last executing test programs:

4.562069261s ago: executing program 3 (id=10876):
close_range$auto(0x2, 0x8, 0x0)
r0 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000011c0), 0x6ab82, 0x0)
ioctl$auto_KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$auto(0x3, 0xae64, 0xffffffffffffffff)

4.150618497s ago: executing program 3 (id=10882):
mmap$auto(0x0, 0x40009, 0xe2, 0x9b72, 0x7, 0x28000)
mremap$auto(0x4000, 0x4, 0x13fd7, 0x3, 0xfffff000)
move_pages$auto(0x0, 0x1002, 0x0, 0x0, 0x0, 0x2)
mremap$auto(0x4000, 0xfee0, 0x3fd6, 0x3, 0xfffff000)

3.480959631s ago: executing program 3 (id=10887):
socket(0xa, 0x1, 0x84)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @empty}, 0x6a)
connect$auto(0x3, &(0x7f0000000080)=@in={0x2, 0x3, @dev={0xac, 0x14, 0x14, 0x10}}, 0x54)
poll$auto(&(0x7f0000000040)={0x3, 0x1, 0xa}, 0x5, 0x108)

2.655788579s ago: executing program 3 (id=10896):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
r0 = socket(0x10, 0x2, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
bpf$auto(0x5, &(0x7f0000000300)=@bpf_attr_3={0x3, 0x24, 0xf, 0x63, 0x400, 0x0, 0xffffffffffffffff, 0x80f0c8, 0x60, "38c1d5cbcb9f6b5e511f0cd8ed068f65", r1, 0x113e33f2, 0xffffffffffffffff, 0xe4, 0x6, 0x5, 0x6, 0x8, 0x0, 0x3, @attach_prog_fd, 0x6, 0xffff, 0x8, 0x0, 0xfffffffe}, 0x47)

2.360160341s ago: executing program 3 (id=10898):
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
getcpu$auto(0x0, &(0x7f0000000040)=0x5, 0x0)

1.627190492s ago: executing program 2 (id=10912):
r0 = syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'virt_wifi0\x00', <r2=>0x0})
sendmsg$auto_NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x28, r0, 0x13, 0x70bd26, 0x25dfdbfc, {}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r2}, @NL80211_ATTR_WIPHY_NAME={0xc, 0x2, '\x00\x00\x00\x00\x00\x00\x00\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4004080}, 0x0)

1.414544379s ago: executing program 2 (id=10915):
syslog$auto(0x3, &(0x7f0000000080)='..\x00k\xce\xa0\x17\bI3\'\xc5tw\xd7\x1d\x00\x80\x00\x00\x00\x00\x00\x00j<\v\xf47\n\xa7\xd2\x8b\x11e</\xfd\x9b\xe4\x99G\xeaS\x9a\xadu(:\x94:\xaf\x06c=3>1\xb3\xfdd\x04\xa9 1q\x97\xc4,\xa9^\xc1\xb6\xa1q\x0f\xd1\x013\x87l\xb9\x1e\x05\x90\xa2', 0x5)
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000080))
fchdir$auto(r0)
mknod$auto(&(0x7f0000000040)='./file0\x00', 0x1001, 0x4)

1.143457428s ago: executing program 1 (id=10919):
r0 = setfsuid$auto(0xee00)
r1 = setfsuid$auto(0xee01)
setresuid$auto(r0, r1, r0)
acct$auto(0x0)

1.055835869s ago: executing program 2 (id=10920):
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_OVS_DP_CMD_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0f0026bd7000fcdbdf9907"], 0x24}, 0x1, 0x0, 0x0, 0x20000800}, 0x4)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB='T'], 0x1ac}}, 0x40000)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f00000001c0), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

973.967021ms ago: executing program 1 (id=10921):
socket(0xa, 0x1, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
mmap$auto(0x0, 0x2020009, 0x7, 0xeb1, 0xfffffffffffffffa, 0x8000)
getsockopt$auto(0x3, 0x200000000001, 0x2b, 0xfffffffffffffffe, 0x0)

854.478849ms ago: executing program 0 (id=10922):
mmap$auto(0x0, 0xe983, 0xdf, 0xeb1, 0x401, 0x8000)
sysfs$auto(0x2, 0x10000000000000b, 0x0)
r0 = socket(0x28, 0x1, 0x0)
getsockopt$auto(r0, 0x28, 0x8, 0x0, 0x0)

845.190707ms ago: executing program 2 (id=10923):
r0 = socket(0x2b, 0x1, 0x0)
listen$auto(r0, 0x1)
io_uring_setup$auto(0x6, 0x0)
bind$auto(0x3, &(0x7f0000000040)=@in={0x2, 0x3, @multicast2}, 0x69)

811.018845ms ago: executing program 1 (id=10924):
socket(0xa, 0x5, 0x84)
mmap$auto(0x0, 0x20004, 0x1ff, 0xeb1, 0x8000000000000024, 0x8000)
move_pages$auto(0x1, 0x2000000000003, 0x0, 0x0, 0x0, 0x8000400000000000)
setsockopt$auto(0x3, 0x10000000084, 0xb, 0x0, 0xc)

692.08316ms ago: executing program 0 (id=10925):
sendmsg$auto_GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01002d00080007000000000000000000", @ANYRES32, @ANYBLOB="0800080004"], 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x0)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0xfffffffe, &(0x7f0000000100)={&(0x7f0000000080), 0x180}, 0x2, &(0x7f0000000340), 0x7, 0xa505}, 0x800}, 0x7, 0x6)

689.295924ms ago: executing program 2 (id=10926):
r0 = landlock_create_ruleset$auto(&(0x7f0000000140)={0xdaa0, 0x1, 0x9}, 0x9, 0x0)
landlock_restrict_self$auto(r0, 0x3)
r1 = openat$auto_fb_fops_fb_chrdev(0xffffffffffffff9c, &(0x7f0000001c80)='/dev/fb0\x00', 0x20443, 0x0)
ioctl$auto_FBIOPUT_VSCREENINFO(r1, 0x5450, 0x0)

539.189609ms ago: executing program 1 (id=10927):
mmap$auto(0x0, 0x20009, 0x4000000000df, 0xeb1, 0x401, 0x8000)
r0 = socket(0x2, 0x2, 0x1)
io_uring_setup$auto(0x6, 0x0)
sendto$auto(r0, 0x0, 0xb, 0xc, &(0x7f0000000000), 0x1c)

511.166626ms ago: executing program 2 (id=10928):
mmap$auto(0x0, 0x4020009, 0xdf, 0xeb1, 0x401, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
munlock$auto(0xf, 0x6)

477.598112ms ago: executing program 0 (id=10929):
sendmsg$auto_NFSD_CMD_VERSION_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x60, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {}, [@NFSD_A_SERVER_PROTO_VERSION={0x14, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x400}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}]}, @NFSD_A_SERVER_PROTO_VERSION={0x30, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0xc}, @NFSD_A_VERSION_MAJOR={0x8, 0x1, 0x6}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0x9}, @NFSD_A_VERSION_MINOR={0x8, 0x2, 0x2}, @NFSD_A_VERSION_ENABLED={0x4}, @NFSD_A_VERSION_ENABLED={0x4}]}, @NFSD_A_SERVER_PROTO_VERSION={0x8, 0x1, 0x0, 0x1, [@NFSD_A_VERSION_ENABLED={0x4}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4081}, 0x200000c0)
sendmsg$auto_NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="72010000", @ANYBLOB="1e00df45"], 0x1ac}}, 0x0)
r0 = socket(0x10, 0x2, 0x0)
sendmmsg$auto(r0, &(0x7f0000000200)={{0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000080), 0xfc2}, 0x2, &(0x7f0000000140), 0x7, 0xa505}, 0x800}, 0x7, 0x4008)

370.250491ms ago: executing program 1 (id=10930):
r0 = pidfd_open$auto(0x1, 0x0)
setns(r0, 0x60020000)
madvise$auto(0x0, 0x7fffffffffffffff, 0xa)
syz_clone(0x1a80a091, 0x0, 0x0, 0x0, 0x0, 0x0)

345.192122ms ago: executing program 0 (id=10931):
io_uring_setup$auto(0x59, &(0x7f0000000080)={0x7fffffff, 0xd, 0x1, 0x6, 0x8, 0x7fffffff, 0xffffffffffffffff, [], {0x6, 0x6, 0x8c47, 0x4, 0x100, 0x7ffffffb, 0x101, 0x800, 0x3}, {0x8, 0x1, 0x52, 0x5, 0x2, 0x40, 0x76c5, 0x8, 0x100000000}})
mmap$auto(0x0, 0x9, 0xffb, 0x8000000008011, 0x3, 0x0)
semctl$auto(0x1ff, 0x2, 0x13, 0x1)
io_uring_enter$auto(0x3, 0x5, 0xffffffff, 0x3, 0x0, 0x2)

237.183977ms ago: executing program 3 (id=10932):
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0xf, 0x200000000018, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x5, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

186.978947ms ago: executing program 0 (id=10933):
mmap$auto(0x0, 0x9, 0xfc, 0x1000000eb1, 0x401, 0x8000)
prctl$auto(0x1000000003b, 0x1, 0x4, 0x5, 0x7)
symlink$auto(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0\x00')
readlinkat$auto(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='\\\x00', 0x80)

177.830983ms ago: executing program 1 (id=10934):
mmap$auto(0x0, 0x128009, 0xdf, 0xeb1, 0x401, 0x8000)
r0 = socket(0x10, 0x2, 0x0)
sendmsg$auto_NL80211_CMD_GET_REG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYBLOB="1200", @ANYBLOB="5de1"], 0x1ac}}, 0x40000)
recvmmsg$auto(r0, 0x0, 0xfffffff9, 0x10000, 0x0)

0s ago: executing program 0 (id=10935):
mmap$auto(0x0, 0x20009, 0xdf, 0xeb1, 0x40000000000a5, 0x8000)
socketpair$auto(0x1e, 0x5, 0x8000000000000000, 0x0)
write$auto(0x3, 0x0, 0x81)
recvfrom$auto(0x4, 0x0, 0x1, 0x3ffffd, 0x0, 0x0)

kernel console output (not intermixed with test programs):

