last executing test programs: 8m25.010964638s ago: executing program 3 (id=4): openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/platform/dummy_hcd.7/usb8/bConfigurationValue\x00', 0x10b042, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000800)='/sys/devices/virtual/bdi/43:384/max_bytes\x00', 0x181482, 0x0) read$auto(r0, 0x0, 0x9) write$auto(0x3, 0x0, 0xfdef) 8m24.127836185s ago: executing program 3 (id=13): mmap$auto(0x0, 0x6, 0x2, 0x40eb2, 0xffffffffffffffff, 0x308000000000) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mount$auto(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)='nfsd\x00\xee\x1a\x8fg\x1b\x04\xad>\x96\xe9IG\xbe\xc8\x12\xae\xc3\xc0@[\x99\xec\xbf(\xec\xc3\xb2\xf2\x15Zi\xc4S6\'\x14\x05\t\x8c\xd5?\xa0\x00\xd8\xe4\xafW\xcc\xa3\xce\t\xf8p\xc6\x00\x00\x00\x00\xb9\xac\xde\x0e\x90\x18\xf1\x13I\x95\xe12\xaclJ\xba\xeb\xe4\x83Z\xaev\xd7\xd9\xdd\x14\x81\xbe\xab\xed\xd5MI\x830_\xc2\x14O\x84\xaa\x13W\xb7\x06\'fvQ\x95\xc5\xd1\x98\xe3T\xees\xf0\xc2\xad\xae\x99\xeb\xc5\xf0\"\x92\xcdfk\xc7\xe9\x96\r\x91\xb0\xc46\xf2\xfc\xef\xfe\xa0\xc9d\xb3h$\xeb\xad\xa4P\x8f\xc3bM{4RQ\x00\x9d)_\xd81(\x03\xca1\x88|\xe5\x1e\x10\x89X\x01\xe9\xf6g\x95xx\xaf\xa9~m\x05\xa2\xe4\x81\xb9\x92\xda\x13\xfe5\xfb\xc6\xd8>\x01\xd4\x14\x94o\x1b[\xa8]\x9b\x03\x95\xc3\xad\xad\x1d#oi|\x04\x93N\xfa\x17\xf3b\xf6\x00\x00\x00', 0x0, 0x0) getcwd$auto(0x0, 0xffffffffffffffff) fspick$auto(0xffffffffffffffff, 0x0, 0x5) 8m23.924342868s ago: executing program 3 (id=15): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x12, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 8m23.650153394s ago: executing program 3 (id=19): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 8m22.882310575s ago: executing program 3 (id=28): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x0, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 8m22.444156219s ago: executing program 32 (id=28): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) sysfs$auto(0x2, 0x0, 0x0) r0 = fsopen$auto(0x0, 0x1) fsconfig$auto(r0, 0x8, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) 7m56.622970205s ago: executing program 1 (id=324): select$auto(0x4, 0x0, &(0x7f0000000080)={[0x209c, 0x80000e9e, 0x3, 0xd, 0x250, 0x100000000, 0x2c2, 0x800002017d, 0x4, 0x40, 0xd, 0xd59, 0xfb, 0xff, 0x21, 0x100000005]}, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_smc_gen_netlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$auto_SMC_NETLINK_DISABLE_SEID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="013b"], 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x810) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000180), 0x7, 0xa505}, 0x800}, 0x7, 0x4008) 7m56.475510305s ago: executing program 1 (id=316): socket(0xa, 0x3, 0xff) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa}, 0x55) setsockopt$auto(0x400000000000003, 0x29, 0x6, 0x0, 0x3) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0x200000000c4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 7m56.079097019s ago: executing program 1 (id=320): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tracing_free_buffer_fops_trace(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/tracing/free_buffer\x00', 0x20103, 0x0) r0 = getpid() process_vm_readv$auto(r0, &(0x7f0000000000)={0x0, 0xfff}, 0x1, &(0x7f0000000280)={&(0x7f0000000080), 0xffffffff}, 0x4, 0x0) linkat$auto(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x400) 7m55.62368131s ago: executing program 1 (id=325): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x7, 0x800008000) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) poll$auto(&(0x7f0000000d40)={0x3, 0x1, 0xa}, 0x5, 0x400) write$auto(0x3, 0x0, 0xfffffdef) shutdown$auto(0x200000003, 0x2) 7m55.398871831s ago: executing program 0 (id=329): r0 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) r1 = openat$auto_zero_fops_mem(0xffffffffffffff9c, &(0x7f0000000000), 0x109002, 0x0) sendfile$auto(r1, r1, 0x0, 0x10000800000003) fcntl$auto(0x3, 0x4, 0xa553) write$auto(r0, &(0x7f0000000040)='7\x00\\\xa0\x04|\x03\xcb\x12\xfa\b\x1c\xc7k', 0x81) 7m54.868852208s ago: executing program 0 (id=331): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_nfsd(&(0x7f0000002f00), 0xffffffffffffffff) sendmsg$auto_NFSD_CMD_LISTENER_SET(r1, &(0x7f0000005380)={0x0, 0x0, &(0x7f0000005340)={&(0x7f0000000180)={0x14, r2, 0x1, 0x870bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x20000000) sendmsg$auto_NFSD_CMD_LISTENER_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000003500)={0x14, r2, 0x1, 0x70bd2b, 0xa5dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0) 7m54.835853152s ago: executing program 1 (id=332): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 7m54.526640444s ago: executing program 0 (id=336): mmap$auto(0x4, 0x200000200004, 0x200000000000004, 0x19, 0xd, 0x300000000000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x5522, 0xf15) ioctl$auto(r0, 0x5523, r0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) 7m54.264708952s ago: executing program 0 (id=338): mq_notify$auto(0x4, &(0x7f0000000040)={@sival_ptr=0x0, @inferred, 0x1, @_tid}) sendmsg$auto_NL802154_CMD_DEL_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0}, 0x80) r0 = socket(0x11, 0x3, 0x9) capset$auto(0x0, &(0x7f0000000000)={0x1, 0x6, 0x48}) sendmmsg$auto(r0, &(0x7f00000006c0)={{&(0x7f0000000000), 0x5ab, &(0x7f0000000100)={&(0x7f0000000040)='L', 0x49}, 0x1, &(0x7f0000000040), 0x4c, 0x1}, 0x5}, 0x2, 0x100) 7m54.12520366s ago: executing program 1 (id=340): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/ns/cgroup\x00', 0x40, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b80ebd01, 0x0) write$auto(r0, 0x0, 0x10001) 7m54.059797742s ago: executing program 0 (id=350): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 7m53.634683108s ago: executing program 33 (id=340): close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_ns_file_operations_nsfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/ns/cgroup\x00', 0x40, 0x0) close_range$auto(0x2, 0x8, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/rpc/nfsd.fh/channel\x00', 0x8f3b7a51b80ebd01, 0x0) write$auto(r0, 0x0, 0x10001) 7m53.628126823s ago: executing program 2 (id=343): socket(0xa, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x1d}}, 0x54) shutdown$auto(0x200000003, 0x2) close_range$auto(0x2, 0x8, 0x0) 7m53.351336853s ago: executing program 2 (id=347): mmap$auto(0x4, 0x200000200004, 0x200000000000004, 0x19, 0xd, 0x300000000000) r0 = openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0xa901, 0x0) ioctl$auto(r0, 0x5522, 0xf15) ioctl$auto(r0, 0x5523, r0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000040)='/dev/bus/usb/015/001\x00', 0x0, 0x0) 7m53.350540962s ago: executing program 0 (id=348): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x4d, 0x0) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0x21, 0x0, 0x0) 7m52.924531586s ago: executing program 34 (id=348): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sysfs$auto(0x2, 0x4d, 0x0) clone$auto(0x9001, 0x5, 0xffffffffffffffff, 0xfffffffffffffffc, 0x6) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0x21, 0x0, 0x0) 7m52.917766803s ago: executing program 2 (id=351): socket(0xa, 0x1, 0x84) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x3, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x81, 0x0, 0x8) setsockopt$auto(0x3, 0x10000000084, 0x16, 0x0, 0x0) 7m51.563627661s ago: executing program 2 (id=354): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) memfd_create$auto(0x0, 0x2) r0 = fcntl$auto(0xff80000000000000, 0x409, 0x3f) fallocate$auto(r0, 0x1, 0x8000, 0x5) 7m51.477391256s ago: executing program 2 (id=355): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x1, 0x0) futex$auto(0x0, 0x6, 0x8, 0x0, 0x0, 0xffffffd6) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb2, 0x402, 0x300000000000) tkill$auto(0x1, 0x7) 7m50.897429201s ago: executing program 2 (id=358): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x9, &(0x7f0000000000)={0x24, 0xf4, 0xb0}}) 7m50.550179977s ago: executing program 35 (id=358): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, &(0x7f0000000400), 0x189002, 0x0) ioctl$auto_PPPIOCSMRU(r0, 0xc004743e, 0x0) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000040)={0x6, 0x0}) ioctl$auto_PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000180)={0x9, &(0x7f0000000000)={0x24, 0xf4, 0xb0}}) 1m51.094759976s ago: executing program 4 (id=3077): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/pagemap\x00', 0x0, 0x0) readv$auto(r0, &(0x7f0000000400)={0x0, 0x40}, 0x6) r1 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r1, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, 0x0) 1m51.018282127s ago: executing program 4 (id=3078): r0 = socket(0xa, 0x80803, 0x6) mmap$auto(0x0, 0x400008, 0xdf, 0x38, 0x6, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) open(0x0, 0x22240, 0x155) socket(0xa, 0x3, 0x3b) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, &(0x7f00000018c0)=@generic={0xa, "abe6de3d6468fe8000"}, 0x1b) bind$auto(r0, &(0x7f0000000040)=@generic={0xa, "2c551d000000fe8000"}, 0x66) 1m50.934599281s ago: executing program 4 (id=3079): mmap$auto(0x0, 0x5, 0x2, 0x40eb2, 0x401, 0x300000000000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000000)='/proc/fs/cifs/cifsFYI\x00', 0x40c01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/virtual/bdi/43:480/min_ratio_fine\x00', 0x2062, 0x0) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, &(0x7f0000000180)='/dev/mixer\x00', 0x2, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) statx$auto(0xffffff9c, 0x0, 0x1000, 0x803, 0x0) r1 = openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000000)='/dev/v4l-subdev5\x00', 0x280, 0x0) ioctl$auto(r1, 0xc040564a, r0) 1m50.787940403s ago: executing program 4 (id=3080): close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) mkdir$auto(0x0, 0x353) 1m50.644989581s ago: executing program 4 (id=3081): r0 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r0, 0x0, 0x7, 0x4cbd5d) rename$auto(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./file1\x00') r1 = open(&(0x7f0000000000)='./file0\x00', 0x4242, 0xe1d2b27bdc14aabc) fallocate$auto(r1, 0x0, 0x7, 0x4cbd5d) rename$auto(&(0x7f0000000140)='./file1\x00', &(0x7f00000004c0)='./file1\x00') syz_genetlink_get_family_id$auto_nl802154(&(0x7f00000000c0), r1) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) 1m50.127101028s ago: executing program 4 (id=3086): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0xa, 0x0) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x801, 0x100) sysfs$auto(0x2, 0x4, 0x0) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0x12, 0x0, 0x0) bind$auto(0x3, 0x0, 0x67) 1m49.460206806s ago: executing program 36 (id=3086): mmap$auto(0x0, 0x20009, 0xe2, 0xeb1, 0x405, 0x8000) close_range$auto(0x2, 0xa, 0x0) fanotify_init$auto(0x5, 0x2000000000002) socket(0x2, 0x801, 0x100) sysfs$auto(0x2, 0x4, 0x0) r0 = socket(0xa, 0x5, 0x0) getsockopt$auto(r0, 0x84, 0x12, 0x0, 0x0) bind$auto(0x3, 0x0, 0x67) 1m20.391951361s ago: executing program 7 (id=3240): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x55) socket(0x2, 0x3, 0xa) setsockopt$auto(0x3, 0x0, 0x17, 0x0, 0x8006) connect$auto(0x3, &(0x7f00000000c0), 0x55) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0x8}, 0x1) 1m18.98872634s ago: executing program 7 (id=3245): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) socket(0xa, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a) r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a) listen$auto(0x3, 0x81) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) 1m17.891146177s ago: executing program 7 (id=3250): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0x2, 0x3, 0x100) sysfs$auto(0x2, 0x4c, 0x0) fsopen$auto(0x0, 0x1) socket(0x2, 0x5, 0x0) r0 = socket(0x10, 0x2, 0x0) setsockopt$auto(r0, 0x104000000000010e, 0x1, 0x0, 0x16) bind$auto(0x3, &(0x7f0000000000)=@nl=@kern={0x10, 0x0, 0x24}, 0x68) 1m17.606273328s ago: executing program 7 (id=3252): socket(0xa, 0x5, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x2, 0x8, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) capset$auto(0x0, 0x0) r1 = open(0x0, 0x22240, 0x154) bpf$auto(0x0, &(0x7f0000000400)=@link_update={r1, @new_prog_fd=0x4, 0x4, @old_map_fd=0x3ff}, 0xa3) bpf$auto(0x0, &(0x7f00000000c0)=@link_update={0xa, @new_map_fd=r0, 0x100, @old_prog_fd=r0}, 0x10) bpf$auto(0x2, &(0x7f00000001c0)=@bpf_attr_1={r2, 0xbb8, @value, 0x100000003}, 0xcd) 1m17.225986924s ago: executing program 7 (id=3255): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 1m16.947299907s ago: executing program 7 (id=3258): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0xc0000101, 0x7}]}) 1m1.774606229s ago: executing program 37 (id=3258): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0x2, 0x0, [{0xc0000101, 0x7}]}) 21.815282689s ago: executing program 5 (id=3520): mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) write$auto_tomoyo_operations_securityfs_if(0xffffffffffffffff, &(0x7f00000000c0)="0a1b9a3c3e3efd6ea3d31791840bd70c00000082574c58e9865c42d76e1cadd6a7b7b426b7fcdc8e357080d70b5ab848770dc8f745d1c76eedaa12b9db4b519958c62bf692d2c9df7a9a2e8a556b30aeb5dfce3531f694dabdbc08f62cb37e5bc82e660cfd70f603b20416c7bf0e95345b899b4466bf6a70b1274b19782b41ac172a25e65be53e69c6369b67a4cbd6383a0d766de0287d84516183587530a17dbfd83a7678c6dad9917b91c7c9de3d61af452f90cf22400c4bcbb8410703641b3bccd058f9f2bad31f2ce81e389e210b34f43b4a5af3", 0xd6) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x3, 0x100) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='U'], 0x1ac}}, 0x4004) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc6}, 0x1, 0x0, 0x2, 0xd}, 0xd69}, 0x3, 0x0) 20.692884151s ago: executing program 5 (id=3523): statmount$auto(0x0, &(0x7f0000000180)={0x8, 0x1, 0x9, 0x7, 0x1f, 0x940, 0x1ffde, 0x3, 0x6, 0x8000001, 0x9, 0x5, 0x0, 0x4, 0xb0, 0x7, 0x200, 0x3, 0x205, 0x7, 0x0, 0x3ffff, 0x0, 0x3, 0x7069, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x3, [0x0, 0x0, 0xfffffffffffffffe, 0x8, 0x5, 0x8000004, 0x0, 0x100000000000000, 0xfffffffffffffffb, 0x0, 0x0, 0xfc, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x8, 0x20000000, 0xfffffffffffffffe, 0x0, 0x7, 0x0, 0x0, 0x80800, 0x0, 0x8001, 0x0, 0x8000000000000001, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x2000000000000001]}, 0xffff, 0x7d) r0 = socket(0x10, 0x2, 0x0) r1 = socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[], 0x1ac}}, 0x40000) recvmmsg$auto(r1, &(0x7f0000000100)={{0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000040), 0xcb}, 0x3, 0x0, 0x80000002, 0x6}, 0x9}, 0x7, 0x6, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1c001b"], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x8) 20.323857403s ago: executing program 5 (id=3527): bind$auto(0xffffffffffffffff, &(0x7f0000000040)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x8000000}, 0x6a) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1a00"], 0x1ac}, 0x1, 0x0, 0x0, 0x4000804}, 0x40000) r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$auto_ethtool(&(0x7f000001f300), 0xffffffffffffffff) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYRES32=r1], 0x1ac}}, 0x40000) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[], 0x1ac}, 0x1, 0x0, 0x0, 0x44814}, 0x2004c0c4) sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0xa, 0x8) mmap$auto(0x0, 0x20009, 0x4000000000df, 0x40000000000eb1, 0x401, 0x8000) recvmmsg$auto(0x3, 0x0, 0x10000, 0x700, 0x0) 19.241370097s ago: executing program 5 (id=3532): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) process_vm_readv$auto(0x0, 0x0, 0x1, 0x0, 0x6, 0x0) close_range$auto(0x2, 0xa, 0x0) socket(0x18, 0xa, 0x1) socket(0xa, 0x2, 0x0) capset$auto(&(0x7f0000000100)={0x20080522}, 0x0) setsockopt$auto(0x400000000000003, 0x29, 0x37, 0xffffffffffffffff, 0x0) 18.737954623s ago: executing program 5 (id=3533): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 18.559824283s ago: executing program 5 (id=3535): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/arp\x00', 0xc0a00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) listen$auto(0x3, 0x81) poll$auto(&(0x7f0000000000)={r0, 0x5, 0x1000}, 0xf, 0x4) 18.540513978s ago: executing program 6 (id=3536): mmap$auto(0x0, 0x88b, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) io_uring_setup$auto(0x6, 0x0) write$auto(0x3, 0x0, 0xfdef) 18.38141638s ago: executing program 6 (id=3538): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0\x00'}) close_range$auto(0x0, 0xffffffffffffffff, 0x2) socket(0xa, 0x2, 0x0) r1 = socket(0x18, 0x5, 0x1) connect$auto(r1, &(0x7f0000000000)=@in={0x2, 0x100}, 0x3a) open(&(0x7f00000000c0)='./file0\x00', 0x161342, 0x130) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/devices/platform/dummy_hcd.4/usb5/descriptors\x00', 0x18b940, 0x0) sendfile$auto(0x1, 0x3, 0x0, 0x7fffefff) 18.232112176s ago: executing program 6 (id=3539): unshare$auto(0x40000080) close_range$auto(0x2, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1d, 0x2, 0x7) r0 = socket(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vcan0\x00', 0x0}) bind$auto(0x3, &(0x7f0000000040)=@can={0x1d, r1}, 0x6a) r2 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/net/can/rcvlist_fil\x00', 0x100, 0x0) read$auto_proc_reg_file_ops_compat_inode(r2, &(0x7f0000000000)=""/27, 0x1b) 17.601658225s ago: executing program 6 (id=3542): openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/snd/controlC0\x00', 0x0, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, 0x0, 0x2000, 0x0) r0 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/pagemap\x00', 0x80800, 0x0) read$auto(r0, 0x0, 0x39b8) r1 = openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sg0\x00', 0x8402, 0x0) ioctl$auto_SG_SET_FORCE_PACK_ID(r1, 0x227b, 0x0) read$auto(r1, 0x0, 0x57) 17.283688195s ago: executing program 6 (id=3544): mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0xa, 0x0) r0 = socket(0x2, 0x3, 0x6) lsm_list_modules$auto(0x0, 0x0, 0x0) close_range$auto(0x2, 0x8, 0x0) open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x8643, 0x15e) ioctl$sock_SIOCGIFINDEX(r0, 0x401c5820, 0x0) rename$auto(&(0x7f0000000480)='./file0\x00', 0x0) 16.981591628s ago: executing program 6 (id=3546): mmap$auto(0x0, 0x20009, 0x80000001, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x42000080) 16.471038613s ago: executing program 9 (id=3549): r0 = openat$auto_uinput_fops_uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x40080, 0x0) ioctl$auto_UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000400)={{0xc, 0x23, 0xa6, 0x83}, "66ac010005000000000068d590eb0d4a4cada7272464294b9183349eef4c1f028fdcc8ecc66fdd02316f064ebd893007abb4c0bbc3b822f66eb624ad63110d61771552c03de65800", 0x2}) ioctl$auto_UI_DEV_CREATE(r0, 0x5501, 0x0) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000) io_uring_setup$auto(0xa, 