Warning: Permanently added '10.128.0.29' (ED25519) to the list of known hosts.
2026/02/10 19:53:37 parsed 1 programs
[ 88.159522][ T5825] cgroup: Unknown subsys name 'net'
[ 88.273042][ T5825] cgroup: Unknown subsys name 'cpuset'
[ 88.281810][ T5825] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 89.831809][ T5825] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 91.971882][ T942] cfg80211: failed to load regulatory.db
[ 92.450469][ T5841] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 92.838366][ T5848] chnl_net:caif_netlink_parms(): no params data found
[ 92.951951][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.959128][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.967690][ T5848] bridge_slave_0: entered allmulticast mode
[ 92.974952][ T5848] bridge_slave_0: entered promiscuous mode
[ 92.988041][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.995415][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.002666][ T5848] bridge_slave_1: entered allmulticast mode
[ 93.010126][ T5848] bridge_slave_1: entered promiscuous mode
[ 93.036218][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.047644][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.074234][ T5848] team0: Port device team_slave_0 added
[ 93.081913][ T5848] team0: Port device team_slave_1 added
[ 93.105887][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 93.112997][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 93.139126][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 93.152373][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 93.159425][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 93.185732][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 93.234403][ T5848] hsr_slave_0: entered promiscuous mode
[ 93.241728][ T5848] hsr_slave_1: entered promiscuous mode
[ 93.368834][ T5848] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 93.381796][ T5848] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 93.393312][ T5848] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 93.404725][ T5848] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 93.436401][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.443701][ T5848] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 93.451638][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.458743][ T5848] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 93.512371][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[ 93.531649][ T1117] bridge0: port 1(bridge_slave_0) entered disabled state
[ 93.541035][ T1117] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.558087][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[ 93.571686][ T1117] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.578799][ T1117] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 93.592704][ T78] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.599964][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 93.774364][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 93.815844][ T5848] veth0_vlan: entered promiscuous mode
[ 93.827797][ T5848] veth1_vlan: entered promiscuous mode
[ 93.855415][ T5848] veth0_macvtap: entered promiscuous mode
[ 93.865081][ T5848] veth1_macvtap: entered promiscuous mode
[ 93.884610][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 93.901768][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 93.917174][ T161] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.926647][ T161] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.936848][ T161] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.946620][ T161] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.107073][ T78] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.170541][ T78] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.238046][ T78] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.273719][ T161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.287303][ T161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.302739][ T78] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.338047][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.346117][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 95.071864][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 95.082931][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 95.092867][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 95.111417][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 95.119128][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 97.188453][ T78] bridge_slave_1: left allmulticast mode
[ 97.200585][ T78] bridge_slave_1: left promiscuous mode
[ 97.211004][ T78] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.225294][ T78] bridge_slave_0: left allmulticast mode
[ 97.232593][ T78] bridge_slave_0: left promiscuous mode
2026/02/10 19:53:49 executed programs: 0
[ 97.238393][ T78] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.347042][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 97.362389][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 97.371907][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 97.391007][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 97.398765][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 97.541192][ T78] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 97.555120][ T78] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 97.565137][ T78] bond0 (unregistering): Released all slaves
[ 97.672552][ T78] hsr_slave_0: left promiscuous mode
[ 97.678728][ T78] hsr_slave_1: left promiscuous mode