llocated
[  215.410372][T10578] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5224, tgid 5224 (udevadm), ts 36338056831, free_ts 29328329060
[  215.469997][T10578]  post_alloc_hook+0x153/0x170
[  215.481399][T10578]  get_page_from_freelist+0x11a6/0x33b0
[  215.496396][T10578]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[  215.518039][T10578]  new_slab+0xa6/0x6c0
[  215.523127][T10578]  refill_objects+0x277/0x420
[  215.528149][T10578]  __pcs_replace_empty_main+0x375/0x650
[  215.534466][T10578]  kmem_cache_alloc_lru_noprof+0x485/0x6e0
[  215.552418][T10578]  alloc_inode+0x183/0x250
[  215.562333][   T29] audit: type=1804 audit(1843106674.750:17): pid=10591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2253" name="/newroot/sys/kernel/tracing/set_event_notrace_pid" dev="tracefs" ino=1057 res=1 errno=0
[  215.586735][T10578]  iget_locked+0x1d9/0x6d0
[  215.591594][T10578]  kernfs_get_inode+0x46/0x470
[  215.597540][T10578]  kernfs_iop_lookup+0x1a7/0x2d0
[  215.609248][T10578]  __lookup_slow+0x251/0x460
[  215.628448][T10578]  lookup_slow+0x50/0x70
[  215.648882][T10578]  path_lookupat+0x5e8/0xc40
[  215.656821][T10578]  filename_lookup+0x202/0x590
[  215.673757][T10578]  do_readlinkat+0xd3/0x370
[  215.690550][T10578] page last free pid 1 tgid 1 stack trace:
[  215.707797][T10578]  __free_frozen_pages+0x747/0x1040
[  215.726634][T10578]  free_contig_range+0xda/0x140
[  215.742012][T10578]  destroy_args+0xa8/0x7a0
[  215.752890][T10578]  debug_vm_pgtable+0x1d69/0x3490
[  215.765212][T10578]  do_one_initcall+0x121/0x750
[  215.780614][T10578]  kernel_init_freeable+0x6ea/0x7b0
[  215.792420][T10578]  kernel_init+0x1f/0x1e0
[  215.807543][T10578]  ret_from_fork+0x72b/0xd50
[  215.823947][T10578]  ret_from_fork_asm+0x1a/0x30
[  216.072148][T10605] block2mtd: illegal erase size
[  216.846350][   T29] audit: type=1800 audit(1843106676.036:18): pid=10637 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2277" name="members" dev="configfs" ino=21488 res=0 errno=0
[  218.997818][T10726] ima: Unable to open file: /surit‹¯Ròy/integrity?iqa/policy (-2)
[  218.998602][T10725] ima: policy update failed
[  219.046087][   T29] audit: type=1802 audit(1843106678.248:19): pid=10725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.2320" res=0 errno=0
[  221.104601][T10800] sg_write: data in/out 262108/45 bytes for SCSI command 0x61-- guessing data in;
[  221.104601][T10800]    program syz.1.2356 not setting count and/or reply_len properly
[  222.169060][T10843] Setting dangerous option i915.mitigations - tainting kernel
[  222.617492][T10856] delete_channel: no stack
[  224.902102][T10942] usb usb3: usbfs: process 10942 (syz.3.2426) did not claim interface 0 before use
[  225.198241][T10950] delete_channel: no stack
[  226.894150][ T5842] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  226.902226][ T5842] Bluetooth: hci3: Invalid handle: 0x3a4a > 0x0eff
[  227.353290][T11041] usb usb35: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  227.362736][T11041] vhci_hcd vhci_hcd.1: SetHubDepth req not supported for USB 2.0 roothub
[  229.184072][T11118] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  229.415485][ T5160] Bluetooth: hci0: unexpected event 0x3e length: 0 < 1
[  229.661187][T11132] hub 1-0:1.0: USB hub found
[  229.686162][T11132] hub 1-0:1.0: 1 port detected
[  230.076745][T11154] bond0: option slaves: interface -Âô does not exist!
[  230.079516][T11148] Process accounting paused
[  230.306673][T11156] nvme_fabrics: missing parameter 'transport=%s'
[  230.322966][T11156] nvme_fabrics: missing parameter 'nqn=%s'
[  231.724275][ T5160] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  231.736695][ T5160] Bluetooth: hci2: Invalid handle: 0x3a4a > 0x0eff
[  231.914122][T11214] bond0: invalid ARP target specified
[  232.637287][T11239] usb usb21: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  234.736081][ T5842] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  234.744202][ T5842] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[  235.574795][T11358] vmstat_refresh: nr_hugetlb -2048
[  235.913827][ T5842] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  235.921569][ T5842] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff
[  236.651892][T11399] hub 1-0:1.0: USB hub found
[  236.659492][T11399] hub 1-0:1.0: 1 port detected
[  236.745750][T11404] Kernel: The 'panic_print' parameter is now deprecated. Please use 'panic_sys_info' and 'panic_console_replay' instead.
[  237.253556][T11424] vmstat_refresh: nr_hugetlb -2048
[  238.045786][T11460] ecryptfs_miscdev_write: Error while inspecting packet size
[  238.071790][T11458] hub 1-0:1.0: USB hub found
[  238.084205][T11458] hub 1-0:1.0: 1 port detected
[  238.778805][T11492] : Can't lookup blockdev
[  239.870567][T11540] vhci_hcd vhci_hcd.2: default hub control req: 0000 v0000 i0000 l0
[  240.507326][   T29] audit: type=1400 audit(4294967310.147:20): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=11566 comm="syz.0.2729"
[  240.727269][ T5160] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  240.735281][ T5160] Bluetooth: hci0: Invalid handle: 0x3a4a > 0x0eff
[  241.317010][   T42] Process accounting resumed
[  241.439385][T11601] Scaler: =================  START STATUS  =================
[  241.468101][T11601] Scaler: ==================  END STATUS  ==================
[  242.510534][T11647] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  242.581529][ T5842] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  242.590224][ T5842] Bluetooth: hci1: Invalid handle: 0x3a4a > 0x0eff
[  242.882864][T11664] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  243.102982][   T29] audit: type=1400 audit(4294967312.761:21): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=11670 comm="syz.1.2779"
[  245.669529][ T5842] Bluetooth: hci3: Unexpected cc 0x7c89 with no status
[  245.899897][T11780] synth uevent: /bus/mei: unknown uevent action string
[  247.265589][   T29] audit: type=1800 audit(4294967316.932:22): pid=11828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2852" name="members" dev="configfs" ino=26061 res=0 errno=0
[  247.616823][T11845] QAT: failed to copy from user.
[  247.793026][T11850] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  247.980463][T11860] EXT4-fs error (device sda1): trigger_test_error:130: comm syz.2.2869: 7
[  248.636114][T11878] bcache: register_bcache() error : Not a bcache superblock (bad offset)
[  250.574108][T11955] deleting an unspecified loop device is not supported.
[  251.039854][ T5842] Bluetooth: hci1: Unexpected cc 0x7c89 with no status
[  251.728820][   T29] audit: type=1800 audit(4294967321.426:23): pid=11992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2929" name="members" dev="configfs" ino=26350 res=0 errno=0
[  252.212693][T12009] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  252.303285][T12009] CIFS mount error: No usable UNC path provided in device string!
[  252.303285][T12009] 
[  252.338671][T12009] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  254.893891][ T5842] Bluetooth: hci2: Unexpected cc 0x7c89 with no status
[  255.660423][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  255.667389][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  255.982515][T12135] serial 00:02: in use; can't configure
[  256.364870][ T5842] Bluetooth: hci0: Unexpected cc 0x7c89 with no status
[  257.608236][T12188] scsi_dev_info_list_add_str: bad dev info string ')–õÒzDéú÷5fk+*X€©#åR8¾ð4*œýVs÷nîdv»ø¼qQWˆ}ûÄ~YrÈ€-8VGDÆ˜¹‹åLáBÍ%v—Â†õv‘}–Ypq|ƒí?ñºO¼ö[ŒÐ,!äÙ7xWDr¾Ÿµ% [Û}†Eµ$3?ñGË™Î9–Ff=ŠÃlør«GH;2L<õ»=ÒÚ|èž¿®ô8ƒ-c¡„FÕ¸šë"™ž£É[v9¯qôÂ4‚ MmËvq®ékñ¹¹ò[ÕãËú(i¨ýˆNDÐ¡ÄMîËXPS­êq•èqX4‰X`VððŸ!;r¶Ö ±È)y]×W¨šzfIðH0êáÓ,àëí¬é¢vß{q8ÊìÛ×©U·Ü¹ä‘‰mØ›ŽH•ŽT´¸wí™C€Ïzø-óŠÊnR%§2]ÌÎx0Òéª5oùÐëâòÕ•|3>ÕlñS*LŒõÝ/«CdgÓ‘àŠ[C=Cw‹e•Äm)«ÿòÕl#È' '‹ï'“Sž‰¡.ÍsHgi-à»ÛTY%Ü¹F§…*8úÒnFTÿH‡—ýæ¿?“ÿ–Þi{' ''
[  258.500644][T12218] WARNING! power/level is deprecated; use power/control instead
[  261.129033][T12320] synth uevent: /devices/platform/vivid.0/cec26: unknown uevent action string
[  261.182528][T12320] cec cec26: uevent: failed to send synthetic uevent: -22
[  263.082826][T12408] vhci_hcd vhci_hcd.1: invalid port number 14
[  263.101156][T12408] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub.
[  263.214164][T12415] QAT: Invalid ioctl 21531
[  265.054110][T12488] kAFS: Invalid Command on /proc/fs/afs/cells file
[  266.313087][    C0] unchecked MSR access error: WRMSR to 0x418 (tried to write 0x0000000000000322) at rIP: 0xffffffff81b1c88a (__mcheck_cpu_init_prepare_banks+0x18a/0x380)
[  266.328902][    C0] Call Trace:
[  266.332288][    C0]  <IRQ>
[  266.335156][    C0]  ? __pfx___mcheck_cpu_init_prepare_banks+0x10/0x10
[  266.341875][    C0]  ? sched_clock+0x38/0x60
[  266.346380][    C0]  ? sched_clock_cpu+0x6c/0x570
[  266.351354][    C0]  ? __flush_smp_call_function_queue+0x426/0x960
[  266.357820][    C0]  ? __pfx_mce_cpu_restart+0x10/0x10
[  266.363126][    C0]  mce_cpu_restart+0xd5/0x1f0
[  266.367822][    C0]  __flush_smp_call_function_queue+0x281/0x960
[  266.374092][    C0]  __sysvec_call_function_single+0x83/0x440
[  266.380019][    C0]  sysvec_call_function_single+0x9e/0xc0
[  266.385675][    C0]  </IRQ>
[  266.388628][    C0]  <TASK>
[  266.391602][    C0]  asm_sysvec_call_function_single+0x1a/0x20
[  266.397702][    C0] RIP: 0010:rcu_is_watching+0x5/0xc0
[  266.403015][    C0] Code: 89 df e8 2e 5e 88 00 eb 81 e8 57 5e 88 00 e9 49 ff ff ff 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 55 <53> 65 ff 05 e3 b3 26 12 e8 5e ec aa 09 48 c7 c3 a8 1d 15 94 89 c5
[  266.422813][    C0] RSP: 0018:ffffc900043772a8 EFLAGS: 00000202
[  266.429069][    C0] RAX: 0000000000000001 RBX: ffffc90004377998 RCX: ffffffff91b22201
[  266.437054][    C0] RDX: ffffc900043779a0 RSI: ffffc90004377978 RDI: ffffc90004377338
[  266.445035][    C0] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000007
[  266.453045][    C0] R10: 0000000000000200 R11: 000000000003af5e R12: ffffc90004377378
[  266.461163][    C0] R13: ffffc90004377328 R14: ffffc90004377998 R15: ffffc9000437735c
[  266.469180][    C0]  unwind_next_frame+0x745/0x2090
[  266.474558][    C0]  ? tomoyo_file_open+0x6b/0x90
[  266.479770][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  266.486324][    C0]  arch_stack_walk+0x94/0xf0
[  266.490953][    C0]  ? security_file_open+0xb5/0x1e0
[  266.496180][    C0]  ? tomoyo_realpath_from_path+0x19c/0x690
[  266.502209][    C0]  stack_trace_save+0x8e/0xc0
[  266.507023][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  266.512595][    C0]  ? __lock_acquire+0x4a5/0x2630
[  266.517720][    C0]  ? tomoyo_check_open_permission+0x2af/0x3c0
[  266.523982][    C0]  ? tomoyo_file_open+0x6b/0x90
[  266.529007][    C0]  kasan_save_stack+0x30/0x50
[  266.533817][    C0]  ? kasan_save_stack+0x30/0x50
[  266.538777][    C0]  ? kasan_save_track+0x14/0x30
[  266.543646][    C0]  ? kasan_save_free_info+0x3b/0x70
[  266.548865][    C0]  ? __kasan_slab_free+0x5f/0x80
[  266.553816][    C0]  ? kfree+0x223/0x6c0
[  266.557919][    C0]  ? tomoyo_realpath_from_path+0x19c/0x690
[  266.563751][    C0]  ? tomoyo_check_open_permission+0x2af/0x3c0
[  266.569873][    C0]  ? tomoyo_file_open+0x6b/0x90
[  266.574795][    C0]  kasan_save_track+0x14/0x30
[  266.579498][    C0]  kasan_save_free_info+0x3b/0x70
[  266.584557][    C0]  __kasan_slab_free+0x5f/0x80
[  266.589514][    C0]  ? tomoyo_realpath_from_path+0x170/0x690
[  266.595707][    C0]  kfree+0x223/0x6c0
[  266.599633][    C0]  tomoyo_realpath_from_path+0x19c/0x690
[  266.605322][    C0]  tomoyo_check_open_permission+0x2af/0x3c0
[  266.611453][    C0]  ? __pfx_tomoyo_check_open_permission+0x10/0x10
[  266.617897][    C0]  ? do_raw_spin_unlock+0x145/0x1e0
[  266.623174][    C0]  ? hook_file_open+0x24e/0x7a0
[  266.628147][    C0]  ? lock_acquire+0x1b1/0x370
[  266.632848][    C0]  tomoyo_file_open+0x6b/0x90
[  266.637546][    C0]  security_file_open+0xb5/0x1e0
[  266.642497][    C0]  do_dentry_open+0x5aa/0x1660
[  266.647378][    C0]  vfs_open+0x82/0x3f0
[  266.651473][    C0]  path_openat+0x208c/0x31a0
[  266.656090][    C0]  ? __pfx_path_openat+0x10/0x10
[  266.661062][    C0]  do_file_open+0x20e/0x430
[  266.665678][    C0]  ? __pfx_do_file_open+0x10/0x10
[  266.670775][    C0]  ? alloc_fd+0x476/0x790
[  266.675433][    C0]  ? do_getname+0x191/0x390
[  266.680089][    C0]  do_sys_openat2+0x10d/0x1e0
[  266.684839][    C0]  ? __pfx_do_sys_openat2+0x10/0x10
[  266.690217][    C0]  __x64_sys_openat+0x12d/0x210
[  266.695116][    C0]  ? __pfx___x64_sys_openat+0x10/0x10
[  266.700657][    C0]  ? rcu_is_watching+0x12/0xc0
[  266.705447][    C0]  do_syscall_64+0x10b/0xf80
[  266.710091][    C0]  ? clear_bhb_loop+0x40/0x90
[  266.714982][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.720977][    C0] RIP: 0033:0x7ffbed4a7407
[  266.725496][    C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  266.745401][    C0] RSP: 002b:00007ffce428ea80 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  266.753838][    C0] RAX: ffffffffffffffda RBX: 00007ffbedb3f880 RCX: 00007ffbed4a7407
[  266.761910][    C0] RDX: 0000000000080241 RSI: 00007ffce428efe0 RDI: ffffffffffffff9c
[  266.769912][    C0] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  266.778016][    C0] R10: 00000000000001b6 R11: 0000000000000202 R12: 0000559396538dfc
[  266.786101][    C0] R13: 0000559396538dfc R14: 0000000000000001 R15: 00005593b8deae00
[  266.794111][    C0]  </TASK>
[  270.833117][   T29] audit: type=1804 audit(4294967340.625:24): pid=12702 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.3271" name="/newroot/sys/kernel/debug/tracing/events/vmalloc/alloc_vmap_area/filter" dev="tracefs" ino=19680823 res=1 errno=0
[  272.232208][T12758] ima: policy update failed
[  272.244025][   T29] audit: type=1802 audit(4294967342.042:25): pid=12758 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.3294" res=0 errno=0
[  274.169202][T12870] snd_aloop snd_aloop.0: control 16781581:65539:6:é'x?F¢é/èìzFË·fCªáª:7 is already present
[  274.787753][T12903] bond0: invalid ARP target specified
[  275.641912][T12951] block nbd0: NBD_DISCONNECT
[  276.580269][T12999] kafs: addr_prefs: Invalid Command
[  276.940380][T13018] kafs: addr_prefs: Invalid Command
[  278.966912][   T29] audit: type=1800 audit(4294967348.807:26): pid=13149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3433" name="dbroot" dev="configfs" ino=30902 res=0 errno=0
[  279.456042][T13168] usb usb26: usbfs: process 13168 (syz.3.3441) did not claim interface 0 before use
[  280.505744][T13227] vhci_hcd vhci_hcd.1: invalid port number 16
[  280.529098][T13227] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  280.725014][   T29] audit: type=1800 audit(4294967350.577:27): pid=13240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3469" name="dbroot" dev="configfs" ino=31019 res=0 errno=0
[  280.772997][T13240] db_root: cannot open: /dev/audio1
[  280.803204][T13240] db_root: not a directory: /dev/audio1
[  281.300514][T13267] vhci_hcd vhci_hcd.1: invalid port number 16
[  281.324054][T13267] vhci_hcd vhci_hcd.1: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
“ÇIãjníüú¡9»_Ï´îVQ8Àñ j@       :U   ×%U¬xþ0 	RÒ@ñîx@qrI¥B™@[*×tùñ…	ñô;S;åx=þGcqÍËx)Z–È *16G§ïãSØu‡ªb¬À´ùm¾IK‡7
[  284.089971][   T29] audit: type=1800 audit(4294967353.954:28): pid=13425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3544" name="discovery_nqn" dev="configfs" ino=31252 res=0 errno=0
[  285.222570][T13480] program syz.1.3564 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  286.524499][T13544] delete_channel: no stack
[  286.543174][T13548] binder: 13545:13548 ioctl c0046209 9 returned -22
[  287.143997][T13580] vhci_hcd vhci_hcd.2: vhci_device speed not set
[  287.287880][T13589] bond0: invalid ARP target specified
[  288.735161][T13673] Invalid input. Must be >= 4608
[  289.064986][T13691] : Can't lookup blockdev
[  293.422857][T13922] Invalid ELF header magic: != ELF
[  297.715525][T14137] sd 0:0:1:0: PR command failed: 1026
[  297.741732][T14137] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  297.763898][T14137] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  298.752354][T14174] could not allocate digest TFM handle 
[  301.447926][T14327] vhci_hcd vhci_hcd.2: invalid port number 135
[  301.465134][T14327] vhci_hcd vhci_hcd.2: invalid port number 135
[  305.245906][   T29] audit: type=1800 audit(4294967375.224:29): pid=14493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3963" name="lu_gp_id" dev="configfs" ino=33808 res=0 errno=0
[  306.118710][T14527] nvme_fcloop: unknown parameter or missing value 'Ù'
[  306.430164][T14544] Setting dangerous option i915.mitigations - tainting kernel
[  307.718919][T14609] syz.2.4000 uses obsolete (PF_INET,SOCK_PACKET)
[  311.532054][T14780] futex_wake_op: syz.3.4054 tries to shift op by -2048; fix this program
[  311.562098][T14780] futex_wake_op: syz.3.4054 tries to shift op by -2048; fix this program
[  314.391605][T14905] kafs: addr_prefs: Too many elements in string
[  314.493908][T14909] block2mtd: error: cannot open device çinX‘©¼Ëò¨Â±ÂÚjFBçB>U»;ß¸³Ilk¬
[  316.770932][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  316.781347][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  316.852937][T15013] kafs: addr_prefs: Too many elements in string
[  317.041431][T15021] dlm: plock device version mismatch: kernel (1.2.0), user (1489226698.240317300.1121487582)
[  318.507014][T15094] ICMPv6: process `syz.2.4174' is using deprecated sysctl (syscall) net.ipv6.neigh.wg1.retrans_time - use net.ipv6.neigh.wg1.retrans_time_ms instead
[  319.427806][T15144] kAFS: unparsable volume name
[  320.031655][T15166] zram: Added device: zram1
[  320.439805][ T5842] Bluetooth: hci1: unexpected event 0x3e length: 358 > 260
[  320.439848][ T5842] Bluetooth: hci1: unexpected subevent 0x1b length: 357 > 260
[  320.456359][ T5842] Bluetooth: hci1: Malformed LE Event: 0x1b
[  321.589333][T15249] vhci_hcd vhci_hcd.2: invalid port number 16
[  321.611983][T15249] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  321.819278][T15264] block2mtd: illegal erase size
[  322.045692][T15276] RGB/YUV Input: =================  START STATUS  =================
[  322.062970][T15276] RGB/YUV Input: Test Pattern: 75% Colorbar
[  322.117604][T15276] RGB/YUV Input: Show Information: All
[  322.136791][T15276] RGB/YUV Input: Vertical Flip: false
[  322.157848][T15276] RGB/YUV Input: Horizontal Flip: false
[  322.164245][T15276] RGB/YUV Input: Brightness: 128
[  322.171431][T15276] RGB/YUV Input: Contrast: 128
[  322.177193][T15276] RGB/YUV Input: Hue: 0
[  322.181479][T15276] RGB/YUV Input: Saturation: 128
[  322.204932][T15276] RGB/YUV Input: Pixel Rate: 160000000
[  322.218536][T15276] RGB/YUV Input: Horizontal Blanking: 800
[  322.237914][T15276] RGB/YUV Input: Vertical Blanking: 3223
[  322.266124][T15276] RGB/YUV Input: ==================  END STATUS  ==================
[  322.972409][ T5842] Bluetooth: hci0: unexpected event 0x3e length: 358 > 260
[  322.972451][ T5842] Bluetooth: hci0: unexpected subevent 0x1b length: 357 > 260
[  322.990161][ T5842] Bluetooth: hci0: Malformed LE Event: 0x1b
[  323.756922][T15354] Format for deleting device is "id" (uint).
[  324.072745][   T29] audit: type=1800 audit(4294967394.152:30): pid=15367 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4279" name="sr0" dev="devtmpfs" ino=2843 res=0 errno=0
[  324.353222][T15374] zram: Added device: zram2
[  324.776195][T15402] QAT: failed to copy from user cfg_data.
[  324.918008][T15407] zram0: detected capacity change from 0 to 16
[  325.053874][T15412] zram: Added device: zram3
[  325.882413][T15451] zram: Added device: zram4
[  326.403067][T15479] Format for unlinking a device is "netnsfd:ifidx" (int uint).
[  329.109635][T15621] aoe: invalid device specification 
[  329.376678][T15631] vhci_hcd vhci_hcd.2: invalid port number 16
[  329.383408][T15631] vhci_hcd vhci_hcd.2: invalid port number 16
[  330.672699][ T5842] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  330.672742][ T5842] Bluetooth: hci2: unexpected subevent 0x06 length: 725 > 10
[  332.039356][T15772] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  332.763286][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  335.760445][T15975] sctp: Changing rto_alpha or rto_beta may lead to suboptimal rtt/srtt estimations!
[  336.095620][   T29] audit: type=1800 audit(4294967406.234:31): pid=15996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4518" name="SYSV00000008" dev="tmpfs" ino=0 res=0 errno=0
[  336.217432][T15999] pci 0000:00:01.0: [8086:7110] type 00 class 0x060100 conventional PCI endpoint
[  336.276980][T16002] kAFS: Invalid Command on /proc/fs/afs/cells file
[  338.109127][T16102] cifs: Unknown parameter 'no+ 1§• Ö`ÑørêsFn)ÈøaõH†šÄ¿¡h`àØÝë9k¤A}€žŠ1\D@‹Ç.ÁäZÔCg^‚'
[  343.590731][ T5843] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  346.159771][T16533] nvme_fcloop: unknown parameter or missing value '7="­ÿù;¤°&Lë=j³"Yq'R"'
[  347.853517][T16625] queue_state_write: operation too long
[  347.861254][T16625] queue_state_write: use 'run', 'start' or 'kick'
[  348.172007][T16643] <
[  349.499047][T16715] ptrace attach of "./syz-executor exec"[5841] was attempted by "./syz-executor exec"[16715]
[  350.766532][T16785] sd 0:0:1:0: PR command failed: 1026
[  350.812138][T16785] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  350.845995][T16785] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  351.376170][T16818] rnbd_client L213: map_device: Parameters missing
[  352.377344][T16873] __vm_enough_memory: pid: 16873, comm: syz.0.4860, bytes: 9223372036854775808 not enough memory for the allocation
[  353.285880][T16918] bond0: no command found in slaves file - use +ifname or -ifname
[  353.373805][ T5842] Bluetooth: hci1: unexpected subevent 0x01 length: 123 > 18
[  354.000254][T16969] bond0: invalid ARP target specified
[  354.519390][T16997] usbip-vudc usbip-vudc.0: gadget not bound
[  355.122007][T17032] vhci_hcd vhci_hcd.2: invalid port number 253
[  355.131984][T17032] vhci_hcd vhci_hcd.2: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub
[  355.305062][T17043] __vm_enough_memory: pid: 17043, comm: syz.1.4914, bytes: 9223372036854775808 not enough memory for the allocation
[  355.356739][T17044] vhci_hcd: not connected 4
[  355.452898][ T5160] Bluetooth: hci1: command 0x0c1a tx timeout
[  355.460600][T17049] writes to the poll attribute are ignored.
[  355.484995][T17049] please use driver specific parameters instead.
[  356.412517][T17101] Setting dangerous option i915.mitigations - tainting kernel
[  356.420746][T17101] Bad "i915.mitigations=!×ÚCmÃ¢UQüF\§Þ	", '×ÚCmÃ¢UQüF\§Þ' is unknown
[  357.368877][T17153] scsi_mod.scan: string doesn't fit in 6 chars.
[  357.530701][ T5842] Bluetooth: hci1: command 0x0c1a tx timeout

