syzkaller login: [ 96.978348][ T53] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:24151' (ED25519) to the list of known hosts.
2026/02/27 19:34:25 parsed 1 programs
[ 183.236291][ T5337] cgroup: Unknown subsys name 'net'
[ 183.290335][ T5337] cgroup: Unknown subsys name 'cpuset'
[ 183.296069][ T5337] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 185.129754][ T5337] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 186.459911][ T5337] ODEBUG: Out of memory. ODEBUG disabled
[ 190.821092][ T5359] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 204.487376][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[ 204.490591][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[ 206.097175][ T5398] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 206.107426][ T5398] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 206.111020][ T5398] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 206.118482][ T5398] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 206.122013][ T5398] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 208.165037][ T5398] Bluetooth: hci0: command tx timeout
[ 208.363884][ T1051] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 208.384521][ T1051] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 208.550919][ T1051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 208.554908][ T1051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 208.813175][ T5396] chnl_net:caif_netlink_parms(): no params data found
[ 209.046965][ T5396] bridge0: port 1(bridge_slave_0) entered blocking state
[ 209.050906][ T5396] bridge0: port 1(bridge_slave_0) entered disabled state
[ 209.071289][ T5396] bridge_slave_0: entered allmulticast mode
[ 209.084327][ T5396] bridge_slave_0: entered promiscuous mode
[ 209.097747][ T5396] bridge0: port 2(bridge_slave_1) entered blocking state
[ 209.100875][ T5396] bridge0: port 2(bridge_slave_1) entered disabled state
[ 209.117531][ T5396] bridge_slave_1: entered allmulticast mode
[ 209.127714][ T5396] bridge_slave_1: entered promiscuous mode
[ 209.205548][ T5396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 209.231727][ T5396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 209.295862][ T5396] team0: Port device team_slave_0 added
[ 209.315438][ T5396] team0: Port device team_slave_1 added
[ 209.385417][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 209.388430][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 209.434103][ T5396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 209.450821][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 209.453844][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 209.496616][ T5396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 209.655450][ T5396] hsr_slave_0: entered promiscuous mode
[ 209.658851][ T5396] hsr_slave_1: entered promiscuous mode
[ 210.097152][ T5396] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 210.129621][ T5396] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 210.143171][ T5396] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 210.161086][ T5396] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 210.244378][ T5398] Bluetooth: hci0: command tx timeout
[ 210.381043][ T5396] 8021q: adding VLAN 0 to HW filter on device bond0
[ 210.414243][ T5396] 8021q: adding VLAN 0 to HW filter on device team0
[ 210.447353][ T62] bridge0: port 1(bridge_slave_0) entered blocking state
[ 210.450814][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 210.477618][ T62] bridge0: port 2(bridge_slave_1) entered blocking state
[ 210.480712][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 210.873612][ T5396] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 211.301013][ T5396] veth0_vlan: entered promiscuous mode
[ 211.321876][ T5396] veth1_vlan: entered promiscuous mode
[ 211.366271][ T5396] veth0_macvtap: entered promiscuous mode
[ 211.383652][ T5396] veth1_macvtap: entered promiscuous mode
[ 211.415888][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 211.435863][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 211.452016][ T30] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 211.457261][ T30] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 211.482427][ T1052] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 211.491893][ T1052] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 212.324531][ T5398] Bluetooth: hci0: command tx timeout
2026/02/27 19:34:58 executed programs: 0
[ 213.819473][ T4664] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 213.824690][ T4664] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 213.828120][ T4664] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 213.839189][ T4664] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 213.855176][ T4664] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 213.897376][ T5474] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 213.904192][ T5474] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 213.909926][ T5474] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 213.913790][ T5474] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 213.917300][ T5474] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 213.985051][ T5398] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 213.989174][ T5398] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 213.992444][ T5398] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 214.001764][ T5398] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 214.006836][ T5398] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 214.019322][ T45] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 214.030671][ T5483] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 214.034708][ T5483] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 214.038696][ T5483] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 214.051176][ T5483] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 214.054687][ T5483] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 214.060497][ T5398] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 214.064732][ T5398] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 214.069394][ T5398] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 214.073053][ T5398] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 214.121812][ T4664] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 214.144099][ T4664] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 214.148875][ T4664] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 214.152631][ T4664] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 214.156363][ T4664] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 215.200858][ T30] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 215.286098][ T5466] chnl_net:caif_netlink_parms(): no params data found
[ 215.365785][ T30] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 215.612446][ T30] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 215.692494][ T30] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 215.805575][ T5466] bridge0: port 1(bridge_slave_0) entered blocking state
[ 215.808736][ T5466] bridge0: port 1(bridge_slave_0) entered disabled state
[ 215.812035][ T5466] bridge_slave_0: entered allmulticast mode
[ 215.819739][ T5466] bridge_slave_0: entered promiscuous mode
[ 215.877543][ T5466] bridge0: port 2(bridge_slave_1) entered blocking state
[ 215.880574][ T5466] bridge0: port 2(bridge_slave_1) entered disabled state
[ 215.883659][ T5466] bridge_slave_1: entered allmulticast mode
[ 215.891310][ T5466] bridge_slave_1: entered promiscuous mode
[ 216.007715][ T4664] Bluetooth: hci1: command tx timeout
[ 216.010709][ T4664] Bluetooth: hci2: command tx timeout
[ 216.028512][ T5466] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 216.085271][ T5398] Bluetooth: hci3: command tx timeout
[ 216.092122][ T5466] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 216.164732][ T5398] Bluetooth: hci4: command tx timeout
[ 216.167569][ T5398] Bluetooth: hci5: command tx timeout
[ 216.218955][ T30] bridge_slave_1: left allmulticast mode
[ 216.222051][ T30] bridge_slave_1: left promiscuous mode
[ 216.236115][ T30] bridge0: port 2(bridge_slave_1) entered disabled state
[ 216.243752][ T30] bridge_slave_0: left allmulticast mode
[ 216.247910][ T4664] Bluetooth: hci0: command tx timeout
[ 216.260360][ T30] bridge_slave_0: left promiscuous mode
[ 216.262944][ T30] bridge0: port 1(bridge_slave_0) entered disabled state
[ 216.429540][ T30] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 216.436941][ T30] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 216.441922][ T30] bond0 (unregistering): Released all slaves
[ 216.621063][ T5469] chnl_net:caif_netlink_parms(): no params data found
[ 216.702856][ T5466] team0: Port device team_slave_0 added
[ 216.718715][ T5466] team0: Port device team_slave_1 added
[ 217.046843][ T5466] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 217.049936][ T5466] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 217.076519][ T5466] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 217.182249][ T5466] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 217.194249][ T5466] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 217.225066][ T5466] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 217.282769][ T5478] chnl_net:caif_netlink_parms(): no params data found
[ 217.311298][ T5480] chnl_net:caif_netlink_parms(): no params data found
[ 217.371455][ T5469] bridge0: port 1(bridge_slave_0) entered blocking state
[ 217.381037][ T5469] bridge0: port 1(bridge_slave_0) entered disabled state
[ 217.399641][ T5469] bridge_slave_0: entered allmulticast mode
[ 217.409101][ T5469] bridge_slave_0: entered promiscuous mode
[ 217.450444][ T5472] chnl_net:caif_netlink_parms(): no params data found
[ 217.459676][ T5469] bridge0: port 2(bridge_slave_1) entered blocking state
[ 217.462816][ T5469] bridge0: port 2(bridge_slave_1) entered disabled state
[ 217.466176][ T5469] bridge_slave_1: entered allmulticast mode
[ 217.469495][ T5469] bridge_slave_1: entered promiscuous mode
[ 217.472936][ T5476] chnl_net:caif_netlink_parms(): no params data found
[ 217.483501][ T30] hsr_slave_0: left promiscuous mode
[ 217.486724][ T30] hsr_slave_1: left promiscuous mode
[ 217.489644][ T30] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 217.492616][ T30] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 217.497581][ T30] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 217.501115][ T30] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 217.511779][ T30] veth1_macvtap: left promiscuous mode
[ 217.514898][ T30] veth0_macvtap: left promiscuous mode
[ 217.517354][ T30] veth1_vlan: left promiscuous mode
[ 217.519705][ T30] veth0_vlan: left promiscuous mode
[ 217.682565][ T30] team0 (unregistering): Port device team_slave_1 removed
[ 217.693702][ T30] team0 (unregistering): Port device team_slave_0 removed
[ 217.856964][ T5466] hsr_slave_0: entered promiscuous mode
