Warning: Permanently added '10.128.1.164' (ED25519) to the list of known hosts.
2026/04/06 02:15:17 parsed 1 programs
[   92.088659][    T9] cfg80211: failed to load regulatory.db
[   93.202529][ T5854] cgroup: Unknown subsys name 'net'
[   93.319398][ T5854] cgroup: Unknown subsys name 'cpuset'
[   93.329574][ T5854] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   95.035455][ T5854] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   98.327353][ T5862] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   99.172021][ T5877] chnl_net:caif_netlink_parms(): no params data found
[   99.262508][ T5877] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.270574][ T5877] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.278242][ T5877] bridge_slave_0: entered allmulticast mode
[   99.285468][ T5877] bridge_slave_0: entered promiscuous mode
[   99.295367][ T5877] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.303083][ T5877] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.310369][ T5877] bridge_slave_1: entered allmulticast mode
[   99.318053][ T5877] bridge_slave_1: entered promiscuous mode
[   99.386496][ T5877] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.398759][ T5877] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.428521][ T5877] team0: Port device team_slave_0 added
[   99.437684][ T5877] team0: Port device team_slave_1 added
[   99.474827][ T5877] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.482194][ T5877] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   99.509273][ T5877] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.530530][ T5877] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.539166][ T5877] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   99.568032][ T5877] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.609445][ T5877] hsr_slave_0: entered promiscuous mode
[   99.616415][ T5877] hsr_slave_1: entered promiscuous mode
[   99.769944][ T5877] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   99.783925][ T5877] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.795849][ T5877] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   99.805890][ T5877] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   99.839996][ T5877] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.847595][ T5877] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.856253][ T5877] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.863824][ T5877] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.923522][ T5877] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.946334][ T3483] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.956919][ T3483] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.973038][ T5877] 8021q: adding VLAN 0 to HW filter on device team0
[   99.987240][ T3574] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.994418][ T3574] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.010353][ T3574] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.017923][ T3574] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.200598][ T5877] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.244605][ T5877] veth0_vlan: entered promiscuous mode
[  100.261105][ T5877] veth1_vlan: entered promiscuous mode
[  100.290681][ T5877] veth0_macvtap: entered promiscuous mode
[  100.300304][ T5877] veth1_macvtap: entered promiscuous mode
[  100.321607][ T5877] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.338002][ T5877] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.361328][ T3574] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.371250][ T3574] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.381996][ T3574] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.391534][ T3574] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.555016][ T3574] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.615241][ T3574] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.688080][ T3574] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.808498][ T3574] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.912816][ T3483] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.921752][ T3483] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.958622][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.968763][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.425166][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.434293][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.442414][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.452576][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.461891][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.006450][ T3574] bridge_slave_1: left allmulticast mode