[ 97.685433][ T78] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 97.693189][ T78] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 97.702003][ T78] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 97.709421][ T78] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 97.733198][ T78] veth1_macvtap: left promiscuous mode
[ 97.738970][ T78] veth0_macvtap: left promiscuous mode
[ 97.744964][ T78] veth1_vlan: left promiscuous mode
[ 97.751372][ T78] veth0_vlan: left promiscuous mode
[ 98.256233][ T78] team0 (unregistering): Port device team_slave_1 removed
[ 98.281615][ T78] team0 (unregistering): Port device team_slave_0 removed
[ 98.645170][ T5937] chnl_net:caif_netlink_parms(): no params data found
[ 98.798733][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.806067][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.818811][ T5937] bridge_slave_0: entered allmulticast mode
[ 98.827013][ T5937] bridge_slave_0: entered promiscuous mode
[ 98.843148][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.856322][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.864341][ T5937] bridge_slave_1: entered allmulticast mode
[ 98.873187][ T5937] bridge_slave_1: entered promiscuous mode
[ 98.934896][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 98.967409][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.426081][ T5937] team0: Port device team_slave_0 added
[ 99.434601][ T5937] team0: Port device team_slave_1 added
[ 99.493857][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.502739][ T5143] Bluetooth: hci0: command tx timeout
[ 99.509803][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.536380][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.551141][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.558155][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.586019][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.697177][ T5937] hsr_slave_0: entered promiscuous mode
[ 99.715315][ T5937] hsr_slave_1: entered promiscuous mode
[ 100.566290][ T5937] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 100.581913][ T5937] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 100.595350][ T5937] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 100.608051][ T5937] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 100.727091][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[ 100.752800][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[ 100.767668][ T78] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.774914][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 100.803840][ T78] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.811151][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.081236][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.153208][ T5937] veth0_vlan: entered promiscuous mode
[ 101.168132][ T5937] veth1_vlan: entered promiscuous mode
[ 101.213311][ T5937] veth0_macvtap: entered promiscuous mode
[ 101.227136][ T5937] veth1_macvtap: entered promiscuous mode
[ 101.253218][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.273049][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.296001][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.307551][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.324329][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.345428][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.418051][ T1117] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.433206][ T1117] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.469014][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.477003][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.569736][ T5143] Bluetooth: hci0: command tx timeout
[ 101.818258][ T6039] ==================================================================
[ 101.826459][ T6039] BUG: KASAN: slab-use-after-free in _raw_spin_lock+0x2e/0x40
[ 101.833960][ T6039] Read of size 1 at addr ffff888033ce23e0 by task syz.0.19/6039
[ 101.841617][ T6039]
[ 101.843986][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT(full)
[ 101.844019][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 101.844042][ T6039] Call Trace:
[ 101.844051][ T6039]
[ 101.844061][ T6039] dump_stack_lvl+0x100/0x190
[ 101.844103][ T6039] print_report+0x156/0x4c9
[ 101.844138][ T6039] ? __virt_addr_valid+0x81/0x620
[ 101.844162][ T6039] ? __phys_addr+0xe8/0x180
[ 101.844203][ T6039] ? _raw_spin_lock+0x2e/0x40
[ 101.844240][ T6039] kasan_report+0xdf/0x1a0
[ 101.844278][ T6039] ? _raw_spin_lock+0x2e/0x40
[ 101.844318][ T6039] ? _raw_spin_lock+0x2e/0x40
[ 101.844357][ T6039] __kasan_check_byte+0x36/0x50
[ 101.844394][ T6039] lock_acquire+0xf5/0x330
[ 101.844435][ T6039] _raw_spin_lock+0x2e/0x40
[ 101.844472][ T6039] ? futex_unqueue+0xa5/0x2c0
[ 101.844507][ T6039] futex_unqueue+0xa5/0x2c0
[ 101.844543][ T6039] __futex_wait+0x1cc/0x300
[ 101.844569][ T6039] ? __pfx___futex_wait+0x10/0x10
[ 101.844594][ T6039] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 101.844636][ T6039] ? lockdep_hardirqs_on+0x78/0x100
[ 101.844665][ T6039] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.844699][ T6039] ? find_held_lock+0x2b/0x80
[ 101.844732][ T6039] ? futex_wake+0x456/0x530
[ 101.844760][ T6039] futex_wait+0xed/0x380
[ 101.844785][ T6039] ? __pfx_futex_wait+0x10/0x10
[ 101.844817][ T6039] do_futex+0x1ef/0x350
[ 101.844848][ T6039] ? __pfx_do_futex+0x10/0x10
[ 101.844881][ T6039] ? copy_semid_from_user.constprop.0+0x35/0x50
[ 101.844910][ T6039] ? ksys_semctl.constprop.0+0x14e/0x2e0
[ 101.844941][ T6039] __x64_sys_futex+0x34f/0x4d0
[ 101.844977][ T6039] ? __pfx___x64_sys_futex+0x10/0x10
[ 101.845016][ T6039] do_syscall_64+0xc9/0xf80
[ 101.845046][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.845074][ T6039] RIP: 0033:0x7f6f87b9bf79
[ 101.845108][ T6039] Code: Unable to access opcode bytes at 0x7f6f87b9bf4f.
