Warning: Permanently added '10.128.0.139' (ED25519) to the list of known hosts.
2025/11/10 21:52:52 parsed 1 programs
[ 73.821949][ T5831] cgroup: Unknown subsys name 'net'
[ 73.951135][ T5831] cgroup: Unknown subsys name 'cpuset'
[ 73.959807][ T5831] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 75.477227][ T5831] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 78.016420][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 79.384041][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 79.393928][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 79.450431][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 79.459532][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.252755][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 80.263973][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 80.272660][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 80.281252][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 80.289522][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 81.736775][ T5917] chnl_net:caif_netlink_parms(): no params data found
[ 81.886955][ T5917] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.895557][ T5917] bridge0: port 1(bridge_slave_0) entered disabled state
[ 81.903315][ T5917] bridge_slave_0: entered allmulticast mode
[ 81.911732][ T5917] bridge_slave_0: entered promiscuous mode
[ 81.932845][ T5917] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.941430][ T5917] bridge0: port 2(bridge_slave_1) entered disabled state
[ 81.949590][ T5917] bridge_slave_1: entered allmulticast mode
[ 81.956553][ T5917] bridge_slave_1: entered promiscuous mode
[ 81.985335][ T5917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 81.996720][ T5917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 82.026522][ T5917] team0: Port device team_slave_0 added
[ 82.034075][ T5917] team0: Port device team_slave_1 added
[ 82.057717][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 82.065650][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 82.091718][ T5917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 82.104256][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 82.112088][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 82.138059][ T5917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 82.178590][ T5917] hsr_slave_0: entered promiscuous mode
[ 82.184909][ T5917] hsr_slave_1: entered promiscuous mode
[ 82.310483][ T5917] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 82.322783][ T5917] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 82.333355][ T5917] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 82.343567][ T5917] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 82.371090][ T5917] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.378358][ T5917] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 82.386522][ T5917] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.393719][ T5917] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 82.445664][ T5917] 8021q: adding VLAN 0 to HW filter on device bond0
[ 82.465680][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 82.474475][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 82.489809][ T5917] 8021q: adding VLAN 0 to HW filter on device team0
[ 82.503304][ T63] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.510486][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 82.524333][ T3446] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.531589][ T3446] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 82.684276][ T5917] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 82.722719][ T5917] veth0_vlan: entered promiscuous mode
[ 82.735347][ T5917] veth1_vlan: entered promiscuous mode
[ 82.762327][ T5917] veth0_macvtap: entered promiscuous mode
[ 82.771628][ T5917] veth1_macvtap: entered promiscuous mode