[  103.024718][ T3574] bridge_slave_1: left promiscuous mode
[  103.034856][ T3574] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.068895][ T3574] bridge_slave_0: left allmulticast mode
[  103.085443][ T3574] bridge_slave_0: left promiscuous mode
[  103.091706][ T3574] bridge0: port 1(bridge_slave_0) entered disabled state
2026/04/06 02:15:31 executed programs: 0
[  103.674997][ T5164] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.690270][ T3574] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.693626][ T5164] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.709109][ T5164] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.718806][ T5164] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.719311][ T3574] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.726878][ T5164] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.745018][ T3574] bond0 (unregistering): Released all slaves
[  103.894880][ T3574] hsr_slave_0: left promiscuous mode
[  103.902090][ T3574] hsr_slave_1: left promiscuous mode
[  103.908827][ T3574] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  103.917060][ T3574] batman_adv: batadv0: Removing interface: batadv_slave_0
[  103.929205][ T3574] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.936816][ T3574] batman_adv: batadv0: Removing interface: batadv_slave_1
[  103.955043][ T3574] veth1_macvtap: left promiscuous mode
[  103.961628][ T3574] veth0_macvtap: left promiscuous mode
[  103.967984][ T3574] veth1_vlan: left promiscuous mode
[  103.973369][ T3574] veth0_vlan: left promiscuous mode
[  104.353839][ T3574] team0 (unregistering): Port device team_slave_1 removed
[  104.387958][ T3574] team0 (unregistering): Port device team_slave_0 removed
[  104.677290][ T5968] chnl_net:caif_netlink_parms(): no params data found
[  104.861162][ T5968] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.872978][ T5968] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.886742][ T5968] bridge_slave_0: entered allmulticast mode
[  104.895260][ T5968] bridge_slave_0: entered promiscuous mode
[  104.914669][ T5968] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.922361][ T5968] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.931354][ T5968] bridge_slave_1: entered allmulticast mode
[  104.940075][ T5968] bridge_slave_1: entered promiscuous mode
[  105.001852][ T5968] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.016582][ T5968] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.075108][ T5968] team0: Port device team_slave_0 added
[  105.098829][ T5968] team0: Port device team_slave_1 added
[  105.564506][ T5968] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.571635][ T5968] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.598530][ T5968] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.611560][ T5968] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.618627][ T5968] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.645940][ T5968] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.736024][ T5968] hsr_slave_0: entered promiscuous mode
[  105.743158][ T5968] hsr_slave_1: entered promiscuous mode
[  105.780830][   T51] Bluetooth: hci0: command tx timeout
[  106.678686][ T5968] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.693082][ T5968] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.709982][ T5968] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.730825][ T5968] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.857247][ T5968] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.897603][ T5968] 8021q: adding VLAN 0 to HW filter on device team0
[  106.929650][ T3545] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.937004][ T3545] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.974133][ T3545] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.981546][ T3545] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.299915][ T5968] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.373948][ T5968] veth0_vlan: entered promiscuous mode
[  107.394526][ T5968] veth1_vlan: entered promiscuous mode
[  107.442319][ T5968] veth0_macvtap: entered promiscuous mode
[  107.459280][ T5968] veth1_macvtap: entered promiscuous mode
