syzkaller login: [ 96.913270][ T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:56136' (ED25519) to the list of known hosts.
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0xa8000)
[ 178.319859][ T1025] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[ 178.322784][ T1025] ata1: failed to read log page 10h (errno=-5)
[ 178.325435][ T1025] ata1.00: exception Emask 0x1 SAct 0x4000 SErr 0x0 action 0x0
[ 178.328643][ T1025] ata1.00: irq_stat 0x41000008
[ 178.336245][ T1025] ata1.00: failed command: READ FPDMA QUEUED
[ 178.339097][ T1025] ata1.00: cmd 60/40:70:f6:3c:04/05:00:00:00:00/40 tag 14 ncq dma 688128 in
[ 178.339097][ T1025] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 178.346411][ T1025] ata1.00: status: { DRDY }
[ 178.349931][ T1025] ata1.00: error: { ABRT }
[ 178.353912][ T1025] ata1.00: configured for UDMA/100
[ 178.356707][ T1025] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 178.361477][ T1025] sd 0:0:0:0: [sda] tag#14 Sense Key : Aborted Command [current]
[ 178.364792][ T1025] sd 0:0:0:0: [sda] tag#14 Add. Sense: No additional sense information
[ 178.368279][ T1025] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 00 04 3c f6 00 05 40 00
[ 178.372353][ T1025] I/O error, dev sda, sector 277750 op 0x0:(READ) flags 0x84700 phys_seg 168 prio class 2
[ 178.377522][ T1025] ata1: EH complete
2026/05/06 18:37:04 parsed 1 programs
[ 183.365031][ T5318] cgroup: Unknown subsys name 'net'
[ 183.433660][ T5318] cgroup: Unknown subsys name 'cpuset'
[ 183.440448][ T5318] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 185.202474][ T5318] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 189.374378][ T5334] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 191.116711][ T147] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 191.156632][ T147] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 191.533442][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 191.572038][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 193.280895][ T5373] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 193.287690][ T5373] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 193.297765][ T5373] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 193.302617][ T5373] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 193.307291][ T5373] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 195.390316][ T5373] Bluetooth: hci0: command tx timeout
[ 197.629316][ T5373] Bluetooth: hci0: command tx timeout
[ 199.709037][ T5373] Bluetooth: hci0: command tx timeout
[ 201.791076][ T5373] Bluetooth: hci0: command tx timeout
[ 204.433843][ T1329] ieee802154 phy0 wpan0: encryption failed: -22
[ 204.437151][ T1329] ieee802154 phy1 wpan1: encryption failed: -22
[ 206.010011][ T5397] modprobe (5397) used greatest stack depth: 16032 bytes left
[ 207.875567][ T5366] syz-executor (5366) used greatest stack depth: 15424 bytes left
[ 220.798296][ T5396] bridge0: port 1(bridge_slave_0) entered blocking state
[ 220.809136][ T5396] bridge0: port 1(bridge_slave_0) entered disabled state
[ 220.820072][ T5396] bridge_slave_0: entered allmulticast mode
[ 220.832677][ T5396] bridge_slave_0: entered promiscuous mode
[ 220.856609][ T5396] bridge0: port 2(bridge_slave_1) entered blocking state
[ 220.865973][ T5396] bridge0: port 2(bridge_slave_1) entered disabled state
[ 220.877157][ T5396] bridge_slave_1: entered allmulticast mode
[ 220.890387][ T5396] bridge_slave_1: entered promiscuous mode
[ 220.983470][ T5396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 221.003795][ T5396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 221.104056][ T5396] team0: Port device team_slave_0 added
[ 221.123478][ T5396] team0: Port device team_slave_1 added
[ 221.176642][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 221.184579][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 221.209335][ T5396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 221.229176][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 221.232234][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 221.254561][ T5396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 221.358566][ T5396] hsr_slave_0: entered promiscuous mode
[ 221.362474][ T5396] hsr_slave_1: entered promiscuous mode
[ 221.862512][ T5396] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 221.919141][ T5396] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 221.933185][ T5396] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 221.960538][ T5396] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 221.972407][ T5396] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 221.996690][ T5396] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 222.014076][ T5396] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 222.040988][ T5396] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 222.337448][ T5396] 8021q: adding VLAN 0 to HW filter on device bond0
[ 222.413399][ T5396] 8021q: adding VLAN 0 to HW filter on device team0
[ 222.443462][ T41] bridge0: port 1(bridge_slave_0) entered blocking state
[ 222.447220][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 222.496308][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 222.500067][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 223.561608][ T5396] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 223.657738][ T5396] veth0_vlan: entered promiscuous mode
[ 223.683544][ T5396] veth1_vlan: entered promiscuous mode
[ 223.755634][ T5396] veth0_macvtap: entered promiscuous mode
[ 223.770220][ T5396] veth1_macvtap: entered promiscuous mode
[ 223.823319][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 223.845160][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 223.877740][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.892881][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.909268][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 223.917094][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2026/05/06 18:37:48 executed programs: 0
[ 226.246259][ T44] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 226.277897][ T5463] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 226.287050][ T5463] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 226.292069][ T5463] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 226.298924][ T5463] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 226.302620][ T5463] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 226.307939][ T5463] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 226.312454][ T5463] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 226.317932][ T5465] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 226.322583][ T5463] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 226.331925][ T5463] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 226.336630][ T5463] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 226.340302][ T5463] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 226.346187][ T5463] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 226.349468][ T5463] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 226.355192][ T5463] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 226.362146][ T4654] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 226.367232][ T5463] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 226.379558][ T44] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 226.391806][ T44] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 226.431227][ T41] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 226.523000][ T5460] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 226.529422][ T5460] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 226.542748][ T5460] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 226.556768][ T5460] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 226.561765][ T5460] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 226.856647][ T5460] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 226.866005][ T5460] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 226.877775][ T5460] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 226.889819][ T5460] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 226.897798][ T5460] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 227.203065][ T41] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 227.444271][ T41] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 227.802522][ T41] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 228.429357][ T5460] Bluetooth: hci0: command tx timeout
[ 228.432847][ T44] Bluetooth: hci2: command tx timeout
[ 228.435866][ T5463] Bluetooth: hci1: command tx timeout
[ 228.439087][ T4654] Bluetooth: hci3: command tx timeout
[ 228.669153][ T5463] Bluetooth: hci4: command tx timeout
[ 228.705771][ T41] bridge_slave_1: left allmulticast mode
[ 228.733518][ T41] bridge_slave_1: left promiscuous mode
[ 228.753875][ T41] bridge0: port 2(bridge_slave_1) entered disabled state
[ 228.787367][ T41] bridge_slave_0: left allmulticast mode
[ 228.794336][ T41] bridge_slave_0: left promiscuous mode
[ 228.797809][ T41] bridge0: port 1(bridge_slave_0) entered disabled state
[ 228.946254][ T41] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 228.953716][ T41] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 228.958610][ T41] bond0 (unregistering): Released all slaves
[ 228.990814][ T5463] Bluetooth: hci5: command tx timeout
[ 229.102190][ T41] hsr_slave_0: left promiscuous mode
[ 229.105405][ T41] hsr_slave_1: left promiscuous mode
[ 229.114498][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 229.118196][ T41] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 229.123249][ T41] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 229.126503][ T41] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 229.138553][ T41] veth1_macvtap: left promiscuous mode
[ 229.141703][ T41] veth0_macvtap: left promiscuous mode
[ 229.144250][ T41] veth1_vlan: left promiscuous mode
[ 229.146693][ T41] veth0_vlan: left promiscuous mode
[ 229.372359][ T41] team0 (unregistering): Port device team_slave_1 removed
[ 229.387609][ T41] team0 (unregistering): Port device team_slave_0 removed
[ 230.293659][ T4999] 8021q: adding VLAN 0 to HW filter on device eth2
[ 230.512585][ T5463] Bluetooth: hci1: command tx timeout
[ 230.514973][ T5463] Bluetooth: hci3: command tx timeout
[ 230.517312][ T5463] Bluetooth: hci2: command tx timeout
[ 230.519971][ T4654] Bluetooth: hci0: command tx timeout
[ 230.752260][ T5463] Bluetooth: hci4: command tx timeout
[ 231.072650][ T5463] Bluetooth: hci5: command tx timeout
[ 231.649852][ T4999] 8021q: adding VLAN 0 to HW filter on device eth3
[ 231.795537][ T5458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 231.799945][ T5458] bridge0: port 1(bridge_slave_0) entered disabled state
[ 231.803165][ T5458] bridge_slave_0: entered allmulticast mode
[ 231.807103][ T5458] bridge_slave_0: entered promiscuous mode
[ 231.856513][ T5456] bridge0: port 1(bridge_slave_0) entered blocking state
[ 231.860004][ T5456] bridge0: port 1(bridge_slave_0) entered disabled state
[ 231.863096][ T5456] bridge_slave_0: entered allmulticast mode