syzkaller
syzkaller login: [  359.604639][ T5842] Bluetooth: hci3: unexpected subevent 0x01 length: 123 > 18
[  359.963322][T17319] sg_write: data in/out 262364/16 bytes for SCSI command 0x61-- guessing data in;
[  359.963322][T17319]    program syz.2.5016 not setting count and/or reply_len properly
[  360.858504][ T5160] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  360.923160][T17389] delete_channel: no stack
[  361.653093][ T5160] Bluetooth: hci3: command 0x0c1a tx timeout
[  362.926767][ T5849] Bluetooth: hci0: command 0x0c1a tx timeout
[  363.563328][T17516] misc userio: Invalid payload size
[  363.723927][ T5849] Bluetooth: hci3: command 0x0c1a tx timeout
[  365.002562][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout
[  365.240300][T17582] 
[  365.396433][T17575] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  367.940774][ T5160] Bluetooth: hci2: unexpected subevent 0x01 length: 123 > 18
[  368.548038][T17750] cougar: G6 mapped to F18
[  369.276975][T17786] block2mtd: error: cannot open device çinX‘©¼Ëò¨Â±ÂÚjFBçB>U»;ß¸³Ilk¬
[  369.687567][T17808] i2c i2c-0: new_device: Missing parameters
[  370.016250][ T5160] Bluetooth: hci2: command 0x0c1a tx timeout
[  370.447604][T17848] blkio.reset_stats is deprecated
[  370.458550][T17851] overlayfs: "check_copy_up" module option is obsolete
[  370.546134][T17857] zswap: compressor Zºu¾å~“ÍÎ^´§8·¯î”¯a®Þcu0ÙóÏ|” ,a’âú¢RrðqP“þø˜¸÷'¹À)Œ¤Þ±`Ù*ë]¿­T]èXãžéØƒ(Û‚ŽTN>Ñ_áËr$º“º¾¾ñzúÙ&[+x[DPx¥e?–ôm¢µ3QÂz not available
[  370.798406][ T5842] Bluetooth: hci0: unexpected subevent 0x01 length: 123 > 18
[  372.075569][ T5842] Bluetooth: hci2: command 0x0c1a tx timeout
[  372.150501][T17943] i2c i2c-0: delete_device: Can't find device in list
[  372.800681][T17975] : Can't lookup blockdev
[  372.871494][ T5842] Bluetooth: hci0: command 0x0c1a tx timeout
[  374.551815][T18060] ecryptfs_miscdev_response: (sizeof(*msg) + msg->data_len) = [1067213646]; data_size = [146]. Invalid packet.
[  374.600995][T18060] ecryptfs_miscdev_write: Failed to deliver miscdev response to requesting operation; rc = [-22]
[  374.940899][ T5160] Bluetooth: hci0: command 0x0c1a tx timeout
[  375.690343][T18115] rnbd_client L202: map_device: Unknown parameter or missing value '7'
[  378.099590][T18212] device-mapper: ioctl: ioctl interface mismatch: kernel(4.50.0), user(0.0.0), cmd(12)
[  378.348634][T18219] usb usb13: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  378.965867][T18234] program syz.2.5363 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  380.078460][T18275] nvme_fcloop: unknown parameter or missing value '1'
[  381.657478][T18333] ima: Unable to open file: /sys/kernel/security/integrity/ima/policy (-26)
[  381.659889][T18331] ima: policy update failed
[  381.710239][   T29] audit: type=1802 audit(4294985796.087:32): pid=18331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.2.5405" res=0 errno=0
[  381.998357][T18351] program syz.3.5411 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  382.221445][T18358] Line length is too long: Should be less than 4094
[  382.724428][T18376] ICMPv6: process `syz.3.5423' is using deprecated sysctl (syscall) net.ipv6.neigh.veth0_to_bridge.base_reachable_time - use net.ipv6.neigh.veth0_to_bridge.base_reachable_time_ms instead
[  384.121388][T18450] i2c i2c-0: new_device: Invalid device name
[  384.205617][T18449] smpboot: CPU 1 is now offline
[  384.850268][T18481] i2c i2c-0: delete_device: Can't parse I2C address
[  387.210036][T18589] [U] ^Z
[  389.092095][   T29] audit: type=1806 audit(4294985803.506:33): xattr="" res=-22
[  391.472842][T18795] usb usb11: usbfs: interface 0 claimed by hub while 'syz.0.5600' sets config #7
[  395.182391][T18945] bond0: option mode: unable to set because the bond device is up
[  400.934904][   T29] audit: type=1807 audit(4294985815.407:34): UNKNOWN=0"û]$|Ë1jë0B|d™¹ýÓ‰OŸ¬+ö×/ÉéxÔóÈõWÓ¦–Ó^¸´gq%HÌˆrêOŽ res=0
[  400.950202][T19187] ima: policy update failed
[  400.980606][T19190] sysfs_service_op_store: Client not running :-5:
[  401.004471][   T29] audit: type=1802 audit(4294985815.427:35): pid=19189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=update_policy cause=invalid-policy comm="syz.1.5767" res=0 errno=0
[  401.115488][   T29] audit: type=1802 audit(4294985815.447:36): pid=19187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=policy_update cause=failed comm="syz.1.5767" res=0 errno=0
[  402.161491][T19235] synth uevent: /module/null_blk: unknown uevent action string
[  402.400833][T19243] kAFS: Invalid Command on /proc/fs/afs/cells file
[  403.436212][T19285] vivid-003: =================  START STATUS  =================
[  403.465272][T19285] vivid-003: Radio HW Seek Mode: Bounded
[  403.495876][T19285] vivid-003: Radio Programmable HW Seek: false
[  403.518695][T19285] vivid-003: RDS Rx I/O Mode: Block I/O
[  403.545311][T19285] vivid-003: Generate RBDS Instead of RDS: false
[  403.570614][T19285] vivid-003: RDS Reception: true
[  403.588357][T19285] vivid-003: RDS Program Type: 0 inactive
[  403.608484][T19285] vivid-003: RDS PS Name:  inactive
[  403.627234][T19285] vivid-003: RDS Radio Text:  inactive
[  403.652493][T19285] vivid-003: RDS Traffic Announcement: false inactive
[  403.689309][T19285] vivid-003: RDS Traffic Program: false inactive
[  403.726749][T19285] vivid-003: RDS Music: false inactive
[  403.755046][T19285] vivid-003: ==================  END STATUS  ==================
[  406.093770][T19397] ptrace attach of "./syz-executor exec"[5838] was attempted by ""[19397]
[  406.392051][T19410] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x20000
[  406.439672][T19410] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  406.471694][T19410] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[  406.522280][T19410] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  406.585523][T19410] page dumped because: unmovable page
[  406.613757][T19410] page_owner tracks the page as allocated
[  406.645980][T19410] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x0(), pid 0, tgid 0 (swapper), ts 1789681508, free_ts 0
[  406.714570][T19410]  register_early_stack+0x74/0xaf
[  406.746857][T19410]  init_page_owner+0x4c/0xa10
[  406.771665][T19410]  page_ext_init+0x71d/0x780
[  406.798737][T19410]  mm_core_init+0x229/0x270
[  406.812651][T19410] page_owner free stack trace missing
[  407.904331][T19479] phram: not enough arguments
[  408.492954][T19510] mmap: syz.3.5907 (19510): VmData 45879296 exceed data ulimit 3. Update limits or use boot option ignore_rlimit_data.
[  410.539024][T19604] zram0: detected capacity change from 16 to 0
[  414.021604][T19773] bcache: register_bcache() error : failed to open device
[  414.104146][T19778] ubi31: attaching mtd0
[  414.167586][T19778] ubi31: scanning is finished
[  414.173808][T19780] ICMPv6: process `syz.2.6024' is using deprecated sysctl (syscall) net.ipv6.neigh.ipvlan1.retrans_time - use net.ipv6.neigh.ipvlan1.retrans_time_ms instead
[  414.212743][T19778] ubi31: empty MTD device detected
[  414.628752][T19799] bonding: no command found in bonding_masters - use +ifname or -ifname
[  414.723206][T19778] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  414.777338][T19778] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3518 bytes
[  414.829142][T19778] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  414.875005][T19778] ubi31: VID header offset: 514 (aligned 514), data offset: 578
[  414.954995][T19778] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  415.045253][T19778] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 20
[  415.096850][T19778] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3816326435
[  415.158730][T19778] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  415.230465][T19801] ubi31: background thread "ubi_bgt31d" started, PID 19801
[  415.733346][   T29] audit: type=1800 audit(4294985830.284:37): pid=19837 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6047" name="lu_gp_id" dev="configfs" ino=47480 res=0 errno=0
[  415.764415][T19837] ALUA LU Group already has a valid ID, ignoring request
[  416.362551][T19866] aoe: copy from user failed
[  416.384051][T19866] aoe: could not set interface list: too many interfaces
[  417.021267][ T5842] Bluetooth: hci0: unexpected event 0x31 length: 19 > 6
[  417.106036][T19902] bond0: no command found in slaves file - use +ifname or -ifname
[  418.127471][T19950] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  418.178238][T19947] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  418.253354][T19956] ecryptfs_miscdev_write: Acceptable packet size range is [6-531], but amount of data written is [1].
[  422.342221][T20155] : Can't lookup blockdev
[  423.425188][T20201] ACPI: EC: Assuming SCI_EVT clearing on QR_EC writes
[  423.680229][T20211] aoe: can't write to that file.
[  427.593773][T20375] block2mtd: too many arguments
[  428.651480][T20421] kernel profiling enabled (shift: 0)
[  429.133615][T20435] pci 0000:00:00.0: MSI/MSI-X allowed for future drivers
[  431.441468][ T5842] Bluetooth: hci0: unexpected event 0x1c length: 725 > 5
[  433.144932][   T29] audit: type=1400 audit(4294985847.785:38): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=20556 comm="syz.3.6373"
[  434.702294][ T5917] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  437.396961][T20760] usb usb36: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  437.430256][T20760] vhci_hcd vhci_hcd.1: Wrong hub descriptor type for USB 3.0 roothub.
[  439.010902][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  439.023873][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  439.205272][T20848] pci 0000:00:01.3: enabling device (0000 -> 0001)
[  439.399407][T20848] ACPI: \_SB_.LNKS: No IRQ available. Try pci=noacpi or acpi=off
[  439.446260][T20848] pci 0000:00:01.3: PCI INT A: no GSI
[  443.231902][T21047] syz.1.6565: vmalloc error: size 18446744073709551615, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  443.301585][T21047] CPU: 0 UID: 0 PID: 21047 Comm: syz.1.6565 Tainted: G     U              syzkaller #0 PREEMPT(full) 
[  443.301617][T21047] Tainted: [U]=USER
[  443.301623][T21047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  443.301633][T21047] Call Trace:
[  443.301639][T21047]  <TASK>
[  443.301647][T21047]  dump_stack_lvl+0x100/0x190
[  443.301671][T21047]  warn_alloc.cold+0x95/0x1c1
[  443.301691][T21047]  ? __pfx_warn_alloc+0x10/0x10
[  443.301724][T21047]  ? __lock_acquire+0x4a5/0x2630
[  443.301751][T21047]  __vmalloc_node_range_noprof+0x136c/0x1630
[  443.301779][T21047]  ? rcu_is_watching+0x12/0xc0
[  443.301801][T21047]  ? trace_contention_end+0x122/0x170
[  443.301821][T21047]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  443.301844][T21047]  ? dvb_dvr_do_ioctl+0x7e/0x270
[  443.301865][T21047]  ? find_held_lock+0x2b/0x80
[  443.301886][T21047]  ? tomoyo_path_number_perm+0x28f/0x580
[  443.301915][T21047]  ? tomoyo_path_number_perm+0x28f/0x580
[  443.301943][T21047]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  443.301967][T21047]  ? __pfx___mutex_lock+0x10/0x10
[  443.301999][T21047]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  443.302025][T21047]  ? futex_wait+0x11e/0x370
[  443.302052][T21047]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  443.302074][T21047]  __vmalloc_node_noprof+0xad/0xf0
[  443.302097][T21047]  ? dvb_dvr_do_ioctl+0x15d/0x270
[  443.302122][T21047]  dvb_dvr_do_ioctl+0x15d/0x270
[  443.302148][T21047]  dvb_usercopy+0x167/0x340
[  443.302168][T21047]  ? __pfx_dvb_dvr_do_ioctl+0x10/0x10
[  443.302191][T21047]  ? __pfx_dvb_usercopy+0x10/0x10
[  443.302221][T21047]  ? __fget_files+0x21f/0x3d0
[  443.302250][T21047]  dvb_dvr_ioctl+0x29/0x40
[  443.302270][T21047]  ? __pfx_dvb_dvr_ioctl+0x10/0x10
[  443.302292][T21047]  __x64_sys_ioctl+0x18e/0x210
[  443.302311][T21047]  do_syscall_64+0x10b/0xf80
[  443.302337][T21047]  ? clear_bhb_loop+0x40/0x90
[  443.302359][T21047]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  443.302377][T21047] RIP: 0033:0x7f9b5a59c819
[  443.302393][T21047] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  443.302417][T21047] RSP: 002b:00007f9b5b3f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  443.302435][T21047] RAX: ffffffffffffffda RBX: 00007f9b5a815fa0 RCX: 00007f9b5a59c819
[  443.302453][T21047] RDX: ffffffffffffffff RSI: 0000000000006f2d RDI: 0000000000000003
[  443.302464][T21047] RBP: 00007f9b5a632c91 R08: 0000000000000000 R09: 0000000000000000
[  443.302474][T21047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  443.302484][T21047] R13: 00007f9b5a816038 R14: 00007f9b5a815fa0 R15: 00007ffd75ad45a8
[  443.302508][T21047]  </TASK>
[  443.302536][T21047] Mem-Info:
[  444.267292][T21084] bond0: invalid ARP target specified
[  444.435368][T21089] kmem.tcp.limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  444.546713][T21047] active_anon:4245 inactive_anon:6598 isolated_anon:0
[  444.546713][T21047]  active_file:17162 inactive_file:38828 isolated_file:0
[  444.546713][T21047]  unevictable:768 dirty:154 writeback:0
[  444.546713][T21047]  slab_reclaimable:11078 slab_unreclaimable:92839
[  444.546713][T21047]  mapped:24564 shmem:1352 pagetables:1444
[  444.546713][T21047]  sec_pagetables:0 bounce:0
[  444.546713][T21047]  kernel_misc_reclaimable:0
[  444.546713][T21047]  free:1114347 free_pcp:14718 free_cma:0
[  444.771637][T21047] Node 0 active_anon:16980kB inactive_anon:24464kB active_file:68604kB inactive_file:155176kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98168kB dirty:616kB writeback:0kB shmem:3872kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:18432kB kernel_stack:10976kB pagetables:5724kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  444.943464][T21047] Node 1 active_anon:0kB inactive_anon:0kB active_file:40kB inactive_file:136kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:32kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB
[  444.983630][T21105] Format for adding new port is "id [perm_addr]" (uint MAC).
[  445.109127][T21047] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  445.261416][T21047] lowmem_reserve[]: 0 2476 2477 2477 2477
[  445.298198][T21047] Node 0 DMA32 free:518960kB boost:0kB min:34288kB low:42860kB high:51432kB reserved_highatomic:0KB free_highatomic:0KB active_anon:16980kB inactive_anon:24212kB active_file:68568kB inactive_file:155176kB unevictable:1536kB writepending:700kB zspages:0kB present:3129332kB managed:2535488kB mlocked:0kB bounce:0kB free_pcp:37720kB local_pcp:37720kB free_cma:0kB
[  445.298282][T21047] lowmem_reserve[]: 0 0 0 0 0
[  445.298316][T21047] Node 0 Normal free:12kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1004kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  445.298371][T21047] lowmem_reserve[]: 0 0 0 0 0
[  445.298405][T21047] Node 1 Normal free:3923580kB boost:0kB min:55596kB low:69492kB high:83388kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:40kB inactive_file:136kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:17348kB local_pcp:17348kB free_cma:0kB
[  445.298455][T21047] lowmem_reserve[]: 0 0 0 0 0
[  445.298488][T21047] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  445.298623][T21047] Node 0 DMA32: 1005*4kB (UME) 829*8kB (UM) 505*16kB (UM) 388*32kB (UME) 148*64kB (UME) 357*128kB (UME) 326*256kB (UME) 218*512kB (UME) 116*1024kB (UME) 18*2048kB (UME) 20*4096kB (M) = 518956kB
[  445.298777][T21047] Node 0 Normal: 1*4kB (U) 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  445.298881][T21047] Node 1 Normal: 3*4kB (UM) 6*8kB (U) 12*16kB (U) 10*32kB (UM) 5*64kB (U) 2*128kB (U) 4*256kB (UM) 7*512kB (UM) 4*1024kB (UM) 3*2048kB (UM) 954*4096kB (UM) = 3923580kB
[  445.299032][T21047] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  445.299047][T21047] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  445.299060][T21047] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  445.299074][T21047] Node 1 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  445.299087][T21047] 57329 total pagecache pages
[  445.299094][T21047] 1 pages in swap cache
[  445.299101][T21047] Free swap  = 124992kB
[  445.299107][T21047] Total swap = 124996kB
[  445.299114][T21047] 2097051 pages RAM
[  445.299121][T21047] 0 pages HighMem/MovableOnly
[  445.299127][T21047] 431313 pages reserved
[  445.299133][T21047] 0 pages cma reserved
[  445.799807][T21128] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.159694][T21144] kAFS: Invalid Command on /proc/fs/afs/cells file
[  446.171002][T21128] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.464549][T21128] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.619548][T21128] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  448.040244][T21223] CIFS mount error: No usable UNC path provided in device string!
[  448.040244][T21223] 
[  448.098774][T21223] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  448.249171][T21231] ACPI: Can not change Invalid GPE/Fixed Event status
[  448.725673][T21254] vivid-007: =================  START STATUS  =================
[  448.769079][T21254] vivid-007: Enable Output Cropping: true
[  448.801467][T21254] vivid-007: Enable Output Composing: true
[  448.840134][T21254] vivid-007: Enable Output Scaler: true
[  448.873734][T21254] vivid-007: Tx RGB Quantization Range: Automatic
[  448.909458][T21254] vivid-007: Transmit Mode: HDMI
[  448.931698][T21254] vivid-007: Hotplug Present: 0x00000000
[  448.957492][T21254] vivid-007: RxSense Present: 0x00000000
[  448.991148][T21254] vivid-007: EDID Present: 0x00000000
[  449.024505][T21254] vivid-007: ==================  END STATUS  ==================
[  450.561582][T21322] warning: `syz.2.6682' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  450.864371][T21332] bond0: option packets_per_slave: invalid value (Xµn‘pæ)
[  450.911804][T21332] bond0: option packets_per_slave: allowed values 0 - 65535
[  451.047706][T21341] block2mtd: Using custom MTD label '' for dev 
[  451.080753][T21341] block2mtd: error: cannot open device 
[  451.465157][T21359] 
[  455.165488][T21262] Bluetooth: hci1: unexpected subevent 0x0c length: 118 > 5
[  457.438920][T21623] hub 3-0:1.0: USB hub found
[  457.470454][T21623] hub 3-0:1.0: 1 port detected
[  457.519841][T21629] RDS: rds_bind could not find a transport for 7bc:c94c:4e37:70c4::, load rds_tcp or rds_rdma?
[  457.633784][T21623] usb usb3: authorized to connect
[  457.818484][   T29] audit: type=1800 audit(4294985872.593:39): pid=21638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6818" name="dbroot" dev="configfs" ino=52595 res=0 errno=0
[  460.900391][T21781] ptp ptp0: only physical clock in use now
[  461.147263][   T29] audit: type=1400 audit(4294985875.940:40): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=21791 comm="syz.2.6887"
[  463.158179][T21876] sg_write: data in/out 1685414155/2147479510 bytes for SCSI command 0x3-- guessing data in;
[  463.158179][T21876]    program syz.3.6923 not setting count and/or reply_len properly
[  463.770823][T21900] aoe: could not set interface list: too many interfaces
