Warning: Permanently added '10.128.0.33' (ED25519) to the list of known hosts.
2025/07/23 16:44:15 ignoring optional flag "sandboxArg"="0"
2025/07/23 16:44:16 parsed 1 programs
[ 52.565667][ T4191] cgroup: Unknown subsys name 'net'
[ 52.671326][ T4191] cgroup: Unknown subsys name 'rlimit'
[ 53.875240][ T4191] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 55.784597][ T1449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 55.792551][ T1449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 55.914172][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 55.980173][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 56.004000][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 56.015080][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 56.758211][ T4245] chnl_net:caif_netlink_parms(): no params data found
[ 56.961434][ T4245] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.985238][ T4245] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.014346][ T4245] device bridge_slave_0 entered promiscuous mode
[ 57.034616][ T4245] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.053583][ T4245] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.075049][ T4245] device bridge_slave_1 entered promiscuous mode
[ 57.121606][ T4245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 57.133180][ T4245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 57.160870][ T4245] team0: Port device team_slave_0 added
[ 57.168862][ T4245] team0: Port device team_slave_1 added
[ 57.191840][ T4245] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 57.199031][ T4245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.225312][ T4245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 57.239476][ T4245] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 57.246864][ T4245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 57.273968][ T4245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 57.313226][ T4245] device hsr_slave_0 entered promiscuous mode
[ 57.320187][ T4245] device hsr_slave_1 entered promiscuous mode
[ 57.447602][ T4245] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 57.460330][ T4245] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 57.470376][ T4245] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 57.481434][ T4245] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 57.511817][ T4245] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.519052][ T4245] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 57.526844][ T4245] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.533964][ T4245] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 57.587599][ T4245] 8021q: adding VLAN 0 to HW filter on device bond0
[ 57.602505][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 57.612291][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.622515][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.630336][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 57.643039][ T4245] 8021q: adding VLAN 0 to HW filter on device team0
[ 57.656251][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 57.665402][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.672445][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 57.683183][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 57.691736][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.698940][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 57.717969][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 57.723646][ T9] ODEBUG: Out of memory. ODEBUG disabled
[ 57.726834][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 57.741837][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 57.758229][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 57.772667][ T4245] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 57.785442][ T4245] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 57.793813][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 57.952700][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 57.960693][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 57.973728][ T4245] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 57.989606][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 57.998423][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.014860][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 58.023053][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.031815][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.040342][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.049297][ T4245] device veth0_vlan entered promiscuous mode
[ 58.059378][ T4245] device veth1_vlan entered promiscuous mode
[ 58.076320][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 58.085611][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 58.093514][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 58.102191][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 58.113228][ T4245] device veth0_macvtap entered promiscuous mode
[ 58.122212][ T4245] device veth1_macvtap entered promiscuous mode
[ 58.136215][ T4245] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 58.143827][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 58.152524][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 58.160656][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 58.169435][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 58.181298][ T4245] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 58.188843][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 58.198067][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 58.208616][ T4245] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.217610][ T4245] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.226653][ T4245] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.235627][ T4245] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/07/23 16:44:23 executed programs: 0