[ 231.866864][ T5456] bridge_slave_0: entered promiscuous mode
[ 231.872876][ T5458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 231.876685][ T5458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 231.880096][ T5458] bridge_slave_1: entered allmulticast mode
[ 231.884040][ T5458] bridge_slave_1: entered promiscuous mode
[ 231.889532][ T5470] bridge0: port 1(bridge_slave_0) entered blocking state
[ 231.894880][ T5470] bridge0: port 1(bridge_slave_0) entered disabled state
[ 231.900178][ T5470] bridge_slave_0: entered allmulticast mode
[ 231.903859][ T5470] bridge_slave_0: entered promiscuous mode
[ 231.944008][ T5456] bridge0: port 2(bridge_slave_1) entered blocking state
[ 231.947436][ T5456] bridge0: port 2(bridge_slave_1) entered disabled state
[ 231.954576][ T5456] bridge_slave_1: entered allmulticast mode
[ 231.958079][ T5456] bridge_slave_1: entered promiscuous mode
[ 231.971973][ T5470] bridge0: port 2(bridge_slave_1) entered blocking state
[ 231.976133][ T5470] bridge0: port 2(bridge_slave_1) entered disabled state
[ 231.979710][ T5470] bridge_slave_1: entered allmulticast mode
[ 231.983618][ T5470] bridge_slave_1: entered promiscuous mode
[ 232.065435][ T5457] bridge0: port 1(bridge_slave_0) entered blocking state
[ 232.079512][ T5457] bridge0: port 1(bridge_slave_0) entered disabled state
[ 232.082794][ T5457] bridge_slave_0: entered allmulticast mode
[ 232.089649][ T5457] bridge_slave_0: entered promiscuous mode
[ 232.102297][ T5457] bridge0: port 2(bridge_slave_1) entered blocking state
[ 232.106054][ T5457] bridge0: port 2(bridge_slave_1) entered disabled state
[ 232.114511][ T5457] bridge_slave_1: entered allmulticast mode
[ 232.129210][ T5457] bridge_slave_1: entered promiscuous mode
[ 232.133555][ T5459] bridge0: port 1(bridge_slave_0) entered blocking state
[ 232.137702][ T5459] bridge0: port 1(bridge_slave_0) entered disabled state
[ 232.147012][ T5459] bridge_slave_0: entered allmulticast mode
[ 232.169487][ T5459] bridge_slave_0: entered promiscuous mode
[ 232.175073][ T5459] bridge0: port 2(bridge_slave_1) entered blocking state
[ 232.181004][ T5459] bridge0: port 2(bridge_slave_1) entered disabled state
[ 232.188387][ T5459] bridge_slave_1: entered allmulticast mode
[ 232.200341][ T5459] bridge_slave_1: entered promiscuous mode
[ 232.233354][ T5480] bridge0: port 1(bridge_slave_0) entered blocking state
[ 232.236607][ T5480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 232.249571][ T5480] bridge_slave_0: entered allmulticast mode
[ 232.258599][ T5480] bridge_slave_0: entered promiscuous mode
[ 232.295975][ T5456] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.313935][ T5458] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.329967][ T5470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.343478][ T5470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.415029][ T5480] bridge0: port 2(bridge_slave_1) entered blocking state
[ 232.420455][ T5480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 232.423572][ T5480] bridge_slave_1: entered allmulticast mode
[ 232.427272][ T5480] bridge_slave_1: entered promiscuous mode
[ 232.435344][ T5456] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.441557][ T5458] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.468055][ T5457] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.485335][ T4999] 8021q: adding VLAN 0 to HW filter on device eth4
[ 232.522970][ T5470] team0: Port device team_slave_0 added
[ 232.528264][ T5457] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.535680][ T5459] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.542939][ T5459] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.578514][ T5470] team0: Port device team_slave_1 added
[ 232.590190][ T5463] Bluetooth: hci2: command tx timeout
[ 232.593178][ T44] Bluetooth: hci0: command tx timeout
[ 232.595856][ T5463] Bluetooth: hci3: command tx timeout
[ 232.598036][ T4654] Bluetooth: hci1: command tx timeout
[ 232.619371][ T5480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 232.625593][ T5456] team0: Port device team_slave_0 added
[ 232.630319][ T5458] team0: Port device team_slave_0 added
[ 232.634560][ T5456] team0: Port device team_slave_1 added
[ 232.670270][ T5480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 232.675074][ T5458] team0: Port device team_slave_1 added
[ 232.699432][ T5457] team0: Port device team_slave_0 added
[ 232.705762][ T5457] team0: Port device team_slave_1 added
[ 232.711127][ T5459] team0: Port device team_slave_0 added
[ 232.749518][ T5470] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 232.752862][ T5470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 232.764727][ T5470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 232.782567][ T5459] team0: Port device team_slave_1 added
[ 232.809848][ T5456] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 232.814372][ T5456] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 232.827008][ T5456] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 232.831934][ T5463] Bluetooth: hci4: command tx timeout
[ 232.837391][ T5470] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 232.841219][ T5470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 232.851775][ T5470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 232.881639][ T5480] team0: Port device team_slave_0 added
[ 232.899909][ T5480] team0: Port device team_slave_1 added
[ 232.902959][ T5458] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 232.906116][ T5458] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 232.929788][ T5458] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 232.940043][ T5456] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 232.947279][ T5456] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 232.973099][ T5456] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 233.012008][ T5457] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 233.017437][ T5457] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.052498][ T5457] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 233.060851][ T5457] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 233.071418][ T5457] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.097732][ T5457] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 233.150457][ T5463] Bluetooth: hci5: command tx timeout
[ 233.171640][ T5458] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 233.176607][ T5458] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.201149][ T5458] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 233.277468][ T5459] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 233.283963][ T5459] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.297619][ T5459] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 233.304420][ T5480] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 233.307568][ T5480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.319548][ T5480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 233.347560][ T5456] hsr_slave_0: entered promiscuous mode
[ 233.351079][ T5456] hsr_slave_1: entered promiscuous mode
[ 233.357926][ T4999] 8021q: adding VLAN 0 to HW filter on device eth5
[ 233.364727][ T5459] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 233.370700][ T5459] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.382626][ T5459] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 233.394460][ T5480] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 233.398101][ T5480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 233.409941][ T5480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 233.508068][ T5470] hsr_slave_0: entered promiscuous mode
[ 233.516530][ T5470] hsr_slave_1: entered promiscuous mode
[ 233.523024][ T5470] debugfs: 'hsr0' already exists in 'hsr'
[ 233.525305][ T5470] Cannot create hsr debugfs directory
[ 233.598523][ T5457] hsr_slave_0: entered promiscuous mode
[ 233.602346][ T5457] hsr_slave_1: entered promiscuous mode
[ 233.605347][ T5457] debugfs: 'hsr0' already exists in 'hsr'
[ 233.607870][ T5457] Cannot create hsr debugfs directory
[ 233.640619][ T5458] hsr_slave_0: entered promiscuous mode
[ 233.643644][ T5458] hsr_slave_1: entered promiscuous mode
[ 233.646448][ T5458] debugfs: 'hsr0' already exists in 'hsr'
[ 233.648696][ T5458] Cannot create hsr debugfs directory
[ 233.679272][ T5459] hsr_slave_0: entered promiscuous mode
[ 233.682648][ T5459] hsr_slave_1: entered promiscuous mode
[ 233.690026][ T5459] debugfs: 'hsr0' already exists in 'hsr'
[ 233.692964][ T5459] Cannot create hsr debugfs directory
[ 233.722762][ T5480] hsr_slave_0: entered promiscuous mode
[ 233.726711][ T5480] hsr_slave_1: entered promiscuous mode
[ 233.731037][ T5480] debugfs: 'hsr0' already exists in 'hsr'
[ 233.733540][ T5480] Cannot create hsr debugfs directory
[ 234.470897][ T5456] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 234.482502][ T5456] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 234.486265][ T5456] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 234.494103][ T5456] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 234.501624][ T5456] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 234.529721][ T5456] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 234.535017][ T5456] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 234.541914][ T5456] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 234.636136][ T5457] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 234.656472][ T5457] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 234.669268][ T5463] Bluetooth: hci3: command tx timeout
[ 234.671784][ T5463] Bluetooth: hci1: command tx timeout
[ 234.674047][ T5463] Bluetooth: hci0: command tx timeout
[ 234.676255][ T5463] Bluetooth: hci2: command tx timeout
[ 234.795034][ T5457] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 234.813507][ T5457] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 234.825950][ T5457] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 234.840972][ T5457] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 234.905985][ T5457] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 234.909149][ T4654] Bluetooth: hci4: command tx timeout
[ 234.931869][ T5457] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 235.229892][ T4654] Bluetooth: hci5: command tx timeout
[ 235.277775][ T5456] 8021q: adding VLAN 0 to HW filter on device bond0
[ 235.376595][ T5456] 8021q: adding VLAN 0 to HW filter on device team0
[ 235.447239][ T68] bridge0: port 1(bridge_slave_0) entered blocking state
[ 235.450690][ T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 235.528428][ T41] bridge0: port 2(bridge_slave_1) entered blocking state
[ 235.531668][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 235.587120][ T5458] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 235.610774][ T5458] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 235.619738][ T5458] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 235.641193][ T5458] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 235.672127][ T5457] 8021q: adding VLAN 0 to HW filter on device bond0
