Warning: Permanently added '10.128.1.155' (ED25519) to the list of known hosts.
2026/05/23 06:24:48 parsed 1 programs
syzkaller login: [ 86.413489][ T5782] cgroup: Unknown subsys name 'net'
[ 86.550490][ T5782] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 88.446696][ T5782] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 90.188052][ T5799] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 90.196205][ T5799] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 90.204367][ T5799] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 90.213438][ T5799] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 90.222056][ T5799] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 90.229493][ T5799] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 91.860602][ T5824] chnl_net:caif_netlink_parms(): no params data found
[ 91.948201][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.956153][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.963504][ T5824] bridge_slave_0: entered allmulticast mode
[ 91.970570][ T5824] bridge_slave_0: entered promiscuous mode
[ 91.980359][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.987969][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.995781][ T5824] bridge_slave_1: entered allmulticast mode
[ 92.003689][ T5824] bridge_slave_1: entered promiscuous mode
[ 92.034990][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.047055][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.084283][ T5824] team0: Port device team_slave_0 added
[ 92.094504][ T5824] team0: Port device team_slave_1 added
[ 92.120983][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.128083][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.155153][ T8] cfg80211: failed to load regulatory.db
[ 92.156360][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.175906][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.183858][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.216191][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.284966][ T5824] hsr_slave_0: entered promiscuous mode
[ 92.291462][ T5824] hsr_slave_1: entered promiscuous mode
[ 92.470108][ T5824] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 92.483856][ T5824] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 92.495110][ T5824] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 92.517728][ T5824] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 92.552119][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.559436][ T5824] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 92.567598][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.574829][ T5824] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 92.664544][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[ 92.698299][ T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.707422][ T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.737398][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[ 92.752047][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.759346][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 92.778536][ T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.785774][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 93.065408][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 93.110426][ T5824] veth0_vlan: entered promiscuous mode
[ 93.123679][ T5824] veth1_vlan: entered promiscuous mode
[ 93.153909][ T5824] veth0_macvtap: entered promiscuous mode
[ 93.170608][ T5824] veth1_macvtap: entered promiscuous mode
[ 93.190362][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 93.207817][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 93.222288][ T5824] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.231133][ T5824] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.240418][ T5824] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.249222][ T5824] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.417970][ T60] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.262725][ T1323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.275449][ T1323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.309730][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.319228][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 95.920407][ T60] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/23 06:25:00 executed programs: 0
