Warning: Permanently added '10.128.1.222' (ED25519) to the list of known hosts.
2025/08/10 09:19:01 ignoring optional flag "sandboxArg"="0"
2025/08/10 09:19:02 parsed 1 programs
[ 52.541179][ T4188] cgroup: Unknown subsys name 'net'
[ 52.667015][ T4188] cgroup: Unknown subsys name 'rlimit'
[ 53.916029][ T4188] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 56.030586][ T4213] chnl_net:caif_netlink_parms(): no params data found
[ 56.089520][ T4213] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.097373][ T4213] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.105698][ T4213] device bridge_slave_0 entered promiscuous mode
[ 56.115666][ T4213] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.122870][ T4213] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.130800][ T4213] device bridge_slave_1 entered promiscuous mode
[ 56.156656][ T4213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 56.168465][ T4213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.195605][ T4213] team0: Port device team_slave_0 added
[ 56.203234][ T4213] team0: Port device team_slave_1 added
[ 56.225150][ T4213] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.232225][ T4213] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.258166][ T4213] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.271339][ T4213] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.278344][ T4213] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.304263][ T4213] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 56.341187][ T4213] device hsr_slave_0 entered promiscuous mode
[ 56.348079][ T4213] device hsr_slave_1 entered promiscuous mode
[ 56.465501][ T4213] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 56.477456][ T4213] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 56.487462][ T4213] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 56.497835][ T4213] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 56.527561][ T4213] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.534800][ T4213] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.542594][ T4213] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.549652][ T4213] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.605331][ T4213] 8021q: adding VLAN 0 to HW filter on device bond0
[ 56.620747][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 56.634646][ T665] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.643232][ T665] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.651251][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 56.667122][ T4213] 8021q: adding VLAN 0 to HW filter on device team0
[ 56.678729][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 56.687718][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.694811][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.714530][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 56.724140][ T665] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.731367][ T665] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.758007][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 56.768567][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 56.777429][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 56.787543][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 56.798320][ T4213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 56.811247][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 56.911134][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 56.919990][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 56.931647][ T4213] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 56.961197][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 56.990604][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 57.004383][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 57.012474][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 57.023069][ T4213] device veth0_vlan entered promiscuous mode
[ 57.036534][ T4213] device veth1_vlan entered promiscuous mode
[ 57.053429][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 57.062219][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 57.072608][ T4213] device veth0_macvtap entered promiscuous mode
[ 57.080740][ T4213] device veth1_macvtap entered promiscuous mode