[ 82.789956][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 82.804930][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 82.828161][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.837254][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.848940][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.857651][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.990651][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.101016][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.173097][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.256428][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/10 21:53:03 executed programs: 0
[ 83.355601][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 83.364462][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 83.375189][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 83.384210][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 83.392464][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 83.529904][ T5942] chnl_net:caif_netlink_parms(): no params data found
[ 83.600233][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.607440][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[ 83.614961][ T5942] bridge_slave_0: entered allmulticast mode
[ 83.622326][ T5942] bridge_slave_0: entered promiscuous mode
[ 83.630463][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.637547][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[ 83.644823][ T5942] bridge_slave_1: entered allmulticast mode
[ 83.652659][ T5942] bridge_slave_1: entered promiscuous mode
[ 83.692112][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 83.704412][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 83.738560][ T5942] team0: Port device team_slave_0 added
[ 83.747027][ T5942] team0: Port device team_slave_1 added
[ 83.776868][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 83.784204][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 83.810937][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 83.824105][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 83.831231][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 83.857284][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 83.908494][ T5942] hsr_slave_0: entered promiscuous mode
[ 83.914721][ T5942] hsr_slave_1: entered promiscuous mode
[ 83.921024][ T5942] debugfs: 'hsr0' already exists in 'hsr'
[ 83.926814][ T5942] Cannot create hsr debugfs directory
[ 85.458707][ T53] Bluetooth: hci0: command tx timeout
[ 85.678996][ T13] bridge_slave_1: left allmulticast mode
[ 85.685114][ T13] bridge_slave_1: left promiscuous mode
[ 85.693038][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.705782][ T13] bridge_slave_0: left allmulticast mode
[ 85.713025][ T13] bridge_slave_0: left promiscuous mode
[ 85.719319][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 86.010150][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 86.022220][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 86.032869][ T13] bond0 (unregistering): Released all slaves
[ 86.140850][ T13] hsr_slave_0: left promiscuous mode
[ 86.147086][ T13] hsr_slave_1: left promiscuous mode
[ 86.153776][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 86.161579][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 86.170380][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 86.181274][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 86.196617][ T13] veth1_macvtap: left promiscuous mode
[ 86.205319][ T13] veth0_macvtap: left promiscuous mode
[ 86.211976][ T13] veth1_vlan: left promiscuous mode
[ 86.217323][ T13] veth0_vlan: left promiscuous mode
[ 86.484121][ T13] team0 (unregistering): Port device team_slave_1 removed
[ 86.511891][ T13] team0 (unregistering): Port device team_slave_0 removed
[ 86.738908][ T51] cfg80211: failed to load regulatory.db
