Warning: Permanently added '[localhost]:45286' (ED25519) to the list of known hosts.
2025/12/06 03:45:41 parsed 1 programs
syzkaller login: [   88.808346][ T5327] cgroup: Unknown subsys name 'net'
[   88.893810][ T5327] cgroup: Unknown subsys name 'cpuset'
[   88.903155][ T5327] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   90.553541][ T5327] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   91.852315][   T10] cfg80211: failed to load regulatory.db
[   95.746994][ T5345] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   99.005149][ T5381] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.009119][ T5381] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.014883][ T5381] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.018467][ T5381] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.029459][ T5381] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  100.418885][ T3689] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.436949][ T3689] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.490831][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.493951][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.872972][ T5410] chnl_net:caif_netlink_parms(): no params data found
[  102.060052][ T5410] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.063769][ T5410] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.066773][ T5410] bridge_slave_0: entered allmulticast mode
[  102.071044][ T5410] bridge_slave_0: entered promiscuous mode
[  102.082226][ T5410] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.085325][ T5410] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.088448][ T5410] bridge_slave_1: entered allmulticast mode
[  102.101841][ T5410] bridge_slave_1: entered promiscuous mode
[  102.160694][ T5410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.172576][ T5410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.230906][ T5410] team0: Port device team_slave_0 added
[  102.235635][ T5410] team0: Port device team_slave_1 added
[  102.282686][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.285725][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.320126][ T5410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.328394][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.335424][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.359914][ T5410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.441261][ T5410] hsr_slave_0: entered promiscuous mode
[  102.444551][ T5410] hsr_slave_1: entered promiscuous mode
[  102.772660][ T5410] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  102.795930][ T5410] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  102.806215][ T5410] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  102.814472][ T5410] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  102.892992][ T5410] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.909379][ T5410] 8021q: adding VLAN 0 to HW filter on device team0
[  102.918737][ T3689] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.922013][ T3689] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.936668][ T3689] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.939816][ T3689] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.125920][ T5410] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.166882][ T5410] veth0_vlan: entered promiscuous mode
[  103.175653][ T5410] veth1_vlan: entered promiscuous mode
[  103.204865][ T5410] veth0_macvtap: entered promiscuous mode
[  103.211816][ T5410] veth1_macvtap: entered promiscuous mode
[  103.227606][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.241144][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.253084][ T3689] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.256986][ T3689] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.268645][ T3689] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.285792][ T3689] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.474358][ T1037] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.553155][ T1037] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.642097][ T1037] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.703976][ T1037] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/06 03:45:59 executed programs: 0
[  104.604918][   T46] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  104.608993][   T46] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  104.614376][   T46] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  104.617882][   T46] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  104.621762][   T46] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  104.787980][ T5441] chnl_net:caif_netlink_parms(): no params data found
[  104.890304][ T5441] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.893374][ T5441] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.896371][ T5441] bridge_slave_0: entered allmulticast mode
[  104.900800][ T5441] bridge_slave_0: entered promiscuous mode
[  104.905622][ T5441] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.908893][ T5441] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.913785][ T5441] bridge_slave_1: entered allmulticast mode
[  104.917366][ T5441] bridge_slave_1: entered promiscuous mode
[  104.942080][ T5441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.948074][ T5441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.972462][ T5441] team0: Port device team_slave_0 added
[  104.976800][ T5441] team0: Port device team_slave_1 added
[  105.002211][ T5441] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.005031][ T5441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.016245][ T5441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.026060][ T5441] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.029235][ T5441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.041597][ T5441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.083438][ T5441] hsr_slave_0: entered promiscuous mode
[  105.086769][ T5441] hsr_slave_1: entered promiscuous mode
[  105.090992][ T5441] debugfs: 'hsr0' already exists in 'hsr'
[  105.093604][ T5441] Cannot create hsr debugfs directory
[  105.962312][ T1037] bridge_slave_1: left allmulticast mode
[  105.964924][ T1037] bridge_slave_1: left promiscuous mode
[  105.968153][ T1037] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.992315][ T1037] bridge_slave_0: left allmulticast mode
