last executing test programs: 5.107609712s ago: executing program 2 (id=301): mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0xffffffffffffffff, 0x8000) ioctl$auto_MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, 0x0) prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0) r0 = openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/oom_adj\x00', 0x49402, 0x0) read$auto(r0, 0x0, 0x9a28) r1 = openat$auto_proc_fail_nth_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/fail-nth\x00', 0x802, 0x0) writev$auto(r1, &(0x7f0000000200)={0x0, 0x7}, 0x3) fanotify_mark$auto(0xffffffffffffffff, 0x80, 0x5e50ee86, 0xffffffffffffffff, 0x0) mremap$auto(0x200000001000, 0x8, 0x34, 0x3, 0x4000110c230000) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000080)='/sys/devices/LNXSYSTM:00/LNXSYBUS:00/PNP0A03:00/device:08/adr\x00', 0x0, 0x0) unshare$auto(0x40000080) 4.475376135s ago: executing program 2 (id=304): mmap$auto(0x0, 0x40009, 0x3, 0x9b72, 0x7, 0x28000) close_range$auto(0x2, 0x8, 0x0) socket(0x2, 0x1, 0x0) r0 = socket(0x2, 0x5, 0x0) bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x3d}}, 0x6a) sendmmsg$auto(r0, &(0x7f0000000140)={{&(0x7f0000000040), 0x10, &(0x7f00000000c0)={0x0, 0x1fff8}, 0x7, 0x0, 0x2, 0xb}, 0xfff}, 0x5, 0x311) io_uring_setup$auto(0x2, 0x0) setsockopt$auto(0x3, 0x1, 0x3e, 0x0, 0x9) connect$auto(0x3, 0x0, 0x55) mincore$auto(0x0, 0x1, 0x0) setsockopt$auto(0x3, 0x10000000084, 0x11, 0x0, 0x8) 4.002905559s ago: executing program 3 (id=305): unshare$auto(0x40000080) r0 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mtdblock0\x00', 0x14fe02, 0x0) r1 = openat$auto_vmwgfx_driver_fops_vmwgfx_drv(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dri/card0\x00', 0x0, 0x0) ioctl$auto(r1, 0x64cd, r1) mmap$auto(0x0, 0x810004, 0xffb, 0x8000000008011, 0x3, 0x8000) preadv2$auto(r0, 0x0, 0x6, 0xffffffffffffffff, 0x8000000000000, 0x2f) close_range$auto(0x2, 0x8, 0x0) ioctl$auto_KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0x82002, 0x0) r2 = openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/vxlan/parameters/udp_port\x00', 0x2400, 0x0) read$auto(r2, 0x0, 0x20) 3.633233287s ago: executing program 0 (id=308): mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000) close_range$auto(0x0, 0xfffffffffffff000, 0x4000000000002) getcwd$auto(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket(0xa, 0x5, 0x0) r0 = inotify_init1$auto(0x3000000000000) inotify_add_watch$auto(0x4, 0x0, 0xe6e) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) read$auto_kernfs_file_fops_kernfs_internal(r0, 0x0, 0x0) 3.566263143s ago: executing program 3 (id=309): unshare$auto(0x40000080) socket(0x29, 0x800, 0x8) bpf$auto(0x5, 0x0, 0x80000007) mmap$auto(0x0, 0x2020009, 0xa, 0xeb1, 0xfffffffffffffffa, 0x8000) rseq$auto(0x0, 0x8000, 0x0, 0x6) sendmsg$auto_NETDEV_CMD_DEV_GET(0xffffffffffffffff, 0x0, 0x40000) kexec_load$auto(0x70, 0x2, 0x0, 0x4) mmap$auto(0x0, 0x2020009, 0x3, 0x800000000000eb1, 0xfffffffffffffffa, 0x8000) r0 = socket(0x2, 0x801, 0x106) mmap$auto(0x0, 0x3fffff, 0x7, 0x11, 0xdd, 0x0) getsockopt$auto(r0, 0x11c, 0x2, 0x0, 0x0) 3.500596191s ago: executing program 0 (id=310): mmap$auto(0x0, 0x2020009, 0x8000000000000006, 0x40000000000eb1, 0xffffffffffffffff, 0x8000) socket(0x2, 0x1, 0x0) sysfs$auto(0x2, 0x10, 0x0) openat$auto_proc_reg_file_ops_compat_inode(0xffffffffffffff9c, 0x0, 0x40080, 0x0) mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000) madvise$auto(0x0, 0xffffffffffff0005, 0x17) madvise$auto(0x0, 0xffffffffffff0001, 0x15) prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x4) madvise$auto(0x6000000000, 0x8, 0x7) madvise$auto(0x0, 0x400053, 0x9) shmdt$auto(0x0) 3.46464337s ago: executing program 2 (id=311): unshare$auto(0x40000080) unshare$auto(0xffff) mmap$auto(0x0, 0x40009, 0xdf, 0x9b72, 0x7, 0x28000) r0 = openat$auto_hsr_node_table_fops_(0xffffffffffffff9c, 0x0, 0x100, 0x0) preadv$auto(r0, &(0x7f0000000300)={0x0, 0x8}, 0x5, 0xf, 0x5) r1 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/vm/overcommit_memory\x00', 0xf22437c730143eb6, 0x0) write$auto_console_fops_tty_io(r1, 0x0, 0x0) openat$auto_usbdev_file_operations_usb(0xffffffffffffff9c, &(0x7f0000001a80)='/dev/bus/usb/001/001\x00', 0x29202, 0x0) ioctl$auto(0x3, 0x80005520, 0x7f) r2 = openat$auto_proc_sys_file_operations_proc_sysctl(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv6/conf/default/ignore_routes_with_linkdown\x00', 0x42a81, 0x0) pwrite64$auto(r2, &(0x7f0000000000)='/proc/sys/net/ipv6/coX\t/all/for\xdf 1 [ 77.686588][ T5629] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.695272][ T5632] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.706865][ T5632] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.714612][ T5632] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.723433][ T5632] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.733014][ T5632] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.734587][ T5636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.743124][ T5632] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.749325][ T5636] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.762447][ T5632] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.764963][ T5636] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.771155][ T5632] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.778070][ T5636] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.786627][ T5632] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.799761][ T5625] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.811667][ T5636] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.823847][ T5632] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.825370][ T5636] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.831568][ T5632] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.347720][ T5631] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.355717][ T5631] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.362957][ T5631] bridge_slave_0: entered allmulticast mode [ 79.370053][ T5631] bridge_slave_0: entered promiscuous mode [ 79.400508][ T5631] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.407777][ T5631] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.415821][ T5631] bridge_slave_1: entered allmulticast mode [ 79.422844][ T5631] bridge_slave_1: entered promiscuous mode [ 79.440268][ T5626] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.447581][ T5626] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.454887][ T5626] bridge_slave_0: entered allmulticast mode [ 79.461857][ T5626] bridge_slave_0: entered promiscuous mode [ 79.493294][ T5626] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.500613][ T5626] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.507909][ T5626] bridge_slave_1: entered allmulticast mode [ 79.514979][ T5626] bridge_slave_1: entered promiscuous mode [ 79.561804][ T5631] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.571145][ T5630] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.579563][ T5630] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.586856][ T5630] bridge_slave_0: entered allmulticast mode [ 79.594374][ T5630] bridge_slave_0: entered promiscuous mode [ 79.622000][ T5631] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.640605][ T5630] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.647775][ T5630] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.655047][ T5630] bridge_slave_1: entered allmulticast mode [ 79.662072][ T5630] bridge_slave_1: entered promiscuous mode [ 79.669302][ T5623] bridge0: port 1(bridge_slave_0) entered blocking state [ 79.676565][ T5623] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.683804][ T5623] bridge_slave_0: entered allmulticast mode [ 79.690787][ T5623] bridge_slave_0: entered promiscuous mode [ 79.700823][ T5626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.714349][ T5626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.740860][ T5623] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.748220][ T5623] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.755663][ T5623] bridge_slave_1: entered allmulticast mode [ 79.762694][ T5623] bridge_slave_1: entered promiscuous mode [ 79.780004][ T5631] team0: Port device team_slave_0 added [ 79.817915][ T5631] team0: Port device team_slave_1 added [ 79.826530][ T5630] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.845936][ T5626] team0: Port device team_slave_0 added [ 79.854197][ T5629] Bluetooth: hci1: command tx timeout [ 79.860336][ T5632] Bluetooth: hci2: command tx timeout [ 79.860359][ T5636] Bluetooth: hci0: command tx timeout [ 79.879210][ T5630] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.900824][ T5623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.911762][ T5626] team0: Port device team_slave_1 added [ 79.934274][ T5632] Bluetooth: hci3: command tx timeout [ 79.935426][ T5631] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.946781][ T5631] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 79.972736][ T5631] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.996682][ T5623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 80.018969][ T5631] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.026222][ T5631] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.052200][ T5631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.065095][ T5630] team0: Port device team_slave_0 added [ 80.080471][ T5626] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.087568][ T5626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.113572][ T5626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.134677][ T5630] team0: Port device team_slave_1 added [ 80.150509][ T5626] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.157578][ T5626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.184453][ T5626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.217730][ T5623] team0: Port device team_slave_0 added [ 80.226589][ T5623] team0: Port device team_slave_1 added [ 80.278208][ T5623] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.285287][ T5623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.311693][ T5623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.323589][ T5630] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 80.330566][ T5630] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.357507][ T5630] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 80.389450][ T5623] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.396860][ T5623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.423061][ T5623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.434793][ T5630] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 80.441730][ T5630] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 80.467701][ T5630] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 80.495599][ T5631] hsr_slave_0: entered promiscuous mode [ 80.502439][ T5631] hsr_slave_1: entered promiscuous mode [ 80.531760][ T5626] hsr_slave_0: entered promiscuous mode [ 80.538241][ T5626] hsr_slave_1: entered promiscuous mode [ 80.544893][ T5626] debugfs: 'hsr0' already exists in 'hsr' [ 80.550708][ T5626] Cannot create hsr debugfs directory [ 80.666161][ T5623] hsr_slave_0: entered promiscuous mode [ 80.672389][ T5623] hsr_slave_1: entered promiscuous mode [ 80.678683][ T5623] debugfs: 'hsr0' already exists in 'hsr' [ 80.684614][ T5623] Cannot create hsr debugfs directory [ 80.696073][ T5630] hsr_slave_0: entered promiscuous mode [ 80.702292][ T5630] hsr_slave_1: entered promiscuous mode [ 80.708574][ T5630] debugfs: 'hsr0' already exists in 'hsr' [ 80.714402][ T5630] Cannot create hsr debugfs directory [ 81.108085][ T5626] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.124449][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 81.135848][ T5626] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.147350][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 81.155824][ T5626] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.170155][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 81.178541][ T5626] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 81.188415][ T5626] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 81.268741][ T5631] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 81.279245][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 81.288713][ T5631] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 81.300793][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 81.322310][ T5631] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 81.332576][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 81.344111][ T5631] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 81.355931][ T5631] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 81.450514][ T5630] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 81.461253][ T5630] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 81.470081][ T5630] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 81.481164][ T5630] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 81.489836][ T5630] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 81.499821][ T5630] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 81.508032][ T5630] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 81.518747][ T5630] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 81.575651][ T5626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.630806][ T5623] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 81.640686][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 81.649451][ T5623] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 81.659807][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 81.668644][ T5623] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 81.678352][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 81.686938][ T5623] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 81.696805][ T5623] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 81.749823][ T5626] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.792188][ T1040] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.799722][ T1040] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.822329][ T1040] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.829664][ T1040] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.849204][ T5631] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.915542][ T5631] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.934083][ T5629] Bluetooth: hci1: command tx timeout [ 81.934270][ T5632] Bluetooth: hci2: command tx timeout [ 81.944102][ T5629] Bluetooth: hci0: command tx timeout [ 81.969911][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.977117][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.006962][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.014111][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.022420][ T5629] Bluetooth: hci3: command tx timeout [ 82.035989][ T5630] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.116497][ T5630] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.147140][ T1040] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.154374][ T1040] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.175226][ T5623] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.219613][ T1040] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.226863][ T1040] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.289599][ T5623] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.339197][ T33] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.346421][ T33] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.377710][ T33] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.384940][ T33] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.960217][ T5626] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.143864][ T5626] veth0_vlan: entered promiscuous mode [ 83.184957][ T5626] veth1_vlan: entered promiscuous mode [ 83.221423][ T5631] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.316002][ T5626] veth0_macvtap: entered promiscuous mode [ 83.356512][ T5626] veth1_macvtap: entered promiscuous mode [ 83.411722][ T5631] veth0_vlan: entered promiscuous mode [ 83.462711][ T5626] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.496071][ T5631] veth1_vlan: entered promiscuous mode [ 83.507890][ T5626] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.540339][ T5623] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.550152][ T1040] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.560425][ T1040] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.581297][ T1040] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.591372][ T1040] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.606259][ T5630] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.729889][ T5631] veth0_macvtap: entered promiscuous mode [ 83.767795][ T5631] veth1_macvtap: entered promiscuous mode [ 83.791140][ T1155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.804048][ T1155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.838426][ T5631] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.850359][ T5623] veth0_vlan: entered promiscuous mode [ 83.860197][ T5630] veth0_vlan: entered promiscuous mode [ 83.891570][ T5631] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.902524][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.911045][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.911375][ T5623] veth1_vlan: entered promiscuous mode [ 83.946488][ T5630] veth1_vlan: entered promiscuous mode [ 83.959527][ T33] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.974690][ T1040] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.995744][ T1040] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.007108][ T1040] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.016001][ T5629] Bluetooth: hci2: command tx timeout [ 84.021748][ T5632] Bluetooth: hci0: command tx timeout [ 84.022085][ T5636] Bluetooth: hci1: command tx timeout [ 84.054355][ T5626] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 84.095210][ T5636] Bluetooth: hci3: command tx timeout [ 84.159252][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.170460][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.204542][ T5623] veth0_macvtap: entered promiscuous mode [ 84.220833][ T5623] veth1_macvtap: entered promiscuous mode [ 84.271785][ T5630] veth0_macvtap: entered promiscuous mode [ 84.291860][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.306943][ T5630] veth1_macvtap: entered promiscuous mode [ 84.314187][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.355637][ T5623] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.398571][ T5623] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.468922][ T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.491910][ T5630] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.509778][ T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.530662][ T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.581496][ T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.602768][ T5630] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.673129][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.696502][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.725508][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.757854][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.855961][ T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.885323][ T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.007268][ T1040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.034251][ T1040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.082785][ T1040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.111025][ T1040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.234940][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.259404][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.421159][ T5796] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 86.093622][ T5636] Bluetooth: hci1: command tx timeout [ 86.094021][ T5632] Bluetooth: hci0: command tx timeout [ 86.099100][ T5636] Bluetooth: hci2: command tx timeout [ 86.185021][ T5632] Bluetooth: hci3: command tx timeout [ 86.792820][ T5822] sd 0:0:1:0: device reset [ 87.655799][ T5836] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18'. [ 88.218428][ T5833] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 88.253025][ T5833] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 88.352871][ T5833] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 88.389346][ T5833] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 88.410189][ T5833] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 88.465874][ T5833] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 88.491271][ T5833] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 88.511878][ T5833] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 88.547263][ T5833] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 88.602020][ T5833] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 88.620681][ T5833] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 88.682154][ T5833] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 89.048831][ T5849] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 89.173015][ T5632] Bluetooth: hci3: unexpected event 0x07 length: 435 > 255 [ 89.652406][ T5862] random: crng reseeded on system resumption [ 89.670829][ T5863] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 89.678416][ T5859] netlink: 62 bytes leftover after parsing attributes in process `syz.0.22'. [ 89.707881][ T5859] Zero length message leads to an empty skb [ 89.935552][ T5632] Bluetooth: hci0: command 0x0c1a tx timeout [ 89.972695][ T5866] bonding: unable to delete non-existent ) [ 90.414686][ T5632] Bluetooth: hci1: command 0x0c1a tx timeout [ 90.429122][ T5874] hub 1-0:1.0: USB hub found [ 90.462361][ T5874] hub 1-0:1.0: 1 port detected [ 90.494579][ T5632] Bluetooth: hci2: command 0x0c1a tx timeout [ 90.654271][ T5632] Bluetooth: hci3: command 0x0c1a tx timeout [ 90.729948][ T5632] Bluetooth: hci0: unexpected event 0x09 length: 435 > 3 [ 91.350179][ T5900] FAULT_INJECTION: forcing a failure. [ 91.350179][ T5900] name failslab, interval 1, probability 0, space 0, times 1 [ 91.401785][ T5900] CPU: 1 UID: 0 PID: 5900 Comm: syz.1.36 Not tainted syzkaller #0 PREEMPT(full) [ 91.401823][ T5900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 91.401845][ T5900] Call Trace: [ 91.401856][ T5900] [ 91.401866][ T5900] dump_stack_lvl+0x100/0x190 [ 91.401905][ T5900] should_fail_ex.cold+0x5/0xa [ 91.401940][ T5900] should_failslab+0xc2/0x120 [ 91.401974][ T5900] __kmalloc_cache_noprof+0x7a/0x6f0 [ 91.402016][ T5900] ? refill_pi_state_cache+0x91/0x260 [ 91.402060][ T5900] refill_pi_state_cache+0x91/0x260 [ 91.402103][ T5900] futex_lock_pi+0x16d/0x7a0 [ 91.402144][ T5900] ? __pfx_futex_lock_pi+0x10/0x10 [ 91.402220][ T5900] ? __pfx_futex_wake_mark+0x10/0x10 [ 91.402264][ T5900] ? __get_user_nocheck_8+0x20/0x20 [ 91.402297][ T5900] ? do_vfs_ioctl+0x226/0x13e0 [ 91.402330][ T5900] do_futex+0x18a/0x350 [ 91.402362][ T5900] ? __pfx_do_futex+0x10/0x10 [ 91.402396][ T5900] ? find_held_lock+0x2b/0x80 [ 91.402439][ T5900] __x64_sys_futex+0x34f/0x4d0 [ 91.402476][ T5900] ? __pfx___x64_sys_futex+0x10/0x10 [ 91.402523][ T5900] ? rcu_is_watching+0x12/0xc0 [ 91.402562][ T5900] do_syscall_64+0x10b/0xf80 [ 91.402592][ T5900] ? clear_bhb_loop+0x40/0x90 [ 91.402625][ T5900] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.402647][ T5900] RIP: 0033:0x7f810d79cdd9 [ 91.402673][ T5900] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 91.402697][ T5900] RSP: 002b:00007f810e6b3028 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 91.402719][ T5900] RAX: ffffffffffffffda RBX: 00007f810da16090 RCX: 00007f810d79cdd9 [ 91.402736][ T5900] RDX: 0000000000000008 RSI: 0000000000000006 RDI: 0000000000000000 [ 91.402750][ T5900] RBP: 00007f810d832d69 R08: 0000000000000000 R09: 000000008000fff5 [ 91.402766][ T5900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 91.402781][ T5900] R13: 00007f810da16128 R14: 00007f810da16090 R15: 00007ffef5ad60a8 [ 91.402812][ T5900] [ 91.900597][ T10] cfg80211: failed to load regulatory.db [ 92.013794][ T5632] Bluetooth: hci0: command 0x0c1a tx timeout [ 92.493801][ T5632] Bluetooth: hci1: command 0x0c1a tx timeout [ 92.573666][ T5632] Bluetooth: hci2: command 0x0c1a tx timeout [ 92.741605][ T5632] Bluetooth: hci3: command 0x0c1a tx timeout [ 92.828059][ T5911] FAULT_INJECTION: forcing a failure. [ 92.828059][ T5911] name failslab, interval 1, probability 0, space 0, times 0 [ 92.895799][ T5911] CPU: 1 UID: 0 PID: 5911 Comm: syz.0.38 Not tainted syzkaller #0 PREEMPT(full) [ 92.895834][ T5911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 92.895851][ T5911] Call Trace: [ 92.895862][ T5911] [ 92.895873][ T5911] dump_stack_lvl+0x100/0x190 [ 92.895911][ T5911] should_fail_ex.cold+0x5/0xa [ 92.895946][ T5911] should_failslab+0xc2/0x120 [ 92.895976][ T5911] __kmalloc_cache_noprof+0x7a/0x6f0 [ 92.896012][ T5911] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 92.896066][ T5911] snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 92.896102][ T5911] ? trace_contention_end+0x85/0x170 [ 92.896138][ T5911] ? snd_pcm_oss_get_active_substream+0x153/0x1d0 [ 92.896179][ T5911] ? kasan_quarantine_put+0x104/0x240 [ 92.896221][ T5911] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 92.896262][ T5911] ? __pfx___mutex_lock+0x10/0x10 [ 92.896298][ T5911] ? find_held_lock+0x2b/0x80 [ 92.896333][ T5911] ? tomoyo_path_number_perm+0x28f/0x580 [ 92.896363][ T5911] ? tomoyo_path_number_perm+0x28f/0x580 [ 92.896500][ T5911] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 92.896537][ T5911] ? futex_wait+0x11e/0x370 [ 92.896581][ T5911] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 92.896630][ T5911] snd_pcm_oss_get_formats+0x7d/0x350 [ 92.896669][ T5911] ? do_vfs_ioctl+0x226/0x13e0 [ 92.896698][ T5911] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 92.896749][ T5911] snd_pcm_oss_ioctl+0x1795/0x37c0 [ 92.896791][ T5911] ? find_held_lock+0x2b/0x80 [ 92.896827][ T5911] ? __fget_files+0x215/0x3d0 [ 92.896857][ T5911] ? hook_file_ioctl_common+0x149/0x410 [ 92.896887][ T5911] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 92.896933][ T5911] ? __fget_files+0x21f/0x3d0 [ 92.896970][ T5911] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 92.897008][ T5911] __x64_sys_ioctl+0x18e/0x210 [ 92.897035][ T5911] do_syscall_64+0x10b/0xf80 [ 92.897065][ T5911] ? clear_bhb_loop+0x40/0x90 [ 92.897084][ T5911] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.897109][ T5911] RIP: 0033:0x7f1c1cb9cdd9 [ 92.897131][ T5911] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 92.897158][ T5911] RSP: 002b:00007f1c1dae6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 92.897179][ T5911] RAX: ffffffffffffffda RBX: 00007f1c1ce16090 RCX: 00007f1c1cb9cdd9 [ 92.897189][ T5911] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 92.897198][ T5911] RBP: 00007f1c1cc32d69 R08: 0000000000000000 R09: 0000000000000000 [ 92.897207][ T5911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.897215][ T5911] R13: 00007f1c1ce16128 R14: 00007f1c1ce16090 R15: 00007ffd6ee19cc8 [ 92.897235][ T5911] [ 94.103662][ T5632] Bluetooth: hci0: command 0x0c1a tx timeout [ 94.191830][ T5910] kexec: Could not allocate control_code_buffer [ 94.490566][ T5932] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 94.574980][ T5632] Bluetooth: hci1: command 0x0c1a tx timeout [ 94.656020][ T5632] Bluetooth: hci2: command 0x0c1a tx timeout [ 94.815172][ T5632] Bluetooth: hci3: command 0x0c1a tx timeout [ 95.150455][ T30] audit: type=1804 audit(1777667387.472:2): pid=5944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.49" name="/newroot/14/file0" dev="tmpfs" ino=88 res=1 errno=0 [ 96.699625][ T5632] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260 [ 96.699665][ T5632] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260 [ 96.715180][ T5632] Bluetooth: hci1: Dropping invalid advertising data [ 96.723466][ T5632] Bluetooth: hci1: unknown advertising packet type: 0xe9 [ 98.422911][ T5991] FAULT_INJECTION: forcing a failure. [ 98.422911][ T5991] name failslab, interval 1, probability 0, space 0, times 0 [ 98.480384][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.2.64 Not tainted syzkaller #0 PREEMPT(full) [ 98.480425][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 98.480442][ T5991] Call Trace: [ 98.480452][ T5991] [ 98.480463][ T5991] dump_stack_lvl+0x100/0x190 [ 98.480503][ T5991] should_fail_ex.cold+0x5/0xa [ 98.480540][ T5991] should_failslab+0xc2/0x120 [ 98.480574][ T5991] kmem_cache_alloc_node_noprof+0x81/0x6f0 [ 98.480621][ T5991] ? __alloc_skb+0x140/0x710 [ 98.480655][ T5991] __alloc_skb+0x140/0x710 [ 98.480680][ T5991] ? __alloc_skb+0x5b7/0x710 [ 98.480706][ T5991] ? __pfx___alloc_skb+0x10/0x10 [ 98.480744][ T5991] new_skb+0x21/0x230 [ 98.480779][ T5991] aoecmd_cfg+0x210/0x7a0 [ 98.480818][ T5991] ? __pfx_aoecmd_cfg+0x10/0x10 [ 98.480864][ T5991] ? apparmor_file_permission+0x13f/0x1c0 [ 98.480902][ T5991] ? aoechr_write+0x10a/0x120 [ 98.480932][ T5991] aoechr_write+0x10a/0x120 [ 98.480965][ T5991] vfs_write+0x2aa/0x1070 [ 98.480999][ T5991] ? __pfx_aoechr_write+0x10/0x10 [ 98.481035][ T5991] ? __pfx_vfs_write+0x10/0x10 [ 98.481065][ T5991] ? find_held_lock+0x2b/0x80 [ 98.481102][ T5991] ? __fget_files+0x215/0x3d0 [ 98.481142][ T5991] ? __fget_files+0x215/0x3d0 [ 98.481183][ T5991] ? __fget_files+0x21f/0x3d0 [ 98.481239][ T5991] ksys_write+0x12a/0x250 [ 98.481273][ T5991] ? __pfx_ksys_write+0x10/0x10 [ 98.481310][ T5991] ? rcu_is_watching+0x12/0xc0 [ 98.481354][ T5991] do_syscall_64+0x10b/0xf80 [ 98.481391][ T5991] ? clear_bhb_loop+0x40/0x90 [ 98.481426][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.481456][ T5991] RIP: 0033:0x7fa50b79cdd9 [ 98.481480][ T5991] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 98.481512][ T5991] RSP: 002b:00007fa50c69a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 98.481538][ T5991] RAX: ffffffffffffffda RBX: 00007fa50ba16090 RCX: 00007fa50b79cdd9 [ 98.481555][ T5991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 98.481570][ T5991] RBP: 00007fa50b832d69 R08: 0000000000000000 R09: 0000000000000000 [ 98.481585][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 98.481604][ T5991] R13: 00007fa50ba16128 R14: 00007fa50ba16090 R15: 00007fff6d86f108 [ 98.481644][ T5991] [ 98.772084][ T5991] aoe: skb alloc failure [ 98.839101][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 98.850051][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 99.475203][ T6018] FAULT_INJECTION: forcing a failure. [ 99.475203][ T6018] name failslab, interval 1, probability 0, space 0, times 0 [ 99.502545][ T6018] CPU: 0 UID: 0 PID: 6018 Comm: syz.3.72 Not tainted syzkaller #0 PREEMPT(full) [ 99.502585][ T6018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 99.502602][ T6018] Call Trace: [ 99.502611][ T6018] [ 99.502622][ T6018] dump_stack_lvl+0x100/0x190 [ 99.502661][ T6018] should_fail_ex.cold+0x5/0xa [ 99.502699][ T6018] should_failslab+0xc2/0x120 [ 99.502740][ T6018] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 99.502786][ T6018] ? alloc_empty_file+0x5b/0x1c0 [ 99.502834][ T6018] alloc_empty_file+0x5b/0x1c0 [ 99.502878][ T6018] alloc_file_pseudo+0x13a/0x230 [ 99.502921][ T6018] ? __pfx_alloc_file_pseudo+0x10/0x10 [ 99.502974][ T6018] __shmem_file_setup+0x205/0x460 [ 99.503015][ T6018] ? __pfx___shmem_file_setup+0x10/0x10 [ 99.503054][ T6018] ? vm_area_alloc+0x1f/0x160 [ 99.503096][ T6018] shmem_zero_setup+0x96/0x1b0 [ 99.503124][ T6018] __mmap_region+0x24e9/0x2da0 [ 99.503170][ T6018] ? __pfx___mmap_region+0x10/0x10 [ 99.503228][ T6018] ? kmem_cache_free+0x44a/0x6c0 [ 99.503264][ T6018] ? __fput_deferred+0x3e9/0x4a0 [ 99.503299][ T6018] ? fput_close+0x118/0x250 [ 99.503336][ T6018] ? path_openat+0xfec/0x31a0 [ 99.503373][ T6018] ? do_raw_spin_lock+0x128/0x260 [ 99.503428][ T6018] ? do_raw_spin_lock+0x128/0x260 [ 99.503460][ T6018] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 99.503506][ T6018] ? hrtimer_start_range_ns+0x860/0x1a50 [ 99.503542][ T6018] ? find_held_lock+0x2b/0x80 [ 99.503576][ T6018] ? finish_task_switch.isra.0+0x2c6/0x1010 [ 99.503677][ T6018] mmap_region+0x35d/0x620 [ 99.503711][ T6018] ? rcu_is_watching+0x12/0xc0 [ 99.503753][ T6018] ? __pfx_mmap_region+0x10/0x10 [ 99.503784][ T6018] ? cap_mmap_addr+0x4b/0x120 [ 99.503823][ T6018] ? bpf_lsm_mmap_addr+0x9/0x30 [ 99.503850][ T6018] ? security_mmap_addr+0x71/0x1e0 [ 99.503878][ T6018] ? __get_unmapped_area+0x255/0x3e0 [ 99.503915][ T6018] do_mmap+0xc63/0x12f0 [ 99.503950][ T6018] ? __pfx_do_mmap+0x10/0x10 [ 99.503982][ T6018] ? __pfx_down_write_killable+0x10/0x10 [ 99.504032][ T6018] vm_mmap_pgoff+0x29e/0x470 [ 99.504074][ T6018] ? __pfx_vm_mmap_pgoff+0x10/0x10 [ 99.504111][ T6018] ? do_futex+0x192/0x350 [ 99.504141][ T6018] ? __pfx_do_futex+0x10/0x10 [ 99.504177][ T6018] ksys_mmap_pgoff+0xe4/0x610 [ 99.504210][ T6018] ? __x64_sys_futex+0x358/0x4d0 [ 99.504240][ T6018] ? __pfx_ksys_mmap_pgoff+0x10/0x10 [ 99.504272][ T6018] ? xfd_validate_state+0x129/0x190 [ 99.504310][ T6018] __x64_sys_mmap+0x125/0x190 [ 99.504345][ T6018] do_syscall_64+0x10b/0xf80 [ 99.504378][ T6018] ? clear_bhb_loop+0x40/0x90 [ 99.504410][ T6018] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 99.504436][ T6018] RIP: 0033:0x7f0ff5b9cdd9 [ 99.504457][ T6018] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 99.504478][ T6018] RSP: 002b:00007f0ff6b09028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 99.504500][ T6018] RAX: ffffffffffffffda RBX: 00007f0ff5e15fa0 RCX: 00007f0ff5b9cdd9 [ 99.504517][ T6018] RDX: 00000000000000df RSI: 000000000002000c RDI: 0000000000000000 [ 99.504533][ T6018] RBP: 00007f0ff5c32d69 R08: 00040000000000a5 R09: 0000000000008000 [ 99.504550][ T6018] R10: 0000000000020eb1 R11: 0000000000000246 R12: 0000000000000000 [ 99.504566][ T6018] R13: 00007f0ff5e16038 R14: 00007f0ff5e15fa0 R15: 00007ffc7afb3868 [ 99.504602][ T6018] [ 99.867117][ T6014] netlink: 98 bytes leftover after parsing attributes in process `syz.1.70'. [ 99.992478][ T6022] netlink: 50 bytes leftover after parsing attributes in process `syz.1.70'. [ 101.597010][ T6055] netlink: 12 bytes leftover after parsing attributes in process `syz.2.82'. [ 101.627881][ T6055] netlink: 8 bytes leftover after parsing attributes in process `syz.2.82'. [ 104.225723][ T6099] random: crng reseeded on system resumption [ 104.747491][ T6115] netlink: 98 bytes leftover after parsing attributes in process `syz.0.98'. [ 104.779881][ T6115] netlink: 50 bytes leftover after parsing attributes in process `syz.0.98'. [ 105.671377][ T6131] netlink: 'syz.1.104': attribute type 1 has an invalid length. [ 105.704999][ T6131] netlink: 33 bytes leftover after