[  107.486068][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.509361][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.536135][ T3574] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.550986][ T3574] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.562483][ T3574] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.574661][ T3574] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.675188][ T3545] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.701341][ T3545] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.747757][ T3574] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.757210][ T3574] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.845924][   T51] Bluetooth: hci0: command tx timeout
[  107.863777][ T6060] wlan1 speed is unknown, defaulting to 1000
[  107.872041][ T6060] wlan1 speed is unknown, defaulting to 1000
[  107.882557][ T6060] wlan1 speed is unknown, defaulting to 1000
[  107.893036][ T6060] smbdirect: ib_dev[óyz2]: added: RNIC max_fast_reg_page_list_len=256 device_cap_flags=0x200000 kernel_cap_flags=0x10 page_size_cap=0x1000
[  107.910836][ T6060] smbdirect: ib_dev[óyz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=1 max_cqe=3276800 max_qp_wr=32768 max_send_sge=6 max_recv_sge=6
[  107.932337][ T6060] smbdirect: ib_dev[óyz2]PORT[1]: iwarp=1 ib=0 roce=0 v1=0 v2=0 core_cap_flags=0x400008
[  107.950479][ T6060] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  107.973252][ T6060] infiniband óyz2: RDMA CMA: cma_listen_on_dev, error -98
[  108.033662][ T6060] wlan1 speed is unknown, defaulting to 1000
2026/04/06 02:15:36 executed programs: 14
[  109.935732][   T51] Bluetooth: hci0: command tx timeout
[  112.008050][   T51] Bluetooth: hci0: command tx timeout
2026/04/06 02:15:41 executed programs: 223
2026/04/06 02:15:46 executed programs: 484
[  120.953090][ T5164] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  120.964190][ T5164] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  120.974471][ T5164] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  120.990041][ T5164] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  121.008100][ T5164] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  121.058761][ T6690] wlan1 speed is unknown, defaulting to 1000
[  121.169635][ T6690] chnl_net:caif_netlink_parms(): no params data found
[  121.232879][ T3545] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.283270][ T6690] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.290602][ T6690] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.298230][ T6690] bridge_slave_0: entered allmulticast mode
[  121.305350][ T6690] bridge_slave_0: entered promiscuous mode
[  121.317111][ T6690] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.324428][ T6690] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.332011][ T6690] bridge_slave_1: entered allmulticast mode
[  121.339271][ T6690] bridge_slave_1: entered promiscuous mode
[  121.375333][ T3545] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.393764][ T6690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  121.405739][ T6690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  121.434216][ T6690] team0: Port device team_slave_0 added
[  121.443117][ T6690] team0: Port device team_slave_1 added
[  121.469450][ T3545] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.496601][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  121.503850][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  121.532935][ T6690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  121.557405][ T3545] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.575197][ T6690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  121.582573][ T6690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  121.609181][ T6690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  121.655061][ T6690] hsr_slave_0: entered promiscuous mode
[  121.661895][ T6690] hsr_slave_1: entered promiscuous mode
[  121.668357][ T6690] debugfs: 'hsr0' already exists in 'hsr'
[  121.674523][ T6690] Cannot create hsr debugfs directory
[  121.857555][ T3545] bridge_slave_1: left allmulticast mode
[  121.863285][ T3545] bridge_slave_1: left promiscuous mode
[  121.870632][ T3545] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.880881][ T3545] bridge_slave_0: left allmulticast mode
[  121.887284][ T3545] bridge_slave_0: left promiscuous mode
[  121.893190][ T3545] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.063497][ T3545] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.075506][ T3545] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.086646][ T3545] bond0 (unregistering): Released all slaves
[  122.227412][   T24] wlan1 speed is unknown, defaulting to 1000
[  122.227767][  T143] smbdirect: ib_dev[óyz2] removed
[  122.243337][   T24] óyz2: Port: 1 Link DOWN
