Warning: Permanently added '10.128.0.167' (ED25519) to the list of known hosts.
2025/02/22 13:12:45 ignoring optional flag "sandboxArg"="0"
2025/02/22 13:12:46 parsed 1 programs
syzkaller login: [   75.852738][ T4253] cgroup: Unknown subsys name 'net'
[   75.992227][ T4253] cgroup: Unknown subsys name 'rlimit'
[   77.478627][ T4253] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   79.005201][ T4269] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.018903][ T4269] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.026698][ T4269] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.034925][ T4269] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.042729][ T4269] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   79.050643][ T4269] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.939103][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.954455][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.963799][   T28] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   80.066297][   T28] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.074893][   T28] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.097088][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   80.569862][ T4298] chnl_net:caif_netlink_parms(): no params data found
[   80.893254][ T4298] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.914522][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.922947][ T4298] device bridge_slave_0 entered promiscuous mode
[   80.954447][ T4298] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.961791][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.977739][ T4298] device bridge_slave_1 entered promiscuous mode
[   81.129247][ T4298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.168850][ T4298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.271042][ T4298] team0: Port device team_slave_0 added
[   81.279938][ T4298] team0: Port device team_slave_1 added
[   81.301307][ T4298] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.313140][ T4298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.342446][ T4298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.378241][ T4298] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.395099][ T4298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.428332][ T4298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.531804][ T4298] device hsr_slave_0 entered promiscuous mode
[   81.539478][ T4298] device hsr_slave_1 entered promiscuous mode
[   81.797498][ T4298] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   81.914953][ T4298] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   81.948722][ T4298] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   82.017112][ T4298] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   82.201633][ T4298] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.251964][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   82.260122][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   82.307161][ T4298] 8021q: adding VLAN 0 to HW filter on device team0
[   82.318395][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   82.328406][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   82.341398][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.348963][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.375706][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   82.383950][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   82.393268][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   82.403524][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.410681][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.419253][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   82.446853][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   82.458700][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   82.468565][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   82.477985][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   82.490717][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   82.500318][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   82.514256][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   82.523296][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   82.536631][ T4298] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.549589][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   82.558338][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   82.567134][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   82.762065][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   82.770049][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   82.783149][ T4298] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.803758][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   82.813472][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   82.832842][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   82.841772][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   82.851086][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   82.859224][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   82.871214][ T4298] device veth0_vlan entered promiscuous mode