[  464.185670][   T29] audit: type=1806 audit(4294985878.986:41):  res=-14
[  466.718000][T22027] zswap: compressor Z(u not available
[  468.051608][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  468.061068][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  472.110869][T22280] binder: 22279:22280 ioctl 541b 0 returned -22
[  475.718968][T22422] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x18000
[  475.769804][T22422] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  475.822087][T22422] raw: 00fff00000002000 ffffea0000600008 ffffea0000600008 0000000000000000
[  475.868854][T22422] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  475.914379][T22422] page dumped because: unmovable page
[  475.945023][T22422] page_owner info is not present (never set?)
[  477.687908][T22514] cougar: G6 mapped to space
[  478.220581][T21262] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  478.220610][T21262] Bluetooth: hci3: unexpected subevent 0x0e length: 725 > 15
[  478.237893][T21262] Bluetooth: hci3: Unable to find connection for dst 00:a2:f2:94:be:c8 sid 0x4f
[  478.311658][T22541] vhci_hcd vhci_hcd.2: invalid port number 16
[  478.351193][T22541] vhci_hcd vhci_hcd.2: invalid port number 16
[  478.787518][T22561] usb usb15: usbfs: process 22561 (syz.0.7221) did not claim interface 0 before use
[  482.853747][   T29] audit: type=1800 audit(4294985897.753:42): pid=22728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7295" name="lu_gp_id" dev="configfs" ino=55684 res=0 errno=0
[  482.888063][T22728] kstrtoul() returned -22 for lu_gp_id
[  483.201622][T22702] x86/mm: Checked W+X mappings: passed, no W+X pages found.
[  484.105326][T22779] rtc_cmos PNP0B00:00: Alarms can be up to one day in the future
[  484.355076][T22789] scsi_strcpy_devinfo: vendor string 'íÙ/&cžÀ~n]	ò|
[  484.355076][T22789] MÅ' is too long
[  484.405245][T22789] scsi_strcpy_devinfo: model string '’Dd5‚ÕK€2bÛ
[  484.405245][T22789] ††½WÏõ›ú «ú' is too long
[  486.627107][T22895] vhci_hcd vhci_hcd.2: invalid port number 194
[  486.660189][T22895] vhci_hcd vhci_hcd.2: invalid port number 194
[  487.681613][T22945] usb usb13: check_ctrlrecip: process 22945 (syz.2.7389) requesting ep 01 but needs 81
[  487.728282][T22945] usb usb13: usbfs: process 22945 (syz.2.7389) did not claim interface 0 before use
[  489.474058][T23022] : Can't lookup blockdev
[  489.818775][T23037] program syz.2.7430 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  489.878929][T23037] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  492.837871][T23165] QAT: failed to copy from user cfg_data.
[  493.047241][   T29] audit: type=1800 audit(4294985907.996:43): pid=23172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7489" name="lu_gp_id" dev="configfs" ino=56933 res=0 errno=0
[  493.620944][T23200] sg_write: data in/out 262108/40 bytes for SCSI command 0x61-- guessing data in;
[  493.620944][T23200]    program syz.0.7501 not setting count and/or reply_len properly
[  494.135256][T23222] block2mtd: device name too long
[  494.893372][   T29] audit: type=1800 audit(4294985909.856:44): pid=23259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7527" name="lu_gp_id" dev="configfs" ino=57174 res=0 errno=0
[  495.277547][T23277] binder: 23274:23277 ioctl c0306201 0 returned -14
[  496.431307][T23328] openvswitch: netlink: Duplicate or invalid key (type 0).
[  499.004580][T23438] openvswitch: netlink: Duplicate or invalid key (type 0).
[  499.358983][T23452] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  500.028998][T23481] ecryptfs_miscdev_write: Dropping miscdev message of unrecognized type [0]
[  500.137124][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  500.146791][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  501.328284][T23535] netlink: zone id is out of range
[  501.352321][T23535] netlink: zone id is out of range
[  501.380205][T23535] netlink: zone id is out of range
[  501.409018][T23535] netlink: zone id is out of range
[  501.434334][T23535] netlink: zone id is out of range
[  501.467669][T23535] netlink: zone id is out of range
[  501.499309][T23535] netlink: zone id is out of range
[  501.517130][T23535] netlink: zone id is out of range
[  501.538443][T23535] netlink: zone id is out of range
[  501.567544][T23535] netlink: zone id is out of range
[  501.588987][T23535] netlink: zone id is out of range
[  501.618050][T23535] netlink: zone id is out of range
[  501.650860][T23535] netlink: zone id is out of range
[  501.687885][T23535] netlink: zone id is out of range
[  501.980808][T23562] sg_write: process 3717 (syz.0.7658) changed security contexts after opening file descriptor, this is not allowed.
[  503.475163][T23619] netlink: 'syz.2.7680': attribute type 11 has an invalid length.
[  503.508641][T23619] netlink: 'syz.2.7680': attribute type 11 has an invalid length.
[  503.508687][T23619] netlink: 'syz.2.7680': attribute type 11 has an invalid length.
[  506.621222][T21262] Bluetooth: hci2: unexpected subevent 0x18 length: 123 > 19
[  506.628785][T21262] Bluetooth: hci2: Unable to find connection for dst f9:56:cc:cc:70:a9 sid 0x00
[  507.190786][T23787] Zero length message leads to an empty skb
[  507.854861][T23813] net_ratelimit: 103 callbacks suppressed
[  507.854879][T23813] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  509.129753][T21262] Bluetooth: hci0: unexpected event 0x3e length: 726 > 260
[  509.129781][T21262] Bluetooth: hci0: unexpected subevent 0x0d length: 725 > 260
[  509.147872][T21262] Bluetooth: hci0: Unknown advertising packet type: 0x7f
[  509.148270][T21262] Bluetooth: hci0: Unknown advertising packet type: 0x1f
[  509.159120][T21262] Bluetooth: hci0: Unknown advertising packet type: 0x1c
[  509.166428][T21262] Bluetooth: hci0: Malformed LE Event: 0x0d
[  509.568114][T23883] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  510.115109][T23902] bond0: option lp_interval: invalid value ()
[  510.162409][T23902] bond0: option lp_interval: allowed values 1 - 2147483647
[  510.900094][T23938] nbd: must specify a size in bytes for the device
[  511.731820][T23972] nfs: Unknown parameter 'nl802154'
[  512.394090][T24016] program syz.1.7825 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  513.071090][T21262] Bluetooth: hci1: unexpected event 0x3e length: 508 > 260
[  513.071117][T21262] Bluetooth: hci1: unexpected subevent 0x02 length: 507 > 260
[  513.091504][T21262] Bluetooth: hci1: Dropping invalid advertising data
[  513.100146][T21262] Bluetooth: hci1: unknown advertising packet type: 0xe9
[  513.100175][T21262] Bluetooth: hci1: Dropping invalid advertising data
[  513.114983][T21262] Bluetooth: hci1: Malformed LE Event: 0x02
[  515.620685][T24169] openvswitch: netlink: Key 15 has unexpected len 16 expected 4
[  518.544560][T21262] Bluetooth: hci3: unexpected event 0x3e length: 726 > 260
[  518.544588][T21262] Bluetooth: hci3: unexpected subevent 0x0d length: 725 > 260
[  518.559768][T21262] Bluetooth: hci3: Unknown advertising packet type: 0x7f
[  518.559789][T21262] Bluetooth: hci3: adv larger than maximum supported
[  518.567164][T21262] Bluetooth: hci3: Unknown advertising packet type: 0x14
[  518.578798][T21262] Bluetooth: hci3: Malformed LE Event: 0x0d
[  520.119274][T24341] Format for adding new device is "id port_count num_queues" (uint uint uint).
[  520.439525][T21262] Bluetooth: hci2: unexpected event 0x3e length: 726 > 260
[  520.439576][T21262] Bluetooth: hci2: unexpected subevent 0x0d length: 725 > 260
[  520.455395][T21262] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  520.455419][T21262] Bluetooth: hci2: adv larger than maximum supported
[  520.463668][T21262] Bluetooth: hci2: Unknown advertising packet type: 0x3e
[  520.470993][T21262] Bluetooth: hci2: Unknown advertising packet type: 0x79
[  520.478817][T21262] Bluetooth: hci2: Unknown advertising packet type: 0x71
[  520.486376][T21262] Bluetooth: hci2: adv larger than maximum supported
[  520.494013][T21262] Bluetooth: hci2: Malformed LE Event: 0x0d
[  520.606644][   T29] audit: type=1107 audit(4294985935.709:45): pid=24355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  520.685653][   T29] audit: type=1107 audit(4294985935.730:46): pid=24355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  521.001659][T24368] netlink: 'syz.1.7929': attribute type 11 has an invalid length.
[  521.048259][T24368] netlink: 'syz.1.7929': attribute type 11 has an invalid length.
[  521.086307][T24368] netlink: 'syz.1.7929': attribute type 11 has an invalid length.
[  521.357615][T24381] MTRR 1 not used
[  522.281812][T24412] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7949'.
[  522.333295][T24412] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7949'.
[  522.615772][T21262] Bluetooth: hci2: unexpected event 0x3e length: 508 > 260
[  522.615800][T21262] Bluetooth: hci2: unexpected subevent 0x02 length: 507 > 260
[  522.632822][T21262] Bluetooth: hci2: Dropping invalid advertising data
[  522.639672][T21262] Bluetooth: hci2: unknown advertising packet type: 0xe9
[  522.639701][T21262] Bluetooth: hci2: Dropping invalid advertising data
[  522.658003][T21262] Bluetooth: hci2: Malformed LE Event: 0x02
[  523.998415][T21262] Bluetooth: hci3: unexpected event 0x3e length: 508 > 260
[  523.998442][T21262] Bluetooth: hci3: unexpected subevent 0x02 length: 507 > 260
[  524.014764][T21262] Bluetooth: hci3: Dropping invalid advertising data
[  524.024057][T21262] Bluetooth: hci3: unknown advertising packet type: 0xe9
[  524.024087][T21262] Bluetooth: hci3: Dropping invalid advertising data
[  524.039803][T21262] Bluetooth: hci3: Malformed LE Event: 0x02
[  525.349102][T24556] netlink: NAT attribute has 8 unknown bytes
[  526.063248][T24578] netlink: 'syz.3.8002': attribute type 1 has an invalid length.
[  526.703144][T24593] HfR: entered promiscuous mode
[  527.524534][T21262] Bluetooth: hci0: unexpected event 0x3e length: 508 > 260
[  527.524563][T21262] Bluetooth: hci0: unexpected subevent 0x02 length: 507 > 260
[  527.540932][T21262] Bluetooth: hci0: Dropping invalid advertising data
[  527.548739][T21262] Bluetooth: hci0: unknown advertising packet type: 0xe9
[  527.548769][T21262] Bluetooth: hci0: Dropping invalid advertising data
[  527.565283][T21262] Bluetooth: hci0: Malformed LE Event: 0x02
[  528.697849][T24689] tc_dump_action: action bad kind
[  529.056461][T24700] HfR: entered promiscuous mode
[  529.288470][T24711] netlink: 'syz.2.8047': attribute type 11 has an invalid length.
[  529.333084][T24711] netlink: 'syz.2.8047': attribute type 11 has an invalid length.
[  529.374843][T24711] netlink: 'syz.2.8047': attribute type 11 has an invalid length.
[  530.420145][T24750] netlink: 'syz.3.8064': attribute type 11 has an invalid length.
[  530.458688][T24750] netlink: 'syz.3.8064': attribute type 11 has an invalid length.
[  530.499267][T24750] netlink: 'syz.3.8064': attribute type 11 has an invalid length.
[  534.648834][T24921] FAULT_INJECTION: forcing a failure.
[  534.648834][T24921] name failslab, interval 1, probability 0, space 0, times 1
[  534.717146][T24921] CPU: 0 UID: 0 PID: 24921 Comm: syz.1.8118 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  534.717178][T24921] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  534.717185][T24921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  534.717200][T24921] Call Trace:
[  534.717208][T24921]  <TASK>
[  534.717216][T24921]  dump_stack_lvl+0x100/0x190
[  534.717243][T24921]  should_fail_ex.cold+0x5/0xa
[  534.717267][T24921]  should_failslab+0xc2/0x120
[  534.717289][T24921]  __kmalloc_node_track_caller_noprof+0xe3/0x850
[  534.717308][T24921]  ? kstrdup_const+0x63/0x80
[  534.717331][T24921]  kstrdup+0x51/0xe0
[  534.717350][T24921]  kstrdup_const+0x63/0x80
[  534.717368][T24921]  alloc_vfsmnt+0xe5/0x6a0
[  534.717392][T24921]  ? __pfx___might_resched+0x10/0x10
[  534.717414][T24921]  clone_mnt+0x4b/0x930
[  534.717433][T24921]  copy_tree+0xfc/0xbf0
[  534.717453][T24921]  ? __pfx_down_write+0x10/0x10
[  534.717477][T24921]  copy_mnt_ns+0x3fa/0x1180
[  534.717514][T24921]  ? __pfx_copy_mnt_ns+0x10/0x10
[  534.717541][T24921]  ? kmem_cache_alloc_noprof+0x292/0x6e0
[  534.717569][T24921]  ? create_new_namespaces+0x30/0xac0
[  534.717592][T24921]  ? rcu_is_watching+0x12/0xc0
[  534.717617][T24921]  create_new_namespaces+0xd3/0xac0
[  534.717639][T24921]  ? bpf_lsm_capable+0x9/0x10
[  534.717659][T24921]  ? security_capable+0x80/0x260
[  534.717686][T24921]  unshare_nsproxy_namespaces+0xf2/0x220
[  534.717711][T24921]  ksys_unshare+0x438/0xab0
[  534.717738][T24921]  ? __pfx_ksys_unshare+0x10/0x10
[  534.717763][T24921]  ? xfd_validate_state+0x129/0x190
[  534.717780][T24921]  ? ksys_write+0x1ac/0x250
[  534.717806][T24921]  __x64_sys_unshare+0x31/0x40
[  534.717833][T24921]  do_syscall_64+0x10b/0xf80
[  534.717859][T24921]  ? clear_bhb_loop+0x40/0x90
[  534.717880][T24921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  534.717899][T24921] RIP: 0033:0x7f9b5a59c819
[  534.717914][T24921] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  534.717931][T24921] RSP: 002b:00007f9b5b3f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  534.717949][T24921] RAX: ffffffffffffffda RBX: 00007f9b5a815fa0 RCX: 00007f9b5a59c819
[  534.717960][T24921] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000020000
[  534.717970][T24921] RBP: 00007f9b5a632c91 R08: 0000000000000000 R09: 0000000000000000
[  534.717980][T24921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  534.717990][T24921] R13: 00007f9b5a816038 R14: 00007f9b5a815fa0 R15: 00007ffd75ad45a8
[  534.718012][T24921]  </TASK>
[  536.478737][T24960] ucma_write: process 4227 (syz.3.8134) changed security contexts after opening file descriptor, this is not allowed.
[  536.569591][T24963] netlink: 'syz.2.8136': attribute type 1 has an invalid length.
[  537.334662][T24986] openvswitch: netlink: Tunnel attr 242 out of range max 16
[  538.067529][T21262] Bluetooth: hci1: unexpected event 0x3e length: 726 > 260
[  538.067558][T21262] Bluetooth: hci1: unexpected subevent 0x0d length: 725 > 260
[  538.083670][T21262] Bluetooth: hci1: Unknown advertising packet type: 0x7f
[  538.083691][T21262] Bluetooth: hci1: adv larger than maximum supported
[  538.090872][T21262] Bluetooth: hci1: Unknown advertising packet type: 0x77
[  538.098130][T21262] Bluetooth: hci1: Unknown advertising packet type: 0x73
[  538.105574][T21262] Bluetooth: hci1: adv larger than maximum supported
[  538.113194][T21262] Bluetooth: hci1: Malformed LE Event: 0x0d
[  539.819762][T25063] netlink: 342 bytes leftover after parsing attributes in process `syz.0.8177'.
[  541.705186][T25132] nbd: couldn't find a device at index 18109
[  541.734918][T25135] nbd: must specify an index to disconnect
[  542.701190][T25123] NFSD: Failed to start, no listeners configured.
[  543.360753][T25156] NFSD: Failed to start, no listeners configured.
[  544.153502][T25211] netlink: 'syz.0.8229': attribute type 11 has an invalid length.
[  544.195007][T25211] netlink: 'syz.0.8229': attribute type 11 has an invalid length.
[  544.237304][T25211] netlink: 'syz.0.8229': attribute type 11 has an invalid length.
[  545.217500][T25248] netlink: zone id is out of range
[  545.908054][T25274] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8256'.
[  546.433560][T25292] netlink: 'syz.1.8263': attribute type 1 has an invalid length.
[  546.915628][T25307] NFSD: Failed to start, no listeners configured.
[  547.156369][T25324] IPVS: length: 131 != 8
[  547.304789][T25326] sd 0:0:1:0: PR command failed: 1026
[  547.337963][T25326] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  547.368315][T25326] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  547.997273][T25350] NFSD: Failed to start, no listeners configured.
[  549.066467][T25404] openvswitch: netlink: IPv4 tunnel dst address is zero
[  550.280113][T25451] sctp: [Deprecated]: syz.1.8322 (pid 25451) Use of int in max_burst socket option deprecated.
[  550.280113][T25451] Use struct sctp_assoc_value instead
[  550.910702][T25477] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8334'.
[  551.004635][T21262] Bluetooth: hci0: ACL packet too small
[  554.320319][   T29] audit: type=1800 audit(4294985969.585:47): pid=25615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="" name="dbroot" dev="configfs" ino=64204 res=0 errno=0
[  554.832118][T25636] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  555.370356][T25658] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd12
[  556.628993][T25712] openvswitch: netlink: IP tunnel dst address not specified
[  557.549771][T25741] NFSD: Failed to start, no listeners configured.
[  559.079676][T25812] nfs: Unknown parameter '£m?¥ŒÁLH>®ï½¢^Ñe„°àko}*	 »'
[  561.260855][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  561.271037][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  561.475926][T25895] NFSD: Failed to start, no listeners configured.
[  564.454327][T25999] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  564.568281][T26003] netlink: 'syz.1.8542': attribute type 1 has an invalid length.
[  567.708506][T26105] block nbd2: not configured, cannot reconfigure
[  568.538812][T26132] netlink: 'syz.0.8603': attribute type 1 has an invalid length.
[  568.633013][T26136] FAULT_INJECTION: forcing a failure.
[  568.633013][T26136] name failslab, interval 1, probability 0, space 0, times 0
[  568.707378][T26136] CPU: 0 UID: 0 PID: 26136 Comm: syz.3.8596 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  568.707412][T26136] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  568.707419][T26136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  568.707429][T26136] Call Trace:
[  568.707438][T26136]  <TASK>
[  568.707448][T26136]  dump_stack_lvl+0x100/0x190
[  568.707472][T26136]  should_fail_ex.cold+0x5/0xa
[  568.707496][T26136]  should_failslab+0xc2/0x120
[  568.707518][T26136]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  568.707546][T26136]  ? alloc_empty_file+0x5b/0x1c0
[  568.707576][T26136]  alloc_empty_file+0x5b/0x1c0
[  568.707602][T26136]  alloc_file_pseudo+0x13a/0x230
[  568.707629][T26136]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  568.707656][T26136]  ? hugetlbfs_get_inode+0x3f5/0x700
[  568.707683][T26136]  hugetlb_file_setup+0x2a8/0x5b0
[  568.707711][T26136]  ksys_mmap_pgoff+0x242/0x610
[  568.707730][T26136]  ? __UNIQUE_ID_modinfo_714+0x63da8c83/0xffffffffffec9583
[  568.707757][T26136]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  568.707777][T26136]  ? xfd_validate_state+0x129/0x190
[  568.707795][T26136]  ? ksys_write+0x1ac/0x250
[  568.707818][T26136]  __x64_sys_mmap+0x125/0x190
[  568.707837][T26136]  ? __UNIQUE_ID_modinfo_714+0x63da8c83/0xffffffffffec9583
[  568.707863][T26136]  do_syscall_64+0x10b/0xf80
[  568.707889][T26136]  ? clear_bhb_loop+0x40/0x90
[  568.707910][T26136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  568.707928][T26136] RIP: 0033:0x7f137df9c819