[ 87.037598][ T5942] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 87.059844][ T5942] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 87.078456][ T5942] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 87.103230][ T5942] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 87.261621][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.282742][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.305611][ T37] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.312894][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 87.326555][ T3446] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.333749][ T3446] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 87.541314][ T53] Bluetooth: hci0: command tx timeout
[ 87.610680][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 87.666281][ T5942] veth0_vlan: entered promiscuous mode
[ 87.682308][ T5942] veth1_vlan: entered promiscuous mode
[ 87.723495][ T5942] veth0_macvtap: entered promiscuous mode
[ 87.735384][ T5942] veth1_macvtap: entered promiscuous mode
[ 87.760580][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 87.777350][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 87.796137][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.831304][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.862992][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.875549][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.904982][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.918660][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.951099][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.959989][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 88.059085][ C1] ==================================================================
[ 88.067304][ C1] BUG: KASAN: double-free in inet_sock_destruct+0x538/0x740
[ 88.074637][ C1] Free of addr ffff8880321f3080 by task ksoftirqd/1/23
[ 88.081495][ C1]
[ 88.083836][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full)
[ 88.083858][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 88.083877][ C1] Call Trace:
[ 88.083884][ C1]
[ 88.083892][ C1] dump_stack_lvl+0x189/0x250
[ 88.083923][ C1] ? rcu_is_watching+0x15/0xb0
[ 88.083944][ C1] ? __kasan_check_byte+0x12/0x40
[ 88.083964][ C1] ? __pfx_dump_stack_lvl+0x10/0x10
[ 88.083989][ C1] ? rcu_is_watching+0x15/0xb0
[ 88.084010][ C1] ? lock_release+0x4b/0x3e0
[ 88.084031][ C1] ? __virt_addr_valid+0x1c8/0x5c0
[ 88.084056][ C1] ? __virt_addr_valid+0x4a5/0x5c0
[ 88.084082][ C1] print_report+0xca/0x240
[ 88.084104][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.084123][ C1] kasan_report_invalid_free+0xea/0x110
[ 88.084143][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.084163][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.084181][ C1] check_slab_allocation+0xe1/0x130
[ 88.084209][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.084226][ C1] kfree+0x148/0x6d0
[ 88.084253][ C1] inet_sock_destruct+0x538/0x740
[ 88.084276][ C1] ? inet6_cleanup_sock+0x18b/0x220
[ 88.084298][ C1] ? __pfx_sctp_v6_destruct_sock+0x10/0x10
[ 88.084319][ C1] __sk_destruct+0x89/0x660
[ 88.084340][ C1] ? __pfx_sctp_endpoint_destroy_rcu+0x10/0x10
[ 88.084361][ C1] ? rcu_core+0xc37/0x1770
[ 88.084380][ C1] sctp_endpoint_destroy_rcu+0xa1/0xf0
[ 88.084401][ C1] rcu_core+0xcab/0x1770
[ 88.084420][ C1] ? __lock_acquire+0xab9/0xd20
[ 88.084445][ C1] ? __pfx_rcu_core+0x10/0x10
[ 88.084465][ C1] ? rcu_qs+0xc4/0x170
[ 88.084484][ C1] ? __pfx_rcu_qs+0x10/0x10
[ 88.084502][ C1] ? sched_clock_cpu+0x74/0x430
[ 88.084525][ C1] ? rcu_softirq_qs+0xf2/0x350
[ 88.084545][ C1] ? __pfx_rcu_softirq_qs+0x10/0x10
[ 88.084570][ C1] handle_softirqs+0x286/0x870
[ 88.084592][ C1] ? run_ksoftirqd+0x9b/0x100
[ 88.084616][ C1] ? __pfx_handle_softirqs+0x10/0x10
[ 88.084638][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 88.084660][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 88.084680][ C1] run_ksoftirqd+0x9b/0x100
[ 88.084702][ C1] ? __pfx_run_ksoftirqd+0x10/0x10