0x0) readv$auto(0x3, &(0x7f0000000a80)={0x0, 0xffff}, 0x1) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) 3.177524602s ago: executing program 38 (id=3535): r0 = openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/arp\x00', 0xc0a00, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x2) socket(0xa, 0x2, 0x73) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) socket(0x1, 0x1, 0x0) bind$auto(0x3, 0x0, 0x6b) listen$auto(0x3, 0x81) poll$auto(&(0x7f0000000000)={r0, 0x5, 0x1000}, 0xf, 0x4) 3.135862275s ago: executing program 9 (id=3551): mmap$auto(0x0, 0x9d90, 0xdf, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x1e, 0x4, 0x0) r0 = socket(0x1e, 0x4, 0x0) get_robust_list$auto(0x0, 0x0, 0x0) setsockopt$auto(r0, 0x10f, 0x87, 0x0, 0x14) setsockopt$auto(0x3, 0x10f, 0x87, 0x0, 0x14) sendmmsg$auto(0x3, 0x0, 0x2, 0x9) 3.135708209s ago: executing program 8 (id=3552): close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r1) ioctl$auto_KVM_GET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0)={0xdd, 0x0, [{0x40000107, 0x400, 0x2}]}) 2.881013505s ago: executing program 9 (id=3553): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) socket(0xa, 0x1, 0x84) io_uring_setup$auto(0x6, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x2, 0x8, 0x0) r1 = openat$auto_sw_sync_debugfs_fops_sync_debug(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0) ioctl$auto_SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0) ioctl$auto(0x3, 0x40103e05, r0) 2.694127654s ago: executing program 8 (id=3554): mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x3, 0x2) socket(0x2, 0x801, 0x106) socket(0xa, 0x2, 0x0) r0 = socket(0xa, 0x2, 0x88) close_range$auto(0x0, 0xfffffffffffff000, 0x2) bpf$auto(0x0, &(0x7f0000000000)=@link_update={r0, @new_prog_fd=0x4, 0x8, @old_prog_fd=r0}, 0xa3) bpf$auto(0x2, 0x0, 0x9) 2.434072432s ago: executing program 9 (id=3555): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x29, 0x2, 0x0) socket(0x10, 0x2, 0x0) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1ac}, 0x1, 0x0, 0x0, 0x4004810}, 0x800) fstat$auto(0xffffffffffffffff, &(0x7f0000000000)={0x5, 0x80000001, 0xfffffffffffffffd, 0x100, 0x0, 0x0, 0x0, 0xffffffffffffff91, 0xfd3, 0x2, 0xec, 0x0, 0x81, 0x8, 0x2, 0xfffffffffffffff8}) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="1a0027"], 0x1ac}}, 0x40000) sendmmsg$auto(0x3, &(0x7f0000000080)={{0x0, 0x2, &(0x7f00000002c0)={0x0, 0xc4}, 0x1, 0x0, 0x0, 0x9}, 0x7}, 0x3, 0x0) 2.287616071s ago: executing program 8 (id=3556): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x101840, 0x0) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) r0 = epoll_create$auto(0x2) epoll_pwait2$auto(r0, 0x0, 0x8, 0x0, 0x0, 0x8) kill$auto(0x0, 0x11) 2.13674582s ago: executing program 9 (id=3557): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0xa, 0x100073) r0 = socket(0x2, 0x1, 0x84) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @remote}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000200)={{&(0x7f0000000040), 0x10, &(0x7f0000000140)={0x0, 0x1a000}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x3, 0x0) io_uring_setup$auto(0x7, 0x0) setsockopt$auto(0x3, 0x1, 0x2e, 0x0, 0x9) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) 1.5285623s ago: executing program 39 (id=3546): mmap$auto(0x0, 0x20009, 0x80000001, 0xeb1, 0xffffffffffffffff, 0x8000) openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, 0x0, 0x2, 0x0) mmap$auto(0x0, 0x402000b, 0xdf, 0xeb1, 0x401, 0x8000) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000500)='/sys/devices/virtual/block/ram12/queue/read_ahead_kb\x00', 0x80000, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) unshare$auto(0x42000080) 902.023311ms ago: executing program 9 (id=3559): mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20040084}, 0x40090) mmap$auto(0x400000000, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8002) socketcall$auto(0x8000, 0x0) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/nfs/parameters/nfs_idmap_cache_timeout\x00', 0xc2902, 0x0) read$auto(r0, 0x0, 0x20) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) bpf$auto(0x0, &(0x7f0000000780)=@link_update={0xa, @new_map_fd=0x5, 0x4007, @old_prog_fd=0x13b}, 0xa3) 876.370029ms ago: executing program 8 (id=3560): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) close_range$auto(0x2, 0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x2, 0x2, 0x1) io_uring_setup$auto(0x6, 0x0) read$auto(0x3, 0x0, 0x7c) connect$auto(0x3, &(0x7f00000000c0), 0x55) setsockopt$auto(0x3, 0x0, 0xc, 0x0, 0x5) write$auto(0x3, 0x0, 0xfdef) 439.002648ms ago: executing program 8 (id=3561): r0 = socket(0x2, 0x1, 0x106) mmap$auto(0x0, 0x2020009, 0x3, 0xf8, 0xfffffffffffffffa, 0x8000) openat$auto_snd_mixer_oss_f_ops_mixer_oss(0xffffffffffffff9c, 0x0, 0x11d802, 0x0) sendmsg$auto_CGROUPSTATS_CMD_GET(r0, 0x0, 0x20000000) sendmmsg$auto(0xffffffffffffffff, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={0x0, 0xfc2}, 0x2, 0x0, 0x7, 0xa505}, 0x800}, 0x7, 0x4008) connect$auto(0x3, &(0x7f0000000000), 0x55) setsockopt$auto(r0, 0x6, 0x1, 0x0, 0x7) bind$auto(0x3, &(0x7f0000000000)=@in={0x2, 0x3, @local}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x52) 0s ago: executing program 8 (id=3562): close_range$auto(0x2, 0x8, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) close_range$auto(0x0, 0xfffffffffffff001, 0x2) socket(0x29, 0x5, 0x0) r1 = open(&(0x7f00000000c0)='./cgroup\x00', 0x80400, 0xb5d1af1605322dd2) open_by_handle_at$auto(r1, &(0x7f0000001280)={0x8, 0x2, "0200000000000000"}, 0x6) sendfile$auto(r0, r0, 0x0, 0x2) socket(0x23, 0x80805, 0x0) close_range$auto(0x2, 0x8, 0x0) kernel console output (not intermixed with test programs): .414480][T12949] ? __pfx_path_openat+0x10/0x10 [ 433.414511][T12949] do_filp_open+0x20b/0x470 [ 433.414535][T12949] ? __pfx_do_filp_open+0x10/0x10 [ 433.414579][T12949] ? alloc_fd+0x471/0x7d0 [ 433.414608][T12949] do_sys_openat2+0x11b/0x1d0 [ 433.414639][T12949] ? __pfx_do_sys_openat2+0x10/0x10 [ 433.414682][T12949] __x64_sys_openat+0x174/0x210 [ 433.414714][T12949] ? __pfx___x64_sys_openat+0x10/0x10 [ 433.414778][T12949] do_syscall_64+0xcd/0xfa0 [ 433.414813][T12949] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 433.414837][T12949] RIP: 0033:0x7fbb5358eec9 [ 433.414860][T12949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 433.414884][T12949] RSP: 002b:00007fbb517f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 433.414905][T12949] RAX: ffffffffffffffda RBX: 00007fbb537e5fa0 RCX: 00007fbb5358eec9 [ 433.414920][T12949] RDX: 00000000001c8740 RSI: 0000200000000540 RDI: ffffffffffffff9c [ 433.414935][T12949] RBP: 00007fbb53611f91 R08: 0000000000000000 R09: 0000000000000000 [ 433.414949][T12949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 433.414962][T12949] R13: 00007fbb537e6038 R14: 00007fbb537e5fa0 R15: 00007ffffa3d4448 [ 433.414994][T12949] [ 434.252030][T12960] __nla_validate_parse: 1 callbacks suppressed [ 434.252047][T12960] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2576'. [ 434.380836][T12960] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2576'. [ 435.222371][T12979] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2582'. [ 435.275153][T12979] netlink: 13 bytes leftover after parsing attributes in process `syz.4.2582'. [ 435.601588][T12987] netlink: 'syz.6.2588': attribute type 22 has an invalid length. [ 435.635266][T12987] netlink: 330 bytes leftover after parsing attributes in process `syz.6.2588'. [ 435.778922][T12995] netlink: 334 bytes leftover after parsing attributes in process `syz.6.2590'. [ 436.866990][T13013] netlink: 'syz.4.2597': attribute type 28 has an invalid length. [ 436.902217][T13013] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2597'. [ 436.998300][T13017] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2599'. [ 437.204545][T13021] ERROR: Out of memory at tomoyo_memory_ok. [ 437.333312][T13025] FAULT_INJECTION: forcing a failure. [ 437.333312][T13025] name failslab, interval 1, probability 0, space 0, times 0 [ 437.362187][T13027] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2603'. [ 437.378724][T13025] CPU: 1 UID: 0 PID: 13025 Comm: syz.7.2602 Tainted: G I syzkaller #0 PREEMPT(full) [ 437.378756][T13025] Tainted: [I]=FIRMWARE_WORKAROUND [ 437.378764][T13025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 437.378776][T13025] Call Trace: [ 437.378782][T13025] [ 437.378790][T13025] dump_stack_lvl+0x16c/0x1f0 [ 437.378817][T13025] should_fail_ex+0x512/0x640 [ 437.378843][T13025] ? __kmalloc_noprof+0xca/0x880 [ 437.378879][T13025] should_failslab+0xc2/0x120 [ 437.378906][T13025] __kmalloc_noprof+0xdd/0x880 [ 437.378939][T13025] ? __register_sysctl_table+0xb3/0x1900 [ 437.378974][T13025] ? __register_sysctl_table+0xb3/0x1900 [ 437.379003][T13025] __register_sysctl_table+0xb3/0x1900 [ 437.379034][T13025] ? rcu_is_watching+0x12/0xc0 [ 437.379059][T13025] ? __pfx___register_sysctl_table+0x10/0x10 [ 437.379092][T13025] ? __asan_memcpy+0x3c/0x60 [ 437.379115][T13025] register_pidns_sysctls+0x119/0x1b0 [ 437.379146][T13025] ? __ns_common_init+0x2a4/0x3b0 [ 437.379171][T13025] copy_pid_ns+0x548/0xca0 [ 437.379196][T13025] ? __pfx_copy_pid_ns+0x10/0x10 [ 437.379221][T13025] ? rcu_is_watching+0x12/0xc0 [ 437.379243][T13025] ? copy_mnt_ns+0xac/0xac0 [ 437.379264][T13025] ? rcu_is_watching+0x12/0xc0 [ 437.379287][T13025] ? copy_ipcs+0xb6/0x550 [ 437.379319][T13025] create_new_namespaces+0x2aa/0xa90 [ 437.379347][T13025] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 437.379373][T13025] ksys_unshare+0x45b/0xa40 [ 437.379401][T13025] ? __pfx_ksys_unshare+0x10/0x10 [ 437.379429][T13025] ? xfd_validate_state+0x61/0x180 [ 437.379466][T13025] __x64_sys_unshare+0x31/0x40 [ 437.379510][T13025] do_syscall_64+0xcd/0xfa0 [ 437.379537][T13025] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 437.379569][T13025] RIP: 0033:0x7fa43a98eec9 [ 437.379586][T13025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 437.379608][T13025] RSP: 002b:00007fa43b749038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 437.379628][T13025] RAX: ffffffffffffffda RBX: 00007fa43abe5fa0 RCX: 00007fa43a98eec9 [ 437.379643][T13025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 437.379656][T13025] RBP: 00007fa43aa11f91 R08: 0000000000000000 R09: 0000000000000000 [ 437.379669][T13025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 437.379684][T13025] R13: 00007fa43abe6038 R14: 00007fa43abe5fa0 R15: 00007ffe51dca148 [ 437.379713][T13025] [ 438.136944][T13033] netlink: 'syz.5.2606': attribute type 27 has an invalid length. [ 438.155498][T13033] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2606'. [ 438.226004][T13031] vcan0: tx drop: invalid da for name 0x000000000000003f [ 439.482333][T13071] __nla_validate_parse: 1 callbacks suppressed [ 439.482350][T13071] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2622'. [ 439.521610][T13075] netlink: 326 bytes leftover after parsing attributes in process `syz.6.2621'. [ 439.937257][T13087] netlink: 146 bytes leftover after parsing attributes in process `syz.6.2627'. [ 440.800349][T13110] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2637'. [ 441.489900][T13129] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2646'. [ 441.825269][T13136] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2649'. [ 443.607041][T13176] netlink: 322 bytes leftover after parsing attributes in process `syz.7.2665'. [ 443.892754][T13184] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2668'. [ 443.942218][T13184] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2668'. [ 444.424326][T13199] netlink: 186 bytes leftover after parsing attributes in process `syz.5.2675'. [ 445.190468][T13217] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2681'. [ 446.560585][T13241] ima: policy update failed [ 446.578228][ T30] audit: type=1802 audit(4294968434.894:7): pid=13241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.4.2691" res=0 errno=0 [ 446.710371][T13229] FAULT_INJECTION: forcing a failure. [ 446.710371][T13229] name fail_futex, interval 1, probability 0, space 0, times 0 [ 446.785514][T13229] CPU: 1 UID: 0 PID: 13229 Comm: syz.7.2686 Tainted: G I syzkaller #0 PREEMPT(full) [ 446.785545][T13229] Tainted: [I]=FIRMWARE_WORKAROUND [ 446.785552][T13229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 446.785564][T13229] Call Trace: [ 446.785569][T13229] [ 446.785577][T13229] dump_stack_lvl+0x16c/0x1f0 [ 446.785604][T13229] should_fail_ex+0x512/0x640 [ 446.785632][T13229] get_futex_key+0x1d0/0x1560 [ 446.785661][T13229] ? __pfx_get_futex_key+0x10/0x10 [ 446.785687][T13229] ? __mutex_trylock_common+0xe9/0x250 [ 446.785722][T13229] futex_wake+0xea/0x530 [ 446.785755][T13229] ? __pfx_futex_wake+0x10/0x10 [ 446.785798][T13229] do_futex+0x1e3/0x350 [ 446.785825][T13229] ? __pfx_do_futex+0x10/0x10 [ 446.785850][T13229] ? __might_fault+0xe3/0x190 [ 446.785876][T13229] mm_release+0x24e/0x300 [ 446.785899][T13229] do_exit+0x68e/0x2bf0 [ 446.785925][T13229] ? find_held_lock+0x2b/0x80 [ 446.785954][T13229] ? __pfx_do_exit+0x10/0x10 [ 446.785981][T13229] ? do_raw_spin_lock+0x12c/0x2b0 [ 446.786012][T13229] ? find_held_lock+0x2b/0x80 [ 446.786036][T13229] do_group_exit+0xd3/0x2a0 [ 446.786065][T13229] get_signal+0x2671/0x26d0 [ 446.786088][T13229] ? __mutex_lock+0x1c5/0x1060 [ 446.786120][T13229] ? __pfx_get_signal+0x10/0x10 [ 446.786143][T13229] ? do_futex+0x122/0x350 [ 446.786169][T13229] ? __pfx_do_futex+0x10/0x10 [ 446.786198][T13229] arch_do_signal_or_restart+0x8f/0x790 [ 446.786225][T13229] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 446.786257][T13229] ? xfd_validate_state+0x61/0x180 [ 446.786310][T13229] exit_to_user_mode_loop+0x85/0x130 [ 446.786344][T13229] do_syscall_64+0x426/0xfa0 [ 446.786370][T13229] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 446.786391][T13229] RIP: 0033:0x7fa43a98eec9 [ 446.786408][T13229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 446.786428][T13229] RSP: 002b:00007fa43b749038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 446.786449][T13229] RAX: fffffffffffffdff RBX: 00007fa43abe5fa0 RCX: 00007fa43a98eec9 [ 446.786462][T13229] RDX: 0000000000000001 RSI: 000000000000000b RDI: 0000200000000000 [ 446.786475][T13229] RBP: 00007fa43aa11f91 R08: 0000000000000000 R09: 00000000fffffffa [ 446.786488][T13229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 446.786500][T13229] R13: 00007fa43abe6038 R14: 00007fa43abe5fa0 R15: 00007ffe51dca148 [ 446.786529][T13229] [ 447.382553][T13253] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2696'. [ 447.622674][T13254] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 447.814182][T13259] netlink: 302 bytes leftover after parsing attributes in process `syz.4.2699'. [ 448.105464][T13268] netlink: 342 bytes leftover after parsing attributes in process `syz.4.2703'. [ 448.945723][T13289] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2712'. [ 449.129897][T13295] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2715'. [ 449.169554][T13295] veth1_macvtap: left promiscuous mode [ 450.468519][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 450.474989][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 451.295063][T13359] netlink: 334 bytes leftover after parsing attributes in process `syz.5.2736'. [ 452.041131][T13373] netlink: 'syz.6.2745': attribute type 4 has an invalid length. [ 452.073002][T13373] netlink: 314 bytes leftover after parsing attributes in process `syz.6.2745'. [ 452.115227][T13371] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2743'. [ 452.150297][T13371] netlink: 186 bytes leftover after parsing attributes in process `syz.4.2743'. [ 452.420161][T13381] netlink: 346 bytes leftover after parsing attributes in process `syz.6.2748'. [ 452.449967][T13382] netlink: 21 bytes leftover after parsing attributes in process `syz.4.2749'. [ 452.639427][T13387] netlink: 'syz.7.2750': attribute type 4 has an invalid length. [ 452.944312][T13400] FAULT_INJECTION: forcing a failure. [ 452.944312][T13400] name failslab, interval 1, probability 0, space 0, times 0 [ 453.032509][T13400] CPU: 1 UID: 0 PID: 13400 Comm: syz.7.2754 Tainted: G I syzkaller #0 PREEMPT(full) [ 453.032544][T13400] Tainted: [I]=FIRMWARE_WORKAROUND [ 453.032558][T13400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 453.032571][T13400] Call Trace: [ 453.032578][T13400] [ 453.032586][T13400] dump_stack_lvl+0x16c/0x1f0 [ 453.032615][T13400] should_fail_ex+0x512/0x640 [ 453.032652][T13400] ? __kmalloc_cache_noprof+0x5f/0x780 [ 453.032688][T13400] should_failslab+0xc2/0x120 [ 453.032715][T13400] __kmalloc_cache_noprof+0x72/0x780 [ 453.032747][T13400] ? __lock_acquire+0xb97/0x1ce0 [ 453.032778][T13400] ? tty_open+0x13e/0xf90 [ 453.032799][T13400] ? tty_open+0x13e/0xf90 [ 453.032814][T13400] ? nonseekable_open+0xd/0x50 [ 453.032834][T13400] ? __pfx_tty_open+0x10/0x10 [ 453.032850][T13400] tty_open+0x13e/0xf90 [ 453.032872][T13400] ? __pfx_tty_open+0x10/0x10 [ 453.032889][T13400] ? chrdev_open+0x58c/0x6a0 [ 453.032917][T13400] ? __pfx_tty_open+0x10/0x10 [ 453.032933][T13400] chrdev_open+0x234/0x6a0 [ 453.032958][T13400] ? __pfx_chrdev_open+0x10/0x10 [ 453.032983][T13400] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 453.033010][T13400] do_dentry_open+0x982/0x1530 [ 453.033033][T13400] ? __pfx_chrdev_open+0x10/0x10 [ 453.033062][T13400] vfs_open+0x82/0x3f0 [ 453.033093][T13400] path_openat+0x1de4/0x2cb0 [ 453.033124][T13400] ? __pfx_path_openat+0x10/0x10 [ 453.033152][T13400] do_filp_open+0x20b/0x470 [ 453.033174][T13400] ? __pfx_do_filp_open+0x10/0x10 [ 453.033215][T13400] ? alloc_fd+0x471/0x7d0 [ 453.033242][T13400] do_sys_openat2+0x11b/0x1d0 [ 453.033271][T13400] ? __pfx_do_sys_openat2+0x10/0x10 [ 453.033311][T13400] __x64_sys_openat+0x174/0x210 [ 453.033341][T13400] ? __pfx___x64_sys_openat+0x10/0x10 [ 453.033381][T13400] do_syscall_64+0xcd/0xfa0 [ 453.033406][T13400] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 453.033426][T13400] RIP: 0033:0x7fa43a98eec9 [ 453.033442][T13400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 453.033461][T13400] RSP: 002b:00007fa438bf6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 453.033480][T13400] RAX: ffffffffffffffda RBX: 00007fa43abe6090 RCX: 00007fa43a98eec9 [ 453.033493][T13400] RDX: 00000000000c0840 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 453.033506][T13400] RBP: 00007fa43aa11f91 R08: 0000000000000000 R09: 0000000000000000 [ 453.033518][T13400] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 453.033530][T13400] R13: 00007fa43abe6128 R14: 00007fa43abe6090 R15: 00007ffe51dca148 [ 453.033574][T13400] [ 454.674737][T13425] netlink: 'syz.5.2761': attribute type 4 has an invalid length. [ 455.978440][T13456] netlink: 'syz.7.2774': attribute type 19 has an invalid length. [ 456.010038][T13456] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2774'. [ 