Warning: Permanently added '10.128.0.150' (ED25519) to the list of known hosts.
2025/09/09 15:45:20 parsed 1 programs
[ 88.159919][ T5864] cgroup: Unknown subsys name 'net'
[ 88.288702][ T5864] cgroup: Unknown subsys name 'cpuset'
[ 88.299042][ T5864] cgroup: Unknown subsys name 'rlimit'
[ 89.903191][ T5864] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 91.836024][ T982] cfg80211: failed to load regulatory.db
[ 92.874343][ T5877] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 93.479603][ T5892] chnl_net:caif_netlink_parms(): no params data found
[ 93.576417][ T5892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.583960][ T5892] bridge0: port 1(bridge_slave_0) entered disabled state
[ 93.591390][ T5892] bridge_slave_0: entered allmulticast mode
[ 93.598636][ T5892] bridge_slave_0: entered promiscuous mode
[ 93.608333][ T5892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.615556][ T5892] bridge0: port 2(bridge_slave_1) entered disabled state
[ 93.622685][ T5892] bridge_slave_1: entered allmulticast mode
[ 93.630309][ T5892] bridge_slave_1: entered promiscuous mode
[ 93.662793][ T5892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 93.674676][ T5892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 93.706997][ T5892] team0: Port device team_slave_0 added
[ 93.715107][ T5892] team0: Port device team_slave_1 added
[ 93.743946][ T5892] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 93.751538][ T5892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 93.777476][ T5892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 93.790725][ T5892] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 93.797723][ T5892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 93.823697][ T5892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 93.868867][ T5892] hsr_slave_0: entered promiscuous mode
[ 93.875253][ T5892] hsr_slave_1: entered promiscuous mode
[ 94.018731][ T5892] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 94.030321][ T5892] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 94.041033][ T5892] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 94.050701][ T5892] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 94.080080][ T5892] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.087275][ T5892] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.095259][ T5892] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.102381][ T5892] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.160734][ T5892] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.179159][ T1005] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.187748][ T1005] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.203702][ T5892] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.218648][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.225826][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.239908][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.247050][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.418344][ T5892] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 94.465945][ T5892] veth0_vlan: entered promiscuous mode
[ 94.477570][ T5892] veth1_vlan: entered promiscuous mode
[ 94.506705][ T5892] veth0_macvtap: entered promiscuous mode
[ 94.517935][ T5892] veth1_macvtap: entered promiscuous mode
[ 94.536861][ T5892] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 94.552022][ T5892] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 94.569595][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.579123][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.590553][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.599873][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.711690][ T1005] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.808797][ T1005] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.880226][ T1005] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.953656][ T1005] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.881106][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 95.890543][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 95.921957][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 95.930620][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.242887][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 96.251623][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 96.260679][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 96.270334][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 96.278960][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 97.529455][ T1005] bridge_slave_1: left allmulticast mode
[ 97.544450][ T1005] bridge_slave_1: left promiscuous mode
[ 97.550813][ T1005] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.623140][ T1005] bridge_slave_0: left allmulticast mode