[ 57.095630][ T4213] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 57.104107][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 57.112761][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 57.120639][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 57.129481][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 57.140315][ T4213] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 57.154979][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 57.163933][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 57.175416][ T4213] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.184706][ T4213] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.194148][ T4213] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.202887][ T4213] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.282112][ T4213] syz-executor (4213) used greatest stack depth: 21152 bytes left
[ 58.129435][ T665] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 58.148600][ T665] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 58.167834][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 58.190715][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 58.205726][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 58.218673][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/08/10 09:19:10 executed programs: 0
[ 58.789874][ T4282] chnl_net:caif_netlink_parms(): no params data found
[ 58.831457][ T4282] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.838635][ T4282] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.846438][ T4282] device bridge_slave_0 entered promiscuous mode
[ 58.854726][ T4282] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.861868][ T4282] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.869461][ T4282] device bridge_slave_1 entered promiscuous mode
[ 58.894894][ T4282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.906763][ T4282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.935607][ T4282] team0: Port device team_slave_0 added
[ 58.945899][ T4282] team0: Port device team_slave_1 added
[ 58.967345][ T4282] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 58.974459][ T4282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 59.001027][ T4282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 59.016686][ T4282] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 59.023810][ T4282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 59.049758][ T4282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 59.087562][ T4282] device hsr_slave_0 entered promiscuous mode
[ 59.094946][ T4282] device hsr_slave_1 entered promiscuous mode
[ 59.101528][ T4282] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 59.109508][ T4282] Cannot create hsr debugfs directory
[ 59.129903][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 60.692638][ T4226] Bluetooth: hci0: command 0x0409 tx timeout
[ 61.997514][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.066006][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.127798][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.771963][ T1324] Bluetooth: hci0: command 0x041b tx timeout
[ 63.005051][ T4282] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 63.017083][ T4282] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 63.026469][ T4282] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 63.052083][ T4282] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 63.116531][ T4282] 8021q: adding VLAN 0 to HW filter on device bond0
[ 63.147279][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 63.154980][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 63.165426][ T4282] 8021q: adding VLAN 0 to HW filter on device team0
[ 63.175568][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 63.184516][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 63.192932][ T4289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.199963][ T4289] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.208163][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 63.222142][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 63.230679][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 63.239690][ T4228] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.246752][ T4228] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 63.260211][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 63.270917][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 63.281994][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 63.290624][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 63.301257][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 63.325882][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 63.334646][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 63.345761][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 63.354158][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 63.364768][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 63.373419][ T4228] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 63.384395][ T4282] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 63.491342][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 63.499499][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 63.511055][ T4282] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 63.545848][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 63.554767][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 63.569713][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 63.578344][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 63.587153][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 63.595070][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 63.604623][ T4282] device veth0_vlan entered promiscuous mode
