last executing test programs: 12.331720766s ago: executing program 3 (id=2005): openat$auto_nvmf_dev_fops_fabrics(0xffffffffffffff9c, &(0x7f0000001a00), 0x801, 0x0) r0 = socket(0x11, 0x3, 0x9) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) io_uring_setup$auto(0x6, 0x0) ustat$auto(0x801, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x22240, 0x155) socket(0x2, 0x2, 0x0) r1 = socket(0x2, 0x1, 0x0) close_range$auto(0x2, 0x8, 0x0) open(0x0, 0x26241, 0x20) socket(0x2, 0x1, 0x106) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0xffff, @remote}, 0x6a) socket(0x2, 0x1, 0x106) listen$auto(0x3, 0x81) sendmmsg$auto(r1, &(0x7f0000000140)={{&(0x7f0000000040), 0x12, 0x0, 0x9, 0x0, 0x1f, 0xb}, 0x800009}, 0x5, 0x20000000) accept$auto(0x3, 0xffffffffffffffff, 0xfffffffffffffffd) sendmmsg$auto(r0, &(0x7f00000001c0)={{0x0, 0x5ac, &(0x7f0000000100)={0x0, 0x49}, 0x4, 0x0, 0x5, 0x11}, 0x5}, 0x2, 0x100) 9.815135316s ago: executing program 3 (id=2012): bpf$auto_BPF_TOKEN_CREATE(0x24, 0x0, 0x9) 9.507628563s ago: executing program 2 (id=2013): close_range$auto(0x0, 0xfffffffffffff000, 0x2) openat$auto_vhci_fops_hci_vhci(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket(0x11, 0xa, 0x9) socket(0xa, 0x2, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) openat$auto_proc_clear_refs_operations_internal(0xffffffffffffff9c, &(0x7f0000000600)='/proc/thread-self/clear_refs\x00', 0x2, 0x0) openat$auto_proc_mountinfo_operations_mnt_namespace(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cmdline\x00', 0x101044, 0x0) socket(0xa, 0x2, 0x0) openat$auto_sg_fops_sg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sg0\x00', 0x2, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x787806, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x2000c082) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 8.763823278s ago: executing program 2 (id=2017): openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fb0\x00', 0x2, 0x0) r0 = getpid() mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffff7, 0x8000) r1 = socket(0x1d, 0x2, 0x6) getsockopt$auto(r1, 0x6a, 0x4, 0x0, 0x0) ioprio_set$auto_IOPRIO_WHO_PGRP(0x2, r0, 0x80) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) openat$auto_snapshot_fops_user(0xffffffffffffff9c, &(0x7f0000000180), 0x800, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) set_tid_address$auto(&(0x7f0000000040)=0x14) r2 = openat$auto_udmabuf_fops_udmabuf(0xffffffffffffff9c, &(0x7f0000000480), 0xa2200, 0x0) ioctl$auto_UDMABUF_CREATE_LIST(r2, 0x40087543, &(0x7f00000004c0)={0x5, 0x2e9, [{0xffffffffffffffff, 0x0, 0x5, 0xd}, {0xffffffffffffffff, 0x0, 0xffff, 0x4}, {0xffffffffffffffff, 0x0, 0xc43, 0x3}]}) pwrite64$auto(0xffffffffffffffff, 0x0, 0x8001, 0x1) madvise$auto(0x0, 0xffffffffffff0001, 0x15) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x810004, 0xffb, 0x8800000008011, 0x3, 0x8000) 8.763014423s ago: executing program 3 (id=2018): mmap$auto(0x0, 0x200006, 0x2, 0x40eb1, 0x602, 0x300000000000) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/tracing/set_event\x00', 0x121000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_mac80211_hwsim(&(0x7f0000001340), 0xffffffffffffffff) sendmsg$auto_HWSIM_CMD_NEW_RADIO(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002bbd7000fcdbdf2504000000040010"], 0x20}}, 0x18800) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) madvise$auto(0x0, 0xffffffffffff0001, 0x15) close_range$auto(r0, 0x8, 0x0) brk$auto(0xffffffffffffff66) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xac\x8c\x1d\x0e\x98\x80\xd2\xaf\xa1\xf2\x1e\xe1R1\xa2\x8e\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\xa6\xf4#+\xfa\xd7\x01\xb9j<\v\xf47\n\xa7\xd2\x8b\x11e1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0xda) mmap$auto(0x7, 0x3, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x6) r3 = socket(0x10, 0x2, 0xc) sendmsg$auto_CTRL_CMD_GETPOLICY(r3, 0x0, 0x10004010) mlockall$auto(0x7) ppoll$auto(0x0, 0x8, 0x0, 0x0, 0x8) prctl$auto(0x29, 0x17000000, 0x0, 0x0, 0x0) 4.566585619s ago: executing program 2 (id=2023): mmap$auto(0x1, 0x7, 0x3, 0x10, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x800002) read$auto(0xffffffffffffffff, 0x0, 0x1) r0 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, 0x0, 0x5, 0x0) write$auto(r0, 0x0, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:01.3/local_cpulist\x00', 0x100, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) read$auto(r1, 0x0, 0x20) getpgrp(0xffffffffffffffff) ioctl$auto_BLKFRAGET(0xffffffffffffffff, 0x1265, 0x0) mmap$auto(0x10000000000, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) io_uring_setup$auto(0x4a, 0x0) 4.06855813s ago: executing program 2 (id=2024): recvmmsg$auto(0xffffffffffffffff, 0x0, 0x6, 0x700, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0x5, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty12\x00', 0x800, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty12\x00', 0x101840, 0x0) socketpair$auto(0x1e, 0x4, 0x8000000000000000, 0x0) sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x4) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = socket(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'erspan0\x00'}) syz_clone(0x4100000, 0x0, 0x0, 0x0, 0x0, 0x0) futex$auto(0x0, 0x86, 0x8, &(0x7f0000000280)={0x40000000000800, 0x9}, 0x0, 0x7) mbind$auto(0x0, 0x100000004, 0x100000000, 0x0, 0x6, 0x2) madvise$auto(0x0, 0xffffffffffff0006, 0x17) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x0) select$auto(0xa4d, 0x0, 0x0, &(0x7f00000002c0)={[0x8, 0x8, 0x208, 0x1, 0x0, 0x4000000008, 0x15f6da12, 0x3, 0x800080000010d08, 0x10000000000000b, 0xfffffffffffffffc, 0x3, 0x6d3f, 0x6, 0x4, 0x5]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 4.068295837s ago: executing program 3 (id=2025): r0 = signalfd4$auto(0xffffffffffffffff, &(0x7f0000000300)={0x4}, 0x70, 0x6) openat$auto_dvb_demux_fops_dmxdev(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$auto(0x3, 0x6f2d, 0x7) syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$auto_ovs_vport(&(0x7f0000000040), r1) sendmsg$auto_OVS_VPORT_CMD_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x20, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0x4}, @OVS_VPORT_ATTR_IFINDEX={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x0) r3 = geteuid() sendmsg$auto_OVS_VPORT_CMD_GET(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f00000018c0)={0x1624, r2, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@OVS_VPORT_ATTR_OPTIONS={0x2bd, 0x4, 0x0, 0x1, [@nested={0xff, 0x63, 0x0, 0x1, [@typed={0x8, 0x121, 0x0, 0x0, @u32=0x4}, @generic="0ed0b011140741556d788d511f2ccb539a53073f9014f5f13d756b", @typed={0xc, 0x13b, 0x0, 0x0, @u64=0x81}, @nested={0x4, 0x4c}, @nested={0xb7, 0x2d, 0x0, 0x1, [@generic="32c15506466b13567d4733164599881f4fbfd7d07d0e8adfebffaf3db6cf484ed8f8e17fafb606b43cd2bab584c8648abcb87a9da26974a0db252adf6b549dd48a56dbbc8e2a11aaa7eb8f8feede4514bfc095fe8619be93a31ff31303cd740d932a8a29943015033ab4653914584177ef4cc12a844eddceba15be108e210f1cdeefc97d60d04b", @nested={0x2c, 0xce, 0x0, 0x1, [@generic="bd0074b41035190f2b4ea367ae41f3c73bf19eacce9b51ec3cc0011c38c023e6f5ffecba", @nested={0x4, 0xa4}]}]}, @nested={0x4, 0xc0}, @nested={0x4, 0x14d}, @typed={0x8, 0xe1, 0x0, 0x0, @fd=r0}]}, @nested={0x18, 0x13f, 0x0, 0x1, [@nested={0x4, 0x11e}, @typed={0x8, 0xc, 0x0, 0x0, @uid=r3}, @typed={0x6, 0x1f, 0x0, 0x0, @str='{\x00'}]}, @typed={0x8, 0x69, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x73, 0x0, 0x0, @u32=0x400}, @nested={0x130, 0x69, 0x0, 0x1, [@generic="33891611b94fb41c9185b36d8ce33c0797ccf76d79ed21d6307e6779d7ae4d36756041d3bb4c24259837368e6475a0712055f65bb5f8b255bd99", @nested={0x4, 0xdd}, @typed={0xc, 0xd1, 0x0, 0x0, @str='nl80211\x00'}, @generic="5b6aa25f64bcd45c898abf7152e425c73a2541e4da112b043cf28e7909f220a764204808ea47eda9ef1b443cb38e39bbd639b19a711bad8ca1b6108ebf6d16310e1d4caa72aaeb742648471936c838ca2fbb2bb354d8e3ae24671a0e21a68edbe0a388f5bb6b9a6340defb91faa102cd47a258e53067146ad109d19c10ce9dfd182f5f73425bcf1c37bb861a25b9afa6727f5b28dd389b76debb1d3701a7c12165a86d4d213a6bb48f0a260391fb111fc05d683590a051717597ee80d6266e8d65e6fe09907a09d3ab3cd6f5eb4df68d951c", @typed={0xc, 0x1f, 0x0, 0x0, @u64=0x7}, @nested={0x4, 0x8b}]}, @generic="1aa39ac9f17dc7eb4a9fd4b685ec0ba02579d4f52791d409b23ec4ce4ccbb7d99ef4b07c4eff569a4f1c6826418351976f86ed31846b061f9518c3d0b97927895e58c07afb0f480f8f4ee241fb664da78bae9018ecdf525852", @nested={0x8, 0x135, 0x0, 0x1, [@nested={0x4, 0x12d}]}]}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x1}, @OVS_VPORT_ATTR_OPTIONS={0x12ec, 0x4, 0x0, 0x1, [@typed={0x8, 0x24, 0x0, 0x0, @u32}, @typed={0x8, 0x135, 0x0, 0x0, @ipv4=@multicast1}, @typed={0x8, 0xc5, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="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", @typed={0x6, 0x11d, 0x0, 0x0, @str='*\x00'}, @generic="07b8cb69d9440f73c7cedc6bbd8b29c82f008d3e2dd31fc8ca9387b0bc572f9d23f6476e0266f6077aa44daec26879f4dbf151d8964f094faf27989b69b5ab3847940054628837b36cb1e081217dea33050145c3625e10b07b1c0bebf3e006415b0004624bebb0b7d8c92d529ffdae06fc13681bc5f84cf961976726404d78ed81b47862d4de661e66b6d958bfb469ac40b15c7378a0a1723f7eaec95cad1544cdece3fdd2aa107f96d395a3031702b880a8fe9b93ff0060fbc74cf735df55a232e9e7c9779064e74921848fc6439e8a67dcdc1be0441aca", @nested={0x1e7, 0xf0, 0x0, 0x1, [@nested={0x4, 0x14b}, @generic="6e254241f83845ac47e6c35c2eb2eef436706eefa51ee7aca55385a5e0944ec7f9476a8864da5fc4db036bed05ddd3d1d87d9e", @generic="655146f7f28d9eb5dc6963cb379797a5eebe9c43eceefe6e", @generic="5a5f74f518e709e393707a31805a0e1f4323db86878a3f54b81cb44d25aeb3a67450811067591789020b39bb6b327487d38fdb7d0841ab9975cac70124fdbc94b50f86b1293c7949232582630a31bc15c614896f837411d15a81b243285a85756fe53df2ceb4a127579ad1bb623c336086c804bfdb2c1b956a98bca09671ff74c6786ba00bf3b9d3ddc6155e9eb3ae79ae74e027abb355ef573e04e2edc3a514b83995234b18ac0f5eb817c1c596ad9d52678a84e21f3bc47bc9c0b9f77a44c3159abf10e027812a246f7c5896043f7050d107bfe9ed08", @generic="aa67ff2e0eb30bc00c22c8f39e9ed1b47ee052a1a714a3b566e45e8e8749e99fad1653c49c13c44e33ceaa356170b917e7992a184e69e0d7efa23245ab2a97d63bf986dfb076f74adba7f061cf4ec77feb90b9e33adc6ea4510f4e942d3751cc9fc06b278aa324f68522eb0ba8a2a1ef6f14b0e76636899001d789bf8c8398d24c1aff74e6674d0da88ac3e6fc4984c63293c449d770a974e783b63112b2d7d3b6dda7561c3aa1e2c809212718cb4c4262eaf3366fad7ac28bd3bbd0ec"]}, @typed={0x8, 0x8d, 0x0, 0x0, @fd=r0}]}, @OVS_VPORT_ATTR_NETNSID={0x8, 0x9, 0x3}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x4}, @OVS_VPORT_ATTR_STATS={0x44, 0x6, {0x3, 0x5, 0x200, 0x10, 0xffff, 0x8, 0x4, 0x1}}, @OVS_VPORT_ATTR_PORT_NO={0x8, 0x1, 0x1000}]}, 0x1624}, 0x1, 0x0, 0x0, 0x4000}, 0x80) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS0\x00', 0x48140, 0x0) socket$nl_generic(0x11, 0x3, 0x10) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) sysfs$auto(0x2, 0xd, 0x0) r4 = fsopen$auto(0x0, 0x1) fsconfig$auto(r4, 0x8, 0x0, 0x0, 0x0) read$auto_regulator_summary_fops_(r4, 0x0, 0x0) openat$auto_tun_fops_tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) mmap$auto(0x0, 0x4020009, 0xdb, 0xeb1, 0x401, 0x8000) 4.066162587s ago: executing program 0 (id=2032): r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/reboot/cpu\x00', 0x1a1842, 0x0) pwrite64$auto(r0, &(0x7f0000000000)='\\\x00', 0xf4a, 0x100000001) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) openat$auto_ep0_operations_inode(0xffffffffffffff9c, &(0x7f0000000000), 0x38be81, 0x0) close_range$auto(0x2, 0x8, 0x800000) mmap$auto(0x0, 0x2020009, 0x8000000000000003, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)) getdents$auto(r1, 0x0, 0xfff) r2 = openat$auto_vmuser_fops_vmci_host(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$auto_IOCTL_VMCI_VERSION2(r2, 0x7a7, 0x0) ioctl$auto_IOCTL_VMCI_INIT_CONTEXT(r2, 0x7a0, 0x6) ioctl$auto_IOCTL_VMCI_CTX_GET_CPT_STATE(r2, 0x7b1, 0x0) pselect6$auto(0x1, &(0x7f0000000100)={[0x0, 0xffffffff, 0x50, 0xeb2, 0xa2a, 0x4, 0x616, 0x401, 0x62, 0xca, 0x6, 0x62b9, 0x7, 0x7679e09a, 0x3, 0x37]}, &(0x7f0000000180)={[0x8, 0x3, 0x1, 0x3, 0x0, 0x1, 0x1, 0x7fffffff, 0x2, 0x4, 0x1000, 0x1, 0x6, 0x6, 0x1, 0xd]}, &(0x7f0000000200)={[0x90, 0xfffffffffffffffb, 0xfffffffffffffff8, 0x0, 0x8, 0x3, 0xd36f, 0x6, 0x3, 0x7, 0x5, 0x46, 0x2, 0x1000, 0x7, 0x8]}, &(0x7f0000000280)={0x8, 0x2}, &(0x7f00000002c0)="3f306180c74f982f42c088ff4a71f98b7273952f3f1d517ae031ac248e9f93ff6d7f1d5707788fc31c0e3c3623ea47f0dda83dfe4cdb176f3750601610fd22aa5ca73bd7af6db674e266bd82d7cfc7320419823e47191d66f368601d23118a7d6de6c135347d02270231d0c4c9715a5da1ab") close_range$auto(0x2, 0x8, 0x0) r3 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0xe0180, 0x0) ioctl$auto_KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$auto(0x3, 0x4020aea5, 0x38) pidfd_send_signal$auto_PIDFD_SIGNAL_THREAD_GROUP(r3, 0x3, &(0x7f0000000080)={@siginfo_0_0={0x2, 0x1, 0x800, @_sigpoll={0x1, r3}}}, 0x2) 4.06570785s ago: executing program 1 (id=2033): mmap$auto(0x1, 0x7, 0x3, 0x10, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x800002) read$auto(0xffffffffffffffff, 0x0, 0x1) r0 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, 0x0, 0x5, 0x0) write$auto(r0, 0x0, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:01.3/local_cpulist\x00', 0x100, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) read$auto(r1, 0x0, 0x20) getpgrp(0xffffffffffffffff) pipe$auto(&(0x7f0000000080)=0xe7da) mmap$auto(0x10000000000, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) io_uring_setup$auto(0x4a, 0x0) 3.725183116s ago: executing program 0 (id=2026): preadv$auto(0x40000000000003, &(0x7f0000000080)={0x0, 0x200fffffffd}, 0x6, 0x7fffffff, 0x1) unshare$auto(0x40000080) mmap$auto(0x0, 0x810002, 0xffe, 0x8000000008011, 0x3, 0x8000) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, 0x0, 0x300, 0x0) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0x8002, 0x0) migrate_pages$auto(0x0, 0xa, &(0x7f0000000100)=0x7fff, &(0x7f0000000140)=0x2) r0 = open(0x0, 0x22a40, 0x154) fcntl$auto(r0, 0x400, 0x1) fcntl$auto(0x3, 0x8, 0x0) close_range$auto(0x2, 0xa, 0x0) mmap$auto(0x0, 0x400008, 0xfffffffffffffffc, 0xdf, 0x2, 0xc) openat$auto_ppp_device_fops_ppp_generic(0xffffffffffffff9c, 0x0, 0xc375111f31e0b3fc, 0x0) readv$auto(0xffffffffffffffff, 0x0, 0x9) mmap$auto(0x0, 0x2000a, 0x10000000000df, 0xeb2, 0x401, 0x8000) sendmsg$auto_HSR_C_GET_NODE_STATUS(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000084}, 0x40090) sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x40000) 3.643632477s ago: executing program 1 (id=2027): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) mmap$auto(0x0, 0x400008, 0xdf, 0x9b72, 0x2, 0x8000) r0 = prctl$auto(0x1000000003b, 0x1, 0x4, 0x3, 0x10004) sync_file_range$auto(r0, 0xfffffffffffffff1, 0xa, 0x1) madvise$auto(0x0, 0x7fffffffffffffff, 0xa) clone$auto(0xad8c, 0x6, 0xfffffffffffffffe, 0xfffffffffffffffd, 0x9) setsockopt$auto(0x3, 0x6, 0x15, 0x0, 0xfb3) mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) ustat$auto(0x801, 0x0) openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, 0x0, 0x129800, 0x0) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) setuid$auto(0xe) select$auto(0x7, 0x0, 0x0, 0x0, 0x0) close_range$auto(0x2, 0x8000, 0x0) io_uring_setup$auto(0x6, 0x0) io_uring_register$auto(0x2, 0xfffffffd, 0x0, 0x1000) io_uring_register$auto(0x2, 0x1, 0x0, 0x0) keyctl$auto(0xa, 0xfffffffffffffffd, 0x2, 0x628, 0xfffffffffffffffd) 2.880645892s ago: executing program 0 (id=2028): close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0xd4, 0x8000) pipe$auto(0x0) openat$auto_snd_timer_f_ops_timer(0xffffffffffffff9c, &(0x7f00000001c0), 0x40100, 0x0) read$auto(0xffffffffffffffff, 0x0, 0x20) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x100, 0x0) socketpair$auto(0x8, 0x2, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8000, 0x0) socket(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101080, 0x0) close_range$auto(0x2, 0x8, 0x0) r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000280), 0x101000, 0x0) ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r0) 2.705422585s ago: executing program 1 (id=2029): mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$auto_ovs_packet(&(0x7f0000001940), 0xffffffffffffffff) sendmsg$auto_OVS_PACKET_CMD_EXECUTE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x44, r1, 0x1b, 0x74bd26, 0x25dfdbfd, {}, [@OVS_PACKET_ATTR_PROBE={0x4}, @OVS_PACKET_ATTR_ACTIONS={0x14, 0x3, 0x0, 0x1, [@nested={0x10, 0xb, 0x0, 0x1, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x108, 0x0, 0x0, @ipv4=@private=0xa010102}]}]}]}, @OVS_PACKET_ATTR_PACKET={0x12, 0x1, "8987714800"}, @OVS_PACKET_ATTR_KEY={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004040}, 0xc800) r2 = openat$auto_fops_u64_ro_(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/zswap/written_back_pages\x00', 0x200000, 0x0) close_range$auto(r2, 0x8, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x201, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000000)='/dev/tty42\x00', 0x40741, 0x0) mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000) r3 = openat$auto_mISDN_fops_timerdev(0xffffffffffffff9c, &(0x7f0000000080), 0x20480, 0x0) read$auto_mISDN_fops_timerdev(r3, &(0x7f00000000c0)=""/4099, 0x1003) ioctl$auto_IMADDTIMER(r3, 0x80044940, 0x0) r4 = socket(0x2, 0x3, 0x81) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/workqueue/nf_ft_offload_stats/affinity_scope\x00', 0x2, 0x0) read$auto(0x3, 0x0, 0x20f34) write$auto(0x3, 0x0, 0xfffffdf2) pipe2$auto(&(0x7f0000000040)=r4, 0x0) process_madvise$auto_MADV_DONTNEED_LOCKED(r5, &(0x7f0000000080)={&(0x7f0000000140)="fdb2e1140ffb9a1c2964e61394ba5ffbf0d09fcde096a8f2280253efc240580b2a861e49331da46303d35742754eb05bac0a131e0efeb16611fec27bfec9d31269077cca6fd53df5e9e7694f434fc268d651817e2c049325be197fc05cd3c7f870b87e1d08aeaee79392a4740fd483cae211a337b2f82d883179b045a45a58683b16f6dab6874aacb9fccc8ba3f4d817f733b95e2bd51cec604481564f0bc65326eb0ba25530074d306d16775054882bf54061744fb71ceea77ef19cbb2179fbeeb3d6973998865e30f179e82f42d136c4279ca53245308dcb99da45e76c291cf645", 0x8c}, 0x400, 0x18, 0xfffffeff) 2.148167414s ago: executing program 1 (id=2030): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x80002, 0x73) socket(0xa, 0x1, 0x84) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0x1, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) select$auto(0xe, 0x0, 0x0, 0x0, 0x0) sysfs$auto(0x2, 0x23, 0x0) r0 = openat$auto_ftrace_set_event_fops_trace_events(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/tracing/set_event\x00', 0x20201, 0x0) write$auto(r0, 0x0, 0x4) rseq$auto(0x0, 0x8000, 0x0, 0x6) bind$auto(0x3, &(0x7f0000000100)=@in={0x2, 0x3, @empty}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, 0x0, 