parsing attributes in process `syz.1.104'. [ 106.430492][ T6145] netlink: 334 bytes leftover after parsing attributes in process `syz.2.112'. [ 106.704840][ T6154] netlink: 'syz.2.115': attribute type 1 has an invalid length. [ 106.724208][ T6154] netlink: 'syz.2.115': attribute type 6 has an invalid length. [ 106.925686][ T6160] NOTICE: Automounting of tracing to debugfs is deprecated and will be removed in 2030 [ 107.867346][ T5632] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260 [ 107.867382][ T5632] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260 [ 107.882708][ T5632] Bluetooth: hci0: Dropping invalid advertising data [ 107.890974][ T5632] Bluetooth: hci0: unknown advertising packet type: 0xe9 [ 109.211181][ T6185] FAULT_INJECTION: forcing a failure. [ 109.211181][ T6185] name failslab, interval 1, probability 0, space 0, times 0 [ 109.237754][ T6185] CPU: 1 UID: 0 PID: 6185 Comm: syz.2.123 Not tainted syzkaller #0 PREEMPT(full) [ 109.237789][ T6185] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 109.237805][ T6185] Call Trace: [ 109.237815][ T6185] [ 109.237825][ T6185] dump_stack_lvl+0x100/0x190 [ 109.237861][ T6185] should_fail_ex.cold+0x5/0xa [ 109.237898][ T6185] should_failslab+0xc2/0x120 [ 109.237930][ T6185] __kmalloc_cache_noprof+0x7a/0x6f0 [ 109.237969][ T6185] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 109.238019][ T6185] snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 109.238057][ T6185] ? trace_contention_end+0x85/0x170 [ 109.238099][ T6185] ? snd_pcm_oss_get_active_substream+0x153/0x1d0 [ 109.238143][ T6185] ? kasan_quarantine_put+0x104/0x240 [ 109.238189][ T6185] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 109.238230][ T6185] ? __pfx___mutex_lock+0x10/0x10 [ 109.238267][ T6185] ? find_held_lock+0x2b/0x80 [ 109.238304][ T6185] ? tomoyo_path_number_perm+0x28f/0x580 [ 109.238333][ T6185] ? tomoyo_path_number_perm+0x28f/0x580 [ 109.238374][ T6185] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 109.238402][ T6185] ? futex_wait+0x11e/0x370 [ 109.238445][ T6185] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 109.238495][ T6185] snd_pcm_oss_get_formats+0x7d/0x350 [ 109.238535][ T6185] ? do_vfs_ioctl+0x226/0x13e0 [ 109.238562][ T6185] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 109.238616][ T6185] snd_pcm_oss_ioctl+0x1795/0x37c0 [ 109.238658][ T6185] ? find_held_lock+0x2b/0x80 [ 109.238694][ T6185] ? __fget_files+0x215/0x3d0 [ 109.238725][ T6185] ? hook_file_ioctl_common+0x149/0x410 [ 109.238756][ T6185] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 109.238802][ T6185] ? __fget_files+0x21f/0x3d0 [ 109.238839][ T6185] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 109.238883][ T6185] __x64_sys_ioctl+0x18e/0x210 [ 109.238914][ T6185] do_syscall_64+0x10b/0xf80 [ 109.238950][ T6185] ? clear_bhb_loop+0x40/0x90 [ 109.238986][ T6185] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.239015][ T6185] RIP: 0033:0x7fa50b79cdd9 [ 109.239038][ T6185] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 109.239065][ T6185] RSP: 002b:00007fa50c69a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 109.239099][ T6185] RAX: ffffffffffffffda RBX: 00007fa50ba16090 RCX: 00007fa50b79cdd9 [ 109.239118][ T6185] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 109.239135][ T6185] RBP: 00007fa50b832d69 R08: 0000000000000000 R09: 0000000000000000 [ 109.239152][ T6185] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.239169][ T6185] R13: 00007fa50ba16128 R14: 00007fa50ba16090 R15: 00007fff6d86f108 [ 109.239212][ T6185] [ 109.703553][ T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!! [ 110.443370][ T6206] FAULT_INJECTION: forcing a failure. [ 110.443370][ T6206] name failslab, interval 1, probability 0, space 0, times 0 [ 110.471615][ T6206] CPU: 0 UID: 0 PID: 6206 Comm: syz.2.130 Not tainted syzkaller #0 PREEMPT(full) [ 110.471654][ T6206] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 110.471671][ T6206] Call Trace: [ 110.471680][ T6206] [ 110.471689][ T6206] dump_stack_lvl+0x100/0x190 [ 110.471734][ T6206] should_fail_ex.cold+0x5/0xa [ 110.471771][ T6206] should_failslab+0xc2/0x120 [ 110.471809][ T6206] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 110.471853][ T6206] ? copy_utsname+0x1a8/0x690 [ 110.471897][ T6206] copy_utsname+0x1a8/0x690 [ 110.471936][ T6206] create_new_namespaces+0x16a/0xac0 [ 110.471972][ T6206] ? bpf_lsm_capable+0x9/0x10 [ 110.472003][ T6206] ? security_capable+0x80/0x260 [ 110.472049][ T6206] unshare_nsproxy_namespaces+0xf2/0x220 [ 110.472090][ T6206] ksys_unshare+0x438/0xab0 [ 110.472134][ T6206] ? __pfx_ksys_unshare+0x10/0x10 [ 110.472173][ T6206] ? xfd_validate_state+0x129/0x190 [ 110.472212][ T6206] __x64_sys_unshare+0x31/0x40 [ 110.472252][ T6206] do_syscall_64+0x10b/0xf80 [ 110.472287][ T6206] ? clear_bhb_loop+0x40/0x90 [ 110.472321][ T6206] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 110.472349][ T6206] RIP: 0033:0x7fa50b79cdd9 [ 110.472372][ T6206] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 110.472398][ T6206] RSP: 002b:00007fa50c6bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 110.472425][ T6206] RAX: ffffffffffffffda RBX: 00007fa50ba15fa0 RCX: 00007fa50b79cdd9 [ 110.472442][ T6206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006c000000 [ 110.472457][ T6206] RBP: 00007fa50b832d69 R08: 0000000000000000 R09: 0000000000000000 [ 110.472474][ T6206] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 110.472490][ T6206] R13: 00007fa50ba16038 R14: 00007fa50ba15fa0 R15: 00007fff6d86f108 [ 110.472525][ T6206] [ 111.290085][ T6219] syz.3.134 (6219): /proc/6216/oom_adj is deprecated, please use /proc/6216/oom_score_adj instead. [ 112.215873][ T5632] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260 [ 112.215905][ T5632] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260 [ 112.231823][ T5632] Bluetooth: hci2: Dropping invalid advertising data [ 112.239795][ T5632] Bluetooth: hci2: unknown advertising packet type: 0xe9 [ 112.364555][ T6227] FAULT_INJECTION: forcing a failure. [ 112.364555][ T6227] name failslab, interval 1, probability 0, space 0, times 0 [ 112.411198][ T6227] CPU: 1 UID: 0 PID: 6227 Comm: syz.3.135 Not tainted syzkaller #0 PREEMPT(full) [ 112.411234][ T6227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 112.411249][ T6227] Call Trace: [ 112.411257][ T6227] [ 112.411263][ T6227] dump_stack_lvl+0x100/0x190 [ 112.411284][ T6227] should_fail_ex.cold+0x5/0xa [ 112.411303][ T6227] should_failslab+0xc2/0x120 [ 112.411321][ T6227] __kmalloc_cache_noprof+0x7a/0x6f0 [ 112.411341][ T6227] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 112.411367][ T6227] snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 112.411388][ T6227] ? trace_contention_end+0x85/0x170 [ 112.411406][ T6227] ? snd_pcm_oss_get_active_substream+0x153/0x1d0 [ 112.411429][ T6227] ? kasan_quarantine_put+0x104/0x240 [ 112.411452][ T6227] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 112.411473][ T6227] ? __pfx___mutex_lock+0x10/0x10 [ 112.411491][ T6227] ? find_held_lock+0x2b/0x80 [ 112.411509][ T6227] ? tomoyo_path_number_perm+0x28f/0x580 [ 112.411524][ T6227] ? tomoyo_path_number_perm+0x28f/0x580 [ 112.411547][ T6227] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 112.411565][ T6227] ? futex_wait+0x11e/0x370 [ 112.411588][ T6227] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 112.411612][ T6227] snd_pcm_oss_get_formats+0x7d/0x350 [ 112.411632][ T6227] ? do_vfs_ioctl+0x226/0x13e0 [ 112.411647][ T6227] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 112.411673][ T6227] snd_pcm_oss_ioctl+0x1795/0x37c0 [ 112.411694][ T6227] ? find_held_lock+0x2b/0x80 [ 112.411712][ T6227] ? __fget_files+0x215/0x3d0 [ 112.411727][ T6227] ? hook_file_ioctl_common+0x149/0x410 [ 112.411743][ T6227] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 112.411766][ T6227] ? __fget_files+0x21f/0x3d0 [ 112.411785][ T6227] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 112.411812][ T6227] __x64_sys_ioctl+0x18e/0x210 [ 112.411828][ T6227] do_syscall_64+0x10b/0xf80 [ 112.411846][ T6227] ? clear_bhb_loop+0x40/0x90 [ 112.411864][ T6227] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.411878][ T6227] RIP: 0033:0x7f0ff5b9cdd9 [ 112.411891][ T6227] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.411913][ T6227] RSP: 002b:00007f0ff6b09028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 112.411927][ T6227] RAX: ffffffffffffffda RBX: 00007f0ff5e15fa0 RCX: 00007f0ff5b9cdd9 [ 112.411937][ T6227] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 112.411946][ T6227] RBP: 00007f0ff5c32d69 R08: 0000000000000000 R09: 0000000000000000 [ 112.411955][ T6227] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 