[   82.886619][ T4298] device veth1_vlan entered promiscuous mode
[   82.908572][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   82.917204][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   82.925649][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   82.934258][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   82.945205][ T4298] device veth0_macvtap entered promiscuous mode
[   82.956568][ T4298] device veth1_macvtap entered promiscuous mode
[   82.973552][ T4298] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.981384][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   82.990288][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   82.998488][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   83.007186][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   83.019875][ T4298] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.029528][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   83.038522][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   83.050370][ T4298] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.059641][ T4298] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.068677][ T4298] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.077766][ T4298] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/02/22 13:12:56 executed programs: 0
[   83.257789][   T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.272830][ T4267] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.282386][ T4350] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   83.291815][ T4348] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.306501][ T4348] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.313868][ T4348] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   83.322250][ T4348] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   83.334228][   T46] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.345630][ T4350] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   83.353525][ T4350] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.380724][ T4269] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   83.388717][ T4269] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   83.399128][ T4269] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   83.561108][ T4348] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   83.569929][ T4348] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.578210][ T4348] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   83.588705][ T4359] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   83.588722][ T4348] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.604814][ T4348] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.604886][ T4359] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   83.612983][ T4348] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.625092][ T4359] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   83.628124][ T4348] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   83.641113][ T4267] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   83.652609][ T4267] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   83.660762][ T4267] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   83.677658][ T4360] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   83.689674][ T4360] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   83.707169][ T4360] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   83.715090][ T4360] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   83.722777][ T4360] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   84.063384][ T4344] chnl_net:caif_netlink_parms(): no params data found
[   84.236969][ T4344] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.244189][ T4344] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.252683][ T4344] device bridge_slave_0 entered promiscuous mode
[   84.285136][ T4345] chnl_net:caif_netlink_parms(): no params data found
[   84.297859][ T4344] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.305513][ T4344] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.313806][ T4344] device bridge_slave_1 entered promiscuous mode