[ 235.677569][ T5458] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 235.700534][ T5458] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 235.707381][ T5458] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 235.721729][ T5458] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 235.923537][ T5457] 8021q: adding VLAN 0 to HW filter on device team0
[ 235.983537][ T5480] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 236.010096][ T5480] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 236.043024][ T5480] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 236.056215][ T5480] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 236.064097][ T30] bridge0: port 1(bridge_slave_0) entered blocking state
[ 236.067245][ T30] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 236.075965][ T30] bridge0: port 2(bridge_slave_1) entered blocking state
[ 236.079042][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 236.090501][ T5480] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 236.106445][ T5480] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 236.124038][ T5480] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 236.140106][ T5480] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 236.525907][ T5470] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 236.545012][ T5470] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 236.560043][ T5470] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 236.581973][ T5470] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 236.613580][ T5470] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 236.640837][ T5470] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 236.656105][ T5470] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 236.695680][ T5470] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 237.036803][ T5458] 8021q: adding VLAN 0 to HW filter on device bond0
[ 237.099930][ T5459] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 237.127254][ T5459] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 237.167288][ T5459] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 237.194189][ T5459] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 237.211487][ T5459] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 237.234931][ T5459] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 237.263436][ T5459] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 237.294947][ T5459] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 237.415943][ T5458] 8021q: adding VLAN 0 to HW filter on device team0
[ 237.505331][ T68] bridge0: port 1(bridge_slave_0) entered blocking state
[ 237.508609][ T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 237.617171][ T68] bridge0: port 2(bridge_slave_1) entered blocking state
[ 237.620403][ T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 237.697193][ T5480] 8021q: adding VLAN 0 to HW filter on device bond0
[ 237.888667][ T5480] 8021q: adding VLAN 0 to HW filter on device team0
[ 237.937244][ T5456] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 238.030457][ T1058] bridge0: port 1(bridge_slave_0) entered blocking state
[ 238.033606][ T1058] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 238.131765][ T30] bridge0: port 2(bridge_slave_1) entered blocking state
[ 238.134528][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 238.221888][ T5470] 8021q: adding VLAN 0 to HW filter on device bond0
[ 238.393183][ T5459] 8021q: adding VLAN 0 to HW filter on device bond0
[ 238.482680][ T5470] 8021q: adding VLAN 0 to HW filter on device team0
[ 238.517547][ T5457] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 238.592818][ T5459] 8021q: adding VLAN 0 to HW filter on device team0
[ 238.610579][ T1061] bridge0: port 1(bridge_slave_0) entered blocking state
[ 238.613764][ T1061] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 238.701598][ T5456] veth0_vlan: entered promiscuous mode
[ 238.713721][ T1061] bridge0: port 2(bridge_slave_1) entered blocking state
[ 238.716951][ T1061] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 238.740788][ T1061] bridge0: port 1(bridge_slave_0) entered blocking state
[ 238.743949][ T1061] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 238.845567][ T68] bridge0: port 2(bridge_slave_1) entered blocking state
[ 238.848668][ T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 238.884898][ T5456] veth1_vlan: entered promiscuous mode
[ 239.252798][ T5457] veth0_vlan: entered promiscuous mode
[ 239.382507][ T5457] veth1_vlan: entered promiscuous mode
[ 239.425172][ T5456] veth0_macvtap: entered promiscuous mode
[ 239.525957][ T5456] veth1_macvtap: entered promiscuous mode
[ 239.734585][ T5456] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 239.815164][ T5456] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 239.846434][ T5457] veth0_macvtap: entered promiscuous mode
[ 239.958389][ T5457] veth1_macvtap: entered promiscuous mode
[ 239.987008][ T1055] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.024706][ T5458] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 240.046895][ T41] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.064416][ T41] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.097599][ T41] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.306389][ T5457] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 240.393609][ T5457] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 240.502244][ T1055] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.526778][ T1055] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.551790][ T1055] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.605414][ T1055] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 240.792116][ T1055] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 240.817638][ T1055] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 240.823066][ T5480] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 240.852557][ T5458] veth0_vlan: entered promiscuous mode
[ 241.057323][ T5458] veth1_vlan: entered promiscuous mode
[ 241.132660][ T1055] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 241.150572][ T1055] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 241.222998][ T1058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 241.252751][ T1058] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 241.257622][ T5470] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 241.491142][ T5458] veth0_macvtap: entered promiscuous mode
2026/05/06 18:38:04 executed programs: 12
[ 241.527245][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 241.548709][ T5458] veth1_macvtap: entered promiscuous mode
[ 241.557739][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 241.600541][ T5459] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 241.707678][ T5458] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 241.801597][ T5458] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 241.894628][ T5754] rdma_rxe: Failed to create IPv4 UDP tunnel
[ 241.901046][ T1058] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 241.921365][ T1058] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 241.963415][ T1058] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 241.970693][ T5755] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 241.986471][ T1058] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 242.074965][ T5755] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 242.164233][ T5751] lo speed is unknown, defaulting to 1000
[ 242.196600][ T5459] veth0_vlan: entered promiscuous mode
[ 242.211830][ T5752] Zero length message leads to an empty skb
[ 242.291812][ T5751] lo speed is unknown, defaulting to 1000
[ 242.358008][ T5459] veth1_vlan: entered promiscuous mode
[ 242.408646][ T5764] rdma_rxe: Failed to create IPv6 UDP tunnel
[ 242.412609][ T5751] lo speed is unknown, defaulting to 1000
[ 242.415487][ T5480] veth0_vlan: entered promiscuous mode
[ 242.419796][ T5760] rdma_rxe: rxe_newlink: failed to add lo
[ 242.452990][ T5760] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 242.473934][ T5760] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 242.484297][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 242.500465][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 242.525679][ T5480] veth1_vlan: entered promiscuous mode
[ 242.681085][ T1061] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 242.704574][ T1061] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 242.762279][ T5459] veth0_macvtap: entered promiscuous mode
[ 242.852125][ T5459] veth1_macvtap: entered promiscuous mode
[ 242.872808][ T5470] veth0_vlan: entered promiscuous mode
[ 242.949842][ T5480] veth0_macvtap: entered promiscuous mode
[ 243.004342][ T5480] veth1_macvtap: entered promiscuous mode
[ 243.026040][ T5769] rdma_rxe: rxe_newlink: failed to add lo
[ 243.041372][ T5470] veth1_vlan: entered promiscuous mode
[ 243.048296][ T5774] rdma_rxe: rxe_newlink: failed to add lo
[ 243.100320][ T5769] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 243.113095][ T5459] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 243.124129][ T5769] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 243.152930][ T5773] rdma_rxe: rxe_newlink: failed to add lo
[ 243.169752][ T5772] rdma_rxe: rxe_newlink: failed to add lo
[ 243.177412][ T5459] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 243.276636][ T5480] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 243.291570][ T1058] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.305665][ T1058] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.333627][ T1058] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.347569][ T1058] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.367042][ T5751] infiniband s�z1: set active
[ 243.376634][ T5480] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 243.380925][ T5751] infiniband s�z1: added lo
[ 243.400532][ T10] lo speed is unknown, defaulting to 1000
[ 243.450434][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.462555][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.500857][ T5687] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 243.512603][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.533848][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 243.538352][ T5751] smbdirect: ib_dev[s�z1]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[ 243.564155][ T5751] smbdirect: ib_dev[s�z1]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[ 243.605736][ T5470] veth0_macvtap: entered promiscuous mode
[ 243.608243][ T5751] smbdirect: ib_dev[s�z1]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[ 243.679299][ T5687] usb 5-1: Using ep0 maxpacket: 8
[ 243.688263][ T5470] veth1_macvtap: entered promiscuous mode
[ 243.708235][ T5687] usb 5-1: config 0 has no interfaces?
[ 243.729659][ T5687] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 243.745614][ T5780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 243.766371][ T5687] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 243.788043][ T5780] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 243.878639][ T5751] RDS/IB: s�z1: added
[ 243.890196][ T5687] usb 5-1: config 0 descriptor??