[ 58.348547][ T4245] syz-executor (4245) used greatest stack depth: 20512 bytes left
[ 58.892303][ T4291] chnl_net:caif_netlink_parms(): no params data found
[ 59.017481][ T4302] chnl_net:caif_netlink_parms(): no params data found
[ 59.046044][ T4291] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.060713][ T4291] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.068620][ T4291] device bridge_slave_0 entered promiscuous mode
[ 59.079315][ T4291] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.087169][ T4291] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.095421][ T4291] device bridge_slave_1 entered promiscuous mode
[ 59.107036][ T4295] chnl_net:caif_netlink_parms(): no params data found
[ 59.122332][ T4304] chnl_net:caif_netlink_parms(): no params data found
[ 59.152958][ T4291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.164650][ T4291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.174162][ T4294] chnl_net:caif_netlink_parms(): no params data found
[ 59.262555][ T4291] team0: Port device team_slave_0 added
[ 59.290096][ T4291] team0: Port device team_slave_1 added
[ 59.344577][ T4295] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.351633][ T4295] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.359948][ T4295] device bridge_slave_0 entered promiscuous mode
[ 59.380353][ T4294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.387734][ T4294] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.396331][ T4294] device bridge_slave_0 entered promiscuous mode
[ 59.403854][ T4291] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 59.410908][ T4291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 59.437141][ T4291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 59.453853][ T4291] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 59.460846][ T4291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 59.487046][ T4291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 59.499795][ T4295] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.506955][ T4295] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.515427][ T4295] device bridge_slave_1 entered promiscuous mode
[ 59.525127][ T4304] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.532265][ T4304] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.540063][ T4304] device bridge_slave_0 entered promiscuous mode
[ 59.547705][ T4294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.555363][ T4294] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.562998][ T4294] device bridge_slave_1 entered promiscuous mode
[ 59.570690][ T4302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 59.578083][ T4302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.586192][ T4302] device bridge_slave_0 entered promiscuous mode
[ 59.606285][ T4304] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.613339][ T4304] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.621394][ T4304] device bridge_slave_1 entered promiscuous mode
[ 59.642875][ T4302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 59.650578][ T4302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.658393][ T4302] device bridge_slave_1 entered promiscuous mode
[ 59.675219][ T4295] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.693507][ T4304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.723282][ T4295] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.743849][ T4304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.754783][ T4294] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.772941][ T4294] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.818604][ T4302] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 59.840233][ T4291] device hsr_slave_0 entered promiscuous mode
[ 59.847274][ T4291] device hsr_slave_1 entered promiscuous mode
[ 59.853767][ T4291] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 59.861661][ T4291] Cannot create hsr debugfs directory
[ 59.876449][ T4295] team0: Port device team_slave_0 added
[ 59.891026][ T4302] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 59.908182][ T4295] team0: Port device team_slave_1 added
[ 59.918368][ T4304] team0: Port device team_slave_0 added
[ 59.939361][ T4294] team0: Port device team_slave_0 added
[ 59.949194][ T4294] team0: Port device team_slave_1 added
[ 59.965322][ T4304] team0: Port device team_slave_1 added
[ 59.973409][ T4302] team0: Port device team_slave_0 added
[ 60.021357][ T4302] team0: Port device team_slave_1 added