[   84.407531][ T4344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.419860][ T4354] chnl_net:caif_netlink_parms(): no params data found
[   84.449975][ T4344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.473113][ T4357] chnl_net:caif_netlink_parms(): no params data found
[   84.515125][ T4344] team0: Port device team_slave_0 added
[   84.526249][ T4344] team0: Port device team_slave_1 added
[   84.553861][ T4353] chnl_net:caif_netlink_parms(): no params data found
[   84.579531][ T4345] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.586975][ T4345] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.595450][ T4345] device bridge_slave_0 entered promiscuous mode
[   84.629877][ T4345] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.637333][ T4345] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.646917][ T4345] device bridge_slave_1 entered promiscuous mode
[   84.684562][ T4344] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.691558][ T4344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.718768][ T4344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.769044][ T4357] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.776353][ T4357] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.784270][ T4357] device bridge_slave_0 entered promiscuous mode
[   84.794924][ T4344] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.801915][ T4344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.828096][ T4344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.859815][ T4357] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.867476][ T4357] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.875695][ T4357] device bridge_slave_1 entered promiscuous mode
[   84.900550][ T4345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.916014][ T4345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.925596][ T4354] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.932743][ T4354] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.941495][ T4354] device bridge_slave_0 entered promiscuous mode
[   84.991707][ T4354] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.999098][ T4354] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.007497][ T4354] device bridge_slave_1 entered promiscuous mode
[   85.017754][ T4357] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.059178][ T4345] team0: Port device team_slave_0 added
[   85.074257][ T4357] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.088061][ T4344] device hsr_slave_0 entered promiscuous mode
[   85.095403][ T4344] device hsr_slave_1 entered promiscuous mode
[   85.102384][ T4344] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.111910][ T4344] Cannot create hsr debugfs directory
[   85.117762][ T4353] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.125265][ T4353] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.133148][ T4353] device bridge_slave_0 entered promiscuous mode
[   85.144080][ T4345] team0: Port device team_slave_1 added
[   85.179981][ T4353] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.187626][ T4353] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.196097][ T4353] device bridge_slave_1 entered promiscuous mode
[   85.218288][ T4354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.240220][ T4357] team0: Port device team_slave_0 added
[   85.273926][ T4354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.288774][ T4357] team0: Port device team_slave_1 added
[   85.303663][ T4345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.311099][ T4345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.337786][ T4345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.375469][ T4353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.385334][ T4345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.392314][ T4345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.418861][ T4345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.445321][ T4360] Bluetooth: hci0: command 0x0409 tx timeout
[   85.446004][   T48] Bluetooth: hci1: command 0x0409 tx timeout
[   85.471054][ T4353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.506471][ T4354] team0: Port device team_slave_0 added
[   85.522258][ T4357] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.530402][ T4357] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.556591][ T4357] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.594849][ T4345] device hsr_slave_0 entered promiscuous mode
[   85.601784][ T4345] device hsr_slave_1 entered promiscuous mode
[   85.609189][ T4345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.617109][ T4345] Cannot create hsr debugfs directory
[   85.624270][ T4354] team0: Port device team_slave_1 added