[  568.707955][T26136] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  568.707973][T26136] RSP: 002b:00007f137ee82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  568.707991][T26136] RAX: ffffffffffffffda RBX: 00007f137e215fa0 RCX: 00007f137df9c819
[  568.708003][T26136] RDX: 0000000000000002 RSI: 0000000000000005 RDI: ffffffffff600700
[  568.708014][T26136] RBP: 00007f137e032c91 R08: 0000000000000401 R09: 0000300000000000
[  568.708025][T26136] R10: 0000000000040eb2 R11: 0000000000000246 R12: 0000000000000000
[  568.708036][T26136] R13: 00007f137e216038 R14: 00007f137e215fa0 R15: 00007ffcc97db078
[  568.708055][T26136]  ? __UNIQUE_ID_modinfo_714+0x63da8c83/0xffffffffffec9583
[  568.708083][T26136]  </TASK>
[  569.397777][T26148] NFSD: Failed to start, no listeners configured.
[  569.421762][T26160] zero sized request
[  569.779585][T26175] vivid-005: =================  START STATUS  =================
[  569.799941][T26175] vivid-005: Radio HW Seek Mode: Bounded
[  569.816388][T26175] vivid-005: Radio Programmable HW Seek: false
[  569.839304][T26175] vivid-005: RDS Rx I/O Mode: Block I/O
[  569.877137][T26175] vivid-005: Generate RBDS Instead of RDS: false
[  569.905959][T26175] vivid-005: RDS Reception: true
[  569.922515][T26175] vivid-005: RDS Program Type: 0 inactive
[  569.947107][T26175] vivid-005: RDS PS Name:  inactive
[  569.964191][T26175] vivid-005: RDS Radio Text:  inactive
[  569.982877][T26175] vivid-005: RDS Traffic Announcement: false inactive
[  570.027856][T26175] vivid-005: RDS Traffic Program: false inactive
[  570.063735][T26175] vivid-005: RDS Music: false inactive
[  570.103944][T26175] vivid-005: ==================  END STATUS  ==================
[  572.253461][T26268] netlink: zone id is out of range
[  574.227942][T26345] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8686'.
[  574.738479][T26368] openvswitch: netlink: IP tunnel dst address not specified
[  574.995967][T26375] netlink: 'syz.1.8699': attribute type 2 has an invalid length.
[  576.032303][T26414] queue_state_write: unsupported operation ''
[  576.070848][T26414] queue_state_write: use 'run', 'start' or 'kick'
[  576.322207][T26423] openvswitch: netlink: IP tunnel dst address not specified
[  576.527293][T26432] program syz.1.8724 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  577.673044][T26469] netlink: Unknown NAT attribute (type=262, max=9)
[  578.123411][T26488] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  578.689494][T26502] NFSD: Failed to start, no listeners configured.
[  578.967520][T26525] netlink: 'syz.3.8764': attribute type 11 has an invalid length.
[  579.797174][T26559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8778'.
[  579.810782][T26551] NFSD: Failed to start, no listeners configured.
[  580.559853][T26590] netlink: 'syz.2.8791': attribute type 1 has an invalid length.
[  581.754108][T26636] netlink: Invalid conntrack timeout
[  582.795448][T26684] sctp: [Deprecated]: syz.3.8832 (pid 26684) Use of struct sctp_assoc_value in delayed_ack socket option.
[  582.795448][T26684] Use struct sctp_sack_info instead
[  583.117189][T26698] futex_wake_op: syz.0.8836 tries to shift op by -1; fix this program
[  583.812948][T26726] netlink: 'syz.2.8850': attribute type 3 has an invalid length.
[  584.210151][T26739] NFSD: Failed to start, no listeners configured.
[  585.917776][T26822] delete_channel: no stack
[  586.851914][T26860] netlink: 'syz.3.8902': attribute type 11 has an invalid length.
[  586.895662][T26860] netlink: 'syz.3.8902': attribute type 11 has an invalid length.
[  586.953968][T26860] netlink: 'syz.3.8902': attribute type 11 has an invalid length.
[  588.799481][T26948] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  589.398124][T26975] openvswitch: netlink: VXLAN extension 0 has unexpected len 4 expected 0
[  589.653046][T26985] netlink: ct_mark mask cannot be 0
[  590.351432][T27015] FAULT_INJECTION: forcing a failure.
[  590.351432][T27015] name failslab, interval 1, probability 0, space 0, times 0
[  590.425909][T27015] CPU: 0 UID: 0 PID: 27015 Comm: syz.2.8959 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  590.425943][T27015] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  590.425957][T27015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  590.425967][T27015] Call Trace:
[  590.425974][T27015]  <TASK>
[  590.425981][T27015]  dump_stack_lvl+0x100/0x190
[  590.426006][T27015]  should_fail_ex.cold+0x5/0xa
[  590.426030][T27015]  should_failslab+0xc2/0x120
[  590.426051][T27015]  kmem_cache_alloc_noprof+0x7b/0x6e0
[  590.426079][T27015]  ? dup_fd+0x4d/0xd10
[  590.426100][T27015]  ? trace_kmalloc+0xe3/0x110
[  590.426123][T27015]  dup_fd+0x4d/0xd10
[  590.426147][T27015]  ? apparmor_task_alloc+0x2c1/0x3b0
[  590.426174][T27015]  copy_process+0x2965/0x7fa0
[  590.426209][T27015]  ? __pfx_copy_process+0x10/0x10
[  590.426234][T27015]  ? find_held_lock+0x2b/0x80
[  590.426264][T27015]  kernel_clone+0x12e/0x9c0
[  590.426287][T27015]  ? __pfx_futex_wait+0x10/0x10
[  590.426311][T27015]  ? __pfx_kernel_clone+0x10/0x10
[  590.426347][T27015]  __do_sys_clone+0xd9/0x120
[  590.426372][T27015]  ? __pfx___do_sys_clone+0x10/0x10
[  590.426405][T27015]  ? ksys_write+0x1ac/0x250
[  590.426427][T27015]  ? rcu_is_watching+0x12/0xc0
[  590.426451][T27015]  do_syscall_64+0x10b/0xf80
[  590.426477][T27015]  ? clear_bhb_loop+0x40/0x90
[  590.426499][T27015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  590.426516][T27015] RIP: 0033:0x7f7b3d19c819
[  590.426532][T27015] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  590.426548][T27015] RSP: 002b:00007f7b3e0a6fd8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  590.426567][T27015] RAX: ffffffffffffffda RBX: 00007f7b3d415fa0 RCX: 00007f7b3d19c819
[  590.426578][T27015] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000011
[  590.426588][T27015] RBP: 00007f7b3d232c91 R08: 0000000000000000 R09: 0000000000000000
[  590.426598][T27015] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  590.426608][T27015] R13: 00007f7b3d416038 R14: 00007f7b3d415fa0 R15: 00007ffe737536f8
[  590.426630][T27015]  </TASK>
[  593.151427][T27102] device-mapper: ioctl: Invalid data size in the ioctl structure: 0
[  595.309422][T27188] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[  597.087643][T27248] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  598.651701][T27303] futex_wake_op: syz.2.9075 tries to shift op by -1; fix this program
[  598.698208][T27307] netlink: Setting conntrack mark requires 'commit' flag.
[  598.823417][T27310] netlink: 'syz.1.9078': attribute type 1 has an invalid length.
[  599.486383][T27343] futex_wake_op: syz.1.9089 tries to shift op by -1; fix this program
[  601.260774][T27419] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9124'.
[  601.319615][T27421] netlink: 148 bytes leftover after parsing attributes in process `syz.0.9123'.
[  601.419825][T27425] device-mapper: ioctl: dm_ctl_ioctl: unknown command 0xeffffd1f
[  601.504319][T27429] tipc: Started in network mode
[  601.541799][T27429] tipc: Node identity ee00, cluster identity 4711
[  601.587349][T27429] tipc: Node number set to 60928
[  601.828479][T27442] netlink: 'syz.2.9133': attribute type 11 has an invalid length.
[  602.241611][T27455] openvswitch: netlink: Flow get message rejected, Key attribute missing.
[  602.388067][T27458] &#$@\]\-: entered promiscuous mode
[  605.627967][T27570] netlink: 'syz.3.9188': attribute type 1 has an invalid length.
[  605.667326][T27570] nbd: error processing sock list
[  606.520470][T27606] __vm_enough_memory: pid: 27606, comm: syz.2.9204, bytes: 4398046511104 not enough memory for the allocation
[  606.847577][T27619] netlink: NAT attribute type 0 has unexpected length (4 != 0)
[  611.557847][T27782] FAULT_INJECTION: forcing a failure.
[  611.557847][T27782] name failslab, interval 1, probability 0, space 0, times 0
[  611.623029][T27782] CPU: 0 UID: 0 PID: 27782 Comm: syz.1.9277 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  611.623062][T27782] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  611.623069][T27782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  611.623079][T27782] Call Trace:
[  611.623086][T27782]  <TASK>
[  611.623093][T27782]  dump_stack_lvl+0x100/0x190
[  611.623120][T27782]  should_fail_ex.cold+0x5/0xa
[  611.623144][T27782]  should_failslab+0xc2/0x120
[  611.623165][T27782]  __kmalloc_cache_noprof+0x7a/0x6f0
[  611.623191][T27782]  ? sctp_endpoint_new+0xfc/0xb20
[  611.623216][T27782]  sctp_endpoint_new+0xfc/0xb20
[  611.623238][T27782]  ? __pfx_sctp_endpoint_new+0x10/0x10
[  611.623257][T27782]  ? lockdep_init_map_type+0x5c/0x250
[  611.623277][T27782]  ? lockdep_init_map_type+0x5c/0x250
[  611.623294][T27782]  ? lockdep_init_map_type+0x5c/0x250
[  611.623311][T27782]  ? lockdep_init_map_type+0x5c/0x250
[  611.623332][T27782]  sctp_init_sock+0xe2b/0x1300
[  611.623352][T27782]  ? __pfx_sctp_init_sock+0x10/0x10
[  611.623372][T27782]  inet_create+0x94c/0x1060
[  611.623398][T27782]  ? inet_create+0x94/0x1060
[  611.623426][T27782]  __sock_create+0x339/0x860
[  611.623454][T27782]  __sys_socket+0x14d/0x260
[  611.623484][T27782]  ? __pfx___sys_socket+0x10/0x10
[  611.623508][T27782]  ? ksys_write+0x1ac/0x250
[  611.623534][T27782]  __x64_sys_socket+0x72/0xb0
[  611.623558][T27782]  ? lockdep_hardirqs_on+0x78/0x100
[  611.623585][T27782]  do_syscall_64+0x10b/0xf80
[  611.623611][T27782]  ? clear_bhb_loop+0x40/0x90
[  611.623632][T27782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.623651][T27782] RIP: 0033:0x7f9b5a59c819
[  611.623666][T27782] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  611.623683][T27782] RSP: 002b:00007f9b5b3f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  611.623701][T27782] RAX: ffffffffffffffda RBX: 00007f9b5a815fa0 RCX: 00007f9b5a59c819
[  611.623712][T27782] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000002
[  611.623722][T27782] RBP: 00007f9b5a632c91 R08: 0000000000000000 R09: 0000000000000000
[  611.623732][T27782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  611.623742][T27782] R13: 00007f9b5a816038 R14: 00007f9b5a815fa0 R15: 00007ffd75ad45a8
[  611.623764][T27782]  </TASK>
[  612.550844][T27805] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  612.604233][T27805] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  612.860912][T27818] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9291'.
[  613.357772][T27838] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  613.367918][T27836] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9298'.
[  614.697577][T27886] FAULT_INJECTION: forcing a failure.
[  614.697577][T27886] name failslab, interval 1, probability 0, space 0, times 0
[  614.760818][T27886] CPU: 0 UID: 0 PID: 27886 Comm: syz.3.9318 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  614.760850][T27886] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  614.760857][T27886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  614.760867][T27886] Call Trace:
[  614.760874][T27886]  <TASK>
[  614.760881][T27886]  dump_stack_lvl+0x100/0x190
[  614.760905][T27886]  should_fail_ex.cold+0x5/0xa
[  614.760929][T27886]  should_failslab+0xc2/0x120
[  614.760950][T27886]  kmem_cache_alloc_lru_noprof+0x80/0x6e0
[  614.760979][T27886]  ? __d_alloc+0x34/0xa40
[  614.761006][T27886]  __d_alloc+0x34/0xa40
[  614.761031][T27886]  d_alloc_pseudo+0x1c/0xc0
[  614.761048][T27886]  alloc_file_pseudo+0xcf/0x230
[  614.761076][T27886]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  614.761108][T27886]  __shmem_file_setup+0x205/0x460
[  614.761134][T27886]  ? __pfx___shmem_file_setup+0x10/0x10
[  614.761160][T27886]  ? vm_area_alloc+0x1f/0x160
[  614.761193][T27886]  shmem_zero_setup+0x96/0x1b0
[  614.761212][T27886]  __mmap_region+0x24e7/0x2da0
[  614.761243][T27886]  ? __pfx___mmap_region+0x10/0x10
[  614.761271][T27886]  ? __lock_acquire+0x4a5/0x2630
[  614.761289][T27886]  ? rcu_is_watching+0x12/0xc0
[  614.761310][T27886]  ? trace_pelt_se_tp+0x13b/0x190
[  614.761348][T27886]  ? __lock_acquire+0x4a5/0x2630
[  614.761365][T27886]  ? do_raw_spin_unlock+0x145/0x1e0
[  614.761386][T27886]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  614.761423][T27886]  ? rcu_is_watching+0x12/0xc0
[  614.761453][T27886]  ? rcu_is_watching+0x12/0xc0
[  614.761474][T27886]  ? finish_task_switch.isra.0+0x2cb/0x1010
[  614.761497][T27886]  ? lockdep_hardirqs_on+0x78/0x100
[  614.761558][T27886]  mmap_region+0x35d/0x620
[  614.761586][T27886]  ? rcu_is_watching+0x12/0xc0
[  614.761607][T27886]  ? __pfx_mmap_region+0x10/0x10
[  614.761637][T27886]  ? cap_mmap_addr+0x4b/0x120
[  614.761660][T27886]  ? bpf_lsm_mmap_addr+0x9/0x30
[  614.761676][T27886]  ? security_mmap_addr+0x71/0x1e0
[  614.761693][T27886]  ? __get_unmapped_area+0x255/0x3e0
[  614.761718][T27886]  do_mmap+0xc63/0x12f0
[  614.761743][T27886]  ? __pfx_do_mmap+0x10/0x10
[  614.761764][T27886]  ? __pfx_down_write_killable+0x10/0x10
[  614.761788][T27886]  vm_mmap_pgoff+0x29e/0x470
[  614.761819][T27886]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  614.761843][T27886]  ? do_futex+0x192/0x350
[  614.761862][T27886]  ? __pfx_do_futex+0x10/0x10
[  614.761886][T27886]  ksys_mmap_pgoff+0xe4/0x610
[  614.761908][T27886]  ? __x64_sys_futex+0x358/0x4d0
[  614.761928][T27886]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  614.761948][T27886]  ? xfd_validate_state+0x129/0x190
[  614.761967][T27886]  ? ksys_write+0x1ac/0x250
[  614.761990][T27886]  __x64_sys_mmap+0x125/0x190
[  614.762013][T27886]  do_syscall_64+0x10b/0xf80
[  614.762039][T27886]  ? clear_bhb_loop+0x40/0x90
[  614.762060][T27886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  614.762079][T27886] RIP: 0033:0x7f137df9c819
[  614.762094][T27886] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  614.762111][T27886] RSP: 002b:00007f137ee82028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  614.762129][T27886] RAX: ffffffffffffffda RBX: 00007f137e215fa0 RCX: 00007f137df9c819
[  614.762140][T27886] RDX: 0000000000000003 RSI: 0000000002020009 RDI: 0000000000000000
[  614.762150][T27886] RBP: 00007f137e032c91 R08: fffffffffffffffa R09: 0000000000008000
[  614.762160][T27886] R10: 0000009000000eb1 R11: 0000000000000246 R12: 0000000000000000
[  614.762171][T27886] R13: 00007f137e216038 R14: 00007f137e215fa0 R15: 00007ffcc97db078
[  614.762193][T27886]  </TASK>
[  615.616496][T27894] openvswitch: netlink: Geneve opt len 1 is not a multiple of 4.
[  616.386223][T27930] openvswitch: netlink: Multiple metadata blocks provided
[  618.056620][T27986] nbd: illegal input index 37139
[  618.207617][T27991] netlink: 'syz.1.9361': attribute type 2 has an invalid length.
[  618.241654][T27991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9361'.
[  618.507286][T28004] netlink: 'syz.3.9367': attribute type 1 has an invalid length.
[  618.846417][T28016] nbd: couldn't find device at index 33904
[  619.934276][T28068] openvswitch: netlink: Key type 261 is out of range max 32
[  620.383614][T28087] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  620.391800][T28087] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  621.449913][T28135] openvswitch: netlink: ct_state flags aa1414ac unsupported
[  621.690622][T28145] netlink: 'syz.0.9426': attribute type 1 has an invalid length.
[  622.381005][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  622.391131][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  624.466565][   T29] audit: type=1800 audit(4294986040.099:48): pid=28242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.9470" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  624.688645][T28250] openvswitch: netlink: IP tunnel dst address not specified
[  624.701208][T28255] __vm_enough_memory: pid: 28255, comm: syz.1.9475, bytes: 4398046457856 not enough memory for the allocation
[  625.083463][T28269] netlink: 'syz.3.9481': attribute type 2 has an invalid length.
[  625.218847][   T29] audit: type=1800 audit(4294986040.853:49): pid=28276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9482" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  625.404831][T28282] netlink: 'syz.0.9486': attribute type 23 has an invalid length.
[  625.638665][T28293] FAULT_INJECTION: forcing a failure.
[  625.638665][T28293] name failslab, interval 1, probability 0, space 0, times 0
[  625.701342][T28293] CPU: 0 UID: 0 PID: 28293 Comm: syz.0.9491 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  625.701375][T28293] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  625.701382][T28293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  625.701393][T28293] Call Trace:
[  625.701399][T28293]  <TASK>
[  625.701407][T28293]  dump_stack_lvl+0x100/0x190
[  625.701432][T28293]  should_fail_ex.cold+0x5/0xa
[  625.701455][T28293]  ? tomoyo_realpath_from_path+0xb6/0x690
[  625.701475][T28293]  should_failslab+0xc2/0x120
[  625.701496][T28293]  __kmalloc_noprof+0xe0/0x850
[  625.701523][T28293]  ? kfree+0x1dd/0x6c0
[  625.701560][T28293]  tomoyo_realpath_from_path+0xb6/0x690
[  625.701585][T28293]  tomoyo_mount_acl+0x1b6/0x8b0
[  625.701602][T28293]  ? is_bpf_text_address+0x8a/0x1a0
[  625.701627][T28293]  ? bpf_ksym_find+0x124/0x1c0
[  625.701645][T28293]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  625.701681][T28293]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  625.701698][T28293]  ? kernel_text_address+0x8d/0x100
[  625.701718][T28293]  ? unwind_get_return_address+0x59/0xa0
[  625.701765][T28293]  ? tomoyo_domain+0xb2/0x150
[  625.701787][T28293]  ? tomoyo_profile+0x47/0x60
[  625.701813][T28293]  tomoyo_mount_permission+0x214/0x460
[  625.701830][T28293]  ? tomoyo_mount_permission+0x1f6/0x460
[  625.701850][T28293]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  625.701882][T28293]  security_sb_mount+0xdd/0x270
[  625.701910][T28293]  path_mount+0x158/0x23d0
[  625.701939][T28293]  ? __pfx_path_mount+0x10/0x10
[  625.701961][T28293]  ? lockdep_hardirqs_on+0x78/0x100
[  625.701990][T28293]  ? putname+0xb1/0x110
[  625.702012][T28293]  ? kmem_cache_free+0x127/0x6c0
[  625.702045][T28293]  ? __x64_sys_mount+0x293/0x310
[  625.702067][T28293]  __x64_sys_mount+0x293/0x310
[  625.702092][T28293]  ? __pfx___x64_sys_mount+0x10/0x10
[  625.702119][T28293]  ? rcu_is_watching+0x12/0xc0
[  625.702143][T28293]  do_syscall_64+0x10b/0xf80
[  625.702169][T28293]  ? clear_bhb_loop+0x40/0x90
[  625.702191][T28293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  625.702210][T28293] RIP: 0033:0x7f9e7ad9c819
[  625.702226][T28293] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  625.702242][T28293] RSP: 002b:00007f9e7bc45028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  625.702260][T28293] RAX: ffffffffffffffda RBX: 00007f9e7b015fa0 RCX: 00007f9e7ad9c819
[  625.702271][T28293] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000000000000000
[  625.702284][T28293] RBP: 00007f9e7ae32c91 R08: 0000000000000000 R09: 0000000000000000
[  625.702295][T28293] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  625.702305][T28293] R13: 00007f9e7b016038 R14: 00007f9e7b015fa0 R15: 00007ffd90c8da38