[ 217.859883][ T5466] hsr_slave_1: entered promiscuous mode
[ 218.059457][ T5469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 218.087985][ T4664] Bluetooth: hci2: command tx timeout
[ 218.090406][ T4664] Bluetooth: hci1: command tx timeout
[ 218.165153][ T5398] Bluetooth: hci3: command tx timeout
[ 218.176001][ T5469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 218.252291][ T5398] Bluetooth: hci5: command tx timeout
[ 218.255451][ T5398] Bluetooth: hci4: command tx timeout
[ 218.299119][ T5480] bridge0: port 1(bridge_slave_0) entered blocking state
[ 218.302103][ T5480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 218.306339][ T5480] bridge_slave_0: entered allmulticast mode
[ 218.310428][ T5480] bridge_slave_0: entered promiscuous mode
[ 218.324929][ T4664] Bluetooth: hci0: command tx timeout
[ 218.359396][ T5469] team0: Port device team_slave_0 added
[ 218.362137][ T5480] bridge0: port 2(bridge_slave_1) entered blocking state
[ 218.366694][ T5480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 218.369723][ T5480] bridge_slave_1: entered allmulticast mode
[ 218.373526][ T5480] bridge_slave_1: entered promiscuous mode
[ 218.417842][ T5469] team0: Port device team_slave_1 added
[ 218.439000][ T5478] bridge0: port 1(bridge_slave_0) entered blocking state
[ 218.442109][ T5478] bridge0: port 1(bridge_slave_0) entered disabled state
[ 218.446033][ T5478] bridge_slave_0: entered allmulticast mode
[ 218.449924][ T5478] bridge_slave_0: entered promiscuous mode
[ 218.455020][ T5478] bridge0: port 2(bridge_slave_1) entered blocking state
[ 218.458092][ T5478] bridge0: port 2(bridge_slave_1) entered disabled state
[ 218.461349][ T5478] bridge_slave_1: entered allmulticast mode
[ 218.465705][ T5478] bridge_slave_1: entered promiscuous mode
[ 218.510609][ T5472] bridge0: port 1(bridge_slave_0) entered blocking state
[ 218.524156][ T5472] bridge0: port 1(bridge_slave_0) entered disabled state
[ 218.527516][ T5472] bridge_slave_0: entered allmulticast mode
[ 218.540275][ T5472] bridge_slave_0: entered promiscuous mode
[ 218.553773][ T5472] bridge0: port 2(bridge_slave_1) entered blocking state
[ 218.557628][ T5472] bridge0: port 2(bridge_slave_1) entered disabled state
[ 218.560894][ T5472] bridge_slave_1: entered allmulticast mode
[ 218.575931][ T5472] bridge_slave_1: entered promiscuous mode
[ 218.615665][ T5476] bridge0: port 1(bridge_slave_0) entered blocking state
[ 218.618997][ T5476] bridge0: port 1(bridge_slave_0) entered disabled state
[ 218.622285][ T5476] bridge_slave_0: entered allmulticast mode
[ 218.637502][ T5476] bridge_slave_0: entered promiscuous mode
[ 218.646320][ T5476] bridge0: port 2(bridge_slave_1) entered blocking state
[ 218.649465][ T5476] bridge0: port 2(bridge_slave_1) entered disabled state
[ 218.652761][ T5476] bridge_slave_1: entered allmulticast mode
[ 218.674875][ T5476] bridge_slave_1: entered promiscuous mode
[ 218.805876][ T5469] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 218.808882][ T5469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 218.834417][ T5469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 218.883341][ T5469] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 218.889580][ T5469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 218.903042][ T5469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 218.922222][ T5480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 218.928350][ T5478] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 218.935881][ T5480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 218.980711][ T5478] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 219.005331][ T5472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 219.035915][ T5476] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 219.059641][ T5472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 219.110794][ T5469] hsr_slave_0: entered promiscuous mode
[ 219.126330][ T5469] hsr_slave_1: entered promiscuous mode
[ 219.130495][ T5469] debugfs: 'hsr0' already exists in 'hsr'
[ 219.144207][ T5469] Cannot create hsr debugfs directory
[ 219.156038][ T5476] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 219.180962][ T5480] team0: Port device team_slave_0 added
[ 219.251252][ T5478] team0: Port device team_slave_0 added
[ 219.255752][ T5480] team0: Port device team_slave_1 added
[ 219.282275][ T5472] team0: Port device team_slave_0 added
[ 219.327287][ T5476] team0: Port device team_slave_0 added
[ 219.335441][ T5478] team0: Port device team_slave_1 added
[ 219.378825][ T5472] team0: Port device team_slave_1 added
[ 219.416717][ T5476] team0: Port device team_slave_1 added
[ 219.425315][ T5466] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 219.457496][ T5480] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 219.460630][ T5480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.473875][ T5480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 219.504577][ T5466] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 219.522529][ T5480] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 219.526909][ T5480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.538604][ T5480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 219.557449][ T5466] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 219.591228][ T5476] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 219.604273][ T5476] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.631790][ T5476] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 