[ 243.903179][ T5751] smc: adding ib device s�z1 with port count 1
[ 243.920739][ T5751] smc: ib device s�z1 port 1 has no pnetid
[ 243.966625][ T5470] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 243.990088][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 244.009442][ T5446] lo speed is unknown, defaulting to 1000
[ 244.012860][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 244.075985][ T5470] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 244.084202][ T5751] lo speed is unknown, defaulting to 1000
[ 244.172872][ T1061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 244.206301][ T1061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x3df000)
[ 244.268660][ T1061] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 244.285884][ T1061] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 244.296026][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 244.300462][ T1061] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 244.307040][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 244.344788][ T1061] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 244.408249][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 244.428532][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 244.768267][ T1025] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[ 244.787299][ T1025] ata1: failed to read log page 10h (errno=-5)
[ 244.807208][ T1025] ata1.00: NCQ disabled due to excessive errors
[ 244.825013][ T1025] ata1.00: exception Emask 0x1 SAct 0x100 SErr 0x0 action 0x0
[ 244.845406][ T1061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 244.853670][ T1025] ata1.00: irq_stat 0x41000008
[ 244.873310][ T1025] ata1.00: failed command: READ FPDMA QUEUED
[ 244.877287][ T1061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 244.894756][ T1025] ata1.00: cmd 60/f8:40:76:3c:01/1e:00:00:00:00/40 tag 8 ncq dma 4059136 in
[ 244.894756][ T1025] res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[ 244.950352][ T1025] ata1.00: status: { DRDY }
[ 244.970659][ T1025] ata1.00: error: { ABRT }
[ 244.996802][ T1025] ata1.00: configured for UDMA/100
[ 245.010470][ T1025] sd 0:0:0:0: [sda] tag#8 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 245.039480][ T1025] sd 0:0:0:0: [sda] tag#8 Sense Key : Aborted Command [current]
[ 245.066149][ T1025] sd 0:0:0:0: [sda] tag#8 Add. Sense: No additional sense information
[ 245.109047][ T1025] sd 0:0:0:0: [sda] tag#8 CDB: Read(10) 28 00 00 01 3c 76 00 1e f8 00
[ 245.135254][ T1025] I/O error, dev sda, sector 81014 op 0x0:(READ) flags 0x80700 phys_seg 132 prio class 2
[ 245.144641][ T1058] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 245.173447][ T1058] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 245.178490][ T1025] ata1: EH complete
[ 245.244295][ T5793] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 245.278244][ T5793] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 245.319099][ T5796] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 245.333068][ T5751] lo speed is unknown, defaulting to 1000
[ 245.345414][ T5796] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 245.643232][ T5801] rdma_rxe: Failed to create IPv6 UDP tunnel
[ 245.703445][ T5801] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 245.738454][ T5801] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 245.971433][ T5751] lo speed is unknown, defaulting to 1000
[ 246.180248][ T5751] lo speed is unknown, defaulting to 1000
[ 246.394898][ T5751] lo speed is unknown, defaulting to 1000
[ 246.638659][ T5751] lo speed is unknown, defaulting to 1000
[ 246.904135][ T5778] rdma_rxe: rxe_newlink: failed to add lo
[ 246.941830][ T5790] rdma_rxe: rxe_newlink: failed to add lo
[ 246.945677][ T5787] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#1] SMP KASAN NOPTI
[ 246.950722][ T5787] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 246.954352][ T5787] CPU: 0 UID: 0 PID: 5787 Comm: syz.1.18 Not tainted syzkaller #0 PREEMPT(full)
[ 246.958282][ T5787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 246.962602][ T5787] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 246.965261][ T5787] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 246.973903][ T5787] RSP: 0018:ffffc90004d4f0a8 EFLAGS: 00010202
[ 246.976550][ T5787] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffff888037228000
[ 246.979801][ T5787] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8880387c1840
[ 246.983384][ T5787] RBP: 0000000000000002 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[ 246.987003][ T5787] R10: dffffc0000000000 R11: fffffbfff206199f R12: dffffc0000000000
[ 246.990681][ T5787] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 246.994141][ T5787] FS: 00007f2c008866c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 246.998032][ T5787] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 247.001009][ T5787] CR2: 00007f165b77b9a0 CR3: 000000004296a000 CR4: 0000000000352ef0
[ 247.004568][ T5787] Call Trace:
[ 247.006074][ T5787]
[ 247.007372][ T5787] udp_tunnel_sock_release+0x6f/0x80
[ 247.009626][ T5787] rxe_net_del+0x121/0x2e0
[ 247.011533][ T5787] rxe_dellink+0x15/0x20
[ 247.013343][ T5787] nldev_dellink+0x304/0x3d0
[ 247.015278][ T5787] ? __pfx_nldev_dellink+0x10/0x10
[ 247.017436][ T5787] ? apparmor_capable+0x126/0x170
[ 247.019521][ T5787] ? bpf_lsm_capable+0x9/0x20
[ 247.021317][ T5787] ? security_capable+0x7e/0x2c0
[ 247.023084][ T5787] ? __pfx_nldev_dellink+0x10/0x10
[ 247.025334][ T5787] rdma_nl_rcv+0x6d1/0xa10
[ 247.027389][ T5787] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 247.029672][ T5787] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.031751][ T5787] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.033830][ T5787] netlink_unicast+0x75c/0x8e0
[ 247.035829][ T5787] netlink_sendmsg+0x813/0xb40
[ 247.037790][ T5787] ? __pfx_netlink_sendmsg+0x10/0x10
[ 247.039976][ T5787] ? aa_sock_msg_perm+0xf1/0x1b0
[ 247.042170][ T5787] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 247.044562][ T5787] ____sys_sendmsg+0x972/0x9f0
[ 247.046673][ T5787] ? __might_fault+0xaf/0x130
[ 247.048724][ T5787] ? __pfx_____sys_sendmsg+0x10/0x10
[ 247.050985][ T5787] ? import_iovec+0x73/0xa0
[ 247.053024][ T5787] ___sys_sendmsg+0x2a5/0x360
[ 247.055149][ T5787] ? __lock_acquire+0x6b5/0x2cf0
[ 247.057337][ T5787] ? __pfx____sys_sendmsg+0x10/0x10
[ 247.059708][ T5787] ? futex_wait+0x2a2/0x390
[ 247.061767][ T5787] ? __fget_files+0x2a/0x420
[ 247.063721][ T5787] ? __fget_files+0x3a0/0x420
[ 247.065544][ T5787] __x64_sys_sendmsg+0x1bd/0x2a0
[ 247.067584][ T5787] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 247.069843][ T5787] ? rcu_is_watching+0x15/0xb0
[ 247.071850][ T5787] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.074501][ T5787] do_syscall_64+0x15f/0xf80
[ 247.076521][ T5787] ? trace_irq_disable+0x3b/0x140
[ 247.078817][ T5787] ? clear_bhb_loop+0x40/0x90
[ 247.080926][ T5787] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.083606][ T5787] RIP: 0033:0x7f2bff99cdd9
[ 247.085604][ T5787] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 247.093951][ T5787] RSP: 002b:00007f2c00886028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 247.097551][ T5787] RAX: ffffffffffffffda RBX: 00007f2bffc15fa0 RCX: 00007f2bff99cdd9
[ 247.101050][ T5787] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000f
[ 247.104445][ T5787] RBP: 00007f2bffa32d69 R08: 0000000000000000 R09: 0000000000000000
[ 247.107916][ T5787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 247.111058][ T5787] R13: 00007f2bffc16038 R14: 00007f2bffc15fa0 R15: 00007ffc60ee81a8
[ 247.114250][ T5787]
[ 247.115557][ T5787] Modules linked in:
[ 247.118144][ T5787] ---[ end trace 0000000000000000 ]---
[ 247.122413][ T5772] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#2] SMP KASAN NOPTI
[ 247.127829][ T5772] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 247.131563][ T5772] CPU: 0 UID: 0 PID: 5772 Comm: syz.0.17 Tainted: G D syzkaller #0 PREEMPT(full)
[ 247.136298][ T5772] Tainted: [D]=DIE
[ 247.137969][ T5772] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 247.142495][ T5772] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 247.145149][ T5772] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 247.153805][ T5772] RSP: 0018:ffffc900047370a8 EFLAGS: 00010202
[ 247.156443][ T5772] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffff88803d218000
[ 247.160012][ T5772] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8880387c1840
[ 247.163556][ T5772] RBP: 0000000000000002 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[ 247.167086][ T5772] R10: dffffc0000000000 R11: fffffbfff206199f R12: dffffc0000000000
