syzkaller login: [ 97.062138][ T1030] cfg80211: failed to load regulatory.db Warning: Permanently added '[localhost]:3810' (ED25519) to the list of known hosts. 2025/12/27 00:19:40 parsed 1 programs [ 155.079609][ T5354] cgroup: Unknown subsys name 'net' [ 155.165714][ T5354] cgroup: Unknown subsys name 'cpuset' [ 155.173532][ T5354] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 156.893741][ T5354] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 164.492809][ T5362] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 165.107504][ T5368] chnl_net:caif_netlink_parms(): no params data found [ 165.265085][ T5368] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.269043][ T5368] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.282260][ T5368] bridge_slave_0: entered allmulticast mode [ 165.286267][ T5368] bridge_slave_0: entered promiscuous mode [ 165.300236][ T5368] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.303656][ T5368] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.307115][ T5368] bridge_slave_1: entered allmulticast mode [ 165.311055][ T5368] bridge_slave_1: entered promiscuous mode [ 165.338325][ T5368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 165.345078][ T5368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 165.372426][ T5368] team0: Port device team_slave_0 added [ 165.376683][ T5368] team0: Port device team_slave_1 added [ 165.398083][ T5368] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 165.401099][ T5368] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 165.412725][ T5368] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 165.419003][ T5368] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 165.422622][ T5368] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 165.434120][ T5368] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 165.474587][ T5368] hsr_slave_0: entered promiscuous mode [ 165.477899][ T5368] hsr_slave_1: entered promiscuous mode [ 165.635919][ T5368] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 165.645953][ T5368] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 165.652958][ T5368] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 165.659936][ T5368] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 165.691221][ T5368] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.694546][ T5368] bridge0: port 2(bridge_slave_1) entered forwarding state [ 165.698328][ T5368] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.701148][ T5368] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.758327][ T5368] 8021q: adding VLAN 0 to HW filter on device bond0 [ 165.772188][ T1330] bridge0: port 1(bridge_slave_0) entered disabled state [ 165.778137][ T1330] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.789944][ T5368] 8021q: adding VLAN 0 to HW filter on device team0 [ 165.799623][ T3180] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.803078][ T3180] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.819803][ T3180] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.822932][ T3180] bridge0: port 2(bridge_slave_1) entered forwarding state [ 166.119722][ T5368] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 166.204246][ T5368] veth0_vlan: entered promiscuous mode [ 166.223720][ T5368] veth1_vlan: entered promiscuous mode [ 166.273730][ T5368] veth0_macvtap: entered promiscuous mode [ 166.285821][ T5368] veth1_macvtap: entered promiscuous mode [ 166.314882][ T5368] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 166.342155][ T5368] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 166.357126][ T3180] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.378352][ T3180] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.391077][ T3180] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.416449][ T3180] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 166.715354][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.830781][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.944262][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.068431][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.815492][ T12] bridge_slave_1: left allmulticast mode [ 168.818145][ T12] bridge_slave_1: left promiscuous mode [ 168.821310][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.875117][ T12] bridge_slave_0: left allmulticast mode [ 168.877613][ T12] bridge_slave_0: left promiscuous mode [ 168.880153][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.673122][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 169.679394][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 169.694697][ T12] bond0 (unregistering): Released all slaves [ 169.787810][ T12] hsr_slave_0: left promiscuous mode [ 169.790719][ T12] hsr_slave_1: left promiscuous mode [ 169.794586][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 169.797958][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 169.803257][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 169.806627][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 169.820728][ T12] veth1_macvtap: left promiscuous mode [ 169.823598][ T12] veth0_macvtap: left promiscuous mode [ 169.826146][ T12] veth1_vlan: left promiscuous mode [ 169.828959][ T12] veth0_vlan: left promiscuous mode [ 