[   85.630848][ T4357] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.638492][ T4357] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.664555][ T4357] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.685163][   T48] Bluetooth: hci4: command 0x0409 tx timeout
[   85.699400][ T4353] team0: Port device team_slave_0 added
[   85.736956][ T4354] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.743957][ T4354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.764781][   T48] Bluetooth: hci3: command 0x0409 tx timeout
[   85.771613][ T4360] Bluetooth: hci2: command 0x0409 tx timeout
[   85.777088][ T4354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.796217][ T4353] team0: Port device team_slave_1 added
[   85.836217][ T4354] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.843207][ T4354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.870066][ T4354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.913700][   T46] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.947176][ T4357] device hsr_slave_0 entered promiscuous mode
[   85.954090][ T4357] device hsr_slave_1 entered promiscuous mode
[   85.961963][ T4357] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   85.969765][ T4357] Cannot create hsr debugfs directory
[   85.980398][ T4353] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.987509][ T4353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.014174][ T4353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.057420][ T4353] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.064676][ T4353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.090836][ T4353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.153217][ T4354] device hsr_slave_0 entered promiscuous mode
[   86.160593][ T4354] device hsr_slave_1 entered promiscuous mode
[   86.167951][ T4354] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.175873][ T4354] Cannot create hsr debugfs directory
[   86.241817][ T4353] device hsr_slave_0 entered promiscuous mode
[   86.249760][ T4353] device hsr_slave_1 entered promiscuous mode
[   86.256781][ T4353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.264626][ T4353] Cannot create hsr debugfs directory
[   86.279137][ T4344] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.328271][ T4344] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.337451][ T4344] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.351736][ T4344] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.592226][ T4344] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.609009][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   86.619098][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   86.629389][ T4344] 8021q: adding VLAN 0 to HW filter on device team0
[   86.639584][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   86.648935][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   86.657523][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.664678][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.673915][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   86.683954][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   86.698583][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   86.707429][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.714667][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.726384][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   86.741734][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   86.752453][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   86.761975][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   86.771575][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   86.783049][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   86.792116][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   86.803933][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   86.813337][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   86.829648][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   86.838278][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   86.850423][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   86.886536][  T126] cfg80211: failed to load regulatory.db
[   87.010768][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   87.018840][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   87.032628][ T4344] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.055307][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   87.065665][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   87.084097][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   87.093354][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   87.103064][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   87.111246][ T4320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   87.123199][ T4344] device veth0_vlan entered promiscuous mode