[ 60.028315][ T4294] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 60.035400][ T4294] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.061505][ T4294] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 60.073682][ T4295] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 60.080723][ T4295] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.107000][ T4295] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 60.121278][ T4304] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 60.128794][ T4304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.154887][ T4304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 60.180759][ T4294] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 60.187996][ T4294] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.215053][ T4294] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 60.226975][ T4295] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 60.234217][ T4295] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.260360][ T4295] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 60.291670][ T4304] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 60.298840][ T4304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.324992][ T4304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 60.338248][ T4302] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 60.345529][ T4302] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.372108][ T4302] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 60.396672][ T4302] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 60.403621][ T4302] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 60.430069][ T4302] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 60.444882][ T4268] Bluetooth: hci1: command 0x0409 tx timeout
[ 60.454800][ T4268] Bluetooth: hci0: command 0x0409 tx timeout
[ 60.454847][ T4248] Bluetooth: hci2: command 0x0409 tx timeout
[ 60.479983][ T4302] device hsr_slave_0 entered promiscuous mode
[ 60.487367][ T4302] device hsr_slave_1 entered promiscuous mode
[ 60.494183][ T4302] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 60.501861][ T4302] Cannot create hsr debugfs directory
[ 60.567621][ T4294] device hsr_slave_0 entered promiscuous mode
[ 60.577496][ T4294] device hsr_slave_1 entered promiscuous mode
[ 60.584151][ T4294] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 60.591717][ T4294] Cannot create hsr debugfs directory
[ 60.604004][ T4270] Bluetooth: hci3: command 0x0409 tx timeout
[ 60.610049][ T4270] Bluetooth: hci4: command 0x0409 tx timeout
[ 60.627922][ T4295] device hsr_slave_0 entered promiscuous mode
[ 60.634648][ T4295] device hsr_slave_1 entered promiscuous mode
[ 60.641092][ T4295] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 60.648828][ T4295] Cannot create hsr debugfs directory
[ 60.663043][ T4304] device hsr_slave_0 entered promiscuous mode
[ 60.669935][ T4304] device hsr_slave_1 entered promiscuous mode
[ 60.676631][ T4304] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 60.684351][ T4304] Cannot create hsr debugfs directory
[ 60.940618][ T4291] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 60.960306][ T4291] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 60.970144][ T4291] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 60.981564][ T4291] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 61.040789][ T4302] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 61.102985][ T4302] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 61.124233][ T4302] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 61.133572][ T4302] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 61.191480][ T4295] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 61.213665][ T4294] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 61.241678][ T4291] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.250387][ T4295] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 61.272884][ T4295] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 61.284983][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 61.300562][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.317231][ T4291] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.325066][ T4295] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 61.348852][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 61.358727][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.367807][ T1449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.374898][ T1449] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.400951][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 61.409262][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 61.418011][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.426608][ T1449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.433655][ T1449] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.442270][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 61.451678][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 61.460521][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 61.470378][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 61.480543][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 61.525090][ T4302] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.541554][ T4291] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 61.552337][ T4291] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 61.572141][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 61.582463][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 61.598391][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 61.610906][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 61.623699][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 61.638911][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 61.648621][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 61.670537][ T4302] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.687800][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 61.696312][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.726419][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 61.744734][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.764085][ T1449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.771521][ T1449] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.783321][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 61.815975][ T4295] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.827655][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 61.840538][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.849346][ T3086] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.856981][ T3086] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.891631][ T4295] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.908994][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 61.924844][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 61.934766][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 61.949057][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 61.958053][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 61.985780][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 61.994664][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 62.007900][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 62.020856][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 62.052688][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 62.062878][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 62.071992][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 62.081225][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 62.089922][ T1449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.097048][ T1449] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 62.106781][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 62.114351][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 62.136956][ T4302] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 62.150277][ T4302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 62.164027][ T4291] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 62.172674][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 62.181977][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 62.191494][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 62.201351][ T1449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.208454][ T1449] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 62.217371][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 62.226920][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 62.235953][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 62.246523][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 62.256680][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 62.266349][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 62.283037][ T4295] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 62.294394][ T4295] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 62.308674][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 62.316742][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 62.325807][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 62.336186][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 62.345167][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 62.353580][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 62.362232][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 62.382671][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 62.425492][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 62.440831][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 62.476342][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 62.493074][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 62.503047][ T4291] device veth0_vlan entered promiscuous mode
[ 62.518114][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 62.527226][ T3104] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 62.537984][ T7] Bluetooth: hci2: command 0x041b tx timeout
[ 62.552815][ T4291] device veth1_vlan entered promiscuous mode
[ 62.562675][ T7] Bluetooth: hci0: command 0x041b tx timeout
[ 62.595356][ T7] Bluetooth: hci1: command 0x041b tx timeout
[ 62.599931][ T4291] device veth0_macvtap entered promiscuous mode
[ 62.618270][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 62.631819][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 62.641419][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 62.665286][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 62.681375][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 62.689354][ T4272] Bluetooth: hci4: command 0x041b tx timeout
[ 62.691174][ T1324] Bluetooth: hci3: command 0x041b tx timeout
[ 62.716254][ T4291] device veth1_macvtap entered promiscuous mode
[ 62.735602][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 62.744426][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 62.751856][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 62.759619][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 62.767502][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 62.777878][ T4302] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 62.793009][ T4295] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 62.811419][ T4291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 62.822920][ T4291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 62.841821][ T4291] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 62.871634][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 62.880784][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 62.895940][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 62.904854][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 62.915221][ T4291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 62.925981][ T4291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 62.939737][ T4291] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 62.960170][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 62.970279][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 62.979346][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 62.988204][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 62.999470][ T4291] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.010714][ T4291] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.019699][ T4291] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.031863][ T4291] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 63.050710][ T4295] device veth0_vlan entered promiscuous mode