[ 101.845121][ T6039] RSP: 002b:00007f6f889c40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.845151][ T6039] RAX: ffffffffffffffda RBX: 00007f6f87e15fa8 RCX: 00007f6f87b9bf79
[ 101.845169][ T6039] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6f87e15fa8
[ 101.845186][ T6039] RBP: 00007f6f87e15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.845203][ T6039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 101.845220][ T6039] R13: 00007f6f87e16038 R14: 00007ffe2ba93260 R15: 00007ffe2ba93348
[ 101.845247][ T6039]
[ 101.845256][ T6039]
[ 102.081918][ T6039] Allocated by task 6038:
[ 102.086297][ T6039] kasan_save_stack+0x30/0x50
[ 102.090995][ T6039] kasan_save_track+0x14/0x30
[ 102.095678][ T6039] __kasan_kmalloc+0xaa/0xb0
[ 102.100272][ T6039] __kvmalloc_node_noprof+0x34d/0xac0
[ 102.105652][ T6039] futex_hash_allocate+0x40b/0x1090
[ 102.110855][ T6039] futex_hash_allocate_default+0x2ca/0x5b0
[ 102.116933][ T6039] copy_process+0x4eb5/0x79b0
[ 102.122055][ T6039] kernel_clone+0xfc/0x930
[ 102.126482][ T6039] __do_sys_clone3+0x214/0x290
[ 102.131270][ T6039] do_syscall_64+0xc9/0xf80
[ 102.135774][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.141677][ T6039]
[ 102.143998][ T6039] Freed by task 6038:
[ 102.147966][ T6039] kasan_save_stack+0x30/0x50
[ 102.152653][ T6039] kasan_save_track+0x14/0x30
[ 102.157363][ T6039] kasan_save_free_info+0x3b/0x70
[ 102.162563][ T6039] __kasan_slab_free+0x5f/0x80
[ 102.167340][ T6039] kfree+0x1c7/0x690
[ 102.171235][ T6039] futex_hash_free+0x98/0xc0
[ 102.175833][ T6039] __mmput+0x30c/0x410
[ 102.179912][ T6039] mmput+0x67/0x80
[ 102.183728][ T6039] do_exit+0x78a/0x2a30
[ 102.187877][ T6039] do_group_exit+0xd5/0x2a0
[ 102.192378][ T6039] __x64_sys_exit_group+0x3e/0x50
[ 102.197403][ T6039] x64_sys_call+0x14fd/0x1510
[ 102.202078][ T6039] do_syscall_64+0xc9/0xf80
[ 102.206670][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.212563][ T6039]
[ 102.214898][ T6039] The buggy address belongs to the object at ffff888033ce2000
[ 102.214898][ T6039] which belongs to the cache kmalloc-cg-4k of size 4096
[ 102.229220][ T6039] The buggy address is located 992 bytes inside of
[ 102.229220][ T6039] freed 4096-byte region [ffff888033ce2000, ffff888033ce3000)
[ 102.243113][ T6039]
[ 102.245444][ T6039] The buggy address belongs to the physical page:
[ 102.251845][ T6039] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33ce0
[ 102.260610][ T6039] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 102.269105][ T6039] memcg:ffff888076582001
[ 102.273331][ T6039] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.281002][ T6039] page_type: f5(slab)
[ 102.284992][ T6039] raw: 00fff00000000040 ffff88813fe30500 dead000000000122 0000000000000000
[ 102.293592][ T6039] raw: 0000000000000000 0000000080040004 00000000f5000000 ffff888076582001
[ 102.302182][ T6039] head: 00fff00000000040 ffff88813fe30500 dead000000000122 0000000000000000
[ 102.310866][ T6039] head: 0000000000000000 0000000080040004 00000000f5000000 ffff888076582001
[ 102.319546][ T6039] head: 00fff00000000003 ffffea0000cf3801 00000000ffffffff 00000000ffffffff
[ 102.328217][ T6039] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 102.336980][ T6039] page dumped because: kasan: bad access detected
[ 102.343414][ T6039] page_owner tracks the page as allocated
[ 102.349122][ T6039] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5887, tgid 5887 (udevd), ts 101745764711, free_ts 101704527247
[ 102.370060][ T6039] post_alloc_hook+0x1e1/0x250
[ 102.374842][ T6039] get_page_from_freelist+0xe3d/0x2e10
[ 102.380311][ T6039] __alloc_frozen_pages_noprof+0x26c/0x2410
[ 102.386210][ T6039] alloc_pages_mpol+0x1fb/0x550
[ 102.391073][ T6039] new_slab+0x2c4/0x440
[ 102.395231][ T6039] ___slab_alloc+0xda3/0x1ca0
[ 102.399907][ T6039] __slab_alloc.isra.0+0x63/0x110
[ 102.404971][ T6039] __kvmalloc_node_noprof+0x749/0xac0
[ 102.410347][ T6039] seq_read_iter+0x819/0x1270
[ 102.415025][ T6039] kernfs_fop_read_iter+0x46c/0x610
[ 102.420227][ T6039] vfs_read+0x825/0xb30
[ 102.424396][ T6039] ksys_read+0x12a/0x250
[ 102.428661][ T6039] do_syscall_64+0xc9/0xf80