219.647026][ T5478] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 219.650228][ T5478] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.671701][ T5478] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 219.683901][ T5478] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 219.687960][ T5478] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.699548][ T5478] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 219.705392][ T5472] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 219.708398][ T5472] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.720065][ T5472] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 219.732299][ T5466] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 219.740577][ T5476] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 219.743431][ T5476] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.760415][ T5476] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 219.775386][ T5472] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 219.778537][ T5472] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 219.790546][ T5472] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 219.940901][ T5478] hsr_slave_0: entered promiscuous mode
[ 219.954488][ T5478] hsr_slave_1: entered promiscuous mode
[ 219.957543][ T5478] debugfs: 'hsr0' already exists in 'hsr'
[ 219.960178][ T5478] Cannot create hsr debugfs directory
[ 220.020607][ T5472] hsr_slave_0: entered promiscuous mode
[ 220.023790][ T5472] hsr_slave_1: entered promiscuous mode
[ 220.032166][ T5472] debugfs: 'hsr0' already exists in 'hsr'
[ 220.046440][ T5472] Cannot create hsr debugfs directory
[ 220.128958][ T5480] hsr_slave_0: entered promiscuous mode
[ 220.132192][ T5480] hsr_slave_1: entered promiscuous mode
[ 220.135868][ T5480] debugfs: 'hsr0' already exists in 'hsr'
[ 220.138541][ T5480] Cannot create hsr debugfs directory
[ 220.167907][ T4664] Bluetooth: hci1: command tx timeout
[ 220.169973][ T4664] Bluetooth: hci2: command tx timeout
[ 220.244275][ T5398] Bluetooth: hci3: command tx timeout
[ 220.271527][ T5476] hsr_slave_0: entered promiscuous mode
[ 220.275709][ T5476] hsr_slave_1: entered promiscuous mode
[ 220.278618][ T5476] debugfs: 'hsr0' already exists in 'hsr'
[ 220.281037][ T5476] Cannot create hsr debugfs directory
[ 220.324484][ T5398] Bluetooth: hci4: command tx timeout
[ 220.326884][ T5398] Bluetooth: hci5: command tx timeout
[ 220.404202][ T4664] Bluetooth: hci0: command tx timeout
[ 220.733187][ T5466] 8021q: adding VLAN 0 to HW filter on device bond0
[ 220.750756][ T5469] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 220.839285][ T5469] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 220.851977][ T5469] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 220.878384][ T5469] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 220.935571][ T5466] 8021q: adding VLAN 0 to HW filter on device team0
[ 220.940426][ T5478] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 220.958155][ T5478] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 220.981725][ T5478] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 221.006323][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 221.009553][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 221.025573][ T5478] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 221.036745][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 221.039935][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 221.101666][ T5472] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 221.172468][ T5472] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 221.196245][ T5472] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 221.249749][ T5472] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 221.560435][ T5469] 8021q: adding VLAN 0 to HW filter on device bond0
[ 221.633255][ T5469] 8021q: adding VLAN 0 to HW filter on device team0
[ 221.749474][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 221.752543][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 221.782188][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 221.785479][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 221.857245][ T5466] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 221.938134][ T5478] 8021q: adding VLAN 0 to HW filter on device bond0
[ 221.949957][ T5472] 8021q: adding VLAN 0 to HW filter on device bond0
[ 222.019980][ T5469] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 222.047637][ T5469] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 222.060210][ T5480] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 222.125828][ T5478] 8021q: adding VLAN 0 to HW filter on device team0
[ 222.153718][ T5472] 8021q: adding VLAN 0 to HW filter on device team0
[ 222.168087][ T5480] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 222.200203][ T5480] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 222.212221][ T5466] veth0_vlan: entered promiscuous mode
[ 222.247992][ T4664] Bluetooth: hci2: command tx timeout
[ 222.250363][ T4664] Bluetooth: hci1: command tx timeout
[ 222.276615][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.279775][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 222.308042][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.311336][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 222.328988][ T5398] Bluetooth: hci3: command tx timeout