[  122.279837][  T143] ==================================================================
[  122.288051][  T143] BUG: KASAN: invalid-free in gid_table_release_one+0x384/0x470
[  122.295739][  T143] Free of addr ffff8880771190d8 by task kworker/u8:6/143
[  122.303055][  T143] 
[  122.305410][  T143] CPU: 0 UID: 0 PID: 143 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT(full) 
[  122.305428][  T143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  122.305436][  T143] Workqueue: ib-unreg-wq ib_unregister_work
[  122.305463][  T143] Call Trace:
[  122.305470][  T143]  <TASK>
[  122.305475][  T143]  dump_stack_lvl+0xe8/0x150
[  122.305494][  T143]  print_address_description+0x55/0x1e0
[  122.305510][  T143]  print_report+0x58/0x70
[  122.305524][  T143]  ? gid_table_release_one+0x384/0x470
[  122.305536][  T143]  kasan_report_invalid_free+0xea/0x110
[  122.305549][  T143]  ? gid_table_release_one+0x384/0x470
[  122.305567][  T143]  ? gid_table_release_one+0x384/0x470
[  122.305586][  T143]  __kasan_slab_pre_free+0x104/0x120
[  122.305604][  T143]  kfree+0x173/0x640
[  122.305626][  T143]  ? gid_table_release_one+0x384/0x470
[  122.305646][  T143]  gid_table_release_one+0x384/0x470
[  122.305669][  T143]  ib_device_release+0xd2/0x1c0
[  122.305695][  T143]  ? __pfx_ib_device_release+0x10/0x10
[  122.305728][  T143]  device_release+0xc4/0x1f0
[  122.305747][  T143]  kobject_put+0x228/0x560
[  122.305770][  T143]  ? process_scheduled_works+0xa70/0x1860
[  122.305795][  T143]  process_scheduled_works+0xb5d/0x1860
[  122.305830][  T143]  ? __pfx_process_scheduled_works+0x10/0x10
[  122.305856][  T143]  ? assign_work+0x3d5/0x5e0
[  122.305891][  T143]  worker_thread+0xa53/0xfc0
[  122.305923][  T143]  kthread+0x388/0x470
[  122.305941][  T143]  ? __pfx_worker_thread+0x10/0x10
[  122.305963][  T143]  ? __pfx_kthread+0x10/0x10
[  122.305982][  T143]  ret_from_fork+0x514/0xb70
[  122.306007][  T143]  ? __pfx_ret_from_fork+0x10/0x10
[  122.306028][  T143]  ? __switch_to+0xc79/0x1410
[  122.306049][  T143]  ? __pfx_kthread+0x10/0x10
[  122.306067][  T143]  ret_from_fork_asm+0x1a/0x30
[  122.306091][  T143]  </TASK>
[  122.306097][  T143] 
[  122.485989][  T143] Allocated by task 6060:
[  122.490344][  T143]  kasan_save_track+0x3e/0x80
[  122.495153][  T143]  __kasan_kmalloc+0x93/0xb0
[  122.499780][  T143]  __kmalloc_noprof+0x35c/0x760
[  122.504667][  T143]  ib_cache_setup_one+0x198/0x570
[  122.509719][  T143]  ib_register_device+0xfbd/0x13e0
[  122.514873][  T143]  siw_newlink+0x8fe/0xde0
[  122.519329][  T143]  nldev_newlink+0x5bc/0x650
[  122.523952][  T143]  rdma_nl_rcv+0x6d1/0xa10
[  122.528404][  T143]  netlink_unicast+0x80f/0x9b0
[  122.533212][  T143]  netlink_sendmsg+0x813/0xb40
[  122.538252][  T143]  ____sys_sendmsg+0x972/0x9f0
[  122.543066][  T143]  ___sys_sendmsg+0x2a5/0x360
[  122.547864][  T143]  __x64_sys_sendmsg+0x1bd/0x2a0
[  122.553009][  T143]  do_syscall_64+0x15f/0xf80
[  122.557643][  T143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.563562][  T143] 
[  122.565912][  T143] The buggy address belongs to the object at ffff888077119000
[  122.565912][  T143]  which belongs to the cache kmalloc-256 of size 256
[  122.580082][  T143] The buggy address is located 216 bytes inside of
[  122.580082][  T143]  224-byte region [ffff888077119000, ffff8880771190e0)
[  122.593579][  T143] 
[  122.595925][  T143] The buggy address belongs to the physical page:
[  122.602446][  T143] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888077118800 pfn:0x77118
[  122.612718][  T143] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  122.621317][  T143] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  122.629970][  T143] page_type: f5(slab)
[  122.633989][  T143] raw: 00fff00000000240 ffff88813fe34b40 ffffea0001dc9490 ffffea0001dc5390
[  122.642602][  T143] raw: ffff888077118800 0000000800100009 00000000f5000000 0000000000000000
[  122.651220][  T143] head: 00fff00000000240 ffff88813fe34b40 ffffea0001dc9490 ffffea0001dc5390
[  122.660358][  T143] head: ffff888077118800 0000000800100009 00000000f5000000 0000000000000000
[  122.669148][  T143] head: 00fff00000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  122.678194][  T143] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  122.686893][  T143] page dumped because: kasan: bad access detected
[  122.693323][  T143] page_owner tracks the page as allocated
[  122.699236][  T143] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5968, tgid 5968 (syz-executor), ts 107795002221, free_ts 107248930672
[  122.720809][  T143]  post_alloc_hook+0x231/0x280
