Warning: Permanently added '10.128.1.208' (ED25519) to the list of known hosts.
2025/07/19 16:23:13 ignoring optional flag "sandboxArg"="0"
2025/07/19 16:23:14 parsed 1 programs
[   64.995002][ T5793] cgroup: Unknown subsys name 'net'
[   65.129955][ T5793] cgroup: Unknown subsys name 'rlimit'
[   66.588949][ T5793] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   68.366901][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.395698][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.517344][ T2908] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.540010][ T2908] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.947035][ T5836] chnl_net:caif_netlink_parms(): no params data found
[   70.495410][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.514946][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.522368][ T5836] bridge_slave_0: entered allmulticast mode
[   70.529871][ T5836] bridge_slave_0: entered promiscuous mode
[   70.572069][ T5861] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   70.581405][ T5861] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   70.593799][ T5861] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   70.601910][ T5861] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   70.648307][ T5861] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   70.655796][ T5861] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   70.665843][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.673553][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.680782][ T5836] bridge_slave_1: entered allmulticast mode
[   70.695066][ T5836] bridge_slave_1: entered promiscuous mode
[   70.756340][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.796705][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.941350][ T5836] team0: Port device team_slave_0 added
[   70.979801][ T5836] team0: Port device team_slave_1 added
[   71.119800][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.127535][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.154821][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.170993][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.177997][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.204834][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.279640][ T5836] hsr_slave_0: entered promiscuous mode
[   71.287985][ T5836] hsr_slave_1: entered promiscuous mode
[   71.602309][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[   71.609046][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[   71.673505][ T5836] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   71.689104][ T5836] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   71.704067][ T5836] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   71.716353][ T5836] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   71.812315][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.845997][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[   71.882538][ T2924] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.889844][ T2924] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.918083][ T2930] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.925246][ T2930] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.105632][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.156018][ T5836] veth0_vlan: entered promiscuous mode
[   72.167102][ T5836] veth1_vlan: entered promiscuous mode
[   72.194515][ T5836] veth0_macvtap: entered promiscuous mode
[   72.205606][ T5836] veth1_macvtap: entered promiscuous mode
[   72.239696][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.253931][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.283671][ T5836] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.293049][ T5836] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.301758][ T5836] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.311336][ T5836] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/07/19 16:23:23 executed programs: 0
[   72.542343][ T5861] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   72.550957][ T5861] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   72.558991][ T5861] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   72.574480][ T5861] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   72.585010][ T5861] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   72.593244][ T5861] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   72.614361][ T5104] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   72.625430][ T5104] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   72.633818][ T5104] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   72.643136][ T5104] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   72.650806][ T5104] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   72.666417][   T50] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   72.682980][   T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   72.713839][ T5861] Bluetooth: hci0: command tx timeout
[   72.719938][ T5861] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   72.727050][ T5910] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   72.728114][ T5910] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   72.746689][ T5861] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   72.753984][ T5910] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   72.779568][ T5861] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   72.789514][ T5910] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   72.802179][ T5910] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   72.809585][ T5861] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   72.820725][   T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   72.829858][   T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.318259][ T5902] chnl_net:caif_netlink_parms(): no params data found