[ 222.337092][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.340185][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 222.353186][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.356432][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 222.379058][ T5480] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 222.408025][ T5398] Bluetooth: hci5: command tx timeout
[ 222.410501][ T5398] Bluetooth: hci4: command tx timeout
[ 222.457881][ T5466] veth1_vlan: entered promiscuous mode
[ 222.491307][ T4664] Bluetooth: hci0: command tx timeout
[ 222.671415][ T5472] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 222.683354][ T5472] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 222.706823][ T5476] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 222.731481][ T5466] veth0_macvtap: entered promiscuous mode
[ 222.767387][ T5476] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 222.846612][ T5466] veth1_macvtap: entered promiscuous mode
[ 222.921576][ T5469] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 222.946035][ T5476] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 223.004094][ T5476] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 223.037354][ T5466] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 223.139597][ T5466] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 223.326578][ T1052] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.341298][ T5480] 8021q: adding VLAN 0 to HW filter on device bond0
[ 223.390380][ T1052] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.406919][ T1052] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.410758][ T1052] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.449071][ T5472] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 223.469033][ T5469] veth0_vlan: entered promiscuous mode
[ 223.499977][ T5478] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 223.533782][ T5480] 8021q: adding VLAN 0 to HW filter on device team0
[ 223.576585][ T5469] veth1_vlan: entered promiscuous mode
[ 223.629651][ T70] bridge0: port 1(bridge_slave_0) entered blocking state
[ 223.632684][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 223.717386][ T30] bridge0: port 2(bridge_slave_1) entered blocking state
[ 223.720549][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 223.883280][ T5472] veth0_vlan: entered promiscuous mode
[ 223.912563][ T5476] 8021q: adding VLAN 0 to HW filter on device bond0
[ 223.936449][ T5469] veth0_macvtap: entered promiscuous mode
[ 223.966357][ T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 223.969939][ T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 224.031782][ T5469] veth1_macvtap: entered promiscuous mode
[ 224.053455][ T5472] veth1_vlan: entered promiscuous mode
[ 224.071539][ T5476] 8021q: adding VLAN 0 to HW filter on device team0
[ 224.198655][ T5480] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 224.221189][ T5469] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 224.226351][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 224.232364][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 224.296824][ T1052] bridge0: port 1(bridge_slave_0) entered blocking state
[ 224.300166][ T1052] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 224.320333][ T1052] bridge0: port 2(bridge_slave_1) entered blocking state
[ 224.323251][ T1052] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 224.392206][ T5469] batman_adv: batadv0: Interface activated: batadv_slave_1
2026/02/27 19:35:08 executed programs: 12
[ 224.552637][ T5476] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 224.599010][ T5476] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 224.656424][ T5472] veth0_macvtap: entered promiscuous mode
[ 224.661446][ T5472] veth1_macvtap: entered promiscuous mode
[ 224.702761][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 224.715034][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 224.718678][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 224.722289][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 224.833426][ T5472] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 225.122128][ T5472] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 225.271412][ T5478] veth0_vlan: entered promiscuous mode
[ 225.281790][ T70] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 225.289143][ T70] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 225.350421][ T5480] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 225.389585][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 225.393037][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 225.483038][ T5478] veth1_vlan: entered promiscuous mode
[ 225.517772][ T70] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 225.614792][ T70] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 225.728490][ T5478] veth0_macvtap: entered promiscuous mode
[ 225.766175][ T5478] veth1_macvtap: entered promiscuous mode
[ 225.874062][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 225.903354][ T5478] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 225.906972][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 226.023255][ T5478] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 226.059106][ T5476] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 226.069589][ T1038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 226.073059][ T1038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 226.126762][ T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 226.199114][ T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 226.325653][ T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 226.342252][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 226.364492][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 226.426456][ T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 226.787525][ T5476] veth0_vlan: entered promiscuous mode