457.807156][T13500] netlink: 342 bytes leftover after parsing attributes in process `syz.5.2790'. [ 457.962172][T13503] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2791'. [ 458.541196][T13518] netlink: 'syz.5.2797': attribute type 2 has an invalid length. [ 460.031020][T13544] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2808'. [ 460.407339][T13551] netlink: 'syz.7.2810': attribute type 29 has an invalid length. [ 460.452479][T13551] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2810'. [ 461.680274][T13577] FAULT_INJECTION: forcing a failure. [ 461.680274][T13577] name failslab, interval 1, probability 0, space 0, times 0 [ 461.738567][T13577] CPU: 1 UID: 0 PID: 13577 Comm: syz.7.2821 Tainted: G I syzkaller #0 PREEMPT(full) [ 461.738603][T13577] Tainted: [I]=FIRMWARE_WORKAROUND [ 461.738610][T13577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 461.738624][T13577] Call Trace: [ 461.738630][T13577] [ 461.738639][T13577] dump_stack_lvl+0x16c/0x1f0 [ 461.738668][T13577] should_fail_ex+0x512/0x640 [ 461.738695][T13577] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 461.738720][T13577] should_failslab+0xc2/0x120 [ 461.738750][T13577] kmem_cache_alloc_noprof+0x75/0x6e0 [ 461.738772][T13577] ? alloc_empty_file+0x55/0x1e0 [ 461.738807][T13577] ? alloc_empty_file+0x55/0x1e0 [ 461.738850][T13577] ? _raw_spin_unlock+0x28/0x50 [ 461.738870][T13577] alloc_empty_file+0x55/0x1e0 [ 461.738901][T13577] alloc_file_pseudo+0x13a/0x230 [ 461.738936][T13577] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 461.738981][T13577] __shmem_file_setup+0x1a3/0x330 [ 461.739018][T13577] shmem_zero_setup+0x93/0x1a0 [ 461.739042][T13577] __mmap_region+0x2076/0x27a0 [ 461.739067][T13577] ? __pfx___mmap_region+0x10/0x10 [ 461.739086][T13577] ? finish_task_switch.isra.0+0x21c/0xc10 [ 461.739111][T13577] ? rcu_is_watching+0x12/0xc0 [ 461.739133][T13577] ? finish_task_switch.isra.0+0x221/0xc10 [ 461.739155][T13577] ? lockdep_hardirqs_on+0x7c/0x110 [ 461.739179][T13577] ? finish_task_switch.isra.0+0x221/0xc10 [ 461.739227][T13577] ? __pfx___schedule+0x10/0x10 [ 461.739282][T13577] ? trace_cap_capable+0x18d/0x200 [ 461.739322][T13577] mmap_region+0x1ab/0x3f0 [ 461.739343][T13577] ? __get_unmapped_area+0x267/0x440 [ 461.739374][T13577] do_mmap+0xa3e/0x1210 [ 461.739406][T13577] ? __pfx_do_mmap+0x10/0x10 [ 461.739434][T13577] ? __pfx_down_write_killable+0x10/0x10 [ 461.739469][T13577] vm_mmap_pgoff+0x29e/0x470 [ 461.739502][T13577] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 461.739536][T13577] ? __x64_sys_futex+0x1e0/0x4c0 [ 461.739564][T13577] ? __x64_sys_futex+0x1e9/0x4c0 [ 461.739597][T13577] ksys_mmap_pgoff+0x7d/0x5c0 [ 461.739623][T13577] ? xfd_validate_state+0x61/0x180 [ 461.739678][T13577] __x64_sys_mmap+0x125/0x190 [ 461.739716][T13577] do_syscall_64+0xcd/0xfa0 [ 461.739745][T13577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 461.739768][T13577] RIP: 0033:0x7fa43a98eec9 [ 461.739786][T13577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 461.739809][T13577] RSP: 002b:00007fa43b749038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 461.739831][T13577] RAX: ffffffffffffffda RBX: 00007fa43abe5fa0 RCX: 00007fa43a98eec9 [ 461.739846][T13577] RDX: 00000000000000df RSI: 0000000000000400 RDI: 0000000000000000 [ 461.739860][T13577] RBP: 00007fa43aa11f91 R08: 0000000000001272 R09: 0000000000008000 [ 461.739875][T13577] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 461.739887][T13577] R13: 00007fa43abe6038 R14: 00007fa43abe5fa0 R15: 00007ffe51dca148 [ 461.739918][T13577] [ 462.664750][T13589] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2824'. [ 463.177288][T13591] netlink: 342 bytes leftover after parsing attributes in process `syz.6.2826'. [ 463.646802][T13606] netlink: 334 bytes leftover after parsing attributes in process `syz.7.2833'. [ 463.895139][T13615] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2836'. [ 463.978173][T13615] netlink: 25 bytes leftover after parsing attributes in process `syz.7.2836'. [ 465.226549][T13635] zswap: compressor not available [ 465.544012][T13651] netlink: 130 bytes leftover after parsing attributes in process `syz.7.2851'. [ 465.695790][T13656] netlink: 'syz.4.2853': attribute type 14 has an invalid length. [ 465.814594][T13656] netlink: 330 bytes leftover after parsing attributes in process `syz.4.2853'. [ 466.384768][T13669] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2857'. [ 466.482068][T13671] netlink: 'syz.6.2858': attribute type 27 has an invalid length. [ 466.508707][T13671] netlink: 334 bytes leftover after parsing attributes in process `syz.6.2858'. [ 466.779846][T13673] Loading of unsigned module is rejected [ 467.058584][T13678] FAULT_INJECTION: forcing a failure. [ 467.058584][T13678] name failslab, interval 1, probability 0, space 0, times 0 [ 467.160871][T13678] CPU: 1 UID: 0 PID: 13678 Comm: syz.4.2861 Tainted: G I syzkaller #0 PREEMPT(full) [ 467.160909][T13678] Tainted: [I]=FIRMWARE_WORKAROUND [ 467.160918][T13678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 467.160932][T13678] Call Trace: [ 467.160939][T13678] [ 467.160949][T13678] dump_stack_lvl+0x16c/0x1f0 [ 467.160980][T13678] should_fail_ex+0x512/0x640 [ 467.161010][T13678] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 467.161038][T13678] should_failslab+0xc2/0x120 [ 467.161070][T13678] kmem_cache_alloc_noprof+0x75/0x6e0 [ 467.161092][T13678] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 467.161131][T13678] ? mas_preallocate+0xe6a/0x11f0 [ 467.161166][T13678] ? mas_preallocate+0xe6a/0x11f0 [ 467.161193][T13678] mas_preallocate+0xe6a/0x11f0 [ 467.161228][T13678] ? __pfx_mas_preallocate+0x10/0x10 [ 467.161256][T13678] ? rcu_is_watching+0x12/0xc0 [ 467.161290][T13678] ? anon_vma_name+0x81/0x2f0 [ 467.161329][T13678] __split_vma+0x34a/0x1070 [ 467.161372][T13678] ? __pfx___split_vma+0x10/0x10 [ 467.161427][T13678] vms_gather_munmap_vmas+0x1cb/0x1340 [ 467.161472][T13678] ? __pfx_vms_gather_munmap_vmas+0x10/0x10 [ 467.161516][T13678] ? mas_walk+0x6f5/0x980 [ 467.161550][T13678] __mmap_region+0x434/0x27a0 [ 467.161574][T13678] ? find_held_lock+0x2b/0x80 [ 467.161606][T13678] ? __pfx___mmap_region+0x10/0x10 [ 467.161630][T13678] ? finish_task_switch.isra.0+0x21c/0xc10 [ 467.161657][T13678] ? rcu_is_watching+0x12/0xc0 [ 467.161682][T13678] ? finish_task_switch.isra.0+0x221/0xc10 [ 467.161707][T13678] ? lockdep_hardirqs_on+0x7c/0x110 [ 467.161735][T13678] ? finish_task_switch.isra.0+0x221/0xc10 [ 467.161781][T13678] ? __lock_acquire+0x62e/0x1ce0 [ 467.161818][T13678] ? __pfx___schedule+0x10/0x10 [ 467.161883][T13678] ? mm_get_unmapped_area+0x95/0xe0 [ 467.161922][T13678] mmap_region+0x1ab/0x3f0 [ 467.161945][T13678] ? __get_unmapped_area+0x267/0x440 [ 467.161979][T13678] do_mmap+0xa3e/0x1210 [ 467.162015][T13678] ? __pfx_do_mmap+0x10/0x10 [ 467.162046][T13678] ? __pfx_down_write_killable+0x10/0x10 [ 467.162085][T13678] vm_mmap_pgoff+0x29e/0x470 [ 467.162122][T13678] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 467.162153][T13678] ? do_sigaltstack.constprop.0+0x547/0x800 [ 467.162194][T13678] ? __x64_sys_futex+0x1e0/0x4c0 [ 467.162226][T13678] ? __x64_sys_futex+0x1e9/0x4c0 [ 467.162263][T13678] ksys_mmap_pgoff+0x7d/0x5c0 [ 467.162292][T13678] ? xfd_validate_state+0x61/0x180 [ 467.162330][T13678] __x64_sys_mmap+0x125/0x190 [ 467.162370][T13678] do_syscall_64+0xcd/0xfa0 [ 467.162400][T13678] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 467.162424][T13678] RIP: 0033:0x7fbb5358eec9 [ 467.162443][T13678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.162466][T13678] RSP: 002b:00007fbb517f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 467.162489][T13678] RAX: ffffffffffffffda RBX: 00007fbb537e5fa0 RCX: 00007fbb5358eec9 [ 467.162504][T13678] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000001000000 [ 467.162519][T13678] RBP: 00007fbb53611f91 R08: fffffffffffffffa R09: 0000000000008000 [ 467.162534][T13678] R10: 0000000000000eb1 R11: 0000000000000246 R12: 0000000000000000 [ 467.162548][T13678] R13: 00007fbb537e6038 R14: 00007fbb537e5fa0 R15: 00007ffffa3d4448 [ 467.162581][T13678] [ 470.114759][T13720] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2882'. [ 470.369902][ T30] audit: type=1804 audit(4294968458.672:8): pid=13728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2884" name="file0" dev="tmpfs" ino=3406 res=1 errno=0 [ 470.607475][T13732] ACPI: button: Initial lid state set to 'ignore' [ 470.985411][T13743] netlink: 'syz.5.2889': attribute type 20 has an invalid length. [ 470.993258][T13743] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2889'. [ 471.109945][T13747] netlink: 146 bytes leftover after parsing attributes in process `syz.7.2892'. [ 471.236894][T13743] IPv6: NLM_F_CREATE should be specified when creating new route [ 471.836088][T13758] netlink: 'syz.4.2895': attribute type 27 has an invalid length. [ 471.926219][T13758] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2895'. [ 472.980228][T13766] i2c i2c-0: new_device: Instantiated device card: at 0x01 [ 473.441989][T13776] netlink: 330 bytes leftover after parsing attributes in process `syz.5.2902'. [ 474.424492][T13799] netlink: 146 bytes leftover after parsing attributes in process `syz.4.2913'. [ 474.923114][T13813] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input9 [ 475.695733][T13832] fanotify: failed to encode fid (type=0, len=0, err=-2) [ 476.075843][T13841] netlink: 354 bytes leftover after parsing attributes in process `syz.4.2929'. [ 476.566136][T13856] netlink: 'syz.4.2934': attribute type 19 has an invalid length. [ 476.578389][T13856] netlink: 334 bytes leftover after parsing attributes in process `syz.4.2934'. [ 477.065505][T13866] netlink: 'syz.7.2938': attribute type 16 has an invalid length. [ 477.176788][T13866] netlink: 50 bytes leftover after parsing attributes in process `syz.7.2938'. [ 483.296395][T13955] netlink: 330 bytes leftover after parsing attributes in process `syz.7.2972'. [ 483.326715][T13955] : renamed from gre0 (while UP) [ 483.457620][T13955] netlink: 330 bytes leftover after parsing attributes in process `syz.7.2972'. [ 486.453122][T13993] netlink: 330 bytes leftover after parsing attributes in process `syz.7.2988'. [ 487.045602][T14003] FAULT_INJECTION: forcing a failure. [ 487.045602][T14003] name failslab, interval 1, probability 0, space 0, times 0 [ 487.067084][T14003] CPU: 1 UID: 0 PID: 14003 Comm: syz.4.2992 Tainted: G I syzkaller #0 PREEMPT(full) [ 487.067122][T14003] Tainted: [I]=FIRMWARE_WORKAROUND [ 487.067131][T14003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 487.067145][T14003] Call Trace: [ 487.067153][T14003] [ 487.067162][T14003] dump_stack_lvl+0x16c/0x1f0 [ 487.067194][T14003] should_fail_ex+0x512/0x640 [ 487.067225][T14003] ? __kmalloc_cache_noprof+0x5f/0x780 [ 487.067268][T14003] should_failslab+0xc2/0x120 [ 487.067307][T14003] __kmalloc_cache_noprof+0x72/0x780 [ 487.067346][T14003] ? __asan_memset+0x23/0x50 [ 487.067368][T14003] ? snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 487.067413][T14003] ? snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 487.067452][T14003] snd_pcm_oss_change_params_locked+0x6f4/0x3a30 [ 487.067503][T14003] ? __mutex_lock+0x1c5/0x1060 [ 487.067532][T14003] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 487.067596][T14003] snd_pcm_oss_make_ready_locked+0xb7/0x130 [ 487.067637][T14003] snd_pcm_oss_sync+0x32e/0x840 [ 487.067679][T14003] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 487.067718][T14003] snd_pcm_oss_release+0x28b/0x310 [ 487.067758][T14003] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 487.067795][T14003] __fput+0x3ff/0xb70 [ 487.067834][T14003] task_work_run+0x150/0x240 [ 487.067873][T14003] ? __pfx_task_work_run+0x10/0x10 [ 487.067912][T14003] ? __pfx___do_sys_close_range+0x10/0x10 [ 487.067957][T14003] exit_to_user_mode_loop+0xec/0x130 [ 487.067993][T14003] do_syscall_64+0x426/0xfa0 [ 487.068033][T14003] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 487.068055][T14003] RIP: 0033:0x7fbb5358eec9 [ 487.068083][T14003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 487.068103][T14003] RSP: 002b:00007fbb517f6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 487.068123][T14003] RAX: 0000000000000000 RBX: 00007fbb537e5fa0 RCX: 00007fbb5358eec9 [ 487.068136][T14003] RDX: 0000000000000000 RSI: 000000000000000a RDI: 0000000000000002 [ 487.068148][T14003] RBP: 00007fbb53611f91 R08: 0000000000000000 R09: 0000000000000000 [ 487.068160][T14003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 487.068172][T14003] R13: 00007fbb537e6038 R14: 00007fbb537e5fa0 R15: 00007ffffa3d4448 [ 487.068199][T14003] [ 487.848406][T14009] netlink: 206 bytes leftover after parsing attributes in process `syz.4.2995'. [ 488.018641][T14011] ERROR: Out of memory at tomoyo_memory_ok. [ 488.125178][T14015] FAULT_INJECTION: forcing a failure. [ 488.125178][T14015] name failslab, interval 1, probability 0, space 0, times 0 [ 488.138456][T14015] CPU: 1 UID: 0 PID: 14015 Comm: syz.4.2997 Tainted: G I syzkaller #0 PREEMPT(full) [ 488.138493][T14015] Tainted: [I]=FIRMWARE_WORKAROUND [ 488.138501][T14015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 488.138515][T14015] Call Trace: [ 488.138522][T14015] [ 488.138531][T14015] dump_stack_lvl+0x16c/0x1f0 [ 488.138563][T14015] should_fail_ex+0x512/0x640 [ 488.138593][T14015] ? fs_reclaim_acquire+0xae/0x150 [ 488.138627][T14015] should_failslab+0xc2/0x120 [ 488.138660][T14015] __kmalloc_cache_noprof+0x72/0x780 [ 488.138698][T14015] ? __pfx_tomoyo_init_log+0x10/0x10 [ 488.138722][T14015] ? tomoyo_write_log2+0x33d/0xc10 [ 488.138751][T14015] ? tomoyo_write_log2+0x33d/0xc10 [ 488.138775][T14015] tomoyo_write_log2+0x33d/0xc10 [ 488.138804][T14015] tomoyo_supervisor+0x15e/0x13b0 [ 488.138853][T14015] ? __pfx_tomoyo_supervisor+0x10/0x10 [ 488.138894][T14015] ? lockdep_hardirqs_on+0x7c/0x110 [ 488.138926][T14015] ? tomoyo_check_path_acl+0xad/0x210 [ 488.138963][T14015] ? tomoyo_check_acl+0x1f7/0x410 [ 488.138998][T14015] tomoyo_path_permission+0x270/0x3b0 [ 488.139037][T14015] tomoyo_check_open_permission+0x37b/0x3c0 [ 488.139075][T14015] ? __pfx_tomoyo_check_open_permission+0x10/0x10 [ 488.139142][T14015] ? do_raw_spin_lock+0x12c/0x2b0 [ 488.139188][T14015] tomoyo_file_open+0x6b/0x90 [ 488.139217][T14015] security_file_open+0x84/0x1e0 [ 488.139247][T14015] do_dentry_open+0x596/0x1530 [ 488.139283][T14015] vfs_open+0x82/0x3f0 [ 488.139319][T14015] path_openat+0x1de4/0x2cb0 [ 488.139355][T14015] ? __pfx_path_openat+0x10/0x10 [ 488.139388][T14015] do_filp_open+0x20b/0x470 [ 488.139414][T14015] ? __pfx_do_filp_open+0x10/0x10 [ 488.139461][T14015] ? alloc_fd+0x471/0x7d0 [ 488.139492][T14015] do_sys_openat2+0x11b/0x1d0 [ 488.139525][T14015] ? __pfx_do_sys_openat2+0x10/0x10 [ 488.139571][T14015] __x64_sys_openat+0x174/0x210 [ 488.139605][T14015] ? __pfx___x64_sys_openat+0x10/0x10 [ 488.139653][T14015] do_syscall_64+0xcd/0xfa0 [ 488.139681][T14015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.139704][T14015] RIP: 0033:0x7fbb5358eec9 [ 488.139722][T14015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.139745][T14015] RSP: 002b:00007fbb517f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 488.139766][T14015] RAX: ffffffffffffffda RBX: 00007fbb537e5fa0 RCX: 00007fbb5358eec9 [ 488.139782][T14015] RDX: 0000000000101600 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 488.139796][T14015] RBP: 00007fbb53611f91 R08: 0000000000000000 R09: 0000000000000000 [ 488.139811][T14015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.139825][T14015] R13: 00007fbb537e6038 R14: 00007fbb537e5fa0 R15: 00007ffffa3d4448 [ 488.139856][T14015] [ 489.714813][T14033] netlink: 504 bytes leftover after parsing attributes in process `syz.4.3004'. [ 489.732234][T14033] netlink: 504 bytes leftover after parsing attributes in process `syz.4.3004'. [ 490.875556][T14061] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3015'. [ 491.224911][T14070] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3018'. [ 491.245074][T14070] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3018'. [ 491.418510][T14076] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3021'. [ 491.503640][T14079] netlink: 'syz.4.3022': attribute type 4 has an invalid length. [ 491.521767][T14079] netlink: 314 bytes leftover after parsing attributes in process `syz.4.3022'. [ 492.251074][T14098] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3028'. [ 492.261060][T14098] : renamed from gre0 (while UP) [ 492.319649][T14098] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3028'. [ 494.343970][ T5841] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3 [ 494.664864][T14152] netlink: 504 bytes leftover after parsing attributes in process `syz.4.3050'. [ 496.029877][T14175] netlink: 146 bytes leftover after parsing attributes in process `syz.4.3060'. [ 496.615438][T14183] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3065'. [ 496.625487][T14183] netlink: 25 bytes leftover after parsing attributes in process `syz.4.3065'. [ 496.825110][T14190] netlink: 330 bytes leftover after parsing attributes in process `syz.6.3062'. [ 496.856992][T14195] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3066'. [ 496.904575][T14196] netlink: 'syz.5.3064': attribute type 4 has an invalid length. [ 496.926163][T14193] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3066'. [ 496.939987][T14196] netlink: 314 bytes leftover after parsing attributes in process `syz.5.3064'. [ 497.839197][T14213] netlink: 330 bytes leftover after parsing attributes in process `syz.4.3075'. [ 499.127574][ T2963] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.309348][ T2963] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.475531][ T2963] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.591346][ T2963] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.049744][ T2963] bridge_slave_0: left allmulticast mode [ 500.101182][ T2963] bridge_slave_0: left promiscuous mode [ 500.109185][ T2963] bridge0: port 1(bridge_slave_0) entered disabled state [ 500.740271][T14259] netlink: 330 bytes leftover after parsing attributes in process `syz.7.3093'. [ 500.935069][ T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 500.947980][ T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 500.956865][ T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 500.965205][ T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 500.975754][ T52] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 501.062167][T14266] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3094'. [ 502.733130][T14298] FAULT_INJECTION: forcing a failure. [ 502.733130][T14298] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 502.799885][T14298] CPU: 1 UID: 0 PID: 14298 Comm: syz.7.3101 Tainted: G I syzkaller #0 PREEMPT(full) [ 502.799923][T14298] Tainted: [I]=FIRMWARE_WORKAROUND [ 502.799932][T14298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 502.799946][T14298] Call Trace: [ 502.799953][T14298] [ 502.799961][T14298] dump_stack_lvl+0x16c/0x1f0 [ 502.799992][T14298] should_fail_ex+0x512/0x640 [ 502.800026][T14298] core_sys_select+0x9cf/0xc20 [ 502.800057][T14298] ? __pfx_core_sys_select+0x10/0x10 [ 502.800109][T14298] ? read_tsc+0x9/0x20 [ 502.800134][T14298] ? ktime_get_ts64+0x256/0x400 [ 502.800196][T14298] kern_select+0x15d/0x1e0 [ 502.800218][T14298] ? __pfx_kern_select+0x10/0x10 [ 502.800244][T14298] ? xfd_validate_state+0x61/0x180 [ 502.800277][T14298] ? __pfx_do_writev+0x10/0x10 [ 502.800304][T14298] __x64_sys_select+0xbd/0x160 [ 502.800325][T14298] ? do_syscall_64+0x91/0xfa0 [ 502.800359][T14298] ? lockdep_hardirqs_on+0x7c/0x110 [ 502.800386][T14298] do_syscall_64+0xcd/0xfa0 [ 502.800416][T14298] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 502.800440][T14298] RIP: 0033:0x7fa43a98eec9 [ 502.800458][T14298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 502.800481][T14298] RSP: 002b:00007fa43b749038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017 [ 502.800503][T14298] RAX: ffffffffffffffda RBX: 00007fa43abe5fa0 RCX: 00007fa43a98eec9 [ 502.800519][T14298] RDX: 0000200000000100 RSI: 0000200000000080 RDI: 0000000000000006 [ 502.800533][T14298] RBP: 00007fa43aa11f91 R08: 0000200000000000 R09: 0000000000000000 [ 502.800548][T14298] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000000 [ 502.800563][T14298] R13: 00007fa43abe6038 R14: 00007fa43abe5fa0 R15: 00007ffe51dca148 [ 502.800594][T14298] [ 503.299795][ T52] Bluetooth: hci3: command tx timeout [ 504.156936][ T2963] team0 (unregistering): Port device team_slave_1 removed [ 504.264265][ T2963] team0 (unregistering): Port device team_slave_0 removed [ 505.370919][ T52] Bluetooth: hci3: command tx timeout [ 505.787728][T14263] chnl_net:caif_netlink_parms(): no params data found [ 506.488652][T14263] bridge0: port 1(bridge_slave_0) entered blocking state [ 506.522400][T14263] bridge0: port 1(bridge_slave_0) entered disabled state [ 506.565547][T14263] bridge_slave_0: entered allmulticast mode [ 506.602818][T14263] bridge_slave_0: entered promiscuous mode [ 506.659655][T14263] bridge0: port 2(bridge_slave_1) entered blocking state [ 506.694821][T14263] bridge0: port 2(bridge_slave_1) entered disabled state [ 506.745485][T14263] bridge_slave_1: entered allmulticast mode [ 506.776439][ T52] Bluetooth: hci0: unexpected event 0x3e length: 509 > 260 [ 506.776470][ T52] Bluetooth: hci0: unexpected subevent 0x02 length: 508 > 260 [ 506.792798][ T52] Bluetooth: hci0: Dropping invalid advertising data [ 506.808995][T14263] bridge_slave_1: entered promiscuous mode [ 506.899616][T14344] bridge0: port 3(veth0_to_bridge) entered blocking state [ 506.922564][T14344] bridge0: port 3(veth0_to_bridge) entered disabled state [ 506.957518][T14344] veth0_to_bridge: entered allmulticast mode [ 506.992897][T14344] veth0_to_bridge: entered promiscuous mode [ 507.021823][T14344] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 507.078385][T14344] bridge0: port 3(veth0_to_bridge) entered blocking state [ 507.085652][T14344] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 507.436587][T14263] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 507.452053][ T52] Bluetooth: hci3: command tx timeout [ 507.513715][T14263] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 507.704146][T14263] team0: Port device team_slave_0 added [ 507.711851][T14263] team0: Port device team_slave_1 added [ 507.909676][T14263] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 507.936027][T14263] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 508.052142][T14263] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 508.124199][T14263] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 508.131191][T14263] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 508.309350][T14263] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 508.729201][ T52] Bluetooth: Frame is too long (len 38, expected len 4) [ 508.746294][T14263] hsr_slave_0: entered promiscuous mode [ 508.785974][T14263] hsr_slave_1: entered promiscuous mode [ 508.825114][T14263] debugfs: 'hsr0' already exists in 'hsr' [ 508.855984][T14263] Cannot create hsr debugfs directory [ 509.546448][ T52] Bluetooth: hci3: command tx timeout [ 509.838518][T14263] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 509.964266][T14263] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 510.023610][T14263] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 510.134605][T14263] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 510.511702][T14263] 8021q: adding VLAN 0 to HW filter on device bond0 [ 510.621474][T14263] 8021q: adding VLAN 0 to HW filter on device team0 [ 510.743076][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 510.750252][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 510.825852][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 510.832996][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 511.025343][T14263] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 511.083656][T14263] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 511.938810][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 511.955245][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.018937][T14263] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 512.278354][T14439] FAULT_INJECTION: forcing a failure. [ 512.278354][T14439] name failslab, interval 1, probability 0, space 0, times 0 [ 512.420109][T14439] CPU: 1 UID: 0 PID: 14439 Comm: syz.7.3131 Tainted: G I syzkaller #0 PREEMPT(full) [ 512.420144][T14439] Tainted: [I]=FIRMWARE_WORKAROUND [ 512.420152][T14439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 512.420165][T14439] Call Trace: [ 512.420172][T14439] [ 512.420180][T14439] dump_stack_lvl+0x16c/0x1f0 [ 512.420210][T14439] should_fail_ex+0x512/0x640 [ 512.420237][T14439] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 512.420261][T14439] should_failslab+0xc2/0x120 [ 512.420290][T14439] kmem_cache_alloc_noprof+0x75/0x6e0 [ 512.420312][T14439] ? mas_preallocate+0xe6a/0x11f0 [ 512.420343][T14439] ? mas_preallocate+0xe6a/0x11f0 [ 512.420368][T14439] mas_preallocate+0xe6a/0x11f0 [ 512.420399][T14439] ? __pfx_mas_preallocate+0x10/0x10 [ 512.420423][T14439] ? find_held_lock+0x2b/0x80 [ 512.420456][T14439] ? __pfx___might_resched+0x10/0x10 [ 512.420482][T14439] vma_link+0x12e/0x6a0 [ 512.420518][T14439] ? anon_vma_clone+0x3fe/0x5c0 [ 512.420556][T14439] ? __pfx_vma_link+0x10/0x10 [ 512.420584][T14439] ? anon_vma_clone+0x405/0x5c0 [ 512.420627][T14439] copy_vma+0x6b7/0xa90 [ 512.420654][T14439] ? __pfx_copy_vma+0x10/0x10 [ 512.420685][T14439] ? css_rstat_updated+0x1c2/0x510 [ 512.420732][T14439] copy_vma_and_data+0x1cf/0x790 [ 512.420758][T14439] ? __pfx_copy_vma_and_data+0x10/0x10 [ 512.420788][T14439] ? __vma_enter_locked+0x163/0x3f0 [ 512.420826][T14439] ? find_held_lock+0x2b/0x80 [ 512.420850][T14439] ? move_vma+0x52e/0x1770 [ 512.420869][T14439] ? __vm_enough_memory+0x184/0x3f0 [ 512.420905][T14439] move_vma+0x540/0x1770 [ 512.420932][T14439] ? __pfx_move_vma+0x10/0x10 [ 512.420966][T14439] ? mm_get_unmapped_area_vmflags+0x97/0xe0 [ 512.420998][T14439] ? cap_mmap_addr+0x4b/0x120 [ 512.421028][T14439] ? bpf_lsm_mmap_addr+0x9/0x10 [ 512.421053][T14439] ? security_mmap_addr+0x6c/0x1e0 [ 512.421076][T14439] ? __get_unmapped_area+0x267/0x440 [ 512.421108][T14439] ? vrm_set_new_addr+0x208/0x290 [ 512.421133][T14439] mremap_to+0x1b7/0x450 [ 512.421161][T14439] do_mremap+0x13a8/0x2020 [ 512.421184][T14439] ? __futex_wait+0x1a0/0x2f0 [ 512.421229][T14439] ? __pfx_do_mremap+0x10/0x10 [ 512.421257][T14439] ? do_writev+0x218/0x340 [ 512.421288][T14439] __do_sys_mremap+0x119/0x170 [ 512.421310][T14439] ? __pfx___do_sys_mremap+0x10/0x10 [ 512.421341][T14439] ? __x64_sys_futex+0x1e0/0x4c0 [ 512.421391][T14439] do_syscall_64+0xcd/0xfa0 [ 512.421419][T14439] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 512.421442][T14439] RIP: 0033:0x7fa43a98eec9 [ 512.421460][T14439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 512.421483][T14439] RSP: 002b:00007fa43b749038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 512.421505][T14439] RAX: ffffffffffffffda RBX: 00007fa43abe5fa0 RCX: 00007fa43a98eec9 [ 512.421531][T14439] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000200000004000 [ 512.421544][T14439] RBP: 00007fa43aa11f91 R08: 0000000100000000 R09: 0000000000000000 [ 512.421557][T14439] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000 [ 512.421570][T14439] R13: 00007fa43abe6038 R14: 00007fa43abe5fa0 R15: 00007ffe51dca148 [ 512.421599][T14439] [ 513.218634][T14447] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3134'. [ 513.366906][T14449] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3135'. [ 513.436753][T14452] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3135'. [ 513.656277][T14455] netlink: 146 bytes leftover after parsing attributes in process `syz.5.3137'. [ 513.809089][T14457] netlink: 146 bytes leftover after parsing attributes in process `syz.7.3138'. [ 514.958225][T14263] veth0_vlan: entered promiscuous mode [ 515.035092][T14263] veth1_vlan: entered promiscuous mode [ 515.105482][T14263] veth0_macvtap: entered promiscuous mode [ 515.179561][T14263] veth1_macvtap: entered promiscuous mode [ 515.268800][T14263] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 515.318725][T14263] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 515.397649][ T2974] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 515.411904][ T2974] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 515.463684][ T2974] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 515.532056][ T2974] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 515.757727][ T2992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 515.765573][ T2992] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 515.821268][T14495] netlink: 146 bytes leftover after parsing attributes in process `syz.5.3148'. [ 515.912912][ T2974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 515.949210][ T2974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 516.100792][T14499] netlink: 186 bytes leftover after parsing attributes in process `syz.5.3151'. [ 516.837759][T14515] netlink: 334 bytes leftover after parsing attributes in process `syz.6.3156'. [ 518.181387][T14543] netlink: 146 bytes leftover after parsing attributes in process `syz.5.3164'. [ 519.188471][T14567] netlink: 294 bytes leftover after parsing attributes in process `syz.5.3172'. [ 519.588317][T14574] netlink: 266 bytes leftover after parsing attributes in process `syz.6.3175'. [ 519.641832][T14574] IPv6: NLM_F_CREATE should be specified when creating new route [ 519.911204][T14576] zswap: compressor 000 not available [ 521.159215][T14612] netlink: 146 bytes leftover after parsing attributes in process `syz.8.3186'. [ 521.743860][T14629] netlink: 330 bytes leftover after parsing attributes in process `syz.5.3191'. [ 522.984304][T14647] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3195'. [ 523.251444][T14650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3196'. [ 523.328974][T14650] netlink: 354 bytes leftover after parsing attributes in process `syz.5.3196'. [ 523.487624][T14657] netlink: 330 bytes leftover after parsing attributes in process `syz.6.3198'. [ 523.625984][T14657] veth0_macvtap: left promiscuous mode [ 524.047404][T14671] netlink: 'syz.5.3202': attribute type 21 has an invalid length. [ 524.099558][T14671] netlink: 326 bytes leftover after parsing attributes in process `syz.5.3202'. [ 524.565021][T14681] netlink: 354 bytes leftover after parsing attributes in process `syz.7.3205'. [ 524.959413][T14694] netlink: 330 bytes leftover after parsing attributes in process `syz.6.3210'. [ 525.006991][T14696] FAULT_INJECTION: forcing a failure. [ 525.006991][T14696] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 525.041156][T14696] CPU: 1 UID: 0 PID: 14696 Comm: syz.8.3211 Tainted: G I syzkaller #0 PREEMPT(full) [ 525.041193][T14696] Tainted: [I]=FIRMWARE_WORKAROUND [ 525.041201][T14696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 525.041215][T14696] Call Trace: [ 525.041222][T14696] [ 525.041231][T14696] dump_stack_lvl+0x16c/0x1f0 [ 525.041264][T14696] should_fail_ex+0x512/0x640 [ 525.041300][T14696] _copy_to_user+0x32/0xd0 [ 525.041333][T14696] copy_siginfo_to_user+0x27/0xc0 [ 525.041365][T14696] x64_setup_rt_frame+0x811/0xcf0 [ 525.041401][T14696] ? __pfx_x64_setup_rt_frame+0x10/0x10 [ 525.041429][T14696] ? __task_pid_nr_ns+0x1f5/0x500 [ 525.041469][T14696] arch_do_signal_or_restart+0x5b4/0x790 [ 525.041496][T14696] ? do_rt_tgsigqueueinfo+0xb0/0x100 [ 525.041526][T14696] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 525.041572][T14696] exit_to_user_mode_loop+0x85/0x130 [ 525.041609][T14696] do_syscall_64+0x426/0xfa0 [ 525.041638][T14696] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 525.041661][T14696] RIP: 0033:0x7fadd918eec9 [ 525.041697][T14696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 525.041721][T14696] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 525.041743][T14696] RAX: 0000000000000000 RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 525.041758][T14696] RDX: 0000000000000021 RSI: 0000000000000025 RDI: 0000000000000024 [ 525.041779][T14696] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 525.041793][T14696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 525.041808][T14696] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 525.041840][T14696] [ 525.624450][T14707] netlink: 290 bytes leftover after parsing attributes in process `syz.5.3214'. [ 526.185794][T14721] netlink: 146 bytes leftover after parsing attributes in process `syz.6.3220'. [ 526.307352][T14720] FAULT_INJECTION: forcing a failure. [ 526.307352][T14720] name failslab, interval 1, probability 0, space 0, times 0 [ 526.353200][T14720] CPU: 1 UID: 0 PID: 14720 Comm: syz.8.3219 Tainted: G I syzkaller #0 PREEMPT(full) [ 526.353234][T14720] Tainted: [I]=FIRMWARE_WORKAROUND [ 526.353241][T14720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 526.353253][T14720] Call Trace: [ 526.353260][T14720] [ 526.353268][T14720] dump_stack_lvl+0x16c/0x1f0 [ 526.353295][T14720] should_fail_ex+0x512/0x640 [ 526.353320][T14720] ? __kmalloc_cache_noprof+0x5f/0x780 [ 526.353357][T14720] should_failslab+0xc2/0x120 [ 526.353384][T14720] __kmalloc_cache_noprof+0x72/0x780 [ 526.353418][T14720] ? file_f_owner_allocate+0x84/0x130 [ 526.353450][T14720] ? file_f_owner_allocate+0x84/0x130 [ 526.353476][T14720] file_f_owner_allocate+0x84/0x130 [ 526.353503][T14720] __tty_fasync+0xab/0x300 [ 526.353533][T14720] ? __pfx_tty_fasync+0x10/0x10 [ 526.353561][T14720] tty_fasync+0x9e/0xe0 [ 526.353590][T14720] do_fcntl+0xa3d/0x15a0 [ 526.353617][T14720] ? __pfx_do_fcntl+0x10/0x10 [ 526.353650][T14720] ? tomoyo_file_fcntl+0xa5/0xc0 [ 526.353684][T14720] __x64_sys_fcntl+0x163/0x200 [ 526.353715][T14720] do_syscall_64+0xcd/0xfa0 [ 526.353740][T14720] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.353761][T14720] RIP: 0033:0x7fadd918eec9 [ 526.353777][T14720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 526.353797][T14720] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048 [ 526.353816][T14720] RAX: ffffffffffffffda RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 526.353829][T14720] RDX: 000000000000a553 RSI: 0000000000000004 RDI: 0000000000000003 [ 526.353841][T14720] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 526.353853][T14720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 526.353865][T14720] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 526.353893][T14720] [ 526.504212][T14731] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3224'. [ 526.504715][T14731] netlink: 13 bytes leftover after parsing attributes in process `syz.6.3224'. [ 528.577684][T14776] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3237'. [ 529.561823][T14793] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3242'. [ 529.633340][T14793] netlink: 13 bytes leftover after parsing attributes in process `syz.8.3242'. [ 531.650045][T14830] netlink: 'syz.5.3251': attribute type 33 has an invalid length. [ 531.657891][T14830] netlink: 322 bytes leftover after parsing attributes in process `syz.5.3251'. [ 531.793111][T14835] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3253'. [ 531.865023][T14835] netlink: 13 bytes leftover after parsing attributes in process `syz.8.3253'. [ 532.202140][T14848] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 535.240770][T14894] sctp: [Deprecated]: syz.5.3269 (pid 14894) Use of struct sctp_assoc_value in delayed_ack socket option. [ 535.240770][T14894] Use struct sctp_sack_info instead [ 548.445964][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 548.464016][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 548.477470][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 548.490356][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 548.502758][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 548.719641][T14948] netlink: 'syz.6.3291': attribute type 10 has an invalid length. [ 548.762321][T14948] netlink: 330 bytes leftover after parsing attributes in process `syz.6.3291'. [ 549.224725][T14942] chnl_net:caif_netlink_parms(): no params data found [ 549.653037][T14942] bridge0: port 1(bridge_slave_0) entered blocking state [ 549.683296][T14942] bridge0: port 1(bridge_slave_0) entered disabled state [ 549.728438][T14942] bridge_slave_0: entered allmulticast mode [ 549.753670][T14942] bridge_slave_0: entered promiscuous mode [ 549.796017][T14942] bridge0: port 2(bridge_slave_1) entered blocking state [ 549.862948][T14942] bridge0: port 2(bridge_slave_1) entered disabled state [ 549.888817][T14942] bridge_slave_1: entered allmulticast mode [ 549.921419][T14942] bridge_slave_1: entered promiscuous mode [ 550.155406][T14942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 550.205362][T14942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 550.407283][T14942] team0: Port device team_slave_0 added [ 550.463948][T14942] team0: Port device team_slave_1 added [ 550.581994][ T5841] Bluetooth: hci0: command tx timeout [ 550.667226][T14942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 550.707548][T14942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 550.846250][T14942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 550.902168][T14942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 550.933753][T14942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 551.079050][T14942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 551.117738][T14992] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.130664][T14991] netlink: 