[  625.702328][T28293]  </TASK>
[  625.705492][T28293] ERROR: Out of memory at tomoyo_realpath_from_path.
[  626.359380][T28309] ksmbd: Unknown IPC event: 14, ignore.
[  626.408719][   T29] audit: type=1800 audit(4294986041.999:50): pid=28306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.9497" name="SYSV00000008" dev="hugetlbfs" ino=0 res=0 errno=0
[  627.819231][T28369] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !PjEùrõ£Ò„yù*›"¤l-ý¤ôyÂ–ú„
[  629.084928][T28425] tipc: Started in network mode
[  629.098703][T28425] tipc: Node identity ffffffff, cluster identity 4711
[  629.116662][T28425] tipc: Node number set to 4294967295
[  630.206611][T28452] netlink: 206 bytes leftover after parsing attributes in process `syz.3.9555'.
[  630.522768][T28462] openvswitch: netlink: Message has 4 unknown bytes.
[  630.736829][T28471] openvswitch: netlink: VXLAN extension 64 out of range max 1
[  630.791819][T28472] : entered promiscuous mode
[  631.023292][T28484] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9569'.
[  632.416882][T28529] openvswitch: netlink: VXLAN extension 64 out of range max 1
[  632.612162][T28536] smc: net device dummy0 applied user defined pnetid DUMMY0
[  633.511426][T28576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9608'.
[  635.068732][T28643] ptrace attach of "./syz-executor exec"[5840] was attempted by ""[28643]
[  635.879772][T28678] netlink: 276 bytes leftover after parsing attributes in process `syz.0.9654'.
[  636.131218][T28689] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  637.300029][T28735] openvswitch: netlink: Flow actions attr not present in new flow.
[  637.532844][T28743] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  637.586177][T28748] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  637.626809][T28748] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  637.689645][    T9] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  637.726432][T28742] ACPI Error: Could not disable RealTimeClock events (20251212/evxfevnt-243)
[  637.812398][T28754] ALSA: mixer_oss: invalid OSS volume ',e×&¹°EóR•¿$oêÕi< Ž\#Z¹’²Êé\'
[  638.142592][T28766] netlink: ct family unspecified
[  639.531362][T28797] netlink: 'syz.0.9710': attribute type 1 has an invalid length.
[  640.292591][T28824] No such timeout policy ""
[  640.325132][T28824] netlink: Failed to associated timeout policy ''
[  641.073841][T21262] Bluetooth: hci3: unexpected event 0x3e length: 358 > 260
[  641.073872][T21262] Bluetooth: hci3: unexpected subevent 0x1b length: 357 > 260
[  642.337773][T28918] netlink: 'syz.3.9768': attribute type 2 has an invalid length.
[  643.152291][T28953] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9785'.
[  643.457773][T28967] netlink: 'syz.2.9792': attribute type 1 has an invalid length.
[  643.645838][T28973] program syz.2.9795 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  644.170281][T28994] tc_dump_action: action bad kind
[  646.766319][T29076] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9840'.
[  647.181244][T29094] netlink: NAT attribute has 4 unknown bytes
[  647.301886][T29098] netlink: 'syz.3.9852': attribute type 1 has an invalid length.
[  648.405381][T29148] openvswitch: netlink: Flow key attr not present in new flow.
[  649.176503][T29180] netlink: 'syz.2.9891': attribute type 1 has an invalid length.
[  649.573377][T29198] netlink: 3 bytes leftover after parsing attributes in process `syz.2.9900'.
[  651.202614][T29264] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  651.209118][T29264] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  652.971530][T29332] netlink: Unknown nat attribute (0)
[  654.096780][T29381] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9981'.
[  655.215959][T29434] openvswitch: netlink: Port -2134900732 exceeds max allowable 65535
[  655.542293][T29450] openvswitch: netlink: IP tunnel dst address not specified
[  656.177030][T29458] syz.0.10015 (29458) used greatest stack depth: 19720 bytes left
[  658.256885][T29558] cifs: Unknown parameter 'T.ŸÜÛæ¨Å¼c[ŸÐê€$âæµÈ)ü±UóÃ‘nEó-Ê™¾l®öÚ-ºŒ	-¾_€™¯Ôåáª5Zäoåé¢mžÐfwYÍhº*/ÿxDlÝ©Š×ígÕkÇAí³ùÏ7ÍØØ9’ôXöa/fê_ÿAR£ˆ™‘ÈxM	‚v¬—pÿ±$^;ôØq‡3±«£nì¡µ-6©+e„k„¾ñÇ<°kœcÔ)n.üeMÍ÷Na¨t®ÐSMÎÆ1,'
[  660.158991][T29642] openvswitch: netlink: IP tunnel dst address not specified
[  663.716716][T29773] netlink: 'syz.0.10158': attribute type 1 has an invalid length.
[  663.773604][T29775] netlink: 'syz.3.10159': attribute type 11 has an invalid length.
[  663.811521][T29775] netlink: 'syz.3.10159': attribute type 11 has an invalid length.
[  663.851924][T29775] netlink: 'syz.3.10159': attribute type 11 has an invalid length.
[  666.252240][   T29] audit: type=1326 audit(4295032862.041:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29886 comm="syz.1.10209" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f9b5a59c819 code=0x0
[  666.747292][T29910] openvswitch: netlink: IPv6 tunnel dst address is zero
[  667.006558][T29916] HSR: entered promiscuous mode
[  667.040611][T29921] delete_channel: no stack
[  667.201770][T29926] random: crng reseeded on system resumption
[  668.765020][T29994] netlink: 28 bytes leftover after parsing attributes in process `syz.0.10255'.
[  668.815753][T29994] netlink: 29 bytes leftover after parsing attributes in process `syz.0.10255'.
[  670.074694][T30037] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  671.116775][T30063] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  671.244688][T30019] kexec: Could not allocate control_code_buffer
[  671.854703][T30093] tc_dump_action: action bad kind
[  672.218350][T30109] netlink: 'syz.1.10309': attribute type 1 has an invalid length.
[  672.587448][T30123] openvswitch: netlink: VXLAN extension message has 4 unknown bytes.
[  674.203174][T30189] openvswitch: netlink: Multiple metadata blocks provided
[  674.223502][T30190] delete_channel: no stack
[  674.837764][T30216] tc_dump_action: action bad kind
[  676.249454][T30270] openvswitch: netlink: Key type 29 is not supported
[  676.658857][T30289] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10394'.
[  676.693860][T30291] netlink: zone id is out of range
[  676.715561][T30291] netlink: zone id is out of range
[  676.746182][T30291] netlink: zone id is out of range
[  676.767185][T30291] netlink: zone id is out of range
[  676.793084][T30291] netlink: zone id is out of range
[  676.821796][T30291] netlink: zone id is out of range
[  676.845524][T30291] netlink: zone id is out of range
[  677.529214][T30313] netlink: 'syz.2.10404': attribute type 2 has an invalid length.
[  679.349579][T30383] netlink: 'syz.1.10440': attribute type 11 has an invalid length.
[  680.095105][T30412] vhci_hcd: not connected 4
[  681.855239][T30482] netlink: 'syz.0.10484': attribute type 1 has an invalid length.
[  683.379794][T30549] net_ratelimit: 5 callbacks suppressed
[  683.379812][T30549] openvswitch: netlink: Message has 4 unknown bytes.
[  683.504380][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  683.515910][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  684.124254][T30581] block nbd0: Unsupported socket: should be TCP or UNIX.
[  684.509044][T30594] device-mapper: ioctl: Unable to rename non-existent device,  to „
[  687.344900][T30700] ovs_: entered promiscuous mode
[  687.398470][T21262] Bluetooth: hci0: Malformed HCI Event
[  687.790943][   T29] audit: type=1804 audit(4295032883.683:52): pid=30716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.10587" name="file0" dev="tmpfs" ino=12719 res=1 errno=0
[  689.807351][T30835] sctp: [Deprecated]: syz.2.10619 (pid 30835) Use of int in max_burst socket option.
[  689.807351][T30835] Use struct sctp_assoc_value instead
[  690.646239][T30859] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10628'.
[  691.206691][T30879] bridge0: port 3(veth0_to_bridge) entered blocking state
[  691.227632][T30879] bridge0: port 3(veth0_to_bridge) entered disabled state
[  691.244852][T30879] veth0_to_bridge: entered allmulticast mode
[  691.261526][T30879] veth0_to_bridge: entered promiscuous mode
[  691.276059][T30879] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  691.307268][T30879] bridge0: port 3(veth0_to_bridge) entered blocking state
[  691.316545][T30879] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  691.553472][T30885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10641'.
[  692.803287][T30925] bridge0: port 3(batadv0) entered blocking state
[  692.834144][T30925] bridge0: port 3(batadv0) entered disabled state
[  692.855206][T30925] batadv0: entered allmulticast mode
[  692.879653][T30925] batadv0: entered promiscuous mode
[  692.904601][T30925] bridge0: port 3(batadv0) entered blocking state
[  692.911217][T30925] bridge0: port 3(batadv0) entered forwarding state
[  693.037058][T22173] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  693.047365][T22173] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  694.037025][T30964] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10676'.
[  694.660675][T30978] bridge0: port 3(ipvlan1) entered blocking state
[  694.691063][T30978] bridge0: port 3(ipvlan1) entered disabled state
[  694.721533][T30978] ipvlan1: entered allmulticast mode
[  694.741596][T30978] veth0_vlan: entered allmulticast mode
[  694.791652][T30978] ipvlan1: left allmulticast mode
[  694.808303][T30978] veth0_vlan: left allmulticast mode
[  695.910573][T31018] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  695.917117][T31018] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  696.699831][T31043] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10709'.
[  698.677660][T31105] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10736'.
[  698.724219][T31105] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10736'.
[  702.510413][T31197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10773'.
[  702.572513][T31198] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10774'.
[  707.544980][T31300] GUP no longer grows the stack in syz.1.10820 (31300): 5000-401000 (4000)
[  707.615672][T31300] CPU: 0 UID: 0 PID: 31300 Comm: syz.1.10820 Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  707.615706][T31300] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  707.615713][T31300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  707.615724][T31300] Call Trace:
[  707.615730][T31300]  <TASK>
[  707.615738][T31300]  dump_stack_lvl+0x100/0x190
[  707.615763][T31300]  gup_vma_lookup.cold+0x83/0x96
[  707.615790][T31300]  __get_user_pages+0x241/0x32a0
[  707.615821][T31300]  ? register_lock_class+0x40/0x560
[  707.615840][T31300]  ? __kmalloc_noprof+0x301/0x850
[  707.615868][T31300]  ? __pfx___get_user_pages+0x10/0x10
[  707.615889][T31300]  ? do_syscall_64+0x10b/0xf80
[  707.615922][T31300]  __gup_longterm_locked+0x87d/0x16f0
[  707.615944][T31300]  ? __lock_acquire+0x4a5/0x2630
[  707.615965][T31300]  ? __pfx___gup_longterm_locked+0x10/0x10
[  707.615998][T31300]  pin_user_pages_remote+0xed/0x140
[  707.616022][T31300]  ? __pfx_pin_user_pages_remote+0x10/0x10
[  707.616053][T31300]  process_vm_rw_core.constprop.0+0x412/0x950
[  707.616076][T31300]  ? preempt_schedule_thunk+0x16/0x30
[  707.616116][T31300]  ? __pfx_process_vm_rw_core.constprop.0+0x10/0x10
[  707.616137][T31300]  ? import_ubuf+0x1b6/0x220
[  707.616172][T31300]  ? iovec_from_user+0xda/0x140
[  707.616201][T31300]  process_vm_rw+0x226/0x2d0
[  707.616222][T31300]  ? __pfx_process_vm_rw+0x10/0x10
[  707.616240][T31300]  ? __pfx_futex_wake+0x10/0x10
[  707.616287][T31300]  ? xfd_validate_state+0x129/0x190
[  707.616305][T31300]  ? __task_pid_nr_ns+0x1ca/0x510
[  707.616336][T31300]  __x64_sys_process_vm_readv+0xe2/0x1c0
[  707.616356][T31300]  ? do_syscall_64+0x90/0xf80
[  707.616382][T31300]  ? lockdep_hardirqs_on+0x78/0x100
[  707.616408][T31300]  do_syscall_64+0x10b/0xf80
[  707.616433][T31300]  ? clear_bhb_loop+0x40/0x90
[  707.616455][T31300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  707.616474][T31300] RIP: 0033:0x7f9b5a59c819
[  707.616490][T31300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  707.616507][T31300] RSP: 002b:00007f9b5b3f5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  707.616525][T31300] RAX: ffffffffffffffda RBX: 00007f9b5a815fa0 RCX: 00007f9b5a59c819
[  707.616537][T31300] RDX: 0000000000000001 RSI: 0000200000000000 RDI: 0000000000001583
[  707.616547][T31300] RBP: 00007f9b5a632c91 R08: 0000000000000006 R09: 0000000000000000
[  707.616558][T31300] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000
[  707.616568][T31300] R13: 00007f9b5a816038 R14: 00007f9b5a815fa0 R15: 00007ffd75ad45a8
[  707.616590][T31300]  </TASK>
[  710.356138][T31362] tunl0: entered allmulticast mode
[  711.153590][T31390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10862'.
[  711.191327][T31392] netlink: 350 bytes leftover after parsing attributes in process `syz.3.10861'.
[  712.609015][T31447] netlink: 'syz.0.10883': attribute type 33 has an invalid length.
[  713.800814][T31494] sctp: [Deprecated]: syz.0.10892 (pid 31494) Use of int in maxseg socket option.
[  713.800814][T31494] Use struct sctp_assoc_value instead
[  713.901111][T31496] netlink: 342 bytes leftover after parsing attributes in process `syz.1.10893'.
[  714.507577][T31519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10902'.
[  714.525998][T31520] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10900'.
[  715.662225][T31558] netlink: 346 bytes leftover after parsing attributes in process `syz.2.10920'.
[  716.009233][T31570] netlink: 334 bytes leftover after parsing attributes in process `syz.0.10925'.
[  716.619601][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.632485][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.645208][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.657555][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.670116][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.682555][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.694915][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.707502][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.720009][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  716.732683][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.597907][    C0] net_ratelimit: 19695 callbacks suppressed
[  721.597929][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.616230][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.628466][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.640955][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.653394][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.665932][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.678692][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.691171][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.704194][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  721.716550][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.581966][    C0] net_ratelimit: 20296 callbacks suppressed
[  726.581987][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.600279][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.612591][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.624928][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.637382][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.649745][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.662217][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.674599][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.687129][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  726.699747][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.566162][    C0] net_ratelimit: 20404 callbacks suppressed
[  731.566182][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.584794][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.597179][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.609555][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.621868][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.634247][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.646808][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.659337][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.671626][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  731.684246][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.550189][    C0] net_ratelimit: 20401 callbacks suppressed
[  736.550210][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.568622][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.581025][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.593465][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.605971][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.618341][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.631136][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.643473][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.655948][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  736.668233][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.534188][    C0] net_ratelimit: 20380 callbacks suppressed
[  741.534209][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.552729][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.565085][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.577351][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.589571][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.602051][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.614502][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.626792][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.639265][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  741.651825][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.518376][    C0] net_ratelimit: 20332 callbacks suppressed
[  746.518396][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.536884][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.549167][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.561461][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.573702][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.585934][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.598387][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.610681][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.622926][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  746.635146][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.502545][    C0] net_ratelimit: 20396 callbacks suppressed
[  751.502565][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  751.521062][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.533532][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.545819][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  751.558339][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.570738][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.583335][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  751.596036][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.608619][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  751.620935][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  756.486424][    C0] net_ratelimit: 20587 callbacks suppressed
