906111][ T8232] [ 227.485490][ T30] audit: type=1800 audit(6048864091.545:11): pid=8241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.544" name="members" dev="configfs" ino=17666 res=0 errno=0 [ 227.667193][ T8238] team0: Port device team_slave_1 removed [ 228.459008][ T8261] FAULT_INJECTION: forcing a failure. [ 228.459008][ T8261] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 228.514223][ T8261] CPU: 1 UID: 0 PID: 8261 Comm: syz.2.551 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 228.514250][ T8261] Tainted: [U]=USER [ 228.514255][ T8261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 228.514263][ T8261] Call Trace: [ 228.514268][ T8261] [ 228.514274][ T8261] dump_stack_lvl+0x16c/0x1f0 [ 228.514296][ T8261] should_fail_ex+0x512/0x640 [ 228.514319][ T8261] _copy_to_user+0x32/0xd0 [ 228.514335][ T8261] simple_read_from_buffer+0xcb/0x170 [ 228.514359][ T8261] proc_fail_nth_read+0x197/0x240 [ 228.514381][ T8261] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 228.514404][ T8261] ? rw_verify_area+0xcf/0x680 [ 228.514425][ T8261] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 228.514447][ T8261] vfs_read+0x1e4/0xc60 [ 228.514463][ T8261] ? __pfx___mutex_lock+0x10/0x10 [ 228.514480][ T8261] ? __pfx_vfs_read+0x10/0x10 [ 228.514499][ T8261] ? __fget_files+0x20e/0x3c0 [ 228.514519][ T8261] ksys_read+0x12a/0x250 [ 228.514532][ T8261] ? __pfx_ksys_read+0x10/0x10 [ 228.514547][ T8261] ? fput+0x70/0xf0 [ 228.514567][ T8261] do_syscall_64+0xcd/0x490 [ 228.514585][ T8261] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.514602][ T8261] RIP: 0033:0x7f9d9878d3bc [ 228.514615][ T8261] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 228.514628][ T8261] RSP: 002b:00007f9d99523030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 228.514641][ T8261] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878d3bc [ 228.514651][ T8261] RDX: 000000000000000f RSI: 00007f9d995230a0 RDI: 0000000000000004 [ 228.514659][ T8261] RBP: 00007f9d99523090 R08: 0000000000000000 R09: 0000000000000000 [ 228.514667][ T8261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 228.514675][ T8261] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 228.514693][ T8261] [ 229.524959][ T8275] zswap: compressor not available [ 229.919861][ T8284] netlink: 330 bytes leftover after parsing attributes in process `syz.2.557'. [ 230.387341][ T8260] program syz.1.550 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.104825][ T8297] netlink: 342 bytes leftover after parsing attributes in process `syz.3.559'. [ 231.566736][ T8309] zswap: compressor not available [ 232.069941][ T8339] netlink: 342 bytes leftover after parsing attributes in process `syz.1.568'. [ 233.622301][ T8356] netlink: 28 bytes leftover after parsing attributes in process `syz.0.571'. [ 233.838253][ T8359] hub 8-0:1.0: USB hub found [ 233.916686][ T8359] hub 8-0:1.0: 1 port detected [ 234.867013][ T8388] netlink: 342 bytes leftover after parsing attributes in process `syz.0.577'. [ 235.342042][ T8399] FAULT_INJECTION: forcing a failure. [ 235.342042][ T8399] name failslab, interval 1, probability 0, space 0, times 0 [ 235.418733][ T8399] CPU: 1 UID: 0 PID: 8399 Comm: syz.0.580 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 235.418761][ T8399] Tainted: [U]=USER [ 235.418766][ T8399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 235.418775][ T8399] Call Trace: [ 235.418780][ T8399] [ 235.418793][ T8399] dump_stack_lvl+0x16c/0x1f0 [ 235.418817][ T8399] should_fail_ex+0x512/0x640 [ 235.418838][ T8399] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 235.418857][ T8399] should_failslab+0xc2/0x120 [ 235.418876][ T8399] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 235.418892][ T8399] ? sk_prot_alloc+0x60/0x2a0 [ 235.418914][ T8399] sk_prot_alloc+0x60/0x2a0 [ 235.418935][ T8399] sk_alloc+0x36/0xc20 [ 235.418952][ T8399] tipc_sk_create+0xcf/0x21a0 [ 235.418976][ T8399] ? find_held_lock+0x2b/0x80 [ 235.418991][ T8399] ? __sock_create+0x2f2/0x8d0 [ 235.419006][ T8399] __sock_create+0x335/0x8d0 [ 235.419022][ T8399] __sys_socket+0x14d/0x260 [ 235.419035][ T8399] ? __pfx___sys_socket+0x10/0x10 [ 235.419049][ T8399] ? xfd_validate_state+0x61/0x180 [ 235.419073][ T8399] __x64_sys_socket+0x72/0xb0 [ 235.419086][ T8399] ? lockdep_hardirqs_on+0x7c/0x110 [ 235.419102][ T8399] do_syscall_64+0xcd/0x490 [ 235.419119][ T8399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 235.419133][ T8399] RIP: 0033:0x7f1bb778e9a9 [ 235.419145][ T8399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 235.419158][ T8399] RSP: 002b:00007f1bb866b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 235.419172][ T8399] RAX: ffffffffffffffda RBX: 00007f1bb79b6160 RCX: 00007f1bb778e9a9 [ 235.419181][ T8399] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e [ 235.419189][ T8399] RBP: 00007f1bb7810d69 R08: 0000000000000000 R09: 0000000000000000 [ 235.419197][ T8399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 235.419205][ T8399] R13: 0000000000000000 R14: 00007f1bb79b6160 R15: 00007ffd1b0c9318 [ 235.419223][ T8399] [ 236.245931][ T8393] Falling back ldisc for ttyS2. [ 237.721753][ T8437] netlink: 28 bytes leftover after parsing attributes in process `syz.2.586'. [ 237.868783][ T8440] hub 8-0:1.0: USB hub found [ 237.950631][ T8440] hub 8-0:1.0: 1 port detected [ 238.323157][ T8445] FAULT_INJECTION: forcing a failure. [ 238.323157][ T8445] name failslab, interval 1, probability 0, space 0, times 0 [ 238.397994][ T8445] CPU: 1 UID: 0 PID: 8445 Comm: syz.0.588 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 238.398023][ T8445] Tainted: [U]=USER [ 238.398028][ T8445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 238.398037][ T8445] Call Trace: [ 238.398042][ T8445] [ 238.398048][ T8445] dump_stack_lvl+0x16c/0x1f0 [ 238.398071][ T8445] should_fail_ex+0x512/0x640 [ 238.398091][ T8445] ? __kvmalloc_node_noprof+0x124/0x620 [ 238.398110][ T8445] should_failslab+0xc2/0x120 [ 238.398127][ T8445] __kvmalloc_node_noprof+0x137/0x620 [ 238.398143][ T8445] ? alloc_netdev_mqs+0xfbe/0x1570 [ 238.398165][ T8445] ? alloc_netdev_mqs+0xfbe/0x1570 [ 238.398181][ T8445] alloc_netdev_mqs+0xfbe/0x1570 [ 238.398204][ T8445] __ip_tunnel_create+0x3ad/0x6e0 [ 238.398226][ T8445] ? __pfx___ip_tunnel_create+0x10/0x10 [ 238.398252][ T8445] ip_tunnel_init_net+0x22f/0x7d0 [ 238.398268][ T8445] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 238.398284][ T8445] ? trace_kmalloc+0x2b/0xd0 [ 238.398300][ T8445] ? __kmalloc_noprof+0x242/0x510 [ 238.398323][ T8445] ? __pfx_ipip_init_net+0x10/0x10 [ 238.398338][ T8445] ops_init+0x1e2/0x5f0 [ 238.398359][ T8445] setup_net+0x1ff/0x510 [ 238.398377][ T8445] ? lockdep_init_map_type+0x5c/0x280 [ 238.398396][ T8445] ? __pfx_setup_net+0x10/0x10 [ 238.398416][ T8445] ? debug_mutex_init+0x37/0x70 [ 238.398431][ T8445] copy_net_ns+0x2a6/0x5f0 [ 238.398452][ T8445] create_new_namespaces+0x3ea/0xa90 [ 238.398473][ T8445] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 238.398490][ T8445] ksys_unshare+0x45b/0xa40 [ 238.398508][ T8445] ? __pfx_ksys_unshare+0x10/0x10 [ 238.398526][ T8445] ? xfd_validate_state+0x61/0x180 [ 238.398551][ T8445] __x64_sys_unshare+0x31/0x40 [ 238.398569][ T8445] do_syscall_64+0xcd/0x490 [ 238.398597][ T8445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 238.398611][ T8445] RIP: 0033:0x7f1bb778e9a9 [ 238.398623][ T8445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 238.398637][ T8445] RSP: 002b:00007f1bb86ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 238.398650][ T8445] RAX: ffffffffffffffda RBX: 00007f1bb79b5fa0 RCX: 00007f1bb778e9a9 [ 238.398660][ T8445] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 238.398669][ T8445] RBP: 00007f1bb7810d69 R08: 0000000000000000 R09: 0000000000000000 [ 238.398677][ T8445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 238.398686][ T8445] R13: 0000000000000000 R14: 00007f1bb79b5fa0 R15: 00007ffd1b0c9318 [ 238.398705][ T8445] [ 238.855346][ T8450] netlink: 342 bytes leftover after parsing attributes in process `syz.1.589'. [ 239.390827][ T8457] netlink: 330 bytes leftover after parsing attributes in process `syz.1.590'. [ 241.086568][ T8484] FAULT_INJECTION: forcing a failure. [ 241.086568][ T8484] name failslab, interval 1, probability 0, space 0, times 0 [ 241.194081][ T8484] CPU: 1 UID: 0 PID: 8484 Comm: syz.3.597 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 241.194109][ T8484] Tainted: [U]=USER [ 241.194114][ T8484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 241.194134][ T8484] Call Trace: [ 241.194140][ T8484] [ 241.194145][ T8484] dump_stack_lvl+0x16c/0x1f0 [ 241.194167][ T8484] should_fail_ex+0x512/0x640 [ 241.194187][ T8484] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 241.194210][ T8484] should_failslab+0xc2/0x120 [ 241.194227][ T8484] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 241.194243][ T8484] ? __d_alloc+0x32/0xae0 [ 241.194262][ T8484] __d_alloc+0x32/0xae0 [ 241.194278][ T8484] d_alloc_pseudo+0x1c/0xc0 [ 241.194297][ T8484] alloc_file_pseudo+0xcf/0x230 [ 241.194317][ T8484] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 241.194335][ T8484] ? alloc_fd+0x471/0x7d0 [ 241.194351][ T8484] sock_alloc_file+0x50/0x210 [ 241.194371][ T8484] __sys_socket+0x1c0/0x260 [ 241.194384][ T8484] ? __pfx___sys_socket+0x10/0x10 [ 241.194398][ T8484] ? syscall_user_dispatch+0x78/0x140 [ 241.194424][ T8484] __x64_sys_socket+0x72/0xb0 [ 241.194437][ T8484] do_syscall_64+0xcd/0x490 [ 241.194456][ T8484] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 241.194469][ T8484] RIP: 0033:0x7fcba458e9a9 [ 241.194481][ T8484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.194494][ T8484] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 241.194508][ T8484] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 241.194517][ T8484] RDX: 0000000000000000 RSI: 0000000000080802 RDI: 0000000000000002 [ 241.194525][ T8484] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 241.194533][ T8484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.194541][ T8484] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 241.194558][ T8484] [ 242.111108][ T8495] Invalid ELF header magic: != ELF [ 243.802757][ T8521] bridge0: port 3(team0) entered blocking state [ 243.869567][ T8521] bridge0: port 3(team0) entered disabled state [ 243.975515][ T8521] team0: entered allmulticast mode [ 244.003327][ T8521] team_slave_0: entered allmulticast mode [ 244.040437][ T8521] team_slave_1: entered allmulticast mode [ 244.127336][ T8521] team0: entered promiscuous mode [ 244.169453][ T8521] team_slave_0: entered promiscuous mode [ 244.191395][ T8521] team_slave_1: entered promiscuous mode [ 244.238427][ T8521] bridge0: port 3(team0) entered blocking state [ 244.246705][ T8521] bridge0: port 3(team0) entered forwarding state [ 244.933020][ T8547] bond0: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 245.230884][ T8554] netlink: 342 bytes leftover after parsing attributes in process `syz.0.615'. [ 246.108549][ T8581] FAULT_INJECTION: forcing a failure. [ 246.108549][ T8581] name fail_futex, interval 1, probability 0, space 0, times 0 [ 246.122321][ T8581] CPU: 1 UID: 0 PID: 8581 Comm: syz.0.621 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 246.122345][ T8581] Tainted: [U]=USER [ 246.122350][ T8581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 246.122359][ T8581] Call Trace: [ 246.122364][ T8581] [ 246.122369][ T8581] dump_stack_lvl+0x16c/0x1f0 [ 246.122391][ T8581] should_fail_ex+0x512/0x640 [ 246.122415][ T8581] should_fail_futex+0x4c/0x60 [ 246.122432][ T8581] futex_lock_pi_atomic+0x148/0xd50 [ 246.122458][ T8581] futex_lock_pi+0x23f/0x7c0 [ 246.122481][ T8581] ? __pfx_futex_lock_pi+0x10/0x10 [ 246.122502][ T8581] ? preempt_schedule_thunk+0x16/0x30 [ 246.122526][ T8581] ? find_held_lock+0x2b/0x80 [ 246.122546][ T8581] ? futex_private_hash_put+0x18a/0x300 [ 246.122564][ T8581] ? __pfx_futex_wake_mark+0x10/0x10 [ 246.122589][ T8581] ? ksys_write+0x190/0x250 [ 246.122616][ T8581] do_futex+0x11a/0x350 [ 246.122638][ T8581] ? __pfx_do_futex+0x10/0x10 [ 246.122659][ T8581] __x64_sys_futex+0x1e0/0x4c0 [ 246.122678][ T8581] ? fput+0x70/0xf0 [ 246.122694][ T8581] ? __pfx___x64_sys_futex+0x10/0x10 [ 246.122711][ T8581] ? xfd_validate_state+0x61/0x180 [ 246.122730][ T8581] ? __pfx_ksys_write+0x10/0x10 [ 246.122749][ T8581] do_syscall_64+0xcd/0x490 [ 246.122767][ T8581] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 246.122781][ T8581] RIP: 0033:0x7f1bb778e9a9 [ 246.122794][ T8581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 246.122807][ T8581] RSP: 002b:00007f1bb86ad038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 246.122821][ T8581] RAX: ffffffffffffffda RBX: 00007f1bb79b5fa0 RCX: 00007f1bb778e9a9 [ 246.122830][ T8581] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 246.122838][ T8581] RBP: 00007f1bb7810d69 R08: 0000000000000000 R09: 000000008000fff2 [ 246.122846][ T8581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 246.122856][ T8581] R13: 0000000000000000 R14: 00007f1bb79b5fa0 R15: 00007ffd1b0c9318 [ 246.122875][ T8581] [ 246.640076][ T8590] usb usb23: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 247.390741][ T8580] tty tty1: ldisc open failed (-12), clearing slot 0 [ 250.045338][ T8655] netlink: 28 bytes leftover after parsing attributes in process `syz.0.641'. [ 250.633785][ T8670] FAULT_INJECTION: forcing a failure. [ 250.633785][ T8670] name failslab, interval 1, probability 0, space 0, times 0 [ 250.694823][ T8670] CPU: 1 UID: 0 PID: 8670 Comm: syz.3.646 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 250.694851][ T8670] Tainted: [U]=USER [ 250.694857][ T8670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 250.694866][ T8670] Call Trace: [ 250.694871][ T8670] [ 250.694877][ T8670] dump_stack_lvl+0x16c/0x1f0 [ 250.694899][ T8670] should_fail_ex+0x512/0x640 [ 250.694920][ T8670] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 250.694940][ T8670] should_failslab+0xc2/0x120 [ 250.694957][ T8670] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 250.694973][ T8670] ? __d_alloc+0x32/0xae0 [ 250.694991][ T8670] __d_alloc+0x32/0xae0 [ 250.695008][ T8670] d_alloc_pseudo+0x1c/0xc0 [ 250.695027][ T8670] alloc_file_pseudo+0xcf/0x230 [ 250.695046][ T8670] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 250.695065][ T8670] ? alloc_fd+0x471/0x7d0 [ 250.695081][ T8670] sock_alloc_file+0x50/0x210 [ 250.695101][ T8670] __sys_socket+0x1c0/0x260 [ 250.695115][ T8670] ? __pfx___sys_socket+0x10/0x10 [ 250.695129][ T8670] ? syscall_user_dispatch+0x78/0x140 [ 250.695153][ T8670] __x64_sys_socket+0x72/0xb0 [ 250.695167][ T8670] do_syscall_64+0xcd/0x490 [ 250.695185][ T8670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.695199][ T8670] RIP: 0033:0x7fcba458e9a9 [ 250.695211][ T8670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.695224][ T8670] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 250.695238][ T8670] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 250.695247][ T8670] RDX: 0000000000000000 RSI: 0000000000080802 RDI: 0000000000000002 [ 250.695255][ T8670] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 250.695263][ T8670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 250.695271][ T8670] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 250.695289][ T8670] [ 251.871161][ T8668] netlink: 330 bytes leftover after parsing attributes in process `syz.1.644'. [ 251.904248][ T8668] IPv6: NLM_F_CREATE should be specified when creating new route [ 252.179766][ T8707] netlink: 338 bytes leftover after parsing attributes in process `syz.0.654'. [ 252.527276][ T8718] QAT: Stopping all acceleration devices. [ 253.347108][ T8731] bridge0: port 3(dummy0) entered blocking state [ 253.362358][ T8731] bridge0: port 3(dummy0) entered disabled state [ 253.387509][ T8731] dummy0: entered allmulticast mode [ 253.417853][ T8731] dummy0: entered promiscuous mode [ 253.442404][ T8731] bridge0: port 3(dummy0) entered blocking state [ 253.449130][ T8731] bridge0: port 3(dummy0) entered forwarding state [ 254.893952][ T7994] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 255.954218][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.961103][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.781703][ T30] audit: type=1800 audit(6048868213.100:12): pid=8781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.670" name="features" dev="configfs" ino=20381 res=0 errno=0 [ 256.949185][ T8780] FAULT_INJECTION: forcing a failure. [ 256.949185][ T8780] name failslab, interval 1, probability 0, space 0, times 0 [ 256.996226][ T8780] CPU: 1 UID: 0 PID: 8780 Comm: syz.2.672 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 256.996254][ T8780] Tainted: [U]=USER [ 256.996259][ T8780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 256.996268][ T8780] Call Trace: [ 256.996274][ T8780] [ 256.996279][ T8780] dump_stack_lvl+0x16c/0x1f0 [ 256.996302][ T8780] should_fail_ex+0x512/0x640 [ 256.996322][ T8780] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 256.996340][ T8780] should_failslab+0xc2/0x120 [ 256.996357][ T8780] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 256.996373][ T8780] ? __kernfs_new_node+0xd2/0x8e0 [ 256.996391][ T8780] __kernfs_new_node+0xd2/0x8e0 [ 256.996409][ T8780] ? __pfx___kernfs_new_node+0x10/0x10 [ 256.996430][ T8780] ? find_held_lock+0x2b/0x80 [ 256.996444][ T8780] ? kernfs_root+0xee/0x2a0 [ 256.996463][ T8780] kernfs_new_node+0x13c/0x1e0 [ 256.996484][ T8780] __kernfs_create_file+0x53/0x350 [ 256.996507][ T8780] sysfs_add_file_mode_ns+0x207/0x3c0 [ 256.996527][ T8780] internal_create_group+0x578/0xf30 [ 256.996548][ T8780] ? __pfx_internal_create_group+0x10/0x10 [ 256.996567][ T8780] ? kernfs_create_link+0x1bd/0x240 [ 256.996590][ T8780] internal_create_groups+0x9d/0x150 [ 256.996608][ T8780] device_add+0xf30/0x1a70 [ 256.996631][ T8780] ? __pfx_device_add+0x10/0x10 [ 256.996654][ T8780] ? lockdep_init_map_type+0x5c/0x280 [ 256.996682][ T8780] ? __init_waitqueue_head+0xca/0x150 [ 256.996700][ T8780] netdev_register_kobject+0x182/0x3a0 [ 256.996724][ T8780] register_netdevice+0x13dc/0x2270 [ 256.996747][ T8780] ? __pfx_register_netdevice+0x10/0x10 [ 256.996772][ T8780] __ip_tunnel_create+0x540/0x6e0 [ 256.996799][ T8780] ? __pfx___ip_tunnel_create+0x10/0x10 [ 256.996826][ T8780] ip_tunnel_init_net+0x22f/0x7d0 [ 256.996842][ T8780] ? __pfx_ip_tunnel_init_net+0x10/0x10 [ 256.996859][ T8780] ? trace_kmalloc+0x2b/0xd0 [ 256.996877][ T8780] ? __kmalloc_noprof+0x242/0x510 [ 256.996890][ T8780] ? lockdep_init_map_type+0x5c/0x280 [ 256.996911][ T8780] ? __pfx_erspan_init_net+0x10/0x10 [ 256.996928][ T8780] ops_init+0x1e2/0x5f0 [ 256.996949][ T8780] setup_net+0x1ff/0x510 [ 256.996966][ T8780] ? lockdep_init_map_type+0x5c/0x280 [ 256.996993][ T8780] ? __pfx_setup_net+0x10/0x10 [ 256.997014][ T8780] ? debug_mutex_init+0x37/0x70 [ 256.997031][ T8780] copy_net_ns+0x2a6/0x5f0 [ 256.997053][ T8780] create_new_namespaces+0x3ea/0xa90 [ 256.997074][ T8780] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 256.997092][ T8780] ksys_unshare+0x45b/0xa40 [ 256.997110][ T8780] ? __pfx_ksys_unshare+0x10/0x10 [ 256.997128][ T8780] ? xfd_validate_state+0x61/0x180 [ 256.997153][ T8780] __x64_sys_unshare+0x31/0x40 [ 256.997170][ T8780] do_syscall_64+0xcd/0x490 [ 256.997189][ T8780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 256.997203][ T8780] RIP: 0033:0x7f9d9878e9a9 [ 256.997216][ T8780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 256.997229][ T8780] RSP: 002b:00007f9d99523038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 256.997243][ T8780] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878e9a9 [ 256.997253][ T8780] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 256.997262][ T8780] RBP: 00007f9d98810d69 R08: 0000000000000000 R09: 0000000000000000 [ 256.997270][ T8780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 256.997279][ T8780] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 256.997298][ T8780] [ 260.127210][ T8822] ======================================================= [ 260.127210][ T8822] WARNING: The mand mount option has been deprecated and [ 260.127210][ T8822] and is ignored by this kernel. Remove the mand [ 260.127210][ T8822] option from the mount to silence this warning. [ 260.127210][ T8822] ======================================================= [ 260.693621][ T8830] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 260.694081][ T8830] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 260.747307][ T8830] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 260.815420][ T8830] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 260.815468][ T8830] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 260.891620][ T8830] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 260.891760][ T8830] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 260.917250][ T8830] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 260.917337][ T8830] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 260.930606][ T8830] CPU0 is offline. [ 261.057120][ T8830] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 261.277351][ C1] vkms_vblank_simulate: vblank timer overrun [ 262.380795][ T8848] program syz.3.690 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 262.755118][ T7994] Bluetooth: hci0: command 0x0406 tx timeout [ 262.835181][ T7994] Bluetooth: hci1: command 0x0406 tx timeout [ 262.916861][ T7994] Bluetooth: hci2: command 0x0406 tx timeout [ 262.997674][ T7994] Bluetooth: hci3: command 0x0406 tx timeout [ 263.452899][ T8867] netlink: 330 bytes leftover after parsing attributes in process `syz.2.694'. [ 263.969868][ T8879] netlink: 302 bytes leftover after parsing attributes in process `syz.3.697'. [ 264.005111][ T30] audit: type=1800 audit(6048868220.316:13): pid=8881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.698" name="members" dev="configfs" ino=20828 res=0 errno=0 [ 264.140130][ T30] audit: type=1800 audit(6048868220.446:14): pid=8878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="lu_gp_id" dev="configfs" ino=20842 res=0 errno=0 [ 264.839868][ T7994] Bluetooth: hci0: command 0x0406 tx timeout [ 264.916376][ T7994] Bluetooth: hci1: command 0x0406 tx timeout [ 264.996155][ T7994] Bluetooth: hci2: command 0x0406 tx timeout [ 265.076393][ T7994] Bluetooth: hci3: command 0x0406 tx timeout [ 265.085543][ T8904] Setting dangerous option i915.mitigations - tainting kernel [ 265.138745][ T8904] Bad "i915.mitigations=!h@S", 'h@S' is unknown [ 265.315990][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.326942][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.347492][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.353929][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.370235][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.380841][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.391016][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.412079][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.903352][ T8913] FAULT_INJECTION: forcing a failure. [ 265.903352][ T8913] name failslab, interval 1, probability 0, space 0, times 0 [ 265.979817][ T8913] CPU: 1 UID: 0 PID: 8913 Comm: syz.1.704 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 265.979842][ T8913] Tainted: [U]=USER [ 265.979846][ T8913] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 265.979854][ T8913] Call Trace: [ 265.979860][ T8913] [ 265.979865][ T8913] dump_stack_lvl+0x16c/0x1f0 [ 265.979887][ T8913] should_fail_ex+0x512/0x640 [ 265.979907][ T8913] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 265.979927][ T8913] should_failslab+0xc2/0x120 [ 265.979944][ T8913] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 265.979960][ T8913] ? proc_alloc_inode+0x25/0x200 [ 265.979979][ T8913] ? __pfx_proc_alloc_inode+0x10/0x10 [ 265.979994][ T8913] proc_alloc_inode+0x25/0x200 [ 265.980009][ T8913] alloc_inode+0x61/0x240 [ 265.980027][ T8913] new_inode+0x22/0x1c0 [ 265.980046][ T8913] proc_pid_make_inode+0x22/0x160 [ 265.980063][ T8913] proc_pident_instantiate+0x85/0x310 [ 265.980082][ T8913] proc_pident_lookup+0x1f5/0x270 [ 265.980102][ T8913] __lookup_slow+0x24e/0x460 [ 265.980122][ T8913] ? __pfx___lookup_slow+0x10/0x10 [ 265.980152][ T8913] ? lookup_fast+0x156/0x610 [ 265.980167][ T8913] walk_component+0x353/0x5b0 [ 265.980185][ T8913] link_path_walk+0x627/0xe20 [ 265.980205][ T8913] path_openat+0x1b0/0x2cb0 [ 265.980218][ T8913] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.980239][ T8913] ? __pfx_path_openat+0x10/0x10 [ 265.980255][ T8913] ? __lock_acquire+0xb8a/0x1c90 [ 265.980276][ T8913] do_filp_open+0x20b/0x470 [ 265.980291][ T8913] ? __pfx_do_filp_open+0x10/0x10 [ 265.980312][ T8913] ? __pfx_kfree_link+0x10/0x10 [ 265.980337][ T8913] ? alloc_fd+0x471/0x7d0 [ 265.980355][ T8913] do_sys_openat2+0x11b/0x1d0 [ 265.980375][ T8913] ? __pfx_do_sys_openat2+0x10/0x10 [ 265.980401][ T8913] __x64_sys_openat+0x174/0x210 [ 265.980420][ T8913] ? __pfx___x64_sys_openat+0x10/0x10 [ 265.980446][ T8913] do_syscall_64+0xcd/0x490 [ 265.980465][ T8913] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 265.980479][ T8913] RIP: 0033:0x7fd073b8e9a9 [ 265.980490][ T8913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 265.980504][ T8913] RSP: 002b:00007fd07497f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 265.980517][ T8913] RAX: ffffffffffffffda RBX: 00007fd073db5fa0 RCX: 00007fd073b8e9a9 [ 265.980527][ T8913] RDX: 0000000000000001 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 265.980535][ T8913] RBP: 00007fd073c10d69 R08: 0000000000000000 R09: 0000000000000000 [ 265.980543][ T8913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 265.980552][ T8913] R13: 0000000000000000 R14: 00007fd073db5fa0 R15: 00007fff889478f8 [ 265.980570][ T8913] [ 266.762981][ T8927] program syz.0.706 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 266.948712][ T7994] Bluetooth: hci0: command 0x0406 tx timeout [ 267.080643][ T8935] device-mapper: ioctl: Invalid data size in the ioctl structure: 1 [ 268.395582][ T8942] netlink: 342 bytes leftover after parsing attributes in process `syz.2.712'. [ 269.930890][ T8907] kexec: Could not allocate control_code_buffer [ 274.229116][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 274.238269][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 274.250501][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 274.274856][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 274.339076][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 274.345659][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 274.361630][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 274.370735][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 275.338096][ T9044] netlink: set zone limit has 8 unknown bytes [ 275.634539][ T9047] bridge0: port 3(veth0_to_bridge) entered blocking state [ 275.669501][ T9047] bridge0: port 3(veth0_to_bridge) entered disabled state [ 275.712870][ T9047] veth0_to_bridge: entered allmulticast mode [ 275.740845][ T9047] veth0_to_bridge: entered promiscuous mode [ 275.770989][ T9047] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 275.872438][ T9047] bridge0: port 3(veth0_to_bridge) entered blocking state [ 275.880392][ T9047] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 276.407899][ T9060] FAULT_INJECTION: forcing a failure. [ 276.407899][ T9060] name failslab, interval 1, probability 0, space 0, times 0 [ 276.463486][ T9060] CPU: 1 UID: 0 PID: 9060 Comm: syz.3.742 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 276.463519][ T9060] Tainted: [U]=USER [ 276.463525][ T9060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 276.463533][ T9060] Call Trace: [ 276.463540][ T9060] [ 276.463546][ T9060] dump_stack_lvl+0x16c/0x1f0 [ 276.463569][ T9060] should_fail_ex+0x512/0x640 [ 276.463589][ T9060] ? __kvmalloc_node_noprof+0x124/0x620 [ 276.463608][ T9060] should_failslab+0xc2/0x120 [ 276.463677][ T9060] __kvmalloc_node_noprof+0x137/0x620 [ 276.463693][ T9060] ? lockdep_init_map_type+0x5c/0x280 [ 276.463713][ T9060] ? alloc_netdev_mqs+0xcf8/0x1570 [ 276.463736][ T9060] ? alloc_netdev_mqs+0xcf8/0x1570 [ 276.463753][ T9060] alloc_netdev_mqs+0xcf8/0x1570 [ 276.463774][ T9060] ? __pfx_loopback_net_init+0x10/0x10 [ 276.463789][ T9060] loopback_net_init+0x38/0x170 [ 276.463803][ T9060] ? __pfx_loopback_net_init+0x10/0x10 [ 276.463816][ T9060] ops_init+0x1e2/0x5f0 [ 276.463836][ T9060] setup_net+0x1ff/0x510 [ 276.463853][ T9060] ? lockdep_init_map_type+0x5c/0x280 [ 276.463874][ T9060] ? __pfx_setup_net+0x10/0x10 [ 276.463894][ T9060] ? debug_mutex_init+0x37/0x70 [ 276.463910][ T9060] copy_net_ns+0x2a6/0x5f0 [ 276.463931][ T9060] create_new_namespaces+0x3ea/0xa90 [ 276.463955][ T9060] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 276.463972][ T9060] ksys_unshare+0x45b/0xa40 [ 276.463989][ T9060] ? __local_bh_enable+0x7a/0x90 [ 276.464003][ T9060] ? __pfx_ksys_unshare+0x10/0x10 [ 276.464023][ T9060] ? __pfx_handle_softirqs+0x10/0x10 [ 276.464041][ T9060] __x64_sys_unshare+0x31/0x40 [ 276.464058][ T9060] do_syscall_64+0xcd/0x490 [ 276.464076][ T9060] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 276.464090][ T9060] RIP: 0033:0x7fcba458e9a9 [ 276.464103][ T9060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 276.464116][ T9060] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 276.464130][ T9060] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 276.464139][ T9060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 276.464148][ T9060] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 276.464157][ T9060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 276.464165][ T9060] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 276.464184][ T9060] [ 277.580429][ T9087] netlink: 25 bytes leftover after parsing attributes in process `syz.0.747'. [ 279.259259][ T9096] program syz.2.750 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 280.088331][ T9120] FAULT_INJECTION: forcing a failure. [ 280.088331][ T9120] name failslab, interval 1, probability 0, space 0, times 0 [ 280.264273][ T9120] CPU: 1 UID: 0 PID: 9120 Comm: syz.3.754 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 280.264300][ T9120] Tainted: [U]=USER [ 280.264306][ T9120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 280.264314][ T9120] Call Trace: [ 280.264320][ T9120] [ 280.264326][ T9120] dump_stack_lvl+0x16c/0x1f0 [ 280.264348][ T9120] should_fail_ex+0x512/0x640 [ 280.264379][ T9120] ? kmem_cache_alloc_noprof+0x5a/0x3b0 [ 280.264398][ T9120] should_failslab+0xc2/0x120 [ 280.264416][ T9120] kmem_cache_alloc_noprof+0x6d/0x3b0 [ 280.264431][ T9120] ? __proc_create+0xc3/0x8e0 [ 280.264448][ T9120] ? __proc_create+0x2ce/0x8e0 [ 280.264468][ T9120] __proc_create+0x2ce/0x8e0 [ 280.264486][ T9120] ? __pfx___proc_create+0x10/0x10 [ 280.264577][ T9120] ? __register_sysctl_table+0x736/0x1900 [ 280.264609][ T9120] ? _raw_spin_unlock+0x28/0x50 [ 280.264632][ T9120] proc_create_reg+0x7d/0x180 [ 280.264655][ T9120] proc_create_net_data+0x8e/0x1c0 [ 280.264675][ T9120] ? __pfx_proc_create_net_data+0x10/0x10 [ 280.264700][ T9120] ? __pfx_arp_net_init+0x10/0x10 [ 280.264717][ T9120] arp_net_init+0x53/0x70 [ 280.264731][ T9120] ops_init+0x1e2/0x5f0 [ 280.264754][ T9120] setup_net+0x1ff/0x510 [ 280.264771][ T9120] ? lockdep_init_map_type+0x5c/0x280 [ 280.264792][ T9120] ? __pfx_setup_net+0x10/0x10 [ 280.264813][ T9120] ? debug_mutex_init+0x37/0x70 [ 280.264829][ T9120] copy_net_ns+0x2a6/0x5f0 [ 280.264851][ T9120] create_new_namespaces+0x3ea/0xa90 [ 280.264872][ T9120] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 280.264890][ T9120] ksys_unshare+0x45b/0xa40 [ 280.264909][ T9120] ? __pfx_ksys_unshare+0x10/0x10 [ 280.264929][ T9120] ? xfd_validate_state+0x61/0x180 [ 280.264955][ T9120] __x64_sys_unshare+0x31/0x40 [ 280.264973][ T9120] do_syscall_64+0xcd/0x490 [ 280.264993][ T9120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 280.265015][ T9120] RIP: 0033:0x7fcba458e9a9 [ 280.265030][ T9120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 280.265044][ T9120] RSP: 002b:00007fcba5465038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 280.265059][ T9120] RAX: ffffffffffffffda RBX: 00007fcba47b5fa0 RCX: 00007fcba458e9a9 [ 280.265068][ T9120] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 280.265077][ T9120] RBP: 00007fcba4610d69 R08: 0000000000000000 R09: 0000000000000000 [ 280.265086][ T9120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 280.265094][ T9120] R13: 0000000000000000 R14: 00007fcba47b5fa0 R15: 00007ffffb9ca548 [ 280.265114][ T9120] [ 282.138649][ T9147] zram: Added device: zram1 [ 282.316428][ T9144] zswap: compressor " not available [ 283.831424][ T9177] program syz.0.769 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 284.013951][ T9183] program syz.2.770 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 284.360416][ T9188] netlink: 8 bytes leftover after parsing attributes in process `syz.1.772'. [ 286.667559][ T30] audit: type=1800 audit(6048871311.982:15): pid=9217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.780" name="members" dev="configfs" ino=22072 res=0 errno=0 [ 286.953031][ T9222] random: crng reseeded on system resumption [ 287.091059][ T9222] input: jJǸ-9%vlQ J86 as /devices/virtual/input/input10 [ 289.896277][ T9255] random: crng reseeded on system resumption [ 290.588215][ T9265] netlink: 338 bytes leftover after parsing attributes in process `syz.2.793'. [ 290.954460][ T9269] Invalid ELF header magic: != ELF [ 291.073137][ T9268] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(4.131072.4294967293), cmd(3) [ 291.497543][ T9286] netlink: 330 bytes leftover after parsing attributes in process `syz.1.799'. [ 291.699623][ T9293] program syz.3.801 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 291.894006][ T9292] netlink: 342 bytes leftover after parsing attributes in process `syz.0.802'. syzkaller syzkaller login: [ 293.859040][ T9340] program syz.0.816 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 293.892182][ T9323] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 295.021605][ T9363] netlink: 8 bytes leftover after parsing attributes in process `syz.1.823'. [ 295.275559][ T9364] bridge0: port 4(team0) entered blocking state [ 295.321250][ T9364] bridge0: port 4(team0) entered disabled state [ 295.357418][ T9364] team0: entered allmulticast mode [ 295.405337][ T9364] team_slave_0: entered allmulticast mode [ 295.434039][ T9364] team0: entered promiscuous mode [ 295.459349][ T9364] team_slave_0: entered promiscuous mode [ 295.485262][ T9364] bridge0: port 4(team0) entered blocking state [ 295.492195][ T9364] bridge0: port 4(team0) entered forwarding state [ 296.299078][ T9380] zswap: compressor not available [ 296.603666][ T9395] program syz.1.831 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 297.113752][ T30] audit: type=1800 audit(6048871322.417:16): pid=9404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.835" name="members" dev="configfs" ino=22840 res=0 errno=0 [ 297.471683][ T9409] netlink: 338 bytes leftover after parsing attributes in process `syz.3.836'. [ 297.664447][ T7994] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 297.748356][ T9423] netlink: 330 bytes leftover after parsing attributes in process `syz.3.839'. [ 298.125764][ T9428] zswap: compressor not available [ 298.437614][ T9439] netlink: 504 bytes leftover after parsing attributes in process `syz.1.842'. [ 298.793954][ T9447] netlink: 330 bytes leftover after parsing attributes in process `syz.2.845'. [ 298.840860][ T9452] program syz.0.846 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 299.086301][ T9454] netlink: 342 bytes leftover after parsing attributes in process `syz.1.849'. [ 299.781918][ T9474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.855'. [ 300.945743][ T9510] program syz.3.864 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 301.158002][ T9509] netlink: 338 bytes leftover after parsing attributes in process `syz.2.865'. [ 301.290156][ T9511] netlink: 338 bytes leftover after parsing attributes in process `syz.2.865'. [ 302.271588][ T9548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.873'. [ 302.294275][ T30] audit: type=1804 audit(6048871327.585:17): pid=9537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.872" name="/newroot/sys/kernel/tracing/per_cpu/cpu1/trace_pipe_raw" dev="tracefs" ino=160 res=1 errno=0 [ 302.913699][ T30] audit: type=1800 audit(6048871328.204:18): pid=9559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.877" name="members" dev="configfs" ino=23480 res=0 errno=0 [ 303.373044][ T9573] program syz.3.879 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 304.292350][ T9582] netlink: 338 bytes leftover after parsing attributes in process `syz.3.881'. [ 304.675166][ T9595] netlink: 330 bytes leftover after parsing attributes in process `syz.1.883'. [ 304.688815][ T9594] netlink: 504 bytes leftover after parsing attributes in process `syz.2.887'. [ 304.904449][ T9602] binder: 9599:9602 ioctl 400c620e 0 returned -14 [ 305.139318][ T9608] program syz.1.890 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 305.265819][ T9611] FAULT_INJECTION: forcing a failure. [ 305.265819][ T9611] name failslab, interval 1, probability 0, space 0, times 0 [ 305.380459][ T9611] CPU: 1 UID: 0 PID: 9611 Comm: syz.2.891 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 305.380486][ T9611] Tainted: [U]=USER [ 305.380491][ T9611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 305.380500][ T9611] Call Trace: [ 305.380505][ T9611] [ 305.380592][ T9611] dump_stack_lvl+0x16c/0x1f0 [ 305.380617][ T9611] should_fail_ex+0x512/0x640 [ 305.380639][ T9611] ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0 [ 305.380659][ T9611] should_failslab+0xc2/0x120 [ 305.380678][ T9611] kmem_cache_alloc_lru_noprof+0x72/0x3b0 [ 305.380693][ T9611] ? __d_alloc+0x32/0xae0 [ 305.380713][ T9611] __d_alloc+0x32/0xae0 [ 305.380730][ T9611] d_alloc_pseudo+0x1c/0xc0 [ 305.380748][ T9611] alloc_file_pseudo+0xcf/0x230 [ 305.380767][ T9611] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 305.380786][ T9611] ? alloc_fd+0x471/0x7d0 [ 305.380802][ T9611] sock_alloc_file+0x50/0x210 [ 305.380822][ T9611] __sys_socket+0x1c0/0x260 [ 305.380835][ T9611] ? __pfx___sys_socket+0x10/0x10 [ 305.380849][ T9611] ? syscall_user_dispatch+0x78/0x140 [ 305.380874][ T9611] __x64_sys_socket+0x72/0xb0 [ 305.380888][ T9611] do_syscall_64+0xcd/0x490 [ 305.380906][ T9611] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.380928][ T9611] RIP: 0033:0x7f9d9878e9a9 [ 305.380941][ T9611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 305.380954][ T9611] RSP: 002b:00007f9d99523038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 305.380969][ T9611] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878e9a9 [ 305.380978][ T9611] RDX: 0000000000000000 RSI: 0000000000080802 RDI: 0000000000000002 [ 305.380987][ T9611] RBP: 00007f9d98810d69 R08: 0000000000000000 R09: 0000000000000000 [ 305.380996][ T9611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 305.381004][ T9611] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 305.381022][ T9611] [ 305.590701][ C1] vkms_vblank_simulate: vblank timer overrun [ 305.943741][ T9627] netlink: 330 bytes leftover after parsing attributes in process `syz.2.893'. [ 306.880912][ T9636] netlink: 342 bytes leftover after parsing attributes in process `syz.0.896'. [ 307.095508][ T9640] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 307.329432][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.0.900'. [ 307.834480][ T9668] program syz.3.903 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 309.425024][ T9689] openvswitch: netlink: push_nsh: missing base or metadata attributes [ 309.954936][ T9710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.915'. [ 310.616088][ T9723] program syz.2.918 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 311.644282][ T30] audit: type=1800 audit(6048871336.940:19): pid=9741 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.922" name="members" dev="configfs" ino=24130 res=0 errno=0 [ 312.213546][ T9757] netlink: 338 bytes leftover after parsing attributes in process `syz.2.926'. [ 312.948371][ T9768] netlink: 504 bytes leftover after parsing attributes in process `syz.1.929'. [ 313.368930][ T9777] blktrace: Concurrent blktraces are not allowed on loop2 [ 313.507529][ T9781] netlink: 330 bytes leftover after parsing attributes in process `syz.0.931'. [ 313.995554][ T9787] program syz.2.933 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 315.027177][ T9801] netlink: 330 bytes leftover after parsing attributes in process `syz.1.936'. [ 315.428272][ T9808] netlink: 342 bytes leftover after parsing attributes in process `syz.3.941'. [ 316.181328][ T9828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.944'. [ 316.303102][ T9834] program syz.2.946 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 317.396750][ T9864] netlink: 8 bytes leftover after parsing attributes in process `syz.3.958'. [ 317.430271][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.437008][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.577693][ T9856] netlink: 'syz.0.955': attribute type 2 has an invalid length. [ 318.224433][ T9878] program syz.3.960 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 318.908669][ T9888] FAULT_INJECTION: forcing a failure. [ 318.908669][ T9888] name failslab, interval 1, probability 0, space 0, times 0 [ 318.908728][ T9888] CPU: 1 UID: 0 PID: 9888 Comm: syz.2.961 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 318.908759][ T9888] Tainted: [U]=USER [ 318.908764][ T9888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 318.908772][ T9888] Call Trace: [ 318.908777][ T9888] [ 318.908783][ T9888] dump_stack_lvl+0x16c/0x1f0 [ 318.908804][ T9888] should_fail_ex+0x512/0x640 [ 318.908824][ T9888] ? __kmalloc_noprof+0xbf/0x510 [ 318.908841][ T9888] ? ima_write_template_field_data+0x5d/0x1f0 [ 318.908867][ T9888] should_failslab+0xc2/0x120 [ 318.908884][ T9888] __kmalloc_noprof+0xd2/0x510 [ 318.908899][ T9888] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.908917][ T9888] ima_write_template_field_data+0x5d/0x1f0 [ 318.908941][ T9888] ima_eventdigest_init_common+0x154/0x430 [ 318.908963][ T9888] ? __pfx_ima_eventdigest_init_common+0x10/0x10 [ 318.909000][ T9888] ? rcu_is_watching+0x12/0xc0 [ 318.909014][ T9888] ? trace_kmalloc+0x2b/0xd0 [ 318.909031][ T9888] ? __kmalloc_noprof+0x242/0x510 [ 318.909049][ T9888] ima_alloc_init_template+0x39d/0x720 [ 318.909068][ T9888] ? rcu_is_watching+0x12/0xc0 [ 318.909084][ T9888] ima_store_measurement+0x1eb/0x5c0 [ 318.909104][ T9888] ? __pfx_ima_store_measurement+0x10/0x10 [ 318.909123][ T9888] ? vfs_getxattr_alloc+0xec/0x340 [ 318.909142][ T9888] ? __pfx_ima_get_hash_algo+0x10/0x10 [ 318.909161][ T9888] process_measurement+0x1ddb/0x23e0 [ 318.909182][ T9888] ? find_held_lock+0x2b/0x80 [ 318.909196][ T9888] ? __pfx_process_measurement+0x10/0x10 [ 318.909218][ T9888] ? rcu_read_unlock+0x17/0x60 [ 318.909253][ T9888] ? seq_open+0x116/0x170 [ 318.909270][ T9888] ? inode_to_bdi+0x9e/0x160 [ 318.909284][ T9888] ? tracing_err_log_open+0x128/0x250 [ 318.909306][ T9888] ima_file_check+0xc5/0x110 [ 318.909322][ T9888] ? __pfx_ima_file_check+0x10/0x10 [ 318.909342][ T9888] security_file_post_open+0x8e/0x210 [ 318.909364][ T9888] path_openat+0x1404/0x2cb0 [ 318.909400][ T9888] ? __pfx_path_openat+0x10/0x10 [ 318.909417][ T9888] ? __lock_acquire+0xb8a/0x1c90 [ 318.909438][ T9888] do_filp_open+0x20b/0x470 [ 318.909454][ T9888] ? __pfx_do_filp_open+0x10/0x10 [ 318.909483][ T9888] ? alloc_fd+0x471/0x7d0 [ 318.909502][ T9888] do_sys_openat2+0x11b/0x1d0 [ 318.909522][ T9888] ? __pfx_do_sys_openat2+0x10/0x10 [ 318.909548][ T9888] __x64_sys_openat+0x174/0x210 [ 318.909574][ T9888] ? __pfx___x64_sys_openat+0x10/0x10 [ 318.909602][ T9888] do_syscall_64+0xcd/0x490 [ 318.909621][ T9888] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 318.909635][ T9888] RIP: 0033:0x7f9d9878e9a9 [ 318.909648][ T9888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 318.909661][ T9888] RSP: 002b:00007f9d965d5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 318.909675][ T9888] RAX: ffffffffffffffda RBX: 00007f9d989b6160 RCX: 00007f9d9878e9a9 [ 318.909685][ T9888] RDX: 0000000000000800 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 318.909757][ T9888] RBP: 00007f9d98810d69 R08: 0000000000000000 R09: 0000000000000000 [ 318.909788][ T9888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.909797][ T9888] R13: 0000000000000000 R14: 00007f9d989b6160 R15: 00007ffc9ac842c8 [ 318.909820][ T9888] [ 318.909979][ T30] audit: type=1804 audit(6048871344.196:20): pid=9888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.2.961" name="/newroot/sys/kernel/debug/tracing/error_log" dev="tracefs" ino=149 res=0 errno=0 [ 319.083793][ T30] audit: type=1800 audit(6048871344.376:21): pid=9897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.965" name="members" dev="configfs" ino=24826 res=0 errno=0 [ 319.412950][ T9905] netlink: 338 bytes leftover after parsing attributes in process `syz.3.967'. [ 319.766874][ T9914] netlink: 504 bytes leftover after parsing attributes in process `syz.3.970'. [ 320.178080][ T9924] program syz.3.972 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 320.658701][ C1] vkms_vblank_simulate: vblank timer overrun [ 320.806261][ T9936] netlink: 330 bytes leftover after parsing attributes in process `syz.3.974'. [ 320.821951][ T9932] Unable to find swap-space signature [ 321.838344][ T9961] netlink: 28 bytes leftover after parsing attributes in process `syz.0.982'. [ 321.958529][ T9962] netlink: 330 bytes leftover after parsing attributes in process `syz.2.981'. [ 322.415847][ T9971] program syz.2.983 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 322.696670][ T9974] netlink: 342 bytes leftover after parsing attributes in process `syz.0.985'. [ 323.110826][ T9986] netlink: 4 bytes leftover after parsing attributes in process `syz.2.988'. [ 323.898317][T10002] program syz.2.994 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 324.331520][T10014] Invalid ELF header magic: != ELF [ 324.428068][T10021] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 324.509276][T10028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1000'. [ 324.772180][T10017] Invalid ELF header magic: != ELF [ 325.656134][ T30] audit: type=1800 audit(6048871350.933:22): pid=10052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1006" name="members" dev="configfs" ino=25414 res=0 errno=0 [ 325.692737][T10056] netlink: 338 bytes leftover after parsing attributes in process `syz.2.1007'. [ 325.963037][T10054] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1005'. [ 326.056227][T10063] program syz.0.1009 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 326.245517][T10069] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1010'. [ 326.813631][T10080] Invalid ELF header magic: != ELF [ 326.819481][T10078] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1014'. [ 327.639409][T10111] program syz.2.1023 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 327.821644][T10112] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1022'. [ 328.581218][T10123] netlink: 342 bytes leftover after parsing attributes in process `syz.3.1026'. [ 328.656182][T10134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1029'. [ 