[ 88.084728][ C1] smpboot_thread_fn+0x542/0xa60
[ 88.084749][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 88.084772][ C1] kthread+0x711/0x8a0
[ 88.084798][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 88.084818][ C1] ? __pfx_kthread+0x10/0x10
[ 88.084843][ C1] ? _raw_spin_unlock_irq+0x23/0x50
[ 88.084866][ C1] ? lockdep_hardirqs_on+0x9c/0x150
[ 88.084890][ C1] ? __pfx_kthread+0x10/0x10
[ 88.084912][ C1] ret_from_fork+0x4bc/0x870
[ 88.084929][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 88.084946][ C1] ? __switch_to_asm+0x39/0x70
[ 88.084959][ C1] ? __switch_to_asm+0x33/0x70
[ 88.084971][ C1] ? __pfx_kthread+0x10/0x10
[ 88.084994][ C1] ret_from_fork_asm+0x1a/0x30
[ 88.085015][ C1]
[ 88.085020][ C1]
[ 88.369633][ C1] Allocated by task 6008:
[ 88.374029][ C1] kasan_save_track+0x3e/0x80
[ 88.378790][ C1] __kasan_kmalloc+0x93/0xb0
[ 88.383459][ C1] __kmalloc_noprof+0x411/0x7f0
[ 88.388327][ C1] ip_options_get+0x51/0x4c0
[ 88.392989][ C1] do_ip_setsockopt+0x1d9b/0x2d00
[ 88.397992][ C1] ip_setsockopt+0x66/0x110
[ 88.402479][ C1] do_sock_setsockopt+0x17c/0x1b0
[ 88.407484][ C1] __x64_sys_setsockopt+0x13f/0x1b0
[ 88.412662][ C1] do_syscall_64+0xfa/0xfa0
[ 88.417201][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.423076][ C1]
[ 88.425381][ C1] Freed by task 23:
[ 88.429340][ C1] kasan_save_track+0x3e/0x80
[ 88.434017][ C1] __kasan_save_free_info+0x46/0x50
[ 88.439229][ C1] __kasan_slab_free+0x5c/0x80
[ 88.443997][ C1] kfree+0x19a/0x6d0
[ 88.447924][ C1] inet_sock_destruct+0x538/0x740
[ 88.453808][ C1] __sk_destruct+0x89/0x660
[ 88.458393][ C1] sctp_endpoint_destroy_rcu+0xa1/0xf0
[ 88.463838][ C1] rcu_core+0xcab/0x1770
[ 88.468153][ C1] handle_softirqs+0x286/0x870
[ 88.472909][ C1] run_ksoftirqd+0x9b/0x100
[ 88.477421][ C1] smpboot_thread_fn+0x542/0xa60
[ 88.482341][ C1] kthread+0x711/0x8a0
[ 88.486406][ C1] ret_from_fork+0x4bc/0x870
[ 88.490977][ C1] ret_from_fork_asm+0x1a/0x30
[ 88.495723][ C1]
[ 88.498032][ C1] The buggy address belongs to the object at ffff8880321f3080
[ 88.498032][ C1] which belongs to the cache kmalloc-32 of size 32
[ 88.511896][ C1] The buggy address is located 0 bytes inside of
[ 88.511896][ C1] 32-byte region [ffff8880321f3080, ffff8880321f30a0)
[ 88.524906][ C1]
[ 88.527225][ C1] The buggy address belongs to the physical page:
[ 88.533665][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x321f3
[ 88.542409][ C1] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 88.549504][ C1] page_type: f5(slab)
[ 88.553466][ C1] raw: 00fff00000000000 ffff88801a026780 ffffea0000b47040 dead000000000002
[ 88.562030][ C1] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[ 88.570597][ C1] page dumped because: kasan: bad access detected
[ 88.576993][ C1] page_owner tracks the page as allocated
[ 88.582685][ C1] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5176, tgid 5176 (rcS), ts 24158107726, free_ts 23890198481
[ 88.600982][ C1] post_alloc_hook+0x240/0x2a0
[ 88.605737][ C1] get_page_from_freelist+0x2365/0x2440
[ 88.611266][ C1] __alloc_frozen_pages_noprof+0x181/0x370
[ 88.617053][ C1] alloc_pages_mpol+0x232/0x4a0
[ 88.621897][ C1] allocate_slab+0x96/0x350
[ 88.626412][ C1] ___slab_alloc+0xe94/0x18a0
[ 88.631076][ C1] __slab_alloc+0x65/0x100
[ 88.635492][ C1] __kmalloc_noprof+0x471/0x7f0
[ 88.640329][ C1] tomoyo_supervisor+0xbd5/0x1480
[ 88.645340][ C1] tomoyo_env_perm+0x149/0x1e0
[ 88.650203][ C1] tomoyo_find_next_domain+0x15cf/0x1aa0
[ 88.655910][ C1] tomoyo_bprm_check_security+0x11c/0x180
[ 88.661695][ C1] security_bprm_check+0x89/0x270
[ 88.666800][ C1] bprm_execve+0x8ee/0x1450
[ 88.671287][ C1] do_execveat_common+0x510/0x6a0
[ 88.676315][ C1] __x64_sys_execve+0x94/0xb0
[ 88.681069][ C1] page last free pid 15 tgid 15 stack trace:
[ 88.687059][ C1] __free_frozen_pages+0xbc4/0xd30
[ 88.692177][ C1] tlb_remove_table_rcu+0x85/0x100
[ 88.697271][ C1] rcu_core+0xcab/0x1770
[ 88.701503][ C1] handle_softirqs+0x286/0x870