[ 97.629661][ T1005] bridge_slave_0: left promiscuous mode
[ 97.645066][ T1005] bridge0: port 1(bridge_slave_0) entered disabled state
2025/09/09 15:45:33 executed programs: 0
[ 98.057387][ T5179] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.075302][ T5179] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.083301][ T5179] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.091807][ T5179] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.099784][ T5179] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.189263][ T1005] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 98.205362][ T1005] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 98.216006][ T1005] bond0 (unregistering): Released all slaves
[ 98.347319][ T1005] hsr_slave_0: left promiscuous mode
[ 98.354122][ T1005] hsr_slave_1: left promiscuous mode
[ 98.360424][ T1005] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 98.368122][ T1005] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 98.376877][ T1005] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 98.384274][ T1005] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 98.408016][ T1005] veth1_macvtap: left promiscuous mode
[ 98.413741][ T1005] veth0_macvtap: left promiscuous mode
[ 98.422328][ T1005] veth1_vlan: left promiscuous mode
[ 98.428058][ T1005] veth0_vlan: left promiscuous mode
[ 98.839411][ T1005] team0 (unregistering): Port device team_slave_1 removed
[ 98.864025][ T1005] team0 (unregistering): Port device team_slave_0 removed
[ 99.181666][ T5984] chnl_net:caif_netlink_parms(): no params data found
[ 99.344516][ T5984] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.351833][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.360742][ T5984] bridge_slave_0: entered allmulticast mode
[ 99.369409][ T5984] bridge_slave_0: entered promiscuous mode
[ 99.380072][ T5984] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.387572][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.395675][ T5984] bridge_slave_1: entered allmulticast mode
[ 99.404272][ T5984] bridge_slave_1: entered promiscuous mode
[ 99.457915][ T5984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.478487][ T5984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.524258][ T5984] team0: Port device team_slave_0 added
[ 99.962228][ T5984] team0: Port device team_slave_1 added
[ 100.007713][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.014738][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.041982][ T5984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.055677][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.062640][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.088876][ T5984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.157402][ T52] Bluetooth: hci0: command tx timeout
[ 100.177228][ T5984] hsr_slave_0: entered promiscuous mode
[ 100.183928][ T5984] hsr_slave_1: entered promiscuous mode
[ 101.014351][ T5984] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 101.027175][ T5984] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 101.040727][ T5984] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 101.056342][ T5984] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.177393][ T5984] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.208252][ T5984] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.222940][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.230131][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.248590][ T71] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.255781][ T71] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.515968][ T5984] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.572529][ T5984] veth0_vlan: entered promiscuous mode
[ 101.586623][ T5984] veth1_vlan: entered promiscuous mode
[ 101.629900][ T5984] veth0_macvtap: entered promiscuous mode
[ 101.641148][ T5984] veth1_macvtap: entered promiscuous mode
[ 101.665739][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.683390][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.711441][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.722829][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.747377][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.771228][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.888322][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.913700][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.967423][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.980087][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.234610][ T52] Bluetooth: hci0: command tx timeout
[ 102.304857][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 102.504445][ T9] usb 1-1: Using ep0 maxpacket: 16