112.411963][ T6227] R13: 00007f0ff5e16038 R14: 00007f0ff5e15fa0 R15: 00007ffc7afb3868 [ 112.411982][ T6227] [ 113.117852][ T6246] netlink: 338 bytes leftover after parsing attributes in process `syz.0.142'. [ 113.466545][ T6251] input: jJǸ-9%vJ86 as /devices/virtual/input/input5 [ 115.379707][ T6285] FAULT_INJECTION: forcing a failure. [ 115.379707][ T6285] name failslab, interval 1, probability 0, space 0, times 0 [ 115.415432][ T6285] CPU: 1 UID: 0 PID: 6285 Comm: syz.1.154 Not tainted syzkaller #0 PREEMPT(full) [ 115.415452][ T6285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 115.415461][ T6285] Call Trace: [ 115.415466][ T6285] [ 115.415472][ T6285] dump_stack_lvl+0x100/0x190 [ 115.415492][ T6285] should_fail_ex.cold+0x5/0xa [ 115.415512][ T6285] should_failslab+0xc2/0x120 [ 115.415529][ T6285] __kmalloc_cache_noprof+0x7a/0x6f0 [ 115.415549][ T6285] ? snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 115.415575][ T6285] snd_pcm_oss_change_params_locked+0x1db/0x39f0 [ 115.415596][ T6285] ? trace_contention_end+0x85/0x170 [ 115.415614][ T6285] ? snd_pcm_oss_get_active_substream+0x153/0x1d0 [ 115.415643][ T6285] ? kasan_quarantine_put+0x104/0x240 [ 115.415666][ T6285] ? __pfx_snd_pcm_oss_change_params_locked+0x10/0x10 [ 115.415687][ T6285] ? __pfx___mutex_lock+0x10/0x10 [ 115.415706][ T6285] ? find_held_lock+0x2b/0x80 [ 115.415723][ T6285] ? tomoyo_path_number_perm+0x28f/0x580 [ 115.415739][ T6285] ? tomoyo_path_number_perm+0x28f/0x580 [ 115.415759][ T6285] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 115.415773][ T6285] ? futex_wait+0x11e/0x370 [ 115.415795][ T6285] snd_pcm_oss_get_active_substream+0x175/0x1d0 [ 115.415819][ T6285] snd_pcm_oss_get_formats+0x7d/0x350 [ 115.415844][ T6285] ? do_vfs_ioctl+0x226/0x13e0 [ 115.415868][ T6285] ? __pfx_snd_pcm_oss_get_formats+0x10/0x10 [ 115.415917][ T6285] snd_pcm_oss_ioctl+0x1795/0x37c0 [ 115.415953][ T6285] ? find_held_lock+0x2b/0x80 [ 115.415987][ T6285] ? __fget_files+0x215/0x3d0 [ 115.416017][ T6285] ? hook_file_ioctl_common+0x149/0x410 [ 115.416046][ T6285] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 115.416091][ T6285] ? __fget_files+0x21f/0x3d0 [ 115.416128][ T6285] ? __pfx_snd_pcm_oss_ioctl+0x10/0x10 [ 115.416168][ T6285] __x64_sys_ioctl+0x18e/0x210 [ 115.416196][ T6285] do_syscall_64+0x10b/0xf80 [ 115.416231][ T6285] ? clear_bhb_loop+0x40/0x90 [ 115.416265][ T6285] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.416281][ T6285] RIP: 0033:0x7f810d79cdd9 [ 115.416294][ T6285] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 115.416308][ T6285] RSP: 002b:00007f810e6d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 115.416322][ T6285] RAX: ffffffffffffffda RBX: 00007f810da15fa0 RCX: 00007f810d79cdd9 [ 115.416335][ T6285] RDX: 0000000000000000 RSI: 000000008004500b RDI: 0000000000000003 [ 115.416344][ T6285] RBP: 00007f810d832d69 R08: 0000000000000000 R09: 0000000000000000 [ 115.416352][ T6285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.416360][ T6285] R13: 00007f810da16038 R14: 00007f810da15fa0 R15: 00007ffef5ad60a8 [ 115.416382][ T6285] [ 116.066867][ T6304] netlink: 186 bytes leftover after parsing attributes in process `syz.0.158'. [ 116.696694][ T6324] syz.0.165 uses obsolete (PF_INET,SOCK_PACKET) [ 119.968776][ T6403] netlink: 28 bytes leftover after parsing attributes in process `syz.2.190'. [ 120.353678][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 121.411190][ T6430] mmap: syz.1.198 (6430) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 122.403252][ T6453] FAULT_INJECTION: forcing a failure. [ 122.403252][ T6453] name failslab, interval 1, probability 0, space 0, times 0 [ 122.442713][ T6453] CPU: 0 UID: 0 PID: 6453 Comm: syz.2.205 Not tainted syzkaller #0 PREEMPT(full) [ 122.442749][ T6453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 122.442765][ T6453] Call Trace: [ 122.442775][ T6453] [ 122.442786][ T6453] dump_stack_lvl+0x100/0x190 [ 122.442824][ T6453] should_fail_ex.cold+0x5/0xa [ 122.442860][ T6453] should_failslab+0xc2/0x120 [ 122.442894][ T6453] kmem_cache_alloc_noprof+0x7b/0x6e0 [ 122.442938][ T6453] ? acpi_ps_alloc_op+0x29d/0x360 [ 122.442981][ T6453] acpi_ps_alloc_op+0x29d/0x360 [ 122.443014][ T6453] ? acpi_ut_status_exit+0x111/0x1c0 [ 122.443051][ T6453] acpi_ps_create_op+0x4b3/0xd10 [ 122.443087][ T6453] ? __pfx_acpi_ps_create_op+0x10/0x10 [ 122.443120][ T6453] ? __pfx_acpi_ut_trace_ptr+0x10/0x10 [ 122.443155][ T6453] ? acpi_ut_value_exit+0x10d/0x190 [ 122.443196][ T6453] acpi_ps_parse_loop+0xa65/0x24a0 [ 122.443232][ T6453] ? __kmalloc_noprof+0x320/0x850 [ 122.443280][ T6453] ? __pfx_acpi_ps_parse_loop+0x10/0x10 [ 122.443312][ T6453] ? acpi_ut_status_exit+0x111/0x1c0 [ 122.443350][ T6453] ? acpi_ds_call_control_method+0x435/0xab0 [ 122.443402][ T6453] acpi_ps_parse_aml+0x81e/0x1120 [ 122.443442][ T6453] acpi_ps_execute_method+0x5c4/0xe90 [ 122.443486][ T6453] acpi_ns_evaluate+0x640/0x1670 [ 122.443535][ T6453] acpi_evaluate_object+0x420/0xe00 [ 122.443563][ T6453] ? kasan_save_stack+0x30/0x50 [ 122.443590][ T6453] ? kasan_save_track+0x14/0x30 [ 122.443624][ T6453] ? __kasan_kmalloc+0xaa/0xb0 [ 122.443650][ T6453] ? __kvmalloc_node_noprof+0x360/0xa00 [ 122.443684][ T6453] ? __pfx_acpi_evaluate_object+0x10/0x10 [ 122.443712][ T6453] ? lock_acquire+0x1b1/0x370 [ 122.443748][ T6453] acpi_evaluate_integer+0xdf/0x220 [ 122.443796][ T6453] ? __pfx_acpi_evaluate_integer+0x10/0x10 [ 122.443856][ T6453] ? __pfx_status_show+0x10/0x10 [ 122.443883][ T6453] status_show+0xa0/0x120 [ 122.443911][ T6453] ? __pfx_status_show+0x10/0x10 [ 122.443949][ T6453] dev_attr_show+0x52/0xa0 [ 122.443986][ T6453] ? __pfx_dev_attr_show+0x10/0x10 [ 122.444019][ T6453] sysfs_kf_seq_show+0x217/0x3a0 [ 122.444054][ T6453] seq_read_iter+0x32f/0x1270 [ 122.444082][ T6453] ? lock_acquire+0x1b1/0x370 [ 122.444123][ T6453] kernfs_fop_read_iter+0x46c/0x610 [ 122.444164][ T6453] ? rw_verify_area+0xce/0x6d0 [ 122.444191][ T6453] ? __pfx_kernfs_fop_read_iter+0x10/0x10 [ 122.444234][ T6453] vfs_read+0x825/0xb30 [ 122.444270][ T6453] ? __pfx_vfs_read+0x10/0x10 [ 122.444327][ T6453] ksys_read+0x12a/0x250 [ 122.444358][ T6453] ? __pfx_ksys_read+0x10/0x10 [ 122.444390][ T6453] ? rcu_is_watching+0x12/0xc0 [ 122.444426][ T6453] do_syscall_64+0x10b/0xf80 [ 122.444462][ T6453] ? clear_bhb_loop+0x40/0x90 [ 122.444499][ T6453] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.444529][ T6453] RIP: 0033:0x7fa50b79cdd9 [ 122.444552][ T6453] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 122.444579][ T6453] RSP: 002b:00007fa50c6bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 122.444604][ T6453] RAX: ffffffffffffffda RBX: 00007fa50ba15fa0 RCX: 00007fa50b79cdd9 [ 122.444632][ T6453] RDX: 000000000000007a RSI: 0000200000000140 RDI: 0000000000000004 [ 122.444650][ T6453] RBP: 00007fa50b832d69 R08: 0000000000000000 R09: 0000000000000000 [ 122.444667][ T6453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 122.444684][ T6453] R13: 00007fa50ba16038 R14: 00007fa50ba15fa0 R15: 00007fff6d86f108 [ 122.444723][ T6453] [ 122.975717][ T6453] ACPI Error: Aborting method \_SB.IQST due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 123.028689][ T6460] raw_sendmsg: syz.3.207 forgot to set AF_INET. Fix it! [ 123.045966][ T6453] ACPI Error: Aborting method \_SB.LNKA._STA due to previous error (AE_NO_MEMORY) (20251212/psparse-529) [ 123.378881][ T6464] netlink: 17 bytes leftover after parsing attributes in process `syz.3.208'. [ 123.554174][ T6472] random: crng reseeded on system resumption [ 125.103384][ T30] audit: type=1800 audit(1777667417.422:3): pid=6506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.220" name="dummy_udc" dev="gadgetfs" ino=7288 res=0 errno=0 [ 126.225597][ T6526] netlink: 330 bytes leftover after parsing attributes in process `syz.2.227'. [ 126.271524][ T6529] FAULT_INJECTION: forcing a failure. [ 126.271524][ T6529] name failslab, interval 1, probability 0, space 0, times 0 [ 126.315094][ T6529] CPU: 0 UID: 0 PID: 6529 Comm: syz.1.228 Not tainted syzkaller #0 PREEMPT(full) [ 126.315133][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 126.315150][ T6529] Call Trace: [ 126.315160][ T6529] [ 126.315170][ T6529] dump_stack_lvl+0x100/0x190 [ 126.315207][ T6529] should_fail_ex.cold+0x5/0xa [ 126.315243][ T6529] should_failslab+0xc2/0x120 [ 126.315276][ T6529] __kmalloc_cache_noprof+0x7a/0x6f0 [ 126.315314][ T6529] ? kernfs_fop_open+0x9fa/0xd50 [ 126.315359][ T6529] kernfs_fop_open+0x9fa/0xd50 [ 126.315404][ T6529] do_dentry_open+0x6d8/0x1660 [ 126.315436][ T6529] ? __pfx_kernfs_fop_open+0x10/0x10 [ 126.315481][ T6529] vfs_open+0x82/0x3f0 [ 126.315532][ T6529] path_openat+0x208c/0x31a0 [ 126.315561][ T6529] ? __pfx_path_openat+0x10/0x10 [ 126.315586][ T6529] do_file_open+0x20e/0x430 [ 126.315606][ T6529] ? __pfx_do_file_open+0x10/0x10 [ 126.315637][ T6529] ? alloc_fd+0x476/0x790 [ 126.315656][ T6529] ? do_getname+0x191/0x390 [ 126.315678][ T6529] do_sys_openat2+0x10d/0x1e0 [ 126.315700][ T6529] ? __pfx_do_sys_openat2+0x10/0x10 [ 126.315728][ T6529] __x64_sys_openat+0x12d/0x210 [ 126.315750][ T6529] ? __pfx___x64_sys_openat+0x10/0x10 [ 126.315776][ T6529] ? rcu_is_watching+0x12/0xc0 [ 126.315796][ T6529] do_syscall_64+0x10b/0xf80 [ 126.315814][ T6529] ? clear_bhb_loop+0x40/0x90 [ 126.315833][ T6529] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 126.315848][ T6529] RIP: 0033:0x7f810d79cdd9 [ 126.315864][ T6529] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 126.315878][ T6529] RSP: 002b:00007f810e6d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.315892][ T6529] RAX: ffffffffffffffda RBX: 00007f810da15fa0 RCX: 00007f810d79cdd9 [ 126.315902][ T6529] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 126.315911][ T6529] RBP: 00007f810d832d69 R08: 0000000000000000 R09: 0000000000000000 [ 126.315921][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.315929][ T6529] R13: 00007f810da16038 R14: 00007f810da15fa0 R15: 00007ffef5ad60a8 [ 126.315949][ T6529] [ 127.063995][ T6540] netlink: 4 bytes leftover after parsing attributes in process `syz.0.238'. [ 127.126625][ T6540] netlink: 'syz.0.238': attribute type 1 has an invalid length. [ 127.143603][ T6540] netlink: 13 bytes leftover after parsing attributes in process `syz.0.238'. [ 128.353904][ T6564] FAULT_INJECTION: forcing a failure. [ 128.353904][ T6564] name failslab, interval 1, probability 0, space 0, times 0 [ 128.387804][ T6564] CPU: 0 UID: 0 PID: 6564 Comm: syz.1.237 Not tainted syzkaller #0 PREEMPT(full) [ 128.387845][ T6564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 128.387861][ T6564] Call Trace: [ 128.387871][ T6564] [ 128.387881][ T6564] dump_stack_lvl+0x100/0x190 [ 128.387919][ T6564] should_fail_ex.cold+0x5/0xa [ 128.387968][ T6564] should_failslab+0xc2/0x120 [ 128.388003][ T6564] __kvmalloc_node_noprof+0xfa/0xa00 [ 128.388031][ T6564] ? __do_sys_setgroups+0x126/0x4f0 [ 128.388069][ T6564] __do_sys_setgroups+0x126/0x4f0 [ 128.388096][ T6564] ? 0xffffffffff600000 [ 128.388124][ T6564] do_syscall_64+0x10b/0xf80 [ 128.388163][ T6564] ? clear_bhb_loop+0x40/0x90 [ 128.388199][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 128.388228][ T6564] RIP: 0033:0x7f810d79cdd9 [ 128.388251][ T6564] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 128.388278][ T6564] RSP: 002b:00007f810e6d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000074 [ 128.388305][ T6564] RAX: ffffffffffffffda RBX: 00007f810da15fa0 RCX: 00007f810d79cdd9 [ 128.388330][ T6564] RDX: 0000000000000000 RSI: ffffffffff600000 RDI: 0000000c00000000 [ 128.388349][ T6564] RBP: 00007f810d832d69 R08: 0000000000000000 R09: 0000000000000000 [ 128.388367][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 128.388384][ T6564] R13: 00007f810da16038 R14: 00007f810da15fa0 R15: 00007ffef5ad60a8 [ 128.388414][ T6564] ? 0xffffffffff600000 [ 128.388442][ T6564] [ 129.255839][ T6585] input: jJǸ-9%vJ86 as /devices/virtual/input/input6 [ 130.717333][ T6610] netlink: 28 bytes leftover after parsing attributes in process `syz.1.248'. [ 132.293995][ T6632] netlink: 186 bytes leftover after parsing attributes in process `syz.0.255'. [ 132.311686][ T6632] netlink: 186 bytes leftover after parsing attributes in process `syz.0.255'. [ 132.341694][ T6640] netlink: 318 bytes leftover after parsing attributes in process `syz.2.258'. [ 132.735962][ T6653] input: jJǸ-9%vJ86 as /devices/virtual/input/input7 [ 132.815659][ T1315] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.822044][ T1315] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.956995][ T5632] Bluetooth: hci2: unexpected event for opcode 0x7c89 [ 134.199802][ T6679] FAULT_INJECTION: forcing a failure. [ 134.199802][ T6679] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 134.223709][ T6679] CPU: 1 UID: 0 PID: 6679 Comm: syz.1.271 Not tainted syzkaller #0 PREEMPT(full) [ 134.223745][ T6679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 134.223762][ T6679] Call Trace: [ 134.223770][ T6679] [ 134.223779][ T6679] dump_stack_lvl+0x100/0x190 [ 134.223815][ T6679] should_fail_ex.cold+0x5/0xa [ 134.223850][ T6679] _copy_from_user+0x2e/0xd0 [ 134.223897][ T6679] copy_mount_options+0x76/0x190 [ 134.223944][ T6679] __x64_sys_mount+0x1ab/0x310 [ 134.223985][ T6679] ? __pfx___x64_sys_mount+0x10/0x10 [ 134.224027][ T6679] ? rcu_is_watching+0x12/0xc0 [ 134.224066][ T6679] do_syscall_64+0x10b/0xf80 [ 134.224101][ T6679] ? clear_bhb_loop+0x40/0x90 [ 134.224134][ T6679] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 134.224163][ T6679] RIP: 0033:0x7f810d79cdd9 [ 134.224186][ T6679] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 134.224212][ T6679] RSP: 002b:00007f810e6d4028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 134.224240][ T6679] RAX: ffffffffffffffda RBX: 00007f810da15fa0 RCX: 00007f810d79cdd9 [ 134.224258][ T6679] RDX: 0000200000000240 RSI: 0000000000000000 RDI: 0000200000000180 [ 134.224275][ T6679] RBP: 00007f810d832d69 R08: 0000200000000280 R09: 0000000000000000 [ 134.224292][ T6679] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 134.224309][ T6679] R13: 00007f810da16038 R14: 00007f810da15fa0 R15: 00007ffef5ad60a8 [ 134.224346][ T6679] [ 135.574991][ T6704] input: jJǸ-9%vJ86 as /devices/virtual/input/input8 [ 136.209306][ T6723] FAULT_INJECTION: forcing a failure. [ 136.209306][ T6723] name failslab, interval 1, probability 0, space 0, times 0 [ 136.222791][ T6723] CPU: 0 UID: 0 PID: 6723 Comm: syz.1.286 Not tainted syzkaller #0 PREEMPT(full) [ 136.222824][ T6723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 136.222833][ T6723] Call Trace: [ 136.222839][ T6723] [ 136.222845][ T6723] dump_stack_lvl+0x100/0x190 [ 136.222866][ T6723] should_fail_ex.cold+0x5/0xa [ 136.222886][ T6723] should_failslab+0xc2/0x120 [ 136.222904][ T6723] kmem_cache_alloc_lru_noprof+0x80/0x6e0 [ 136.222927][ T6723] ? alloc_inode+0x68/0x250 [ 136.222950][ T6723] ? simple_start_creating+0xb0/0x110 [ 136.222967][ T6723] ? __pfx_debugfs_alloc_inode+0x10/0x10 [ 136.222989][ T6723] alloc_inode+0x68/0x250 [ 136.223010][ T6723] new_inode+0x22/0x1c0 [ 136.223033][ T6723] debugfs_create_symlink+0xd1/0x220 [ 136.223057][ T6723] drm_debugfs_clients_add+0x199/0x210 [ 136.223079][ T6723] drm_file_alloc+0x5c6/0xb40 [ 136.223102][ T6723] drm_open_helper+0x1fc/0x540 [ 136.223126][ T6723] drm_open+0x1a0/0x3e0 [ 136.223147][ T6723] ? __pfx_drm_open+0x10/0x10 [ 136.223167][ T6723] drm_stub_open+0x20f/0x380 [ 136.223188][ T6723] ? __pfx_drm_stub_open+0x10/0x10 [ 136.223208][ T6723] chrdev_open+0x234/0x6a0 [ 136.223227][ T6723] ? __pfx_chrdev_open+0x10/0x10 [ 136.223246][ T6723] ? fsnotify_open_perm_and_set_mode+0x17a/0xa80 [ 136.223269][ T6723] do_dentry_open+0x6d8/0x1660 [ 136.223285][ T6723] ? __pfx_chrdev_open+0x10/0x10 [ 136.223308][ T6723] vfs_open+0x82/0x3f0 [ 136.223330][ T6723] path_openat+0x208c/0x31a0 [ 136.223357][ T6723] ? __pfx_path_openat+0x10/0x10 [ 136.223382][ T6723] do_file_open+0x20e/0x430 [ 136.223401][ T6723] ? __pfx_do_file_open+0x10/0x10 [ 136.223432][ T6723] ? alloc_fd+0x476/0x790 [ 136.223451][ T6723] ? do_getname+0x191/0x390 [ 136.223473][ T6723] do_sys_openat2+0x10d/0x1e0 [ 136.223499][ T6723] ? __pfx_do_sys_openat2+0x10/0x10 [ 136.223542][ T6723] ? __fget_files+0x21f/0x3d0 [ 136.223571][ T6723] __x64_sys_openat+0x12d/0x210 [ 136.223599][ T6723] ? __pfx___x64_sys_openat+0x10/0x10 [ 136.223626][ T6723] ? rcu_is_watching+0x12/0xc0 [ 136.223648][ T6723] do_syscall_64+0x10b/0xf80 [ 136.223666][ T6723] ? clear_bhb_loop+0x40/0x90 [ 136.223685][ T6723] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 136.223700][ T6723] RIP: 0033:0x7f810d79cdd9 [ 136.223713][ T6723] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 136.223726][ T6723] RSP: 002b:00007f810e6d4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 136.223741][ T6723] RAX: ffffffffffffffda RBX: 00007f810da15fa0 RCX: 00007f810d79cdd9 [ 136.223751][ T6723] RDX: 0000000000028900 RSI: 0000200000000000 RDI: ffffffffffffff9c [ 136.223760][ T6723] RBP: 00007f810d832d69 R08: 0000000000000000 R09: 0000000000000000 [ 136.223769][ T6723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 136.223778][ T6723] R13: 00007f810da16038 R14: 00007f810da15fa0 R15: 00007ffef5ad60a8 [ 136.223797][ T6723] [ 136.685637][ T6723] debugfs: out of free dentries, can not create symlink 'device' [ 137.938730][ T6757] netlink: 54 bytes leftover after parsing attributes in process `syz.1.296'. [ 138.391855][ T6770] input: jJǸ-9%vJ86 as /devices/virtual/input/input9 [ 138.418201][ T30] audit: type=1800 audit(1777667430.742:4): pid=6773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.300" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0 [ 138.445500][ T6772] FAULT_INJECTION: forcing a failure. [ 138.445500][ T6772] name failslab, interval 1, probability 0, space 0, times 0 [ 138.500895][ T6772] CPU: 0 UID: 0 PID: 6772 Comm: syz.2.301 Not tainted syzkaller #0 PREEMPT(full) [ 138.500931][ T6772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 138.500946][ T6772] Call Trace: [ 138.500955][ T6772] [ 138.500965][ T6772] dump_stack_lvl+0x100/0x190 [ 138.501000][ T6772] should_fail_ex.cold+0x5/0xa [ 138.501036][ T6772] should_failslab+0xc2/0x120 [ 138.501068][ T6772] __kmalloc_cache_noprof+0x7a/0x6f0 [ 138.501107][ T6772] ? kernfs_fop_open+0x9fa/0xd50 [ 138.501163][ T6772] kernfs_fop_open+0x9fa/0xd50 [ 138.501210][ T6772] do_dentry_open+0x6d8/0x1660 [ 138.501243][ T6772] ? __pfx_kernfs_fop_open+0x10/0x10 [ 138.501293][ T6772] vfs_open+0x82/0x3f0 [ 138.501338][ T6772] path_openat+0x208c/0x31a0 [ 138.501384][ T6772] ? __pfx_path_openat+0x10/0x10 [ 138.501428][ T6772] do_file_open+0x20e/0x430 [ 138.501464][ T6772] ? __pfx_do_file_open+0x10/0x10 [ 138.501523][ T6772] ? alloc_fd+0x476/0x790 [ 138.501559][ T6772] ? do_getname+0x191/0x390 [ 138.501604][ T6772] do_sys_openat2+0x10d/0x1e0 [ 138.501647][ T6772] ? __pfx_do_sys_openat2+0x10/0x10 [ 138.501704][ T6772] __x64_sys_openat+0x12d/0x210 [ 138.501750][ T6772] ? __pfx___x64_sys_openat+0x10/0x10 [ 138.501800][ T6772] ? rcu_is_watching+0x12/0xc0 [ 138.501839][ T6772] do_syscall_64+0x10b/0xf80 [ 138.501875][ T6772] ? clear_bhb_loop+0x40/0x90 [ 138.501909][ T6772] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.501935][ T6772] RIP: 0033:0x7fa50b79cdd9 [ 138.501957][ T6772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 138.501971][ T6772] RSP: 002b:00007fa50c6bb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 138.501985][ T6772] RAX: ffffffffffffffda RBX: 00007fa50ba15fa0 RCX: 00007fa50b79cdd9 [ 138.501995][ T6772] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 138.502005][ T6772] RBP: 00007fa50b832d69 R08: 0000000000000000 R09: 0000000000000000 [ 138.502013][ T6772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.502022][ T6772] R13: 00007fa50ba16038 R14: 00007fa50ba15fa0 R15: 00007fff6d86f108 [ 138.502042][ T6772] [ 138.964062][ T6780] random: crng reseeded on system resumption [ 141.108125][ T6822] netlink: 138 bytes leftover after parsing attributes in process `syz.2.313'. [ 141.425569][ T6827] random: crng reseeded on system resumption [ 141.504916][ T6807] kexec: Could not allocate control_code_buffer [ 143.252951][ T6863] i2c i2c-0: Invalid 7-bit I2C address 0x00 [ 143.762793][ T6868] [ 143.765160][ T6868] ====================================================== [ 143.772174][ T6868] WARNING: possible circular locking dependency detected [ 143.779179][ T6868] syzkaller #0 Not tainted [ 143.783578][ T6868] ------------------------------------------------------ [ 143.790578][ T6868] syz.3.326/6868 is trying to acquire lock: [ 143.796464][ T6868] ffff888022bbe1e8 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0x4ca/0xcb0 [ 143.807965][ T6868] [ 143.807965][ T6868] but task is already holding lock: [ 143.815322][ T6868] ffff888022bbe660 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 143.824303][ T6868] [ 143.824303][ T6868] which lock already depends on the new lock. [ 143.824303][ T6868] [ 143.834693][ T6868] [ 143.834693][ T6868] the existing dependency chain (in reverse order) is: [ 143.843692][ T6868] [ 143.843692][ T6868] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 143.851441][ T6868] lock_sock_nested+0x41/0xf0 [ 143.856652][ T6868] smc_listen_out+0x1f5/0x4b0 [ 143.861849][ T6868] smc_listen_work+0x4c2/0x50e0 [ 143.867226][ T6868] process_one_work+0xa0e/0x1980 [ 143.872685][ T6868] worker_thread+0x5ef/0xe50 [ 143.877789][ T6868] kthread+0x370/0x450 [ 143.882372][ T6868] ret_from_fork+0x72b/0xd50 [ 143.887483][ T6868] ret_from_fork_asm+0x1a/0x30 [ 143.892774][ T6868] [ 143.892774][ T6868] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 143.902936][ T6868] __lock_acquire+0x14b8/0x2630 [ 143.908304][ T6868] lock_acquire+0x1b1/0x370 [ 143.913324][ T6868] __flush_work+0x4de/0xcb0 [ 143.918344][ T6868] cancel_work_sync+0xd1/0xf0 [ 143.923548][ T6868] smc_clcsock_release+0x5f/0xe0 [ 143.929011][ T6868] __smc_release+0x5c2/0x880 [ 143.934119][ T6868] smc_close_non_accepted+0xda/0x200 [ 143.939927][ T6868] smc_close_active+0x4ff/0x1070 [ 143.945388][ T6868] __smc_release+0x634/0x880 [ 143.950498][ T6868] smc_release+0x1fc/0x620 [ 143.955435][ T6868] __sock_release+0xb3/0x260 [ 143.960552][ T6868] sock_close+0x1c/0x30 [ 143.965229][ T6868] __fput+0x3ff/0xb50 [ 143.969738][ T6868] task_work_run+0x150/0x240 [ 143.974841][ T6868] exit_to_user_mode_loop+0x100/0x4a0 [ 143.980728][ T6868] do_syscall_64+0x6f2/0xf80 [ 143.985837][ T6868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 143.992249][ T6868] [ 143.992249][ T6868] other info that might help us debug this: [ 143.992249][ T6868] [ 144.002461][ T6868] Possible unsafe locking scenario: [ 144.002461][ T6868] [ 144.009895][ T6868] CPU0 CPU1 [ 144.015251][ T6868] ---- ---- [ 144.020607][ T6868] lock(sk_lock-AF_SMC/1); [ 144.025117][ T6868] lock((work_completion)(&new_smc->smc_listen_work)); [ 144.034565][ T6868] lock(sk_lock-AF_SMC/1); [ 144.041588][ T6868] lock((work_completion)(&new_smc->smc_listen_work)); [ 144.048516][ T6868] [ 144.048516][ T6868] *** DEADLOCK *** [ 144.048516][ T6868] [ 144.056647][ T6868] 3 locks held by syz.3.326/6868: [ 144.061661][ T6868] #0: ffff88805bc20840 (&sb->s_type->i_mutex_key#13){+.+.}-{4:4}, at: __sock_release+0x86/0x260 [ 144.072208][ T6868] #1: ffff888022bbe660 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x3a5/0x620 [ 144.081628][ T6868] #2: ffffffff8e7e52e0 (rcu_read_lock){....}-{1:3}, at: __flush_work+0xfd/0xcb0 [ 144.090776][ T6868] [ 144.090776][ T6868] stack backtrace: [ 144.096655][ T6868] CPU: 1 UID: 0 PID: 6868 Comm: syz.3.326 Not tainted syzkaller #0 PREEMPT(full) [ 144.096683][ T6868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 144.096697][ T6868] Call Trace: [ 144.096704][ T6868] [ 144.096712][ T6868] dump_stack_lvl+0x100/0x190 [ 144.096737][ T6868] print_circular_bug.cold+0x178/0x1c7 [ 144.096774][ T6868] check_noncircular+0x146/0x160 [ 144.096811][ T6868] __lock_acquire+0x14b8/0x2630 [ 144.096837][ T6868] lock_acquire+0x1b1/0x370 [ 144.096862][ T6868] ? __flush_work+0x4ca/0xcb0 [ 144.096886][ T6868] ? preempt_schedule_thunk+0x16/0x30 [ 144.096921][ T6868] ? __flush_work+0x4ca/0xcb0 [ 144.096944][ T6868] __flush_work+0x4de/0xcb0 [ 144.096966][ T6868] ? __flush_work+0x4ca/0xcb0 [ 144.096990][ T6868] ? __pfx___flush_work+0x10/0x10 [ 144.097015][ T6868] ? __pfx_wq_barrier_func+0x10/0x10 [ 144.097049][ T6868] ? __pfx___might_resched+0x10/0x10 [ 144.097077][ T6868] cancel_work_sync+0xd1/0xf0 [ 144.097105][ T6868] smc_clcsock_release+0x5f/0xe0 [ 144.097132][ T6868] __smc_release+0x5c2/0x880 [ 144.097157][ T6868] ? __pfx_sock_def_readable+0x10/0x10 [ 144.097177][ T6868] smc_close_non_accepted+0xda/0x200 [ 144.097205][ T6868] smc_close_active+0x4ff/0x1070 [ 144.097234][ T6868] __smc_release+0x634/0x880 [ 144.097258][ T6868] smc_release+0x1fc/0x620 [ 144.097283][ T6868] __sock_release+0xb3/0x260 [ 144.097307][ T6868] ? __pfx_sock_close+0x10/0x10 [ 144.097330][ T6868] sock_close+0x1c/0x30 [ 144.097353][ T6868] __fput+0x3ff/0xb50 [ 144.097385][ T6868] ? _raw_spin_unlock_irq+0x23/0x50 [ 144.097412][ T6868] task_work_run+0x150/0x240 [ 144.097435][ T6868] ? __pfx_task_work_run+0x10/0x10 [ 144.097458][ T6868] ? rcu_is_watching+0x12/0xc0 [ 144.097487][ T6868] exit_to_user_mode_loop+0x100/0x4a0 [ 144.097510][ T6868] ? do_syscall_64+0x519/0xf80 [ 144.097539][ T6868] do_syscall_64+0x6f2/0xf80 [ 144.097567][ T6868] ? clear_bhb_loop+0x40/0x90 [ 144.097593][ T6868] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 144.097616][ T6868] RIP: 0033:0x7f0ff5b9cdd9 [ 144.097634][ T6868] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 144.097656][ T6868] RSP: 002b:00007ffc7afb39c8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 144.097676][ T6868] RAX: 0000000000000000 RBX: 00007f0ff5e17da0 RCX: 00007f0ff5b9cdd9 [ 144.097691][ T6868] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 144.097705][ T6868] RBP: 00007f0ff5e17da0 R08: 00007f0ff5e16038 R09: 0000000000000000 [ 144.097720][ T6868] R10: 00000000003e9a58 R11: 0000000000000246 R12: 000000000002336b [ 144.097734][ T6868] R13: 00007f0ff5e1609c R14: 00000000000230cf R15: 00007f0ff5e16090 [ 144.097755][ T6868]