[   87.136423][ T4344] device veth1_vlan entered promiscuous mode
[   87.159563][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   87.168410][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   87.177515][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   87.186691][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   87.197787][ T4344] device veth0_macvtap entered promiscuous mode
[   87.210068][ T4344] device veth1_macvtap entered promiscuous mode
[   87.224546][ T4344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.237256][ T4344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.248708][ T4344] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.257564][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   87.266716][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   87.275189][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   87.283813][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   87.298364][ T4344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.308967][ T4344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.320683][ T4344] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.329741][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   87.339248][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   87.350315][ T4344] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.359304][ T4344] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.368839][ T4344] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.378282][ T4344] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.437408][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.462373][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.471572][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.473920][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   87.480580][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.498651][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   87.524610][ T4359] Bluetooth: hci1: command 0x041b tx timeout
[   87.534549][ T4359] Bluetooth: hci0: command 0x041b tx timeout
[   87.764912][ T4359] Bluetooth: hci4: command 0x041b tx timeout
[   87.846308][ T4359] Bluetooth: hci3: command 0x041b tx timeout
[   87.852462][ T4359] Bluetooth: hci2: command 0x041b tx timeout
[   87.858607][ T4331] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   88.054542][ T4331] usb 1-1: Using ep0 maxpacket: 8
[   88.062369][ T4331] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[   88.071014][ T4331] usb 1-1: config 179 has no interface number 0
[   88.077446][ T4331] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   88.089041][ T4331] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   88.100367][ T4331] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   88.111873][ T4331] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[   88.123743][ T4331] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   88.138845][ T4331] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   88.148308][ T4331] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.168144][   T46] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.175706][ T4392] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   88.259481][   T46] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.607467][  T128] usb 1-1: USB disconnect, device number 2
[   88.607468][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[   88.621644][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   88.630581][    C1] ==================================================================
[   88.638756][    C1] BUG: KASAN: use-after-free in register_lock_class+0x8e8/0x990
[   88.646409][    C1] Read of size 1 at addr ffff88805cb6d891 by task udevd/3622
[   88.653791][    C1] 
[   88.656122][    C1] CPU: 1 PID: 3622 Comm: udevd Not tainted 6.1.129-syzkaller #0
[   88.663749][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   88.673829][    C1] Call Trace:
[   88.677104][    C1]  <TASK>
[   88.680030][    C1]  dump_stack_lvl+0x1e3/0x2cb
[   88.684738][    C1]  ? nf_tcp_handle_invalid+0x647/0x647
[   88.690197][    C1]  ? panic+0x764/0x764
[   88.694262][    C1]  ? _printk+0xd1/0x111
[   88.698414][    C1]  ? __virt_addr_valid+0x17f/0x530
[   88.703524][    C1]  ? __virt_addr_valid+0x17f/0x530
[   88.708638][    C1]  print_report+0x15f/0x4f0
[   88.713141][    C1]  ? __virt_addr_valid+0x17f/0x530
[   88.718262][    C1]  ? __virt_addr_valid+0x17f/0x530
[   88.723379][    C1]  ? __virt_addr_valid+0x45b/0x530