[ 96.237748][ T5081] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 96.246370][ T5081] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 96.254969][ T5081] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 96.264282][ T5081] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 96.274239][ T5081] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 96.281654][ T5081] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 96.437164][ T5889] chnl_net:caif_netlink_parms(): no params data found
[ 96.508919][ T5889] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.516305][ T5889] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.523618][ T5889] bridge_slave_0: entered allmulticast mode
[ 96.530772][ T5889] bridge_slave_0: entered promiscuous mode
[ 96.539832][ T5889] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.547641][ T5889] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.555321][ T5889] bridge_slave_1: entered allmulticast mode
[ 96.563370][ T5889] bridge_slave_1: entered promiscuous mode
[ 96.593787][ T5889] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.605796][ T5889] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.639880][ T5889] team0: Port device team_slave_0 added
[ 96.648377][ T5889] team0: Port device team_slave_1 added
[ 96.675380][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.682590][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.709518][ T5889] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.723273][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.730262][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.756590][ T5889] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 96.801334][ T5889] hsr_slave_0: entered promiscuous mode
[ 96.807945][ T5889] hsr_slave_1: entered promiscuous mode
[ 96.814562][ T5889] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 96.822534][ T5889] Cannot create hsr debugfs directory
[ 98.373446][ T5799] Bluetooth: hci0: command tx timeout
[ 98.604091][ T60] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.656826][ T60] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 99.549917][ T5889] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 99.588185][ T60] hsr_slave_0: left promiscuous mode
[ 99.600995][ T60] hsr_slave_1: left promiscuous mode
[ 99.611465][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 99.622272][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 99.645739][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 99.657897][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 99.668028][ T60] bridge_slave_1: left allmulticast mode
[ 99.684730][ T60] bridge_slave_1: left promiscuous mode
[ 99.691421][ T60] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.714277][ T60] bridge_slave_0: left allmulticast mode
[ 99.720017][ T60] bridge_slave_0: left promiscuous mode
[ 99.738799][ T60] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.799081][ T60] veth1_macvtap: left promiscuous mode
[ 99.822304][ T60] veth0_macvtap: left promiscuous mode
[ 99.828132][ T60] veth1_vlan: left promiscuous mode
[ 99.858849][ T60] veth0_vlan: left promiscuous mode
[ 100.443313][ T60] team0 (unregistering): Port device team_slave_1 removed
[ 100.452060][ T5799] Bluetooth: hci0: command tx timeout
[ 100.486150][ T60] team0 (unregistering): Port device team_slave_0 removed
[ 100.518953][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 100.558257][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 100.810433][ T60] bond0 (unregistering): Released all slaves
[ 100.924466][ T5889] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 100.935584][ T5889] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 100.947604][ T5889] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.045060][ T5889] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.080891][ T5889] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.093759][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.100989][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.120562][ T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.127791][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.418373][ T5889] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.483335][ T5889] veth0_vlan: entered promiscuous mode