[ 226.876458][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 226.880219][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 226.892512][ T5480] veth0_vlan: entered promiscuous mode
[ 226.920074][ T5476] veth1_vlan: entered promiscuous mode
[ 227.130194][ T5480] veth1_vlan: entered promiscuous mode
[ 227.144498][ T5476] veth0_macvtap: entered promiscuous mode
[ 227.149895][ T1038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 227.193305][ T1038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 227.200687][ T5476] veth1_macvtap: entered promiscuous mode
[ 227.416299][ T5476] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 227.421917][ T5476] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 227.581552][ T5480] veth0_macvtap: entered promiscuous mode
[ 227.645128][ T62] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 227.665895][ T62] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 227.695671][ T5480] veth1_macvtap: entered promiscuous mode
[ 227.721064][ T62] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 227.751843][ T62] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 227.900886][ T5480] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 227.953645][ T5480] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 228.066420][ T42] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.071471][ T42] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.118007][ T42] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.143794][ T42] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 228.264922][ T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 228.268258][ T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 228.556383][ T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 228.604434][ T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 228.707399][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 228.745132][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 228.996411][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 229.035240][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/27 19:35:13 executed programs: 87
2026/02/27 19:35:19 executed programs: 269
2026/02/27 19:35:24 executed programs: 454
2026/02/27 19:35:29 executed programs: 649
2026/02/27 19:35:34 executed programs: 824
2026/02/27 19:35:39 executed programs: 999
[ 256.315633][ T6765] ==================================================================
[ 256.319473][ T6765] BUG: KASAN: slab-use-after-free in bpf_trace_run9+0x13b/0x8c0
[ 256.322815][ T6765] Read of size 8 at addr ffff88803e844418 by task syz.4.1058/6765
[ 256.327116][ T6765]
[ 256.328187][ T6765] CPU: 0 UID: 0 PID: 6765 Comm: syz.4.1058 Not tainted syzkaller #0 PREEMPT(full)
[ 256.328202][ T6765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 256.328210][ T6765] Call Trace:
[ 256.328217][ T6765]
[ 256.328224][ T6765] dump_stack_lvl+0xe8/0x150
[ 256.328248][ T6765] print_report+0xba/0x230
[ 256.328262][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.328277][ T6765] kasan_report+0x117/0x150
[ 256.328289][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.328307][ T6765] bpf_trace_run9+0x13b/0x8c0
[ 256.328322][ T6765] ? bpf_trace_run9+0x250/0x8c0
[ 256.328337][ T6765] ? __pfx_bpf_trace_run9+0x10/0x10
[ 256.328351][ T6765] ? virtio_transport_alloc_skb+0xf4/0x1180
[ 256.328461][ T6765] ? vsock_connect+0xaf5/0xd60
[ 256.328475][ T6765] ? __sys_connect+0x312/0x450
[ 256.328531][ T6765] __bpf_trace_virtio_transport_alloc_pkt+0x3a5/0x410
[ 256.328546][ T6765] ? __pfx___bpf_trace_virtio_transport_alloc_pkt+0x10/0x10
[ 256.328561][ T6765] ? kmem_cache_alloc_node_noprof+0x3ce/0x690
[ 256.328580][ T6765] ? __pfx___bpf_trace_virtio_transport_alloc_pkt+0x10/0x10
[ 256.328591][ T6765] __traceiter_virtio_transport_alloc_pkt+0xc1/0x120
[ 256.328605][ T6765] virtio_transport_alloc_skb+0x1108/0x1180
[ 256.328622][ T6765] ? __pfx_virtio_transport_alloc_skb+0x10/0x10
[ 256.328638][ T6765] virtio_transport_send_pkt_info+0x570/0xff0
[ 256.328651][ T6765] ? lockdep_hardirqs_on+0x7a/0x110
[ 256.328671][ T6765] virtio_transport_connect+0xf5/0x150
[ 256.328683][ T6765] ? __pfx_virtio_transport_connect+0x10/0x10
[ 256.328697][ T6765] ? __pfx_vsock_auto_bind+0x10/0x10
[ 256.328712][ T6765] vsock_connect+0xaf5/0xd60
[ 256.328727][ T6765] ? aa_sk_perm+0x6d5/0x900
[ 256.328781][ T6765] ? __pfx_vsock_connect+0x10/0x10
[ 256.328795][ T6765] ? __pfx_aa_sk_perm+0x10/0x10
[ 256.328809][ T6765] ? __pfx_autoremove_wake_function+0x10/0x10
[ 256.328822][ T6765] ? hook_socket_connect+0x107/0x190
[ 256.328833][ T6765] ? bpf_lsm_socket_connect+0x9/0x20
[ 256.328850][ T6765] __sys_connect+0x312/0x450
[ 256.328862][ T6765] ? __pfx___sys_connect+0x10/0x10
[ 256.328879][ T6765] __x64_sys_connect+0x7a/0x90
[ 256.328891][ T6765] do_syscall_64+0x14d/0xf80
[ 256.328906][ T6765] ? trace_irq_disable+0x3b/0x150
[ 256.328921][ T6765] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.328933][ T6765] ? clear_bhb_loop+0x40/0x90
[ 256.328945][ T6765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.328955][ T6765] RIP: 0033:0x7fc75219c799