[ 63.063749][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 63.072301][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 63.081328][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 63.090658][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 63.102470][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 63.110420][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 63.118950][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 63.128805][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 63.138043][ T4302] device veth0_vlan entered promiscuous mode
[ 63.157832][ T4295] device veth1_vlan entered promiscuous mode
[ 63.233440][ T4302] device veth1_vlan entered promiscuous mode
[ 63.301912][ T4295] device veth0_macvtap entered promiscuous mode
[ 63.315842][ T3086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 63.316569][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 63.323807][ T3086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 63.342134][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 63.351553][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 63.359742][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 63.368416][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 63.377088][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 63.386129][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 63.393792][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 63.417931][ T4295] device veth1_macvtap entered promiscuous mode
[ 63.431944][ T4294] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.454958][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 63.463636][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 63.472936][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 63.483149][ T3086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 63.487633][ T4302] device veth0_macvtap entered promiscuous mode
[ 63.492338][ T3086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 63.534182][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.545411][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.555576][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.566375][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.578427][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.587391][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 63.596119][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 63.603797][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 63.612517][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 63.623473][ T4302] device veth1_macvtap entered promiscuous mode
[ 63.643308][ T4294] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.658347][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 63.669572][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.679729][ T4295] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
2025/07/23 16:44:29 executed programs: 10
[ 63.691025][ T4295] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.703140][ T4295] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 63.731456][ T4302] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.744960][ T4302] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.755454][ T4302] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.766128][ T4302] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.776655][ T4302] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 63.794594][ T4302] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 63.812833][ T4302] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.830996][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 63.842460][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 63.852109][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 63.862406][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 63.871203][ T1449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 63.883434][ T4294] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.898840][ T144] ==================================================================
[ 63.906928][ T144] BUG: KASAN: use-after-free in __lock_acquire+0xf7/0x7c60
[ 63.914137][ T144] Read of size 8 at addr ffff888076d607e0 by task kworker/u4:1/144
[ 63.922019][ T144]
[ 63.924331][ T144] CPU: 0 PID: 144 Comm: kworker/u4:1 Not tainted 5.15.189-syzkaller #0
[ 63.932559][ T144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 63.942607][ T144] Workqueue: kkcmd kcm_tx_work
[ 63.947372][ T144] Call Trace:
[ 63.950634][ T144]
[ 63.953549][ T144] dump_stack_lvl+0x168/0x230
[ 63.958208][ T144] ? show_regs_print_info+0x20/0x20
[ 63.963388][ T144] ? load_image+0x3b0/0x3b0
[ 63.967871][ T144] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 63.973231][ T144] print_address_description+0x60/0x2d0
[ 63.978760][ T144] ? __lock_acquire+0xf7/0x7c60
[ 63.983595][ T144] kasan_report+0xdf/0x130
[ 63.988000][ T144] ? __lock_acquire+0xf7/0x7c60
[ 63.992835][ T144] __lock_acquire+0xf7/0x7c60
[ 63.997495][ T144] ? asm_sysvec_reschedule_ipi+0x16/0x20