[  105.994781][ T1037] bridge_slave_0: left promiscuous mode
[  105.998064][ T1037] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.372175][ T1037] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  106.378044][ T1037] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.383562][ T1037] bond0 (unregistering): Released all slaves
[  106.582758][ T1037] hsr_slave_0: left promiscuous mode
[  106.595549][ T1037] hsr_slave_1: left promiscuous mode
[  106.620328][ T1037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.623528][ T1037] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.644217][ T1037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.648697][ T1037] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.655677][   T46] Bluetooth: hci0: command tx timeout
[  106.709882][ T1037] veth1_macvtap: left promiscuous mode
[  106.712618][ T1037] veth0_macvtap: left promiscuous mode
[  106.715136][ T1037] veth1_vlan: left promiscuous mode
[  106.718035][ T1037] veth0_vlan: left promiscuous mode
[  107.209536][ T1037] team0 (unregistering): Port device team_slave_1 removed
[  107.236711][ T1037] team0 (unregistering): Port device team_slave_0 removed
[  107.842613][ T5441] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  107.864358][ T5441] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.003384][ T5441] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.029855][ T5441] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.256149][ T5441] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.287780][ T5441] 8021q: adding VLAN 0 to HW filter on device team0
[  108.324108][ T1037] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.327172][ T1037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.344636][ T1037] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.347984][ T1037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.642274][ T5441] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.679099][ T5441] veth0_vlan: entered promiscuous mode
[  108.689179][ T5441] veth1_vlan: entered promiscuous mode
[  108.717441][ T5441] veth0_macvtap: entered promiscuous mode
[  108.721494][   T46] Bluetooth: hci0: command tx timeout
[  108.728207][ T5441] veth1_macvtap: entered promiscuous mode
[  108.745744][ T5441] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.756875][ T5441] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.767277][ T1037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.776854][ T1037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.785250][ T1037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.797564][ T1037] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.892388][ T4636] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.897507][ T4636] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.958197][ T3036] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.964622][ T3036] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.013838][ T5483] FAULT_INJECTION: forcing a failure.
[  109.013838][ T5483] name failslab, interval 1, probability 0, space 0, times 1
[  109.021141][ T5483] CPU: 0 UID: 0 PID: 5483 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  109.021162][ T5483] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.021170][ T5483] Call Trace:
[  109.021175][ T5483]  <TASK>
[  109.021180][ T5483]  dump_stack_lvl+0x189/0x250
[  109.021304][ T5483]  ? __pfx____ratelimit+0x10/0x10
[  109.021352][ T5483]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.021364][ T5483]  ? __pfx__printk+0x10/0x10
[  109.021384][ T5483]  ? __pfx___might_resched+0x10/0x10
[  109.021397][ T5483]  ? fs_reclaim_acquire+0x7d/0x100
[  109.021444][ T5483]  should_fail_ex+0x414/0x560
[  109.021464][ T5483]  should_failslab+0xa8/0x100
[  109.021481][ T5483]  kmem_cache_alloc_noprof+0x74/0x6f0
[  109.021502][ T5483]  ? security_inode_alloc+0x39/0x330
[  109.021519][ T5483]  security_inode_alloc+0x39/0x330
[  109.021534][ T5483]  inode_init_always_gfp+0x9ed/0xdc0
[  109.021555][ T5483]  ? __pfx_debugfs_alloc_inode+0x10/0x10
[  109.021567][ T5483]  alloc_inode+0x82/0x1b0
[  109.021583][ T5483]  new_inode+0x22/0x170
[  109.021601][ T5483]  __debugfs_create_file+0x14d/0x4f0
[  109.021623][ T5483]  debugfs_create_file_full+0x3f/0x60
[  109.021639][ T5483]  ? __pfx_blk_create_buf_file_callback+0x10/0x10
[  109.021652][ T5483]  relay_open_buf+0x56e/0xe50
[  109.021677][ T5483]  relay_open+0x427/0x920
[  109.021693][ T5483]  blk_trace_setup_prepare+0x425/0x5a0
[  109.021713][ T5483]  blk_trace_ioctl+0x5e9/0x6e0
[  109.021729][ T5483]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  109.021748][ T5483]  ? kasan_quarantine_put+0xdd/0x220
[  109.021762][ T5483]  ? lockdep_hardirqs_on+0x98/0x140
[  109.021813][ T5483]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.021833][ T5483]  ? do_vfs_ioctl+0xbe8/0x1430
[  109.021846][ T5483]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.021862][ T5483]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.021901][ T5483]  blkdev_ioctl+0x4a2/0x710
[  109.021918][ T5483]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.021928][ T5483]  ? ksys_write+0x1e1/0x250
[  109.021945][ T5483]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.021961][ T5483]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.021973][ T5483]  __se_sys_ioctl+0xfc/0x170
[  109.021993][ T5483]  do_syscall_64+0xfa/0xf80
[  109.022004][ T5483]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.022013][ T5483]  ? clear_bhb_loop+0x60/0xb0
[  109.022026][ T5483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.022036][ T5483] RIP: 0033:0x7facdcd8f7c9
[  109.022054][ T5483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.022065][ T5483] RSP: 002b:00007ffea5cb5c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.022077][ T5483] RAX: ffffffffffffffda RBX: 00007facdcfe5fa0 RCX: 00007facdcd8f7c9
[  109.022085][ T5483] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[  109.022092][ T5483] RBP: 00007ffea5cb5c80 R08: 0000000000000000 R09: 0000000000000000
[  109.022098][ T5483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.022105][ T5483] R13: 00007facdcfe5fa0 R14: 00007facdcfe5fa0 R15: 0000000000000003
[  109.022128][ T5483]  </TASK>
[  109.022161][ T5483] debugfs: out of free dentries, can not create file 'trace0'
[  109.189412][ T5484] FAULT_INJECTION: forcing a failure.