[ 63.629439][ T4282] device veth1_vlan entered promiscuous mode
[ 63.646154][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 63.654951][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 63.663280][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 63.672788][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 63.698877][ T4282] device veth0_macvtap entered promiscuous mode
[ 63.708218][ T4282] device veth1_macvtap entered promiscuous mode
[ 63.721189][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.733028][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.743884][ T4282] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.754239][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 63.763253][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 63.771043][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 63.780009][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 63.792816][ T4282] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 63.803673][ T4282] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.815551][ T4282] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 63.832888][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 63.841326][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 63.852467][ T4282] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.861174][ T4282] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.870118][ T4282] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.879113][ T4282] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.905762][ T9] device hsr_slave_0 left promiscuous mode
[ 63.912924][ T9] device hsr_slave_1 left promiscuous mode
[ 63.919206][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 63.927101][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 63.935247][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 63.942835][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 63.950295][ T9] device bridge_slave_1 left promiscuous mode
[ 63.957391][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.969331][ T9] device bridge_slave_0 left promiscuous mode
[ 63.976534][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.991303][ T9] device veth1_macvtap left promiscuous mode
[ 63.997898][ T9] device veth0_macvtap left promiscuous mode
[ 64.003976][ T9] device veth1_vlan left promiscuous mode
[ 64.009790][ T9] device veth0_vlan left promiscuous mode
[ 64.135750][ T9] team0 (unregistering): Port device team_slave_1 removed
[ 64.146378][ T9] team0 (unregistering): Port device team_slave_0 removed
[ 64.157500][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 64.175113][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 64.221200][ T9] bond0 (unregistering): Released all slaves
[ 64.316243][ T4228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 64.330120][ T4228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 64.332786][ T665] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 64.343125][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 64.346689][ T665] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/08/10 09:19:15 executed programs: 2
[ 64.374058][ T665] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 64.412176][ C1] ------------[ cut here ]------------
[ 64.417900][ C1] WARNING: CPU: 1 PID: 4317 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0
[ 64.427278][ C1] Modules linked in:
[ 64.431183][ C1] CPU: 1 PID: 4317 Comm: kworker/1:23 Not tainted 5.15.189-syzkaller #0
[ 64.439529][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 64.449611][ C1] Workqueue: mld mld_ifc_work
[ 64.454421][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 64.460597][ C1] Code: 24 45 31 f6 31 ff 89 de e8 ed f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 f4 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 64.480239][ C1] RSP: 0018:ffffc90000dd04e8 EFLAGS: 00010246
[ 64.486343][ C1] RAX: ffffffff819ecfb0 RBX: 0000000000000000 RCX: ffff8880233a5940
[ 64.494362][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 64.502357][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1ad2dd6