[ 256.328992][ T6765] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 256.329002][ T6765] RSP: 002b:00007ffcd83db0e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 256.329015][ T6765] RAX: ffffffffffffffda RBX: 00007fc752415fa0 RCX: 00007fc75219c799
[ 256.329022][ T6765] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000003
[ 256.329030][ T6765] RBP: 00007fc752232bd9 R08: 0000000000000000 R09: 0000000000000000
[ 256.329036][ T6765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 256.329043][ T6765] R13: 00007fc752415fac R14: 00007fc752415fa0 R15: 00007fc752415fa0
[ 256.329055][ T6765]
[ 256.329060][ T6765]
[ 256.463754][ T6765] Allocated by task 6763:
[ 256.465705][ T6765] kasan_save_track+0x3e/0x80
[ 256.467817][ T6765] __kasan_kmalloc+0x93/0xb0
[ 256.469920][ T6765] __kmalloc_cache_noprof+0x31c/0x660
[ 256.472310][ T6765] bpf_raw_tp_link_attach+0x278/0x700
[ 256.474684][ T6765] bpf_raw_tracepoint_open+0x1b2/0x220
[ 256.476986][ T6765] __sys_bpf+0x846/0x950
[ 256.478905][ T6765] __x64_sys_bpf+0x7c/0x90
[ 256.480880][ T6765] do_syscall_64+0x14d/0xf80
[ 256.482986][ T6765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.485554][ T6765]
[ 256.486605][ T6765] Freed by task 5635:
[ 256.488399][ T6765] kasan_save_track+0x3e/0x80
[ 256.490401][ T6765] kasan_save_free_info+0x46/0x50
[ 256.492538][ T6765] __kasan_slab_free+0x5c/0x80
[ 256.494605][ T6765] kfree+0x1c1/0x630
[ 256.496284][ T6765] rcu_core+0x7cd/0x1070
[ 256.498151][ T6765] handle_softirqs+0x22a/0x870
[ 256.500376][ T6765] __irq_exit_rcu+0x5f/0x150
[ 256.502462][ T6765] irq_exit_rcu+0x9/0x30
[ 256.504323][ T6765] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 256.506703][ T6765] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 256.509115][ T6765]
[ 256.510106][ T6765] Last potentially related work creation:
[ 256.512302][ T6765] kasan_save_stack+0x3e/0x60
[ 256.514208][ T6765] kasan_record_aux_stack+0xbd/0xd0
[ 256.516280][ T6765] call_rcu+0xee/0x890
[ 256.517989][ T6765] bpf_link_release+0x6b/0x80
[ 256.520035][ T6765] __fput+0x44f/0xa70
[ 256.521912][ T6765] task_work_run+0x1d9/0x270
[ 256.523906][ T6765] do_exit+0x69b/0x2320
[ 256.525747][ T6765] do_group_exit+0x21b/0x2d0
[ 256.527771][ T6765] __x64_sys_exit_group+0x3f/0x40
[ 256.530020][ T6765] x64_sys_call+0x221a/0x2240
[ 256.532060][ T6765] do_syscall_64+0x14d/0xf80
[ 256.533980][ T6765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.536521][ T6765]
[ 256.537642][ T6765] The buggy address belongs to the object at ffff88803e844400
[ 256.537642][ T6765] which belongs to the cache kmalloc-192 of size 192
[ 256.543591][ T6765] The buggy address is located 24 bytes inside of
[ 256.543591][ T6765] freed 192-byte region [ffff88803e844400, ffff88803e8444c0)
[ 256.549330][ T6765]
[ 256.550451][ T6765] The buggy address belongs to the physical page:
[ 256.553149][ T6765] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3e844
[ 256.556775][ T6765] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 256.559967][ T6765] page_type: f5(slab)
[ 256.561769][ T6765] raw: 04fff00000000000 ffff88801ac413c0 dead000000000100 dead000000000122
[ 256.565357][ T6765] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 256.569030][ T6765] page dumped because: kasan: bad access detected
[ 256.571746][ T6765] page_owner tracks the page as allocated
[ 256.574194][ T6765] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5363, tgid 5363 (syz-executor), ts 205504727667, free_ts 205211700874
[ 256.582167][ T6765] post_alloc_hook+0x231/0x280
[ 256.584304][ T6765] get_page_from_freelist+0x24dc/0x2580
[ 256.586726][ T6765] __alloc_frozen_pages_noprof+0x18d/0x380
[ 256.589347][ T6765] allocate_slab+0x77/0x660
[ 256.591355][ T6765] ___slab_alloc+0x150/0x6b0
[ 256.593403][ T6765] __kmalloc_node_noprof+0x309/0x7c0
[ 256.595577][ T6765] alloc_slab_obj_exts+0x4b/0x1b0
[ 256.597720][ T6765] __memcg_slab_post_alloc_hook+0x53c/0xa80
[ 256.600231][ T6765] kmem_cache_alloc_lru_noprof+0x346/0x640
[ 256.603119][ T6765] __d_alloc+0x37/0x6f0
[ 256.605233][ T6765] d_alloc+0x4b/0x190
[ 256.607379][ T6765] lookup_one_qstr_excl+0xdc/0x360
[ 256.610363][ T6765] filename_create+0x20e/0x370
[ 256.612515][ T6765] filename_mkdirat+0xd2/0x510
[ 256.614533][ T6765] __se_sys_mkdirat+0x35/0x150
[ 256.616491][ T6765] do_syscall_64+0x14d/0xf80
[ 256.618643][ T6765] page last free pid 5362 tgid 5362 stack trace:
[ 256.621321][ T6765] __free_frozen_pages+0xc2b/0xdb0
[ 256.623515][ T6765] vfree+0x25a/0x400
[ 256.625261][ T6765] kcov_close+0x28/0x50
[ 256.627045][ T6765] __fput+0x44f/0xa70
[ 256.628783][ T6765] task_work_run+0x1d9/0x270
[ 256.630917][ T6765] do_exit+0x69b/0x2320
[ 256.632678][ T6765] do_group_exit+0x21b/0x2d0
[ 256.634661][ T6765] get_signal+0x1284/0x1330
[ 256.636641][ T6765] arch_do_signal_or_restart+0xbc/0x830
[ 256.638906][ T6765] exit_to_user_mode_loop+0x86/0x480
[ 256.641122][ T6765] do_syscall_64+0x32d/0xf80
[ 256.643418][ T6765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.646102][ T6765]
[ 256.647130][ T6765] Memory state around the buggy address:
[ 256.649619][ T6765] ffff88803e844300: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 256.653045][ T6765] ffff88803e844380: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 256.656418][ T6765] >ffff88803e844400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 256.659905][ T6765] ^
[ 256.662073][ T6765] ffff88803e844480: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 256.665489][ T6765] ffff88803e844500: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 256.668882][ T6765] ==================================================================