[  109.189412][ T5484] name failslab, interval 1, probability 0, space 0, times 0
[  109.199202][ T5484] CPU: 0 UID: 0 PID: 5484 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  109.199226][ T5484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.199233][ T5484] Call Trace:
[  109.199239][ T5484]  <TASK>
[  109.199244][ T5484]  dump_stack_lvl+0x189/0x250
[  109.199289][ T5484]  ? __pfx____ratelimit+0x10/0x10
[  109.199313][ T5484]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.199328][ T5484]  ? __pfx__printk+0x10/0x10
[  109.199346][ T5484]  ? __pfx___might_resched+0x10/0x10
[  109.199358][ T5484]  ? fs_reclaim_acquire+0x7d/0x100
[  109.199385][ T5484]  should_fail_ex+0x414/0x560
[  109.199404][ T5484]  should_failslab+0xa8/0x100
[  109.199422][ T5484]  __kmalloc_noprof+0xcb/0x800
[  109.199435][ T5484]  ? tracepoint_add_func+0x35e/0xa10
[  109.199454][ T5484]  ? __pfx_blk_add_trace_zone_unplug+0x10/0x10
[  109.199472][ T5484]  tracepoint_add_func+0x35e/0xa10
[  109.199497][ T5484]  ? __pfx_blk_add_trace_zone_unplug+0x10/0x10
[  109.199515][ T5484]  tracepoint_probe_register+0x5d/0x90
[  109.199528][ T5484]  ? __pfx_blk_add_trace_zone_unplug+0x10/0x10
[  109.199546][ T5484]  get_probe_ref+0x26b/0x470
[  109.199558][ T5484]  blk_trace_ioctl+0x626/0x6e0
[  109.199574][ T5484]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  109.199594][ T5484]  ? kasan_quarantine_put+0xdd/0x220
[  109.199607][ T5484]  ? lockdep_hardirqs_on+0x98/0x140
[  109.199638][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.199659][ T5484]  ? do_vfs_ioctl+0xbe8/0x1430
[  109.199692][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.199707][ T5484]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.199745][ T5484]  blkdev_ioctl+0x4a2/0x710
[  109.199764][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.199774][ T5484]  ? ksys_write+0x1e1/0x250
[  109.199792][ T5484]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.199808][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.199820][ T5484]  __se_sys_ioctl+0xfc/0x170
[  109.199835][ T5484]  do_syscall_64+0xfa/0xf80
[  109.199847][ T5484]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.199858][ T5484]  ? clear_bhb_loop+0x60/0xb0
[  109.199872][ T5484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.199882][ T5484] RIP: 0033:0x7facdcd8f7c9
[  109.199893][ T5484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.199902][ T5484] RSP: 002b:00007ffea5cb5c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.199917][ T5484] RAX: ffffffffffffffda RBX: 00007facdcfe5fa0 RCX: 00007facdcd8f7c9
[  109.199924][ T5484] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[  109.199930][ T5484] RBP: 00007ffea5cb5c80 R08: 0000000000000000 R09: 0000000000000000
[  109.199936][ T5484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.199942][ T5484] R13: 00007facdcfe5fa0 R14: 00007facdcfe5fa0 R15: 0000000000000003
[  109.199962][ T5484]  </TASK>
[  109.338789][ T5484] ------------[ cut here ]------------
[  109.341867][ T5484] WARNING: kernel/trace/blktrace.c:1357 at get_probe_ref+0x41f/0x470, CPU#0: syz.0.18/5484
[  109.346514][ T5484] Modules linked in:
[  109.348532][ T5484] CPU: 0 UID: 0 PID: 5484 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  109.352796][ T5484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.357518][ T5484] RIP: 0010:get_probe_ref+0x41f/0x470
[  109.360257][ T5484] Code: 0f 0b 90 e9 ff fd ff ff e8 4e a2 f7 ff 90 0f 0b 90 e9 1e fe ff ff e8 40 a2 f7 ff 90 0f 0b 90 e9 3d fe ff ff e8 32 a2 f7 ff 90 <0f> 0b 90 e9 5c fe ff ff e8 24 a2 f7 ff 90 0f 0b 90 e9 7b fe ff ff