329.193386][T10151] program syz.0.1034 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 329.371741][T10132] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 329.394191][T10132] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 329.430194][T10132] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 329.469878][T10132] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 329.509046][T10132] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 329.548981][T10132] CPU0 is offline. [ 329.965579][T10156] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 330.306608][T10178] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1040'. [ 330.383543][T10166] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1038'. [ 330.716802][ T5158] Bluetooth: hci0: command 0x0406 tx timeout [ 330.892382][T10193] program syz.0.1043 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 331.463702][T10206] netlink: 338 bytes leftover after parsing attributes in process `syz.0.1047'. [ 331.509391][ T5158] Bluetooth: hci2: command 0x0406 tx timeout [ 331.516523][ T5158] Bluetooth: hci1: command 0x0406 tx timeout [ 331.591516][ T5158] Bluetooth: hci3: command 0x0406 tx timeout [ 331.760660][ T30] audit: type=1800 audit(6048871357.040:23): pid=10213 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1049" name="members" dev="configfs" ino=26046 res=0 errno=0 [ 331.908324][T10215] netlink: 504 bytes leftover after parsing attributes in process `syz.1.1050'. [ 332.218960][T10225] FAULT_INJECTION: forcing a failure. [ 332.218960][T10225] name failslab, interval 1, probability 0, space 0, times 0 [ 332.252348][ C1] vkms_vblank_simulate: vblank timer overrun [ 332.270902][T10221] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1053'. [ 332.413659][T10225] CPU: 1 UID: 0 PID: 10225 Comm: syz.2.1054 Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 332.413687][T10225] Tainted: [U]=USER [ 332.413693][T10225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 332.413701][T10225] Call Trace: [ 332.413707][T10225] [ 332.413712][T10225] dump_stack_lvl+0x16c/0x1f0 [ 332.413736][T10225] should_fail_ex+0x512/0x640 [ 332.413758][T10225] ? __kmalloc_cache_noprof+0x57/0x3e0 [ 332.413775][T10225] should_failslab+0xc2/0x120 [ 332.413793][T10225] __kmalloc_cache_noprof+0x6a/0x3e0 [ 332.413806][T10225] ? kvm_dev_ioctl+0x1396/0x1ad0 [ 332.413824][T10225] kvm_dev_ioctl+0x1396/0x1ad0 [ 332.413844][T10225] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 332.413864][T10225] ? __pfx_kvm_dev_ioctl+0x10/0x10 [ 332.413880][T10225] __x64_sys_ioctl+0x18b/0x210 [ 332.413902][T10225] do_syscall_64+0xcd/0x490 [ 332.413920][T10225] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 332.413934][T10225] RIP: 0033:0x7f9d9878e9a9 [ 332.413951][T10225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 332.413964][T10225] RSP: 002b:00007f9d99523038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 332.413978][T10225] RAX: ffffffffffffffda RBX: 00007f9d989b5fa0 RCX: 00007f9d9878e9a9 [ 332.413988][T10225] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000002 [ 332.413997][T10225] RBP: 00007f9d98810d69 R08: 0000000000000000 R09: 0000000000000000 [ 332.414005][T10225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.414014][T10225] R13: 0000000000000000 R14: 00007f9d989b5fa0 R15: 00007ffc9ac842c8 [ 332.414032][T10225] [ 332.599935][ C1] vkms_vblank_simulate: vblank timer overrun [ 332.611466][T10232] program syz.1.1056 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.812391][ C1] sched: DL replenish lagged too much [ 337.994179][ T5158] Bluetooth: hci0: command 0x0406 tx timeout [ 363.537750][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 363.550896][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 363.563864][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 363.576670][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 363.590219][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 363.602788][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 363.615303][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 363.628129][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 363.641716][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 363.654223][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 368.548460][ C1] net_ratelimit: 10750 callbacks suppressed [ 368.548478][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 368.567651][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 368.580391][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 368.593567][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 368.606786][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 368.619362][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 368.632473][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 368.645133][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 368.658770][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 368.671535][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 373.560380][ C1] net_ratelimit: 10705 callbacks suppressed [ 373.560397][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 373.579846][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 373.592834][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 373.605482][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 373.618430][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 373.631727][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 373.644241][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 373.657406][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 373.669978][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 373.683378][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 378.572967][ C1] net_ratelimit: 10655 callbacks suppressed [ 378.572986][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 378.592769][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 378.607014][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 378.620626][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 378.635476][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 378.648553][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 378.661636][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 378.675302][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 378.689324][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 378.702166][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 379.011353][ T1302] ieee802154 phy0 wpan0: encryption failed: -22 [ 383.585245][ C1] net_ratelimit: 7878 callbacks suppressed [ 383.585263][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 383.606095][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 383.619486][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 383.633585][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 383.647234][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 383.662061][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 383.676480][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 383.691608][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 383.705359][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 383.719586][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 388.598540][ C1] net_ratelimit: 7686 callbacks suppressed [ 388.598557][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 388.618063][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 388.630774][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 388.643614][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 388.657207][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 388.671044][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 388.684240][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 388.697705][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 388.711157][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 388.724900][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.610682][ C1] net_ratelimit: 7799 callbacks suppressed [ 393.610701][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.629101][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.642188][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 393.655647][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 393.668727][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.681203][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.693810][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 393.707060][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 393.720320][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 393.732993][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 398.623249][ C1] net_ratelimit: 7829 callbacks suppressed [ 398.623268][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 398.642420][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 398.655084][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 398.667881][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 398.681438][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 398.694681][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 398.707527][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 398.720390][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 398.733849][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 398.747574][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.636094][ C1] net_ratelimit: 7719 callbacks suppressed [ 