0x1, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) shutdown$auto(0x200000003, 0x2) 2.147448647s ago: executing program 0 (id=2040): mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self/net/vlan/config\x00', 0xc0000, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x8c00, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/vm/mmap_min_addr\x00', 0x101300, 0x0) signalfd$auto(0xffffffff, 0x0, 0x8) socket(0x1d, 0x2, 0x6) socket$nl_generic(0x10, 0x3, 0x10) io_uring_setup$auto(0x6, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) io_uring_setup$auto(0x4079, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socketpair$auto(0x4004, 0xf, 0x4, 0x0) ioctl$auto_TIOCSETD2(0xffffffffffffffff, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x540b, 0x0) 1.892036032s ago: executing program 0 (id=2031): mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r0 = socket(0xa, 0x3, 0x3b) connect$auto(0x3, &(0x7f0000000000)=@generic={0xa, "0000e100"}, 0x58) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) msync$auto(0x0, 0x2000000005, 0x6) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) membarrier$auto(0x1, 0x0, 0x8) openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, 0x0, 0xc02, 0x0) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, r0, 0x300000000000) socket(0xa, 0x3, 0x3b) openat$auto_v4l2_fops_v4l2_dev(0xffffffffffffff9c, &(0x7f0000000100)='/dev/radio6\x00', 0x8a240, 0x0) recvmmsg$auto(0x3, 0x0, 0x10000, 0x0, 0x0) socketpair$auto(0x1, 0x1, 0x8000000000000000, 0x0) openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snd/midiC2D0\x00', 0xc8201, 0x0) select$auto(0x11, 0x0, 0x0, &(0x7f00000002c0)={[0x1ff, 0x6, 0x8d, 0x1, 0x948b, 0x3, 0x15f4da0a, 0x3, 0x1000, 0x62, 0x4000008000001f, 0x7, 0x6d3e, 0x9, 0x2, 0x6]}, 0x0) sendmmsg$auto(0x3, 0x0, 0x9a6, 0x7000000) 1.260186509s ago: executing program 3 (id=2034): mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) pipe2$auto(0x0, 0x0) openat$auto_raw_fops_raw_gadget(0xffffffffffffff9c, 0x0, 0x101000, 0x0) socketpair$auto(0x1, 0x5, 0x8000000000000000, 0x0) close_range$auto(0x2, 0x8, 0x0) getsockopt$auto_SO_PRIORITY(r0, 0x17ff, 0xc, &(0x7f0000000000)='[\'\x00', &(0x7f0000000140)=0xffff) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0xea241, 0x0) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptyde\x00', 0xa0102, 0x0) socket(0x2, 0x1, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x6a) connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @empty}, 0x51) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) write$auto(0x3, 0x0, 0x100082) writev$auto(0x3, &(0x7f0000000100)={0x0, 0x7111}, 0x8) ioctl$auto_TIOCVHANGUP2(r0, 0x5437, 0x0) 695.235308ms ago: executing program 1 (id=2035): mmap$auto(0x0, 0x420009, 0xdf, 0xeb1, 0x401, 0x8000) socket(0x1e, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket(0x11, 0x3, 0x7fff) close_range$auto(0x2, 0x8, 0x0) socket(0xa, 0x5, 0x0) memfd_create$auto(0x0, 0x2) socket(0xa, 0x2, 0x0) openat$auto_ima_measure_policy_ops_ima_fs(0xffffffffffffff9c, &(0x7f0000000000), 0x48001, 0x0) r1 = openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x202002, 0x0) close_range$auto(0x2, 0x8, 0x0) r2 = socket(0x10, 0x2, 0x4) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) sendmsg$auto_ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYRES8=r0, @ANYRES8=r1], 0x18}, 0x1, 0x0, 0x0, 0x60008004}, 0x8800) write$auto(r2, &(0x7f0000000000)='-\x00', 0xfdef) 468.227365ms ago: executing program 2 (id=2036): mmap$auto(0x0, 0x2000c, 0xdf, 0x20eb1, 0x40000000000a5, 0x8000) close_range$auto(0x2, 0x8, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/bus/usb/006/001\x00', 0x1, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000540)='/proc/sys/kernel/kexec_load_limit_panic\x00', 0x840141, 0x0) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_dma_heap_fops_dma_heap(0xffffffffffffff9c, &(0x7f00000000c0), 0x222680, 0x0) openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/netfilter/nf_log/3\x00', 0x2a8380, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bus/usb/009/001\x00', 0xa101, 0x0) socket(0x10, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/transparent_hugepage/hugepages-64kB/stats/nr_anon\x00', 0x0, 0x0) openat$auto_lowpan_enable_fops_(0xffffffffffffff9c, &(0x7f0000000040), 0x109500, 0x0) r0 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) socketpair$auto(0x4004, 0x8, 0x7, 0x0) r1 = openat$auto_tty_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ttyS2\x00', 0x101e81, 0x0) ioctl$auto_TIOCSETD2(r1, 0x5423, 0x0) ioctl$auto_TCFLSH2(r0, 0x80047456, 0x0) 231.70925ms ago: executing program 0 (id=2037): mmap$auto(0x0, 0x2020009, 0x3, 0x9000000eb1, 0xfffffffffffffffa, 0x8000) r0 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x0, 0x0) pread64$auto(r0, 0x0, 0x100000001, 0x9) r1 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) write$auto(r1, &(0x7f0000000040)='//\xf2\x00', 0x80000000) write$auto(r1, 0x0, 0x2) fdatasync$auto(r1) openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x60742, 0x0) r2 = openat$auto_percpu_stats_fops_(0xffffffffffffff9c, 0x0, 0x303101, 0x0) getsockopt$auto_SO_PEEK_OFF(r2, 0x8, 0x2a, &(0x7f0000000040)='/sys/kernel/debug/netdevsim/netdevsim2/health/break_health\x00', &(0x7f00000001c0)=0x6) openat$auto_snd_ctl_f_ops_control(0xffffffffffffff9c, &(0x7f0000000380)='/dev/snd/controlC2\x00', 0x400, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000) socket$nl_generic(0x10, 0x3, 0x10) mmap$auto(0x0, 0x4, 0x4000000000df, 0x40eb1, 0x401, 0x300000000000) r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f000000c340)='/proc/thread-self/pagemap\x00', 0x8000, 0x0) ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0xfffffffffffffffe, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x3, 0x2}) sendmsg$auto_ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000001dc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40010}, 0x80000) 164.958885ms ago: executing program 2 (id=2038): mmap$auto(0x1, 0x7, 0x3, 0x10, 0xfffffffffffffffa, 0x8000) mmap$auto(0x0, 0x400005, 0xdf, 0x9b72, 0x2, 0x8000) mmap$auto(0x0, 0x2020009, 0x100003, 0x9000000eb1, 0xfffffffffffffffa, 0x800002) read$auto(0xffffffffffffffff, 0x0, 0x1) r0 = openat$auto_trace_options_fops_trace(0xffffffffffffff9c, 0x0, 0x5, 0x0) write$auto(r0, 0x0, 0x6) r1 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/pci0000:00/0000:00:01.3/local_cpulist\x00', 0x100, 0x0) mmap$auto(0x0, 0xe983, 0x3, 0xeb1, 0xffffffffffffffff, 0x8000) read$auto(r1, 0x0, 0x20) getpgrp(0xffffffffffffffff) pipe$auto(&(0x7f0000000080)=0xe7da) mmap$auto(0x10000000000, 0x2020009, 0x0, 0xeb1, 0xfffffffffffffffa, 0x8000) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/system/cpu/cpu1/online\x00', 0x62, 0x0) write$auto(r2, &(0x7f00000002c0)='0\x00\xa6\xcc\r\x91QU\x9dI\xda\x1b\xad\xb1\x9e\xc8Tt\xa8\x94\x9c\x8a\xe2\xc7cOM\xb6\xa3,!o\x9e\xb0\xadT\xfbR\xa1Y\x94V[8\x04c\xdf:]\xd9\x94\xf8F\xbb\xa2\xbb>\xade\x18\xbd\xe2\x1c\x89OO]e[\xda\xac\xdd\x1a\xdd\xdd\xb9o\x1a\xab\xd5\xef`\xfd\x15\x88\x0f\x9a\xd5\xa7\x14\b};\xabt\xd1ak\xe5\x98\xea\xe3}\x10\xab\f_\x19\x9b\x11\xb25VUK\x93\xcdd\x17\xe4\xacA\xa5[\b\xb8;\x02tcf\x06\xfbD\x91\xcaG\xdaa:k[r\x06\xeb\xf0\xc4\xcb\x10\xae\xc8\xe9u\x9f\xdeK\xa5\x8e\xd6\x8f\xd0UV\x11\xcb\xdd\x81\xbe\xde\f/\x06(\x1d\xa5\xc5\x9b\xb2\x96\x05`\xe7\xd5Y\a\xc1\xe9(\x95\xdfH\xf4\v\xf3CRnz\xc2\x13<\xf0\v\x1f\x14\xf3\xd0\xf2\xd1L!\x81\xea\x83\xa0\r|%\xbf\x02trg\x9a\xe7\x00\x85Z\x06?\x12\x98\x0f)\a\xf4\xaa\x05\xc0\xa0r\xd2\x85\x8dH\xd0>\xca\xfc5\x01\x95O4\xca\x95\x1d\x83\xec\nD\x8e\xfb\xce\xd1w\x15:\xe9\x81/B#\xc6\xa1\xfa-\x1b\x8cr\x92nM\xa1;\xe4pd$\xd7\x1b\v\x82\r\f\xd0Hq\xd9\r\x88#\x89\x8d\xcd\x1e\xc7N\xeeO\x8dO\xe9\xfc\x91\xa1\xa8HR+\a\xb7R\t\n+\x7f\xd5H\x90G=\x9a\r\xb10\x17n\x1b\xf8\v\x11\v\xbb\xc8^\xa4\xe2\x05\x91|\x123\xc3:\xfd\xee\x04a\xc8\x12\xce\xa2\x12\xcb\x8c\x87f\xebGQ\xe9\x96\xd5E\x13a\xb7\x057<&\xe0\x94\xa7\xfb\x9d;\xfa\xb1\x1b4a,\'\xb2Ym\xe1:\xbf\x8cs\x06\xa3u\x8d!\n\x80-\x9a\xbb;\xf4\xf3\xe1\x97\xfc8\xff\xa7\\\x8b\xf9\x95\x10$\xef\x1a #b\xfb\xfe\xe9\x06fK0\xdd\x84T,\xfa\xb5\x00\x83d\xbba\xd7\n\x92\x90|l\xdfAN\x9d\xcb\x96\xc7\xe8\xe6\x8bC\xeb\xc7EZ\xc8\x1a\x81nf\tZ-sZ\x13n\xec\xa9\xbf\xd0$\xb9\xd8\x00'/507, 0x1098c7) io_uring_setup$auto(0x4a, 0x0) 49.689423ms ago: executing program 3 (id=2039): r0 = openat$auto_proc_pid_attr_operations_base(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/prev\x00', 0x101002, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x261c2, 0x84) pwrite64$auto(0xc8, &(0x7f0000000000)='\vX\xc9\xb3\xbc\x8c\x1dga08\x90\x86\xdde\x1cJ\x99\x00\x11:\x14\x1a\xd3\xd3\x1d\xf8\xbebZ\xddL\'\x03\xf1`\x9f\x1e\xf9\xa4*\xc0\xc1\xf2\x14^\x0fo\x84\xfc\x89\x01\x0e\xa4\xdf\xdav\x1cC\x8a\xeeq\xf0\xcdr\xfa\xa2@X\xb9_\xdd*\xd1\x14^\xbe\xa2E\xd8?\'\x8dg\x81K*&\xab\xaf\x94\x90\xd7\xa6+,\xc3\xc2g\x01JZ\xbb*\xb5\xa1;0\x81\x11\x9a?g`sFh\x00\x00,,\x93\xba\x88\x93\xc6#\xe5\xaae\x9d\xb6\x1a\x7f\xc0%\xb0\rfOJ+\x02\x9b#\x1c\x9b\x17\x82\xd7\xee\xd1\xbf2[\xd8\xbdn\x1d\x00\xeb]B\xa0\x99\xb0R\xb4J}\xa8\xa1\x84]F\xe0\x83/\xc0\xd8\x05f_\xfa\x19\a\x00\xf1\x12lwU&[\xde?\xde8\xf7\xc1\xaf\n1\x80\x1a\xbc_\xef\x8b\t\xcc\xa6\xf2\xc1\"\xact\xee\xc9\x00'/232, 0xfdef, 0x3) mount$auto(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', &(0x7f0000000100), 0xb, 0x0) write$auto_proc_pid_attr_operations_base(r0, &(0x7f0000000000)="e065b5d69eb41c5a77c3ca821edfc08707747e7e7a7929d402833ce89a459419346ca8ed8ab17b141dee5cdd72a11e31faa8fe8d826c27114a417acc88ee0b8ebdb9f9a5f5c9d5829482fca65166cc36fccc68c01f1080ea93d1da85e9d19de049151638533d972700db14d1d580a3cf7edeca6f9f6683577933364726910776f1c785616dd1bedad0649942c085d90535fcf3c17aa86841cea027ebf7a7c28ffc5e44b768a503e878825e2cc2c88367c5e4a9a3332330b34ce8781c884a7d3f8f6c9b34cb339c7738c94d081f66e92116e7c818e7be9e78cb85365530cc7811fa2a95925763215f7073d49638b701440ee49c51f211", 0xf6) close_range$auto(0x2, 0x8, 0x0) socket(0x10, 0x2, 0xc) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0) close_range$auto(0x2, r1, 0x0) r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0) ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$auto(0x3, 0xae41, r2) ioctl$auto_KVM_GET_MSRS(r1, 0x4008ae89, &(0x7f0000000040)={0x22, 0x0, [{0xc1, 0x1, 0x2}]}) preadv$auto(r0, &(0x7f0000000180)={0x0, 0x8}, 0x8, 0x6, 0x9f4b) r3 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000840)='./cgroup.cpu/memory.stat\x00', 0x80200, 0x0) pread64$auto(r3, 0x0, 0x6, 0x40008) read$auto_kernfs_file_fops_kernfs_internal(r3, &(0x7f0000000240)=""/118, 0x76) 0s ago: executing program 1 (id=2041): mmap$auto(0x0, 0x20009, 0xe3, 0x100000eb1, 0x40000000000a1, 0x8000) openat$auto_tty_fops_tty_io(0xffffffffffffff9c, 0x0, 0x28341, 0x0) pidfd_send_signal$auto(0x2, 0x7, 0x0, 0x1) mknod$auto(0x0, 0x63c5, 0x7bf) mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000) writev$auto(0xffffffffffffffff, 0x0, 0x3) mknod$auto(0x0, 0x63c1, 0x7fc) sendmmsg$auto(0x4, 0x0, 0x9a6, 0x6) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x20042, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7) madvise$auto(0x0, 0xffffffffffff0005, 0x19) arch_prctl$auto_ARCH_SHSTK_UNLOCK(0x5004, 0x1) openat$auto_drm_crtc_crc_data_fops_drm_debugfs_crc(0xffffffffffffff9c, 0x0, 0x8080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) io_uring_setup$auto(0x6, 0x0) kernel console output (not intermixed with test programs): [U] [ 372.526540][ T9959] [U] [ 372.529299][ T9959] [U] [ 372.532053][ T9959] [U] [ 372.535803][ T9959] [U] [ 372.538575][ T9959] [U] [ 372.541344][ T9959] [U] [ 372.544180][ T9959] [U] [ 372.568849][ T9959] [U] [ 372.571645][ T9959] [U] [ 372.574403][ T9959] [U] [ 372.577154][ T9959] [U] [ 372.584819][ T9959] [U] [ 372.587636][ T9959] [U] [ 372.590390][ T9959] [U] [ 372.593143][ T9959] [U] [ 372.638291][ T9959] [U] [ 372.641097][ T9959] [U] [ 372.643882][ T9959] [U] [ 372.646673][ T9959] [U] [ 372.688157][ T9959] [U] [ 372.691658][ T9959] [U] [ 372.694427][ T9959] [U] [ 372.697178][ T9959] [U] [ 372.713294][ T9959] [U] [ 372.716052][ T9959] [U] [ 372.718767][ T9959] [U] [ 372.721479][ T9959] [U] [ 372.745762][ T9959] [U] [ 372.748522][ T9959] [U] [ 372.751237][ T9959] [U] [ 372.753976][ T9959] [U] [ 372.769272][ T9959] [U] [ 372.772029][ T9959] [U] [ 372.774745][ T9959] [U] [ 372.777458][ T9959] [U] [ 372.906179][ T9959] [U] [ 372.908962][ T9959] [U] [ 372.911688][ T9959] [U] [ 372.914424][ T9959] [U] [ 372.980359][ T9959] [U] [ 374.432113][ T9996] FAULT_INJECTION: forcing a failure. [ 374.432113][ T9996] name failslab, interval 1, probability 0, space 0, times 0 [ 374.459187][ T9996] CPU: 0 UID: 0 PID: 9996 Comm: syz.1.1224 Not tainted syzkaller #0 PREEMPT(full) [ 374.459230][ T9996] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 374.459249][ T9996] Call Trace: [ 374.459260][ T9996] [ 374.459272][ T9996] dump_stack_lvl+0x16c/0x1f0 [ 374.459319][ T9996] should_fail_ex+0x512/0x640 [ 374.459368][ T9996] ? __kmalloc_cache_noprof+0x5f/0x780 [ 374.459403][ T9996] should_failslab+0xc2/0x120 [ 374.459447][ T9996] __kmalloc_cache_noprof+0x72/0x780 [ 374.459477][ T9996] ? get_mm_exe_file+0x8a/0x1a0 [ 374.459513][ T9996] ? landlock_init_hierarchy_log+0xa7/0x810 [ 374.459560][ T9996] ? landlock_init_hierarchy_log+0xa7/0x810 [ 374.459599][ T9996] landlock_init_hierarchy_log+0xa7/0x810 [ 374.459646][ T9996] landlock_merge_ruleset+0x6e1/0x870 [ 374.459678][ T9996] ? prepare_creds+0x583/0x7d0 [ 374.459731][ T9996] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 374.459787][ T9996] do_syscall_64+0xcd/0xfa0 [ 374.459829][ T9996] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 374.459862][ T9996] RIP: 0033:0x7f95b3d8f749 [ 374.459897][ T9996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 374.459928][ T9996] RSP: 002b:00007f95b4b8f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 374.459963][ T9996] RAX: ffffffffffffffda RBX: 00007f95b3fe6090 RCX: 00007f95b3d8f749 [ 374.459985][ T9996] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 374.460005][ T9996] RBP: 00007f95b3e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 374.460036][ T9996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 374.460058][ T9996] R13: 00007f95b3fe6128 R14: 00007f95b3fe6090 R15: 00007ffd3e013028 [ 374.460103][ T9996] [ 374.469989][ T9997] netlink: 'syz.2.1222': attribute type 1 has an invalid length. [ 376.829096][T10022] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1229'. [ 379.309649][T10044] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1234'. [ 379.320748][T10044] bridge_slave_1: left allmulticast mode [ 379.327026][T10044] bridge_slave_1: left promiscuous mode [ 379.335150][T10044] bridge0: port 2(bridge_slave_1) entered disabled state [ 380.156546][T10044] bridge_slave_0: left allmulticast mode [ 380.183008][T10044] bridge_slave_0: left promiscuous mode [ 380.218800][T10044] bridge0: port 1(bridge_slave_0) entered disabled state [ 381.560417][ C0] vcan0: j1939_tp_rxtimer: 0xffff88805c88dc00: rx timeout, send abort [ 381.568983][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88805c88dc00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 381.710089][T10067] kAFS: unparsable volume name [ 382.060523][T10076] netlink: 'syz.1.1243': attribute type 1 has an invalid length. [ 383.083284][T10102] netlink: 330 bytes leftover after parsing attributes in process `syz.1.1250'. [ 383.109110][T10102] : renamed from hsr0 (while UP) [ 383.171925][T10102] : entered allmulticast mode [ 383.193115][T10102] hsr_slave_0: entered allmulticast mode [ 383.198917][T10102] hsr_slave_1: entered allmulticast mode [ 384.036020][T10125] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1260'. [ 385.374599][T10150] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1259'. [ 386.358565][T10165] FAULT_INJECTION: forcing a failure. [ 386.358565][T10165] name failslab, interval 1, probability 0, space 0, times 0 [ 386.371988][T10165] CPU: 0 UID: 0 PID: 10165 Comm: syz.2.1265 Not tainted syzkaller #0 PREEMPT(full) [ 386.372032][T10165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 386.372050][T10165] Call Trace: [ 386.372062][T10165] [ 386.372075][T10165] dump_stack_lvl+0x116/0x1f0 [ 386.372122][T10165] should_fail_ex+0x512/0x640 [ 386.372177][T10165] should_failslab+0xc2/0x120 [ 386.372220][T10165] kmem_cache_alloc_noprof+0x75/0x6e0 [ 386.372254][T10165] ? __send_signal_locked+0x159/0x12c0 [ 386.372319][T10165] ? __send_signal_locked+0x159/0x12c0 [ 386.372370][T10165] __send_signal_locked+0x159/0x12c0 [ 386.372425][T10165] ? __lock_task_sighand+0x146/0x340 [ 386.372461][T10165] do_send_specific+0x1e8/0x370 [ 386.372502][T10165] ? __pfx_do_send_specific+0x10/0x10 [ 386.372542][T10165] ? __task_pid_nr_ns+0x1f5/0x500 [ 386.372599][T10165] do_rt_tgsigqueueinfo+0xa9/0x100 [ 386.372645][T10165] __x64_sys_rt_tgsigqueueinfo+0x17a/0x210 [ 386.372697][T10165] ? __pfx___x64_sys_rt_tgsigqueueinfo+0x10/0x10 [ 386.372766][T10165] do_syscall_64+0xcd/0xfa0 [ 386.372809][T10165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 386.372849][T10165] RIP: 0033:0x7feaa538f749 [ 386.372877][T10165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 386.372910][T10165] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000129 [ 386.372943][T10165] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 386.372964][T10165] RDX: 0000000000000021 RSI: 00000000000003ac RDI: 00000000000003ab [ 386.372982][T10165] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 386.373000][T10165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 386.373019][T10165] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 386.373064][T10165] [ 386.558763][ C0] vkms_vblank_simulate: vblank timer overrun [ 386.583134][T10158] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 386.589925][T10158] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 386.596911][T10158] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 386.604035][T10158] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 386.610363][T10158] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 386.686676][ T52] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18 [ 386.813286][T10171] netlink: set zone limit has 8 unknown bytes [ 386.863274][T10167] netlink: zone id is out of range [ 386.868839][T10167] netlink: del zone limit has 4 unknown bytes [ 387.032232][T10179] FAULT_INJECTION: forcing a failure. [ 387.032232][T10179] name failslab, interval 1, probability 0, space 0, times 0 [ 387.049095][T10179] CPU: 0 UID: 0 PID: 10179 Comm: syz.3.1268 Not tainted syzkaller #0 PREEMPT(full) [ 387.049138][T10179] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 387.049158][T10179] Call Trace: [ 387.049169][T10179] [ 387.049181][T10179] dump_stack_lvl+0x16c/0x1f0 [ 387.049227][T10179] should_fail_ex+0x512/0x640 [ 