[   88.728509][    C1]  ? __phys_addr+0xb6/0x170
[   88.733014][    C1]  ? register_lock_class+0x8e8/0x990
[   88.738303][    C1]  kasan_report+0x136/0x160
[   88.742806][    C1]  ? register_lock_class+0x8e8/0x990
[   88.748102][    C1]  register_lock_class+0x8e8/0x990
[   88.753220][    C1]  ? is_dynamic_key+0x260/0x260
[   88.758074][    C1]  ? printk_sprint+0x490/0x490
[   88.762850][    C1]  ? vscnprintf+0x80/0x80
[   88.767179][    C1]  ? unwind_get_return_address+0x49/0x80
[   88.772810][    C1]  __lock_acquire+0xd3/0x1f80
[   88.777489][    C1]  ? mark_lock+0x9a/0x340
[   88.781811][    C1]  ? __lock_acquire+0x125b/0x1f80
[   88.786841][    C1]  lock_acquire+0x1f8/0x5a0
[   88.791347][    C1]  ? __wake_up+0xfd/0x1c0
[   88.795687][    C1]  ? read_lock_is_recursive+0x10/0x10
[   88.801088][    C1]  _raw_spin_lock_irqsave+0xd1/0x120
[   88.806386][    C1]  ? __wake_up+0xfd/0x1c0
[   88.810717][    C1]  ? _raw_spin_lock+0x40/0x40
[   88.815413][    C1]  ? kcov_remote_stop+0x6f/0x6e0
[   88.820356][    C1]  __wake_up+0xfd/0x1c0
[   88.824521][    C1]  ? __wake_up_bit+0x2b0/0x2b0
[   88.829292][    C1]  ? kcov_remote_stop+0x6f/0x6e0
[   88.834233][    C1]  ? xpad_irq_out+0x1f0/0x2f0
[   88.838914][    C1]  __usb_hcd_giveback_urb+0x3a8/0x530
[   88.844291][    C1]  dummy_timer+0x8dc/0x32b0
[   88.848802][    C1]  ? mark_lock+0x9a/0x340
[   88.853166][    C1]  ? debug_deactivate+0x1d/0x280
[   88.858114][    C1]  ? __hrtimer_run_queues+0x4b0/0xe50
[   88.863509][    C1]  ? print_irqtrace_events+0x210/0x210
[   88.868974][    C1]  ? do_raw_spin_unlock+0x137/0x8a0
[   88.874170][    C1]  ? dummy_free_streams+0x310/0x310
[   88.879376][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   88.885270][    C1]  ? _raw_spin_unlock+0x40/0x40
[   88.890140][    C1]  ? debug_object_deactivate+0x63/0x380
[   88.895698][    C1]  ? dummy_free_streams+0x310/0x310
[   88.900922][    C1]  ? dummy_free_streams+0x310/0x310
[   88.906122][    C1]  __hrtimer_run_queues+0x5e5/0xe50
[   88.911343][    C1]  ? hrtimer_interrupt+0x980/0x980
[   88.916459][    C1]  ? ktime_get_update_offsets_now+0x407/0x420
[   88.922532][    C1]  hrtimer_run_softirq+0x196/0x2c0
[   88.927647][    C1]  handle_softirqs+0x2ee/0xa40
[   88.932410][    C1]  ? __irq_exit_rcu+0x157/0x240
[   88.937259][    C1]  ? do_softirq+0x240/0x240
[   88.941757][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[   88.946953][    C1]  __irq_exit_rcu+0x157/0x240
[   88.951626][    C1]  ? irq_exit_rcu+0x20/0x20
[   88.956127][    C1]  irq_exit_rcu+0x5/0x20
[   88.960372][    C1]  sysvec_apic_timer_interrupt+0x52/0xc0
[   88.966026][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   88.972023][    C1] RIP: 0033:0x7fc35f0cac94
[   88.976464][    C1] Code: 83 e8 30 83 f9 09 77 10 48 ff c2 83 f8 09 76 e4 41 b8 01 00 00 00 eb 0c 83 f8 09 b8 ff ff ff ff 44 0f 46 c0 44 89 c0 c3 41 54 <55> 48 89 fd 51 e8 62 c4 fa ff 4c 8d 60 01 4c 89 e7 e8 8e c6 fa ff
[   88.996163][    C1] RSP: 002b:00007fff7f09b6c0 EFLAGS: 00000206
[   89.002229][    C1] RAX: 0000563f64980e40 RBX: 0000563f6494d7a0 RCX: 0000000000000000
[   89.010197][    C1] RDX: 0000000000000038 RSI: 0000563f64971707 RDI: 0000563f6495d750
[   89.018164][    C1] RBP: 0000563f64980e00 R08: 0000563f64980e40 R09: 00007fc35f1f1b10
[   89.026134][    C1] R10: 0000000000000010 R11: 0000000000000001 R12: fffffffffffffffb
[   89.034189][    C1] R13: 0000563f6495d750 R14: 0000563f64980e40 R15: 0000000000000001
[   89.042187][    C1]  </TASK>
[   89.045289][    C1] 
[   89.047608][    C1] Allocated by task 4331:
[   89.051925][    C1]  kasan_set_track+0x4b/0x70
[   89.056545][    C1]  __kasan_kmalloc+0x97/0xb0
[   89.061150][    C1]  xpad_probe+0x3be/0x1b80
[   89.065570][    C1]  usb_probe_interface+0x5c0/0xaf0
[   89.070681][    C1]  really_probe+0x2ab/0xcb0
[   89.075177][    C1]  __driver_probe_device+0x1a2/0x3d0
[   89.080471][    C1]  driver_probe_device+0x50/0x420
[   89.085490][    C1]  __device_attach_driver+0x2cf/0x510
[   89.090858][    C1]  bus_for_each_drv+0x183/0x200
[   89.095711][    C1]  __device_attach+0x359/0x570
[   89.100470][    C1]  bus_probe_device+0xba/0x1e0
[   89.105236][    C1]  device_add+0xb48/0xfd0
[   89.109586][    C1]  usb_set_configuration+0x19dd/0x2020
[   89.115047][    C1]  usb_generic_driver_probe+0x84/0x140
[   89.120522][    C1]  usb_probe_device+0x130/0x260
[   89.125377][    C1]  really_probe+0x2ab/0xcb0
[   89.129875][    C1]  __driver_probe_device+0x1a2/0x3d0
[   89.135178][    C1]  driver_probe_device+0x50/0x420
[   89.140197][    C1]  __device_attach_driver+0x2cf/0x510
[   89.145564][    C1]  bus_for_each_drv+0x183/0x200
[   89.150419][    C1]  __device_attach+0x359/0x570