[ 101.506091][ T5889] veth1_vlan: entered promiscuous mode
[ 101.561380][ T5889] veth0_macvtap: entered promiscuous mode
[ 101.589727][ T5889] veth1_macvtap: entered promiscuous mode
[ 101.619982][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.635326][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.647798][ T5889] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.657157][ T5889] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.666136][ T5889] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.675002][ T5889] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.740714][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.753250][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.783679][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.792778][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/23 06:25:06 executed programs: 2
[ 101.861902][ C1] hrtimer: interrupt took 130086 ns
[ 102.532193][ T5799] Bluetooth: hci0: command tx timeout
[ 104.612087][ T5799] Bluetooth: hci0: command tx timeout
2026/05/23 06:25:11 executed programs: 118
2026/05/23 06:25:16 executed programs: 249
2026/05/23 06:25:21 executed programs: 390
[ 120.308111][ C1] ==================================================================
[ 120.316253][ C1] BUG: KASAN: slab-out-of-bounds in __bpf_get_stackid+0x6bf/0x900
[ 120.324092][ C1] Write of size 32 at addr ffff88805f62e060 by task syz.0.533/6961
[ 120.331996][ C1]
[ 120.334346][ C1] CPU: 1 PID: 6961 Comm: syz.0.533 Not tainted syzkaller #0
[ 120.341628][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 120.351698][ C1] Call Trace:
[ 120.355009][ C1]
[ 120.357969][ C1] dump_stack_lvl+0x18c/0x250
[ 120.362672][ C1] ? __lock_acquire+0x7d40/0x7d40
[ 120.367712][ C1] ? show_regs_print_info+0x20/0x20
[ 120.372933][ C1] ? load_image+0x420/0x420
[ 120.377496][ C1] ? _raw_spin_lock_irqsave+0xc0/0x100
[ 120.383016][ C1] ? __virt_addr_valid+0x18c/0x540
[ 120.388157][ C1] ? __virt_addr_valid+0x469/0x540
[ 120.393300][ C1] print_report+0xa8/0x210
[ 120.397748][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 120.402907][ C1] kasan_report+0x117/0x150
[ 120.407436][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 120.412575][ C1] kasan_check_range+0x241/0x290
[ 120.417559][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 120.422697][ C1] __asan_memcpy+0x40/0x70
[ 120.427143][ C1] __bpf_get_stackid+0x6bf/0x900
[ 120.432115][ C1] bpf_get_stackid_pe+0x2f0/0x410
[ 120.437173][ C1] bpf_prog_644fb7c94e15512a+0x33/0x48
[ 120.442669][ C1] bpf_overflow_handler+0x1fc/0x510
[ 120.447893][ C1] ? verify_lock_unused+0x140/0x140
[ 120.453119][ C1] ? bpf_overflow_handler+0xde/0x510
[ 120.458447][ C1] ? tp_perf_event_destroy+0x20/0x20
[ 120.463817][ C1] ? __perf_event_account_interrupt+0x187/0x280
[ 120.470081][ C1] __perf_event_overflow+0x447/0x630
[ 120.475392][ C1] perf_swevent_hrtimer+0x439/0x610
[ 120.480618][ C1] ? cpu_clock_event_read+0x40/0x40
[ 120.485847][ C1] ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 120.491770][ C1] ? _raw_spin_unlock+0x40/0x40
[ 120.496664][ C1] __hrtimer_run_queues+0x4e1/0xc40
[ 120.501889][ C1] ? ktime_get_update_offsets_now+0x99/0x3f0
[ 120.507905][ C1] ? cpu_clock_event_read+0x40/0x40
[ 120.513127][ C1] ? hrtimer_interrupt+0x9c0/0x9c0
[ 120.518258][ C1] ? read_tsc+0x9/0x20
[ 120.522345][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 120.528439][ C1] hrtimer_interrupt+0x3c9/0x9c0
[ 120.533411][ C1] __sysvec_apic_timer_interrupt+0xfb/0x3b0
[ 120.539341][ C1] sysvec_apic_timer_interrupt+0x51/0xc0
[ 120.545024][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 120.551029][ C1] RIP: 0033:0x7ffdddfdd988
[ 120.555465][ C1] Code: b8 01 00 00 00 89 f9 d3 e0 a9 83 08 00 00 0f 84 f5 00 00 00 4c 8d 35 07 b7 ff ff 41 89 fc 49 c1 e4 04 4b 8d 5c 26 20 45 8b 3e <41> f6 c7 01 75 32 41 8b 46 04 83 f8 01 75 3b 0f 01 f9 66 90 48 c1