[ 64.003109][ T144] ? lockdep_hardirqs_on+0x94/0x140
[ 64.008287][ T144] ? asm_sysvec_reschedule_ipi+0x16/0x20
[ 64.013909][ T144] ? finish_lock_switch+0x134/0x280
[ 64.019103][ T144] ? verify_lock_unused+0x140/0x140
[ 64.024289][ T144] ? finish_task_switch+0x12f/0x640
[ 64.029482][ T144] ? __switch_to_asm+0x34/0x60
[ 64.034233][ T144] ? __schedule+0x11c0/0x43b0
[ 64.038908][ T144] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 64.044896][ T144] lock_acquire+0x197/0x3f0
[ 64.049401][ T144] ? __lock_sock+0x152/0x2a0
[ 64.053993][ T144] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 64.059966][ T144] ? __local_bh_disable_ip+0xfb/0x190
[ 64.065335][ T144] ? read_lock_is_recursive+0x10/0x10
[ 64.070703][ T144] ? __local_bh_enable_ip+0x12a/0x1b0
[ 64.076062][ T144] ? kthread_data+0x4b/0xc0
[ 64.080560][ T144] ? kthread_data+0x4b/0xc0
[ 64.085051][ T144] ? __lock_sock+0x152/0x2a0
[ 64.089637][ T144] _raw_spin_lock_bh+0x32/0x50
[ 64.094382][ T144] ? __lock_sock+0x152/0x2a0
[ 64.098963][ T144] __lock_sock+0x152/0x2a0
[ 64.103356][ T144] ? sk_page_frag_refill+0x200/0x200
[ 64.108616][ T144] ? do_raw_spin_lock+0x11d/0x280
[ 64.113621][ T144] ? init_wait_entry+0xd0/0xd0
[ 64.118365][ T144] ? __rwlock_init+0x140/0x140
[ 64.123109][ T144] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 64.129077][ T144] ? lock_sock_nested+0x68/0x100
[ 64.134020][ T144] lock_sock_nested+0x9d/0x100
[ 64.138792][ T144] kcm_tx_work+0x2d/0x180
[ 64.143122][ T144] process_one_work+0x863/0x1000
[ 64.148059][ T144] ? worker_detach_from_pool+0x240/0x240
[ 64.153675][ T144] ? lockdep_hardirqs_off+0x70/0x100
[ 64.158957][ T144] ? _raw_spin_lock_irq+0xab/0xe0
[ 64.163968][ T144] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 64.169333][ T144] ? wq_worker_running+0x97/0x170
[ 64.174342][ T144] worker_thread+0xaa8/0x12a0
[ 64.179017][ T144] kthread+0x436/0x520
[ 64.183066][ T144] ? rcu_lock_release+0x20/0x20
[ 64.187895][ T144] ? kthread_blkcg+0xd0/0xd0
[ 64.192466][ T144] ret_from_fork+0x1f/0x30
[ 64.196868][ T144]
[ 64.199876][ T144]
[ 64.202174][ T144] Allocated by task 4375:
[ 64.206476][ T144] __kasan_slab_alloc+0x9c/0xd0
[ 64.211325][ T144] slab_post_alloc_hook+0x4c/0x380
[ 64.216432][ T144] kmem_cache_alloc+0x100/0x290
[ 64.221278][ T144] sk_prot_alloc+0x57/0x210
[ 64.225768][ T144] sk_alloc+0x2f/0x310
[ 64.229831][ T144] kcm_ioctl+0x211/0xff0
[ 64.234059][ T144] sock_do_ioctl+0xd3/0x2f0
[ 64.238554][ T144] sock_ioctl+0x4ed/0x6e0
[ 64.242860][ T144] __se_sys_ioctl+0xfa/0x170
[ 64.247430][ T144] do_syscall_64+0x4c/0xa0
[ 64.251825][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.257704][ T144]
[ 64.260020][ T144] Freed by task 4376:
[ 64.263990][ T144] kasan_set_track+0x4b/0x70
[ 64.268577][ T144] kasan_set_free_info+0x1f/0x40
[ 64.273493][ T144] ____kasan_slab_free+0xd5/0x110
[ 64.278493][ T144] slab_free_freelist_hook+0xea/0x170
[ 64.283840][ T144] kmem_cache_free+0x8f/0x210
[ 64.288496][ T144] __sk_destruct+0x54b/0x820
[ 64.293067][ T144] kcm_release+0x51a/0x5b0
[ 64.297467][ T144] sock_close+0xd5/0x240
[ 64.301702][ T144] __fput+0x234/0x930
[ 64.305665][ T144] task_work_run+0x125/0x1a0
[ 64.310244][ T144] exit_to_user_mode_loop+0x10f/0x130
[ 64.315594][ T144] exit_to_user_mode_prepare+0xb1/0x140
[ 64.321134][ T144] syscall_exit_to_user_mode+0x16/0x40
[ 64.326570][ T144] do_syscall_64+0x58/0xa0
[ 64.330964][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.336839][ T144]
[ 64.339149][ T144] Last potentially related work creation:
[ 64.344838][ T144] kasan_save_stack+0x35/0x60
[ 64.349508][ T144] kasan_record_aux_stack+0xb8/0x100
[ 64.354774][ T144] insert_work+0x54/0x3d0
[ 64.359096][ T144] __queue_work+0x9c5/0xd50
[ 64.363587][ T144] queue_work_on+0x11d/0x1d0
[ 64.368160][ T144] kcm_unattach+0x85e/0xe80
[ 64.372654][ T144] kcm_ioctl+0x78d/0xff0
[ 64.376881][ T144] sock_do_ioctl+0xd3/0x2f0
[ 64.381389][ T144] sock_ioctl+0x4ed/0x6e0
[ 64.385703][ T144] __se_sys_ioctl+0xfa/0x170
[ 64.390296][ T144] do_syscall_64+0x4c/0xa0
[ 64.394701][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.400609][ T144]
[ 64.402915][ T144] Second to last potentially related work creation:
[ 64.409477][ T144] kasan_save_stack+0x35/0x60
[ 64.414146][ T144] kasan_record_aux_stack+0xb8/0x100
[ 64.419429][ T144] insert_work+0x54/0x3d0
[ 64.423737][ T144] __queue_work+0x9c5/0xd50
[ 64.428218][ T144] queue_work_on+0x11d/0x1d0
[ 64.432783][ T144] kcm_ioctl+0xe4b/0xff0
[ 64.437013][ T144] sock_do_ioctl+0xd3/0x2f0
[ 64.441563][ T144] sock_ioctl+0x4ed/0x6e0
[ 64.445880][ T144] __se_sys_ioctl+0xfa/0x170
[ 64.450465][ T144] do_syscall_64+0x4c/0xa0
[ 64.454866][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.460754][ T144]
[ 64.463057][ T144] The buggy address belongs to the object at ffff888076d60740
[ 64.463057][ T144] which belongs to the cache KCM of size 1728
[ 64.476485][ T144] The buggy address is located 160 bytes inside of
[ 64.476485][ T144] 1728-byte region [ffff888076d60740, ffff888076d60e00)
[ 64.489847][ T144] The buggy address belongs to the page:
[ 64.495462][ T144] page:ffffea0001db5800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x76d60
[ 64.505962][ T144] head:ffffea0001db5800 order:3 compound_mapcount:0 compound_pincount:0
[ 64.514272][ T144] memcg:ffff88807da48401
[ 64.518499][ T144] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 64.526478][ T144] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff88802b3a13c0
[ 64.535061][ T144] raw: 0000000000000000 0000000080110011 00000001ffffffff ffff88807da48401
[ 64.543726][ T144] page dumped because: kasan: bad access detected
[ 64.550125][ T144] page_owner tracks the page as allocated