403.636111][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.655389][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.668358][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 403.681987][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 403.695147][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.707522][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.720305][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 403.733813][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 403.747542][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 403.760844][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.648529][ C1] net_ratelimit: 7742 callbacks suppressed [ 408.648548][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.667313][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.680032][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 408.693653][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 408.707110][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.719989][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.733025][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 408.746671][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 408.760687][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 408.773192][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.660993][ C1] net_ratelimit: 7666 callbacks suppressed [ 413.661011][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.680467][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.693074][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 413.708901][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 413.724893][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.738008][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.751596][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 413.765948][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 413.780810][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 413.793831][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.672826][ C1] net_ratelimit: 7539 callbacks suppressed [ 418.672844][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.692501][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 418.706508][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 418.723333][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.738981][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.755179][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 418.770648][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 418.784889][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.798033][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 418.811912][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 423.685999][ C1] net_ratelimit: 7708 callbacks suppressed [ 423.686017][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 423.705198][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 423.718208][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 423.731791][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 423.745601][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 423.759467][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 423.772678][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 423.785676][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 423.799442][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 423.812843][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.697995][ C1] net_ratelimit: 7915 callbacks suppressed [ 428.698012][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.716690][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.729378][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 428.742468][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 428.755843][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.768572][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.781203][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 428.794604][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 428.808130][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 428.820703][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.710864][ C1] net_ratelimit: 7858 callbacks suppressed [ 433.710883][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.729343][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.741854][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 433.755460][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 433.768899][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.781685][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.794725][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 433.808722][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 433.821960][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 433.834930][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 437.802339][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 437.811161][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P10230/1:b..l [ 437.823399][ C1] rcu: (detected by 1, t=10502 jiffies, g=43669, q=718 ncpus=1) [ 437.833078][ C1] task:modprobe state:R running task stack:25512 pid:10230 tgid:10230 ppid:13 task_flags:0x40000c flags:0x00004002 [ 437.850230][ C1] Call Trace: [ 437.854615][ C1] [ 437.858184][ C1] __schedule+0x118d/0x5df0 [ 437.862829][ C1] ? __pfx___schedule+0x10/0x10 [ 437.868551][ C1] ? mark_held_locks+0x49/0x80 [ 437.874139][ C1] preempt_schedule_irq+0x51/0x90 [ 437.879497][ C1] irqentry_exit+0x36/0x90 [ 437.884256][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 437.890725][ C1] RIP: 0010:stack_access_ok+0x166/0x200 [ 437.896642][ C1] Code: 0f 85 95 00 00 00 48 8b 43 10 49 39 ee 77 29 48 39 e8 76 24 4c 01 e5 48 39 e8 0f 93 c0 49 39 ee 0f 92 c2 21 d0 48 83 c4 08 5b <5d> 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc 48 83 c4 08 31 c0 5b 5d [ 437.918448][ C1] RSP: 0018:ffffc900039a7758 EFLAGS: 00000296 [ 437.925235][ C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffc900039a8000 [ 437.935517][ C1] RDX: ffffc900039a8001 RSI: ffffc900039a7f58 RDI: ffffc900039a77f8 [ 437.944190][ C1] RBP: ffffc900039a7f58 R08: ffffffff91366756 R09: 0000000000000000 [ 437.953265][ C1] R10: 0000000000000000 R11: 0000000000000001 R12: 00000000000000a8 [ 437.961711][ C1] R13: ffffc900039a7808 R14: ffffc900039a7800 R15: ffffc900039a0000 [ 437.970411][ C1] unwind_next_frame+0xf4e/0x20a0 [ 437.975471][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.982796][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 437.989058][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 437.995496][ C1] arch_stack_walk+0x94/0x100 [ 438.000681][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.007036][ C1] stack_trace_save+0x8e/0xc0 [ 438.011810][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 438.017523][ C1] ? __lock_acquire+0xb8a/0x1c90 [ 438.022941][ C1] kasan_save_stack+0x33/0x60 [ 438.027991][ C1] ? kasan_save_stack+0x33/0x60 [ 438.032895][ C1] ? kasan_save_track+0x14/0x30 [ 438.038193][ C1] ? __kasan_kmalloc+0xaa/0xb0 [ 438.043054][ C1] ? kmem_cache_free+0x142/0x4d0 [ 438.048045][ C1] ? exit_mmap+0x511/0xb90 [ 438.052664][ C1] ? __mmput+0x12a/0x410 [ 438.057273][ C1] ? mmput+0x62/0x70 [ 438.061205][ C1] ? do_exit+0x7c4/0x2bd0 [ 438.065727][ C1] ? do_group_exit+0xd3/0x2a0 [ 438.071431][ C1] ? __x64_sys_exit_group+0x3e/0x50 [ 438.076993][ C1] ? x64_sys_call+0x14fa/0x1720 [ 438.082272][ C1] ? do_syscall_64+0xcd/0x490 [ 438.087246][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.094402][ C1] kasan_save_track+0x14/0x30 [ 438.099268][ C1] __kasan_kmalloc+0xaa/0xb0 [ 438.104487][ C1] kmem_cache_free+0x142/0x4d0 [ 438.119742][ C1] ? exit_mmap+0x511/0xb90 [ 438.124541][ C1] exit_mmap+0x511/0xb90 [ 438.129517][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 438.135535][ C1] __mmput+0x12a/0x410 [ 438.140811][ C1] mmput+0x62/0x70 [ 438.145450][ C1] do_exit+0x7c4/0x2bd0 [ 438.150552][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 438.156114][ C1] ? __pfx_do_exit+0x10/0x10 [ 438.162461][ C1] ? rcu_is_watching+0x12/0xc0 [ 438.168730][ C1] do_group_exit+0xd3/0x2a0 [ 438.175728][ C1] __x64_sys_exit_group+0x3e/0x50 [ 438.181577][ C1] x64_sys_call+0x14fa/0x1720 [ 438.187381][ C1] do_syscall_64+0xcd/0x490 [ 438.192500][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 438.199568][ C1] RIP: 0033:0x7fc35ab676c5 [ 438.204824][ C1] RSP: 002b:00007ffd922fc438 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7 [ 438.213946][ C1] RAX: ffffffffffffffda RBX: 00007fc35ac68fe8 RCX: 00007fc35ab676c5 [ 438.222908][ C1] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000001 [ 438.232139][ C1] RBP: 0000000000000001 R08: 00007ffd922fc3c8 R09: 0000000000000000 [ 438.242165][ C1] R10: 00007ffd922fc260 R11: 0000000000000202 R12: 0000000000000000 [ 438.252781][ C1] R13: 0000000000000001 R14: 00007fc35ac67680 R15: 00007fc35ac69000 [ 438.262276][ C1] [ 438.265839][ C1] rcu: rcu_preempt kthread starved for 324 jiffies! g43669 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 438.278144][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 438.288782][ C1] rcu: RCU grace-period kthread stack dump: [ 438.295451][ C1] task:rcu_preempt state:R running task stack:27784 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00004000 [ 438.312935][ C1] Call Trace: [ 438.316849][ C1] [ 438.320495][ C1] __schedule+0x118d/0x5df0 [ 438.325565][ C1] ? __lock_acquire+0x622/0x1c90 [ 438.330711][ C1] ? __pfx___schedule+0x10/0x10 [ 438.336571][ C1] ? find_held_lock+0x2b/0x80 [ 438.341376][ C1] ? schedule+0x2d7/0x3a0 [ 438.350003][ C1] schedule+0xe7/0x3a0 [ 438.354514][ C1] schedule_timeout+0x123/0x290 [ 438.359654][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 438.365063][ C1] ? __pfx_process_timeout+0x10/0x10 [ 438.370792][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 438.377011][ C1] ? prepare_to_swait_event+0xf5/0x480 [ 438.382764][ C1] rcu_gp_fqs_loop+0x1ea/0xb00 [ 438.388824][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 438.394575][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.400821][ C1] ? __pfx_rcu_gp_init+0x10/0x10 [ 438.406243][ C1] ? rcu_gp_cleanup+0x7c1/0xd90 [ 438.411392][ C1] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 438.417834][ C1] rcu_gp_kthread+0x270/0x380 [ 438.422786][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 438.428104][ C1] ? rcu_is_watching+0x12/0xc0 [ 438.432980][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 438.438308][ C1] ? __kthread_parkme+0x19e/0x250 [ 438.443611][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 438.449015][ C1] kthread+0x3c2/0x780 [ 438.453334][ C1] ? __pfx_kthread+0x10/0x10 [ 438.458023][ C1] ? rcu_is_watching+0x12/0xc0 [ 438.463178][ C1] ? __pfx_kthread+0x10/0x10 [ 438.468755][ C1] ret_from_fork+0x5d4/0x6f0 [ 438.474372][ C1] ? __pfx_kthread+0x10/0x10 [ 438.479555][ C1] ret_from_fork_asm+0x1a/0x30 [ 438.485173][ C1] [ 438.488464][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 438.495338][ C1] CPU: 1 UID: 0 PID: 3406 Comm: kworker/R-bat_e Tainted: G U 6.16.0-syzkaller-04405-g4b290aae788e #0 PREEMPT(full) [ 438.511951][ C1] Tainted: [U]=USER [ 438.515882][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 438.527069][ C1] Workqueue: bat_events batadv_tt_purge [ 438.533042][ C1] RIP: 0010:br_forward_finish+0xb8/0x130 [ 438.539056][ C1] Code: f7 48 8d 7b 10 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 69 68 e0 2b 58 8a 4c 89 e2 45 31 c9 49 89 d8 73 10 4c 89 e9 be 04 00 00 00 bf 07 00 00 00 e8 a3 f7 ff ff bf [ 438.559216][ C1] RSP: 0018:ffffc90000a07f90 EFLAGS: 00000246 [ 438.566024][ C1] RAX: dffffc0000000000 RBX: ffff8880a0188a00 RCX: ffffffff8a583c79 [ 438.574202][ C1] RDX: ffff88807dd32080 RSI: ffffffff8a583caf RDI: ffff8880a0188a10 [ 438.582752][ C1] RBP: 0000000000000000 R08: ffff8880a0188a00 R09: 0000000000000000 [ 438.591782][ C1] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88807dd32080 [ 438.600248][ C1] R13: 0000000000000000 R14: dffffc0000000000 R15: 0000000000000002 [ 438.609212][ C1] FS: 0000000000000000(0000) GS:ffff888124830000(0000) knlGS:0000000000000000 [ 438.618739][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 438.625600][ C1] CR2: 00007f9d965f5f98 CR3: 00000000774fa000 CR4: 00000000003526f0 [ 438.633738][ C1] Call Trace: [ 438.637037][ C1] [ 438.639888][ C1] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 438.646263][ C1] br_nf_hook_thresh+0x304/0x410 [ 438.651755][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.657337][ C1] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 438.663453][ C1] ? lock_acquire+0x179/0x350 [ 438.668626][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.674654][ C1] ? net_generic+0xea/0x2a0 [ 438.679286][ C1] br_nf_forward_finish+0x66a/0xba0 [ 438.685236][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.690926][ C1] br_nf_forward_ip.part.0+0x609/0x810 [ 438.696424][ C1] br_nf_forward+0xf0f/0x1be0 [ 438.701133][ C1] ? __pfx_br_nf_forward+0x10/0x10 [ 438.706664][ C1] nf_hook_slow+0xbb/0x200 [ 438.711544][ C1] nf_hook+0x45e/0x780 [ 438.715827][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.721329][ C1] ? __pfx_nf_hook+0x10/0x10 [ 438.726384][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.732056][ C1] __br_forward+0x1be/0x5b0 [ 438.737085][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 438.742768][ C1] maybe_deliver+0xf1/0x180 [ 438.747364][ C1] br_flood+0x17c/0x650 [ 438.751972][ C1] br_handle_frame_finish+0xf2d/0x1ca0 [ 438.757920][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 438.764817][ C1] ? ip6t_do_table+0xc25/0x1c30 [ 438.769886][ C1] ? nf_hook_slow+0x132/0x200 [ 438.774692][ C1] br_nf_hook_thresh+0x304/0x410 [ 438.779951][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 438.786428][ C1] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 438.792682][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 438.798879][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 438.804891][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 438.812314][ C1] br_nf_pre_routing_finish_ipv6+0x76a/0xfb0 [ 438.819748][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 438.828901][ C1] br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 438.838224][ C1] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 438.846685][ C1] ? lock_acquire+0x179/0x350 [ 438.852459][ C1] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 438.860922][ C1] ? net_generic+0xea/0x2a0 [ 438.866092][ C1] br_nf_pre_routing+0x860/0x15b0 [ 438.872194][ C1] br_handle_frame+0xad8/0x14b0 [ 438.877642][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 438.883494][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 438.890822][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 438.896694][ C1] __netif_receive_skb_core.constprop.0+0xa26/0x4a00 [ 438.903851][ C1] ? kmem_cache_free+0x2d1/0x4d0 [ 438.909335][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 438.914658][ C1] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 438.922338][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 438.927688][ C1] ? sk_skb_reason_drop+0x136/0x1a0 [ 438.933708][ C1] ? ip6_mc_input+0x46c/0xfd0 [ 438.939081][ C1] ? __pfx_ip6_mc_input+0x10/0x10 [ 438.944438][ C1] ? __lock_acquire+0x622/0x1c90 [ 438.949589][ C1] ? process_backlog+0x3f0/0x15e0 [ 438.955348][ C1] __netif_receive_skb_one_core+0xb0/0x1e0 [ 438.962252][ C1] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 438.969221][ C1] ? lock_acquire+0x179/0x350 [ 438.974548][ C1] ? process_backlog+0x3f0/0x15e0 [ 438.980253][ C1] __netif_receive_skb+0x1d/0x160 [ 438.985408][ C1] process_backlog+0x442/0x15e0 [ 438.991721][ C1] __napi_poll.constprop.0+0xba/0x550 [ 438.998613][ C1] net_rx_action+0xa9f/0xfe0 [ 439.003871][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 439.010347][ C1] ? find_held_lock+0x2b/0x80 [ 439.016066][ C1] ? kvm_sched_clock_read+0x11/0x20 [ 439.022016][ C1] ? sched_clock+0x38/0x60 [ 439.026855][ C1] ? sched_clock_cpu+0x6c/0x530 [ 439.032010][ C1] ? mark_held_locks+0x49/0x80 [ 439.037468][ C1] handle_softirqs+0x219/0x8e0 [ 439.042662][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 439.048577][ C1] ? batadv_tt_local_purge+0x21c/0x3c0 [ 439.054455][ C1] do_softirq+0xb2/0xf0 [ 439.058888][ C1] [ 439.062130][ C1] [ 439.065473][ C1] __local_bh_enable_ip+0x100/0x120 [ 439.071124][ C1] batadv_tt_local_purge+0x21c/0x3c0 [ 439.076876][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 439.082762][ C1] ? __pfx_batadv_tt_local_purge+0x10/0x10 [ 439.089501][ C1] batadv_tt_purge+0x8b/0xb80 [ 439.094675][ C1] ? __pfx_batadv_tt_purge+0x10/0x10 [ 439.100453][ C1] ? rcu_is_watching+0x12/0xc0 [ 439.105338][ C1] process_one_work+0x9cc/0x1b70 [ 439.110578][ C1] ? __pfx_process_one_work+0x10/0x10 [ 439.116504][ C1] ? assign_work+0x1a0/0x250 [ 439.121215][ C1] rescuer_thread+0x620/0xea0 [ 439.127071][ C1] ? rcu_is_watching+0x12/0xc0 [ 439.132102][ C1] ? __pfx_rescuer_thread+0x10/0x10 [ 439.137590][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 439.144213][ C1] ? __kthread_parkme+0x19e/0x250 [ 439.149985][ C1] ? __pfx_rescuer_thread+0x10/0x10 [ 439.156071][ C1] kthread+0x3c2/0x780 [ 439.160596][ C1] ? __pfx_kthread+0x10/0x10 [ 439.165552][ C1] ? rcu_is_watching+0x12/0xc0 [ 439.170941][ C1] ? __pfx_kthread+0x10/0x10 [ 439.176075][ C1] ret_from_fork+0x5d4/0x6f0 [ 439.180867][ C1] ? __pfx_kthread+0x10/0x10 [ 439.185659][ C1] ret_from_fork_asm+0x1a/0x30 [ 439.190679][ C1] [ 439.194493][ C1] net_ratelimit: 6053 callbacks suppressed [ 439.194508][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 439.215391][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 439.229674][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 439.242837][ T1302] ieee802154 phy1 wpan1: encryption failed: -22 [ 439.250993][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 439.264795][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 439.278208][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 439.292778][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 439.305728][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 439.320330][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 439.333594][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 444.206500][ C1] net_ratelimit: 7426 callbacks suppressed [ 444.206517][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 444.227072][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 444.240338][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 444.253496][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 444.266674][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 444.280324][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 444.293285][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 444.306071][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:de:de:dd:7c:3e:1b, vlan:0) [ 444.319586][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 444.333198][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)