387.049278][T10179] ? kmem_cache_alloc_lru_noprof+0x66/0x6e0 [ 387.049320][T10179] should_failslab+0xc2/0x120 [ 387.049364][T10179] kmem_cache_alloc_lru_noprof+0x79/0x6e0 [ 387.049401][T10179] ? __d_alloc+0x32/0xae0 [ 387.049448][T10179] ? __d_alloc+0x32/0xae0 [ 387.049485][T10179] __d_alloc+0x32/0xae0 [ 387.049527][T10179] d_alloc_pseudo+0x1c/0xc0 [ 387.049576][T10179] alloc_file_pseudo+0xcf/0x230 [ 387.049628][T10179] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 387.049677][T10179] ? alloc_fd+0x471/0x7d0 [ 387.049717][T10179] sock_alloc_file+0x50/0x210 [ 387.049756][T10179] __sys_socket+0x1c0/0x260 [ 387.049810][T10179] ? __x64_sys_openat+0x174/0x210 [ 387.049861][T10179] ? __pfx___sys_socket+0x10/0x10 [ 387.049905][T10179] ? xfd_validate_state+0x61/0x180 [ 387.049963][T10179] __x64_sys_socket+0x72/0xb0 [ 387.050006][T10179] ? lockdep_hardirqs_on+0x7c/0x110 [ 387.050047][T10179] do_syscall_64+0xcd/0xfa0 [ 387.050092][T10179] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 387.050125][T10179] RIP: 0033:0x7f1b68d8f749 [ 387.050151][T10179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 387.050184][T10179] RSP: 002b:00007f1b69be0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 387.050215][T10179] RAX: ffffffffffffffda RBX: 00007f1b68fe5fa0 RCX: 00007f1b68d8f749 [ 387.050237][T10179] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000000a [ 387.050257][T10179] RBP: 00007f1b68e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 387.050277][T10179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 387.050295][T10179] R13: 00007f1b68fe6038 R14: 00007f1b68fe5fa0 R15: 00007ffc1215c908 [ 387.050339][T10179] [ 387.256567][ C0] vkms_vblank_simulate: vblank timer overrun [ 387.276848][T10182] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1266'. [ 387.837580][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 387.848881][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 388.067789][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 388.634833][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 388.641073][ T7317] Bluetooth: hci2: command 0x0c1a tx timeout [ 388.647207][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout [ 388.725562][T10200] Invalid ELF header magic: != ELF [ 389.144656][ T30] audit: type=1800 audit(4294976326.040:6): pid=10206 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1275" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 389.280651][T10208] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1276'. [ 389.318946][T10208] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1276'. [ 389.966337][T10236] bond0: invalid ARP target specified [ 390.146990][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 390.694453][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 392.693859][T10256] could not allocate digest TFM handle [ 393.847367][T10291] input: jJǸ-9%vJ86 as /devices/virtual/input/input18 [ 394.244735][T10297] random: crng reseeded on system resumption [ 395.216218][T10306] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1303'. [ 395.583431][T10314] FAULT_INJECTION: forcing a failure. [ 395.583431][T10314] name failslab, interval 1, probability 0, space 0, times 0 [ 395.714865][T10314] CPU: 1 UID: 0 PID: 10314 Comm: syz.2.1305 Not tainted syzkaller #0 PREEMPT(full) [ 395.714911][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 395.714932][T10314] Call Trace: [ 395.714942][T10314] [ 395.714954][T10314] dump_stack_lvl+0x16c/0x1f0 [ 395.715011][T10314] should_fail_ex+0x512/0x640 [ 395.715063][T10314] ? __kmalloc_noprof+0xca/0x880 [ 395.715121][T10314] should_failslab+0xc2/0x120 [ 395.715167][T10314] __kmalloc_noprof+0xdd/0x880 [ 395.715220][T10314] ? create_ruleset+0x21/0x140 [ 395.715276][T10314] ? create_ruleset+0x21/0x140 [ 395.715323][T10314] create_ruleset+0x21/0x140 [ 395.715374][T10314] landlock_merge_ruleset+0xbb/0x870 [ 395.715408][T10314] ? prepare_creds+0x583/0x7d0 [ 395.715460][T10314] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 395.715518][T10314] do_syscall_64+0xcd/0xfa0 [ 395.715562][T10314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 395.715596][T10314] RIP: 0033:0x7feaa538f749 [ 395.715622][T10314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 395.715653][T10314] RSP: 002b:00007feaa6161038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 395.715683][T10314] RAX: ffffffffffffffda RBX: 00007feaa55e6090 RCX: 00007feaa538f749 [ 395.715705][T10314] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 395.715724][T10314] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 395.715744][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 395.715763][T10314] R13: 00007feaa55e6128 R14: 00007feaa55e6090 R15: 00007ffd9a0224a8 [ 395.715805][T10314] [ 396.705790][T10328] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint [ 399.357253][T10364] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1321'. [ 399.779876][T10377] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1326'. [ 399.814182][T10379] FAULT_INJECTION: forcing a failure. [ 399.814182][T10379] name failslab, interval 1, probability 0, space 0, times 0 [ 399.827788][T10379] CPU: 1 UID: 0 PID: 10379 Comm: syz.1.1328 Not tainted syzkaller #0 PREEMPT(full) [ 399.827832][T10379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 399.827852][T10379] Call Trace: [ 399.827863][T10379] [ 399.827875][T10379] dump_stack_lvl+0x16c/0x1f0 [ 399.827921][T10379] should_fail_ex+0x512/0x640 [ 399.827971][T10379] ? __kmalloc_cache_node_noprof+0x62/0x7a0 [ 399.828018][T10379] should_failslab+0xc2/0x120 [ 399.828064][T10379] __kmalloc_cache_node_noprof+0x75/0x7a0 [ 399.828104][T10379] ? trace_kmem_cache_alloc+0x28/0xc0 [ 399.828149][T10379] ? mem_cgroup_css_alloc+0xac2/0x1e80 [ 399.828182][T10379] ? mem_cgroup_css_alloc+0xa8f/0x1e80 [ 399.828227][T10379] ? mem_cgroup_css_alloc+0xac2/0x1e80 [ 399.828262][T10379] mem_cgroup_css_alloc+0xac2/0x1e80 [ 399.828313][T10379] cgroup_apply_control_enable+0x4b0/0xbb0 [ 399.828384][T10379] cgroup_mkdir+0x5e0/0x1310 [ 399.828424][T10379] ? __pfx_cgroup_mkdir+0x10/0x10 [ 399.828457][T10379] kernfs_iop_mkdir+0x111/0x190 [ 399.828505][T10379] ? bpf_lsm_inode_mkdir+0x9/0x10 [ 399.828543][T10379] vfs_mkdir+0x593/0x8c0 [ 399.828600][T10379] do_mkdirat+0x304/0x3e0 [ 399.828647][T10379] ? __pfx_do_mkdirat+0x10/0x10 [ 399.828689][T10379] ? getname_flags.part.0+0x1c5/0x550 [ 399.828743][T10379] __x64_sys_mkdir+0xef/0x140 [ 399.828784][T10379] do_syscall_64+0xcd/0xfa0 [ 399.828828][T10379] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.828862][T10379] RIP: 0033:0x7f95b3d8f749 [ 399.828888][T10379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.828920][T10379] RSP: 002b:00007f95b4bb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 399.828951][T10379] RAX: ffffffffffffffda RBX: 00007f95b3fe5fa0 RCX: 00007f95b3d8f749 [ 399.828973][T10379] RDX: 0000000000000000 RSI: 00000000000008cd RDI: 0000200000000000 [ 399.828993][T10379] RBP: 00007f95b3e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 399.829013][T10379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 399.829033][T10379] R13: 00007f95b3fe6038 R14: 00007f95b3fe5fa0 R15: 00007ffd3e013028 [ 399.829079][T10379] [ 401.034845][T10404] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1334'. [ 401.393852][T10410] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1335'. [ 401.473056][T10410] bridge_slave_1: left allmulticast mode [ 401.497184][T10410] bridge_slave_1: left promiscuous mode [ 401.541202][T10410] bridge0: port 2(bridge_slave_1) entered disabled state [ 401.761027][T10410] bridge_slave_0: left promiscuous mode [ 401.781265][T10410] bridge0: port 1(bridge_slave_0) entered disabled state [ 402.769195][T10421] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1337'. [ 403.194837][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1341'. [ 403.207982][T10434] netlink: 354 bytes leftover after parsing attributes in process `syz.2.1341'. [ 403.699628][T10442] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1342'. [ 403.798166][T10444] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1351'. [ 404.124223][T10448] FAULT_INJECTION: forcing a failure. [ 404.124223][T10448] name failslab, interval 1, probability 0, space 0, times 0 [ 404.138471][T10448] CPU: 1 UID: 0 PID: 10448 Comm: syz.2.1344 Not tainted syzkaller #0 PREEMPT(full) [ 404.138519][T10448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 404.138540][T10448] Call Trace: [ 404.138552][T10448] [ 404.138564][T10448] dump_stack_lvl+0x16c/0x1f0 [ 404.138612][T10448] should_fail_ex+0x512/0x640 [ 404.138663][T10448] ? __kmalloc_cache_noprof+0x5f/0x780 [ 404.138700][T10448] should_failslab+0xc2/0x120 [ 404.138746][T10448] __kmalloc_cache_noprof+0x72/0x780 [ 404.138778][T10448] ? sctp_auth_shkey_create+0x9e/0x210 [ 404.138828][T10448] ? sctp_auth_shkey_create+0x9e/0x210 [ 404.138870][T10448] sctp_auth_shkey_create+0x9e/0x210 [ 404.138916][T10448] sctp_endpoint_new+0x589/0xb20 [ 404.138961][T10448] ? __pfx_sctp_endpoint_new+0x10/0x10 [ 404.139007][T10448] ? lockdep_init_map_type+0x5c/0x280 [ 404.139058][T10448] ? lockdep_init_map_type+0x5c/0x280 [ 404.139113][T10448] sctp_init_sock+0xe2b/0x12f0 [ 404.139153][T10448] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 404.139196][T10448] sctp_v6_init_sock+0x16/0x70 [ 404.139241][T10448] ? __pfx_sctp_v6_init_sock+0x10/0x10 [ 404.139282][T10448] inet6_create+0xb30/0x12b0 [ 404.139326][T10448] ? inet6_create+0x7f/0x12b0 [ 404.139371][T10448] __sock_create+0x338/0x8d0 [ 404.139425][T10448] __sys_socket+0x14d/0x260 [ 404.139468][T10448] ? __x64_sys_openat+0x174/0x210 [ 404.139519][T10448] ? __pfx___sys_socket+0x10/0x10 [ 404.139564][T10448] ? xfd_validate_state+0x61/0x180 [ 404.139624][T10448] __x64_sys_socket+0x72/0xb0 [ 404.139667][T10448] ? lockdep_hardirqs_on+0x7c/0x110 [ 404.139708][T10448] do_syscall_64+0xcd/0xfa0 [ 404.139752][T10448] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 404.139786][T10448] RIP: 0033:0x7feaa538f749 [ 404.139812][T10448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.139845][T10448] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 404.139874][T10448] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 404.139896][T10448] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000000a [ 404.139915][T10448] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 404.139936][T10448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 404.139956][T10448] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 404.140001][T10448] [ 405.710538][ T30] audit: type=1800 audit(4294976342.686:7): pid=10469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1350" name="dbroot" dev="configfs" ino=34025 res=0 errno=0 [ 406.700486][T10479] netlink: 'syz.2.1355': attribute type 2 has an invalid length. [ 406.712067][T10479] netlink: 'syz.2.1355': attribute type 3 has an invalid length. [ 406.714679][T10477] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3930829162 (15723316648 ns) > initial count (10539976056 ns). Using initial count to start timer. [ 406.730334][T10479] netlink: 158 bytes leftover after parsing attributes in process `syz.2.1355'. [ 406.755841][T10479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1355'. [ 410.135203][T10543] FAULT_INJECTION: forcing a failure. [ 410.135203][T10543] name failslab, interval 1, probability 0, space 0, times 0 [ 410.202912][T10543] CPU: 0 UID: 0 PID: 10543 Comm: syz.0.1368 Not tainted syzkaller #0 PREEMPT(full) [ 410.202955][T10543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 410.202975][T10543] Call Trace: [ 410.202985][T10543] [ 410.202997][T10543] dump_stack_lvl+0x16c/0x1f0 [ 410.203043][T10543] should_fail_ex+0x512/0x640 [ 410.203090][T10543] ? __kmalloc_noprof+0xca/0x880 [ 410.203147][T10543] should_failslab+0xc2/0x120 [ 410.203185][T10543] __kmalloc_noprof+0xdd/0x880 [ 410.203237][T10543] ? create_ruleset+0x21/0x140 [ 410.203292][T10543] ? create_ruleset+0x21/0x140 [ 410.203335][T10543] create_ruleset+0x21/0x140 [ 410.203378][T10543] landlock_merge_ruleset+0xbb/0x870 [ 410.203421][T10543] ? prepare_creds+0x583/0x7d0 [ 410.203479][T10543] __do_sys_landlock_restrict_self+0x2a2/0x910 [ 410.203534][T10543] do_syscall_64+0xcd/0xfa0 [ 410.203578][T10543] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.203609][T10543] RIP: 0033:0x7f23d0f8f749 [ 410.203635][T10543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.203667][T10543] RSP: 002b:00007f23d1dd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001be [ 410.203698][T10543] RAX: ffffffffffffffda RBX: 00007f23d11e6090 RCX: 00007f23d0f8f749 [ 410.203720][T10543] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 410.203739][T10543] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 410.203757][T10543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.203775][T10543] R13: 00007f23d11e6128 R14: 00007f23d11e6090 R15: 00007ffedd52c578 [ 410.203820][T10543] [ 413.258089][T10586] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1381'. [ 414.570318][T10606] netlink: 'syz.1.1388': attribute type 2 has an invalid length. [ 414.589840][T10606] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1388'. [ 415.053686][T10615] input: jJǸ-9%vJ86 as /devices/virtual/input/input19 [ 416.679639][T10637] netlink: 9 bytes leftover after parsing attributes in process `syz.2.1397'. [ 418.014610][T10661] input: jJǸ-9%vJ86 as /devices/virtual/input/input20 [ 419.441080][T10683] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 419.470912][T10683] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 419.501301][T10683] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 419.907970][T10683] page_type: f5(slab) [ 419.912769][T10683] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 419.922969][T10683] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 419.934602][T10683] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 419.943695][T10683] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 419.953938][T10683] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 419.967696][T10683] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 420.028747][T10683] page dumped because: unmovable page [ 420.056265][T10683] page_owner tracks the page as allocated [ 420.118481][T10683] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevadm), ts 45559950635, free_ts 37270590065 [ 420.166970][T10683] post_alloc_hook+0x1af/0x220 [ 420.179347][T10683] get_page_from_freelist+0x10a3/0x3a30 [ 420.197271][T10683] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 420.209921][T10683] alloc_pages_mpol+0x1fb/0x550 [ 420.216637][T10683] new_slab+0x24a/0x360 [ 420.291277][T10683] ___slab_alloc+0xd79/0x1a50 [ 420.296065][T10683] __slab_alloc.constprop.0+0x63/0x110 [ 420.318242][T10683] kmem_cache_alloc_lru_noprof+0x443/0x6e0 [ 420.328676][ T30] audit: type=1800 audit(4294976357.382:8): pid=10692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1414" name="dbroot" dev="configfs" ino=34933 res=0 errno=0 [ 420.355779][T10683] alloc_inode+0xc3/0x240 [ 420.379723][T10683] iget_locked+0x2fa/0x860 [ 420.380294][T10694] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1416'. [ 420.386099][T10683] kernfs_get_inode+0x48/0x460 [ 420.398606][T10683] kernfs_iop_lookup+0x1a7/0x2d0 [ 420.408725][T10683] __lookup_slow+0x251/0x460 [ 420.413786][T10683] walk_component+0x353/0x5b0 [ 420.418557][T10683] link_path_walk+0x627/0xe20 [ 420.426668][T10683] path_lookupat+0x15a/0x6d0 [ 420.432263][T10683] page last free pid 1 tgid 1 stack trace: [ 420.438623][T10683] __free_frozen_pages+0x7df/0x1160 [ 420.444499][T10683] free_contig_range+0x183/0x4b0 [ 420.449978][T10683] destroy_args+0xb69/0x12e0 [ 420.454623][T10683] debug_vm_pgtable+0x1a32/0x3640 [ 420.460379][T10683] do_one_initcall+0x123/0x6e0 [ 420.465988][T10683] kernel_init_freeable+0x5c8/0x920 [ 420.473611][T10683] kernel_init+0x1c/0x2b0 [ 420.478024][T10683] ret_from_fork+0x675/0x7d0 [ 420.483320][T10683] ret_from_fork_asm+0x1a/0x30 [ 420.511476][T10696] netlink: 'syz.3.1416': attribute type 1 has an invalid length. [ 420.533833][T10696] netlink: 'syz.3.1416': attribute type 6 has an invalid length. [ 420.981630][T10712] input: jJǸ-9%vJ86 as /devices/virtual/input/input21 [ 423.829164][ T30] audit: type=1326 audit(4294976360.901:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.0.1426" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f23d0f8f749 code=0x0 [ 423.897932][T10737] FAULT_INJECTION: forcing a failure. [ 423.897932][T10737] name failslab, interval 1, probability 0, space 0, times 0 [ 423.927038][T10737] CPU: 1 UID: 0 PID: 10737 Comm: syz.0.1426 Not tainted syzkaller #0 PREEMPT(full) [ 423.927082][T10737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 423.927102][T10737] Call Trace: [ 423.927112][T10737] [ 423.927124][T10737] dump_stack_lvl+0x16c/0x1f0 [ 423.927172][T10737] should_fail_ex+0x512/0x640 [ 423.927232][T10737] ? __kmalloc_cache_noprof+0x5f/0x780 [ 423.927269][T10737] should_failslab+0xc2/0x120 [ 423.927318][T10737] __kmalloc_cache_noprof+0x72/0x780 [ 423.927352][T10737] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 423.927410][T10737] ? snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 423.927457][T10737] snd_pcm_oss_change_params_locked+0x1db/0x3a30 [ 423.927513][T10737] ? trace_contention_end+0xdd/0x130 [ 423.927562][T10737] ? __mutex_lock+0x1c5/0x1060 [ 423.927613][T10737] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 423.927665][T10737] ? __pfx___mutex_lock+0x10/0x10 [ 423.927720][T10737] ? __fsnotify_parent+0x24b/0xc40 [ 423.927770][T10737] snd_pcm_oss_make_ready+0xe6/0x1b0 [ 423.927818][T10737] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 423.927863][T10737] snd_pcm_oss_sync+0x1de/0x840 [ 423.927912][T10737] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 423.927958][T10737] snd_pcm_oss_release+0x28b/0x310 [ 423.928008][T10737] ? __pfx_snd_pcm_oss_release+0x10/0x10 [ 423.928052][T10737] __fput+0x402/0xb70 [ 423.928108][T10737] task_work_run+0x150/0x240 [ 423.928164][T10737] ? __pfx_task_work_run+0x10/0x10 [ 423.928225][T10737] ? __pfx___do_sys_close_range+0x10/0x10 [ 423.928273][T10737] exit_to_user_mode_loop+0xec/0x130 [ 423.928328][T10737] do_syscall_64+0x426/0xfa0 [ 423.928372][T10737] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 423.928404][T10737] RIP: 0033:0x7f23d0f8f749 [ 423.928431][T10737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 423.928465][T10737] RSP: 002b:00007f23d1dd5038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 423.928496][T10737] RAX: 0000000000000000 RBX: 00007f23d11e6090 RCX: 00007f23d0f8f749 [ 423.928518][T10737] RDX: 0000000000000000 RSI: fffffffffffff000 RDI: 0000000000000000 [ 