[  122.725707][  T143]  get_page_from_freelist+0x24ba/0x2540
[  122.731299][  T143]  __alloc_frozen_pages_noprof+0x18d/0x380
[  122.737253][  T143]  allocate_slab+0x77/0x660
[  122.741894][  T143]  refill_objects+0x339/0x3d0
[  122.746697][  T143]  __pcs_replace_empty_main+0x321/0x720
[  122.752391][  T143]  __kmalloc_node_track_caller_noprof+0x572/0x7b0
[  122.759114][  T143]  kmemdup_array+0x3f/0x80
[  122.763661][  T143]  ebt_register_table+0x99e/0x10e0
[  122.768911][  T143]  find_inlist_lock_noload+0x183/0x270
[  122.774436][  T143]  do_ebt_get_ctl+0x2d5/0x1dd0
[  122.779329][  T143]  nf_getsockopt+0x26e/0x290
[  122.784045][  T143]  ip_getsockopt+0x19e/0x230
[  122.788673][  T143]  do_sock_getsockopt+0x2d3/0x3f0
[  122.793795][  T143]  __x64_sys_getsockopt+0x1a4/0x240
[  122.799267][  T143]  do_syscall_64+0x15f/0xf80
[  122.803957][  T143] page last free pid 6045 tgid 6045 stack trace:
[  122.810371][  T143]  __free_frozen_pages+0xbc7/0xd30
[  122.815590][  T143]  __slab_free+0x274/0x2c0
[  122.820040][  T143]  qlist_free_all+0x99/0x100
[  122.824651][  T143]  kasan_quarantine_reduce+0x148/0x160
[  122.830640][  T143]  __kasan_slab_alloc+0x22/0x80
[  122.835531][  T143]  kmem_cache_alloc_noprof+0x2bc/0x650
[  122.841040][  T143]  vm_area_alloc+0x24/0x140
[  122.845651][  T143]  mmap_region+0x11cd/0x2280
[  122.850276][  T143]  do_mmap+0xc39/0x10c0
[  122.854440][  T143]  vm_mmap_pgoff+0x2c9/0x4f0
[  122.859184][  T143]  ksys_mmap_pgoff+0x51e/0x760
[  122.864052][  T143]  do_syscall_64+0x15f/0xf80
[  122.868663][  T143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.874564][  T143] 
[  122.876904][  T143] Memory state around the buggy address:
[  122.882549][  T143]  ffff888077118f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  122.890732][  T143]  ffff888077119000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  122.898980][  T143] >ffff888077119080: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc
[  122.907115][  T143]                                                     ^
[  122.914055][  T143]  ffff888077119100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  122.922280][  T143]  ffff888077119180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  122.930422][  T143] ==================================================================
[  122.940242][  T143] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  122.947729][  T143] CPU: 0 UID: 0 PID: 143 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT(full) 
[  122.957128][  T143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  122.967297][  T143] Workqueue: ib-unreg-wq ib_unregister_work
[  122.973305][  T143] Call Trace:
[  122.976684][  T143]  <TASK>
[  122.979665][  T143]  vpanic+0x56c/0xa60
[  122.983675][  T143]  ? __pfx_vpanic+0x10/0x10
[  122.988197][  T143]  panic+0xc5/0xd0
[  122.992115][  T143]  ? __pfx_panic+0x10/0x10
[  122.996544][  T143]  ? preempt_schedule_thunk+0x16/0x30
[  123.002038][  T143]  ? preempt_schedule_thunk+0x16/0x30
[  123.007434][  T143]  check_panic_on_warn+0x89/0xb0
[  123.012491][  T143]  end_report+0x73/0x170
[  123.016924][  T143]  ? gid_table_release_one+0x384/0x470
[  123.022662][  T143]  kasan_report_invalid_free+0xfa/0x110
[  123.028410][  T143]  ? gid_table_release_one+0x384/0x470
[  123.033893][  T143]  ? gid_table_release_one+0x384/0x470
[  123.039360][  T143]  __kasan_slab_pre_free+0x104/0x120
[  123.044652][  T143]  kfree+0x173/0x640
[  123.048557][  T143]  ? gid_table_release_one+0x384/0x470
[  123.054023][  T143]  gid_table_release_one+0x384/0x470
[  123.059317][  T143]  ib_device_release+0xd2/0x1c0
[  123.064179][  T143]  ? __pfx_ib_device_release+0x10/0x10
[  123.070014][  T143]  device_release+0xc4/0x1f0
[  123.074614][  T143]  kobject_put+0x228/0x560
[  123.079213][  T143]  ? process_scheduled_works+0xa70/0x1860
[  123.085115][  T143]  process_scheduled_works+0xb5d/0x1860
[  123.090674][  T143]  ? __pfx_process_scheduled_works+0x10/0x10
[  123.096662][  T143]  ? assign_work+0x3d5/0x5e0
[  123.101259][  T143]  worker_thread+0xa53/0xfc0
[  123.105874][  T143]  kthread+0x388/0x470
[  123.109947][  T143]  ? __pfx_worker_thread+0x10/0x10
[  123.115149][  T143]  ? __pfx_kthread+0x10/0x10
[  123.119794][  T143]  ret_from_fork+0x514/0xb70
[  123.124399][  T143]  ? __pfx_ret_from_fork+0x10/0x10
[  123.129607][  T143]  ? __switch_to+0xc79/0x1410
[  123.134377][  T143]  ? __pfx_kthread+0x10/0x10
[  123.138975][  T143]  ret_from_fork_asm+0x1a/0x30
[  123.143744][  T143]  </TASK>
[  123.147230][  T143] Kernel Offset: disabled
[  123.151639][  T143] Rebooting in 86400 seconds..