[ 256.706221][ T6765] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 256.709255][ T6765] CPU: 0 UID: 0 PID: 6765 Comm: syz.4.1058 Not tainted syzkaller #0 PREEMPT(full)
[ 256.713171][ T6765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 256.717506][ T6765] Call Trace:
[ 256.719141][ T6765]
[ 256.720346][ T6765] vpanic+0x56c/0xa60
[ 256.722012][ T6765] ? __pfx_vpanic+0x10/0x10
[ 256.723968][ T6765] panic+0xc5/0xd0
[ 256.725636][ T6765] ? __pfx_panic+0x10/0x10
[ 256.727572][ T6765] ? preempt_schedule_thunk+0x16/0x30
[ 256.730000][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.732113][ T6765] ? preempt_schedule_thunk+0x16/0x30
[ 256.734474][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.736534][ T6765] check_panic_on_warn+0x89/0xb0
[ 256.738721][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.741223][ T6765] end_report+0x73/0x180
[ 256.743140][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.745381][ T6765] kasan_report+0x128/0x150
[ 256.747456][ T6765] ? bpf_trace_run9+0x13b/0x8c0
[ 256.749764][ T6765] bpf_trace_run9+0x13b/0x8c0
[ 256.752013][ T6765] ? bpf_trace_run9+0x250/0x8c0
[ 256.754213][ T6765] ? __pfx_bpf_trace_run9+0x10/0x10
[ 256.756551][ T6765] ? virtio_transport_alloc_skb+0xf4/0x1180
[ 256.759260][ T6765] ? vsock_connect+0xaf5/0xd60
[ 256.761357][ T6765] ? __sys_connect+0x312/0x450
[ 256.763432][ T6765] __bpf_trace_virtio_transport_alloc_pkt+0x3a5/0x410
[ 256.766386][ T6765] ? __pfx___bpf_trace_virtio_transport_alloc_pkt+0x10/0x10
[ 256.769581][ T6765] ? kmem_cache_alloc_node_noprof+0x3ce/0x690
[ 256.772343][ T6765] ? __pfx___bpf_trace_virtio_transport_alloc_pkt+0x10/0x10
[ 256.775522][ T6765] __traceiter_virtio_transport_alloc_pkt+0xc1/0x120
[ 256.778437][ T6765] virtio_transport_alloc_skb+0x1108/0x1180
[ 256.781036][ T6765] ? __pfx_virtio_transport_alloc_skb+0x10/0x10
[ 256.783773][ T6765] virtio_transport_send_pkt_info+0x570/0xff0
[ 256.786341][ T6765] ? lockdep_hardirqs_on+0x7a/0x110
[ 256.788550][ T6765] virtio_transport_connect+0xf5/0x150
[ 256.790918][ T6765] ? __pfx_virtio_transport_connect+0x10/0x10
[ 256.793550][ T6765] ? __pfx_vsock_auto_bind+0x10/0x10
[ 256.795871][ T6765] vsock_connect+0xaf5/0xd60
[ 256.797948][ T6765] ? aa_sk_perm+0x6d5/0x900
[ 256.800025][ T6765] ? __pfx_vsock_connect+0x10/0x10
[ 256.802329][ T6765] ? __pfx_aa_sk_perm+0x10/0x10
[ 256.804427][ T6765] ? __pfx_autoremove_wake_function+0x10/0x10
[ 256.806993][ T6765] ? hook_socket_connect+0x107/0x190
[ 256.809351][ T6765] ? bpf_lsm_socket_connect+0x9/0x20
[ 256.811356][ T6765] __sys_connect+0x312/0x450
[ 256.813631][ T6765] ? __pfx___sys_connect+0x10/0x10
[ 256.815892][ T6765] __x64_sys_connect+0x7a/0x90
[ 256.817932][ T6765] do_syscall_64+0x14d/0xf80
[ 256.819946][ T6765] ? trace_irq_disable+0x3b/0x150
[ 256.822093][ T6765] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.824577][ T6765] ? clear_bhb_loop+0x40/0x90
[ 256.826623][ T6765] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 256.829203][ T6765] RIP: 0033:0x7fc75219c799
[ 256.831028][ T6765] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 256.839097][ T6765] RSP: 002b:00007ffcd83db0e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 256.842530][ T6765] RAX: ffffffffffffffda RBX: 00007fc752415fa0 RCX: 00007fc75219c799
[ 256.845918][ T6765] RDX: 0000000000000010 RSI: 0000200000000080 RDI: 0000000000000003
[ 256.849292][ T6765] RBP: 00007fc752232bd9 R08: 0000000000000000 R09: 0000000000000000
[ 256.852626][ T6765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 256.856100][ T6765] R13: 00007fc752415fac R14: 00007fc752415fa0 R15: 00007fc752415fa0
[ 256.859576][ T6765]
[ 256.861264][ T6765] Kernel Offset: disabled
[ 256.863159][ T6765] Rebooting in 86400 seconds..
VM DIAGNOSIS:
19:35:40 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90004976ed0
R8 =ffff888034d60237 R9 =1ffff110069ac046 R10=dffffc0000000000 R11=ffffffff854184f0
R12=dffffc0000000000 R13=ffffffff9a2bda66 R14=ffffffff9a5d5c60 R15=0000000000000000
RIP=ffffffff8541856c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555755b8500 ffffffff 00c00000
GS =0000 ffff88808ca59000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000080 CR3=0000000042dc4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 405b0352af038a9a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2d7004022d700402 2d7004022d700402
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e40dfdfbe40dfdfb e40dfdfbe40dfdfb
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a2e42d475e5340b 4282e97fca3886c9
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5c9c54240a6b9c57 d1eeb5b6d6cbf825
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 bc96130831c1b6c6 25b6e7bc64920d32
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5bff164fa32083ab 2761ee0f2bfd1e4e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 9de3c92104ebd35e 1f1956cbb67ad77c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 193f0afa51d93401 fa3ef3aaa7db948c
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 693d610d3f25fc7c d13e1d142abaf126
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 13fa2307673f7a88 f91fc317a9d81d1c
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 85cb1e3785cb1e37 85cb1e3785cb1e37
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1bbd592a1bbd592a 1bbd592a1bbd592a
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c4aa9b58c4aa9b58 c4aa9b58c4aa9b58
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000