[   89.155178][    C1]  bus_probe_device+0xba/0x1e0
[   89.159948][    C1]  device_add+0xb48/0xfd0
[   89.164276][    C1]  usb_new_device+0xbdd/0x1900
[   89.169037][    C1]  hub_event+0x2efe/0x5730
[   89.173449][    C1]  process_one_work+0x917/0x1260
[   89.178410][    C1]  worker_thread+0xa47/0x1200
[   89.183085][    C1]  kthread+0x28d/0x320
[   89.187148][    C1]  ret_from_fork+0x1f/0x30
[   89.191567][    C1] 
[   89.193975][    C1] Freed by task 128:
[   89.197857][    C1]  kasan_set_track+0x4b/0x70
[   89.202445][    C1]  kasan_save_free_info+0x27/0x40
[   89.207468][    C1]  ____kasan_slab_free+0xd6/0x120
[   89.212491][    C1]  __kmem_cache_free+0x25c/0x3c0
[   89.217431][    C1]  xpad_disconnect+0x355/0x480
[   89.222201][    C1]  usb_unbind_interface+0x1cd/0x840
[   89.227404][    C1]  device_release_driver_internal+0x59e/0x880
[   89.233469][    C1]  bus_remove_device+0x2e5/0x400
[   89.238409][    C1]  device_del+0x6e2/0xbd0
[   89.242745][    C1]  usb_disable_device+0x3b8/0x840
[   89.247772][    C1]  usb_disconnect+0x33c/0x8c0
[   89.252466][    C1]  hub_event+0x1f78/0x5730
[   89.256882][    C1]  process_one_work+0x917/0x1260
[   89.261819][    C1]  worker_thread+0xa47/0x1200
[   89.266510][    C1]  kthread+0x28d/0x320
[   89.270595][    C1]  ret_from_fork+0x1f/0x30
[   89.275036][    C1] 
[   89.277360][    C1] The buggy address belongs to the object at ffff88805cb6d800
[   89.277360][    C1]  which belongs to the cache kmalloc-1k of size 1024
[   89.291422][    C1] The buggy address is located 145 bytes inside of
[   89.291422][    C1]  1024-byte region [ffff88805cb6d800, ffff88805cb6dc00)
[   89.304780][    C1] 
[   89.307105][    C1] The buggy address belongs to the physical page:
[   89.313516][    C1] page:ffffea000172da00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5cb68
[   89.323662][    C1] head:ffffea000172da00 order:3 compound_mapcount:0 compound_pincount:0
[   89.332086][    C1] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   89.340083][    C1] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff888017c41dc0
[   89.348838][    C1] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   89.357426][    C1] page dumped because: kasan: bad access detected
[   89.363868][    C1] page_owner tracks the page as allocated
[   89.369580][    C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 9, tgid 9 (kworker/u4:0), ts 88032774560, free_ts 83498129934
[   89.389723][    C1]  post_alloc_hook+0x18d/0x1b0
[   89.394487][    C1]  get_page_from_freelist+0x3731/0x38d0
[   89.400028][    C1]  __alloc_pages+0x28d/0x770
[   89.404615][    C1]  alloc_slab_page+0x6a/0x150
[   89.409292][    C1]  new_slab+0x84/0x2d0
[   89.413361][    C1]  ___slab_alloc+0xc20/0x1270
[   89.418041][    C1]  __kmem_cache_alloc_node+0x19f/0x260
[   89.423500][    C1]  __kmalloc+0xa1/0x230
[   89.427652][    C1]  ieee802_11_parse_elems_full+0xc4/0x1380
[   89.433469][    C1]  ieee80211_bss_info_update+0x99f/0xf00
[   89.439119][    C1]  ieee80211_ibss_rx_queued_mgmt+0x196f/0x2de0
[   89.445293][    C1]  ieee80211_iface_work+0x7aa/0xce0
[   89.450494][    C1]  process_one_work+0x917/0x1260
[   89.455429][    C1]  worker_thread+0xa47/0x1200
[   89.460102][    C1]  kthread+0x28d/0x320
[   89.464250][    C1]  ret_from_fork+0x1f/0x30
[   89.468687][    C1] page last free stack trace:
[   89.473353][    C1]  free_unref_page_prepare+0x12a6/0x15b0
[   89.478994][    C1]  free_unref_page+0x33/0x3e0
[   89.483670][    C1]  __vunmap+0x873/0xa30
[   89.487826][    C1]  kcov_close+0x27/0x50
[   89.491981][    C1]  __fput+0x3f6/0x8d0
[   89.495987][    C1]  task_work_run+0x246/0x300
[   89.500598][    C1]  do_exit+0xa6e/0x26a0
[   89.504779][    C1]  do_group_exit+0x202/0x2b0
[   89.509374][    C1]  get_signal+0x16cb/0x17a0
[   89.513877][    C1]  arch_do_signal_or_restart+0xb0/0x1a10
[   89.519527][    C1]  exit_to_user_mode_loop+0x6a/0x100
[   89.524805][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[   89.530355][    C1]  syscall_exit_to_user_mode+0x60/0x270
[   89.535899][    C1]  do_syscall_64+0x47/0xb0
[   89.540316][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   89.546210][    C1] 
[   89.548527][    C1] Memory state around the buggy address:
[   89.554150][    C1]  ffff88805cb6d780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   89.562207][    C1]  ffff88805cb6d800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   89.570259][    C1] >ffff88805cb6d880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   89.578309][    C1]                          ^
[   89.583068][    C1]  ffff88805cb6d900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   89.591143][    C1]  ffff88805cb6d980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   89.599220][    C1] ==================================================================