[  756.486446][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.504975][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  756.517691][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.530094][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.542756][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  756.555249][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.567769][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.580225][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  756.592619][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  756.605106][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.470690][    C0] net_ratelimit: 20577 callbacks suppressed
[  761.470711][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  761.489419][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.501802][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.514125][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  761.526824][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.539199][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.551829][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  761.564318][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.576910][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  761.589236][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  766.454544][    C0] net_ratelimit: 20575 callbacks suppressed
[  766.454565][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.472881][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  766.485140][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.497381][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.509646][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  766.521991][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.534254][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.546582][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  766.558938][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  766.571524][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.438762][    C0] net_ratelimit: 20464 callbacks suppressed
[  771.438782][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.457199][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.469574][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  771.481930][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.494451][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.506902][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  771.519162][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.531408][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  771.543888][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  771.556340][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.422897][    C0] net_ratelimit: 20192 callbacks suppressed
[  776.422917][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.441106][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.453580][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  776.466096][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.478433][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.490754][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  776.503184][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.515587][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  776.527931][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  776.540608][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.406951][    C0] net_ratelimit: 20504 callbacks suppressed
[  781.406973][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.425390][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.437781][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  781.450557][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.462862][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.475136][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  781.487498][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.499767][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  781.512110][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  781.525026][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.390836][    C0] net_ratelimit: 20704 callbacks suppressed
[  786.390856][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  786.409686][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.422220][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.434709][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  786.447176][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.459577][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.472037][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  786.484373][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.496698][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  786.509118][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  791.375035][    C0] net_ratelimit: 20593 callbacks suppressed
[  791.375056][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.393474][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  791.405799][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.418148][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.430365][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  791.442704][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.455019][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.467324][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  791.479608][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  791.491896][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.359048][    C0] net_ratelimit: 20635 callbacks suppressed
[  796.359069][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.377770][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.389992][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  796.402645][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.414953][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.427165][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  796.439582][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.452013][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  796.464397][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  796.476701][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  798.130390][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  801.343182][    C0] net_ratelimit: 20750 callbacks suppressed
[  801.343205][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.362174][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.374617][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  801.387311][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.399714][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.412068][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  801.424369][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.436591][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  801.448905][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  801.461348][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.327192][    C0] net_ratelimit: 20531 callbacks suppressed
[  806.327212][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.345705][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.358162][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  806.370857][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.383092][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.395343][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  806.407594][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.419900][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  806.432295][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  806.444613][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.311423][    C0] net_ratelimit: 20547 callbacks suppressed
[  811.311444][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.329739][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  811.342254][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.354653][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.366993][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  811.379346][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.391582][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.403797][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  811.416270][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  811.428930][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.295420][    C0] net_ratelimit: 20572 callbacks suppressed
[  816.295441][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.314254][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.326681][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  816.339406][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.351850][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.364500][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  816.376961][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.389462][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  816.402091][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  816.414558][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.279465][    C0] net_ratelimit: 20705 callbacks suppressed
[  821.279484][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.298187][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.310552][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  821.322841][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.335399][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.347827][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  821.360337][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.372917][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  821.385362][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  821.398266][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  822.095155][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  822.102190][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5839/1:b..l P9/2:b..l P31575/1:b..l P31587/1:b..l P31586/1:b..l
[  822.115251][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=238145, q=512 ncpus=1)
[  822.123231][    C0] task:syz.1.10934     state:R  running task     stack:27128 pid:31586 tgid:31586 ppid:5841   task_flags:0x40004c flags:0x00080000
[  822.138313][    C0] Call Trace:
[  822.141995][    C0]  <TASK>
[  822.144976][    C0]  __schedule+0x10e9/0x6820
[  822.149605][    C0]  ? __pfx___schedule+0x10/0x10
[  822.154488][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.159908][    C0]  preempt_schedule_common+0x42/0xc0
[  822.165228][    C0]  preempt_schedule_thunk+0x16/0x30
[  822.170586][    C0]  _raw_spin_unlock+0x3e/0x50
[  822.175373][    C0]  __zap_vma_range+0x1791/0x4bf0
[  822.180341][    C0]  ? __pfx___zap_vma_range+0x10/0x10
[  822.185650][    C0]  ? find_held_lock+0x2b/0x80
[  822.190525][    C0]  unmap_vmas+0x299/0x5f0
[  822.194860][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  822.199721][    C0]  exit_mmap+0x1ef/0xa10
[  822.203966][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  822.208752][    C0]  ? rcu_is_watching+0x12/0xc0
[  822.213545][    C0]  __mmput+0x12a/0x410
[  822.217618][    C0]  mmput+0x67/0x80
[  822.221355][    C0]  do_exit+0x833/0x2a60
[  822.225520][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.230988][    C0]  ? __pfx_do_exit+0x10/0x10
[  822.235578][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.240959][    C0]  do_group_exit+0xd5/0x2a0
[  822.245468][    C0]  __x64_sys_exit_group+0x3e/0x50
[  822.250591][    C0]  x64_sys_call+0x102c/0x1530
[  822.255283][    C0]  do_syscall_64+0x10b/0xf80
[  822.259880][    C0]  ? clear_bhb_loop+0x40/0x90
[  822.264643][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.270648][    C0] RIP: 0033:0x7f9b5a59c819
[  822.275060][    C0] RSP: 002b:00007ffd75ad48e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  822.283478][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9b5a59c819
[  822.291466][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  822.299428][    C0] RBP: 00007ffd75ad494c R08: 0000000000000000 R09: 00000000000927c0
[  822.307396][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000aba
[  822.315367][    C0] R13: 00000000000927c0 R14: 00000000000af937 R15: 00007ffd75ad49a0
[  822.323351][    C0]  </TASK>
[  822.326380][    C0] task:syz.3.10932     state:R  running task     stack:27128 pid:31587 tgid:31587 ppid:5840   task_flags:0x40004c flags:0x00080000
[  822.339883][    C0] Call Trace:
[  822.343174][    C0]  <TASK>
[  822.346119][    C0]  __schedule+0x10e9/0x6820
[  822.350653][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  822.356008][    C0]  ? __pfx___schedule+0x10/0x10
[  822.360882][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.366269][    C0]  preempt_schedule_common+0x42/0xc0
[  822.371622][    C0]  preempt_schedule_thunk+0x16/0x30
[  822.376830][    C0]  _raw_spin_unlock+0x3e/0x50
[  822.381507][    C0]  __zap_vma_range+0x1791/0x4bf0
[  822.386464][    C0]  ? __pfx___zap_vma_range+0x10/0x10
[  822.391883][    C0]  ? find_held_lock+0x2b/0x80
[  822.396674][    C0]  unmap_vmas+0x299/0x5f0
[  822.401013][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[  822.405862][    C0]  ? mas_next_slot+0x10a3/0x1960
[  822.410816][    C0]  exit_mmap+0x1ef/0xa10
[  822.415063][    C0]  ? __pfx_exit_mmap+0x10/0x10
[  822.419947][    C0]  ? rcu_is_watching+0x12/0xc0
[  822.424730][    C0]  __mmput+0x12a/0x410
[  822.428805][    C0]  mmput+0x67/0x80
[  822.432524][    C0]  do_exit+0x833/0x2a60
[  822.436903][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.442308][    C0]  ? __pfx_do_exit+0x10/0x10
[  822.446948][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.452358][    C0]  do_group_exit+0xd5/0x2a0
[  822.457069][    C0]  __x64_sys_exit_group+0x3e/0x50
[  822.462102][    C0]  x64_sys_call+0x102c/0x1530
[  822.466801][    C0]  do_syscall_64+0x10b/0xf80
[  822.471401][    C0]  ? clear_bhb_loop+0x40/0x90
[  822.476091][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.482004][    C0] RIP: 0033:0x7f137df9c819
[  822.486417][    C0] RSP: 002b:00007ffcc97db3b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  822.494850][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f137df9c819
[  822.502916][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  822.511056][    C0] RBP: 00007ffcc97db41c R08: 0000000000000000 R09: 00000000000927c0
[  822.519210][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000acb
[  822.527265][    C0] R13: 00000000000927c0 R14: 00000000000af728 R15: 00007ffcc97db470
[  822.535334][    C0]  </TASK>
[  822.538349][    C0] task:syz.2.10928     state:R  running task     stack:26024 pid:31575 tgid:31574 ppid:5838   task_flags:0x400140 flags:0x00080000
[  822.551921][    C0] Call Trace:
[  822.555200][    C0]  <TASK>
[  822.558144][    C0]  __schedule+0x10e9/0x6820
[  822.562673][    C0]  ? shmem_alloc_and_add_folio+0x72f/0xd40
[  822.568498][    C0]  ? __pfx___schedule+0x10/0x10
[  822.573355][    C0]  ? mark_held_locks+0x40/0x70
[  822.578151][    C0]  preempt_schedule_irq+0x50/0x90
[  822.583219][    C0]  irqentry_exit+0x1fe/0x790
[  822.587834][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  822.593816][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x54/0x70
[  822.599992][    C0] Code: e9 91 73 92 09 8b 82 cc 16 00 00 85 c0 74 f1 8b 82 a8 16 00 00 83 f8 02 75 e6 48 8b 8a b0 16 00 00 8b 92 ac 16 00 00 48 8b 01 <48> 83 c0 01 48 39 d0 73 cd 48 89 01 48 89 34 c1 e9 57 73 92 09 0f
[  822.619784][    C0] RSP: 0018:ffffc90000117690 EFLAGS: 00000246
[  822.625871][    C0] RAX: 000000000007ffff RBX: 000000000076c000 RCX: ffffc90006bc9000
[  822.633927][    C0] RDX: 0000000000080000 RSI: ffffffff82605a8a RDI: ffff8880324d8000
[  822.641897][    C0] RBP: 000000005b9ad067 R08: 0000000000000007 R09: 0000000000000000
[  822.650226][    C0] R10: 000000005b9ad007 R11: 0000000000000000 R12: 000000005b9ad007
[  822.658279][    C0] R13: ffff88805b3e1018 R14: ffffc900001179c0 R15: dffffc0000000000
[  822.666450][    C0]  ? __pte_offset_map+0xca/0x310
[  822.671408][    C0]  __pte_offset_map+0xca/0x310
[  822.676296][    C0]  pte_offset_map_lock+0x8d/0x320
[  822.681356][    C0]  ? __pfx_pte_offset_map_lock+0x10/0x10
[  822.687095][    C0]  ? __pfx_shmem_fault+0x10/0x10
[  822.692062][    C0]  finish_fault+0x9d9/0x1400
[  822.696674][    C0]  ? __pfx_filemap_map_pages+0x10/0x10
[  822.702167][    C0]  do_fault+0x3f9/0x1750
[  822.706437][    C0]  __handle_mm_fault+0x187d/0x2a00
[  822.711590][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  822.716972][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  822.722439][    C0]  ? pte_offset_map_lock+0x174/0x320
[  822.727733][    C0]  ? find_held_lock+0x2b/0x80
[  822.732432][    C0]  ? follow_page_pte+0x4d0/0x13f0
[  822.737459][    C0]  handle_mm_fault+0x36d/0xa20
[  822.742407][    C0]  __get_user_pages+0x1178/0x32a0
[  822.747661][    C0]  ? down_read_killable+0x307/0x4b0
[  822.752871][    C0]  ? __pfx___get_user_pages+0x10/0x10
[  822.758277][    C0]  ? faultin_page_range+0x712/0x9e0
[  822.763486][    C0]  faultin_page_range+0x1f1/0x9e0
[  822.768705][    C0]  madvise_do_behavior+0x354/0x510
[  822.773889][    C0]  ? __pfx_madvise_do_behavior+0x10/0x10
[  822.779533][    C0]  do_madvise+0x195/0x240
[  822.783870][    C0]  ? __pfx_do_madvise+0x10/0x10
[  822.788732][    C0]  ? do_futex+0x192/0x350
[  822.793092][    C0]  __x64_sys_madvise+0xa9/0x110
[  822.797942][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  822.803330][    C0]  do_syscall_64+0x10b/0xf80
[  822.807973][    C0]  ? clear_bhb_loop+0x40/0x90
[  822.812669][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  822.818590][    C0] RIP: 0033:0x7f7b3d19c819
[  822.823021][    C0] RSP: 002b:00007f7b3e0a7028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  822.831436][    C0] RAX: ffffffffffffffda RBX: 00007f7b3d415fa0 RCX: 00007f7b3d19c819
[  822.839412][    C0] RDX: 0000000000000017 RSI: ffffffffffff0005 RDI: 0000000000000000
[  822.847473][    C0] RBP: 00007f7b3d232c91 R08: 0000000000000000 R09: 0000000000000000
[  822.855443][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  822.863498][    C0] R13: 00007f7b3d416038 R14: 00007f7b3d415fa0 R15: 00007ffe737536f8
[  822.871479][    C0]  </TASK>
[  822.874505][    C0] task:kworker/0:0     state:R  running task     stack:25288 pid:9     tgid:9     ppid:2      task_flags:0x4208060 flags:0x00080000
[  822.888078][    C0] Workqueue: mld mld_ifc_work
[  822.892858][    C0] Call Trace:
[  822.896150][    C0]  <TASK>
[  822.899097][    C0]  __schedule+0x10e9/0x6820
[  822.903744][    C0]  ? __pfx_br_dev_xmit+0x10/0x10
[  822.908907][    C0]  ? __pfx___schedule+0x10/0x10
[  822.913792][    C0]  ? validate_xmit_xfrm+0x44f/0x1360