170.166502][ T12] team0 (unregistering): Port device team_slave_1 removed [ 170.196952][ T12] team0 (unregistering): Port device team_slave_0 removed [ 171.945308][ T3180] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 171.949002][ T3180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 172.058125][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 172.061339][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 173.513736][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 173.518159][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 173.522391][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 173.526124][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 173.532283][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 2025/12/27 00:20:03 executed programs: 0 [ 175.619658][ T4684] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 175.626619][ T4684] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 175.631565][ T4684] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 175.636331][ T4684] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 175.640355][ T4684] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 175.815369][ T5492] chnl_net:caif_netlink_parms(): no params data found [ 175.911532][ T5492] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.914976][ T5492] bridge0: port 1(bridge_slave_0) entered disabled state [ 175.918073][ T5492] bridge_slave_0: entered allmulticast mode [ 175.921779][ T5492] bridge_slave_0: entered promiscuous mode [ 175.928924][ T5492] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.934910][ T5492] bridge0: port 2(bridge_slave_1) entered disabled state [ 175.939859][ T5492] bridge_slave_1: entered allmulticast mode [ 175.944053][ T5492] bridge_slave_1: entered promiscuous mode [ 175.968230][ T5492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 175.974277][ T5492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 175.997021][ T5492] team0: Port device team_slave_0 added [ 176.002531][ T5492] team0: Port device team_slave_1 added [ 176.023004][ T5492] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 176.026224][ T5492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 176.037831][ T5492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 176.044216][ T5492] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 176.047186][ T5492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 176.058834][ T5492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.097783][ T5492] hsr_slave_0: entered promiscuous mode [ 176.101303][ T5492] hsr_slave_1: entered promiscuous mode [ 176.577928][ T5492] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 176.595499][ T5492] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 176.611400][ T5492] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 176.626202][ T5492] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 176.676099][ T5492] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.679157][ T5492] bridge0: port 2(bridge_slave_1) entered forwarding state [ 176.682521][ T5492] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.685321][ T5492] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.823381][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.827482][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.864111][ T5492] 8021q: adding VLAN 0 to HW filter on device bond0 [ 176.898646][ T5492] 8021q: adding VLAN 0 to HW filter on device team0 [ 176.943147][ T1330] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.946404][ T1330] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.978240][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.981443][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.426950][ T5492] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 177.494073][ T5492] veth0_vlan: entered promiscuous mode [ 177.515547][ T5492] veth1_vlan: entered promiscuous mode [ 177.553195][ T5492] veth0_macvtap: entered promiscuous mode [ 177.574254][ T5492] veth1_macvtap: entered promiscuous mode [ 177.599356][ T5492] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 177.619786][ T5492] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 177.654752][ T3180] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.684156][ T3180] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.697673][ T4684] Bluetooth: hci0: command tx timeout [ 177.703436][ T3180] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.707854][ T3180] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.792692][ T3180] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 177.796154][ T3180] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 177.847501][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 177.851012][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 179.775542][ T4684] Bluetooth: hci0: command tx timeout [ 180.212078][ C0] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI [ 180.217114][ C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 180.220745][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(full) [ 180.224734][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 180.229381][ C0] RIP: 0010:bpf_get_local_storage+0xbd/0x180 [ 180.232204][ C0] Code: e0 49 83 c6 08 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a2 