[ 247.170645][ T5772] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 247.174249][ T5772] FS: 00007f415888f6c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 247.178234][ T5772] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 247.181227][ T5772] CR2: 00007f165b77b9a0 CR3: 00000000460f1000 CR4: 0000000000352ef0
[ 247.184796][ T5772] Call Trace:
[ 247.186298][ T5772]
[ 247.187660][ T5772] udp_tunnel_sock_release+0x6f/0x80
[ 247.190073][ T5772] rxe_net_del+0x121/0x2e0
[ 247.192086][ T5772] rxe_dellink+0x15/0x20
[ 247.193958][ T5772] nldev_dellink+0x304/0x3d0
[ 247.196104][ T5772] ? __pfx_nldev_dellink+0x10/0x10
[ 247.198391][ T5772] ? apparmor_capable+0x126/0x170
[ 247.200553][ T5772] ? bpf_lsm_capable+0x9/0x20
[ 247.202649][ T5772] ? security_capable+0x7e/0x2c0
[ 247.204735][ T5772] ? __pfx_nldev_dellink+0x10/0x10
[ 247.207015][ T5772] rdma_nl_rcv+0x6d1/0xa10
[ 247.209004][ T5772] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 247.211206][ T5772] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.213475][ T5772] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.215772][ T5772] netlink_unicast+0x75c/0x8e0
[ 247.217937][ T5772] netlink_sendmsg+0x813/0xb40
[ 247.220106][ T5772] ? __pfx_netlink_sendmsg+0x10/0x10
[ 247.222483][ T5772] ? aa_sock_msg_perm+0xf1/0x1b0
[ 247.224719][ T5772] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 247.227070][ T5772] ____sys_sendmsg+0x972/0x9f0
[ 247.229225][ T5772] ? __might_fault+0xaf/0x130
[ 247.231377][ T5772] ? __pfx_____sys_sendmsg+0x10/0x10
[ 247.233721][ T5772] ? import_iovec+0x73/0xa0
[ 247.235755][ T5772] ___sys_sendmsg+0x2a5/0x360
[ 247.237876][ T5772] ? __lock_acquire+0x6b5/0x2cf0
[ 247.240192][ T5772] ? __pfx____sys_sendmsg+0x10/0x10
[ 247.242559][ T5772] ? futex_wake+0x4ac/0x580
[ 247.244669][ T5772] ? __fget_files+0x2a/0x420
[ 247.246755][ T5772] ? __fget_files+0x3a0/0x420
[ 247.248901][ T5772] __x64_sys_sendmsg+0x1bd/0x2a0
[ 247.251095][ T5772] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 247.253534][ T5772] ? rcu_is_watching+0x15/0xb0
[ 247.255722][ T5772] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.258408][ T5772] do_syscall_64+0x15f/0xf80
[ 247.260557][ T5772] ? trace_irq_disable+0x3b/0x140
[ 247.262827][ T5772] ? clear_bhb_loop+0x40/0x90
[ 247.264960][ T5772] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.267640][ T5772] RIP: 0033:0x7f415799cdd9
[ 247.269573][ T5772] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 247.278003][ T5772] RSP: 002b:00007f415888f028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 247.281699][ T5772] RAX: ffffffffffffffda RBX: 00007f4157c16090 RCX: 00007f415799cdd9
[ 247.285264][ T5772] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000e
[ 247.288643][ T5772] RBP: 00007f4157a32d69 R08: 0000000000000000 R09: 0000000000000000
[ 247.292303][ T5772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 247.295849][ T5772] R13: 00007f4157c16128 R14: 00007f4157c16090 R15: 00007ffc0c7c1fa8
[ 247.299374][ T5772]
[ 247.300814][ T5772] Modules linked in:
[ 247.304134][ T5772] ---[ end trace 0000000000000000 ]---
[ 247.306857][ T5801] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#3] SMP KASAN NOPTI
[ 247.312177][ T5801] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 247.316327][ T5801] CPU: 0 UID: 0 PID: 5801 Comm: syz.4.21 Tainted: G D syzkaller #0 PREEMPT(full)
[ 247.321083][ T5801] Tainted: [D]=DIE
[ 247.322796][ T5801] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 247.327751][ T5801] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 247.330520][ T5801] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 247.339307][ T5801] RSP: 0018:ffffc900056df0a8 EFLAGS: 00010202
[ 247.341997][ T5801] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffff888033f3ca00
[ 247.345595][ T5801] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8880387c1840
[ 247.349101][ T5801] RBP: 0000000000000002 R08: ffff88803500802b R09: 1ffff11006a01005
[ 247.352708][ T5801] R10: dffffc0000000000 R11: ffffed1006a01006 R12: dffffc0000000000
[ 247.355964][ T5801] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 247.359614][ T5801] FS: 00007f682cfb66c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 247.363576][ T5801] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 247.366418][ T5801] CR2: 00007f165b77b9a0 CR3: 0000000051761000 CR4: 0000000000352ef0
[ 247.370053][ T5801] Call Trace:
[ 247.371576][ T5801]
[ 247.372881][ T5801] udp_tunnel_sock_release+0x6f/0x80
[ 247.375384][ T5801] rxe_net_del+0x121/0x2e0
[ 247.377391][ T5801] rxe_dellink+0x15/0x20
[ 247.379350][ T5801] nldev_dellink+0x304/0x3d0
[ 247.381427][ T5801] ? lockdep_hardirqs_on+0x7a/0x110
[ 247.383835][ T5801] ? __pfx_nldev_dellink+0x10/0x10
[ 247.386183][ T5801] ? apparmor_capable+0x126/0x170
[ 247.388442][ T5801] ? bpf_lsm_capable+0x9/0x20
[ 247.390614][ T5801] ? security_capable+0x7e/0x2c0
[ 247.392866][ T5801] ? __pfx_nldev_dellink+0x10/0x10
[ 247.395110][ T5801] rdma_nl_rcv+0x6d1/0xa10
[ 247.397166][ T5801] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 247.399473][ T5801] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.401722][ T5801] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.404098][ T5801] netlink_unicast+0x75c/0x8e0
[ 247.406154][ T5801] netlink_sendmsg+0x813/0xb40
[ 247.408218][ T5801] ? __pfx_netlink_sendmsg+0x10/0x10
[ 247.410522][ T5801] ? aa_sock_msg_perm+0xf1/0x1b0
[ 247.412674][ T5801] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 247.414917][ T5801] ____sys_sendmsg+0x972/0x9f0
[ 247.417128][ T5801] ? __might_fault+0xaf/0x130
[ 247.419167][ T5801] ? __pfx_____sys_sendmsg+0x10/0x10
[ 247.421643][ T5801] ? import_iovec+0x73/0xa0
[ 247.423655][ T5801] ___sys_sendmsg+0x2a5/0x360
[ 247.425727][ T5801] ? __lock_acquire+0x6b5/0x2cf0
[ 247.427961][ T5801] ? __pfx____sys_sendmsg+0x10/0x10
[ 247.430347][ T5801] ? futex_wake+0x4ac/0x580
[ 247.432372][ T5801] ? __fget_files+0x2a/0x420
[ 247.434400][ T5801] ? __fget_files+0x3a0/0x420
[ 247.436502][ T5801] __x64_sys_sendmsg+0x1bd/0x2a0
[ 247.438789][ T5801] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 247.441267][ T5801] ? rcu_is_watching+0x15/0xb0
[ 247.443387][ T5801] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.446152][ T5801] do_syscall_64+0x15f/0xf80
[ 247.448251][ T5801] ? trace_irq_disable+0x3b/0x140
[ 247.450496][ T5801] ? clear_bhb_loop+0x40/0x90
[ 247.452596][ T5801] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.455180][ T5801] RIP: 0033:0x7f682c19cdd9
[ 247.457032][ T5801] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 247.465353][ T5801] RSP: 002b:00007f682cfb6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 247.469039][ T5801] RAX: ffffffffffffffda RBX: 00007f682c415fa0 RCX: 00007f682c19cdd9
[ 247.473427][ T5801] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000f
[ 247.476768][ T5801] RBP: 00007f682c232d69 R08: 0000000000000000 R09: 0000000000000000
[ 247.480243][ T5801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 247.483686][ T5801] R13: 00007f682c416038 R14: 00007f682c415fa0 R15: 00007fff30bc4f58
[ 247.487072][ T5801]
[ 247.488454][ T5801] Modules linked in:
[ 247.497940][ T5801] ---[ end trace 0000000000000000 ]---
[ 247.501258][ T5780] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#4] SMP KASAN NOPTI
[ 247.506195][ T5780] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 247.509976][ T5780] CPU: 0 UID: 0 PID: 5780 Comm: syz.2.24 Tainted: G D syzkaller #0 PREEMPT(full)
[ 247.514783][ T5780] Tainted: [D]=DIE
[ 247.516479][ T5780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 247.520977][ T5780] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 247.523583][ T5780] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 247.532075][ T5780] RSP: 0018:ffffc90004ccf0a8 EFLAGS: 00010202
[ 247.534843][ T5780] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffff888048caa500
[ 247.538356][ T5780] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8880387c1840
[ 247.541735][ T5780] RBP: 0000000000000002 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[ 247.545172][ T5780] R10: dffffc0000000000 R11: fffffbfff206199f R12: dffffc0000000000
[ 247.548585][ T5780] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 247.552000][ T5780] FS: 00007fcaeadc16c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 247.555835][ T5780] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 247.558679][ T5780] CR2: 00007f165b77b9a0 CR3: 0000000045935000 CR4: 0000000000352ef0
[ 247.562154][ T5780] Call Trace:
[ 247.563660][ T5780]
[ 247.564976][ T5780] udp_tunnel_sock_release+0x6f/0x80
[ 247.567347][ T5780] rxe_net_del+0x121/0x2e0
[ 247.569331][ T5780] rxe_dellink+0x15/0x20
[ 247.571243][ T5780] nldev_dellink+0x304/0x3d0
[ 247.573236][ T5780] ? __pfx_nldev_dellink+0x10/0x10
[ 247.575418][ T5780] ? apparmor_capable+0x126/0x170
[ 247.577535][ T5780] ? bpf_lsm_capable+0x9/0x20
[ 247.579621][ T5780] ? security_capable+0x7e/0x2c0
[ 247.581813][ T5780] ? __pfx_nldev_dellink+0x10/0x10
[ 247.584058][ T5780] rdma_nl_rcv+0x6d1/0xa10
[ 247.586045][ T5780] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 247.588337][ T5780] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.590702][ T5780] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.592962][ T5780] netlink_unicast+0x75c/0x8e0
[ 247.594939][ T5780] netlink_sendmsg+0x813/0xb40
[ 247.596972][ T5780] ? __pfx_netlink_sendmsg+0x10/0x10
[ 247.599333][ T5780] ? aa_sock_msg_perm+0xf1/0x1b0
[ 247.601450][ T5780] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 247.603731][ T5780] ____sys_sendmsg+0x972/0x9f0
[ 247.605810][ T5780] ? __might_fault+0xaf/0x130
[ 247.607956][ T5780] ? __pfx_____sys_sendmsg+0x10/0x10
[ 247.610351][ T5780] ? import_iovec+0x73/0xa0
[ 247.612462][ T5780] ___sys_sendmsg+0x2a5/0x360
[ 247.614562][ T5780] ? __lock_acquire+0x6b5/0x2cf0
[ 247.616753][ T5780] ? __pfx____sys_sendmsg+0x10/0x10
[ 247.618993][ T5780] ? futex_wait+0x2a2/0x390
[ 247.621003][ T5780] ? __fget_files+0x2a/0x420
[ 247.622982][ T5780] ? __fget_files+0x3a0/0x420
[ 247.625014][ T5780] __x64_sys_sendmsg+0x1bd/0x2a0
[ 247.627221][ T5780] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 247.629731][ T5780] ? rcu_is_watching+0x15/0xb0
[ 247.631993][ T5780] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.634679][ T5780] do_syscall_64+0x15f/0xf80
[ 247.636733][ T5780] ? trace_irq_disable+0x3b/0x140
[ 247.638998][ T5780] ? clear_bhb_loop+0x40/0x90
[ 247.641287][ T5780] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.643920][ T5780] RIP: 0033:0x7fcae9f9cdd9
[ 247.645870][ T5780] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 247.653927][ T5780] RSP: 002b:00007fcaeadc1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 247.657369][ T5780] RAX: ffffffffffffffda RBX: 00007fcaea216180 RCX: 00007fcae9f9cdd9
[ 247.660613][ T5780] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000e
[ 247.664252][ T5780] RBP: 00007fcaea032d69 R08: 0000000000000000 R09: 0000000000000000
[ 247.667868][ T5780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 247.671337][ T5780] R13: 00007fcaea216218 R14: 00007fcaea216180 R15: 00007ffe767387b8
[ 247.674836][ T5780]
[ 247.676253][ T5780] Modules linked in:
[ 247.679388][ T5780] ---[ end trace 0000000000000000 ]---
[ 247.685616][ T5792] rdma_rxe: rxe_newlink: failed to add lo
[ 247.691731][ T5789] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#5] SMP KASAN NOPTI
[ 247.696641][ T5789] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 247.700066][ T5789] CPU: 0 UID: 0 PID: 5789 Comm: syz.5.22 Tainted: G D syzkaller #0 PREEMPT(full)
[ 247.704584][ T5789] Tainted: [D]=DIE
[ 247.706303][ T5789] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 247.711452][ T5789] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 247.714000][ T5789] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 247.722373][ T5789] RSP: 0018:ffffc9000519f0a8 EFLAGS: 00010202
[ 247.724999][ T5789] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffff88803c5cca00
[ 247.728504][ T5789] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff8880387c1840
[ 247.731747][ T5789] RBP: 0000000000000002 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[ 247.735096][ T5789] R10: dffffc0000000000 R11: fffffbfff206199f R12: dffffc0000000000
[ 247.738420][ T5789] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 247.741679][ T5789] FS: 00007eff3cde36c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 247.745557][ T5789] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 247.748475][ T5789] CR2: 00007f165b77b9a0 CR3: 0000000057da4000 CR4: 0000000000352ef0
[ 247.751743][ T5789] Call Trace:
[ 247.753143][ T5789]
[ 247.754417][ T5789] udp_tunnel_sock_release+0x6f/0x80
[ 247.756637][ T5789] rxe_net_del+0x121/0x2e0
[ 247.758508][ T5789] rxe_dellink+0x15/0x20
[ 247.760410][ T5789] nldev_dellink+0x304/0x3d0
[ 247.762346][ T5789] ? __pfx_nldev_dellink+0x10/0x10
[ 247.764667][ T5789] ? apparmor_capable+0x126/0x170
[ 247.766856][ T5789] ? bpf_lsm_capable+0x9/0x20
[ 247.768931][ T5789] ? security_capable+0x7e/0x2c0
[ 247.771284][ T5789] ? __pfx_nldev_dellink+0x10/0x10
[ 247.773576][ T5789] rdma_nl_rcv+0x6d1/0xa10
[ 247.775650][ T5789] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 247.777872][ T5789] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.780276][ T5789] ? netlink_deliver_tap+0x2e/0x1b0
[ 247.782604][ T5789] netlink_unicast+0x75c/0x8e0
[ 247.784792][ T5789] netlink_sendmsg+0x813/0xb40
[ 247.786909][ T5789] ? __pfx_netlink_sendmsg+0x10/0x10
[ 247.789235][ T5789] ? aa_sock_msg_perm+0xf1/0x1b0
[ 247.791438][ T5789] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 247.793727][ T5789] ____sys_sendmsg+0x972/0x9f0
[ 247.795823][ T5789] ? __might_fault+0xaf/0x130
[ 247.797871][ T5789] ? __pfx_____sys_sendmsg+0x10/0x10
[ 247.800197][ T5789] ? import_iovec+0x73/0xa0
[ 247.802149][ T5789] ___sys_sendmsg+0x2a5/0x360
[ 247.804211][ T5789] ? __lock_acquire+0x6b5/0x2cf0
[ 247.806321][ T5789] ? __pfx____sys_sendmsg+0x10/0x10
[ 247.808654][ T5789] ? futex_wake+0x4ac/0x580
[ 247.810630][ T5789] ? __fget_files+0x2a/0x420
[ 247.812739][ T5789] ? __fget_files+0x3a0/0x420
[ 247.814847][ T5789] __x64_sys_sendmsg+0x1bd/0x2a0
[ 247.817081][ T5789] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 247.819445][ T5789] ? rcu_is_watching+0x15/0xb0
[ 247.821708][ T5789] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.824258][ T5789] do_syscall_64+0x15f/0xf80
[ 247.826139][ T5789] ? trace_irq_disable+0x3b/0x140
[ 247.828193][ T5789] ? clear_bhb_loop+0x40/0x90
[ 247.830130][ T5789] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 247.832545][ T5789] RIP: 0033:0x7eff3bf9cdd9
[ 247.834346][ T5789] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 247.842256][ T5789] RSP: 002b:00007eff3cde3028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 247.845898][ T5789] RAX: ffffffffffffffda RBX: 00007eff3c215fa0 RCX: 00007eff3bf9cdd9
[ 247.849293][ T5789] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000f
[ 247.852712][ T5789] RBP: 00007eff3c032d69 R08: 0000000000000000 R09: 0000000000000000
[ 247.856377][ T5789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 247.859836][ T5789] R13: 00007eff3c216038 R14: 00007eff3c215fa0 R15: 00007ffd638ecf58
[ 247.863379][ T5789]
[ 247.864780][ T5789] Modules linked in:
[ 247.868566][ T5789] ---[ end trace 0000000000000000 ]---
[ 248.134952][ T5791] rdma_rxe: rxe_newlink: failed to add lo
[ 248.144511][ T5794] rdma_rxe: rxe_newlink: failed to add lo
[ 248.150069][ T5787] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 248.162553][ T5780] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 248.165088][ T5787] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
2026/05/06 18:38:11 executed programs: 20
[ 248.180280][ T5793] ==================================================================
[ 248.183698][ T5793] BUG: KASAN: slab-use-after-free in kernel_sock_shutdown+0x39/0x70
[ 248.187118][ T5793] Read of size 8 at addr ffff8880387c1860 by task syz.5.22/5793
[ 248.190439][ T5793]
[ 248.191537][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz.5.22 Tainted: G D syzkaller #0 PREEMPT(full)
[ 248.191554][ T5793] Tainted: [D]=DIE
[ 248.191557][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 248.191563][ T5793] Call Trace:
[ 248.191569][ T5793]
[ 248.191575][ T5793] dump_stack_lvl+0xe8/0x150
[ 248.191591][ T5793] print_address_description+0x55/0x1e0
[ 248.191602][ T5793] ? kernel_sock_shutdown+0x39/0x70
[ 248.191615][ T5793] print_report+0x58/0x70
[ 248.191623][ T5793] kasan_report+0x117/0x150
[ 248.191637][ T5793] ? kernel_sock_shutdown+0x39/0x70
[ 248.191651][ T5793] kernel_sock_shutdown+0x39/0x70
[ 248.191663][ T5793] udp_tunnel_sock_release+0x6f/0x80
[ 248.191678][ T5793] rxe_net_del+0x121/0x2e0
[ 248.191688][ T5793] rxe_dellink+0x15/0x20
[ 248.191700][ T5793] nldev_dellink+0x304/0x3d0
[ 248.191714][ T5793] ? __pfx_nldev_dellink+0x10/0x10
[ 248.191742][ T5793] ? apparmor_capable+0x126/0x170
[ 248.191756][ T5793] ? bpf_lsm_capable+0x9/0x20
[ 248.191769][ T5793] ? security_capable+0x7e/0x2c0