252 bytes leftover after parsing attributes in process `syz.5.3307'. [ 551.168633][T14992] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.178816][T14991] unsupported nla_type 65535 [ 551.214316][T14992] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.263485][T14992] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.298998][T14993] netlink: 110 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.331249][T14992] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3306'. [ 551.381036][T14942] hsr_slave_0: entered promiscuous mode [ 551.415800][T14942] hsr_slave_1: entered promiscuous mode [ 551.441111][T14942] debugfs: 'hsr0' already exists in 'hsr' [ 551.446895][T14942] Cannot create hsr debugfs directory [ 551.603263][T14999] netlink: 'syz.6.3310': attribute type 32 has an invalid length. [ 551.624524][T14999] netlink: 'syz.6.3310': attribute type 33 has an invalid length. [ 551.642628][T14999] netlink: 'syz.6.3310': attribute type 35 has an invalid length. [ 551.654667][T14999] netlink: 'syz.6.3310': attribute type 37 has an invalid length. [ 551.664958][T14999] netlink: 'syz.6.3310': attribute type 39 has an invalid length. [ 551.673989][T14999] netlink: 'syz.6.3310': attribute type 40 has an invalid length. [ 551.682137][T14999] netlink: 'syz.6.3310': attribute type 41 has an invalid length. [ 551.691615][T14999] netlink: 'syz.6.3310': attribute type 44 has an invalid length. [ 551.703810][T14999] netlink: 'syz.6.3310': attribute type 46 has an invalid length. [ 551.712073][T14999] netlink: 2 bytes leftover after parsing attributes in process `syz.6.3310'. [ 552.297925][T14942] netdevsim netdevsim9 netdevsim0: renamed from eth0 [ 552.342901][T14942] netdevsim netdevsim9 netdevsim1: renamed from eth1 [ 552.375806][T14942] netdevsim netdevsim9 netdevsim2: renamed from eth2 [ 552.405283][T14942] netdevsim netdevsim9 netdevsim3: renamed from eth3 [ 552.660781][ T5841] Bluetooth: hci0: command tx timeout [ 552.817451][T14942] 8021q: adding VLAN 0 to HW filter on device bond0 [ 553.076240][T15030] netlink: 326 bytes leftover after parsing attributes in process `syz.8.3319'. [ 553.087705][T14942] 8021q: adding VLAN 0 to HW filter on device team0 [ 553.164557][ T2963] bridge0: port 1(bridge_slave_0) entered blocking state [ 553.171723][ T2963] bridge0: port 1(bridge_slave_0) entered forwarding state [ 553.351598][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 553.358742][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 554.171453][T14942] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 554.741221][ T5841] Bluetooth: hci0: command tx timeout [ 555.231575][T14942] veth0_vlan: entered promiscuous mode [ 555.286166][T14942] veth1_vlan: entered promiscuous mode [ 555.419272][T14942] veth0_macvtap: entered promiscuous mode [ 555.454815][T14942] veth1_macvtap: entered promiscuous mode [ 555.550944][T14942] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 555.597607][T14942] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 555.711056][ T2992] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 555.728100][ T2992] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 555.792363][ T2992] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 555.841140][ T2992] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 556.058150][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 556.095286][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 556.226098][ T2992] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 556.264748][ T2992] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 556.707772][T15102] tipc: Started in network mode [ 556.749822][T15102] tipc: Node identity ee00, cluster identity 4711 [ 556.756631][T15102] tipc: Node number set to 60928 [ 556.821965][ T5841] Bluetooth: hci0: command tx timeout [ 556.828825][T15101] delete_channel: no stack [ 557.363041][T15115] validate_nla: 1 callbacks suppressed [ 557.363058][T15115] netlink: 'syz.6.3349': attribute type 4 has an invalid length. [ 557.422786][T15115] __nla_validate_parse: 1 callbacks suppressed [ 557.422803][T15115] netlink: 314 bytes leftover after parsing attributes in process `syz.6.3349'. [ 557.440533][T15111] netlink: 'syz.5.3348': attribute type 33 has an invalid length. [ 557.503567][T15115] IPv6: NLM_F_CREATE should be specified when creating new route [ 557.528386][T15115] IPv6: Can't replace route, no match found [ 557.788564][T15117] FAULT_INJECTION: forcing a failure. [ 557.788564][T15117] name failslab, interval 1, probability 0, space 0, times 0 [ 557.856064][T15117] CPU: 1 UID: 0 PID: 15117 Comm: syz.8.3350 Tainted: G I syzkaller #0 PREEMPT(full) [ 557.856103][T15117] Tainted: [I]=FIRMWARE_WORKAROUND [ 557.856112][T15117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 557.856126][T15117] Call Trace: [ 557.856134][T15117] [ 557.856143][T15117] dump_stack_lvl+0x16c/0x1f0 [ 557.856179][T15117] should_fail_ex+0x512/0x640 [ 557.856209][T15117] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 557.856236][T15117] should_failslab+0xc2/0x120 [ 557.856268][T15117] kmem_cache_alloc_noprof+0x75/0x6e0 [ 557.856293][T15117] ? __kernfs_new_node+0xd2/0x8e0 [ 557.856328][T15117] ? __kernfs_new_node+0xd2/0x8e0 [ 557.856357][T15117] __kernfs_new_node+0xd2/0x8e0 [ 557.856391][T15117] ? __pfx___kernfs_new_node+0x10/0x10 [ 557.856429][T15117] ? find_held_lock+0x2b/0x80 [ 557.856455][T15117] ? kernfs_root+0xee/0x2a0 [ 557.856491][T15117] kernfs_new_node+0x13c/0x1e0 [ 557.856531][T15117] __kernfs_create_file+0x53/0x350 [ 557.856559][T15117] sysfs_add_file_mode_ns+0x207/0x3c0 [ 557.856596][T15117] internal_create_group+0x578/0xf30 [ 557.856635][T15117] ? __pfx_internal_create_group+0x10/0x10 [ 557.856680][T15117] ? kernfs_create_link+0x1bd/0x240 [ 557.856709][T15117] internal_create_groups+0x9d/0x150 [ 557.856745][T15117] device_add+0x77f/0x1aa0 [ 557.856779][T15117] ? __pfx_device_add+0x10/0x10 [ 557.856812][T15117] ? lockdep_init_map_type+0x5c/0x280 [ 557.856848][T15117] ? __init_waitqueue_head+0xca/0x150 [ 557.856893][T15117] netdev_register_kobject+0x1a9/0x3d0 [ 557.856933][T15117] register_netdevice+0x13dc/0x2270 [ 557.856971][T15117] ? __pfx_register_netdevice+0x10/0x10 [ 557.857012][T15117] ppp_dev_configure+0xa1e/0xd40 [ 557.857048][T15117] ppp_ioctl+0x170e/0x2880 [ 557.857076][T15117] ? find_held_lock+0x2b/0x80 [ 557.857100][T15117] ? __pfx_ppp_ioctl+0x10/0x10 [ 557.857132][T15117] ? __fget_files+0x20e/0x3c0 [ 557.857160][T15117] ? __pfx_ppp_ioctl+0x10/0x10 [ 557.857188][T15117] __x64_sys_ioctl+0x18b/0x210 [ 557.857226][T15117] do_syscall_64+0xcd/0xfa0 [ 557.857256][T15117] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 557.857281][T15117] RIP: 0033:0x7fadd918eec9 [ 557.857300][T15117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 557.857323][T15117] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 557.857345][T15117] RAX: ffffffffffffffda RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 557.857361][T15117] RDX: 0000000000000000 RSI: 00000000c004743e RDI: 0000000000000005 [ 557.857375][T15117] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 557.857389][T15117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 557.857403][T15117] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 557.857435][T15117] [ 558.557982][T15135] netlink: 17 bytes leftover after parsing attributes in process `syz.8.3357'. [ 558.581751][T15135] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3357'. [ 559.974987][T15161] FAULT_INJECTION: forcing a failure. [ 559.974987][T15161] name failslab, interval 1, probability 0, space 0, times 0 [ 560.133674][T15161] CPU: 1 UID: 0 PID: 15161 Comm: syz.8.3364 Tainted: G I syzkaller #0 PREEMPT(full) [ 560.133711][T15161] Tainted: [I]=FIRMWARE_WORKAROUND [ 560.133720][T15161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 560.133733][T15161] Call Trace: [ 560.133740][T15161] [ 560.133749][T15161] dump_stack_lvl+0x16c/0x1f0 [ 560.133780][T15161] should_fail_ex+0x512/0x640 [ 560.133808][T15161] ? __kmalloc_cache_noprof+0x5f/0x780 [ 560.133849][T15161] should_failslab+0xc2/0x120 [ 560.133880][T15161] __kmalloc_cache_noprof+0x72/0x780 [ 560.133919][T15161] ? io_uring_setup+0x278/0x20e0 [ 560.133949][T15161] ? io_uring_setup+0x278/0x20e0 [ 560.133973][T15161] io_uring_setup+0x278/0x20e0 [ 560.134002][T15161] ? __pfx_io_uring_setup+0x10/0x10 [ 560.134026][T15161] ? do_futex+0x122/0x350 [ 560.134058][T15161] ? __pfx_do_futex+0x10/0x10 [ 560.134092][T15161] ? find_held_lock+0x2b/0x80 [ 560.134128][T15161] ? xfd_validate_state+0x61/0x180 [ 560.134168][T15161] __x64_sys_io_uring_setup+0xc2/0x170 [ 560.134196][T15161] do_syscall_64+0xcd/0xfa0 [ 560.134224][T15161] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 560.134247][T15161] RIP: 0033:0x7fadd918eec9 [ 560.134265][T15161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 560.134287][T15161] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 560.134309][T15161] RAX: ffffffffffffffda RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 560.134324][T15161] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 560.134337][T15161] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 560.134351][T15161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 560.134364][T15161] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 560.134394][T15161] [ 561.627278][ C1] vcan0: j1939_tp_rxtimer: 0xffff8880331b4400: rx timeout, send abort [ 561.637331][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880331b4400: 0x0ffff: (3) A timeout occurred and this is the connection abort to close the session. [ 562.700176][T15201] netlink: 330 bytes leftover after parsing attributes in process `syz.9.3380'. [ 563.131496][T15203] netlink: 186 bytes leftover after parsing attributes in process `syz.9.3382'. [ 564.768300][T15219] netlink: 354 bytes leftover after parsing attributes in process `syz.8.3388'. [ 564.901234][T15221] netlink: zone id is out of range [ 564.914198][T15221] netlink: zone id is out of range [ 564.932882][T15221] netlink: zone id is out of range [ 564.949214][T15221] netlink: zone id is out of range [ 564.968414][T15221] netlink: zone id is out of range [ 564.987263][T15221] netlink: zone id is out of range [ 565.008583][T15221] netlink: zone id is out of range [ 565.020330][T15221] netlink: zone id is out of range [ 565.034191][T15221] netlink: zone id is out of range [ 565.044874][T15221] netlink: zone id is out of range [ 565.620853][T15233] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3401'. [ 565.833480][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805c539c00: rx timeout, send abort [ 565.841830][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88805c539c00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 567.642957][T15277] FAULT_INJECTION: forcing a failure. [ 567.642957][T15277] name failslab, interval 1, probability 0, space 0, times 0 [ 567.692102][T15277] CPU: 1 UID: 0 PID: 15277 Comm: syz.9.3411 Tainted: G I syzkaller #0 PREEMPT(full) [ 567.692137][T15277] Tainted: [I]=FIRMWARE_WORKAROUND [ 567.692146][T15277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 567.692159][T15277] Call Trace: [ 567.692165][T15277] [ 567.692173][T15277] dump_stack_lvl+0x16c/0x1f0 [ 567.692203][T15277] should_fail_ex+0x512/0x640 [ 567.692230][T15277] ? fs_reclaim_acquire+0xae/0x150 [ 567.692261][T15277] should_failslab+0xc2/0x120 [ 567.692293][T15277] kmem_cache_alloc_noprof+0x75/0x6e0 [ 567.692314][T15277] ? __pfx_map_id_range_down+0x10/0x10 [ 567.692348][T15277] ? security_inode_alloc+0x3b/0x2b0 [ 567.692385][T15277] ? security_inode_alloc+0x3b/0x2b0 [ 567.692415][T15277] security_inode_alloc+0x3b/0x2b0 [ 567.692447][T15277] inode_init_always_gfp+0xce4/0x1030 [ 567.692474][T15277] alloc_inode+0x86/0x240 [ 567.692503][T15277] new_inode+0x22/0x1c0 [ 567.692529][T15277] ? proc_lookup_de+0x201/0x360 [ 567.692583][T15277] proc_get_inode+0x1d/0x780 [ 567.692616][T15277] proc_lookup_de+0x236/0x360 [ 567.692654][T15277] proc_tgid_net_lookup+0x75/0x120 [ 567.692691][T15277] __lookup_slow+0x251/0x460 [ 567.692726][T15277] ? __pfx___lookup_slow+0x10/0x10 [ 567.692778][T15277] ? lookup_fast+0x156/0x610 [ 567.692819][T15277] walk_component+0x353/0x5b0 [ 567.692842][T15277] link_path_walk+0x627/0xe20 [ 567.692875][T15277] path_openat+0x1b0/0x2cb0 [ 567.692909][T15277] ? __pfx_path_openat+0x10/0x10 [ 567.692943][T15277] do_filp_open+0x20b/0x470 [ 567.692986][T15277] ? __pfx_do_filp_open+0x10/0x10 [ 567.693021][T15277] ? __pfx_kfree_link+0x10/0x10 [ 567.693077][T15277] ? alloc_fd+0x471/0x7d0 [ 567.693104][T15277] do_sys_openat2+0x11b/0x1d0 [ 567.693135][T15277] ? __pfx_do_sys_openat2+0x10/0x10 [ 567.693174][T15277] __x64_sys_openat+0x174/0x210 [ 567.693205][T15277] ? __pfx___x64_sys_openat+0x10/0x10 [ 567.693246][T15277] do_syscall_64+0xcd/0xfa0 [ 567.693271][T15277] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 567.693295][T15277] RIP: 0033:0x7f424678eec9 [ 567.693311][T15277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 567.693331][T15277] RSP: 002b:00007f4247703038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 567.693350][T15277] RAX: ffffffffffffffda RBX: 00007f42469e5fa0 RCX: 00007f424678eec9 [ 567.693363][T15277] RDX: 00000000001c9802 RSI: 0000200000000280 RDI: ffffffffffffff9c [ 567.693376][T15277] RBP: 00007f4246811f91 R08: 0000000000000000 R09: 0000000000000000 [ 567.693388][T15277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 567.693400][T15277] R13: 00007f42469e6038 R14: 00007f42469e5fa0 R15: 00007ffd6fa25d28 [ 567.693428][T15277] [ 569.394545][T15301] kvm: kvm [15299]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2 [ 570.413093][T15326] FAULT_INJECTION: forcing a failure. [ 570.413093][T15326] name failslab, interval 1, probability 0, space 0, times 0 [ 570.447143][T15326] CPU: 1 UID: 0 PID: 15326 Comm: syz.9.3431 Tainted: G I syzkaller #0 PREEMPT(full) [ 570.447181][T15326] Tainted: [I]=FIRMWARE_WORKAROUND [ 570.447190][T15326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 570.447204][T15326] Call Trace: [ 570.447211][T15326] [ 570.447220][T15326] dump_stack_lvl+0x16c/0x1f0 [ 570.447252][T15326] should_fail_ex+0x512/0x640 [ 570.447282][T15326] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 570.447309][T15326] should_failslab+0xc2/0x120 [ 570.447341][T15326] kmem_cache_alloc_noprof+0x75/0x6e0 [ 570.447364][T15326] ? copy_pid_ns+0x2cf/0xca0 [ 570.447396][T15326] ? copy_pid_ns+0x2cf/0xca0 [ 570.447420][T15326] copy_pid_ns+0x2cf/0xca0 [ 570.447445][T15326] ? __memcg_slab_post_alloc_hook+0x47c/0x940 [ 570.447480][T15326] ? __pfx_copy_pid_ns+0x10/0x10 [ 570.447510][T15326] ? rcu_is_watching+0x12/0xc0 [ 570.447536][T15326] ? copy_mnt_ns+0xac/0xac0 [ 570.447561][T15326] ? rcu_is_watching+0x12/0xc0 [ 570.447588][T15326] ? copy_ipcs+0xb6/0x550 [ 570.447625][T15326] create_new_namespaces+0x2aa/0xa90 [ 570.447660][T15326] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 570.447690][T15326] ksys_unshare+0x45b/0xa40 [ 570.447722][T15326] ? __pfx_ksys_unshare+0x10/0x10 [ 570.447756][T15326] ? xfd_validate_state+0x61/0x180 [ 570.447806][T15326] __x64_sys_unshare+0x31/0x40 [ 570.447837][T15326] do_syscall_64+0xcd/0xfa0 [ 570.447867][T15326] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 570.447892][T15326] RIP: 0033:0x7f424678eec9 [ 570.447910][T15326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 570.447933][T15326] RSP: 002b:00007f4247703038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 570.447955][T15326] RAX: ffffffffffffffda RBX: 00007f42469e5fa0 RCX: 00007f424678eec9 [ 570.447971][T15326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000080 [ 570.447997][T15326] RBP: 00007f4246811f91 R08: 0000000000000000 R09: 0000000000000000 [ 570.448011][T15326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 570.448025][T15326] R13: 00007f42469e6038 R14: 00007f42469e5fa0 R15: 00007ffd6fa25d28 [ 570.448066][T15326] [ 572.513721][T15348] netlink: 342 bytes leftover after parsing attributes in process `syz.6.3440'. [ 572.647114][T15355] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 572.731637][T15355] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3443'. [ 572.775987][T15355] unsupported nlmsg_type 40 [ 573.080393][T15361] netlink: 146 bytes leftover after parsing attributes in process `syz.8.3446'. [ 573.392552][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 573.399012][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 573.438852][T15362] i2c i2c-0: Failed to register i2c client card: at 0x01 (-16) [ 573.842568][T15376] FAULT_INJECTION: forcing a failure. [ 573.842568][T15376] name failslab, interval 1, probability 0, space 0, times 0 [ 573.946445][T15376] CPU: 1 UID: 0 PID: 15376 Comm: syz.9.3450 Tainted: G I syzkaller #0 PREEMPT(full) [ 573.946478][T15376] Tainted: [I]=FIRMWARE_WORKAROUND [ 573.946486][T15376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 573.946497][T15376] Call Trace: [ 573.946504][T15376] [ 573.946512][T15376] dump_stack_lvl+0x16c/0x1f0 [ 573.946539][T15376] should_fail_ex+0x512/0x640 [ 573.946572][T15376] ? __kmalloc_cache_noprof+0x5f/0x780 [ 573.946608][T15376] should_failslab+0xc2/0x120 [ 573.946635][T15376] __kmalloc_cache_noprof+0x72/0x780 [ 573.946671][T15376] ? resv_map_alloc+0x46/0x400 [ 573.946702][T15376] ? resv_map_alloc+0x46/0x400 [ 573.946728][T15376] resv_map_alloc+0x46/0x400 [ 573.946757][T15376] hugetlbfs_get_inode+0x33f/0x730 [ 573.946778][T15376] ? security_capable+0x7e/0x260 [ 573.946811][T15376] hugetlb_file_setup+0x38d/0x620 [ 573.946836][T15376] newseg+0xa74/0xe60 [ 573.946881][T15376] ? __pfx_newseg+0x10/0x10 [ 573.946901][T15376] ? find_held_lock+0x2b/0x80 [ 573.946926][T15376] ? ipcget+0xa98/0xfa0 [ 573.946954][T15376] ipcget+0xaf3/0xfa0 [ 573.946988][T15376] ? __pfx___might_resched+0x10/0x10 [ 573.947013][T15376] ? __pfx_ipcget+0x10/0x10 [ 573.947038][T15376] ? __x64_sys_futex+0x1e0/0x4c0 [ 573.947070][T15376] ? __x64_sys_futex+0x1e9/0x4c0 [ 573.947107][T15376] __x64_sys_shmget+0x13b/0x1b0 [ 573.947132][T15376] ? __pfx___x64_sys_shmget+0x10/0x10 [ 573.947161][T15376] ? rcu_is_watching+0x12/0xc0 [ 573.947189][T15376] do_syscall_64+0xcd/0xfa0 [ 573.947219][T15376] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.947243][T15376] RIP: 0033:0x7f424678eec9 [ 573.947261][T15376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 573.947284][T15376] RSP: 002b:00007f42476e2038 EFLAGS: 00000246 ORIG_RAX: 000000000000001d [ 573.947307][T15376] RAX: ffffffffffffffda RBX: 00007f42469e6090 RCX: 00007f424678eec9 [ 573.947322][T15376] RDX: 000000000000ffff RSI: 0000000000000006 RDI: 0000000000000004 [ 573.947337][T15376] RBP: 00007f4246811f91 R08: 0000000000000000 R09: 0000000000000000 [ 573.947351][T15376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 573.947365][T15376] R13: 00007f42469e6128 R14: 