[   73.410247][ T5897] chnl_net:caif_netlink_parms(): no params data found
[   73.450033][ T5903] chnl_net:caif_netlink_parms(): no params data found
[   73.463259][ T5907] chnl_net:caif_netlink_parms(): no params data found
[   73.617794][ T5902] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.625229][ T5902] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.632367][ T5902] bridge_slave_0: entered allmulticast mode
[   73.639271][ T5902] bridge_slave_0: entered promiscuous mode
[   73.702993][ T5902] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.710133][ T5902] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.717374][ T5902] bridge_slave_1: entered allmulticast mode
[   73.725846][ T5902] bridge_slave_1: entered promiscuous mode
[   73.756372][ T5907] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.763555][ T5907] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.770662][ T5907] bridge_slave_0: entered allmulticast mode
[   73.777996][ T5907] bridge_slave_0: entered promiscuous mode
[   73.788657][ T5897] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.796036][ T5897] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.804085][ T5897] bridge_slave_0: entered allmulticast mode
[   73.810754][ T5897] bridge_slave_0: entered promiscuous mode
[   73.841985][   T42] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.859503][ T5903] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.867185][ T5903] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.874665][ T5903] bridge_slave_0: entered allmulticast mode
[   73.881307][ T5903] bridge_slave_0: entered promiscuous mode
[   73.894754][ T5907] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.901917][ T5907] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.909381][ T5907] bridge_slave_1: entered allmulticast mode
[   73.917152][ T5907] bridge_slave_1: entered promiscuous mode
[   73.932297][ T5897] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.940746][ T5897] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.948799][ T5897] bridge_slave_1: entered allmulticast mode
[   73.955655][ T5897] bridge_slave_1: entered promiscuous mode
[   73.977856][ T5903] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.985127][ T5903] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.992270][ T5903] bridge_slave_1: entered allmulticast mode
[   74.000369][ T5903] bridge_slave_1: entered promiscuous mode
[   74.048249][ T5902] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.062350][ T5902] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.085510][ T5907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.097316][ T5897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.126195][ T5903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.138029][ T5907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.163563][ T5897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.195734][ T5903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.241130][ T5902] team0: Port device team_slave_0 added
[   74.251070][ T5902] team0: Port device team_slave_1 added
[   74.285548][ T5907] team0: Port device team_slave_0 added
[   74.295639][ T5897] team0: Port device team_slave_0 added
[   74.304104][ T5897] team0: Port device team_slave_1 added
[   74.322375][ T5903] team0: Port device team_slave_0 added
[   74.334054][ T5907] team0: Port device team_slave_1 added
[   74.341178][ T5903] team0: Port device team_slave_1 added
[   74.368606][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.375916][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.402385][ T5897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.416995][ T5902] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.424349][ T5902] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.450755][ T5902] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.481779][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.489866][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.516114][ T5897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.527991][ T5902] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.535690][ T5902] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.561928][ T5902] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.608180][ T5903] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.615467][ T5903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.641624][ T5903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.656097][ T5903] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.663169][ T5903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.689153][ T5903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.703431][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.710396][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.739132][   T50] Bluetooth: hci1: command tx timeout
[   74.741126][ T5907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.757924][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.764998][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.791234][ T5907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.802011][   T50] Bluetooth: hci2: command tx timeout