[ 120.575095][ C1] RSP: 002b:00007fa05f5fdff0 EFLAGS: 00000202
[ 120.581185][ C1] RAX: 0000000000000002 RBX: 00007ffdddfd90b0 RCX: 0000000000000001
[ 120.589178][ C1] RDX: 00007fa0600b9b40 RSI: 00007fa05f5fe0b0 RDI: 0000000000000001
[ 120.597170][ C1] RBP: 00007fa05f5fe030 R08: 0000000000000000 R09: 0000000000000000
[ 120.605166][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000010
[ 120.613156][ C1] R13: 00007fa060216038 R14: 00007ffdddfd9080 R15: 000000000000586c
[ 120.621151][ C1]
[ 120.624185][ C1]
[ 120.626527][ C1] Allocated by task 6961:
[ 120.630864][ C1] kasan_set_track+0x4e/0x70
[ 120.635513][ C1] __kasan_kmalloc+0x8f/0xa0
[ 120.640118][ C1] __kmalloc_node+0xb4/0x230
[ 120.644735][ C1] bpf_map_area_alloc+0x5e/0x110
[ 120.649700][ C1] prealloc_elems_and_freelist+0x86/0x1c0
[ 120.655440][ C1] stack_map_alloc+0x33a/0x4c0
[ 120.660230][ C1] map_create+0x877/0x12f0
[ 120.664666][ C1] __sys_bpf+0x651/0x890
[ 120.668945][ C1] __x64_sys_bpf+0x7c/0x90
[ 120.673384][ C1] do_syscall_64+0x55/0xb0
[ 120.677819][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 120.683732][ C1]
[ 120.686069][ C1] Last potentially related work creation:
[ 120.691798][ C1] kasan_save_stack+0x3e/0x60
[ 120.696502][ C1] __kasan_record_aux_stack+0xaf/0xc0
[ 120.701898][ C1] call_rcu+0x153/0x950
[ 120.706079][ C1] nf_unregister_net_hooks+0xcb/0x130
[ 120.711473][ C1] cleanup_net+0x595/0xbb0
[ 120.715906][ C1] process_scheduled_works+0xa5d/0x15d0
[ 120.721466][ C1] worker_thread+0xa55/0xfc0
[ 120.726080][ C1] kthread+0x2fa/0x390
[ 120.730168][ C1] ret_from_fork+0x48/0x80
[ 120.734621][ C1] ret_from_fork_asm+0x11/0x20
[ 120.739408][ C1]
[ 120.741744][ C1] The buggy address belongs to the object at ffff88805f62e000
[ 120.741744][ C1] which belongs to the cache kmalloc-cg-128 of size 128
[ 120.756080][ C1] The buggy address is located 96 bytes inside of
[ 120.756080][ C1] allocated 120-byte region [ffff88805f62e000, ffff88805f62e078)
[ 120.770151][ C1]
[ 120.772496][ C1] The buggy address belongs to the physical page:
[ 120.778935][ C1] page:ffffea00017d8b80 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5f62e
[ 120.789108][ C1] memcg:ffff88802409b301
[ 120.793357][ C1] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 120.800924][ C1] page_type: 0xffffffff()
[ 120.805270][ C1] raw: 00fff00000000800 ffff888017c4dc80 ffffea0000bf8d00 dead000000000002
[ 120.813868][ C1] raw: 0000000000000000 0000000080100010 00000001ffffffff ffff88802409b301
[ 120.822461][ C1] page dumped because: kasan: bad access detected
[ 120.828896][ C1] page_owner tracks the page as allocated
[ 120.834624][ C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 5880, tgid 5880 (syz-executor), ts 95495938835, free_ts 95084958247
[ 120.852870][ C1] post_alloc_hook+0x1c1/0x200
[ 120.857665][ C1] get_page_from_freelist+0x1951/0x19e0
[ 120.863230][ C1] __alloc_pages+0x1f0/0x460
[ 120.867838][ C1] alloc_slab_page+0x5d/0x160
[ 120.872536][ C1] new_slab+0x87/0x2d0
[ 120.876629][ C1] ___slab_alloc+0xc5d/0x12f0
[ 120.881329][ C1] __kmem_cache_alloc_node+0x19e/0x250
[ 120.886813][ C1] __kmalloc_node+0xa4/0x230
[ 120.891423][ C1] kvmalloc_node+0x70/0x180
[ 120.895948][ C1] nf_hook_entries_grow+0x27d/0x6d0
[ 120.901171][ C1] __nf_register_net_hook+0x2c9/0x910
[ 120.906588][ C1] nf_register_net_hook+0xb2/0x190
[ 120.911721][ C1] nf_register_net_hooks+0x44/0x1b0
[ 120.916943][ C1] ip6t_register_table+0x543/0x7e0
[ 120.922075][ C1] ip6table_security_table_init+0x41/0x60
[ 120.927821][ C1] xt_find_table_lock+0x306/0x3e0
[ 120.932872][ C1] page last free stack trace:
[ 120.937553][ C1] free_unref_page_prepare+0x7b2/0x8c0
[ 120.943058][ C1] free_unref_page+0x32/0x2e0
[ 120.947761][ C1] vfree+0x1a6/0x320
[ 120.951680][ C1] kcov_close+0x2b/0x50
[ 120.955866][ C1] __fput+0x234/0x970
[ 120.959865][ C1] task_work_run+0x1d4/0x260
[ 120.964484][ C1] do_exit+0x95a/0x2460
[ 120.968670][ C1] do_group_exit+0x21b/0x2d0
[ 120.973297][ C1] get_signal+0x12fc/0x13f0
[ 120.977830][ C1] arch_do_signal_or_restart+0xc2/0x800