[ 64.510339][ C1] R10: fffffbfff1ad2dd6 R11: 1ffffffff1ad2dd5 R12: ffff8880233a70c8
[ 64.518377][ C1] R13: 1ffff920001ba0ac R14: ffffc90000dd0548 R15: 0000000000000000
[ 64.526372][ C1] FS: 0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[ 64.535315][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 64.541912][ C1] CR2: 0000001b30563fff CR3: 000000000be8e000 CR4: 00000000003506e0
[ 64.549895][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 64.557879][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 64.565865][ C1] Call Trace:
[ 64.569125][ C1]
[ 64.571998][ C1] bpf_probe_read_user+0x26/0x70
[ 64.576946][ C1] ? bpf_trace_run3+0x17e/0x320
[ 64.581819][ C1] ? bpf_trace_run2+0x2d0/0x2d0
[ 64.586668][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 64.592326][ C1] ? lockdep_hardirqs_on+0x94/0x140
[ 64.597525][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 64.603164][ C1] ? __bpf_trace_kmem_cache_free+0x99/0xc0
[ 64.608974][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 64.614634][ C1] ? kmem_cache_free+0x1e7/0x210
[ 64.619570][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 64.625225][ C1] ? drv_event_callback+0x250/0x250
[ 64.630428][ C1] ? queue_work_on+0x179/0x1d0
[ 64.635213][ C1] ? do_raw_spin_unlock+0x11d/0x230
[ 64.640414][ C1] ? _raw_spin_unlock+0x24/0x40
[ 64.645278][ C1] ? ieee80211_prepare_and_rx_handle+0x1d8e/0x5250
[ 64.651830][ C1] ? ieee80211_rx_8023+0x1400/0x1400
[ 64.657127][ C1] ? sta_info_get_bss+0x292/0x2a0
[ 64.662170][ C1] ? ieee80211_rx_list+0x1ba1/0x2680
[ 64.667470][ C1] ? ieee80211_check_fast_rx_iface+0x210/0x210
[ 64.673761][ C1] ? read_lock_is_recursive+0x10/0x10
[ 64.679713][ C1] ? __rwlock_init+0x140/0x140
[ 64.684612][ C1] ? _raw_spin_lock_irqsave+0x7f/0xf0
[ 64.689997][ C1] ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 64.695913][ C1] ? ieee80211_rx_napi+0x15d/0x360
[ 64.701027][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 64.707128][ C1] ? ieee80211_rx_list+0x2680/0x2680
[ 64.712448][ C1] ? skb_dequeue+0x10a/0x140
[ 64.717050][ C1] ? ieee80211_handle_queued_frames+0x105/0x1b0
[ 64.723301][ C1] ? ieee80211_reconfig_filter+0x20/0x20
[ 64.728936][ C1] ? tasklet_action_common+0x298/0x400
[ 64.734525][ C1] ? trace_raw_output_softirq+0xd0/0xd0
[ 64.740077][ C1] ? sched_clock_cpu+0x15/0x3c0
[ 64.744945][ C1] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 64.750939][ C1] ? handle_softirqs+0x328/0x820
[ 64.755890][ C1] ? do_softirq+0x13b/0x200
[ 64.760402][ C1] ? do_softirq+0x200/0x200
[ 64.764950][ C1] ? do_softirq+0x13b/0x200
[ 64.769451][ C1]
[ 64.772403][ C1]
[ 64.775332][ C1] ? __local_bh_enable_ip+0x1b0/0x1b0
[ 64.780741][ C1] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 64.786746][ C1] ? __local_bh_enable_ip+0xcb/0x1b0
[ 64.792060][ C1] ? lockdep_hardirqs_off+0x70/0x100
[ 64.797369][ C1] ? local_bh_enable+0x5/0x20
[ 64.802076][ C1] ? __local_bh_enable_ip+0x174/0x1b0
[ 64.807446][ C1] ? _local_bh_enable+0xa0/0xa0
[ 64.812333][ C1] ? ip6_finish_output2+0x110b/0x1500
[ 64.817727][ C1] ? nf_hook+0x350/0x350
[ 64.821993][ C1] ? ip6_finish_output+0x64c/0x7d0
[ 64.827103][ C1] ? NF_HOOK+0x15f/0x430
[ 64.831323][ C1] ? mld_send_report+0x2e0/0x2e0
[ 64.836289][ C1] ? NF_HOOK+0x430/0x430
[ 64.840534][ C1] ? icmp6_dst_alloc+0x41c/0x4a0
[ 64.845507][ C1] ? mld_sendpack+0x713/0xc30
[ 64.850184][ C1] ? skb_put+0x117/0x210
[ 64.852428][ T4214] Bluetooth: hci0: command 0x040f tx timeout
[ 64.854469][ C1] ? add_grec+0x15d0/0x15d0
[ 64.864875][ C1] ? mld_ifc_work+0x836/0xb40
[ 64.869530][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 64.874744][ C1] ? process_one_work+0x863/0x1000
[ 64.879854][ C1] ? worker_detach_from_pool+0x240/0x240
[ 64.885489][ C1] ? lockdep_hardirqs_off+0x70/0x100
[ 64.890776][ C1] ? _raw_spin_lock_irq+0xab/0xe0
[ 64.895812][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 64.901203][ C1] ? wq_worker_running+0x97/0x170
[ 64.906243][ C1] ? worker_thread+0xaa8/0x12a0
[ 64.911327][ C1] ? kthread+0x436/0x520
[ 64.915583][ C1] ? rcu_lock_release+0x20/0x20
[ 64.920431][ C1] ? kthread_blkcg+0xd0/0xd0
[ 64.925032][ C1] ? ret_from_fork+0x1f/0x30
[ 64.929631][ C1]
[ 64.932699][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 64.939964][ C1] CPU: 1 PID: 4317 Comm: kworker/1:23 Not tainted 5.15.189-syzkaller #0
[ 64.948267][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 64.958299][ C1] Workqueue: mld mld_ifc_work
[ 64.962962][ C1] Call Trace:
[ 64.966230][ C1]
[ 64.969049][ C1] dump_stack_lvl+0x168/0x230
[ 64.973716][ C1] ? show_regs_print_info+0x20/0x20
[ 64.978924][ C1] ? load_image+0x3b0/0x3b0
[ 64.983421][ C1] panic+0x2c9/0x7f0
[ 64.987339][ C1] ? bpf_jit_dump+0xd0/0xd0