[   74.872886][ T5905] Bluetooth: hci4: command tx timeout
[   74.879448][   T50] Bluetooth: hci3: command tx timeout
[   74.889179][ T5902] hsr_slave_0: entered promiscuous mode
[   74.895514][ T5902] hsr_slave_1: entered promiscuous mode
[   74.901781][ T5902] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.909930][ T5902] Cannot create hsr debugfs directory
[   74.931878][ T5907] hsr_slave_0: entered promiscuous mode
[   74.938657][ T5907] hsr_slave_1: entered promiscuous mode
[   74.945052][ T5907] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.952702][ T5907] Cannot create hsr debugfs directory
[   74.971844][ T5897] hsr_slave_0: entered promiscuous mode
[   74.978391][ T5897] hsr_slave_1: entered promiscuous mode
[   74.985187][ T5897] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.993135][ T5897] Cannot create hsr debugfs directory
[   75.066093][ T5903] hsr_slave_0: entered promiscuous mode
[   75.072277][ T5903] hsr_slave_1: entered promiscuous mode
[   75.078971][ T5903] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.086692][ T5903] Cannot create hsr debugfs directory
[   75.455599][ T5897] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   75.468220][ T5897] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   75.477527][ T5897] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   75.489626][ T5897] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   75.559021][ T5897] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.582189][ T5897] 8021q: adding VLAN 0 to HW filter on device team0
[   75.599638][ T2930] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.606778][ T2930] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.622766][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.630073][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.800944][ T5897] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.843792][ T5897] veth0_vlan: entered promiscuous mode
[   75.857761][ T5897] veth1_vlan: entered promiscuous mode
[   75.884645][ T5897] veth0_macvtap: entered promiscuous mode
[   75.895325][ T5897] veth1_macvtap: entered promiscuous mode
[   75.912130][ T5897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.923672][ T5897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.935840][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.949230][ T5897] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   75.960714][ T5897] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.971793][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.990174][ T5897] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.999449][ T5897] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.008235][ T5897] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.017199][ T5897] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.079605][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.093488][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.118205][   T42] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.141994][ T2930] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.150163][ T2930] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.792988][   T50] Bluetooth: hci1: command tx timeout
[   76.875075][   T50] Bluetooth: hci2: command tx timeout
[   76.952653][   T50] Bluetooth: hci3: command tx timeout
[   76.952661][ T5905] Bluetooth: hci4: command tx timeout
[   77.568886][   T42] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.610291][   T42] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/19 16:23:29 executed programs: 10
[   78.654725][   T42] hsr_slave_0: left promiscuous mode
[   78.666965][   T42] hsr_slave_1: left promiscuous mode
[   78.688502][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.700364][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.710763][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.725122][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.736436][   T42] bridge_slave_1: left allmulticast mode
[   78.745188][   T42] bridge_slave_1: left promiscuous mode
[   78.751965][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.773017][   T42] bridge_slave_0: left allmulticast mode
[   78.778857][   T42] bridge_slave_0: left promiscuous mode
[   78.791827][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.847914][   T42] veth1_macvtap: left promiscuous mode
[   78.854809][   T42] veth0_macvtap: left promiscuous mode
[   78.860370][   T42] veth1_vlan: left promiscuous mode
[   78.866474][   T42] veth0_vlan: left promiscuous mode
[   78.883753][   T50] Bluetooth: hci1: command tx timeout
[   78.905800][ T5991] ------------[ cut here ]------------
[   78.911525][ T5991] ODEBUG: free active (active state 0) object: ffff888061b31b60 object type: work_struct hint: kcm_tx_work+0x0/0x180
[   78.924768][ T5991] WARNING: CPU: 0 PID: 5991 at lib/debugobjects.c:518 debug_check_no_obj_freed+0x446/0x540
[   78.934862][ T5991] Modules linked in:
[   78.938793][ T5991] CPU: 0 PID: 5991 Comm: syz.0.22 Not tainted 6.6.99-syzkaller #0
[   78.946721][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.956900][ T5991] RIP: 0010:debug_check_no_obj_freed+0x446/0x540
[   78.963375][ T5991] Code: 4c 8b 4d 00 48 c7 c7 40 70 fc 8a 48 c7 c6 a0 6c fc 8a 48 c7 c2 c0 71 fc 8a 8b 0c 24 4d 89 f8 41 55 e8 0e a5 2a fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 e3 4b 25
[   78.972504][   T50] Bluetooth: hci2: command tx timeout
[   78.983250][ T5991] RSP: 0018:ffffc90003617c28 EFLAGS: 00010286