00007f42469e6090 R15: 00007ffd6fa25d28 [ 573.947397][T15376] [ 575.159908][T15391] netlink: 25 bytes leftover after parsing attributes in process `syz.5.3457'. [ 575.558091][T15399] netlink: 334 bytes leftover after parsing attributes in process `syz.6.3467'. [ 575.583234][T15401] netlink: 326 bytes leftover after parsing attributes in process `syz.9.3460'. [ 576.198354][T15413] FAULT_INJECTION: forcing a failure. [ 576.198354][T15413] name fail_futex, interval 1, probability 0, space 0, times 0 [ 576.262576][T15413] CPU: 1 UID: 0 PID: 15413 Comm: syz.8.3464 Tainted: G I syzkaller #0 PREEMPT(full) [ 576.262612][T15413] Tainted: [I]=FIRMWARE_WORKAROUND [ 576.262620][T15413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 576.262633][T15413] Call Trace: [ 576.262639][T15413] [ 576.262647][T15413] dump_stack_lvl+0x16c/0x1f0 [ 576.262674][T15413] should_fail_ex+0x512/0x640 [ 576.262704][T15413] get_futex_key+0x1d0/0x1560 [ 576.262733][T15413] ? __pfx_get_futex_key+0x10/0x10 [ 576.262769][T15413] futex_wait_setup+0x9d/0x550 [ 576.262808][T15413] __futex_wait+0x193/0x2f0 [ 576.262842][T15413] ? __pfx___futex_wait+0x10/0x10 [ 576.262878][T15413] ? __pfx_futex_wake_mark+0x10/0x10 [ 576.262915][T15413] ? futex_private_hash_put+0x176/0x300 [ 576.262944][T15413] ? futex_private_hash_put+0x18a/0x300 [ 576.262972][T15413] futex_wait+0xe8/0x380 [ 576.263003][T15413] ? __pfx_futex_wait+0x10/0x10 [ 576.263041][T15413] ? __lock_acquire+0x62e/0x1ce0 [ 576.263076][T15413] do_futex+0x229/0x350 [ 576.263104][T15413] ? __pfx_do_futex+0x10/0x10 [ 576.263133][T15413] ? find_held_lock+0x2b/0x80 [ 576.263156][T15413] __x64_sys_futex+0x1e0/0x4c0 [ 576.263186][T15413] ? __fget_files+0x20e/0x3c0 [ 576.263205][T15413] ? __pfx___x64_sys_futex+0x10/0x10 [ 576.263237][T15413] ? fdget+0x187/0x210 [ 576.263260][T15413] do_syscall_64+0xcd/0xfa0 [ 576.263284][T15413] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.263305][T15413] RIP: 0033:0x7fadd918eec9 [ 576.263320][T15413] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.263340][T15413] RSP: 002b:00007fadda0dd0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 576.263359][T15413] RAX: ffffffffffffffda RBX: 00007fadd93e5fa8 RCX: 00007fadd918eec9 [ 576.263372][T15413] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fadd93e5fa8 [ 576.263384][T15413] RBP: 00007fadd93e5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 576.263403][T15413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.263415][T15413] R13: 00007fadd93e6038 R14: 00007fff4e661420 R15: 00007fff4e661508 [ 576.263443][T15413] [ 579.582261][T15453] netlink: 'syz.8.3481': attribute type 21 has an invalid length. [ 579.619970][T15453] netlink: 326 bytes leftover after parsing attributes in process `syz.8.3481'. [ 580.695993][T15471] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3488'. [ 581.039507][T15476] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3490'. [ 581.104984][T15476] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3490'. [ 581.148960][T15476] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3490'. [ 581.230198][T15480] netlink: 'syz.8.3490': attribute type 3 has an invalid length. [ 581.237942][T15480] netlink: 294 bytes leftover after parsing attributes in process `syz.8.3490'. [ 581.315114][T15476] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3490'. [ 581.358472][T15476] netlink: 342 bytes leftover after parsing attributes in process `syz.8.3490'. [ 582.749982][T15502] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3497'. [ 584.334081][T15520] serio: Serial port pty233 [ 584.622279][T15525] netlink: 25 bytes leftover after parsing attributes in process `syz.5.3513'. [ 585.148883][T15538] FAULT_INJECTION: forcing a failure. [ 585.148883][T15538] name failslab, interval 1, probability 0, space 0, times 0 [ 585.240545][T15538] CPU: 1 UID: 0 PID: 15538 Comm: syz.8.3507 Tainted: G I syzkaller #0 PREEMPT(full) [ 585.240578][T15538] Tainted: [I]=FIRMWARE_WORKAROUND [ 585.240586][T15538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 585.240598][T15538] Call Trace: [ 585.240606][T15538] [ 585.240614][T15538] dump_stack_lvl+0x16c/0x1f0 [ 585.240642][T15538] should_fail_ex+0x512/0x640 [ 585.240667][T15538] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 585.240697][T15538] should_failslab+0xc2/0x120 [ 585.240724][T15538] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 585.240751][T15538] ? xfrm_sysctl_init+0x10a/0x2d0 [ 585.240778][T15538] ? kmemdup_noprof+0x29/0x60 [ 585.240798][T15538] kmemdup_noprof+0x29/0x60 [ 585.240819][T15538] xfrm_sysctl_init+0x10a/0x2d0 [ 585.240844][T15538] xfrm_net_init+0x842/0xcc0 [ 585.240870][T15538] ? __pfx_xfrm_net_init+0x10/0x10 [ 585.240890][T15538] ops_init+0x1e2/0x5f0 [ 585.240918][T15538] setup_net+0x100/0x390 [ 585.240944][T15538] ? __pfx_setup_net+0x10/0x10 [ 585.240971][T15538] ? debug_mutex_init+0x37/0x70 [ 585.240995][T15538] copy_net_ns+0x2f8/0x690 [ 585.241025][T15538] create_new_namespaces+0x3ea/0xa90 [ 585.241062][T15538] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 585.241089][T15538] ksys_unshare+0x45b/0xa40 [ 585.241117][T15538] ? __pfx_ksys_unshare+0x10/0x10 [ 585.241146][T15538] ? xfd_validate_state+0x61/0x180 [ 585.241184][T15538] __x64_sys_unshare+0x31/0x40 [ 585.241210][T15538] do_syscall_64+0xcd/0xfa0 [ 585.241236][T15538] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 585.241257][T15538] RIP: 0033:0x7fadd918eec9 [ 585.241273][T15538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 585.241293][T15538] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 585.241312][T15538] RAX: ffffffffffffffda RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 585.241326][T15538] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042000080 [ 585.241338][T15538] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 585.241350][T15538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 585.241361][T15538] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 585.241389][T15538] [ 587.782539][T15580] netlink: 346 bytes leftover after parsing attributes in process `syz.5.3520'. [ 588.078495][T15582] netlink: 342 bytes leftover after parsing attributes in process `syz.9.3521'. [ 588.561309][T15589] netlink: 338 bytes leftover after parsing attributes in process `syz.5.3523'. [ 588.632894][T15589] netlink: 342 bytes leftover after parsing attributes in process `syz.5.3523'. [ 588.880535][T15595] FAULT_INJECTION: forcing a failure. [ 588.880535][T15595] name failslab, interval 1, probability 0, space 0, times 0 [ 588.925181][T15600] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3526'. [ 589.032709][T15595] CPU: 1 UID: 0 PID: 15595 Comm: syz.9.3524 Tainted: G I syzkaller #0 PREEMPT(full) [ 589.032745][T15595] Tainted: [I]=FIRMWARE_WORKAROUND [ 589.032753][T15595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 589.032766][T15595] Call Trace: [ 589.032773][T15595] [ 589.032781][T15595] dump_stack_lvl+0x16c/0x1f0 [ 589.032810][T15595] should_fail_ex+0x512/0x640 [ 589.032837][T15595] ? __kmalloc_noprof+0xca/0x880 [ 589.032874][T15595] should_failslab+0xc2/0x120 [ 589.032903][T15595] __kmalloc_noprof+0xdd/0x880 [ 589.032937][T15595] ? __register_sysctl_table+0xb3/0x1900 [ 589.032975][T15595] ? __register_sysctl_table+0xb3/0x1900 [ 589.033006][T15595] __register_sysctl_table+0xb3/0x1900 [ 589.033038][T15595] ? is_module_address+0x5f/0xf0 [ 589.033074][T15595] ? __pfx___register_sysctl_table+0x10/0x10 [ 589.033105][T15595] ? is_module_address+0x69/0xf0 [ 589.033135][T15595] ? register_net_sysctl_sz+0x228/0x3e0 [ 589.033168][T15595] ? __asan_memcpy+0x3c/0x60 [ 589.033192][T15595] xfrm4_net_init+0xf0/0x1c0 [ 589.033227][T15595] ? __pfx_xfrm4_net_init+0x10/0x10 [ 589.033261][T15595] ops_init+0x1e2/0x5f0 [ 589.033293][T15595] setup_net+0x100/0x390 [ 589.033320][T15595] ? __pfx_setup_net+0x10/0x10 [ 589.033348][T15595] ? debug_mutex_init+0x37/0x70 [ 589.033374][T15595] copy_net_ns+0x2f8/0x690 [ 589.033406][T15595] create_new_namespaces+0x3ea/0xa90 [ 589.033437][T15595] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 589.033465][T15595] ksys_unshare+0x45b/0xa40 [ 589.033497][T15595] ? __pfx_ksys_unshare+0x10/0x10 [ 589.033528][T15595] ? xfd_validate_state+0x61/0x180 [ 589.033567][T15595] __x64_sys_unshare+0x31/0x40 [ 589.033597][T15595] do_syscall_64+0xcd/0xfa0 [ 589.033624][T15595] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.033652][T15595] RIP: 0033:0x7f424678eec9 [ 589.033680][T15595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.033701][T15595] RSP: 002b:00007f4247703038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 589.033720][T15595] RAX: ffffffffffffffda RBX: 00007f42469e5fa0 RCX: 00007f424678eec9 [ 589.033733][T15595] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042000080 [ 589.033745][T15595] RBP: 00007f4246811f91 R08: 0000000000000000 R09: 0000000000000000 [ 589.033757][T15595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 589.033769][T15595] R13: 00007f42469e6038 R14: 00007f42469e5fa0 R15: 00007ffd6fa25d28 [ 589.033797][T15595] [ 589.813088][T15613] FAULT_INJECTION: forcing a failure. [ 589.813088][T15613] name failslab, interval 1, probability 0, space 0, times 0 [ 589.863823][T15613] CPU: 1 UID: 0 PID: 15613 Comm: syz.8.3530 Tainted: G I syzkaller #0 PREEMPT(full) [ 589.863857][T15613] Tainted: [I]=FIRMWARE_WORKAROUND [ 589.863864][T15613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 589.863876][T15613] Call Trace: [ 589.863883][T15613] [ 589.863891][T15613] dump_stack_lvl+0x16c/0x1f0 [ 589.863918][T15613] should_fail_ex+0x512/0x640 [ 589.863943][T15613] ? kmem_cache_alloc_noprof+0x62/0x6e0 [ 589.863967][T15613] should_failslab+0xc2/0x120 [ 589.863995][T15613] kmem_cache_alloc_noprof+0x75/0x6e0 [ 589.864015][T15613] ? security_file_alloc+0x34/0x2b0 [ 589.864040][T15613] ? security_file_alloc+0x34/0x2b0 [ 589.864059][T15613] security_file_alloc+0x34/0x2b0 [ 589.864078][T15613] init_file+0x93/0x4c0 [ 589.864114][T15613] alloc_empty_file+0x73/0x1e0 [ 589.864143][T15613] alloc_file_pseudo+0x13a/0x230 [ 589.864174][T15613] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 589.864213][T15613] sock_alloc_file+0x50/0x210 [ 589.864241][T15613] do_accept+0x240/0x530 [ 589.864259][T15613] ? do_raw_spin_lock+0x12c/0x2b0 [ 589.864293][T15613] ? __pfx_do_accept+0x10/0x10 [ 589.864329][T15613] __sys_accept4+0x100/0x1c0 [ 589.864348][T15613] ? __pfx___sys_accept4+0x10/0x10 [ 589.864374][T15613] __x64_sys_accept+0x74/0xb0 [ 589.864392][T15613] ? lockdep_hardirqs_on+0x7c/0x110 [ 589.864415][T15613] do_syscall_64+0xcd/0xfa0 [ 589.864440][T15613] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 589.864461][T15613] RIP: 0033:0x7fadd918eec9 [ 589.864476][T15613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 589.864496][T15613] RSP: 002b:00007fadda0dd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002b [ 589.864520][T15613] RAX: ffffffffffffffda RBX: 00007fadd93e5fa0 RCX: 00007fadd918eec9 [ 589.864534][T15613] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 589.864547][T15613] RBP: 00007fadd9211f91 R08: 0000000000000000 R09: 0000000000000000 [ 589.864559][T15613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 589.864572][T15613] R13: 00007fadd93e6038 R14: 00007fadd93e5fa0 R15: 00007fff4e661508 [ 589.864599][T15613] [ 592.797387][T15652] input: f¬ as /devices/virtual/input/input10 [ 607.421940][T15672] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 607.432659][T15672] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 607.440710][T15672] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 607.486960][T15672] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 607.504450][T15672] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 608.105206][ T2974] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.482641][ T2974] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 608.900257][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 608.914184][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 608.921957][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 608.930563][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 608.939915][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 609.059326][ T2974] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 609.222653][T15671] chnl_net:caif_netlink_parms(): no params data found [ 609.246415][ C1] net_ratelimit: 454 callbacks suppressed [ 609.246431][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.264687][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.277004][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.289190][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.301335][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.313540][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.325675][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.337836][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.349983][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 609.362158][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.256463][ C1] net_ratelimit: 19295 callbacks suppressed [ 614.256485][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.274688][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.286849][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.299044][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.311352][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.323526][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.335689][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.347921][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.360126][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 614.372332][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.269011][ C1] net_ratelimit: 19252 callbacks suppressed [ 619.269032][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.287232][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.299425][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.311716][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.323909][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.336090][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.348291][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.360437][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.373144][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 619.385377][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 621.991135][T15684] FAULT_INJECTION: forcing a failure. [ 621.991135][T15684] name fail_futex, interval 1, probability 0, space 0, times 0 [ 623.911253][ C1] sched: DL replenish lagged too much [ 624.281583][ C1] net_ratelimit: 18824 callbacks suppressed [ 624.281603][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.299765][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.311990][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.324167][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.336404][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.348650][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.360871][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.373059][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.385249][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 624.397541][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 628.445937][ T5841] Bluetooth: hci4: command tx timeout [ 628.467696][ T5841] Bluetooth: hci1: command tx timeout [ 629.293943][ C1] net_ratelimit: 17978 callbacks suppressed [ 629.293963][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.312231][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.324447][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.336732][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.348978][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.361197][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.373365][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.385560][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.397779][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 629.410008][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 631.810936][ T52] Bluetooth: hci1: command tx timeout [ 631.826576][ T52] Bluetooth: hci4: command tx timeout [ 631.832003][ T52] Bluetooth: hci3: command 0x0406 tx timeout [ 634.306605][ C1] net_ratelimit: 17030 callbacks suppressed [ 634.306625][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.324913][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.337223][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.349466][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.361705][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.373936][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.386160][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.398495][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.410790][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 634.423091][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 638.501638][T15672] Bluetooth: hci4: command tx timeout [ 638.611848][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 638.626453][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 639.319070][ C1] net_ratelimit: 16423 callbacks suppressed [ 639.319091][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.337309][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.349967][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.362186][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.374421][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.386638][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.398898][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.411197][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.423412][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 639.435609][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.331651][ C1] net_ratelimit: 18412 callbacks suppressed [ 644.331671][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.349807][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.362001][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.374257][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.386465][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.398698][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.410926][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.423119][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.435352][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 644.447541][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 648.841356][T15672] Bluetooth: hci1: command tx timeout [ 649.344164][ C1] net_ratelimit: 18472 callbacks suppressed [ 