83 39 00 4d 8b 36 83 fb 15 75 5c 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 84 83 39 00 49 8b 1e e8 ec 7e 6c [ 180.240100][ C0] RSP: 0018:ffffc9000041eff8 EFLAGS: 00010246 [ 180.242642][ C0] RAX: 0000000000000000 RBX: 0000000000000015 RCX: 0000000000000100 [ 180.246065][ C0] RDX: ffff88801c294980 RSI: 0000000000000015 RDI: 0000000000000015 [ 180.249524][ C0] RBP: ffffc9000041f030 R08: 0000000000000003 R09: 0000000000000000 [ 180.252931][ C0] R10: ffffc9000041f0a0 R11: ffffffffa0203f70 R12: 0000000000000001 [ 180.256320][ C0] R13: ffff8880126dc500 R14: 0000000000000000 R15: dffffc0000000000 [ 180.259653][ C0] FS: 0000000000000000(0000) GS:ffff88808d416000(0000) knlGS:0000000000000000 [ 180.263392][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 180.266305][ C0] CR2: 0000200000001c40 CR3: 0000000043e38000 CR4: 0000000000352ef0 [ 180.269682][ C0] Call Trace: [ 180.271093][ C0] [ 180.272376][ C0] bpf_prog_e63b106389d7305a+0x2e/0x45 [ 180.274627][ C0] __bpf_prog_run_save_cb+0x127/0x370 [ 180.276929][ C0] ? __cgroup_bpf_run_filter_skb+0x565/0xf40 [ 180.279481][ C0] ? __pfx___bpf_prog_run_save_cb+0x10/0x10 [ 180.282066][ C0] __cgroup_bpf_run_filter_skb+0x9e0/0xf40 [ 180.284575][ C0] ? lockdep_hardirqs_on+0x7b/0x110 [ 180.286923][ C0] ? __pfx___cgroup_bpf_run_filter_skb+0x10/0x10 [ 180.289568][ C0] ? __pfx_inet_ehashfn+0x10/0x10 [ 180.291779][ C0] sk_filter_trim_cap+0xd42/0xf50 [ 180.294003][ C0] ? tcp_inbound_hash+0x3ab/0x880 [ 180.296228][ C0] ? __pfx_tcp_inbound_hash+0x10/0x10 [ 180.298632][ C0] ? __pfx_sk_filter_trim_cap+0x10/0x10 [ 180.301099][ C0] ? __pfx___inet_lookup_established+0x10/0x10 [ 180.303761][ C0] tcp_v4_rcv+0x1f90/0x2f20 [ 180.305825][ C0] ? raw_local_deliver+0x30d/0xf10 [ 180.308062][ C0] ? lock_acquire+0x107/0x340 [ 180.310092][ C0] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 180.312249][ C0] ? ip_local_deliver_finish+0x2ae/0x6f0 [ 180.314679][ C0] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 180.316875][ C0] ip_protocol_deliver_rcu+0x221/0x440 [ 180.319299][ C0] ? ip_local_deliver_finish+0x2ae/0x6f0 [ 180.321862][ C0] ip_local_deliver_finish+0x3bb/0x6f0 [ 180.324302][ C0] NF_HOOK+0x30c/0x3a0 [ 180.326102][ C0] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 180.328676][ C0] ? NF_HOOK+0x9a/0x3a0 [ 180.330416][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 180.332465][ C0] ? ip_rcv_finish_core+0xda3/0x1c00 [ 180.334827][ C0] ? skb_dst+0x4f/0xd0 [ 180.336710][ C0] ? ip_local_deliver+0x12a/0x1b0 [ 180.338977][ C0] NF_HOOK+0x30c/0x3a0 [ 180.340768][ C0] ? __pfx_ip_rcv_finish+0x10/0x10 [ 180.342971][ C0] ? NF_HOOK+0x9a/0x3a0 [ 180.344827][ C0] ? __pfx_NF_HOOK+0x10/0x10 [ 180.346969][ C0] ? ip_rcv_core+0x7f7/0xd00 [ 180.349048][ C0] ? __pfx_ip_rcv+0x10/0x10 [ 180.350943][ C0] __netif_receive_skb+0x143/0x380 [ 180.353023][ C0] ? process_backlog+0x247/0x1340 [ 180.355124][ C0] process_backlog+0x54f/0x1340 [ 180.357112][ C0] __napi_poll+0xae/0x320 [ 180.358850][ C0] ? skb_defer_free_flush+0x233/0x260 [ 180.360948][ C0] net_rx_action+0x64a/0xe00 [ 180.362817][ C0] ? __pfx_net_rx_action+0x10/0x10 [ 180.365095][ C0] ? smpboot_thread_fn+0x4d/0xa60 [ 180.367417][ C0] handle_softirqs+0x22b/0x7c0 [ 180.369592][ C0] ? run_ksoftirqd+0x36/0x60 [ 180.371688][ C0] ? smpboot_thread_fn+0x4d/0xa60 [ 180.373936][ C0] run_ksoftirqd+0x36/0x60 [ 180.375816][ C0] smpboot_thread_fn+0x542/0xa60 [ 180.377997][ C0] ? smpboot_thread_fn+0x4d/0xa60 [ 180.380259][ C0] kthread+0x711/0x8a0 [ 180.382062][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 180.384406][ C0] ? __pfx_kthread+0x10/0x10 [ 180.386421][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 180.388653][ C0] ? __pfx_kthread+0x10/0x10 [ 180.390633][ C0] ret_from_fork+0x510/0xa50 [ 180.392682][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 180.395033][ C0] ? __switch_to+0xc9e/0x1480 [ 180.397149][ C0] ? __pfx_kthread+0x10/0x10 [ 180.399238][ C0] ret_from_fork_asm+0x1a/0x30 [ 180.401403][ C0] [ 180.402800][ C0] Modules linked in: [ 180.404662][ C0] ---[ end trace 0000000000000000 ]--- [ 180.406992][ C0] RIP: 0010:bpf_get_local_storage+0xbd/0x180 [ 180.409594][ C0] Code: e0 49 83 c6 08 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 f7 e8 a2 83 39 00 4d 8b 36 83 fb 15 75 5c 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 84 83 39 00 49 8b 1e e8 ec 7e 6c [ 180.417890][ C0] RSP: 0018:ffffc9000041eff8 EFLAGS: 00010246 [ 180.420578][ C0] RAX: 0000000000000000 RBX: 0000000000000015 RCX: 0000000000000100 [ 180.424111][ C0] RDX: ffff88801c294980 RSI: 0000000000000015 RDI: 0000000000000015 [ 180.427645][ C0] RBP: ffffc9000041f030 R08: 0000000000000003 R09: 0000000000000000 [ 180.431121][ C0] R10: ffffc9000041f0a0 R11: ffffffffa0203f70 R12: 0000000000000001 [ 180.434714][ C0] R13: ffff8880126dc500 R14: 0000000000000000 R15: dffffc0000000000 [ 180.438286][ C0] FS: 0000000000000000(0000) GS:ffff88808d416000(0000) knlGS:0000000000000000 [ 180.442234][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 180.445100][ C0] CR2: 0000200000001c40 CR3: 0000000043e38000 CR4: 0000000000352ef0 [ 180.448672][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 180.452169][ C0] Kernel Offset: disabled [ 180.454108][ C0] Rebooting in 86400 seconds..