[   89.607274][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   89.614455][    C1] CPU: 1 PID: 3622 Comm: udevd Not tainted 6.1.129-syzkaller #0
[   89.622085][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   89.632147][    C1] Call Trace:
[   89.635464][    C1]  <TASK>
[   89.638397][    C1]  dump_stack_lvl+0x1e3/0x2cb
[   89.643092][    C1]  ? nf_tcp_handle_invalid+0x647/0x647
[   89.648557][    C1]  ? panic+0x764/0x764
[   89.652619][    C1]  ? lock_release+0xd6/0xa20
[   89.657230][    C1]  ? vscnprintf+0x59/0x80
[   89.661663][    C1]  panic+0x318/0x764
[   89.665556][    C1]  ? check_panic_on_warn+0x1d/0xa0
[   89.670668][    C1]  ? memcpy_page_flushcache+0xfc/0xfc
[   89.676044][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   89.681960][    C1]  ? _raw_spin_unlock+0x40/0x40
[   89.686828][    C1]  ? print_report+0x4a3/0x4f0
[   89.691507][    C1]  check_panic_on_warn+0x7e/0xa0
[   89.696442][    C1]  ? register_lock_class+0x8e8/0x990
[   89.701728][    C1]  end_report+0x66/0x110
[   89.705969][    C1]  kasan_report+0x143/0x160
[   89.710473][    C1]  ? register_lock_class+0x8e8/0x990
[   89.715765][    C1]  register_lock_class+0x8e8/0x990
[   89.720888][    C1]  ? is_dynamic_key+0x260/0x260
[   89.725743][    C1]  ? printk_sprint+0x490/0x490
[   89.730522][    C1]  ? vscnprintf+0x80/0x80
[   89.734852][    C1]  ? unwind_get_return_address+0x49/0x80
[   89.740487][    C1]  __lock_acquire+0xd3/0x1f80
[   89.745169][    C1]  ? mark_lock+0x9a/0x340
[   89.749496][    C1]  ? __lock_acquire+0x125b/0x1f80
[   89.754527][    C1]  lock_acquire+0x1f8/0x5a0
[   89.759035][    C1]  ? __wake_up+0xfd/0x1c0
[   89.763378][    C1]  ? read_lock_is_recursive+0x10/0x10
[   89.768762][    C1]  _raw_spin_lock_irqsave+0xd1/0x120
[   89.774046][    C1]  ? __wake_up+0xfd/0x1c0
[   89.778379][    C1]  ? _raw_spin_lock+0x40/0x40
[   89.783087][    C1]  ? kcov_remote_stop+0x6f/0x6e0
[   89.788027][    C1]  __wake_up+0xfd/0x1c0
[   89.792191][    C1]  ? __wake_up_bit+0x2b0/0x2b0
[   89.796958][    C1]  ? kcov_remote_stop+0x6f/0x6e0
[   89.801937][    C1]  ? xpad_irq_out+0x1f0/0x2f0
[   89.806639][    C1]  __usb_hcd_giveback_urb+0x3a8/0x530
[   89.812016][    C1]  dummy_timer+0x8dc/0x32b0
[   89.816536][    C1]  ? mark_lock+0x9a/0x340
[   89.820876][    C1]  ? debug_deactivate+0x1d/0x280
[   89.825836][    C1]  ? __hrtimer_run_queues+0x4b0/0xe50
[   89.831210][    C1]  ? print_irqtrace_events+0x210/0x210
[   89.836673][    C1]  ? do_raw_spin_unlock+0x137/0x8a0
[   89.841878][    C1]  ? dummy_free_streams+0x310/0x310
[   89.847078][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   89.852974][    C1]  ? _raw_spin_unlock+0x40/0x40
[   89.857825][    C1]  ? debug_object_deactivate+0x63/0x380
[   89.863373][    C1]  ? dummy_free_streams+0x310/0x310
[   89.868601][    C1]  ? dummy_free_streams+0x310/0x310
[   89.873803][    C1]  __hrtimer_run_queues+0x5e5/0xe50
[   89.879007][    C1]  ? hrtimer_interrupt+0x980/0x980
[   89.884140][    C1]  ? ktime_get_update_offsets_now+0x407/0x420
[   89.890215][    C1]  hrtimer_run_softirq+0x196/0x2c0
[   89.895331][    C1]  handle_softirqs+0x2ee/0xa40
[   89.900096][    C1]  ? __irq_exit_rcu+0x157/0x240
[   89.904944][    C1]  ? do_softirq+0x240/0x240
[   89.909445][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[   89.914659][    C1]  __irq_exit_rcu+0x157/0x240
[   89.919340][    C1]  ? irq_exit_rcu+0x20/0x20
[   89.923842][    C1]  irq_exit_rcu+0x5/0x20
[   89.928079][    C1]  sysvec_apic_timer_interrupt+0x52/0xc0
[   89.933710][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   89.939712][    C1] RIP: 0033:0x7fc35f0cac94
[   89.944142][    C1] Code: 83 e8 30 83 f9 09 77 10 48 ff c2 83 f8 09 76 e4 41 b8 01 00 00 00 eb 0c 83 f8 09 b8 ff ff ff ff 44 0f 46 c0 44 89 c0 c3 41 54 <55> 48 89 fd 51 e8 62 c4 fa ff 4c 8d 60 01 4c 89 e7 e8 8e c6 fa ff
[   89.963760][    C1] RSP: 002b:00007fff7f09b6c0 EFLAGS: 00000206
[   89.969826][    C1] RAX: 0000563f64980e40 RBX: 0000563f6494d7a0 RCX: 0000000000000000
[   89.977816][    C1] RDX: 0000000000000038 RSI: 0000563f64971707 RDI: 0000563f6495d750
[   89.985793][    C1] RBP: 0000563f64980e00 R08: 0000563f64980e40 R09: 00007fc35f1f1b10
[   89.993783][    C1] R10: 0000000000000010 R11: 0000000000000001 R12: fffffffffffffffb
[   90.001845][    C1] R13: 0000563f6495d750 R14: 0000563f64980e40 R15: 0000000000000001
[   90.009826][    C1]  </TASK>
[   91.131483][    C1] Shutting down cpus with NMI
[   91.136654][    C1] Kernel Offset: disabled
[   91.141014][    C1] Rebooting in 86400 seconds..