[  822.919129][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  822.924504][    C0]  preempt_schedule_common+0x42/0xc0
[  822.929808][    C0]  preempt_schedule_thunk+0x16/0x30
[  822.935069][    C0]  ? __dev_queue_xmit+0x9ef/0x4950
[  822.940234][    C0]  __local_bh_enable_ip+0xff/0x120
[  822.945448][    C0]  ? __dev_queue_xmit+0x9ef/0x4950
[  822.950577][    C0]  __dev_queue_xmit+0xa04/0x4950
[  822.955538][    C0]  ? look_up_lock_class+0x64/0x120
[  822.960694][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  822.966107][    C0]  ? __lock_acquire+0x4a5/0x2630
[  822.971100][    C0]  ? do_raw_spin_lock+0x128/0x260
[  822.976164][    C0]  ? find_held_lock+0x2b/0x80
[  822.980865][    C0]  ? __asan_memcpy+0x3c/0x60
[  822.985477][    C0]  ? eth_header+0x120/0x1f0
[  822.990001][    C0]  neigh_resolve_output+0x51f/0x8f0
[  822.995218][    C0]  ip6_finish_output2+0xb0f/0x1ce0
[  823.000348][    C0]  __ip6_finish_output+0x357/0xdf0
[  823.005466][    C0]  ip6_output+0x2aa/0xa60
[  823.009812][    C0]  ? __pfx_ip6_output+0x10/0x10
[  823.014676][    C0]  ? __pfx_ip6_finish_output+0x10/0x10
[  823.020146][    C0]  ? NF_HOOK.constprop.0+0x277/0x5a0
[  823.025432][    C0]  ? NF_HOOK.constprop.0+0x277/0x5a0
[  823.030728][    C0]  ? __pfx_ip6_output+0x10/0x10
[  823.035615][    C0]  NF_HOOK.constprop.0+0x115/0x5a0
[  823.041032][    C0]  ? __pfx_NF_HOOK.constprop.0+0x10/0x10
[  823.046742][    C0]  ? __pfx_dst_output+0x10/0x10
[  823.051711][    C0]  mld_sendpack+0x8f7/0xec0
[  823.056403][    C0]  ? __pfx_mld_sendpack+0x10/0x10
[  823.061489][    C0]  mld_ifc_work+0x75a/0xc10
[  823.066021][    C0]  ? rcu_is_watching+0x12/0xc0
[  823.070913][    C0]  process_one_work+0xa0e/0x1980
[  823.075900][    C0]  ? __pfx_process_one_work+0x10/0x10
[  823.081300][    C0]  ? __pfx_mld_ifc_work+0x10/0x10
[  823.086356][    C0]  worker_thread+0x5ef/0xe50
[  823.091010][    C0]  ? kthread+0x13a/0x450
[  823.095316][    C0]  ? __pfx_worker_thread+0x10/0x10
[  823.100545][    C0]  kthread+0x370/0x450
[  823.104632][    C0]  ? __pfx_kthread+0x10/0x10
[  823.109413][    C0]  ret_from_fork+0x72b/0xd50
[  823.114024][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  823.119135][    C0]  ? __switch_to+0x800/0x1100
[  823.123998][    C0]  ? __switch_to_asm+0x39/0x70
[  823.128765][    C0]  ? __pfx_kthread+0x10/0x10
[  823.133382][    C0]  ret_from_fork_asm+0x1a/0x30
[  823.138196][    C0]  </TASK>
[  823.141249][    C0] task:syz-executor    state:R  running task     stack:23144 pid:5839  tgid:5839  ppid:5833   task_flags:0x400140 flags:0x00080000
[  823.155037][    C0] Call Trace:
[  823.158496][    C0]  <TASK>
[  823.161491][    C0]  __schedule+0x10e9/0x6820
[  823.166058][    C0]  ? unwind_get_return_address+0x59/0xa0
[  823.171824][    C0]  ? tomoyo_path_perm+0x29c/0x460
[  823.176988][    C0]  ? __pfx___schedule+0x10/0x10
[  823.182042][    C0]  ? rcu_is_watching+0x12/0xc0
[  823.186974][    C0]  preempt_schedule_irq+0x50/0x90
[  823.192091][    C0]  irqentry_exit+0x1fe/0x790
[  823.196930][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  823.202994][    C0] RIP: 0010:lock_release+0x1b/0x310
[  823.208211][    C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 57 41 56 41 54 55 53 48 89 fb 48 83 ec 18 65 48 8b 2d bd 13 2f 12 <48> 89 6c 24 10 48 89 f5 0f 1f 44 00 00 65 8b 05 d5 13 2f 12 83 f8
[  823.228091][    C0] RSP: 0018:ffffc900043478b0 EFLAGS: 00000282
[  823.234286][    C0] RAX: 0000000000000000 RBX: ffffffff8e7e5260 RCX: ffffffff8219b92e
[  823.242362][    C0] RDX: ffff888024b59ec0 RSI: ffffffff8219b88a RDI: ffffffff8e7e5260
[  823.250400][    C0] RBP: c8fd26f7f4e02f00 R08: 0000000000000001 R09: 0000000000000000
[  823.258391][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff81f32c30
[  823.266555][    C0] R13: ffffc90004347a10 R14: 0000000000000000 R15: ffff888024b59ec0
[  823.274586][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  823.280815][    C0]  ? is_bpf_text_address+0x12e/0x1a0
[  823.286242][    C0]  ? is_bpf_text_address+0x8a/0x1a0
[  823.291466][    C0]  ? bpf_ksym_find+0x124/0x1c0
[  823.296241][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  823.302496][    C0]  is_bpf_text_address+0x8f/0x1a0
[  823.307546][    C0]  kernel_text_address+0x8d/0x100
[  823.312606][    C0]  __kernel_text_address+0xd/0x30
[  823.317730][    C0]  unwind_get_return_address+0x59/0xa0
[  823.323209][    C0]  arch_stack_walk+0xa6/0xf0
[  823.327811][    C0]  ? putname+0xb1/0x110
[  823.332005][    C0]  stack_trace_save+0x8e/0xc0
[  823.336850][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  823.342440][    C0]  ? __lock_acquire+0x4a5/0x2630
[  823.347595][    C0]  kasan_save_stack+0x30/0x50
[  823.352323][    C0]  ? kasan_save_stack+0x30/0x50
[  823.357190][    C0]  ? kasan_save_track+0x14/0x30
[  823.362064][    C0]  ? kasan_save_free_info+0x3b/0x70
[  823.367287][    C0]  ? __kasan_slab_free+0x5f/0x80
[  823.372447][    C0]  ? kmem_cache_free+0x127/0x6c0
[  823.377422][    C0]  ? putname+0xb1/0x110
[  823.381619][    C0]  ? vfs_fstatat+0x86/0xe0
[  823.386060][    C0]  ? __do_sys_newfstatat+0x9d/0x120
[  823.391287][    C0]  ? do_syscall_64+0x10b/0xf80
[  823.396150][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.402292][    C0]  kasan_save_track+0x14/0x30
[  823.406997][    C0]  kasan_save_free_info+0x3b/0x70
[  823.412123][    C0]  __kasan_slab_free+0x5f/0x80
[  823.417145][    C0]  kmem_cache_free+0x127/0x6c0
[  823.421918][    C0]  putname+0xb1/0x110
[  823.425927][    C0]  vfs_fstatat+0x86/0xe0
[  823.430177][    C0]  __do_sys_newfstatat+0x9d/0x120
[  823.435338][    C0]  ? __pfx___do_sys_newfstatat+0x10/0x10
[  823.441020][    C0]  ? __x64_sys_umount+0x124/0x1a0
[  823.446096][    C0]  ? __pfx___x64_sys_umount+0x10/0x10
[  823.451628][    C0]  ? rcu_is_watching+0x12/0xc0
[  823.456417][    C0]  do_syscall_64+0x10b/0xf80
[  823.461030][    C0]  ? clear_bhb_loop+0x40/0x90
[  823.465806][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.471721][    C0] RIP: 0033:0x7f9e7ad9ae5a
[  823.476422][    C0] RSP: 002b:00007ffd90c8cca8 EFLAGS: 00000286 ORIG_RAX: 0000000000000106
[  823.484859][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9e7ad9ae5a
[  823.492854][    C0] RDX: 00007ffd90c8ccd0 RSI: 00007ffd90c8cd60 RDI: 00000000ffffff9c
[  823.500827][    C0] RBP: 00007ffd90c8cd60 R08: 00007ffd90c8dd60 R09: 00000000ffffffff
[  823.508883][    C0] R10: 0000000000000100 R11: 0000000000000286 R12: 00007ffd90c8ddf0
[  823.516900][    C0] R13: 00007f9e7ae32048 R14: 00000000000af9ed R15: 00007ffd90c8de30
[  823.524937][    C0]  </TASK>
[  823.527973][    C0] rcu: rcu_preempt kthread starved for 1012 jiffies! g238145 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  823.540053][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  823.550047][    C0] rcu: RCU grace-period kthread stack dump:
[  823.555947][    C0] task:rcu_preempt     state:R  running task     stack:27848 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  823.569533][    C0] Call Trace:
[  823.572819][    C0]  <TASK>
[  823.575768][    C0]  __schedule+0x10e9/0x6820
[  823.580454][    C0]  ? __pfx___schedule+0x10/0x10
[  823.585393][    C0]  ? find_held_lock+0x2b/0x80
[  823.590081][    C0]  ? schedule+0x2bf/0x390
[  823.594450][    C0]  schedule+0xdd/0x390
[  823.598551][    C0]  schedule_timeout+0x127/0x280
[  823.603432][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  823.608814][    C0]  ? __pfx_process_timeout+0x10/0x10
[  823.614110][    C0]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  823.619921][    C0]  ? prepare_to_swait_event+0xdf/0x4a0
[  823.625500][    C0]  rcu_gp_fqs_loop+0x1a9/0x900
[  823.630274][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  823.635570][    C0]  ? prepare_to_swait_event+0xae/0x4a0
[  823.641049][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  823.646005][    C0]  ? __pfx_rcu_gp_cleanup+0x10/0x10
[  823.651234][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  823.657066][    C0]  rcu_gp_kthread+0x179/0x230
[  823.661767][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  823.667146][    C0]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  823.673248][    C0]  ? __kthread_parkme+0x18c/0x230
[  823.678483][    C0]  ? kthread+0x13a/0x450
[  823.682734][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  823.688018][    C0]  kthread+0x370/0x450
[  823.692113][    C0]  ? __pfx_kthread+0x10/0x10
[  823.696832][    C0]  ret_from_fork+0x72b/0xd50
[  823.701450][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  823.706586][    C0]  ? __switch_to+0x800/0x1100
[  823.711318][    C0]  ? __switch_to_asm+0x39/0x70
[  823.716102][    C0]  ? __pfx_kthread+0x10/0x10
[  823.720756][    C0]  ret_from_fork_asm+0x1a/0x30
[  823.725553][    C0]  </TASK>
[  823.728684][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  823.735035][    C0] CPU: 0 UID: 0 PID: 3426 Comm: kworker/R-bat_e Tainted: G     U       L      syzkaller #0 PREEMPT(full) 
[  823.746509][    C0] Tainted: [U]=USER, [L]=SOFTLOCKUP
[  823.751714][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  823.761805][    C0] Workqueue: bat_events batadv_tt_purge
[  823.767400][    C0] RIP: 0010:lock_acquire+0x5e/0x370
[  823.772763][    C0] Code: 05 3b 19 2f 12 83 f8 07 0f 87 d9 02 00 00 48 0f a3 05 46 87 f7 0e 0f 82 a4 02 00 00 8b 35 ae ba f7 0e 85 f6 0f 85 bf 00 00 00 <48> 8b 44 24 30 65 48 2b 05 dd 18 2f 12 0f 85 ed 02 00 00 48 83 c4
[  823.792487][    C0] RSP: 0018:ffffc90000006a30 EFLAGS: 00000206
[  823.798771][    C0] RAX: 0000000000000046 RBX: 0000000000000000 RCX: 0000000000000005
[  823.806757][    C0] RDX: 0000000000000000 RSI: ffffffff8df2fec2 RDI: ffffffff8c1c1080
[  823.814772][    C0] RBP: ffffffff8e7e5260 R08: 000000005970cd9e R09: 0000000000000007
[  823.822827][    C0] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000002
[  823.830797][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  823.838785][    C0] FS:  0000000000000000(0000) GS:ffff8881242e2000(0000) knlGS:0000000000000000
[  823.847717][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  823.854327][    C0] CR2: 00007f2969ee1ccd CR3: 000000007b9d6000 CR4: 00000000003526f0
[  823.862322][    C0] Call Trace:
[  823.865607][    C0]  <IRQ>
[  823.868540][    C0]  ? unwind_next_frame+0x3be/0x2090
[  823.873857][    C0]  ? unwind_next_frame+0x3be/0x2090
[  823.879085][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  823.885257][    C0]  unwind_next_frame+0xd1/0x2090
[  823.890312][    C0]  ? unwind_next_frame+0xbd/0x2090
[  823.895442][    C0]  ? sk_skb_reason_drop+0xc4/0x1b0
[  823.900602][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  823.906788][    C0]  arch_stack_walk+0x94/0xf0
[  823.911394][    C0]  ? sk_skb_reason_drop+0xc4/0x1b0
[  823.916512][    C0]  ? __skb_ext_put+0x102/0x2f0
[  823.921305][    C0]  stack_trace_save+0x8e/0xc0
[  823.925988][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  823.931381][    C0]  ? __lock_acquire+0x4a5/0x2630
[  823.936331][    C0]  ? ip6_pol_route+0x2a3/0x1230
[  823.941438][    C0]  kasan_save_stack+0x30/0x50
[  823.946130][    C0]  ? kasan_save_stack+0x30/0x50
[  823.951075][    C0]  ? kasan_save_track+0x14/0x30
[  823.955932][    C0]  ? kasan_save_free_info+0x3b/0x70
[  823.961147][    C0]  ? __kasan_slab_free+0x5f/0x80
[  823.966081][    C0]  ? kmem_cache_free+0x127/0x6c0
[  823.971023][    C0]  ? __skb_ext_put+0x102/0x2f0
[  823.975899][    C0]  ? skb_release_head_state+0x2c8/0x400
[  823.981456][    C0]  ? sk_skb_reason_drop+0xc4/0x1b0
[  823.986621][    C0]  kasan_save_track+0x14/0x30
[  823.991399][    C0]  kasan_save_free_info+0x3b/0x70
[  823.996438][    C0]  __kasan_slab_free+0x5f/0x80
[  824.001311][    C0]  kmem_cache_free+0x127/0x6c0
[  824.006081][    C0]  __skb_ext_put+0x102/0x2f0
[  824.010685][    C0]  ? ipv6_chk_mcast_addr+0x2b0/0x9a0
[  824.016152][    C0]  ? ip6_mc_input+0x832/0xf50
[  824.020854][    C0]  skb_release_head_state+0x2c8/0x400
[  824.026223][    C0]  sk_skb_reason_drop+0xc4/0x1b0
[  824.031163][    C0]  ip6_mc_input+0x832/0xf50
[  824.035669][    C0]  ? __pfx_ip6_mc_input+0x10/0x10
[  824.040800][    C0]  ? ip6_rcv_finish_core.isra.0+0x113/0x1260
[  824.046855][    C0]  ? __pfx_ip6_mc_input+0x10/0x10
[  824.051882][    C0]  ip6_rcv_finish+0x294/0x300
[  824.056582][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  824.061787][    C0]  ip_sabotage_in+0x21e/0x290
[  824.066479][    C0]  nf_hook_slow+0xbf/0x220
[  824.070898][    C0]  nf_hook.constprop.0+0x2a6/0x750
[  824.076099][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  824.081386][    C0]  ? __pfx_nf_hook.constprop.0+0x10/0x10
[  824.087025][    C0]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  824.092231][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  824.096927][    C0]  ipv6_rcv+0xa4/0x3d0
[  824.101109][    C0]  ? __pfx_ipv6_rcv+0x10/0x10
[  824.105796][    C0]  __netif_receive_skb_one_core+0x12d/0x1e0
[  824.111708][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  824.118169][    C0]  ? get_rps_cpu+0x484/0x12d0
[  824.122880][    C0]  __netif_receive_skb+0x1f/0x120
[  824.127933][    C0]  netif_receive_skb+0x13b/0x7f0
[  824.132922][    C0]  ? __pfx_netif_receive_skb+0x10/0x10
[  824.138498][    C0]  br_pass_frame_up+0x346/0x490
[  824.143396][    C0]  br_handle_frame_finish+0xa74/0x1f60
[  824.148871][    C0]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  824.154776][    C0]  ? __lock_acquire+0x4a5/0x2630
[  824.159810][    C0]  ? __pfx_ip6t_do_table+0x10/0x10
[  824.164923][    C0]  ? nf_hook_slow+0x167/0x220
[  824.169678][    C0]  br_nf_hook_thresh+0x30d/0x420
[  824.174673][    C0]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  824.180619][    C0]  ? __pfx_br_nf_hook_thresh+0x10/0x10
[  824.186100][    C0]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  824.192022][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  824.197920][    C0]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  824.203921][    C0]  br_nf_pre_routing_finish_ipv6+0x659/0xdd0
[  824.210143][    C0]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  824.216071][    C0]  br_nf_pre_routing_ipv6+0x39c/0x8b0
[  824.221454][    C0]  ? __pfx_br_nf_pre_routing_ipv6+0x10/0x10
[  824.227347][    C0]  ? lock_acquire+0x1b1/0x370
[  824.232039][    C0]  ? __pfx_br_nf_pre_routing_finish_ipv6+0x10/0x10
[  824.238826][    C0]  ? net_generic+0xea/0x2a0
[  824.243368][    C0]  br_nf_pre_routing+0x90f/0x1560
[  824.248619][    C0]  br_handle_frame+0xcdd/0x1520
[  824.253608][    C0]  ? __pfx_br_handle_frame+0x10/0x10
[  824.258944][    C0]  ? __pfx_br_handle_frame_finish+0x10/0x10
[  824.265244][    C0]  ? __pfx_br_handle_frame+0x10/0x10
[  824.270562][    C0]  __netif_receive_skb_core.constprop.0+0x6c5/0x3530
[  824.277259][    C0]  ? kmem_cache_free+0x127/0x6c0
[  824.282238][    C0]  ? skb_release_data+0x6ca/0x8e0
[  824.287283][    C0]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[  824.294581][    C0]  ? kfree_skbmem+0x19f/0x210
[  824.299263][    C0]  ? sk_skb_reason_drop+0x114/0x1b0
[  824.304467][    C0]  ? ip6_mc_input+0x51a/0xf50
[  824.309178][    C0]  ? __pfx_ip6_mc_input+0x10/0x10
[  824.314213][    C0]  ? __lock_acquire+0x4a5/0x2630
[  824.319162][    C0]  ? process_backlog+0x32a/0x1580
[  824.324191][    C0]  __netif_receive_skb_one_core+0xb0/0x1e0
[  824.330102][    C0]  ? __pfx___netif_receive_skb_one_core+0x10/0x10
[  824.336525][    C0]  ? lock_acquire+0x1b1/0x370
[  824.341566][    C0]  ? process_backlog+0x32a/0x1580
[  824.346614][    C0]  ? process_backlog+0x32a/0x1580
[  824.351762][    C0]  __netif_receive_skb+0x1f/0x120
[  824.356823][    C0]  process_backlog+0x37a/0x1580
[  824.361821][    C0]  __napi_poll.constprop.0+0xaf/0x450
[  824.367205][    C0]  net_rx_action+0xa40/0xf20
[  824.371809][    C0]  ? __pfx_net_rx_action+0x10/0x10
[  824.376936][    C0]  ? mark_held_locks+0x40/0x70
[  824.381707][    C0]  ? lockdep_hardirqs_on+0x78/0x100
[  824.386916][    C0]  ? tmigr_handle_remote+0x132/0x380
[  824.392232][    C0]  ? run_timer_base+0x121/0x190
[  824.397265][    C0]  ? __pfx_run_timer_base+0x10/0x10
[  824.402558][    C0]  handle_softirqs+0x1ea/0xa00
[  824.407326][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  824.412610][    C0]  ? batadv_tt_purge+0x25d/0xbd0
[  824.417548][    C0]  do_softirq+0xac/0xe0
[  824.421796][    C0]  </IRQ>
[  824.424723][    C0]  <TASK>
[  824.427657][    C0]  __local_bh_enable_ip+0xf8/0x120
[  824.432787][    C0]  batadv_tt_purge+0x25d/0xbd0
[  824.437648][    C0]  ? __pfx_batadv_tt_purge+0x10/0x10
[  824.442939][    C0]  ? rcu_is_watching+0x12/0xc0
[  824.447706][    C0]  process_one_work+0xa0e/0x1980
[  824.452650][    C0]  ? __pfx_process_one_work+0x10/0x10
[  824.458023][    C0]  ? __pfx_batadv_tt_purge+0x10/0x10
[  824.463309][    C0]  rescuer_thread+0x905/0x14a0
[  824.468080][    C0]  ? rescuer_thread+0x240/0x14a0
[  824.473134][    C0]  ? rescuer_thread+0x118/0x14a0
[  824.478070][    C0]  ? __pfx_rescuer_thread+0x10/0x10
[  824.483293][    C0]  ? __kthread_parkme+0x18c/0x230
[  824.488380][    C0]  ? kthread+0x13a/0x450
[  824.492646][    C0]  ? __pfx_rescuer_thread+0x10/0x10
[  824.497853][    C0]  kthread+0x370/0x450
[  824.501936][    C0]  ? __pfx_kthread+0x10/0x10
[  824.506551][    C0]  ret_from_fork+0x72b/0xd50
[  824.511242][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  824.516354][    C0]  ? __switch_to+0x800/0x1100
[  824.521053][    C0]  ? __switch_to_asm+0x39/0x70
[  824.525851][    C0]  ? __pfx_kthread+0x10/0x10
[  824.530454][    C0]  ret_from_fork_asm+0x1a/0x30
[  824.535235][    C0]  </TASK>
[  826.263713][    C0] net_ratelimit: 8772 callbacks suppressed
[  826.263734][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.282130][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  826.294448][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.306710][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.319002][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  826.331292][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.343713][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.356181][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  826.368802][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  826.381162][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.247886][    C0] net_ratelimit: 15624 callbacks suppressed
[  831.247909][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  831.266163][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.278517][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.290798][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  831.303105][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.315480][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.327789][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)
[  831.340169][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.352688][    C0] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  831.365244][    C0] bridge0: received packet on veth0_to_bridge with own address as source address (addr:0e:1b:26:1d:90:21, vlan:0)