423.928539][T10737] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 423.928560][T10737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 423.928579][T10737] R13: 00007f23d11e6128 R14: 00007f23d11e6090 R15: 00007ffedd52c578 [ 423.928625][T10737] [ 425.063183][T10750] FAULT_INJECTION: forcing a failure. [ 425.063183][T10750] name failslab, interval 1, probability 0, space 0, times 0 [ 425.091275][T10750] CPU: 1 UID: 0 PID: 10750 Comm: syz.2.1430 Not tainted syzkaller #0 PREEMPT(full) [ 425.091311][T10750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 425.091327][T10750] Call Trace: [ 425.091335][T10750] [ 425.091345][T10750] dump_stack_lvl+0x16c/0x1f0 [ 425.091382][T10750] should_fail_ex+0x512/0x640 [ 425.091421][T10750] ? __kmalloc_noprof+0xca/0x880 [ 425.091474][T10750] should_failslab+0xc2/0x120 [ 425.091509][T10750] __kmalloc_noprof+0xdd/0x880 [ 425.091551][T10750] ? sk_prot_alloc+0x1a8/0x2a0 [ 425.091587][T10750] ? sk_prot_alloc+0x1a8/0x2a0 [ 425.091617][T10750] sk_prot_alloc+0x1a8/0x2a0 [ 425.091650][T10750] sk_alloc+0x36/0xc20 [ 425.091692][T10750] __netlink_create+0x5e/0x2c0 [ 425.091734][T10750] __netlink_kernel_create+0xed/0x750 [ 425.091764][T10750] ? __pfx___netlink_kernel_create+0x10/0x10 [ 425.091801][T10750] fib_net_init+0x26d/0x3f0 [ 425.091832][T10750] ? __pfx___register_sysctl_table+0x10/0x10 [ 425.091872][T10750] ? __pfx_fib_net_init+0x10/0x10 [ 425.091903][T10750] ? lockdep_init_map_type+0x5c/0x280 [ 425.091940][T10750] ? __pfx_nl_fib_input+0x10/0x10 [ 425.091976][T10750] ? devinet_init_net+0x5c2/0x910 [ 425.092027][T10750] ? __pfx_fib_net_init+0x10/0x10 [ 425.092056][T10750] ops_init+0x1e2/0x5f0 [ 425.092084][T10750] setup_net+0x100/0x390 [ 425.092111][T10750] ? __pfx_setup_net+0x10/0x10 [ 425.092138][T10750] ? debug_mutex_init+0x37/0x70 [ 425.092167][T10750] copy_net_ns+0x2f8/0x690 [ 425.092199][T10750] create_new_namespaces+0x3ea/0xa90 [ 425.092234][T10750] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 425.092266][T10750] ksys_unshare+0x45b/0xa40 [ 425.092300][T10750] ? __pfx_ksys_unshare+0x10/0x10 [ 425.092334][T10750] ? xfd_validate_state+0x61/0x180 [ 425.092379][T10750] __x64_sys_unshare+0x31/0x40 [ 425.092411][T10750] do_syscall_64+0xcd/0xfa0 [ 425.092448][T10750] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 425.092473][T10750] RIP: 0033:0x7feaa538f749 [ 425.092492][T10750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.092516][T10750] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 425.092539][T10750] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 425.092555][T10750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 425.092570][T10750] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 425.092585][T10750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 425.092599][T10750] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 425.092632][T10750] [ 426.924887][ T52] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18 [ 427.358355][T10787] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 427.519504][T10791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1441'. [ 429.159881][T10815] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input22 [ 430.047060][T10822] could not allocate digest TFM handle [ 430.521007][T10834] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1450'. [ 430.628068][T10817] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input23 [ 431.238014][ T30] audit: type=1800 audit(4294976368.339:10): pid=10846 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1454" name="dbroot" dev="configfs" ino=35235 res=0 errno=0 [ 433.387185][T10871] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1461'. [ 433.801493][T10873] netlink: 'syz.2.1462': attribute type 4 has an invalid length. [ 433.815941][T10873] netlink: 314 bytes leftover after parsing attributes in process `syz.2.1462'. [ 433.829400][T10873] IPv6: NLM_F_CREATE should be specified when creating new route [ 434.060344][ T30] audit: type=1800 audit(4294976371.184:11): pid=10882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1465" name="dbroot" dev="configfs" ino=35283 res=0 errno=0 [ 434.982074][T10876] delete_channel: no stack [ 437.498536][ T30] audit: type=1800 audit(4294976374.642:12): pid=10922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1476" name="dbroot" dev="configfs" ino=35361 res=0 errno=0 [ 439.029458][T10946] usb usb15: usbfs: process 10946 (syz.2.1483) did not claim interface 0 before use [ 440.058797][T10961] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 440.073549][T10961] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 440.086191][T10961] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 440.094002][T10961] page_type: f5(slab) [ 440.100743][T10961] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 440.109845][T10961] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 440.118752][T10961] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 440.128880][T10961] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 440.138300][T10961] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 440.161540][T10961] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 440.179721][T10961] page dumped because: unmovable page [ 440.193303][T10961] page_owner tracks the page as allocated [ 440.203944][T10961] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevadm), ts 45559950635, free_ts 37270590065 [ 440.275173][T10961] post_alloc_hook+0x1af/0x220 [ 440.292588][T10961] get_page_from_freelist+0x10a3/0x3a30 [ 440.320875][T10961] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 440.373332][T10961] alloc_pages_mpol+0x1fb/0x550 [ 440.413722][T10961] new_slab+0x24a/0x360 [ 440.434156][T10961] ___slab_alloc+0xd79/0x1a50 [ 440.441876][T10961] __slab_alloc.constprop.0+0x63/0x110 [ 440.450468][T10961] kmem_cache_alloc_lru_noprof+0x443/0x6e0 [ 440.456501][T10961] alloc_inode+0xc3/0x240 [ 440.460922][T10961] iget_locked+0x2fa/0x860 [ 440.465517][T10961] kernfs_get_inode+0x48/0x460 [ 440.470345][T10961] kernfs_iop_lookup+0x1a7/0x2d0 [ 440.475492][T10961] __lookup_slow+0x251/0x460 [ 440.541768][T10961] walk_component+0x353/0x5b0 [ 440.546994][T10961] link_path_walk+0x627/0xe20 [ 440.551747][T10961] path_lookupat+0x15a/0x6d0 [ 440.577651][T10961] page last free pid 1 tgid 1 stack trace: [ 440.583528][T10961] __free_frozen_pages+0x7df/0x1160 [ 440.594747][T10961] free_contig_range+0x183/0x4b0 [ 440.599926][T10961] destroy_args+0xb69/0x12e0 [ 440.614978][T10961] debug_vm_pgtable+0x1a32/0x3640 [ 440.632265][T10961] do_one_initcall+0x123/0x6e0 [ 440.640367][T10961] kernel_init_freeable+0x5c8/0x920 [ 440.654881][T10961] kernel_init+0x1c/0x2b0 [ 440.677589][T10961] ret_from_fork+0x675/0x7d0 [ 440.692559][T10961] ret_from_fork_asm+0x1a/0x30 [ 443.410246][T11019] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 443.419109][T11019] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 443.527007][T11019] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 443.534904][T11019] page_type: f5(slab) [ 443.540999][T11019] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 443.553186][T11019] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 443.562035][T11019] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 443.571348][T11019] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 443.580172][T11019] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 443.629937][T11019] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 443.653494][T11019] page dumped because: unmovable page [ 443.674608][T11019] page_owner tracks the page as allocated [ 443.684689][T11019] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevadm), ts 45559950635, free_ts 37270590065 [ 443.720244][T11019] post_alloc_hook+0x1af/0x220 [ 443.725119][T11019] get_page_from_freelist+0x10a3/0x3a30 [ 443.746056][T11019] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 443.753274][T11019] alloc_pages_mpol+0x1fb/0x550 [ 443.758543][T11019] new_slab+0x24a/0x360 [ 443.765779][T11019] ___slab_alloc+0xd79/0x1a50 [ 443.771098][T11019] __slab_alloc.constprop.0+0x63/0x110 [ 443.776682][T11019] kmem_cache_alloc_lru_noprof+0x443/0x6e0 [ 443.782699][T11019] alloc_inode+0xc3/0x240 [ 443.787141][T11019] iget_locked+0x2fa/0x860 [ 443.792147][T11019] kernfs_get_inode+0x48/0x460 [ 443.796997][T11019] kernfs_iop_lookup+0x1a7/0x2d0 [ 443.961999][T11019] __lookup_slow+0x251/0x460 [ 443.966759][T11019] walk_component+0x353/0x5b0 [ 444.037060][T11019] link_path_walk+0x627/0xe20 [ 444.046310][T11019] path_lookupat+0x15a/0x6d0 [ 444.051220][T11019] page last free pid 1 tgid 1 stack trace: [ 444.076612][T11019] __free_frozen_pages+0x7df/0x1160 [ 444.098079][T11019] free_contig_range+0x183/0x4b0 [ 444.135785][T11019] destroy_args+0xb69/0x12e0 [ 444.141798][T11019] debug_vm_pgtable+0x1a32/0x3640 [ 444.147125][T11019] do_one_initcall+0x123/0x6e0 [ 444.157733][T11019] kernel_init_freeable+0x5c8/0x920 [ 444.164278][T11019] kernel_init+0x1c/0x2b0 [ 444.177452][T11019] ret_from_fork+0x675/0x7d0 [ 444.200952][T11019] ret_from_fork_asm+0x1a/0x30 [ 447.181728][T11072] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78000 [ 447.203250][T11075] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input24 [ 447.242029][T11072] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 447.317987][T11072] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 447.325796][T11072] page_type: f5(slab) [ 447.331288][T11072] raw: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 447.345279][T11072] raw: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 447.559970][T11072] head: 00fff00000000040 ffff8881404078c0 dead000000000122 0000000000000000 [ 447.773451][T11072] head: 0000000000000000 0000000000190019 00000000f5000000 0000000000000000 [ 447.790546][T11072] head: 00fff00000000003 ffffea0001e00001 00000000ffffffff 00000000ffffffff [ 447.800087][T11072] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 447.809064][T11072] page dumped because: unmovable page [ 447.906730][T11072] page_owner tracks the page as allocated [ 447.912543][T11072] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5211, tgid 5211 (udevadm), ts 45559950635, free_ts 37270590065 [ 447.939005][T11072] post_alloc_hook+0x1af/0x220 [ 447.943862][T11072] get_page_from_freelist+0x10a3/0x3a30 [ 447.949685][T11072] __alloc_frozen_pages_noprof+0x25f/0x2470 [ 447.955738][T11072] alloc_pages_mpol+0x1fb/0x550 [ 447.967659][T11072] new_slab+0x24a/0x360 [ 447.976400][T11072] ___slab_alloc+0xd79/0x1a50 [ 447.981422][T11072] __slab_alloc.constprop.0+0x63/0x110 [ 447.991480][T11072] kmem_cache_alloc_lru_noprof+0x443/0x6e0 [ 448.006120][T11072] alloc_inode+0xc3/0x240 [ 448.010568][T11072] iget_locked+0x2fa/0x860 [ 448.028395][T11072] kernfs_get_inode+0x48/0x460 [ 448.042681][T11072] kernfs_iop_lookup+0x1a7/0x2d0 [ 448.186396][T11072] __lookup_slow+0x251/0x460 [ 448.226214][T11072] walk_component+0x353/0x5b0 [ 448.230996][T11072] link_path_walk+0x627/0xe20 [ 448.258085][T11072] path_lookupat+0x15a/0x6d0 [ 448.262829][T11072] page last free pid 1 tgid 1 stack trace: [ 448.309440][T11072] __free_frozen_pages+0x7df/0x1160 [ 448.323270][T11072] free_contig_range+0x183/0x4b0 [ 448.333565][T11072] destroy_args+0xb69/0x12e0 [ 448.355581][T11072] debug_vm_pgtable+0x1a32/0x3640 [ 448.355629][T11072] do_one_initcall+0x123/0x6e0 [ 448.355664][T11072] kernel_init_freeable+0x5c8/0x920 [ 448.355703][T11072] kernel_init+0x1c/0x2b0 [ 448.355741][T11072] ret_from_fork+0x675/0x7d0 [ 448.355778][T11072] ret_from_fork_asm+0x1a/0x30 [ 448.701151][T11081] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input25 [ 448.959796][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 448.966497][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 448.984505][T11091] HSR: entered promiscuous mode [ 450.231145][T11110] netlink: 62 bytes leftover after parsing attributes in process `syz.0.1524'. [ 451.790556][T11129] netlink: 'syz.1.1531': attribute type 1 has an invalid length. [ 451.799479][T11129] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1531'. [ 452.027974][T11138] FAULT_INJECTION: forcing a failure. [ 452.027974][T11138] name failslab, interval 1, probability 0, space 0, times 0 [ 452.050328][T11138] CPU: 0 UID: 0 PID: 11138 Comm: syz.1.1534 Not tainted syzkaller #0 PREEMPT(full) [ 452.050372][T11138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 452.050393][T11138] Call Trace: [ 452.050403][T11138] [ 452.050416][T11138] dump_stack_lvl+0x16c/0x1f0 [ 452.050462][T11138] should_fail_ex+0x512/0x640 [ 452.050510][T11138] ? fs_reclaim_acquire+0xae/0x150 [ 452.050557][T11138] should_failslab+0xc2/0x120 [ 452.050600][T11138] __kmalloc_noprof+0xdd/0x880 [ 452.050648][T11138] ? tomoyo_encode2+0x100/0x3e0 [ 452.050694][T11138] ? tomoyo_encode2+0x100/0x3e0 [ 452.050729][T11138] tomoyo_encode2+0x100/0x3e0 [ 452.050774][T11138] tomoyo_encode+0x29/0x50 [ 452.050810][T11138] tomoyo_realpath_from_path+0x18f/0x6e0 [ 452.050865][T11138] tomoyo_mkdev_perm+0x22b/0x570 [ 452.050895][T11138] ? tomoyo_mkdev_perm+0x217/0x570 [ 452.050930][T11138] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 452.050965][T11138] ? do_raw_spin_lock+0x12c/0x2b0 [ 452.051030][T11138] ? do_raw_spin_unlock+0x172/0x230 [ 452.051093][T11138] ? __pfx_current_check_access_path+0x10/0x10 [ 452.051139][T11138] ? simple_lookup+0x105/0x1d0 [ 452.051183][T11138] tomoyo_path_mknod+0x12a/0x190 [ 452.051230][T11138] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 452.051278][T11138] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 452.051339][T11138] security_path_mknod+0x161/0x310 [ 452.051373][T11138] do_mknodat+0x239/0x5d0 [ 452.051414][T11138] ? __pfx_do_mknodat+0x10/0x10 [ 452.051447][T11138] ? getname_flags.part.0+0x1c5/0x550 [ 452.051506][T11138] __x64_sys_mknod+0x87/0xb0 [ 452.051544][T11138] do_syscall_64+0xcd/0xfa0 [ 452.051588][T11138] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 452.051620][T11138] RIP: 0033:0x7f95b3d8f749 [ 452.051645][T11138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 452.051678][T11138] RSP: 002b:00007f95b4bb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 452.051708][T11138] RAX: ffffffffffffffda RBX: 00007f95b3fe5fa0 RCX: 00007f95b3d8f749 [ 452.051730][T11138] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 452.051750][T11138] RBP: 00007f95b3e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 452.051770][T11138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 452.051790][T11138] R13: 00007f95b3fe6038 R14: 00007f95b3fe5fa0 R15: 00007ffd3e013028 [ 452.051836][T11138] [ 452.051954][T11138] ERROR: Out of memory at tomoyo_realpath_from_path. [ 453.386292][T11153] netlink: 504 bytes leftover after parsing attributes in process `syz.3.1544'. [ 453.466728][T11151] netlink: 350 bytes leftover after parsing attributes in process `syz.3.1544'. [ 453.633925][T11163] Invalid ELF header magic: != ELF [ 454.178913][T11172] FAULT_INJECTION: forcing a failure. [ 454.178913][T11172] name failslab, interval 1, probability 0, space 0, times 0 [ 454.224255][T11172] CPU: 1 UID: 0 PID: 11172 Comm: syz.0.1542 Not tainted syzkaller #0 PREEMPT(full) [ 454.224300][T11172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 454.224321][T11172] Call Trace: [ 454.224331][T11172] [ 454.224344][T11172] dump_stack_lvl+0x16c/0x1f0 [ 454.224390][T11172] should_fail_ex+0x512/0x640 [ 454.224448][T11172] should_failslab+0xc2/0x120 [ 454.224494][T11172] kmem_cache_alloc_node_noprof+0x78/0x770 [ 454.224532][T11172] ? __alloc_skb+0x2b2/0x380 [ 454.224605][T11172] ? __alloc_skb+0x2b2/0x380 [ 454.224652][T11172] __alloc_skb+0x2b2/0x380 [ 454.224702][T11172] ? __pfx___alloc_skb+0x10/0x10 [ 454.224755][T11172] ? kasan_quarantine_put+0xf0/0x240 [ 454.224806][T11172] __pskb_copy_fclone+0xef/0xb50 [ 454.224856][T11172] tipc_sk_mcast_rcv+0x52d/0xfa0 [ 454.224886][T11172] ? __lock_acquire+0xb8a/0x1c90 [ 454.224947][T11172] ? __pfx_tipc_sk_mcast_rcv+0x10/0x10 [ 454.224979][T11172] ? __lock_acquire+0x622/0x1c90 [ 454.225046][T11172] ? find_held_lock+0x2b/0x80 [ 454.225081][T11172] ? tipc_mcast_xmit+0x6d5/0xfe0 [ 454.225119][T11172] tipc_mcast_xmit+0x711/0xfe0 [ 454.225148][T11172] ? __pfx__copy_from_iter+0x10/0x10 [ 454.225200][T11172] ? __pfx___alloc_skb+0x10/0x10 [ 454.225256][T11172] ? __pfx_tipc_mcast_xmit+0x10/0x10 [ 454.225288][T11172] ? __lock_acquire+0x622/0x1c90 [ 454.225377][T11172] ? tipc_send_group_bcast+0x803/0xa50 [ 454.225422][T11172] tipc_send_group_bcast+0x803/0xa50 [ 454.225484][T11172] ? __pfx_tipc_send_group_bcast+0x10/0x10 [ 454.225535][T11172] ? __lock_acquire+0xb8a/0x1c90 [ 454.225586][T11172] ? __pfx_woken_wake_function+0x10/0x10 [ 454.225623][T11172] ? find_held_lock+0x2b/0x80 [ 454.225670][T11172] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 454.225706][T11172] ? finish_task_switch.isra.0+0x21c/0xc10 [ 454.225749][T11172] __tipc_sendmsg+0x4ab/0x19a0 [ 454.225780][T11172] ? finish_task_switch.isra.0+0x221/0xc10 [ 454.225817][T11172] ? rcu_is_watching+0x12/0xc0 [ 454.225860][T11172] ? __pfx___tipc_sendmsg+0x10/0x10 [ 454.225931][T11172] ? __local_bh_enable_ip+0xa4/0x120 [ 454.225976][T11172] tipc_sendmsg+0x4f/0x70 [ 454.226006][T11172] ____sys_sendmsg+0xa98/0xc70 [ 454.226050][T11172] ? copy_msghdr_from_user+0x10a/0x160 [ 454.226083][T11172] ? __pfx_____sys_sendmsg+0x10/0x10 [ 454.226136][T11172] ? __pfx_futex_wake_mark+0x10/0x10 [ 454.226193][T11172] ___sys_sendmsg+0x134/0x1d0 [ 454.226225][T11172] ? __pfx____sys_sendmsg+0x10/0x10 [ 454.226254][T11172] ? __lock_acquire+0x622/0x1c90 [ 454.226354][T11172] __sys_sendmsg+0x16d/0x220 [ 454.226390][T11172] ? __pfx___sys_sendmsg+0x10/0x10 [ 454.226424][T11172] ? __x64_sys_futex+0x1e0/0x4c0 [ 454.226496][T11172] do_syscall_64+0xcd/0xfa0 [ 454.226549][T11172] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 454.226583][T11172] RIP: 0033:0x7f23d0f8f749 [ 454.226610][T11172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 454.226644][T11172] RSP: 002b:00007f23d1df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 454.226676][T11172] RAX: ffffffffffffffda RBX: 00007f23d11e5fa0 RCX: 00007f23d0f8f749 [ 454.226698][T11172] RDX: 000000000000c800 RSI: 0000000000000000 RDI: 0000000000000003 [ 454.226718][T11172] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 454.226738][T11172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 454.226758][T11172] R13: 00007f23d11e6038 R14: 00007f23d11e5fa0 R15: 00007ffedd52c578 [ 454.226804][T11172] [ 454.226818][T11172] tipc: Failed to clone mcast rcv buffer [ 455.443933][T11181] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input26 [ 456.001272][T11195] netlink: 25 bytes leftover after parsing attributes in process `syz.1.1549'. [ 458.877195][T11240] FAULT_INJECTION: forcing a failure. [ 458.877195][T11240] name failslab, interval 1, probability 0, space 0, times 0 [ 458.934032][T11240] CPU: 1 UID: 0 PID: 11240 Comm: syz.0.1563 Not tainted syzkaller #0 PREEMPT(full) [ 458.934081][T11240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 458.934102][T11240] Call Trace: [ 458.934113][T11240] [ 458.934125][T11240] dump_stack_lvl+0x16c/0x1f0 [ 458.934174][T11240] should_fail_ex+0x512/0x640 [ 458.934225][T11240] ? __kvmalloc_node_noprof+0x12e/0x9c0 [ 458.934270][T11240] should_failslab+0xc2/0x120 [ 458.934315][T11240] __kvmalloc_node_noprof+0x141/0x9c0 [ 458.934358][T11240] ? io_uring_setup+0x3ad/0x20e0 [ 458.934407][T11240] ? io_uring_setup+0x3ad/0x20e0 [ 458.934444][T11240] io_uring_setup+0x3ad/0x20e0 [ 458.934500][T11240] ? __pfx_io_uring_setup+0x10/0x10 [ 458.934540][T11240] ? do_futex+0x122/0x350 [ 458.934588][T11240] ? __pfx_do_futex+0x10/0x10 [ 458.934659][T11240] ? xfd_validate_state+0x61/0x180 [ 458.934714][T11240] __x64_sys_io_uring_setup+0xc2/0x170 [ 458.934756][T11240] do_syscall_64+0xcd/0xfa0 [ 458.934801][T11240] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 458.934835][T11240] RIP: 0033:0x7f23d0f8f749 [ 458.934861][T11240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 458.934894][T11240] RSP: 002b:00007f23d1df6038 EFLAGS: 00000246 ORIG_RAX: 00000000000001a9 [ 458.934926][T11240] RAX: ffffffffffffffda RBX: 00007f23d11e5fa0 RCX: 00007f23d0f8f749 [ 458.934949][T11240] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 458.934969][T11240] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 458.934989][T11240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 458.935009][T11240] R13: 00007f23d11e6038 R14: 00007f23d11e5fa0 R15: 00007ffedd52c578 [ 458.935053][T11240] [ 461.637896][ T1085] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 462.806367][T11295] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1577'. [ 463.066579][T11297] usb usb15: usbfs: process 11297 (syz.0.1578) did not claim interface 0 before use [ 463.854505][T11314] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 465.296245][T11335] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input27 [ 467.611325][T11358] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1593'. [ 467.633314][T11358] netlink: 350 bytes leftover after parsing attributes in process `syz.2.1593'. [ 470.258209][T11401] netlink: 504 bytes leftover after parsing attributes in process `syz.0.1607'. [ 470.296288][T11401] netlink: 350 bytes leftover after parsing attributes in process `syz.0.1607'. [ 470.795664][T11408] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1608'. [ 471.575203][T11420] snd_virmidi snd_virmidi.0: control 5:9:1:IA>/[k [ 478.994304][T11497] dump_stack_lvl+0x16c/0x1f0 [ 478.994340][T11497] should_fail_ex+0x512/0x640 [ 478.994378][T11497] ? __kmalloc_cache_noprof+0x5f/0x780 [ 478.994405][T11497] should_failslab+0xc2/0x120 [ 478.994446][T11497] __kmalloc_cache_noprof+0x72/0x780 [ 478.994471][T11497] ? cuse_channel_open+0x4f/0x7f0 [ 478.994506][T11497] ? __pfx_cuse_channel_open+0x10/0x10 [ 478.994535][T11497] ? cuse_channel_open+0x4f/0x7f0 [ 478.994564][T11497] cuse_channel_open+0x4f/0x7f0 [ 478.994595][T11497] ? __pfx_cuse_channel_open+0x10/0x10 [ 478.994627][T11497] misc_open+0x26d/0x450 [ 478.994665][T11497] ? __pfx_misc_open+0x10/0x10 [ 478.994704][T11497] chrdev_open+0x234/0x6a0 [ 478.994732][T11497] ? __pfx_apparmor_file_open+0x10/0x10 [ 478.994773][T11497] ? __pfx_chrdev_open+0x10/0x10 [ 478.994805][T11497] ? fsnotify_open_perm_and_set_mode+0x17c/0xa60 [ 478.994839][T11497] do_dentry_open+0x982/0x1530 [ 478.994869][T11497] ? __pfx_chrdev_open+0x10/0x10 [ 478.994905][T11497] vfs_open+0x82/0x3f0 [ 478.994944][T11497] path_openat+0x1de4/0x2cb0 [ 478.994982][T11497] ? __pfx_path_openat+0x10/0x10 [ 478.995015][T11497] ? __lock_acquire+0xb8a/0x1c90 [ 478.995053][T11497] do_filp_open+0x20b/0x470 [ 478.995080][T11497] ? __pfx_do_filp_open+0x10/0x10 [ 478.995131][T11497] ? alloc_fd+0x471/0x7d0 [ 478.995164][T11497] do_sys_openat2+0x11b/0x1d0 [ 478.995201][T11497] ? __pfx_do_sys_openat2+0x10/0x10 [ 478.995250][T11497] __x64_sys_openat+0x174/0x210 [ 478.995288][T11497] ? __pfx___x64_sys_openat+0x10/0x10 [ 478.995327][T11497] ? syscall_user_dispatch+0x78/0x140 [ 478.995359][T11497] do_syscall_64+0xcd/0xfa0 [ 478.995392][T11497] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.995417][T11497] RIP: 0033:0x7f23d0f8f749 [ 478.995442][T11497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.995467][T11497] RSP: 002b:00007f23d1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 478.995490][T11497] RAX: ffffffffffffffda RBX: 00007f23d11e5fa0 RCX: 00007f23d0f8f749 [ 478.995506][T11497] RDX: 0000000000181041 RSI: 0000200000000140 RDI: ffffffffffffff9c [ 478.995522][T11497] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 478.995537][T11497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.995552][T11497] R13: 00007f23d11e6038 R14: 00007f23d11e5fa0 R15: 00007ffedd52c578 [ 478.995584][T11497] [ 479.649134][T11502] FAULT_INJECTION: forcing a failure. [ 479.649134][T11502] name failslab, interval 1, probability 0, space 0, times 0 [ 479.661960][T11502] CPU: 0 UID: 0 PID: 11502 Comm: syz.0.1633 Not tainted syzkaller #0 PREEMPT(full) [ 479.662004][T11502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 479.662024][T11502] Call Trace: [ 479.662034][T11502] [ 479.662047][T11502] dump_stack_lvl+0x16c/0x1f0 [ 479.662093][T11502] should_fail_ex+0x512/0x640 [ 479.662144][T11502] ? fs_reclaim_acquire+0xae/0x150 [ 479.662192][T11502] should_failslab+0xc2/0x120 [ 479.662238][T11502] __kmalloc_noprof+0xdd/0x880 [ 479.662287][T11502] ? tomoyo_encode2+0x100/0x3e0 [ 479.662339][T11502] ? tomoyo_encode2+0x100/0x3e0 [ 479.662372][T11502] tomoyo_encode2+0x100/0x3e0 [ 479.662413][T11502] tomoyo_encode+0x29/0x50 [ 479.662447][T11502] tomoyo_realpath_from_path+0x18f/0x6e0 [ 479.662498][T11502] tomoyo_mkdev_perm+0x22b/0x570 [ 479.662523][T11502] ? tomoyo_mkdev_perm+0x217/0x570 [ 479.662547][T11502] ? __pfx_tomoyo_mkdev_perm+0x10/0x10 [ 479.662572][T11502] ? do_raw_spin_lock+0x12c/0x2b0 [ 479.662620][T11502] ? do_raw_spin_unlock+0x172/0x230 [ 479.662658][T11502] ? __pfx_current_check_access_path+0x10/0x10 [ 479.662690][T11502] ? simple_lookup+0x105/0x1d0 [ 479.662720][T11502] tomoyo_path_mknod+0x12a/0x190 [ 479.662753][T11502] ? __pfx_tomoyo_path_mknod+0x10/0x10 [ 479.662789][T11502] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 479.662836][T11502] security_path_mknod+0x161/0x310 [ 479.662862][T11502] do_mknodat+0x239/0x5d0 [ 479.662892][T11502] ? __pfx_do_mknodat+0x10/0x10 [ 479.662916][T11502] ? getname_flags.part.0+0x1c5/0x550 [ 479.662960][T11502] __x64_sys_mknod+0x87/0xb0 [ 479.662991][T11502] do_syscall_64+0xcd/0xfa0 [ 479.663024][T11502] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 479.663049][T11502] RIP: 0033:0x7f23d0f8f749 [ 479.663069][T11502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 479.663093][T11502] RSP: 002b:00007f23d1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 479.663116][T11502] RAX: ffffffffffffffda RBX: 00007f23d11e5fa0 RCX: 00007f23d0f8f749 [ 479.663132][T11502] RDX: 0000000000000103 RSI: 00000000000020e9 RDI: 00002000000003c0 [ 479.663147][T11502] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 479.663163][T11502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 479.663178][T11502] R13: 00007f23d11e6038 R14: 00007f23d11e5fa0 R15: 00007ffedd52c578 [ 479.663211][T11502] [ 479.663427][T11502] ERROR: Out of memory at tomoyo_realpath_from_path. [ 481.786648][T11520] svc: failed to register nfsdv3 RPC service (errno 111). [ 481.806954][T11520] svc: failed to register nfsaclv3 RPC service (errno 111). [ 482.468157][T11538] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1642'. [ 482.542241][T11538] netlink: 'syz.2.1642': attribute type 1 has an invalid length. [ 482.574168][T11538] netlink: 5 bytes leftover after parsing attributes in process `syz.2.1642'. [ 482.972695][T11540] Invalid ELF header magic: != ELF [ 484.065150][T11556] Invalid ELF header magic: != ELF [ 485.277087][T11585] random: crng reseeded on system resumption [ 486.494412][T11595] Invalid ELF header magic: != ELF [ 486.733719][ T7317] Bluetooth: hci2: unexpected event 0x23 length: 127 > 13 [ 486.770052][T11598] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1660'. [ 486.857634][T11602] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1660'. [ 488.524873][T11617] FAULT_INJECTION: forcing a failure. [ 488.524873][T11617] name failslab, interval 1, probability 0, space 0, times 0 [ 488.565211][T11617] CPU: 0 UID: 0 PID: 11617 Comm: syz.1.1667 Not tainted syzkaller #0 PREEMPT(full) [ 488.565255][T11617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 488.565275][T11617] Call Trace: [ 488.565284][T11617] [ 488.565297][T11617] dump_stack_lvl+0x16c/0x1f0 [ 488.565341][T11617] should_fail_ex+0x512/0x640 [ 488.565391][T11617] ? __kmalloc_node_noprof+0xcd/0x8a0 [ 488.565434][T11617] should_failslab+0xc2/0x120 [ 488.565473][T11617] __kmalloc_node_noprof+0xe0/0x8a0 [ 488.565509][T11617] ? lockdep_init_map_type+0x5c/0x280 [ 488.565563][T11617] ? blk_mq_alloc_tag_set+0x577/0x12e0 [ 488.565611][T11617] ? blk_mq_alloc_tag_set+0x577/0x12e0 [ 488.565650][T11617] blk_mq_alloc_tag_set+0x577/0x12e0 [ 488.565691][T11617] ? idr_alloc_u32+0x263/0x2f0 [ 488.565738][T11617] loop_add+0x3b2/0xb70 [ 488.565775][T11617] ? __pfx_loop_add+0x10/0x10 [ 488.565836][T11617] ? find_held_lock+0x2b/0x80 [ 488.565890][T11617] loop_control_ioctl+0x13e/0x630 [ 488.565928][T11617] ? __pfx_loop_control_ioctl+0x10/0x10 [ 488.565970][T11617] ? __pfx_loop_control_ioctl+0x10/0x10 [ 488.566003][T11617] __x64_sys_ioctl+0x18e/0x210 [ 488.566049][T11617] do_syscall_64+0xcd/0xfa0 [ 488.566087][T11617] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 488.566115][T11617] RIP: 0033:0x7f95b3d8f749 [ 488.566138][T11617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 488.566167][T11617] RSP: 002b:00007f95b4bb0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 488.566195][T11617] RAX: ffffffffffffffda RBX: 00007f95b3fe5fa0 RCX: 00007f95b3d8f749 [ 488.566214][T11617] RDX: fffffffffffffffd RSI: 0000000000004c80 RDI: 0000000000000003 [ 488.566233][T11617] RBP: 00007f95b3e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 488.566251][T11617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 488.566268][T11617] R13: 00007f95b3fe6038 R14: 00007f95b3fe5fa0 R15: 00007ffd3e013028 [ 488.566304][T11617] [ 489.833963][T11629] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1669'. [ 489.874045][T11629] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 490.195736][T11629] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 490.829991][T11632] netlink: 'syz.3.1671': attribute type 33 has an invalid length. [ 491.554948][T11649] netlink: 'syz.2.1676': attribute type 1 has an invalid length. [ 491.572981][T11649] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1676'. [ 491.729515][T11651] netlink: 342 bytes leftover after parsing attributes in process `syz.1.1677'. [ 493.008225][T11669] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input32 [ 493.581614][T11677] netlink: 158 bytes leftover after parsing attributes in process `syz.3.1684'. [ 493.609065][T11677] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1684'. [ 494.376321][T11691] random: crng reseeded on system resumption [ 495.575436][T11712] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1695'. [ 495.608297][T11712] netlink: 354 bytes leftover after parsing attributes in process `syz.0.1695'. [ 497.004292][T11732] hub 1-0:1.0: USB hub found [ 497.041650][T11732] hub 1-0:1.0: 1 port detected [ 497.098293][T11732] hub 1-0:1.0: USB hub found [ 497.113513][T11732] hub 1-0:1.0: 1 port detected [ 497.355253][T11742] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 499.296755][T11758] netlink: 330 bytes leftover after parsing attributes in process `syz.0.1708'. [ 502.858514][T11820] vcan0: tx drop: invalid sa for name 0x00000000000000fd [ 504.540145][T11845] : Can't lookup blockdev [ 504.547238][T11845] vivid-007: ================= START STATUS ================= [ 504.583511][T11845] vivid-007: Generate PTS: true [ 504.588621][T11845] vivid-007: Generate SCR: true [ 504.620523][T11845] tpg source WxH: 320x240 (Y'CbCr) [ 504.631766][T11845] tpg field: 1 [ 504.635359][T11845] tpg crop: (0,0)/320x240 [ 504.650088][T11845] tpg compose: (0,0)/320x240 [ 504.654965][T11845] tpg colorspace: 8 [ 504.658820][T11845] tpg transfer function: 0/0 [ 504.669204][T11845] tpg Y'CbCr encoding: 0/0 [ 504.689817][T11845] tpg quantization: 0/0 [ 504.734732][T11845] tpg RGB range: 0/2 [ 504.748995][T11845] vivid-007: ================== END STATUS ================== [ 505.339241][T11840] Invalid ELF header magic: != ELF [ 506.164804][T11874] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(4) [ 507.551088][T11898] netlink: 'syz.1.1745': attribute type 1 has an invalid length. [ 508.146250][ T7317] Bluetooth: hci1: unexpected event 0x23 length: 127 > 13 [ 509.061047][T11914] Invalid ELF header magic: != ELF [ 509.567719][T11926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1751'. [ 509.587675][T11926] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1751'. [ 510.104243][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 510.113320][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 512.577743][T11974] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1766'. [ 512.689105][T11959] Invalid ELF header magic: != ELF [ 513.226975][T11979] netlink: 'syz.1.1767': attribute type 33 has an invalid length. [ 515.270107][T12019] netlink: 330 bytes leftover after parsing attributes in process `syz.3.1777'. [ 515.641370][ T10] smpboot: CPU 1 is now offline [ 516.097931][T12035] bridge0: port 3(veth0_to_bridge) entered blocking state [ 516.135052][T12035] bridge0: port 3(veth0_to_bridge) entered disabled state [ 516.167106][T12035] veth0_to_bridge: entered allmulticast mode [ 516.205599][T12035] veth0_to_bridge: entered promiscuous mode [ 516.236695][T12035] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 516.295072][T12035] bridge0: port 3(veth0_to_bridge) entered blocking state [ 516.302419][T12035] bridge0: port 3(veth0_to_bridge) entered forwarding state [ 516.317150][T12037] Invalid ELF header magic: != ELF [ 516.645934][T12044] netlink: 'syz.2.1783': attribute type 8 has an invalid length. [ 517.240022][T12056] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1782'. [ 517.490867][T12056] veth1_macvtap: left promiscuous mode [ 519.307930][T12095] FAULT_INJECTION: forcing a failure. [ 519.307930][T12095] name failslab, interval 1, probability 0, space 0, times 0 [ 519.391245][T12095] CPU: 0 UID: 0 PID: 12095 Comm: syz.2.1791 Not tainted syzkaller #0 PREEMPT(full) [ 519.391279][T12095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 519.391294][T12095] Call Trace: [ 519.391301][T12095] [ 519.391310][T12095] dump_stack_lvl+0x16c/0x1f0 [ 519.391345][T12095] should_fail_ex+0x512/0x640 [ 519.391383][T12095] ? __kmalloc_node_noprof+0xcd/0x8a0 [ 519.391417][T12095] should_failslab+0xc2/0x120 [ 519.391450][T12095] __kmalloc_node_noprof+0xe0/0x8a0 [ 519.391479][T12095] ? __get_vm_area_node+0x208/0x330 [ 519.391511][T12095] ? __vmalloc_node_range_noprof+0x3e5/0x1480 [ 519.391553][T12095] ? __vmalloc_node_range_noprof+0x3e5/0x1480 [ 519.391589][T12095] __vmalloc_node_range_noprof+0x3e5/0x1480 [ 519.391635][T12095] ? kernel_clone+0xfc/0x930 [ 519.391673][T12095] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 519.391721][T12095] ? rcu_is_watching+0x12/0xc0 [ 519.391756][T12095] ? kernel_clone+0xfc/0x930 [ 519.391785][T12095] __vmalloc_node_noprof+0xad/0xf0 [ 519.391823][T12095] ? kernel_clone+0xfc/0x930 [ 519.391865][T12095] copy_process+0x2c77/0x76a0 [ 519.391896][T12095] ? __pfx___futex_wait+0x10/0x10 [ 519.391929][T12095] ? __pfx_copy_process+0x10/0x10 [ 519.391967][T12095] ? futex_private_hash_put+0xd5/0x190 [ 519.392004][T12095] kernel_clone+0xfc/0x930 [ 519.392036][T12095] ? __pfx_kernel_clone+0x10/0x10 [ 519.392084][T12095] __do_sys_clone+0xce/0x120 [ 519.392115][T12095] ? __pfx___do_sys_clone+0x10/0x10 [ 519.392162][T12095] ? xfd_validate_state+0x61/0x180 [ 519.392208][T12095] do_syscall_64+0xcd/0xfa0 [ 519.392241][T12095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 519.392265][T12095] RIP: 0033:0x7feaa538f749 [ 519.392284][T12095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 519.392308][T12095] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 519.392331][T12095] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 519.392346][T12095] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 0000000000000001 [ 519.392361][T12095] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 519.392375][T12095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 519.392389][T12095] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 519.392421][T12095] [ 519.392588][T12095] syz.2.1791: vmalloc error: size 32768, failed to allocated page array size 64, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 520.380260][T12095] CPU: 0 UID: 0 PID: 12095 Comm: syz.2.1791 Not tainted syzkaller #0 PREEMPT(full) [ 520.380294][T12095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 520.380308][T12095] Call Trace: [ 520.380316][T12095] [ 520.380325][T12095] dump_stack_lvl+0x16c/0x1f0 [ 520.380360][T12095] warn_alloc+0x248/0x3a0 [ 520.380387][T12095] ? __pfx_warn_alloc+0x10/0x10 [ 520.380409][T12095] ? lockdep_hardirqs_on+0x7c/0x110 [ 520.380439][T12095] ? dump_stack_lvl+0x1a1/0x1f0 [ 520.380468][T12095] ? should_fail_ex+0x354/0x640 [ 520.380510][T12095] ? rcu_is_watching+0x12/0xc0 [ 520.380536][T12095] ? trace_kmalloc+0x2b/0xd0 [ 520.380565][T12095] ? __kmalloc_node_noprof+0x364/0x8a0 [ 520.380594][T12095] ? __get_vm_area_node+0x208/0x330 [ 520.380626][T12095] ? __vmalloc_node_range_noprof+0x3e5/0x1480 [ 520.380668][T12095] __vmalloc_node_range_noprof+0xfe2/0x1480 [ 520.380714][T12095] ? kernel_clone+0xfc/0x930 [ 520.380751][T12095] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 520.380794][T12095] ? rcu_is_watching+0x12/0xc0 [ 520.380832][T12095] ? kernel_clone+0xfc/0x930 [ 520.380861][T12095] __vmalloc_node_noprof+0xad/0xf0 [ 520.380897][T12095] ? kernel_clone+0xfc/0x930 [ 520.380930][T12095] copy_process+0x2c77/0x76a0 [ 520.380960][T12095] ? __pfx___futex_wait+0x10/0x10 [ 520.380993][T12095] ? __pfx_copy_process+0x10/0x10 [ 520.381029][T12095] ? futex_private_hash_put+0xd5/0x190 [ 520.381066][T12095] kernel_clone+0xfc/0x930 [ 520.381100][T12095] ? __pfx_kernel_clone+0x10/0x10 [ 520.381148][T12095] __do_sys_clone+0xce/0x120 [ 