[ 64.991866][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 64.997406][ C1] __warn+0x248/0x2b0
[ 65.001379][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.006904][ C1] report_bug+0x1b7/0x2e0
[ 65.011219][ C1] handle_bug+0x3a/0x70
[ 65.015348][ C1] exc_invalid_op+0x16/0x40
[ 65.019828][ C1] asm_exc_invalid_op+0x16/0x20
[ 65.024654][ C1] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[ 65.030793][ C1] Code: 24 45 31 f6 31 ff 89 de e8 ed f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 70 f4 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[ 65.050391][ C1] RSP: 0018:ffffc90000dd04e8 EFLAGS: 00010246
[ 65.056440][ C1] RAX: ffffffff819ecfb0 RBX: 0000000000000000 RCX: ffff8880233a5940
[ 65.064399][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.072350][ C1] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1ad2dd6
[ 65.080296][ C1] R10: fffffbfff1ad2dd6 R11: 1ffffffff1ad2dd5 R12: ffff8880233a70c8
[ 65.088244][ C1] R13: 1ffff920001ba0ac R14: ffffc90000dd0548 R15: 0000000000000000
[ 65.096199][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.101742][ C1] ? copy_from_user_nofault+0x160/0x1c0
[ 65.107282][ C1] bpf_probe_read_user+0x26/0x70
[ 65.112207][ C1] ? bpf_trace_run3+0x17e/0x320
[ 65.117059][ C1] ? bpf_trace_run2+0x2d0/0x2d0
[ 65.121895][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 65.127525][ C1] ? lockdep_hardirqs_on+0x94/0x140
[ 65.132705][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 65.138338][ C1] ? __bpf_trace_kmem_cache_free+0x99/0xc0
[ 65.144125][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 65.149734][ C1] ? kmem_cache_free+0x1e7/0x210
[ 65.154658][ C1] ? ieee80211_rx_handlers+0x1f49/0x8470
[ 65.160277][ C1] ? drv_event_callback+0x250/0x250
[ 65.165475][ C1] ? queue_work_on+0x179/0x1d0
[ 65.170217][ C1] ? do_raw_spin_unlock+0x11d/0x230
[ 65.175395][ C1] ? _raw_spin_unlock+0x24/0x40
[ 65.180229][ C1] ? ieee80211_prepare_and_rx_handle+0x1d8e/0x5250
[ 65.186717][ C1] ? ieee80211_rx_8023+0x1400/0x1400
[ 65.191985][ C1] ? sta_info_get_bss+0x292/0x2a0
[ 65.196993][ C1] ? ieee80211_rx_list+0x1ba1/0x2680
[ 65.202279][ C1] ? ieee80211_check_fast_rx_iface+0x210/0x210
[ 65.208428][ C1] ? read_lock_is_recursive+0x10/0x10
[ 65.213783][ C1] ? __rwlock_init+0x140/0x140
[ 65.218522][ C1] ? _raw_spin_lock_irqsave+0x7f/0xf0
[ 65.223879][ C1] ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 65.229771][ C1] ? ieee80211_rx_napi+0x15d/0x360
[ 65.234860][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 65.240815][ C1] ? ieee80211_rx_list+0x2680/0x2680
[ 65.246079][ C1] ? skb_dequeue+0x10a/0x140
[ 65.250660][ C1] ? ieee80211_handle_queued_frames+0x105/0x1b0
[ 65.256902][ C1] ? ieee80211_reconfig_filter+0x20/0x20
[ 65.262523][ C1] ? tasklet_action_common+0x298/0x400
[ 65.267997][ C1] ? trace_raw_output_softirq+0xd0/0xd0
[ 65.273566][ C1] ? sched_clock_cpu+0x15/0x3c0
[ 65.278397][ C1] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 65.284390][ C1] ? handle_softirqs+0x328/0x820
[ 65.289307][ C1] ? do_softirq+0x13b/0x200
[ 65.293809][ C1] ? do_softirq+0x200/0x200
[ 65.298292][ C1] ? do_softirq+0x13b/0x200
[ 65.302773][ C1]
[ 65.305697][ C1]
[ 65.308606][ C1] ? __local_bh_enable_ip+0x1b0/0x1b0
[ 65.313969][ C1] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 65.319935][ C1] ? __local_bh_enable_ip+0xcb/0x1b0
[ 65.325197][ C1] ? lockdep_hardirqs_off+0x70/0x100
[ 65.330464][ C1] ? local_bh_enable+0x5/0x20
[ 65.335130][ C1] ? __local_bh_enable_ip+0x174/0x1b0
[ 65.340525][ C1] ? _local_bh_enable+0xa0/0xa0
[ 65.345362][ C1] ? ip6_finish_output2+0x110b/0x1500
[ 65.350722][ C1] ? nf_hook+0x350/0x350
[ 65.354944][ C1] ? ip6_finish_output+0x64c/0x7d0
[ 65.360038][ C1] ? NF_HOOK+0x15f/0x430
[ 65.364260][ C1] ? mld_send_report+0x2e0/0x2e0
[ 65.369176][ C1] ? NF_HOOK+0x430/0x430
[ 65.373415][ C1] ? icmp6_dst_alloc+0x41c/0x4a0
[ 65.378333][ C1] ? mld_sendpack+0x713/0xc30
[ 65.382990][ C1] ? skb_put+0x117/0x210
[ 65.387231][ C1] ? add_grec+0x15d0/0x15d0
[ 65.391755][ C1] ? mld_ifc_work+0x836/0xb40
[ 65.396422][ C1] ? _raw_spin_unlock_irq+0x1f/0x40
[ 65.401600][ C1] ? process_one_work+0x863/0x1000
[ 65.406700][ C1] ? worker_detach_from_pool+0x240/0x240
[ 65.412317][ C1] ? lockdep_hardirqs_off+0x70/0x100
[ 65.417601][ C1] ? _raw_spin_lock_irq+0xab/0xe0
[ 65.422617][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 65.427992][ C1] ? wq_worker_running+0x97/0x170
[ 65.432995][ C1] ? worker_thread+0xaa8/0x12a0
[ 65.437835][ C1] ? kthread+0x436/0x520
[ 65.442057][ C1] ? rcu_lock_release+0x20/0x20
[ 65.446902][ C1] ? kthread_blkcg+0xd0/0xd0
[ 65.451492][ C1] ? ret_from_fork+0x1f/0x30
[ 65.456081][ C1]
[ 65.459269][ C1] Kernel Offset: disabled
[ 65.463687][ C1] Rebooting in 86400 seconds..