[   78.994840][ T5991] RAX: d6194c03b75c4000 RBX: ffffffff9711bd68 RCX: ffff88802b58bc00
[   79.002926][ T5991] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   79.010907][ T5991] RBP: ffffffff8aa9e760 R08: ffffc90003617827 R09: 1ffff920006c2f04
[   79.018943][ T5991] R10: dffffc0000000000 R11: fffff520006c2f05 R12: ffff888061b31c78
[   79.027027][ T5991] R13: ffffffff899e16b0 R14: ffff888061b31000 R15: ffff888061b31b60
[   79.032659][   T50] Bluetooth: hci4: command tx timeout
[   79.035111][ T5991] FS:  00007fdaa36386c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[   79.040370][ T5905] Bluetooth: hci3: command tx timeout
[   79.049295][ T5991] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.049311][ T5991] CR2: 00007fdaa3637f98 CR3: 000000002f38d000 CR4: 00000000003506f0
[   79.049327][ T5991] Call Trace:
[   79.049334][ T5991]  <TASK>
[   79.049364][ T5991]  slab_free_freelist_hook+0xd2/0x1b0
[   79.049391][ T5991]  ? __sk_destruct+0x485/0x620
[   79.049409][ T5991]  kmem_cache_free+0xf8/0x280
[   79.049437][ T5991]  __sk_destruct+0x485/0x620
[   79.049458][ T5991]  kcm_release+0x524/0x5b0
[   79.049487][ T5991]  sock_close+0xbd/0x230
[   79.104230][ T5991]  ? sock_mmap+0xa0/0xa0
[   79.108493][ T5991]  __fput+0x234/0x970
[   79.112708][ T5991]  __se_sys_close+0x15f/0x220
[   79.117412][ T5991]  do_syscall_64+0x55/0xb0
[   79.121845][ T5991]  ? clear_bhb_loop+0x40/0x90
[   79.126593][ T5991]  ? clear_bhb_loop+0x40/0x90
[   79.131274][ T5991]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   79.137246][ T5991] RIP: 0033:0x7fdaa278e9a9
[   79.141689][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.161406][ T5991] RSP: 002b:00007fdaa3638038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   79.169884][ T5991] RAX: ffffffffffffffda RBX: 00007fdaa29b6160 RCX: 00007fdaa278e9a9
[   79.178101][ T5991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   79.186209][ T5991] RBP: 00007fdaa2810d69 R08: 0000000000000000 R09: 0000000000000000
[   79.194520][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.202551][ T5991] R13: 0000000000000001 R14: 00007fdaa29b6160 R15: 00007ffe7026ad98
[   79.210546][ T5991]  </TASK>
[   79.213653][ T5991] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   79.220939][ T5991] CPU: 0 PID: 5991 Comm: syz.0.22 Not tainted 6.6.99-syzkaller #0
[   79.228740][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   79.238799][ T5991] Call Trace:
[   79.242068][ T5991]  <TASK>
[   79.244996][ T5991]  dump_stack_lvl+0x16c/0x230
[   79.249679][ T5991]  ? show_regs_print_info+0x20/0x20
[   79.254875][ T5991]  ? load_image+0x3b0/0x3b0
[   79.259376][ T5991]  panic+0x2c0/0x710
[   79.263288][ T5991]  ? bpf_jit_dump+0xd0/0xd0
[   79.267832][ T5991]  __warn+0x2e0/0x470
[   79.271811][ T5991]  ? debug_check_no_obj_freed+0x446/0x540
[   79.277560][ T5991]  ? debug_check_no_obj_freed+0x446/0x540
[   79.283314][ T5991]  report_bug+0x2be/0x4f0
[   79.287643][ T5991]  ? debug_check_no_obj_freed+0x446/0x540
[   79.293365][ T5991]  ? debug_check_no_obj_freed+0x446/0x540
[   79.299072][ T5991]  ? debug_check_no_obj_freed+0x448/0x540
[   79.304869][ T5991]  handle_bug+0xcf/0x120
[   79.309149][ T5991]  exc_invalid_op+0x1a/0x50
[   79.313728][ T5991]  asm_exc_invalid_op+0x1a/0x20
[   79.318571][ T5991] RIP: 0010:debug_check_no_obj_freed+0x446/0x540
[   79.324917][ T5991] Code: 4c 8b 4d 00 48 c7 c7 40 70 fc 8a 48 c7 c6 a0 6c fc 8a 48 c7 c2 c0 71 fc 8a 8b 0c 24 4d 89 f8 41 55 e8 0e a5 2a fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 e3 4b 25
[   79.344526][ T5991] RSP: 0018:ffffc90003617c28 EFLAGS: 00010286
[   79.350584][ T5991] RAX: d6194c03b75c4000 RBX: ffffffff9711bd68 RCX: ffff88802b58bc00
[   79.358929][ T5991] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   79.366919][ T5991] RBP: ffffffff8aa9e760 R08: ffffc90003617827 R09: 1ffff920006c2f04
[   79.374901][ T5991] R10: dffffc0000000000 R11: fffff520006c2f05 R12: ffff888061b31c78
[   79.382968][ T5991] R13: ffffffff899e16b0 R14: ffff888061b31000 R15: ffff888061b31b60
[   79.390950][ T5991]  ? kcm_splice_read+0x2d0/0x2d0
[   79.395899][ T5991]  ? kcm_splice_read+0x2d0/0x2d0
[   79.400855][ T5991]  slab_free_freelist_hook+0xd2/0x1b0
[   79.406344][ T5991]  ? __sk_destruct+0x485/0x620
[   79.411111][ T5991]  kmem_cache_free+0xf8/0x280
[   79.415809][ T5991]  __sk_destruct+0x485/0x620
[   79.420400][ T5991]  kcm_release+0x524/0x5b0
[   79.424846][ T5991]  sock_close+0xbd/0x230
[   79.429117][ T5991]  ? sock_mmap+0xa0/0xa0
[   79.433355][ T5991]  __fput+0x234/0x970
[   79.437338][ T5991]  __se_sys_close+0x15f/0x220
[   79.442128][ T5991]  do_syscall_64+0x55/0xb0
[   79.446553][ T5991]  ? clear_bhb_loop+0x40/0x90
[   79.451225][ T5991]  ? clear_bhb_loop+0x40/0x90
[   79.455890][ T5991]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   79.461785][ T5991] RIP: 0033:0x7fdaa278e9a9
[   79.466258][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.485955][ T5991] RSP: 002b:00007fdaa3638038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   79.494376][ T5991] RAX: ffffffffffffffda RBX: 00007fdaa29b6160 RCX: 00007fdaa278e9a9
[   79.502348][ T5991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   79.510312][ T5991] RBP: 00007fdaa2810d69 R08: 0000000000000000 R09: 0000000000000000
[   79.518277][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.526235][ T5991] R13: 0000000000000001 R14: 00007fdaa29b6160 R15: 00007ffe7026ad98
[   79.534305][ T5991]  </TASK>
[   79.537622][ T5991] Kernel Offset: disabled
[   79.541979][ T5991] Rebooting in 86400 seconds..