649.344183][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.362355][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.374557][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.386810][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.399028][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.411321][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.423498][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.435767][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.448013][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 649.460239][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.356641][ C1] net_ratelimit: 18939 callbacks suppressed [ 654.356660][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.374832][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.387079][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.399305][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.411523][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.423734][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.436692][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.448911][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.461090][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 654.473299][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.369168][ C1] net_ratelimit: 18702 callbacks suppressed [ 659.369190][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.387430][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 659.399733][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.411940][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 659.424207][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.436435][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 659.448663][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.460920][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 659.473141][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 659.485349][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.381553][ C1] net_ratelimit: 18421 callbacks suppressed [ 664.381579][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.399811][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 664.412066][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.424338][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 664.436574][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.448926][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 664.462007][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.474350][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 664.486603][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 664.498872][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.394100][ C1] net_ratelimit: 18379 callbacks suppressed [ 669.394122][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.412356][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 669.424705][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.436989][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 669.449257][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.461527][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 669.473791][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.486037][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 669.498297][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 669.510541][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.406558][ C1] net_ratelimit: 18519 callbacks suppressed [ 674.406578][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.424779][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 674.437049][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.449280][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 674.461524][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.473785][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 674.486023][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.498796][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 674.511063][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 674.523346][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.419057][ C1] net_ratelimit: 18393 callbacks suppressed [ 679.419078][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.437691][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 679.450024][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.462271][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 679.474544][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.486799][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 679.499095][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.511355][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 679.523663][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 679.535916][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 680.995931][T15672] Bluetooth: hci1: command tx timeout [ 684.431498][ C1] net_ratelimit: 11059 callbacks suppressed [ 684.431519][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 684.449708][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 684.462612][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 684.474988][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 684.489176][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 684.501517][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 684.514427][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 684.526675][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 684.539544][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 684.551784][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 689.443997][ C1] net_ratelimit: 8164 callbacks suppressed [ 689.444018][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 689.462170][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 689.475056][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 689.487336][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 689.500285][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 689.512547][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 689.526760][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 689.539050][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 689.551977][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 689.564267][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 694.457406][ C1] net_ratelimit: 8172 callbacks suppressed [ 694.457427][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 694.475579][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 694.488540][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 694.500815][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 694.513740][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 694.526032][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 694.538990][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 694.551299][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 694.564254][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 694.576612][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 699.469442][ C1] net_ratelimit: 8146 callbacks suppressed [ 699.469461][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 699.487690][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 699.500651][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 699.512933][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 699.525871][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 699.538276][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 699.551254][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 699.563555][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 699.576458][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 699.588704][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 704.481878][ C1] net_ratelimit: 8260 callbacks suppressed [ 704.481898][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 704.500184][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 704.513020][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 704.525275][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 704.538202][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 704.550442][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 704.563287][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 704.575548][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 704.588506][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 704.600764][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 709.494427][ C1] net_ratelimit: 8538 callbacks suppressed [ 709.494446][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 709.512616][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 709.525472][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 709.537749][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 709.550488][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 709.562756][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 709.575508][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 709.587779][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 709.600656][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 709.612885][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 712.855588][T15672] Bluetooth: hci4: command tx timeout [ 714.506809][ C1] net_ratelimit: 8538 callbacks suppressed [ 714.506830][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 714.525031][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 714.537962][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 714.550215][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 714.563118][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 714.575367][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 714.588362][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 714.600639][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 714.613509][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 714.625781][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.519179][ C1] net_ratelimit: 8383 callbacks suppressed [ 719.519195][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.537989][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 719.550214][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.563102][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 719.575329][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.588203][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 719.600453][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.613204][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 719.625441][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 719.638375][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.532052][ C1] net_ratelimit: 8331 callbacks suppressed [ 724.532070][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.550309][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 724.563227][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.575500][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 724.588435][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.600677][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 724.613602][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.625884][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 724.639873][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 724.652291][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 729.544820][ C1] net_ratelimit: 8422 callbacks suppressed [ 729.544838][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 729.563008][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 729.575755][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 729.588015][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 729.600890][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 729.613098][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 729.626012][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 729.638282][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 729.651187][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 729.663483][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.556551][ C1] net_ratelimit: 8235 callbacks suppressed [ 734.556573][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.575918][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 734.588199][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.601124][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 734.613400][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.626327][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 734.638580][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.651502][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 734.663751][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 734.676637][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.569064][ C1] net_ratelimit: 8075 callbacks suppressed [ 739.569085][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.587243][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 739.600173][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.612428][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 739.625446][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.637805][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 739.650805][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.663142][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 739.676088][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 739.688394][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 743.340886][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 743.347872][ C1] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P14919/1:b..l P15689/1:b..l P1/1:b..l [ 743.358447][ C1] rcu: (detected by 1, t=10502 jiffies, g=96153, q=462 ncpus=1) [ 743.366163][ C1] task:init state:R running task stack:21400 pid:1 tgid:1 ppid:0 task_flags:0x400100 flags:0x00080001 [ 743.380388][ C1] Call Trace: [ 743.383682][ C1] [ 743.386620][ C1] __schedule+0x1190/0x5de0 [ 743.391138][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 743.396099][ C1] ? __pfx___schedule+0x10/0x10 [ 743.400949][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 743.405918][ C1] ? mark_held_locks+0x49/0x80 [ 743.410691][ C1] preempt_schedule_irq+0x51/0x90 [ 743.415724][ C1] irqentry_exit+0x36/0x90 [ 743.420147][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 743.426137][ C1] RIP: 0010:bpf_ksym_find+0x0/0x1c0 [ 743.431346][ C1] Code: df e8 14 05 58 00 eb ac 48 89 df e8 0a 05 58 00 eb d4 e8 03 05 58 00 eb af 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <41> 57 41 56 41 55 49 bd 00 00 00 00 00 fc ff df 41 54 49 89 fc 55 [ 743.450959][ C1] RSP: 0018:ffffc90000067848 EFLAGS: 00000293 [ 743.457027][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff81cc1fd2 [ 743.464999][ C1] RDX: ffff888140a98000 RSI: ffffffff81cc1f70 RDI: 00007f91bdb0ec3a [ 743.472975][ C1] RBP: 00007f91bdb0ec3a R08: 0000000000000001 R09: 0000000000000000 [ 743.480949][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81a6e560 [ 743.488923][ C1] R13: ffffc90000067968 R14: 0000000000000000 R15: ffff888140a98000 [ 743.496900][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 743.503090][ C1] ? is_bpf_text_address+0xb2/0x1a0 [ 743.508304][ C1] ? is_bpf_text_address+0x50/0x1a0 [ 743.513522][ C1] is_bpf_text_address+0x58/0x1a0 [ 743.518558][ C1] kernel_text_address+0x8d/0x100 [ 743.523600][ C1] __kernel_text_address+0xd/0x40 [ 743.528624][ C1] unwind_get_return_address+0x59/0xa0 [ 743.534092][ C1] arch_stack_walk+0xa6/0x100 [ 743.538789][ C1] stack_trace_save+0x8e/0xc0 [ 743.543477][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 743.548904][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 743.553879][ C1] save_stack+0x160/0x1f0 [ 743.558213][ C1] ? __pfx_save_stack+0x10/0x10 [ 743.563066][ C1] ? __free_frozen_pages+0x7df/0x1160 [ 743.568451][ C1] ? qlist_free_all+0x4d/0x120 [ 743.573242][ C1] ? kasan_quarantine_reduce+0x195/0x1e0 [ 743.578881][ C1] ? __kasan_kmalloc+0x8a/0xb0 [ 743.583651][ C1] ? task_numa_work+0x1001/0x1970 [ 743.588683][ C1] ? task_work_run+0x150/0x240 [ 743.593460][ C1] ? exit_to_user_mode_loop+0xec/0x130 [ 743.598932][ C1] ? do_syscall_64+0x426/0xfa0 [ 743.603703][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.609782][ C1] ? page_ext_put+0x3e/0xd0 [ 743.614307][ C1] __reset_page_owner+0x84/0x1a0 [ 743.619257][ C1] __free_frozen_pages+0x7df/0x1160 [ 743.624489][ C1] qlist_free_all+0x4d/0x120 [ 743.629094][ C1] kasan_quarantine_reduce+0x195/0x1e0 [ 743.634563][ C1] __kasan_kmalloc+0x8a/0xb0 [ 743.639155][ C1] task_numa_work+0x1001/0x1970 [ 743.644025][ C1] ? __pfx_task_numa_work+0x10/0x10 [ 743.649229][ C1] ? task_mm_cid_work+0x704/0x900 [ 743.654270][ C1] ? __pfx___might_resched+0x10/0x10 [ 743.659574][ C1] ? rcu_is_watching+0x12/0xc0 [ 743.664371][ C1] task_work_run+0x150/0x240 [ 743.668979][ C1] ? __pfx_task_work_run+0x10/0x10 [ 743.674101][ C1] ? __pfx_do_faccessat+0x10/0x10 [ 743.679140][ C1] exit_to_user_mode_loop+0xec/0x130 [ 743.684442][ C1] do_syscall_64+0x426/0xfa0 [ 743.689045][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 743.694951][ C1] RIP: 0033:0x7f91bdb0ec3a [ 743.699368][ C1] RSP: 002b:00007fff266f23e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000101 [ 743.707787][ C1] RAX: 0000000000000003 RBX: 00007f91bdbb3200 RCX: 00007f91bdb0ec3a [ 743.715775][ C1] RDX: 0000000000080000 RSI: 00007f91bdbb3200 RDI: 00000000ffffff9c [ 743.723760][ C1] RBP: 00007f91bdbae0a8 R08: 0000000000000000 R09: 0000000000000000 [ 743.731749][ C1] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 743.739745][ C1] R13: 0000000000000000 R14: 0000000000001b19 R15: 0000563a675efd98 [ 743.747761][ C1] [ 743.750790][ C1] task:udevd state:R running task stack:27192 pid:15689 tgid:15689 ppid:5201 task_flags:0x40014c flags:0x00080001 [ 743.764323][ C1] Call Trace: [ 743.767620][ C1] [ 743.770563][ C1] __schedule+0x1190/0x5de0 [ 743.775093][ C1] ? __pfx___schedule+0x10/0x10 [ 743.779959][ C1] ? mark_held_locks+0x49/0x80 [ 743.784765][ C1] preempt_schedule_irq+0x51/0x90 [ 743.789809][ C1] irqentry_exit+0x36/0x90 [ 743.794250][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 743.800271][ C1] RIP: 0010:lock_acquire+0x62/0x350 [ 743.805493][ C1] Code: f1 0b 12 83 f8 07 0f 87 bc 02 00 00 89 c0 48 0f a3 05 22 94 eb 0e 0f 82 74 02 00 00 8b 35 7a c4 eb 0e 85 f6 0f 85 8d 00 00 00 <48> 8b 44 24 30 65 48 2b 05 39 f1 0b 12 0f 85 c7 02 00 00 48 83 c4 [ 743.825450][ C1] RSP: 0018:ffffc90003eff3b8 EFLAGS: 00000206 [ 743.831523][ C1] RAX: 0000000000000046 RBX: ffffffff8e3c4320 RCX: 00000000d63968bf [ 743.839502][ C1] RDX: 0000000000000000 RSI: ffffffff8dad9f37 RDI: ffffffff8bf1d8c0 [ 743.847474][ C1] RBP: 0000000000000002 R08: 01feeab069f3d1a9 R09: 0000000000000000 [ 743.855446][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: 0000000000000000 [ 743.863418][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 743.871422][ C1] ? unwind_next_frame+0x3f4/0x20a0 [ 743.876628][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 743.882793][ C1] unwind_next_frame+0xd1/0x20a0 [ 743.887735][ C1] ? unwind_next_frame+0xbd/0x20a0 [ 743.892851][ C1] ? free_unref_folios+0xa31/0x1610 [ 743.898086][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 743.904250][ C1] arch_stack_walk+0x94/0x100 [ 743.908938][ C1] ? free_unref_folios+0xa31/0x1610 [ 743.914159][ C1] stack_trace_save+0x8e/0xc0 [ 743.918869][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 743.924248][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 743.929226][ C1] save_stack+0x160/0x1f0 [ 743.933568][ C1] ? __pfx_save_stack+0x10/0x10 [ 743.938424][ C1] ? free_unref_folios+0xa31/0x1610 [ 743.943642][ C1] ? page_ext_put+0x3e/0xd0 [ 743.948154][ C1] __reset_page_owner+0x84/0x1a0 [ 743.953105][ C1] free_unref_folios+0xa31/0x1610 [ 743.958159][ C1] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 743.963971][ C1] folios_put_refs+0x4be/0x750 [ 743.968746][ C1] ? __pfx_folios_put_refs+0x10/0x10 [ 743.974051][ C1] free_pages_and_swap_cache+0x245/0x4a0 [ 743.979690][ C1] ? __pfx_free_pages_and_swap_cache+0x10/0x10 [ 743.985883][ C1] ? __pfx___might_resched+0x10/0x10 [ 743.991174][ C1] __tlb_batch_free_encoded_pages+0xf9/0x290 [ 743.997177][ C1] tlb_finish_mmu+0x168/0x7c0 [ 744.001897][ C1] exit_mmap+0x3fc/0xb90 [ 744.006155][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 744.010951][ C1] ? __lock_acquire+0xb97/0x1ce0 [ 744.015917][ C1] ? arch_uprobe_clear_state+0x16/0x150 [ 744.021488][ C1] __mmput+0x12a/0x410 [ 744.025564][ C1] mmput+0x62/0x70 [ 744.029309][ C1] do_exit+0x7c7/0x2bf0 [ 744.033477][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 744.038513][ C1] ? __pfx_do_exit+0x10/0x10 [ 744.043115][ C1] ? rcu_is_watching+0x12/0xc0 [ 744.047891][ C1] do_group_exit+0xd3/0x2a0 [ 744.052410][ C1] __x64_sys_exit_group+0x3e/0x50 [ 744.057443][ C1] x64_sys_call+0x150b/0x1730 [ 744.062128][ C1] do_syscall_64+0xcd/0xfa0 [ 744.066644][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.072545][ C1] RIP: 0033:0x7f1d4d6f16c5 [ 744.076960][ C1] RSP: 002b:00007ffc3dabedf8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 744.085381][ C1] RAX: ffffffffffffffda RBX: 000055abd3591b20 RCX: 00007f1d4d6f16c5 [ 744.093364][ C1] RDX: 00000000000000e7 RSI: fffffffffffffe68 RDI: 0000000000000000 [ 744.101437][ C1] RBP: 000055abd357f910 R08: 0000000000000000 R09: 0000000000000000 [ 744.109415][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 744.117396][ C1] R13: 00007ffc3dabee40 R14: 0000000000000000 R15: 0000000000000000 [ 744.125395][ C1] [ 744.128421][ C1] task:syz-executor state:R running task stack:25912 pid:14919 tgid:14919 ppid:5818 task_flags:0x40050c flags:0x00080002 [ 744.141931][ C1] Call Trace: [ 744.145208][ C1] [ 744.148176][ C1] __schedule+0x1190/0x5de0 [ 744.152696][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 744.157674][ C1] ? __pfx___schedule+0x10/0x10 [ 744.162546][ C1] ? lock_acquire+0x179/0x350 [ 744.167276][ C1] ? mark_held_locks+0x49/0x80 [ 744.172077][ C1] ? const_folio_flags+0x5b/0x100 [ 744.177111][ C1] ? preempt_schedule_thunk+0x16/0x30 [ 744.182504][ C1] preempt_schedule_common+0x44/0xc0 [ 744.187809][ C1] preempt_schedule_thunk+0x16/0x30 [ 744.193030][ C1] _raw_spin_unlock+0x3e/0x50 [ 744.197711][ C1] unmap_page_range+0xf71/0x41b0 [ 744.202689][ C1] ? __pfx_unmap_page_range+0x10/0x10 [ 744.208077][ C1] ? mas_next_slot+0x12d3/0x1cb0 [ 744.213030][ C1] ? uprobe_munmap+0x20/0x600 [ 744.217720][ C1] unmap_single_vma.constprop.0+0x153/0x240 [ 744.223646][ C1] unmap_vmas+0x218/0x470 [ 744.228108][ C1] ? __pfx_unmap_vmas+0x10/0x10 [ 744.233010][ C1] exit_mmap+0x1b2/0xb90 [ 744.237282][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 744.242079][ C1] ? __lock_acquire+0xb97/0x1ce0 [ 744.247049][ C1] ? arch_uprobe_clear_state+0x16/0x150 [ 744.252641][ C1] __mmput+0x12a/0x410 [ 744.256809][ C1] mmput+0x62/0x70 [ 744.260531][ C1] do_exit+0x7c7/0x2bf0 [ 744.264705][ C1] ? find_held_lock+0x2b/0x80 [ 744.269387][ C1] ? __pfx_do_exit+0x10/0x10 [ 744.273986][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 744.279020][ C1] ? find_held_lock+0x2b/0x80 [ 744.283704][ C1] do_group_exit+0xd3/0x2a0 [ 744.288221][ C1] get_signal+0x2671/0x26d0 [ 744.292739][ C1] ? css_rstat_updated+0x1c2/0x510 [ 744.297858][ C1] ? __pfx_get_signal+0x10/0x10 [ 744.302721][ C1] ? __do_sys_wait4+0xd1/0x170 [ 744.307505][ C1] arch_do_signal_or_restart+0x8f/0x790 [ 744.313062][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 744.319241][ C1] exit_to_user_mode_loop+0x85/0x130 [ 744.324563][ C1] do_syscall_64+0x426/0xfa0 [ 744.329161][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 744.335069][ C1] RIP: 0033:0x7f4246784fd3 [ 744.339503][ C1] RSP: 002b:00007ffd6fa26278 EFLAGS: 00000202 ORIG_RAX: 000000000000003d [ 744.347922][ C1] RAX: fffffffffffffe00 RBX: 0000000000003a5e RCX: 00007f4246784fd3 [ 744.355900][ C1] RDX: 0000000040000000 RSI: 00007ffd6fa2628c RDI: 00000000ffffffff [ 744.363875][ C1] RBP: 00007ffd6fa2628c R08: 0000000000000000 R09: 0000000000000000 [ 744.371853][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000008 [ 744.379836][ C1] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000 [ 744.387915][ C1] [ 744.390956][ C1] rcu: rcu_preempt kthread starved for 522 jiffies! g96153 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 744.401980][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 744.411965][ C1] rcu: RCU grace-period kthread stack dump: [ 744.417865][ C1] task:rcu_preempt state:R running task stack:28216 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 744.431385][ C1] Call Trace: [ 744.434666][ C1] [ 744.437601][ C1] __schedule+0x1190/0x5de0 [ 744.442124][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 744.447082][ C1] ? __pfx___schedule+0x10/0x10 [ 744.451947][ C1] ? find_held_lock+0x2b/0x80 [ 744.456625][ C1] ? schedule+0x2d7/0x3a0 [ 744.460960][ C1] schedule+0xe7/0x3a0 [ 744.465033][ C1] schedule_timeout+0x123/0x290 [ 744.469910][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 744.475303][ C1] ? __pfx_process_timeout+0x10/0x10 [ 744.480599][ C1] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 744.486445][ C1] ? prepare_to_swait_event+0xf5/0x480 [ 744.491934][ C1] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 744.496711][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 744.502010][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 744.507218][ C1] ? __pfx_rcu_gp_init+0x10/0x10 [ 744.512171][ C1] ? rcu_gp_cleanup+0x7c1/0xd90 [ 744.517033][ C1] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 744.522869][ C1] rcu_gp_kthread+0x26d/0x380 [ 744.527574][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 744.532785][ C1] ? rcu_is_watching+0x12/0xc0 [ 744.537553][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 744.542759][ C1] ? __kthread_parkme+0x19e/0x250 [ 744.547790][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 744.553006][ C1] kthread+0x3c2/0x780 [ 744.557089][ C1] ? __pfx_kthread+0x10/0x10 [ 744.561700][ C1] ? rcu_is_watching+0x12/0xc0 [ 744.566480][ C1] ? __pfx_kthread+0x10/0x10 [ 744.571099][ C1] ret_from_fork+0x675/0x7d0 [ 744.575714][ C1] ? __pfx_kthread+0x10/0x10 [ 744.580326][ C1] ret_from_fork_asm+0x1a/0x30 [ 744.585118][ C1] [ 744.588140][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 744.594466][ C1] CPU: 1 UID: 0 PID: 3413 Comm: kworker/R-bat_e Tainted: G I syzkaller #0 PREEMPT(full) [ 744.605753][ C1] Tainted: [I]=FIRMWARE_WORKAROUND [ 744.610854][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 744.620925][ C1] Workqueue: bat_events batadv_tt_purge [ 744.626502][ C1] RIP: 0010:unwind_next_frame+0x19b/0x20a0 [ 744.632315][ C1] Code: ba 00 00 00 00 00 fc ff df 48 c1 e9 03 80 3c 11 00 0f 85 6b 17 00 00 4d 8b 7d 48 3c 01 49 83 df 00 4d 85 ff 0f 84 31 09 00 00 <49> 81 ff 00 00 00 81 0f 82 5b 02 00 00 49 81 ff 38 e7 65 8b 0f 83 [ 744.651931][ C1] RSP: 0018:ffffc90000a07870 EFLAGS: 00000286 [ 744.658007][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 1ffff92000140f25 [ 744.665981][ C1] RDX: dffffc0000000000 RSI: ffffffff8bf1d840 RDI: ffffffff8dda8f08 [ 744.673954][ C1] RBP: ffffc90000a07928 R08: 03813abc02fcf7df R09: 0000000000000000 [ 744.681923][ C1] R10: 0000000000000005 R11: 0000000000000000 R12: ffffc90000a07930 [ 744.689894][ C1] R13: ffffc90000a078e0 R14: ffffc90000a07915 R15: ffffffff817c675f [ 744.697865][ C1] FS: 0000000000000000(0000) GS:ffff888124ae4000(0000) knlGS:0000000000000000 [ 744.706796][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 744.713377][ C1] CR2: 000055abd3588a38 CR3: 0000000033118000 CR4: 00000000003526f0 [ 744.721358][ C1] Call Trace: [ 744.724640][ C1] [ 744.727483][ C1] ? __local_bh_enable_ip+0x100/0x120 [ 744.732875][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 744.739036][ C1] arch_stack_walk+0x94/0x100 [ 744.743717][ C1] ? batadv_tt_local_purge+0x21c/0x3c0 [ 744.749198][ C1] ? __local_bh_enable_ip+0x100/0x120 [ 744.754589][ C1] stack_trace_save+0x8e/0xc0 [ 744.759277][ C1] ? __pfx_stack_trace_save+0x10/0x10 [ 744.764653][ C1] ? __lock_acquire+0xb97/0x1ce0 [ 744.769603][ C1] kasan_save_stack+0x33/0x60 [ 744.774280][ C1] ? kasan_save_stack+0x33/0x60 [ 744.779130][ C1] ? kasan_save_track+0x14/0x30 [ 744.783981][ C1] ? __kasan_save_free_info+0x3b/0x60 [ 744.789364][ C1] ? __kasan_slab_free+0x5f/0x80 [ 744.794306][ C1] ? kmem_cache_free+0x2d4/0x6c0 [ 744.799243][ C1] ? __skb_ext_put+0x102/0x2c0 [ 744.804020][ C1] ? __skb_ext_del+0xf3/0x340 [ 744.808707][ C1] ? br_nf_dev_queue_xmit+0x7a0/0x2b20 [ 744.814188][ C1] ? br_nf_post_routing+0x8e7/0x1190 [ 744.819473][ C1] ? nf_hook_slow+0xbb/0x200 [ 744.824064][ C1] ? nf_hook+0x45e/0x780 [ 744.828306][ C1] ? br_forward_finish+0xcd/0x130 [ 744.833327][ C1] ? br_nf_hook_thresh+0x307/0x410 [ 744.838441][ C1] ? br_nf_forward_finish+0x66a/0xba0 [ 744.843815][ C1] ? br_nf_forward_ip.part.0+0x609/0x810 [ 744.849456][ C1] ? br_nf_forward+0xf0f/0x1be0 [ 744.854308][ C1] ? nf_hook_slow+0xbb/0x200 [ 744.858917][ C1] ? nf_hook+0x45e/0x780 [ 744.863158][ C1] ? __br_forward+0x1be/0x5b0 [ 744.867832][ C1] ? maybe_deliver+0xf1/0x180 [ 744.872517][ C1] ? br_flood+0x17c/0x650 [ 744.876847][ C1] ? br_handle_frame_finish+0x10e6/0x1ec0 [ 744.882592][ C1] ? br_nf_hook_thresh+0x307/0x410 [ 744.887705][ C1] ? br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 744.893868][ C1] ? br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 744.899422][ C1] ? br_nf_pre_routing+0x860/0x15b0 [ 744.904626][ C1] ? br_handle_frame+0xad5/0x14b0 [ 744.909661][ C1] ? __netif_receive_skb_core.constprop.0+0xa22/0x4bd0 [ 744.916515][ C1] ? __netif_receive_skb_one_core+0xb0/0x1e0 [ 744.922496][ C1] ? __netif_receive_skb+0x1d/0x160 [ 744.927699][ C1] ? process_backlog+0x439/0x15e0 [ 744.932725][ C1] ? __napi_poll.constprop.0+0xba/0x550 [ 744.938285][ C1] ? net_rx_action+0x97f/0xef0 [ 744.943051][ C1] ? handle_softirqs+0x219/0x8e0 [ 744.947994][ C1] ? do_softirq+0xb2/0xf0 [ 744.952331][ C1] ? __local_bh_enable_ip+0x100/0x120 [ 744.957732][ C1] kasan_save_track+0x14/0x30 [ 744.962417][ C1] __kasan_save_free_info+0x3b/0x60 [ 744.967627][ C1] __kasan_slab_free+0x5f/0x80 [ 744.972401][ C1] kmem_cache_free+0x2d4/0x6c0 [ 744.977170][ C1] ? __skb_ext_put+0x102/0x2c0 [ 744.981958][ C1] ? __skb_ext_put+0x102/0x2c0 [ 744.986732][ C1] __skb_ext_put+0x102/0x2c0 [ 744.991467][ C1] __skb_ext_del+0xf3/0x340 [ 744.995987][ C1] ? __pfx_br_nf_dev_queue_xmit+0x10/0x10 [ 745.001730][ C1] br_nf_dev_queue_xmit+0x7a0/0x2b20 [ 745.007026][ C1] ? __pfx_br_nf_dev_queue_xmit+0x10/0x10 [ 745.012851][ C1] br_nf_post_routing+0x8e7/0x1190 [ 745.017972][ C1] ? __pfx_br_nf_post_routing+0x10/0x10 [ 745.023546][ C1] nf_hook_slow+0xbb/0x200 [ 745.027977][ C1] nf_hook+0x45e/0x780 [ 745.032049][ C1] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 745.037964][ C1] ? __pfx_nf_hook+0x10/0x10 [ 745.042581][ C1] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 745.048500][ C1] ? __pfx_ip6t_do_table+0x10/0x10 [ 745.053682][ C1] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 745.059426][ C1] br_forward_finish+0xcd/0x130 [ 745.064375][ C1] ? __pfx_br_dev_queue_push_xmit+0x10/0x10 [ 745.070278][ C1] br_nf_hook_thresh+0x307/0x410 [ 745.075235][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.080708][ C1] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 745.086176][ C1] ? lock_acquire+0x179/0x350 [ 745.090871][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.096332][ C1] ? net_generic+0xea/0x2a0 [ 745.100851][ C1] br_nf_forward_finish+0x66a/0xba0 [ 745.106063][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.111539][ C1] br_nf_forward_ip.part.0+0x609/0x810 [ 745.117016][ C1] br_nf_forward+0xf0f/0x1be0 [ 745.121710][ C1] ? __pfx_br_nf_forward+0x10/0x10 [ 745.126831][ C1] nf_hook_slow+0xbb/0x200 [ 745.131264][ C1] nf_hook+0x45e/0x780 [ 745.135341][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.140808][ C1] ? __pfx_nf_hook+0x10/0x10 [ 745.145410][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.150885][ C1] __br_forward+0x1be/0x5b0 [ 745.155396][ C1] ? __pfx_br_forward_finish+0x10/0x10 [ 745.160868][ C1] maybe_deliver+0xf1/0x180 [ 745.165385][ C1] br_flood+0x17c/0x650 [ 745.169567][ C1] br_handle_frame_finish+0x10e6/0x1ec0 [ 745.175214][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 745.181135][ C1] ? ip6t_do_table+0xc25/0x1c30 [ 745.186027][ C1] ? nf_hook_slow+0x132/0x200 [ 745.190737][ C1] br_nf_hook_thresh+0x307/0x410 [ 745.195720][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 745.201651][ C1] ? __pfx_br_nf_hook_thresh+0x10/0x10 [ 745.207167][ C1] ? ip6table_mangle_hook+0xcb/0x770 [ 745.212481][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 745.218385][ C1] ? __pfx_ip6table_mangle_hook+0x10/0x10 [ 745.224128][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 745.230038][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 745.235988][ C1] br_nf_pre_routing_finish_ipv6+0x76a/0xfc0 [ 745.242088][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 745.248101][ C1] br_nf_pre_routing_ipv6+0x3cd/0x8c0 [ 745.253489][ C1] ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10 [ 745.259403][ C1] ? lock_acquire+0x179/0x350 [ 745.264113][ C1] ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10 [ 745.270623][ C1] ? net_generic+0xea/0x2a0 [ 745.275145][ C1] br_nf_pre_routing+0x860/0x15b0 [ 745.280276][ C1] br_handle_frame+0xad5/0x14b0 [ 745.285159][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 745.290564][ C1] ? rescuer_thread+0x620/0xea0 [ 745.295467][ C1] ? kthread+0x3c2/0x780 [ 745.299757][ C1] ? ret_from_fork+0x675/0x7d0 [ 745.304567][ C1] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 745.310486][ C1] ? __pfx_br_handle_frame+0x10/0x10 [ 745.315804][ C1] __netif_receive_skb_core.constprop.0+0xa22/0x4bd0 [ 745.322525][ C1] ? kasan_quarantine_put+0x10a/0x240 [ 745.327932][ C1] ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10 [ 745.335060][ C1] ? kmem_cache_free+0x2d4/0x6c0 [ 745.340006][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 745.344718][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 745.349411][ C1] ? kfree_skbmem+0x1a4/0x1f0 [ 745.354204][ C1] ? __lock_acquire+0x62e/0x1ce0 [ 745.359165][ C1] ? process_backlog+0x3e7/0x15e0 [ 745.364333][ C1] __netif_receive_skb_one_core+0xb0/0x1e0 [ 745.370172][ C1] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 745.376616][ C1] ? lock_acquire+0x179/0x350 [ 745.381321][ C1] ? process_backlog+0x3e7/0x15e0 [ 745.386358][ C1] __netif_receive_skb+0x1d/0x160 [ 745.391396][ C1] process_backlog+0x439/0x15e0 [ 745.396261][ C1] __napi_poll.constprop.0+0xba/0x550 [ 745.401659][ C1] ? skb_defer_free_flush+0x149/0x280 [ 745.407085][ C1] net_rx_action+0x97f/0xef0 [ 745.411713][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 745.416841][ C1] ? mark_held_locks+0x49/0x80 [ 745.421643][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 745.426890][ C1] ? tmigr_handle_remote+0x132/0x380 [ 745.432218][ C1] ? run_timer_base+0x121/0x190 [ 745.437099][ C1] ? __pfx_run_timer_base+0x10/0x10 [ 745.442328][ C1] handle_softirqs+0x219/0x8e0 [ 745.447120][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 745.452431][ C1] ? batadv_tt_local_purge+0x21c/0x3c0 [ 745.457932][ C1] do_softirq+0xb2/0xf0 [ 745.462114][ C1] [ 745.465052][ C1] [ 745.467998][ C1] __local_bh_enable_ip+0x100/0x120 [ 745.473224][ C1] batadv_tt_local_purge+0x21c/0x3c0 [ 745.478537][ C1] ? do_raw_spin_lock+0x12c/0x2b0 [ 745.483597][ C1] ? __pfx_batadv_tt_local_purge+0x10/0x10 [ 745.489432][ C1] batadv_tt_purge+0x8b/0xb80 [ 745.494131][ C1] ? __pfx_batadv_tt_purge+0x10/0x10 [ 745.499456][ C1] ? rcu_is_watching+0x12/0xc0 [ 745.504240][ C1] process_one_work+0x9cf/0x1b70 [ 745.509214][ C1] ? __pfx_process_one_work+0x10/0x10 [ 745.514619][ C1] ? assign_work+0x1a0/0x250 [ 745.519231][ C1] rescuer_thread+0x620/0xea0 [ 745.523952][ C1] ? rcu_is_watching+0x12/0xc0 [ 745.528738][ C1] ? __pfx_rescuer_thread+0x10/0x10 [ 745.533967][ C1] ? lockdep_hardirqs_on+0x7c/0x110 [ 745.539251][ C1] ? __kthread_parkme+0x19e/0x250 [ 745.544317][ C1] ? __pfx_rescuer_thread+0x10/0x10 [ 745.549542][ C1] kthread+0x3c2/0x780 [ 745.553632][ C1] ? __pfx_kthread+0x10/0x10 [ 745.558247][ C1] ? rcu_is_watching+0x12/0xc0 [ 745.563020][ C1] ? __pfx_kthread+0x10/0x10 [ 745.567629][ C1] ret_from_fork+0x675/0x7d0 [ 745.572237][ C1] ? __pfx_kthread+0x10/0x10 [ 745.576840][ C1] ret_from_fork_asm+0x1a/0x30 [ 745.581622][ C1] [ 745.585231][ C1] net_ratelimit: 6027 callbacks suppressed [ 745.585247][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.603919][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 745.616229][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.629159][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 745.641454][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.665491][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 745.678016][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.691336][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 745.703695][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 745.716831][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 750.594667][ C1] net_ratelimit: 9047 callbacks suppressed [ 750.594685][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 750.612731][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 750.624933][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 750.637211][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 750.650123][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 750.662352][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 750.674591][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 750.686794][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 750.699784][ C1] bridge0: received packet on veth0_to_bridge with own address as source address (addr:d2:30:4a:2c:d9:14, vlan:0) [ 750.712048][ C1] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)