[ 102.433180][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.439105][ T6039] page last free pid 5933 tgid 5933 stack trace:
[ 102.445439][ T6039] __free_frozen_pages+0x822/0x1130
[ 102.450646][ T6039] __put_partials+0x127/0x160
[ 102.455414][ T6039] qlist_free_all+0x47/0xe0
[ 102.460011][ T6039] kasan_quarantine_reduce+0x1a0/0x1f0
[ 102.465478][ T6039] __kasan_slab_alloc+0x69/0x90
[ 102.470338][ T6039] __kmalloc_cache_noprof+0x2e1/0x810
[ 102.475720][ T6039] nsim_fib_event_work+0xfeb/0x63b0
[ 102.480959][ T6039] process_one_work+0x9c2/0x1840
[ 102.485908][ T6039] worker_thread+0x5da/0xe40
[ 102.490688][ T6039] kthread+0x370/0x450
[ 102.494762][ T6039] ret_from_fork+0x754/0xaf0
[ 102.499354][ T6039] ret_from_fork_asm+0x1a/0x30
[ 102.504116][ T6039]
[ 102.506429][ T6039] Memory state around the buggy address:
[ 102.512051][ T6039] ffff888033ce2280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 102.520110][ T6039] ffff888033ce2300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 102.528326][ T6039] >ffff888033ce2380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 102.536394][ T6039] ^
[ 102.543584][ T6039] ffff888033ce2400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 102.552502][ T6039] ffff888033ce2480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 102.560577][ T6039] ==================================================================
[ 102.570288][ T6039] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 102.577516][ T6039] CPU: 1 UID: 0 PID: 6039 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT(full)
[ 102.586659][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 102.596733][ T6039] Call Trace:
[ 102.600022][ T6039]
[ 102.602965][ T6039] dump_stack_lvl+0x100/0x190
[ 102.607672][ T6039] vpanic+0x20d/0x630
[ 102.611680][ T6039] panic+0xd1/0xd1
[ 102.615426][ T6039] ? __pfx_panic+0x10/0x10
[ 102.619864][ T6039] ? check_panic_on_warn+0x1f/0x90
[ 102.625000][ T6039] check_panic_on_warn.cold+0x19/0x34
[ 102.630397][ T6039] end_report.part.0+0x3a/0x90
[ 102.635191][ T6039] kasan_report.cold+0xe/0x18
[ 102.639873][ T6039] ? _raw_spin_lock+0x2e/0x40
[ 102.644594][ T6039] ? _raw_spin_lock+0x2e/0x40
[ 102.649308][ T6039] __kasan_check_byte+0x36/0x50
[ 102.654275][ T6039] lock_acquire+0xf5/0x330
[ 102.658747][ T6039] _raw_spin_lock+0x2e/0x40
[ 102.663284][ T6039] ? futex_unqueue+0xa5/0x2c0
[ 102.667992][ T6039] futex_unqueue+0xa5/0x2c0
[ 102.672525][ T6039] __futex_wait+0x1cc/0x300
[ 102.677110][ T6039] ? __pfx___futex_wait+0x10/0x10
[ 102.682146][ T6039] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 102.687984][ T6039] ? lockdep_hardirqs_on+0x78/0x100
[ 102.693202][ T6039] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.698507][ T6039] ? find_held_lock+0x2b/0x80
[ 102.703206][ T6039] ? futex_wake+0x456/0x530
[ 102.707731][ T6039] futex_wait+0xed/0x380
[ 102.711991][ T6039] ? __pfx_futex_wait+0x10/0x10
[ 102.716889][ T6039] do_futex+0x1ef/0x350
[ 102.721071][ T6039] ? __pfx_do_futex+0x10/0x10
[ 102.725797][ T6039] ? copy_semid_from_user.constprop.0+0x35/0x50
[ 102.732051][ T6039] ? ksys_semctl.constprop.0+0x14e/0x2e0
[ 102.737694][ T6039] __x64_sys_futex+0x34f/0x4d0
[ 102.742485][ T6039] ? __pfx___x64_sys_futex+0x10/0x10
[ 102.747806][ T6039] do_syscall_64+0xc9/0xf80
[ 102.752318][ T6039] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.758216][ T6039] RIP: 0033:0x7f6f87b9bf79
[ 102.762646][ T6039] Code: Unable to access opcode bytes at 0x7f6f87b9bf4f.
[ 102.769674][ T6039] RSP: 002b:00007f6f889c40e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.778107][ T6039] RAX: ffffffffffffffda RBX: 00007f6f87e15fa8 RCX: 00007f6f87b9bf79
[ 102.786165][ T6039] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6f87e15fa8
[ 102.794143][ T6039] RBP: 00007f6f87e15fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.802115][ T6039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.810330][ T6039] R13: 00007f6f87e16038 R14: 00007ffe2ba93260 R15: 00007ffe2ba93348
[ 102.818362][ T6039]
[ 102.821716][ T6039] Kernel Offset: disabled
[ 102.826025][ T6039] Rebooting in 86400 seconds..