[ 120.983425][ C1] exit_to_user_mode_loop+0x70/0x110
[ 120.988734][ C1] exit_to_user_mode_prepare+0xee/0x180
[ 120.994312][ C1] syscall_exit_to_user_mode+0x1a/0x50
[ 120.999793][ C1] do_syscall_64+0x61/0xb0
[ 121.004232][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 121.010154][ C1]
[ 121.012500][ C1] Memory state around the buggy address:
[ 121.018147][ C1] ffff88805f62df00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 121.026227][ C1] ffff88805f62df80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 121.034325][ C1] >ffff88805f62e000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[ 121.042405][ C1] ^
[ 121.050395][ C1] ffff88805f62e080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 121.058477][ C1] ffff88805f62e100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc
[ 121.066549][ C1] ==================================================================
[ 121.074632][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 121.081847][ C1] CPU: 1 PID: 6961 Comm: syz.0.533 Not tainted syzkaller #0
[ 121.089145][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 121.099221][ C1] Call Trace:
[ 121.102518][ C1]
[ 121.105469][ C1] dump_stack_lvl+0x18c/0x250
[ 121.110170][ C1] ? show_regs_print_info+0x20/0x20
[ 121.115395][ C1] ? load_image+0x420/0x420
[ 121.119930][ C1] panic+0x2dc/0x730
[ 121.123854][ C1] ? __lock_acquire+0x7d40/0x7d40
[ 121.128897][ C1] ? bpf_jit_dump+0xd0/0xd0
[ 121.133425][ C1] ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 121.139341][ C1] ? _raw_spin_unlock+0x40/0x40
[ 121.144219][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 121.149352][ C1] check_panic_on_warn+0x84/0xa0
[ 121.154317][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 121.159453][ C1] end_report+0x6f/0x130
[ 121.163719][ C1] kasan_report+0x128/0x150
[ 121.168242][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 121.173385][ C1] kasan_check_range+0x241/0x290
[ 121.178347][ C1] ? __bpf_get_stackid+0x6bf/0x900
[ 121.183484][ C1] __asan_memcpy+0x40/0x70
[ 121.187924][ C1] __bpf_get_stackid+0x6bf/0x900
[ 121.192895][ C1] bpf_get_stackid_pe+0x2f0/0x410
[ 121.197950][ C1] bpf_prog_644fb7c94e15512a+0x33/0x48
[ 121.203429][ C1] bpf_overflow_handler+0x1fc/0x510
[ 121.208658][ C1] ? verify_lock_unused+0x140/0x140
[ 121.213886][ C1] ? bpf_overflow_handler+0xde/0x510
[ 121.219205][ C1] ? tp_perf_event_destroy+0x20/0x20
[ 121.224518][ C1] ? __perf_event_account_interrupt+0x187/0x280
[ 121.230788][ C1] __perf_event_overflow+0x447/0x630
[ 121.236104][ C1] perf_swevent_hrtimer+0x439/0x610
[ 121.241332][ C1] ? cpu_clock_event_read+0x40/0x40
[ 121.246569][ C1] ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 121.252488][ C1] ? _raw_spin_unlock+0x40/0x40
[ 121.257371][ C1] __hrtimer_run_queues+0x4e1/0xc40
[ 121.262586][ C1] ? ktime_get_update_offsets_now+0x99/0x3f0
[ 121.268601][ C1] ? cpu_clock_event_read+0x40/0x40
[ 121.273831][ C1] ? hrtimer_interrupt+0x9c0/0x9c0
[ 121.278964][ C1] ? read_tsc+0x9/0x20
[ 121.283056][ C1] ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 121.289153][ C1] hrtimer_interrupt+0x3c9/0x9c0
[ 121.294126][ C1] __sysvec_apic_timer_interrupt+0xfb/0x3b0
[ 121.300056][ C1] sysvec_apic_timer_interrupt+0x51/0xc0
[ 121.305718][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 121.311723][ C1] RIP: 0033:0x7ffdddfdd988
[ 121.316176][ C1] Code: b8 01 00 00 00 89 f9 d3 e0 a9 83 08 00 00 0f 84 f5 00 00 00 4c 8d 35 07 b7 ff ff 41 89 fc 49 c1 e4 04 4b 8d 5c 26 20 45 8b 3e <41> f6 c7 01 75 32 41 8b 46 04 83 f8 01 75 3b 0f 01 f9 66 90 48 c1
[ 121.335800][ C1] RSP: 002b:00007fa05f5fdff0 EFLAGS: 00000202
[ 121.341898][ C1] RAX: 0000000000000002 RBX: 00007ffdddfd90b0 RCX: 0000000000000001
[ 121.349884][ C1] RDX: 00007fa0600b9b40 RSI: 00007fa05f5fe0b0 RDI: 0000000000000001
[ 121.357870][ C1] RBP: 00007fa05f5fe030 R08: 0000000000000000 R09: 0000000000000000
[ 121.365856][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000010
[ 121.373856][ C1] R13: 00007fa060216038 R14: 00007ffdddfd9080 R15: 000000000000586c
[ 121.381854][ C1]
[ 121.385469][ C1] Kernel Offset: disabled
[ 121.389799][ C1] Rebooting in 86400 seconds..