[  109.368462][ T5484] RSP: 0018:ffffc90002a8fa90 EFLAGS: 00010293
[  109.371323][ T5484] RAX: ffffffff81c9b8ee RBX: 00000000fffffff4 RCX: ffff888036e40000
[  109.374826][ T5484] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[  109.378303][ T5484] RBP: ffffc90002a8fdd0 R08: ffffc90002a8f9c7 R09: 1ffff92000551f38
[  109.381736][ T5484] R10: dffffc0000000000 R11: fffff52000551f39 R12: ffffc90002a8fc40
[  109.385229][ T5484] R13: ffffc90002a8fd40 R14: ffff888034c4d4b8 R15: 1ffff92000551f58
[  109.388512][ T5484] FS:  000055557fd08500(0000) GS:ffff88808d683000(0000) knlGS:0000000000000000
[  109.392172][ T5484] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  109.394769][ T5484] CR2: 000000c000093d20 CR3: 0000000011e62000 CR4: 0000000000352ef0
[  109.397990][ T5484] Call Trace:
[  109.399464][ T5484]  <TASK>
[  109.400935][ T5484]  blk_trace_ioctl+0x626/0x6e0
[  109.402948][ T5484]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  109.405233][ T5484]  ? kasan_quarantine_put+0xdd/0x220
[  109.407572][ T5484]  ? lockdep_hardirqs_on+0x98/0x140
[  109.410028][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.412569][ T5484]  ? do_vfs_ioctl+0xbe8/0x1430
[  109.414633][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.417152][ T5484]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.419582][ T5484]  blkdev_ioctl+0x4a2/0x710
[  109.421732][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.424002][ T5484]  ? ksys_write+0x1e1/0x250
[  109.426032][ T5484]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.428249][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.430726][ T5484]  __se_sys_ioctl+0xfc/0x170
[  109.432801][ T5484]  do_syscall_64+0xfa/0xf80
[  109.434795][ T5484]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.437694][ T5484]  ? clear_bhb_loop+0x60/0xb0
[  109.440018][ T5484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.442551][ T5484] RIP: 0033:0x7facdcd8f7c9
[  109.444847][ T5484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.453783][ T5484] RSP: 002b:00007ffea5cb5c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.457217][ T5484] RAX: ffffffffffffffda RBX: 00007facdcfe5fa0 RCX: 00007facdcd8f7c9
[  109.460881][ T5484] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[  109.464357][ T5484] RBP: 00007ffea5cb5c80 R08: 0000000000000000 R09: 0000000000000000
[  109.467813][ T5484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.471357][ T5484] R13: 00007facdcfe5fa0 R14: 00007facdcfe5fa0 R15: 0000000000000003
[  109.474885][ T5484]  </TASK>
[  109.476311][ T5484] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  109.479621][ T5484] CPU: 0 UID: 0 PID: 5484 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full) 
[  109.484308][ T5484] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.489121][ T5484] Call Trace:
[  109.490681][ T5484]  <TASK>
[  109.492094][ T5484]  dump_stack_lvl+0x99/0x250
[  109.494234][ T5484]  ? __asan_memcpy+0x40/0x70
[  109.496286][ T5484]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.498525][ T5484]  ? __pfx__printk+0x10/0x10
[  109.500483][ T5484]  vpanic+0x237/0x6d0
[  109.502216][ T5484]  ? __pfx_vpanic+0x10/0x10
[  109.504249][ T5484]  ? is_bpf_text_address+0x292/0x2b0
[  109.506577][ T5484]  ? is_bpf_text_address+0x26/0x2b0
[  109.508863][ T5484]  panic+0xb9/0xc0
[  109.510617][ T5484]  ? __pfx_panic+0x10/0x10
[  109.512620][ T5484]  __warn+0x317/0x4b0