[ 248.191781][ T5793] ? __pfx_nldev_dellink+0x10/0x10
[ 248.191803][ T5793] rdma_nl_rcv+0x6d1/0xa10
[ 248.191814][ T5793] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 248.191832][ T5793] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.191843][ T5793] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.191854][ T5793] netlink_unicast+0x75c/0x8e0
[ 248.191866][ T5793] netlink_sendmsg+0x813/0xb40
[ 248.191879][ T5793] ? __pfx_netlink_sendmsg+0x10/0x10
[ 248.191890][ T5793] ? __lock_acquire+0x6b5/0x2cf0
[ 248.191899][ T5793] ? aa_sock_msg_perm+0xf1/0x1b0
[ 248.191909][ T5793] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 248.191920][ T5793] ____sys_sendmsg+0x972/0x9f0
[ 248.191931][ T5793] ? __might_fault+0xaf/0x130
[ 248.191944][ T5793] ? __pfx_____sys_sendmsg+0x10/0x10
[ 248.191958][ T5793] ? import_iovec+0x73/0xa0
[ 248.191969][ T5793] ___sys_sendmsg+0x2a5/0x360
[ 248.191980][ T5793] ? __lock_acquire+0x6b5/0x2cf0
[ 248.191992][ T5793] ? __pfx____sys_sendmsg+0x10/0x10
[ 248.192008][ T5793] ? __fget_files+0x2a/0x420
[ 248.192020][ T5793] ? __fget_files+0x3a0/0x420
[ 248.192032][ T5793] __x64_sys_sendmsg+0x1bd/0x2a0
[ 248.192042][ T5793] ? ktime_get+0x1f5/0x220
[ 248.192057][ T5793] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 248.192068][ T5793] ? clockevents_program_event+0x491/0x630
[ 248.192085][ T5793] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.192095][ T5793] do_syscall_64+0x15f/0xf80
[ 248.192109][ T5793] ? clear_bhb_loop+0x40/0x90
[ 248.192120][ T5793] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.192131][ T5793] RIP: 0033:0x7eff3bf9cdd9
[ 248.192143][ T5793] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 248.192152][ T5793] RSP: 002b:00007eff3cd80028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 248.192165][ T5793] RAX: ffffffffffffffda RBX: 00007eff3c216270 RCX: 00007eff3bf9cdd9
[ 248.192173][ T5793] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000f
[ 248.192180][ T5793] RBP: 00007eff3c032d69 R08: 0000000000000000 R09: 0000000000000000
[ 248.192187][ T5793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 248.192193][ T5793] R13: 00007eff3c216308 R14: 00007eff3c216270 R15: 00007ffd638ecf58
[ 248.192205][ T5793]
[ 248.192209][ T5793]
[ 248.326595][ T5793] Allocated by task 5751:
[ 248.328411][ T5793] kasan_save_track+0x3e/0x80
[ 248.330555][ T5793] __kasan_slab_alloc+0x6c/0x80
[ 248.332866][ T5793] kmem_cache_alloc_lru_noprof+0x2b8/0x640
[ 248.335564][ T5793] sock_alloc_inode+0x2c/0x190
[ 248.337756][ T5793] alloc_inode+0x6a/0x1b0
[ 248.339750][ T5793] __sock_create+0x12d/0x9d0
[ 248.341825][ T5793] udp_sock_create4+0xca/0x480
[ 248.343979][ T5793] rxe_setup_udp_tunnel+0x151/0x790
[ 248.346087][ T5793] rxe_net_init+0xaf/0x330
[ 248.348043][ T5793] rxe_newlink+0xd3/0x1c0
[ 248.350094][ T5793] nldev_newlink+0x5bc/0x650
[ 248.352095][ T5793] rdma_nl_rcv+0x6d1/0xa10
[ 248.354048][ T5793] netlink_unicast+0x75c/0x8e0
[ 248.356146][ T5793] netlink_sendmsg+0x813/0xb40
[ 248.358236][ T5793] ____sys_sendmsg+0x972/0x9f0
[ 248.360542][ T5793] ___sys_sendmsg+0x2a5/0x360
[ 248.362756][ T5793] __x64_sys_sendmsg+0x1bd/0x2a0
[ 248.364887][ T5793] do_syscall_64+0x15f/0xf80
[ 248.366941][ T5793] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.369741][ T5793]
[ 248.370817][ T5793] Freed by task 5751:
[ 248.372557][ T5793] kasan_save_track+0x3e/0x80
[ 248.374590][ T5793] kasan_save_free_info+0x46/0x50
[ 248.376779][ T5793] __kasan_slab_free+0x5c/0x80
[ 248.378759][ T5793] kmem_cache_free+0x182/0x650
[ 248.380827][ T5793] rcu_core+0x7cd/0x1070
[ 248.382656][ T5793] handle_softirqs+0x22a/0x840
[ 248.384751][ T5793] __irq_exit_rcu+0xca/0x220
[ 248.386769][ T5793] irq_exit_rcu+0x9/0x30
[ 248.388614][ T5793] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 248.391031][ T5793] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 248.393616][ T5793]
[ 248.394683][ T5793] Last potentially related work creation:
[ 248.397120][ T5793] kasan_save_stack+0x3e/0x60
[ 248.399118][ T5793] kasan_record_aux_stack+0xbd/0xd0
[ 248.401428][ T5793] call_rcu+0xee/0x890
[ 248.403140][ T5793] evict+0x95b/0xb10
[ 248.404839][ T5793] rxe_net_del+0x121/0x2e0
[ 248.406752][ T5793] rxe_dellink+0x15/0x20
[ 248.408642][ T5793] nldev_dellink+0x304/0x3d0
[ 248.410639][ T5793] rdma_nl_rcv+0x6d1/0xa10
[ 248.412540][ T5793] netlink_unicast+0x75c/0x8e0
[ 248.414514][ T5793] netlink_sendmsg+0x813/0xb40
[ 248.416538][ T5793] ____sys_sendmsg+0x972/0x9f0
[ 248.418508][ T5793] ___sys_sendmsg+0x2a5/0x360
[ 248.420506][ T5793] __x64_sys_sendmsg+0x1bd/0x2a0
[ 248.422779][ T5793] do_syscall_64+0x15f/0xf80
[ 248.424867][ T5793] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.427458][ T5793]
[ 248.428537][ T5793] The buggy address belongs to the object at ffff8880387c1800
[ 248.428537][ T5793] which belongs to the cache sock_inode_cache of size 1408
[ 248.434472][ T5793] The buggy address is located 96 bytes inside of
[ 248.434472][ T5793] freed 1408-byte region [ffff8880387c1800, ffff8880387c1d80)
[ 248.440233][ T5793]
[ 248.441287][ T5793] The buggy address belongs to the physical page:
[ 248.444056][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880387c0000 pfn:0x387c0
[ 248.448262][ T5793] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 248.451803][ T5793] memcg:ffff8880387c3c01
[ 248.453593][ T5793] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[ 248.457255][ T5793] page_type: f5(slab)
[ 248.458970][ T5793] raw: 04fff00000000240 ffff888030411b40 ffffea00011c8d10 ffffea0001134510
[ 248.462645][ T5793] raw: ffff8880387c0000 00000008000a0005 00000000f5000000 ffff8880387c3c01
[ 248.466374][ T5793] head: 04fff00000000240 ffff888030411b40 ffffea00011c8d10 ffffea0001134510
[ 248.470072][ T5793] head: ffff8880387c0000 00000008000a0005 00000000f5000000 ffff8880387c3c01
[ 248.473759][ T5793] head: 04fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[ 248.477408][ T5793] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[ 248.481122][ T5793] page dumped because: kasan: bad access detected
[ 248.483918][ T5793] page_owner tracks the page as allocated
[ 248.486312][ T5793] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_RECLAIMABLE|__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5370, tgid 5370 (syz-executor), ts 193518467692, free_ts 193087894992
[ 248.495963][ T5793] post_alloc_hook+0x231/0x280
[ 248.497972][ T5793] get_page_from_freelist+0x24ba/0x2540
[ 248.500293][ T5793] __alloc_pages_slowpath+0x3b1/0xd40
[ 248.502496][ T5793] __alloc_frozen_pages_noprof+0x322/0x380
[ 248.504985][ T5793] allocate_slab+0x77/0x660
[ 248.506977][ T5793] refill_objects+0x339/0x3d0
[ 248.509003][ T5793] __pcs_replace_empty_main+0x321/0x720
[ 248.511432][ T5793] kmem_cache_alloc_lru_noprof+0x37c/0x640
[ 248.513937][ T5793] sock_alloc_inode+0x2c/0x190
[ 248.516043][ T5793] alloc_inode+0x6a/0x1b0
[ 248.517896][ T5793] __sock_create+0x12d/0x9d0
[ 248.519913][ T5793] inet_ctl_sock_create+0xa2/0x230
[ 248.522108][ T5793] sctp_ctrlsock_init+0x47/0xd0
[ 248.524211][ T5793] ops_init+0x35c/0x5c0
[ 248.525983][ T5793] setup_net+0x118/0x340
[ 248.527782][ T5793] copy_net_ns+0x50e/0x730
[ 248.530215][ T5793] page last free pid 5335 tgid 5335 stack trace:
[ 248.532955][ T5793] __free_frozen_pages+0xbc7/0xd30
[ 248.535127][ T5793] __slab_free+0x274/0x2c0
[ 248.537077][ T5793] qlist_free_all+0x99/0x100
[ 248.539043][ T5793] kasan_quarantine_reduce+0x148/0x160
[ 248.541356][ T5793] __kasan_slab_alloc+0x22/0x80
[ 248.543552][ T5793] kmem_cache_alloc_noprof+0x2bc/0x650
[ 248.545905][ T5793] do_getname+0x2e/0x250
[ 248.547761][ T5793] do_sys_openat2+0xca/0x200
[ 248.549817][ T5793] __x64_sys_openat+0x138/0x170
[ 248.551910][ T5793] do_syscall_64+0x15f/0xf80
[ 248.553908][ T5793] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.556366][ T5793]
[ 248.557426][ T5793] Memory state around the buggy address:
[ 248.559838][ T5793] ffff8880387c1700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 248.563197][ T5793] ffff8880387c1780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 248.566605][ T5793] >ffff8880387c1800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 248.570090][ T5793] ^
[ 248.573172][ T5793] ffff8880387c1880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 248.576552][ T5793] ffff8880387c1900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 248.579945][ T5793] ==================================================================
[ 248.587197][ T5773] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000d: 0000 [#6] SMP KASAN NOPTI
[ 248.592260][ T5773] KASAN: null-ptr-deref in range [0x0000000000000068-0x000000000000006f]