[ 64.555829][ T144] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4371, ts 63718980803, free_ts 63655110705
[ 64.576316][ T144] get_page_from_freelist+0x1b77/0x1c60
[ 64.581866][ T144] __alloc_pages+0x1e1/0x470
[ 64.586443][ T144] new_slab+0xc0/0x4b0
[ 64.590494][ T144] ___slab_alloc+0x81e/0xdf0
[ 64.595064][ T144] kmem_cache_alloc+0x195/0x290
[ 64.599917][ T144] sk_prot_alloc+0x57/0x210
[ 64.604410][ T144] sk_alloc+0x2f/0x310
[ 64.604475][ T4272] Bluetooth: hci0: command 0x040f tx timeout
[ 64.608467][ T144] kcm_create+0xfc/0x570
[ 64.618644][ T144] __sock_create+0x47b/0x900
[ 64.619609][ T4272] Bluetooth: hci2: command 0x040f tx timeout
[ 64.623315][ T144] __sys_socket+0xe2/0x170
[ 64.623330][ T144] __x64_sys_socket+0x76/0x80
[ 64.623343][ T144] do_syscall_64+0x4c/0xa0
[ 64.642770][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.648674][ T144] page last free stack trace:
[ 64.653321][ T144] free_unref_page_prepare+0x637/0x6c0
[ 64.658765][ T144] free_unref_page+0x94/0x280
[ 64.663441][ T144] __unfreeze_partials+0x1a5/0x200
[ 64.668543][ T144] put_cpu_partial+0x12d/0x190
[ 64.673384][ T144] qlist_free_all+0x35/0x90
[ 64.677956][ T144] kasan_quarantine_reduce+0x150/0x160
[ 64.683417][ T144] __kasan_slab_alloc+0x2f/0xd0
[ 64.688244][ T144] slab_post_alloc_hook+0x4c/0x380
[ 64.693336][ T144] __kmalloc+0x127/0x330
[ 64.697557][ T144] tomoyo_encode+0x27e/0x540
[ 64.702737][ T144] tomoyo_mount_permission+0x3fc/0x900
[ 64.708172][ T144] security_sb_mount+0x83/0xb0
[ 64.712915][ T144] path_mount+0xb8/0x1020
[ 64.717234][ T144] __se_sys_mount+0x2d6/0x3c0
[ 64.721885][ T144] do_syscall_64+0x4c/0xa0
[ 64.726279][ T144] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.732153][ T144]
[ 64.734450][ T144] Memory state around the buggy address:
[ 64.740053][ T144] ffff888076d60680: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 64.748094][ T144] ffff888076d60700: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 64.756128][ T144] >ffff888076d60780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.764164][ T144] ^
[ 64.771331][ T144] ffff888076d60800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.779362][ T144] ffff888076d60880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.787395][ T144] ==================================================================
[ 64.795425][ T144] Disabling lock debugging due to kernel taint
[ 64.801555][ T144] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 64.808726][ T144] CPU: 0 PID: 144 Comm: kworker/u4:1 Tainted: G B 5.15.189-syzkaller #0
[ 64.818329][ T144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 64.828363][ T144] Workqueue: kkcmd kcm_tx_work
[ 64.833112][ T144] Call Trace:
[ 64.836369][ T144]
[ 64.839283][ T144] dump_stack_lvl+0x168/0x230
[ 64.843943][ T144] ? show_regs_print_info+0x20/0x20
[ 64.849118][ T144] ? load_image+0x3b0/0x3b0
[ 64.853609][ T144] panic+0x2c9/0x7f0
[ 64.857482][ T144] ? bpf_jit_dump+0xd0/0xd0
[ 64.861964][ T144] ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 64.867832][ T144] ? _raw_spin_unlock+0x40/0x40
[ 64.872660][ T144] ? __lock_acquire+0xf7/0x7c60
[ 64.877493][ T144] check_panic_on_warn+0x80/0xa0
[ 64.882409][ T144] ? __lock_acquire+0xf7/0x7c60
[ 64.887237][ T144] end_report+0x6d/0xf0
[ 64.891374][ T144] kasan_report+0x102/0x130
[ 64.895864][ T144] ? __lock_acquire+0xf7/0x7c60
[ 64.900694][ T144] __lock_acquire+0xf7/0x7c60
[ 64.905351][ T144] ? asm_sysvec_reschedule_ipi+0x16/0x20
[ 64.910975][ T144] ? lockdep_hardirqs_on+0x94/0x140
[ 64.916154][ T144] ? asm_sysvec_reschedule_ipi+0x16/0x20
[ 64.921764][ T144] ? finish_lock_switch+0x134/0x280
[ 64.926947][ T144] ? verify_lock_unused+0x140/0x140
[ 64.932207][ T144] ? finish_task_switch+0x12f/0x640
[ 64.937393][ T144] ? __switch_to_asm+0x34/0x60
[ 64.942235][ T144] ? __schedule+0x11c0/0x43b0
[ 64.946893][ T144] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 64.952853][ T144] lock_acquire+0x197/0x3f0
[ 64.957335][ T144] ? __lock_sock+0x152/0x2a0
[ 64.961911][ T144] ? lockdep_hardirqs_on_prepare+0x760/0x760
[ 64.967867][ T144] ? __local_bh_disable_ip+0xfb/0x190
[ 64.973213][ T144] ? read_lock_is_recursive+0x10/0x10
[ 64.978562][ T144] ? __local_bh_enable_ip+0x12a/0x1b0
[ 64.983907][ T144] ? kthread_data+0x4b/0xc0
[ 64.988391][ T144] ? kthread_data+0x4b/0xc0
[ 64.992871][ T144] ? __lock_sock+0x152/0x2a0
[ 64.997450][ T144] _raw_spin_lock_bh+0x32/0x50
[ 65.002194][ T144] ? __lock_sock+0x152/0x2a0
[ 65.006779][ T144] __lock_sock+0x152/0x2a0
[ 65.011176][ T144] ? sk_page_frag_refill+0x200/0x200
[ 65.016436][ T144] ? do_raw_spin_lock+0x11d/0x280
[ 65.021435][ T144] ? init_wait_entry+0xd0/0xd0
[ 65.026360][ T144] ? __rwlock_init+0x140/0x140
[ 65.031105][ T144] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 65.037062][ T144] ? lock_sock_nested+0x68/0x100
[ 65.041984][ T144] lock_sock_nested+0x9d/0x100
[ 65.046736][ T144] kcm_tx_work+0x2d/0x180
[ 65.051048][ T144] process_one_work+0x863/0x1000
[ 65.055967][ T144] ? worker_detach_from_pool+0x240/0x240
[ 65.061575][ T144] ? lockdep_hardirqs_off+0x70/0x100
[ 65.066835][ T144] ? _raw_spin_lock_irq+0xab/0xe0
[ 65.071837][ T144] ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 65.077187][ T144] ? wq_worker_running+0x97/0x170
[ 65.082189][ T144] worker_thread+0xaa8/0x12a0
[ 65.086860][ T144] kthread+0x436/0x520
[ 65.090992][ T144] ? rcu_lock_release+0x20/0x20
[ 65.095820][ T144] ? kthread_blkcg+0xd0/0xd0
[ 65.100387][ T144] ret_from_fork+0x1f/0x30
[ 65.104789][ T144]
[ 65.107970][ T144] Kernel Offset: disabled
[ 65.112282][ T144] Rebooting in 86400 seconds..