[ 88.706251][ C1] run_ksoftirqd+0x9b/0x100
[ 88.710740][ C1] smpboot_thread_fn+0x542/0xa60
[ 88.715660][ C1] kthread+0x711/0x8a0
[ 88.719714][ C1] ret_from_fork+0x4bc/0x870
[ 88.724311][ C1] ret_from_fork_asm+0x1a/0x30
[ 88.729056][ C1]
[ 88.731360][ C1] Memory state around the buggy address:
[ 88.737403][ C1] ffff8880321f2f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 88.745441][ C1] ffff8880321f3000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[ 88.753482][ C1] >ffff8880321f3080: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[ 88.761519][ C1] ^
[ 88.765565][ C1] ffff8880321f3100: 00 00 00 fc fc fc fc fc 00 00 00 00 fc fc fc fc
[ 88.773698][ C1] ffff8880321f3180: fa fb fb fb fc fc fc fc 00 00 07 fc fc fc fc fc
[ 88.781741][ C1] ==================================================================
[ 88.789861][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 88.797067][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full)
[ 88.806269][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 88.816433][ C1] Call Trace:
[ 88.819721][ C1]
[ 88.822747][ C1] dump_stack_lvl+0x99/0x250
[ 88.827358][ C1] ? __asan_memcpy+0x40/0x70
[ 88.831970][ C1] ? __pfx_dump_stack_lvl+0x10/0x10
[ 88.837187][ C1] ? __pfx__printk+0x10/0x10
[ 88.841799][ C1] vpanic+0x237/0x6d0
[ 88.845793][ C1] ? __pfx_vpanic+0x10/0x10
[ 88.850311][ C1] panic+0xb9/0xc0
[ 88.854051][ C1] ? __pfx_panic+0x10/0x10
[ 88.858481][ C1] ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 88.864400][ C1] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 88.870408][ C1] check_panic_on_warn+0x89/0xb0
[ 88.875368][ C1] end_report+0x78/0x160
[ 88.879620][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.884824][ C1] kasan_report_invalid_free+0xfa/0x110
[ 88.890392][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.895690][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.900907][ C1] check_slab_allocation+0xe1/0x130
[ 88.906130][ C1] ? inet_sock_destruct+0x538/0x740
[ 88.911343][ C1] kfree+0x148/0x6d0
[ 88.915265][ C1] inet_sock_destruct+0x538/0x740
[ 88.920382][ C1] ? inet6_cleanup_sock+0x18b/0x220
[ 88.925596][ C1] ? __pfx_sctp_v6_destruct_sock+0x10/0x10
[ 88.931430][ C1] __sk_destruct+0x89/0x660
[ 88.936160][ C1] ? __pfx_sctp_endpoint_destroy_rcu+0x10/0x10
[ 88.942344][ C1] ? rcu_core+0xc37/0x1770
[ 88.946775][ C1] sctp_endpoint_destroy_rcu+0xa1/0xf0
[ 88.952335][ C1] rcu_core+0xcab/0x1770
[ 88.956601][ C1] ? __lock_acquire+0xab9/0xd20
[ 88.961561][ C1] ? __pfx_rcu_core+0x10/0x10
[ 88.966260][ C1] ? rcu_qs+0xc4/0x170
[ 88.970340][ C1] ? __pfx_rcu_qs+0x10/0x10
[ 88.974855][ C1] ? sched_clock_cpu+0x74/0x430
[ 88.979716][ C1] ? rcu_softirq_qs+0xf2/0x350
[ 88.984485][ C1] ? __pfx_rcu_softirq_qs+0x10/0x10
[ 88.989703][ C1] handle_softirqs+0x286/0x870
[ 88.994478][ C1] ? run_ksoftirqd+0x9b/0x100
[ 88.999206][ C1] ? __pfx_handle_softirqs+0x10/0x10
[ 89.004506][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 89.009547][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 89.014602][ C1] run_ksoftirqd+0x9b/0x100
[ 89.019188][ C1] ? __pfx_run_ksoftirqd+0x10/0x10
[ 89.024414][ C1] smpboot_thread_fn+0x542/0xa60
[ 89.029360][ C1] ? smpboot_thread_fn+0x4d/0xa60
[ 89.034406][ C1] kthread+0x711/0x8a0
[ 89.038497][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 89.044173][ C1] ? __pfx_kthread+0x10/0x10
[ 89.048781][ C1] ? _raw_spin_unlock_irq+0x23/0x50
[ 89.054012][ C1] ? lockdep_hardirqs_on+0x9c/0x150
[ 89.059234][ C1] ? __pfx_kthread+0x10/0x10
[ 89.063850][ C1] ret_from_fork+0x4bc/0x870
[ 89.068456][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 89.073577][ C1] ? __switch_to_asm+0x39/0x70
[ 89.078347][ C1] ? __switch_to_asm+0x33/0x70
[ 89.083119][ C1] ? __pfx_kthread+0x10/0x10
[ 89.087739][ C1] ret_from_fork_asm+0x1a/0x30
[ 89.092523][ C1]
[ 89.095949][ C1] Kernel Offset: disabled
[ 89.100261][ C1] Rebooting in 86400 seconds..