[ 248.595785][ T5773] CPU: 0 UID: 0 PID: 5773 Comm: syz.0.17 Tainted: G D syzkaller #0 PREEMPT(full)
[ 248.600187][ T5773] Tainted: [D]=DIE
[ 248.601801][ T5773] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 248.606017][ T5773] RIP: 0010:kernel_sock_shutdown+0x47/0x70
[ 248.608570][ T5773] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 248.616815][ T5773] RSP: 0018:ffffc900047470a8 EFLAGS: 00010202
[ 248.619431][ T5773] RAX: 000000000000000d RBX: 0000000000000002 RCX: ffffffff897433b9
[ 248.622883][ T5773] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880387c1860
[ 248.626996][ T5773] RBP: 0000000000000002 R08: ffffffff9030ccf7 R09: 1ffffffff206199e
[ 248.631244][ T5773] R10: dffffc0000000000 R11: fffffbfff206199f R12: dffffc0000000000
[ 248.634734][ T5773] R13: dffffc0000000000 R14: ffff8880387c1840 R15: 0000000000000068
[ 248.638091][ T5773] FS: 00007f415886e6c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 248.641723][ T5773] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 248.644514][ T5773] CR2: 000012b1f1416000 CR3: 00000000460f1000 CR4: 0000000000352ef0
[ 248.647919][ T5773] Call Trace:
[ 248.649423][ T5773]
[ 248.650901][ T5773] udp_tunnel_sock_release+0x6f/0x80
[ 248.653297][ T5773] rxe_net_del+0x121/0x2e0
[ 248.655255][ T5773] rxe_dellink+0x15/0x20
[ 248.657139][ T5773] nldev_dellink+0x304/0x3d0
[ 248.659218][ T5773] ? __pfx_nldev_dellink+0x10/0x10
[ 248.661463][ T5773] ? apparmor_capable+0x126/0x170
[ 248.663434][ T5773] ? bpf_lsm_capable+0x9/0x20
[ 248.665292][ T5773] ? security_capable+0x7e/0x2c0
[ 248.667420][ T5773] ? __pfx_nldev_dellink+0x10/0x10
[ 248.669686][ T5773] rdma_nl_rcv+0x6d1/0xa10
[ 248.671739][ T5773] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 248.673960][ T5773] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.676207][ T5773] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.678560][ T5773] netlink_unicast+0x75c/0x8e0
[ 248.680739][ T5773] netlink_sendmsg+0x813/0xb40
[ 248.682878][ T5773] ? __pfx_netlink_sendmsg+0x10/0x10
[ 248.685180][ T5773] ? aa_sock_msg_perm+0xf1/0x1b0
[ 248.687328][ T5773] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 248.689743][ T5773] ____sys_sendmsg+0x972/0x9f0
[ 248.691772][ T5773] ? __might_fault+0xaf/0x130
[ 248.693781][ T5773] ? __pfx_____sys_sendmsg+0x10/0x10
[ 248.696036][ T5773] ? import_iovec+0x73/0xa0
[ 248.698000][ T5773] ___sys_sendmsg+0x2a5/0x360
[ 248.700030][ T5773] ? __lock_acquire+0x6b5/0x2cf0
[ 248.702091][ T5773] ? __pfx____sys_sendmsg+0x10/0x10
[ 248.704023][ T5773] ? futex_wake+0x4ac/0x580
[ 248.705720][ T5773] ? __fget_files+0x2a/0x420
[ 248.707506][ T5773] ? __fget_files+0x3a0/0x420
[ 248.709347][ T5773] __x64_sys_sendmsg+0x1bd/0x2a0
[ 248.711679][ T5773] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 248.714545][ T5773] ? rcu_is_watching+0x15/0xb0
[ 248.717007][ T5773] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.720024][ T5773] do_syscall_64+0x15f/0xf80
[ 248.722363][ T5773] ? trace_irq_disable+0x3b/0x140
[ 248.725084][ T5773] ? clear_bhb_loop+0x40/0x90
[ 248.727830][ T5773] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.730551][ T5773] RIP: 0033:0x7f415799cdd9
[ 248.732393][ T5773] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 248.740128][ T5773] RSP: 002b:00007f415886e028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 248.743680][ T5773] RAX: ffffffffffffffda RBX: 00007f4157c16180 RCX: 00007f415799cdd9
[ 248.747041][ T5773] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000e
[ 248.750278][ T5773] RBP: 00007f4157a32d69 R08: 0000000000000000 R09: 0000000000000000
[ 248.753406][ T5773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 248.756657][ T5773] R13: 00007f4157c16218 R14: 00007f4157c16180 R15: 00007ffc0c7c1fa8
[ 248.760026][ T5773]
[ 248.761363][ T5773] Modules linked in:
[ 248.765655][ T5773] ---[ end trace 0000000000000000 ]---
[ 248.770030][ T5780] Code: 51 f8 4d 8d 7e 20 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 a7 64 be f8 4d 8b 3f 49 83 c7 68 4c 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 ff e8 8a 64 be f8 4d 8b 1f 4c 89 f7 89
[ 248.780516][ T5787] RSP: 0018:ffffc90004d4f0a8 EFLAGS: 00010202
[ 248.783435][ T5803] ------------[ cut here ]------------
[ 248.785709][ T5803] refcount_t: underflow; use-after-free.
[ 248.788151][ T5803] WARNING: lib/refcount.c:28 at refcount_warn_saturate+0xb2/0x110, CPU#0: syz.4.21/5803
[ 248.792252][ T5803] Modules linked in:
[ 248.793867][ T5803] CPU: 0 UID: 0 PID: 5803 Comm: syz.4.21 Tainted: G D syzkaller #0 PREEMPT(full)
[ 248.798189][ T5803] Tainted: [D]=DIE
[ 248.799964][ T5803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 248.804364][ T5803] RIP: 0010:refcount_warn_saturate+0xb2/0x110
[ 248.806912][ T5803] Code: a4 02 88 0b 67 48 0f b9 3a eb 4a e8 08 27 12 fd 48 8d 3d a1 02 88 0b 67 48 0f b9 3a eb 37 e8 f5 26 12 fd 48 8d 3d 9e 02 88 0b <67> 48 0f b9 3a eb 24 e8 e2 26 12 fd 48 8d 3d 9b 02 88 0b 67 48 0f
[ 248.815247][ T5803] RSP: 0018:ffffc900056ff080 EFLAGS: 00010293
[ 248.818004][ T5803] RAX: ffffffff84b3a7eb RBX: 0000000000000003 RCX: ffff8880365aca00
[ 248.821752][ T5803] RDX: 0000000000000000 RSI: ffffffff8f111600 RDI: ffffffff903baa90
[ 248.825283][ T5803] RBP: 1ffff110070f830b R08: ffff8880365aca00 R09: 0000000000000005
[ 248.829266][ T5803] R10: 0000000000000004 R11: 0000000000000000 R12: ffffffff8feb08c0
[ 248.832882][ T5803] R13: dffffc0000000000 R14: ffff88801cfe9180 R15: 0000000000000000
[ 248.836335][ T5803] FS: 00007f682cf746c0(0000) GS:ffff88808c885000(0000) knlGS:0000000000000000
[ 248.840480][ T5803] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 248.843517][ T5803] CR2: 000012b1f1416000 CR3: 0000000051761000 CR4: 0000000000352ef0
[ 248.847084][ T5803] Call Trace:
[ 248.848619][ T5803]
[ 248.850088][ T5803] inet_release+0x186/0x200
[ 248.852092][ T5803] sock_release+0x85/0x150
[ 248.854113][ T5803] rxe_net_del+0x121/0x2e0
[ 248.856925][ T5803] rxe_dellink+0x15/0x20
[ 248.858712][ T5803] nldev_dellink+0x304/0x3d0
[ 248.861386][ T5803] ? __pfx_nldev_dellink+0x10/0x10
[ 248.863653][ T5803] ? apparmor_capable+0x126/0x170
[ 248.865790][ T5803] ? bpf_lsm_capable+0x9/0x20
[ 248.867835][ T5803] ? security_capable+0x7e/0x2c0
[ 248.870124][ T5803] ? __pfx_nldev_dellink+0x10/0x10
[ 248.872368][ T5803] rdma_nl_rcv+0x6d1/0xa10
[ 248.874301][ T5803] ? __pfx_rdma_nl_rcv+0x10/0x10
[ 248.876432][ T5803] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.878952][ T5803] ? netlink_deliver_tap+0x2e/0x1b0
[ 248.881285][ T5803] netlink_unicast+0x75c/0x8e0
[ 248.883288][ T5803] netlink_sendmsg+0x813/0xb40
[ 248.885267][ T5803] ? __pfx_netlink_sendmsg+0x10/0x10
[ 248.887515][ T5803] ? aa_sock_msg_perm+0xf1/0x1b0
[ 248.889659][ T5803] ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 248.891921][ T5803] ____sys_sendmsg+0x972/0x9f0
[ 248.893954][ T5803] ? __might_fault+0xaf/0x130
[ 248.896060][ T5803] ? __pfx_____sys_sendmsg+0x10/0x10
[ 248.898308][ T5803] ? import_iovec+0x73/0xa0
[ 248.900494][ T5803] ___sys_sendmsg+0x2a5/0x360
[ 248.902516][ T5803] ? __lock_acquire+0x6b5/0x2cf0
[ 248.904641][ T5803] ? __pfx____sys_sendmsg+0x10/0x10
[ 248.906971][ T5803] ? futex_wait+0x2a2/0x390
[ 248.909454][ T5803] ? __fget_files+0x2a/0x420
[ 248.911508][ T5803] ? __fget_files+0x3a0/0x420
[ 248.913462][ T5803] __x64_sys_sendmsg+0x1bd/0x2a0
[ 248.915602][ T5803] ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 248.917933][ T5803] ? rcu_is_watching+0x15/0xb0
[ 248.920177][ T5803] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.922874][ T5803] do_syscall_64+0x15f/0xf80
[ 248.924933][ T5803] ? trace_irq_disable+0x3b/0x140
[ 248.927106][ T5803] ? clear_bhb_loop+0x40/0x90
[ 248.929226][ T5803] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 248.931624][ T5803] RIP: 0033:0x7f682c19cdd9
[ 248.933480][ T5803] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 248.941342][ T5803] RSP: 002b:00007f682cf74028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 248.944656][ T5803] RAX: ffffffffffffffda RBX: 00007f682c416180 RCX: 00007f682c19cdd9
[ 248.947895][ T5803] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 000000000000000f
[ 248.951393][ T5803] RBP: 00007f682c232d69 R08: 0000000000000000 R09: 0000000000000000
[ 248.954792][ T5803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 248.959198][ T5803] R13: 00007f682c416218 R14: 00007f682c416180 R15: 00007fff30bc4f58
[ 248.963433][ T5803]
[ 248.964782][ T5803] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 248.968469][ T5803] Kernel Offset: disabled
[ 248.970445][ T5803] Rebooting in 86400 seconds..