520.381178][T12095] ? __pfx___do_sys_clone+0x10/0x10 [ 520.381223][T12095] ? xfd_validate_state+0x61/0x180 [ 520.381268][T12095] do_syscall_64+0xcd/0xfa0 [ 520.381300][T12095] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 520.381324][T12095] RIP: 0033:0x7feaa538f749 [ 520.381343][T12095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 520.381366][T12095] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 520.381389][T12095] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 520.381405][T12095] RDX: 0000200000000340 RSI: 0000000000000001 RDI: 0000000000000001 [ 520.381420][T12095] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 520.381434][T12095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 520.381449][T12095] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 520.381480][T12095] [ 520.640630][T12095] Mem-Info: [ 520.643787][T12095] active_anon:3594 inactive_anon:51029 isolated_anon:0 [ 520.643787][T12095] active_file:23019 inactive_file:37859 isolated_file:0 [ 520.643787][T12095] unevictable:768 dirty:786 writeback:0 [ 520.643787][T12095] slab_reclaimable:11874 slab_unreclaimable:93855 [ 520.643787][T12095] mapped:38066 shmem:46063 pagetables:1175 [ 520.643787][T12095] sec_pagetables:0 bounce:0 [ 520.643787][T12095] kernel_misc_reclaimable:0 [ 520.643787][T12095] free:1279036 free_pcp:14502 free_cma:0 [ 520.690590][T12095] Node 0 active_anon:14376kB inactive_anon:204116kB active_file:91996kB inactive_file:151312kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:152260kB dirty:3144kB writeback:0kB shmem:182716kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11376kB pagetables:4576kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.723527][T12095] Node 1 active_anon:0kB inactive_anon:0kB active_file:80kB inactive_file:124kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:124kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 520.754133][T12095] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.784457][T12095] lowmem_reserve[]: 0 2485 2487 2487 2487 [ 520.790354][T12095] Node 0 DMA32 free:1200456kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB free_highatomic:0KB active_anon:14376kB inactive_anon:204116kB active_file:91996kB inactive_file:151312kB unevictable:1536kB writepending:3144kB zspages:500kB present:3129332kB managed:2545064kB mlocked:0kB bounce:0kB free_pcp:42320kB local_pcp:42320kB free_cma:0kB [ 520.824797][T12095] lowmem_reserve[]: 0 0 1 1 1 [ 520.829807][T12095] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 520.859533][T12095] lowmem_reserve[]: 0 0 0 0 0 [ 520.864269][T12095] Node 1 Normal free:3900328kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:80kB inactive_file:124kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:15688kB local_pcp:15688kB free_cma:0kB [ 520.897084][T12095] lowmem_reserve[]: 0 0 0 0 0 [ 520.902304][T12095] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 520.915383][T12095] Node 0 DMA32: 286*4kB (UME) 454*8kB (UME) 520*16kB (UME) 369*32kB (UME) 32*64kB (UME) 18*128kB (UME) 83*256kB (UM) 80*512kB (UM) 55*1024kB (UME) 14*2048kB (UME) 250*4096kB (UM) = 1200456kB [ 520.945056][T12095] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 520.962504][T12095] Node 1 Normal: 100*4kB (UME) 47*8kB (UME) 52*16kB (UME) 285*32kB (UME) 117*64kB (UME) 29*128kB (UME) 8*256kB (UME) 1*512kB (E) 1*1024kB (M) 2*2048kB (ME) 945*4096kB (UM) = 3900328kB [ 520.981602][T12095] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 520.991464][T12095] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=2 hugepages_size=2048kB [ 521.003668][T12095] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 521.014636][T12095] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 521.024071][T12095] 106983 total pagecache pages [ 521.028948][T12095] 46 pages in swap cache [ 521.033189][T12095] Free swap = 124588kB [ 521.037462][T12095] Total swap = 124996kB [ 521.041686][T12095] 2097051 pages RAM [ 521.045499][T12095] 0 pages HighMem/MovableOnly [ 521.054726][T12095] 428695 pages reserved [ 521.060650][T12095] 0 pages cma reserved [ 521.429473][T12118] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1798'. [ 521.772553][ T7317] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 525.971212][T12173] zram0: detected capacity change from 8 to 0 [ 528.223456][T12205] hub 1-0:1.0: USB hub found [ 528.319811][T12205] hub 1-0:1.0: 1 port detected [ 528.443303][T12206] hub 1-0:1.0: USB hub found [ 528.566727][T12206] hub 1-0:1.0: 1 port detected [ 529.706277][T12218] vivid-007: ================= START STATUS ================= [ 529.795583][T12218] vivid-007: Generate PTS: true [ 529.838268][T12218] vivid-007: Generate SCR: true [ 529.899300][T12218] tpg source WxH: 320x240 (Y'CbCr) [ 529.951065][T12218] tpg field: 1 [ 529.993644][T12218] tpg crop: (0,0)/320x240 [ 530.040457][T12218] tpg compose: (0,0)/320x240 [ 530.081294][T12218] tpg colorspace: 8 [ 530.126919][T12218] tpg transfer function: 0/0 [ 530.184941][T12218] tpg Y'CbCr encoding: 0/0 [ 530.240660][T12218] tpg quantization: 0/0 [ 530.291904][T12218] tpg RGB range: 0/2 [ 530.347113][T12218] vivid-007: ================== END STATUS ================== [ 530.990126][T12232] netlink: 338 bytes leftover after parsing attributes in process `syz.3.1830'. [ 531.036268][T12232] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 531.076266][T12232] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 533.531920][T12264] netlink: 'syz.3.1838': attribute type 2 has an invalid length. [ 533.582722][T12264] netlink: 'syz.3.1838': attribute type 3 has an invalid length. [ 533.590489][T12264] netlink: 'syz.3.1838': attribute type 2 has an invalid length. [ 533.670770][T12264] netlink: 'syz.3.1838': attribute type 3 has an invalid length. [ 533.714262][T12264] netlink: 30 bytes leftover after parsing attributes in process `syz.3.1838'. [ 534.428141][ T52] Bluetooth: hci4: command 0xfc11 tx timeout [ 534.436557][ T7317] Bluetooth: hci4: Entering manufacturer mode failed (-110) [ 535.073524][T12266] delete_channel: no stack [ 535.869096][T12281] FAULT_INJECTION: forcing a failure. [ 535.869096][T12281] name failslab, interval 1, probability 0, space 0, times 0 [ 535.984633][T12281] CPU: 0 UID: 0 PID: 12281 Comm: syz.2.1843 Not tainted syzkaller #0 PREEMPT(full) [ 535.984668][T12281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 535.984683][T12281] Call Trace: [ 535.984691][T12281] [ 535.984700][T12281] dump_stack_lvl+0x16c/0x1f0 [ 535.984735][T12281] should_fail_ex+0x512/0x640 [ 535.984773][T12281] ? __kmalloc_node_track_caller_noprof+0xcb/0x8a0 [ 535.984813][T12281] should_failslab+0xc2/0x120 [ 535.984847][T12281] __kmalloc_node_track_caller_noprof+0xde/0x8a0 [ 535.984879][T12281] ? kasprintf+0xc7/0x100 [ 535.984908][T12281] ? kvasprintf+0xbc/0x160 [ 535.984929][T12281] kvasprintf+0xbc/0x160 [ 535.984952][T12281] ? __pfx_kvasprintf+0x10/0x10 [ 535.984978][T12281] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 535.985007][T12281] ? lockdep_hardirqs_on+0x7c/0x110 [ 535.985036][T12281] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 535.985069][T12281] kasprintf+0xc7/0x100 [ 535.985091][T12281] ? __pfx_kasprintf+0x10/0x10 [ 535.985116][T12281] ? lockdep_hardirqs_on+0x7c/0x110 [ 535.985156][T12281] ieee80211_alloc_led_names+0x243/0x420 [ 535.985196][T12281] ieee80211_alloc_hw_nm+0x197c/0x22b0 [ 535.985236][T12281] mac80211_hwsim_new_radio+0x1d3/0x50b0 [ 535.985277][T12281] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 535.985322][T12281] ? __pfx_mac80211_hwsim_new_radio+0x10/0x10 [ 535.985359][T12281] hwsim_new_radio_nl+0xba2/0x1330 [ 535.985389][T12281] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 535.985426][T12281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290 [ 535.985469][T12281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290 [ 535.985510][T12281] genl_family_rcv_msg_doit+0x209/0x2f0 [ 535.985544][T12281] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 535.985588][T12281] ? bpf_lsm_capable+0x9/0x10 [ 535.985620][T12281] ? security_capable+0x7e/0x260 [ 535.985657][T12281] ? ns_capable+0xd7/0x110 [ 535.985685][T12281] genl_rcv_msg+0x55c/0x800 [ 535.985720][T12281] ? __pfx_genl_rcv_msg+0x10/0x10 [ 535.985752][T12281] ? __pfx_hwsim_new_radio_nl+0x10/0x10 [ 535.985790][T12281] netlink_rcv_skb+0x158/0x420 [ 535.985816][T12281] ? __pfx_genl_rcv_msg+0x10/0x10 [ 535.985849][T12281] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 535.985889][T12281] ? netlink_deliver_tap+0x1ae/0xd30 [ 535.985919][T12281] genl_rcv+0x28/0x40 [ 535.985945][T12281] netlink_unicast+0x5aa/0x870 [ 535.985977][T12281] ? __pfx_netlink_unicast+0x10/0x10 [ 535.986015][T12281] netlink_sendmsg+0x8c8/0xdd0 [ 535.986047][T12281] ? __pfx_netlink_sendmsg+0x10/0x10 [ 535.986078][T12281] ? aa_sock_msg_perm.constprop.0+0x100/0x1d0 [ 535.986120][T12281] ____sys_sendmsg+0xa98/0xc70 [ 535.986153][T12281] ? copy_msghdr_from_user+0x10a/0x160 [ 535.986178][T12281] ? __pfx_____sys_sendmsg+0x10/0x10 [ 535.986208][T12281] ? preempt_schedule_thunk+0x16/0x30 [ 535.986252][T12281] ? try_to_wake_up+0xa67/0x1870 [ 535.986282][T12281] ___sys_sendmsg+0x134/0x1d0 [ 535.986304][T12281] ? find_held_lock+0x2b/0x80 [ 535.986330][T12281] ? __pfx____sys_sendmsg+0x10/0x10 [ 535.986352][T12281] ? __lock_acquire+0x622/0x1c90 [ 535.986422][T12281] __sys_sendmsg+0x16d/0x220 [ 535.986453][T12281] ? __pfx___sys_sendmsg+0x10/0x10 [ 535.986477][T12281] ? __x64_sys_futex+0x1e0/0x4c0 [ 535.986530][T12281] do_syscall_64+0xcd/0xfa0 [ 535.986563][T12281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 535.986588][T12281] RIP: 0033:0x7feaa538f749 [ 535.986607][T12281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 535.986631][T12281] RSP: 002b:00007feaa6182038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 535.986654][T12281] RAX: ffffffffffffffda RBX: 00007feaa55e5fa0 RCX: 00007feaa538f749 [ 535.986670][T12281] RDX: 0000000000008000 RSI: 0000200000000200 RDI: 0000000000000008 [ 535.986685][T12281] RBP: 00007feaa5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 535.986700][T12281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 535.986714][T12281] R13: 00007feaa55e6038 R14: 00007feaa55e5fa0 R15: 00007ffd9a0224a8 [ 535.986747][T12281] [ 536.383546][ C0] vkms_vblank_simulate: vblank timer overrun [ 539.692199][T12309] netlink: 'syz.3.1847': attribute type 1 has an invalid length. [ 539.827654][ T3512] [drm:drm_crtc_add_crc_entry] *ERROR* Overflow of CRC buffer, userspace reads too slow. [ 540.050237][T12315] netlink: 25 bytes leftover after parsing attributes in process `syz.3.1848'. [ 542.186043][T12340] netlink: 9 bytes leftover after parsing attributes in process `syz.1.1850'. [ 543.181158][ T7317] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 543.454777][T12366] netlink: 17 bytes leftover after parsing attributes in process `syz.3.1854'. [ 545.453405][T12405] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1861'. [ 545.535641][T12405] netlink: 354 bytes leftover after parsing attributes in process `syz.3.1861'. [ 546.444308][ T52] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 546.450994][ T7317] Bluetooth: hci4: command 0x1003 tx timeout [ 547.603660][T12445] netlink: 'syz.3.1867': attribute type 8 has an invalid length. [ 548.779771][T12431] kexec: Could not allocate control_code_buffer [ 550.540494][T12487] nfs4: Unknown parameter 't6h9' [ 551.850827][T12505] netlink: 25 bytes leftover after parsing attributes in process `syz.2.1880'. [ 554.937543][T12552] FAULT_INJECTION: forcing a failure. [ 554.937543][T12552] name failslab, interval 1, probability 0, space 0, times 0 [ 555.003205][T12552] CPU: 0 UID: 0 PID: 12552 Comm: syz.0.1893 Not tainted syzkaller #0 PREEMPT(full) [ 555.003239][T12552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 555.003259][T12552] Call Trace: [ 555.003266][T12552] [ 555.003275][T12552] dump_stack_lvl+0x16c/0x1f0 [ 555.003310][T12552] should_fail_ex+0x512/0x640 [ 555.003353][T12552] ? __kmalloc_noprof+0xca/0x880 [ 555.003396][T12552] should_failslab+0xc2/0x120 [ 555.003430][T12552] __kmalloc_noprof+0xdd/0x880 [ 555.003470][T12552] ? __register_sysctl_table+0xb3/0x1900 [ 555.003515][T12552] ? __register_sysctl_table+0xb3/0x1900 [ 555.003552][T12552] __register_sysctl_table+0xb3/0x1900 [ 555.003589][T12552] ? is_module_address+0x5f/0xf0 [ 555.003629][T12552] ? __pfx___register_sysctl_table+0x10/0x10 [ 555.003664][T12552] ? is_module_address+0x69/0xf0 [ 555.003698][T12552] ? register_net_sysctl_sz+0x228/0x3e0 [ 555.003742][T12552] nf_ct_net_init+0x249/0x370 [ 555.003767][T12552] ? __pfx_nf_ct_net_init+0x10/0x10 [ 555.003790][T12552] ops_init+0x1e2/0x5f0 [ 555.003819][T12552] setup_net+0x100/0x390 [ 555.003845][T12552] ? __pfx_setup_net+0x10/0x10 [ 555.003871][T12552] ? debug_mutex_init+0x37/0x70 [ 555.003899][T12552] copy_net_ns+0x2f8/0x690 [ 555.003930][T12552] create_new_namespaces+0x3ea/0xa90 [ 555.003965][T12552] unshare_nsproxy_namespaces+0xc0/0x1f0 [ 555.003995][T12552] ksys_unshare+0x45b/0xa40 [ 555.004035][T12552] ? __pfx_ksys_unshare+0x10/0x10 [ 555.004070][T12552] ? xfd_validate_state+0x61/0x180 [ 555.004115][T12552] __x64_sys_unshare+0x31/0x40 [ 555.004148][T12552] do_syscall_64+0xcd/0xfa0 [ 555.004181][T12552] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 555.004207][T12552] RIP: 0033:0x7f23d0f8f749 [ 555.004225][T12552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 555.004248][T12552] RSP: 002b:00007f23d1df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 555.004271][T12552] RAX: ffffffffffffffda RBX: 00007f23d11e5fa0 RCX: 00007f23d0f8f749 [ 555.004287][T12552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000080 [ 555.004303][T12552] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 555.004318][T12552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 555.004332][T12552] R13: 00007f23d11e6038 R14: 00007f23d11e5fa0 R15: 00007ffedd52c578 [ 555.004364][T12552] [ 555.248772][ C0] vkms_vblank_simulate: vblank timer overrun [ 556.398999][T12566] netlink: 504 bytes leftover after parsing attributes in process `syz.2.1895'. [ 557.071466][T12567] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 557.099402][T12567] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 557.179783][T12567] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 557.193321][T12567] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 557.214175][T12567] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 557.227544][T12567] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 557.888989][T12595] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1906'. [ 558.461879][ T52] Bluetooth: hci0: command 0x0c1a tx timeout [ 558.854783][T12621] hub 8-0:1.0: USB hub found [ 558.879090][T12621] hub 8-0:1.0: 1 port detected [ 558.916381][T12624] random: crng reseeded on system resumption [ 559.178088][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 559.260560][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 559.267813][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 560.530976][ T7317] Bluetooth: hci0: command 0x0c1a tx timeout [ 561.247157][ T7317] Bluetooth: hci1: command 0x0c1a tx timeout [ 563.458793][T12679] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 565.009176][T12691] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 565.175702][T12704] Unable to find swap-space signature [ 567.168384][T12730] [U] [ 567.171231][T12730] [U] [ 567.173944][T12730] [U] [ 567.176652][T12730] [U] [ 567.276433][T12730] [U] [ 567.279192][T12730] [U] [ 567.281908][T12730] [U] [ 567.284615][T12730] [U] [ 567.479674][T12730] [U] [ 567.520935][T12730] [U] B^q^?L'C{$YyQl*NUm~#:H.4>JLI<`n]lqQt9եj%>m6np,XvȺFg(n$Ms+{Zg)t֮s"/a^4m6x>>W{BXUា~:kidYJ寀7s$[ W*aEA%$O'ш9ʕ`EZr=@ɀlHIR+ [ 567.922980][T12730] [U] 2TnI0v"ᬚ'RΠ|H6_Mr^ \IEÀH襳"ąUض[$ o2̶ [ 567.935858][ T7317] Bluetooth: hci0: command 0x0c1a tx timeout [ 567.945992][T12713] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 568.080409][T12730] [U] 9r۔H [ 568.084534][T12730] [U] <.;5gv/ndv;\#s7OWGsrC"ftءЦct@=[?.PVNpbD]NHpW͟ۃMhkTGx' [ 568.181978][T12730] [U] ǪCL+m;#g nP5tŅj1y'ش 6Cɜ{uʻa{e֬>4P 13.lM`ړt%wr"7{/=8 %q&V0Yu+Yep!75_;^#)e\KD`dĀb~Kmi*gH#9EaSշȫGcY@4G [ 568.204966][ C0] vkms_vblank_simulate: vblank timer overrun [ 568.397627][T12713] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 568.421406][T12713] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 568.448013][T12713] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 568.455595][T12730] [U] !pe<C۴w1m>t$]5^<:>ҿBԩe;C [ 568.559343][T12730] [U] M [ 568.599066][T12730] [U] ^=WŪr [ 568.603170][T12730] [U] ULy#}Qtzh9z=ahâ8+y]ܝ8'4LЙU\ [ 568.721855][T12753] FAULT_INJECTION: forcing a failure. [ 568.721855][T12753] name failslab, interval 1, probability 0, space 0, times 0 [ 568.797887][T12730] [U] j>= vk۽=D8wƠA|6 [ 568.805305][T12753] CPU: 0 UID: 0 PID: 12753 Comm: syz.1.1946 Not tainted syzkaller #0 PREEMPT(full) [ 568.805340][T12753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 568.805354][T12753] Call Trace: [ 568.805362][T12753] [ 568.805371][T12753] dump_stack_lvl+0x16c/0x1f0 [ 568.805406][T12753] should_fail_ex+0x512/0x640 [ 568.805445][T12753] ? trace_fib_table_lookup+0x19f/0x220 [ 568.805473][T12753] should_failslab+0xc2/0x120 [ 568.805507][T12753] kmem_cache_alloc_noprof+0x75/0x6e0 [ 568.805533][T12753] ? dst_alloc+0x99/0x1a0 [ 568.805581][T12753] ? dst_alloc+0x99/0x1a0 [ 568.805615][T12753] dst_alloc+0x99/0x1a0 [ 568.805655][T12753] rt_dst_alloc+0x35/0x3a0 [ 568.805688][T12753] ip_route_output_key_hash_rcu+0x87a/0x28e0 [ 568.805736][T12753] ip_route_output_key_hash+0x10f/0x2b0 [ 568.805774][T12753] ? __pfx_ip_route_output_key_hash+0x10/0x10 [ 568.805812][T12753] ? release_sock+0x21/0x220 [ 568.805843][T12753] ? find_held_lock+0x2b/0x80 [ 568.805872][T12753] ip_route_output_flow+0x27/0x150 [ 568.805912][T12753] raw_sendmsg+0xd5b/0x38b0 [ 568.805958][T12753] ? trace_cgroup_rstat_lock_contended.constprop.0+0x1d0/0x220 [ 568.805992][T12753] ? __pfx_raw_sendmsg+0x10/0x10 [ 568.806034][T12753] ? find_held_lock+0x2b/0x80 [ 568.806060][T12753] ? __up_read+0x1f8/0x750 [ 568.806132][T12753] ? __pfx_raw_sendmsg+0x10/0x10 [ 568.806171][T12753] inet_sendmsg+0x11c/0x140 [ 568.806209][T12753] ____sys_sendmsg+0x973/0xc70 [ 568.806243][T12753] ? copy_msghdr_from_user+0x10a/0x160 [ 568.806267][T12753] ? __pfx_____sys_sendmsg+0x10/0x10 [ 568.806298][T12753] ? find_held_lock+0x2b/0x80 [ 568.806326][T12753] ? kfree+0x252/0x6d0 [ 568.806358][T12753] ___sys_sendmsg+0x134/0x1d0 [ 568.806385][T12753] ? __pfx____sys_sendmsg+0x10/0x10 [ 568.806437][T12753] ? __pfx___might_resched+0x10/0x10 [ 568.806469][T12753] __sys_sendmmsg+0x200/0x420 [ 568.806497][T12753] ? __pfx___sys_sendmmsg+0x10/0x10 [ 568.806531][T12753] ? __pfx_do_futex+0x10/0x10 [ 568.806588][T12753] ? xfd_validate_state+0x61/0x180 [ 568.806622][T12753] ? __pfx_do_writev+0x10/0x10 [ 568.806653][T12753] __x64_sys_sendmmsg+0x9c/0x100 [ 568.806678][T12753] ? lockdep_hardirqs_on+0x7c/0x110 [ 568.806708][T12753] do_syscall_64+0xcd/0xfa0 [ 568.806741][T12753] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 568.806766][T12753] RIP: 0033:0x7f95b3d8f749 [ 568.806786][T12753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 568.806810][T12753] RSP: 002b:00007f95b4b8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 568.806832][T12753] RAX: ffffffffffffffda RBX: 00007f95b3fe6090 RCX: 00007f95b3d8f749 [ 568.806849][T12753] RDX: 00000000000009a6 RSI: 0000000000000000 RDI: 0000000000000003 [ 568.806863][T12753] RBP: 00007f95b3e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 568.806878][T12753] R10: 0000000007000000 R11: 0000000000000246 R12: 0000000000000000 [ 568.806893][T12753] R13: 00007f95b3fe6128 R14: 00007f95b3fe6090 R15: 00007ffd3e013028 [ 568.806925][T12753] [ 569.104793][ C0] vkms_vblank_simulate: vblank timer overrun [ 569.341741][T12730] [U] PAK [ 569.345317][T12730] [U] g*l(W=0d{AEȆk,_j).m0pʑ>R P!U5 ?11đo<`v.]