[  109.514410][ T5484]  ? get_probe_ref+0x41f/0x470
[  109.516536][ T5484]  ? get_probe_ref+0x41f/0x470
[  109.518638][ T5484]  __report_bug+0x288/0x500
[  109.520616][ T5484]  ? __pfx__printk+0x10/0x10
[  109.522589][ T5484]  ? get_probe_ref+0x41f/0x470
[  109.524671][ T5484]  ? __pfx___report_bug+0x10/0x10
[  109.526810][ T5484]  ? tracepoint_probe_register+0x7a/0x90
[  109.529364][ T5484]  ? __mutex_unlock_slowpath+0x1a1/0x730
[  109.531815][ T5484]  ? rcu_is_watching+0x15/0xb0
[  109.533822][ T5484]  ? get_probe_ref+0x41f/0x470
[  109.535815][ T5484]  report_bug+0x16a/0x220
[  109.537666][ T5484]  ? get_probe_ref+0x41f/0x470
[  109.539667][ T5484]  ? get_probe_ref+0x421/0x470
[  109.541720][ T5484]  handle_bug+0x98/0x200
[  109.543550][ T5484]  exc_invalid_op+0x1a/0x50
[  109.545552][ T5484]  asm_exc_invalid_op+0x1a/0x20
[  109.547545][ T5484] RIP: 0010:get_probe_ref+0x41f/0x470
[  109.549846][ T5484] Code: 0f 0b 90 e9 ff fd ff ff e8 4e a2 f7 ff 90 0f 0b 90 e9 1e fe ff ff e8 40 a2 f7 ff 90 0f 0b 90 e9 3d fe ff ff e8 32 a2 f7 ff 90 <0f> 0b 90 e9 5c fe ff ff e8 24 a2 f7 ff 90 0f 0b 90 e9 7b fe ff ff
[  109.558032][ T5484] RSP: 0018:ffffc90002a8fa90 EFLAGS: 00010293
[  109.560684][ T5484] RAX: ffffffff81c9b8ee RBX: 00000000fffffff4 RCX: ffff888036e40000
[  109.564267][ T5484] RDX: 0000000000000000 RSI: 00000000fffffff4 RDI: 0000000000000000
[  109.567652][ T5484] RBP: ffffc90002a8fdd0 R08: ffffc90002a8f9c7 R09: 1ffff92000551f38
[  109.571163][ T5484] R10: dffffc0000000000 R11: fffff52000551f39 R12: ffffc90002a8fc40
[  109.574601][ T5484] R13: ffffc90002a8fd40 R14: ffff888034c4d4b8 R15: 1ffff92000551f58
[  109.577787][ T5484]  ? get_probe_ref+0x41e/0x470
[  109.579626][ T5484]  blk_trace_ioctl+0x626/0x6e0
[  109.581654][ T5484]  ? __pfx_blk_trace_ioctl+0x10/0x10
[  109.583955][ T5484]  ? kasan_quarantine_put+0xdd/0x220
[  109.586027][ T5484]  ? lockdep_hardirqs_on+0x98/0x140
[  109.588389][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.590814][ T5484]  ? do_vfs_ioctl+0xbe8/0x1430
[  109.592854][ T5484]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.595157][ T5484]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.597205][ T5484]  blkdev_ioctl+0x4a2/0x710
[  109.599170][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.601217][ T5484]  ? ksys_write+0x1e1/0x250
[  109.603161][ T5484]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.605325][ T5484]  ? __pfx_blkdev_ioctl+0x10/0x10
[  109.607543][ T5484]  __se_sys_ioctl+0xfc/0x170
[  109.609442][ T5484]  do_syscall_64+0xfa/0xf80
[  109.611445][ T5484]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.614071][ T5484]  ? clear_bhb_loop+0x60/0xb0
[  109.616057][ T5484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.618542][ T5484] RIP: 0033:0x7facdcd8f7c9
[  109.620448][ T5484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.627841][ T5484] RSP: 002b:00007ffea5cb5c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.631398][ T5484] RAX: ffffffffffffffda RBX: 00007facdcfe5fa0 RCX: 00007facdcd8f7c9
[  109.634866][ T5484] RDX: 0000200000000240 RSI: 00000000c0c0128e RDI: 0000000000000003
[  109.638181][ T5484] RBP: 00007ffea5cb5c80 R08: 0000000000000000 R09: 0000000000000000
[  109.641426][ T5484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.644681][ T5484] R13: 00007facdcfe5fa0 R14: 00007facdcfe5fa0 R15: 0000000000000003
[  109.648405][ T5484]  </TASK>
[  109.650057][ T5484] Kernel Offset: disabled
[  109.651942][ T5484] Rebooting in 86400 seconds..