ԷO}]-p+&9b7.#z~Yalh}cl,B fY՛bd^ey~9~ [ 569.363555][T12730] [U] UX.O^L_' [ 569.639014][T12759] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1948'. [ 569.684614][T12759] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1948'. [ 569.784510][T12762] Invalid ELF header magic: != ELF [ 570.031387][ T7317] Bluetooth: hci1: command 0x0c1a tx timeout [ 570.479142][ T7317] Bluetooth: hci3: command 0x0c1a tx timeout [ 570.485301][ T7317] Bluetooth: hci2: command 0x0c1a tx timeout [ 571.014888][T12779] Invalid ELF header magic: != ELF [ 571.058178][T12777] delete_channel: no stack [ 571.217910][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 571.224300][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 575.695002][T12863] random: crng reseeded on system resumption [ 575.804188][T12861] hub 8-0:1.0: USB hub found [ 575.882013][T12861] hub 8-0:1.0: 1 port detected [ 576.071728][T12870] FAULT_INJECTION: forcing a failure. [ 576.071728][T12870] name failslab, interval 1, probability 0, space 0, times 0 [ 576.148454][T12870] CPU: 0 UID: 0 PID: 12870 Comm: syz.3.1982 Not tainted syzkaller #0 PREEMPT(full) [ 576.148488][T12870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 576.148503][T12870] Call Trace: [ 576.148510][T12870] [ 576.148519][T12870] dump_stack_lvl+0x16c/0x1f0 [ 576.148563][T12870] should_fail_ex+0x512/0x640 [ 576.148606][T12870] should_failslab+0xc2/0x120 [ 576.148640][T12870] kmem_cache_alloc_node_noprof+0x78/0x770 [ 576.148667][T12870] ? __alloc_skb+0x2b2/0x380 [ 576.148712][T12870] ? __alloc_skb+0x2b2/0x380 [ 576.148748][T12870] __alloc_skb+0x2b2/0x380 [ 576.148786][T12870] ? __pfx___alloc_skb+0x10/0x10 [ 576.148825][T12870] ? kasan_quarantine_put+0xf0/0x240 [ 576.148868][T12870] __pskb_copy_fclone+0xef/0xb50 [ 576.148904][T12870] tipc_sk_mcast_rcv+0x52d/0xfa0 [ 576.148928][T12870] ? __lock_acquire+0xb8a/0x1c90 [ 576.148970][T12870] ? __pfx_tipc_sk_mcast_rcv+0x10/0x10 [ 576.148993][T12870] ? __lock_acquire+0x622/0x1c90 [ 576.149041][T12870] ? find_held_lock+0x2b/0x80 [ 576.149067][T12870] ? tipc_mcast_xmit+0x6d5/0xfe0 [ 576.149093][T12870] tipc_mcast_xmit+0x711/0xfe0 [ 576.149115][T12870] ? __pfx__copy_from_iter+0x10/0x10 [ 576.149152][T12870] ? __pfx___alloc_skb+0x10/0x10 [ 576.149193][T12870] ? __pfx_tipc_mcast_xmit+0x10/0x10 [ 576.149216][T12870] ? __lock_acquire+0x622/0x1c90 [ 576.149278][T12870] ? tipc_send_group_bcast+0x803/0xa50 [ 576.149316][T12870] tipc_send_group_bcast+0x803/0xa50 [ 576.149361][T12870] ? __pfx_tipc_send_group_bcast+0x10/0x10 [ 576.149394][T12870] ? css_rstat_updated+0x1c2/0x510 [ 576.149425][T12870] ? __pfx_woken_wake_function+0x10/0x10 [ 576.149461][T12870] ? __pfx_aa_label_sk_perm+0x10/0x10 [ 576.149487][T12870] ? find_held_lock+0x2b/0x80 [ 576.149516][T12870] __tipc_sendmsg+0x4ab/0x19a0 [ 576.149537][T12870] ? lock_acquire+0x179/0x350 [ 576.149578][T12870] ? __pfx___tipc_sendmsg+0x10/0x10 [ 576.149629][T12870] ? __local_bh_enable_ip+0xa4/0x120 [ 576.149666][T12870] tipc_sendmsg+0x4f/0x70 [ 576.149701][T12870] sock_write_iter+0x566/0x610 [ 576.149735][T12870] ? __pfx_sock_write_iter+0x10/0x10 [ 576.149780][T12870] ? __futex_wait+0x24b/0x2f0 [ 576.149802][T12870] ? copy_iovec_from_user+0x131/0x170 [ 576.149845][T12870] do_iter_readv_writev+0x662/0x9e0 [ 576.149877][T12870] ? __pfx_do_iter_readv_writev+0x10/0x10 [ 576.149908][T12870] ? bpf_lsm_file_permission+0x9/0x10 [ 576.149937][T12870] ? security_file_permission+0x71/0x210 [ 576.149965][T12870] ? rw_verify_area+0xcf/0x6c0 [ 576.149990][T12870] vfs_writev+0x35f/0xde0 [ 576.150024][T12870] ? __pfx_vfs_writev+0x10/0x10 [ 576.150070][T12870] ? __fget_files+0x20e/0x3c0 [ 576.150103][T12870] ? do_writev+0x28c/0x340 [ 576.150125][T12870] do_writev+0x28c/0x340 [ 576.150149][T12870] ? __pfx_do_writev+0x10/0x10 [ 576.150183][T12870] do_syscall_64+0xcd/0xfa0 [ 576.150216][T12870] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 576.150240][T12870] RIP: 0033:0x7f1b68d8f749 [ 576.150260][T12870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 576.150284][T12870] RSP: 002b:00007f1b69be0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 576.150307][T12870] RAX: ffffffffffffffda RBX: 00007f1b68fe5fa0 RCX: 00007f1b68d8f749 [ 576.150324][T12870] RDX: 0000000000000008 RSI: 0000200000000100 RDI: 0000000000000003 [ 576.150339][T12870] RBP: 00007f1b68e13f91 R08: 0000000000000000 R09: 0000000000000000 [ 576.150355][T12870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 576.150369][T12870] R13: 00007f1b68fe6038 R14: 00007f1b68fe5fa0 R15: 00007ffc1215c908 [ 576.150401][T12870] [ 576.502962][ C0] vkms_vblank_simulate: vblank timer overrun [ 577.784040][T12870] tipc: Failed to clone mcast rcv buffer [ 578.000602][T12880] random: crng reseeded on system resumption [ 578.128904][T12883] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1985'. [ 578.168204][T12883] netlink: 'syz.3.1985': attribute type 1 has an invalid length. [ 578.197608][T12883] netlink: 5 bytes leftover after parsing attributes in process `syz.3.1985'. [ 578.425988][T12887] hub 8-0:1.0: USB hub found [ 578.453311][T12890] random: crng reseeded on system resumption [ 578.498026][T12887] hub 8-0:1.0: 1 port detected [ 582.467989][T12939] ptrace attach of "./syz-executor exec"[12942] was attempted by "./syz-executor exec"[12939] [ 585.192381][T12973] input: jJǸ;9%vlQ J86 as /devices/virtual/input/input34 [ 585.800565][T12980] kvm: kvm [12976]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc1) = 0x2 [ 586.626007][T12988] netlink: 25 bytes leftover after parsing attributes in process `syz.0.2011'. [ 586.670665][T12986] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2010'. [ 587.229700][T12994] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2013'. [ 587.405409][T12997] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2015'. [ 588.604573][T13016] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2018'. [ 590.057619][ T7317] Bluetooth: hci0: command 0x0c1a tx timeout [ 590.066361][T13003] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 591.341130][T13003] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 591.421384][T13003] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 591.483536][T13003] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 592.208848][ T7317] Bluetooth: hci1: command 0x0c1a tx timeout [ 593.400398][ T7317] Bluetooth: hci2: command 0x0c1a tx timeout [ 593.482162][ T7317] Bluetooth: hci3: command 0x0c1a tx timeout [ 596.021601][T13074] ima: policy update failed [ 596.069231][ T30] audit: type=1802 audit(4294976534.036:14): pid=13074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2035" res=0 errno=0 [ 596.097263][T13074] netlink: 25 bytes leftover after parsing attributes in process `syz.1.2035'. [ 601.760536][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.772959][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.786193][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.798569][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.812047][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.824406][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.837632][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.850165][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.863494][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 601.876004][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.740546][ C0] net_ratelimit: 6408 callbacks suppressed [ 606.740567][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.758859][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.772174][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.784549][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.797742][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.810229][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.823515][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.836054][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.849456][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 606.862063][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.724606][ C0] net_ratelimit: 6669 callbacks suppressed [ 611.724628][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.743749][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.756109][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.769227][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.781628][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.794771][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.807108][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.820282][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.832703][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 611.845839][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.708830][ C0] net_ratelimit: 8157 callbacks suppressed [ 616.708852][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.727214][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.739655][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 616.752923][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.765494][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.777810][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 616.790985][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.803594][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 616.815965][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 616.829449][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.693025][ C0] net_ratelimit: 8362 callbacks suppressed [ 621.693047][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 621.712152][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.724575][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.737017][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 621.750169][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.762612][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.774937][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 621.788095][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.800441][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 621.812848][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 626.678068][ C0] net_ratelimit: 8361 callbacks suppressed [ 626.678090][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.696305][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.708597][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 626.721646][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.734085][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.746524][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 626.759577][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.771906][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 626.784296][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 626.797325][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.661113][ C0] net_ratelimit: 9259 callbacks suppressed [ 631.661134][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 631.680062][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.692426][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 631.704767][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.717211][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 631.730298][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.743080][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 631.755492][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 631.767895][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 631.781031][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 632.451050][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 632.468728][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 636.645020][ C0] net_ratelimit: 9320 callbacks suppressed [ 636.645042][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 636.663345][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 636.675765][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 636.688859][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 636.701296][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 636.713756][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 636.726076][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 636.739203][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 636.751558][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 636.763994][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.629296][ C0] net_ratelimit: 9539 callbacks suppressed [ 641.629318][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.647535][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 641.660594][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.673019][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 641.685470][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.697777][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 641.710871][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.723194][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 641.735552][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 641.747968][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 646.613390][ C0] net_ratelimit: 9497 callbacks suppressed [ 646.613410][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 646.631671][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 646.644007][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 646.657018][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 646.669361][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 646.681828][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 646.694209][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 646.707404][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 646.719811][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 646.732182][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 651.597445][ C0] net_ratelimit: 9742 callbacks suppressed [ 651.597466][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 651.616005][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 651.628466][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 651.641487][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 651.653859][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 651.666308][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 651.678833][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 651.691995][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 651.704354][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 651.716714][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.581956][ C0] net_ratelimit: 9617 callbacks suppressed [ 656.581977][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.600211][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 656.612710][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.625034][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 656.638184][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.650638][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 656.663141][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.675517][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 656.688620][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 656.701016][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 661.565515][ C0] net_ratelimit: 9633 callbacks suppressed [ 661.565536][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 661.584503][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 661.597254][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 661.609626][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 661.621939][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 661.635051][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 661.647405][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 661.659783][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 661.672074][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 661.685155][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.550084][ C0] net_ratelimit: 9583 callbacks suppressed [ 666.550105][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.568753][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 666.581202][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.593683][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 666.606846][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.619292][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 666.631677][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.644001][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 666.657051][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 666.669401][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 671.534155][ C0] net_ratelimit: 9518 callbacks suppressed [ 671.534183][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 671.552704][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 671.565226][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 671.577897][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 671.591043][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 671.603564][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 671.616068][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 671.628460][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 671.641653][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 671.654119][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 676.517757][ C0] net_ratelimit: 9550 callbacks suppressed [ 676.517777][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 676.536254][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 676.548643][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 676.561650][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 676.575045][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 676.587712][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 676.600131][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 676.612570][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 676.625735][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 676.638199][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 681.501760][ C0] net_ratelimit: 9475 callbacks suppressed [ 681.501780][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 681.520204][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 681.532673][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 681.545755][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 681.558238][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 681.570738][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 681.583213][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 681.596421][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 681.609053][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 681.621581][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.485987][ C0] net_ratelimit: 9523 callbacks suppressed [ 686.486008][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.504326][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 686.517958][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.530714][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 686.543273][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.555737][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 686.569079][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.581708][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 686.594176][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 686.606509][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 691.470229][ C0] net_ratelimit: 9596 callbacks suppressed [ 691.470254][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 691.489427][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 691.502533][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 691.515651][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 691.529320][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 691.542071][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 691.554850][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 691.567297][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 691.580682][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 691.593102][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 696.454363][ C0] net_ratelimit: 9619 callbacks suppressed [ 696.454384][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 696.472811][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 696.485219][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 696.498602][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 696.510984][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 696.523517][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 696.536118][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 696.549243][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 696.561635][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 696.574018][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 700.920695][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 700.927864][ C0] rcu: Tasks blocked on level-0 rcu_node (CPUs 0-1): P13082/1:b..l [ 700.937421][ C0] rcu: (detected by 0, t=10502 jiffies, g=64765, q=1034 ncpus=1) [ 700.945344][ C0] task:syz.0.2037 state:R running task stack:27576 pid:13082 tgid:13078 ppid:5826 task_flags:0x20400040 flags:0x00080001 [ 700.960178][ C0] Call Trace: [ 700.963565][ C0] [ 700.966515][ C0] __schedule+0x1190/0x5de0 [ 700.971053][ C0] ? __pfx___schedule+0x10/0x10 [ 700.975924][ C0] ? __pfx___schedule+0x10/0x10 [ 700.980809][ C0] preempt_schedule_irq+0x51/0x90 [ 700.985871][ C0] irqentry_exit+0x36/0x90 [ 700.990608][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 700.997089][ C0] RIP: 0010:__rcu_read_unlock+0x11b/0x550 [ 701.003133][ C0] Code: 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 7d 01 00 00 8b 83 84 04 00 00 3d ff ff ff 3f 0f 87 51 01 00 00 5b 5d <41> 5c 41 5d 41 5e e9 9a 30 be 09 65 8b 1d 23 b9 fe 11 f7 c3 00 00 [ 701.023122][ C0] RSP: 0018:ffffc90004437118 EFLAGS: 00000293 [ 701.030012][ C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffc900044370fc [ 701.038742][ C0] RDX: 0000000000000000 RSI: ffffffff8da0398a RDI: ffff8880252422c4 [ 701.047011][ C0] RBP: 00007f23d0f8f749 R08: f501fefe41178ce3 R09: 0000000000000000 [ 701.055196][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888025241e40 [ 701.063454][ C0] R13: ffffc90004437258 R14: 0000000000000000 R15: ffff888025241e40 [ 701.071487][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 701.077693][ C0] is_module_text_address+0x152/0x220 [ 701.083303][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 701.089490][ C0] kernel_text_address+0x81/0x100 [ 701.094557][ C0] __kernel_text_address+0xd/0x40 [ 701.099621][ C0] unwind_get_return_address+0x59/0xa0 [ 701.105119][ C0] arch_stack_walk+0xa6/0x100 [ 701.109824][ C0] stack_trace_save+0x8e/0xc0 [ 701.114607][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 701.119998][ C0] ? __lock_acquire+0xb8a/0x1c90 [ 701.124963][ C0] kasan_save_stack+0x33/0x60 [ 701.129651][ C0] ? kasan_save_stack+0x33/0x60 [ 701.134509][ C0] ? kasan_save_track+0x14/0x30 [ 701.139388][ C0] ? __kasan_kmalloc+0xaa/0xb0 [ 701.144163][ C0] ? kmem_cache_free+0x147/0x6c0 [ 701.149134][ C0] ? mempool_free+0x102/0x750 [ 701.153877][ C0] ? bio_put+0x355/0x5b0 [ 701.158260][ C0] ? bio_endio+0x713/0x860 [ 701.162795][ C0] ? blk_update_request+0x93e/0x15f0 [ 701.168183][ C0] ? blk_mq_end_request+0x4f/0x90 [ 701.173258][ C0] ? blk_mq_complete_request+0x8b/0xb0 [ 701.178756][ C0] ? null_queue_rq+0xb69/0xfd0 [ 701.183544][ C0] ? null_queue_rqs+0xe9/0x2f0 [ 701.188340][ C0] ? __blk_mq_flush_list+0x9a/0xc0 [ 701.193487][ C0] ? blk_mq_dispatch_queue_requests+0x184/0x7b0 [ 701.199764][ C0] ? blk_mq_flush_plug_list+0x1f2/0x600 [ 701.205341][ C0] ? __blk_flush_plug+0x2c4/0x4b0 [ 701.210380][ C0] ? blk_finish_plug+0x53/0xa0 [ 701.215156][ C0] ? blkdev_writepages+0xe9/0x140 [ 701.220194][ C0] ? do_writepages+0x27a/0x600 [ 701.224975][ C0] ? filemap_fdatawrite_wbc+0x104/0x160 [ 701.230993][ C0] ? __filemap_fdatawrite_range+0xb9/0x100 [ 701.237008][ C0] ? file_write_and_wait_range+0xca/0x140 [ 701.242772][ C0] ? blkdev_fsync+0x6c/0xd0 [ 701.247309][ C0] ? vfs_fsync_range+0x139/0x220 [ 701.252268][ C0] ? do_fsync+0x4b/0xa0 [ 701.256439][ C0] ? __x64_sys_fdatasync+0x35/0x50 [ 701.261566][ C0] ? do_syscall_64+0xcd/0xfa0 [ 701.266367][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.272496][ C0] kasan_save_track+0x14/0x30 [ 701.277207][ C0] __kasan_kmalloc+0xaa/0xb0 [ 701.281835][ C0] kmem_cache_free+0x147/0x6c0 [ 701.287059][ C0] ? mempool_free+0x102/0x750 [ 701.291783][ C0] ? __pfx_mempool_free_slab+0x10/0x10 [ 701.297389][ C0] ? mempool_free+0x102/0x750 [ 701.302305][ C0] mempool_free+0x102/0x750 [ 701.306932][ C0] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 701.312511][ C0] bio_put+0x355/0x5b0 [ 701.316619][ C0] ? __pfx_end_bio_bh_io_sync+0x10/0x10 [ 701.322233][ C0] bio_endio+0x713/0x860 [ 701.326540][ C0] blk_update_request+0x93e/0x15f0 [ 701.331711][ C0] blk_mq_end_request+0x4f/0x90 [ 701.336873][ C0] blk_mq_complete_request+0x8b/0xb0 [ 701.342207][ C0] null_queue_rq+0xb69/0xfd0 [ 701.346839][ C0] null_queue_rqs+0xe9/0x2f0 [ 701.351485][ C0] ? __pfx_null_queue_rqs+0x10/0x10 [ 701.356737][ C0] __blk_mq_flush_list+0x9a/0xc0 [ 701.361714][ C0] blk_mq_dispatch_queue_requests+0x184/0x7b0 [ 701.367806][ C0] ? find_held_lock+0x2b/0x80 [ 701.372505][ C0] blk_mq_flush_plug_list+0x1f2/0x600 [ 701.377900][ C0] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 701.383834][ C0] ? folios_put_refs+0x51d/0x750 [ 701.388809][ C0] ? __pfx_filemap_get_folios_tag+0x10/0x10 [ 701.394757][ C0] __blk_flush_plug+0x2c4/0x4b0 [ 701.399657][ C0] ? __pfx___might_resched+0x10/0x10 [ 701.404969][ C0] ? mlock_drain_local+0x24c/0x4f0 [ 701.410128][ C0] ? __pfx___blk_flush_plug+0x10/0x10 [ 701.415726][ C0] ? writeback_iter+0x8dd/0x11a0 [ 701.420815][ C0] blk_finish_plug+0x53/0xa0 [ 701.425439][ C0] blkdev_writepages+0xe9/0x140 [ 701.430331][ C0] ? __pfx_blkdev_writepages+0x10/0x10 [ 701.435827][ C0] ? do_writepages+0x4b7/0x600 [ 701.440661][ C0] ? __pfx_blkdev_writepages+0x10/0x10 [ 701.446156][ C0] do_writepages+0x27a/0x600 [ 701.450783][ C0] ? __pfx_do_writepages+0x10/0x10 [ 701.456176][ C0] ? do_raw_spin_unlock+0x172/0x230 [ 701.461406][ C0] ? _raw_spin_unlock+0x28/0x50 [ 701.466328][ C0] filemap_fdatawrite_wbc+0x104/0x160 [ 701.471739][ C0] ? find_held_lock+0x2b/0x80 [ 701.476460][ C0] __filemap_fdatawrite_range+0xb9/0x100 [ 701.482137][ C0] ? __pfx___filemap_fdatawrite_range+0x10/0x10 [ 701.488625][ C0] ? futex_private_hash_put+0xd5/0x190 [ 701.494252][ C0] ? find_held_lock+0x2b/0x80 [ 701.498990][ C0] file_write_and_wait_range+0xca/0x140 [ 701.504861][ C0] ? __pfx_blkdev_fsync+0x10/0x10 [ 701.509947][ C0] blkdev_fsync+0x6c/0xd0 [ 701.514455][ C0] vfs_fsync_range+0x139/0x220 [ 701.519623][ C0] do_fsync+0x4b/0xa0 [ 701.524348][ C0] __x64_sys_fdatasync+0x35/0x50 [ 701.530410][ C0] do_syscall_64+0xcd/0xfa0 [ 701.536472][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 701.542939][ C0] RIP: 0033:0x7f23d0f8f749 [ 701.547396][ C0] RSP: 002b:00007f23d1dd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000004b [ 701.556130][ C0] RAX: ffffffffffffffda RBX: 00007f23d11e6090 RCX: 00007f23d0f8f749 [ 701.564313][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 701.572553][ C0] RBP: 00007f23d1013f91 R08: 0000000000000000 R09: 0000000000000000 [ 701.580558][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 701.588581][ C0] R13: 00007f23d11e6128 R14: 00007f23d11e6090 R15: 00007ffedd52c578 [ 701.596627][ C0] [ 701.599665][ C0] rcu: rcu_preempt kthread starved for 747 jiffies! g64765 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0 [ 701.610792][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 701.620781][ C0] rcu: RCU grace-period kthread stack dump: [ 701.626862][ C0] task:rcu_preempt state:R running task stack:28552 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00080000 [ 701.640682][ C0] Call Trace: [ 701.643993][ C0] [ 701.647395][ C0] __schedule+0x1190/0x5de0 [ 701.652049][ C0] ? __lock_acquire+0x622/0x1c90 [ 701.657045][ C0] ? __pfx___schedule+0x10/0x10 [ 701.661927][ C0] ? find_held_lock+0x2b/0x80 [ 701.666769][ C0] ? schedule+0x2d7/0x3a0 [ 701.671139][ C0] schedule+0xe7/0x3a0 [ 701.675230][ C0] schedule_timeout+0x123/0x290 [ 701.680304][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 701.685727][ C0] ? __pfx_process_timeout+0x10/0x10 [ 701.691057][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 701.696909][ C0] ? prepare_to_swait_event+0xf5/0x480 [ 701.702427][ C0] rcu_gp_fqs_loop+0x1ea/0xaf0 [ 701.707256][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 701.712863][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 701.718106][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 701.723359][ C0] ? rcu_gp_cleanup+0x7c1/0xd90 [ 701.728377][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 701.734325][ C0] rcu_gp_kthread+0x26d/0x380 [ 701.739078][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 701.744506][ C0] ? rcu_is_watching+0x12/0xc0 [ 701.749307][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 701.754538][ C0] ? __kthread_parkme+0x19e/0x250 [ 701.759592][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 701.764820][ C0] kthread+0x3c5/0x780 [ 701.769266][ C0] ? __pfx_kthread+0x10/0x10 [ 701.773948][ C0] ? rcu_is_watching+0x12/0xc0 [ 701.778768][ C0] ? __pfx_kthread+0x10/0x10 [ 701.783562][ C0] ret_from_fork+0x675/0x7d0 [ 701.788279][ C0] ? __pfx_kthread+0x10/0x10 [ 701.792892][ C0] ret_from_fork_asm+0x1a/0x30 [ 701.797696][ C0] [ 701.800722][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 701.807063][ C0] CPU: 0 UID: 0 PID: 3408 Comm: kworker/R-bat_e Not tainted syzkaller #0 PREEMPT(full) [ 701.816799][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 701.827000][ C0] Workqueue: bat_events batadv_dat_purge [ 701.832783][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 701.839246][ C0] Code: 46 81 56 00 48 89 df 5b e9 ed 2e 5c 00 be 03 00 00 00 5b e9 c2 93 e5 02 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 34 24 65 48 8b 15 78 d8 e4 11 65 8b 05 89 d8 e4 [ 701.861345][ C0] RSP: 0018:ffffc900000073c0 EFLAGS: 00000246 [ 701.867898][ C0] RAX: 0000000000000000 RBX: 0000000000000003 RCX: ffffffff8a086b5b [ 701.876862][ C0] RDX: ffff888030b28000 RSI: ffffffff8a086d46 RDI: 0000000000000005 [ 701.885053][ C0] RBP: ffffc900000074e0 R08: 0000000000000005 R09: 0000000000000000 [ 701.893798][ C0] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88805c9e70df [ 701.903304][ C0] R13: ffff88805c9e70c8 R14: 1ffff92000000e8a R15: ffff8880328cb000 [ 701.912148][ C0] FS: 0000000000000000(0000) GS:ffff888124a0d000(0000) knlGS:0000000000000000 [ 701.921762][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 701.929259][ C0] CR2: 00007fb1fe602e80 CR3: 000000007a0e4000 CR4: 00000000003526f0 [ 701.937720][ C0] Call Trace: [ 701.941474][ C0] [ 701.944443][ C0] lockdep_rtnl_is_held+0xa/0x40 [ 701.949714][ C0] find_match+0x34b/0x15d0 [ 701.954385][ C0] ? br_pass_frame_up+0x31f/0x490 [ 701.959822][ C0] ? __pfx_find_match+0x10/0x10 [ 701.965491][ C0] ? __pfx_br_handle_frame_finish+0x10/0x10 [ 701.971451][ C0] __find_rr_leaf+0x140/0xe00 [ 701.976186][ C0] ? __pfx___find_rr_leaf+0x10/0x10 [ 701.981598][ C0] ? fib6_node_lookup+0x12d/0x190 [ 701.988434][ C0] ? __pfx_fib6_node_lookup+0x10/0x10 [ 701.994162][ C0] fib6_table_lookup+0x57c/0xa30 [ 702.000410][ C0] ? __pfx_fib6_table_lookup+0x10/0x10 [ 702.006890][ C0] ip6_pol_route+0x1cc/0x1230 [ 702.011737][ C0] ? __pfx_ip6_pol_route+0x10/0x10 [ 702.017181][ C0] ? __pfx_rt6_multipath_hash+0x10/0x10 [ 702.023233][ C0] ? __pfx_ip6_pol_route_input+0x10/0x10 [ 702.030234][ C0] fib6_rule_lookup+0x536/0x720 [ 702.037167][ C0] ? __pfx_fib6_rule_lookup+0x10/0x10 [ 702.044427][ C0] ? nf_nat_ipv6_fn+0xff/0x2e0 [ 702.049419][ C0] ? __pfx_nf_nat_ipv6_fn+0x10/0x10 [ 702.055407][ C0] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 702.062524][ C0] ip6_route_input+0x662/0xc70 [ 702.068838][ C0] ? __pfx_ip6_route_input+0x10/0x10 [ 702.075927][ C0] ? lock_acquire+0x179/0x350 [ 702.081155][ C0] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 702.086741][ C0] ip6_rcv_finish_core.constprop.0+0x1a0/0x5d0 [ 702.093222][ C0] ipv6_rcv+0x1e8/0x650 [ 702.097427][ C0] ? __pfx_ipv6_rcv+0x10/0x10 [ 702.102483][ C0] __netif_receive_skb_one_core+0x12d/0x1e0 [ 702.108972][ C0] ? __pfx___netif_receive_skb_one_core+0x10/0x10 [ 702.115580][ C0] ? lock_acquire+0x179/0x350 [ 702.120671][ C0] ? process_backlog+0x3e7/0x15e0 [ 702.126036][ C0] __netif_receive_skb+0x1d/0x160 [ 702.131617][ C0] process_backlog+0x439/0x15e0 [ 702.136866][ C0] __napi_poll.constprop.0+0xba/0x550 [ 702.142600][ C0] ? skb_defer_free_flush+0x149/0x280 [ 702.148137][ C0] net_rx_action+0x97f/0xef0 [ 702.152973][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 702.158343][ C0] ? mark_held_locks+0x49/0x80 [ 702.163437][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 702.168718][ C0] ? tmigr_handle_remote+0x132/0x380 [ 702.174071][ C0] ? run_timer_base+0x121/0x190 [ 702.179251][ C0] ? __pfx_run_timer_base+0x10/0x10 [ 702.185322][ C0] handle_softirqs+0x219/0x8e0 [ 702.190176][ C0] ? __pfx_handle_softirqs+0x10/0x10 [ 702.195778][ C0] ? irqtime_account_irq+0x18d/0x2e0 [ 702.201107][ C0] ? __batadv_dat_purge.part.0+0x279/0x3a0 [ 702.207006][ C0] ? __pfx_batadv_dat_to_purge+0x10/0x10 [ 702.212787][ C0] do_softirq+0xb2/0xf0 [ 702.216994][ C0] [ 702.219961][ C0] [ 702.222911][ C0] __local_bh_enable_ip+0x100/0x120 [ 702.228334][ C0] __batadv_dat_purge.part.0+0x279/0x3a0 [ 702.234179][ C0] batadv_dat_purge+0x4b/0xa0 [ 702.238931][ C0] process_one_work+0x9cf/0x1b70 [ 702.243942][ C0] ? __pfx_process_one_work+0x10/0x10 [ 702.249389][ C0] ? assign_work+0x1a0/0x250 [ 702.254030][ C0] rescuer_thread+0x620/0xea0 [ 702.258748][ C0] ? rcu_is_watching+0x12/0xc0 [ 702.263556][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 702.268815][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 702.274039][ C0] ? __kthread_parkme+0x19e/0x250 [ 702.279091][ C0] ? __pfx_rescuer_thread+0x10/0x10 [ 702.284321][ C0] kthread+0x3c5/0x780 [ 702.288427][ C0] ? __pfx_kthread+0x10/0x10 [ 702.293049][ C0] ? rcu_is_watching+0x12/0xc0 [ 702.297861][ C0] ? __pfx_kthread+0x10/0x10 [ 702.302495][ C0] ret_from_fork+0x675/0x7d0 [ 702.307906][ C0] ? __pfx_kthread+0x10/0x10 [ 702.312883][ C0] ret_from_fork_asm+0x1a/0x30 [ 702.317893][ C0] [ 702.321321][ C0] net_ratelimit: 8485 callbacks suppressed [ 702.321339][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 702.339709][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 702.352242][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 702.364677][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 702.377821][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 702.390241][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 702.402761][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 702.415166][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 702.428387][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 702.442161][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 702.609139][ T1300] ieee802154 phy0 wpan0: encryption failed: -22 [ 702.626962][ T1300] ieee802154 phy1 wpan1: encryption failed: -22 [ 707.298300][ C0] net_ratelimit: 8370 callbacks suppressed [ 707.298323][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 707.316805][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 707.329434][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 707.342929][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 707.357098][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 707.370608][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0) [ 707.383733][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 707.396401][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 707.409942][ C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 707.422900][ C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:02:30:c6:0b:32:19, vlan:0)