[ 102.514060][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 102.536073][ T9] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 102.545799][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 102.553997][ T9] usb 1-1: Product: syz
[ 102.558495][ T9] usb 1-1: Manufacturer: syz
[ 102.563102][ T9] usb 1-1: SerialNumber: syz
[ 102.580725][ T9] usb 1-1: config 0 descriptor??
[ 102.596630][ T9] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 102.607282][ T9] em28xx 1-1:0.0: DVB interface 0 found: bulk
[ 102.855317][ T9] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[ 102.919194][ T9] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 102.928218][ T9] em28xx 1-1:0.0: board has no eeprom
[ 102.994456][ T9] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 103.002291][ T9] em28xx 1-1:0.0: dvb set to bulk mode.
[ 103.010437][ T980] em28xx 1-1:0.0: Binding DVB extension
[ 103.024914][ T9] usb 1-1: USB disconnect, device number 2
[ 103.042908][ T9] em28xx 1-1:0.0: Disconnecting em28xx
[ 103.075155][ T980] em28xx 1-1:0.0: Registering input extension
[ 103.081451][ T9] em28xx 1-1:0.0: Closing input extension
[ 103.091794][ T9] ==================================================================
[ 103.099869][ T9] BUG: KASAN: slab-use-after-free in media_devnode_unregister+0xe2/0xf0
[ 103.108206][ T9] Read of size 4 at addr ffff88807c49f4f0 by task kworker/0:0/9
[ 103.115830][ T9]
[ 103.118170][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted syzkaller #0 PREEMPT(full)
[ 103.118187][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 103.118215][ T9] Workqueue: usb_hub_wq hub_event
[ 103.118246][ T9] Call Trace:
[ 103.118252][ T9]
[ 103.118259][ T9] dump_stack_lvl+0x189/0x250
[ 103.118284][ T9] ? rcu_is_watching+0x15/0xb0
[ 103.118302][ T9] ? __kasan_check_byte+0x12/0x40
[ 103.118320][ T9] ? __pfx_dump_stack_lvl+0x10/0x10
[ 103.118343][ T9] ? rcu_is_watching+0x15/0xb0
[ 103.118361][ T9] ? lock_release+0x4b/0x3e0
[ 103.118390][ T9] ? __virt_addr_valid+0x1c8/0x5c0
[ 103.118413][ T9] ? __virt_addr_valid+0x4a5/0x5c0
[ 103.118452][ T9] print_report+0xca/0x240
[ 103.118467][ T9] ? media_devnode_unregister+0xe2/0xf0
[ 103.118487][ T9] kasan_report+0x118/0x150
[ 103.118505][ T9] ? media_devnode_unregister+0xe2/0xf0
[ 103.118527][ T9] media_devnode_unregister+0xe2/0xf0
[ 103.118547][ T9] media_device_unregister+0x37c/0x400
[ 103.118569][ T9] em28xx_release_resources+0xac/0x240
[ 103.118593][ T9] em28xx_usb_disconnect+0x19f/0x2f0
[ 103.118616][ T9] usb_unbind_interface+0x26e/0x910
[ 103.118636][ T9] ? __pfx_usb_unbind_interface+0x10/0x10
[ 103.118653][ T9] device_release_driver_internal+0x4d6/0x800
[ 103.118676][ T9] bus_remove_device+0x34d/0x410
[ 103.118703][ T9] device_del+0x511/0x8e0
[ 103.118722][ T9] ? __pfx_device_del+0x10/0x10
[ 103.118738][ T9] ? kobject_put+0x446/0x480
[ 103.118765][ T9] usb_disable_device+0x3e9/0x8a0
[ 103.118784][ T9] usb_disconnect+0x330/0x950
[ 103.118810][ T9] hub_event+0x1cf5/0x4a20
[ 103.118854][ T9] ? do_raw_spin_lock+0x121/0x290
[ 103.118878][ T9] ? register_lock_class+0x51/0x320
[ 103.118901][ T9] ? __pfx_hub_event+0x10/0x10
[ 103.118916][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 103.118937][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 103.118958][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 103.118975][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 103.118994][ T9] process_scheduled_works+0xae1/0x17b0
[ 103.119024][ T9] ? __pfx_process_scheduled_works+0x10/0x10
[ 103.119049][ T9] worker_thread+0x8a0/0xda0
[ 103.119078][ T9] kthread+0x711/0x8a0
[ 103.119102][ T9] ? __pfx_worker_thread+0x10/0x10
[ 103.119128][ T9] ? __pfx_kthread+0x10/0x10
[ 103.119151][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 103.119171][ T9] ? lockdep_hardirqs_on+0x9c/0x150
[ 103.119193][ T9] ? __pfx_kthread+0x10/0x10
[ 103.119231][ T9] ret_from_fork+0x47c/0x820
[ 103.119249][ T9] ? __pfx_ret_from_fork+0x10/0x10
[ 103.119269][ T9] ? __switch_to_asm+0x39/0x70
[ 103.119284][ T9] ? __switch_to_asm+0x33/0x70
[ 103.119299][ T9] ? __pfx_kthread+0x10/0x10
[ 103.119321][ T9] ret_from_fork_asm+0x1a/0x30
[ 103.119344][ T9]
[ 103.119349][ T9]
[ 103.395363][ T9] Allocated by task 9:
[ 103.399419][ T9] kasan_save_track+0x3e/0x80
[ 103.404092][ T9] __kasan_kmalloc+0x93/0xb0
[ 103.408676][ T9] __kmalloc_cache_noprof+0x3d5/0x6f0
[ 103.414035][ T9] __media_device_register+0x58/0x280
[ 103.419396][ T9] em28xx_usb_probe+0x1764/0x2a20
[ 103.424414][ T9] usb_probe_interface+0x665/0xc30
[ 103.429518][ T9] really_probe+0x26a/0x9e0
[ 103.434015][ T9] __driver_probe_device+0x18c/0x2f0
[ 103.439288][ T9] driver_probe_device+0x4f/0x430
[ 103.444306][ T9] __device_attach_driver+0x2ce/0x530
[ 103.449675][ T9] bus_for_each_drv+0x251/0x2e0
[ 103.454522][ T9] __device_attach+0x2b8/0x400
[ 103.459276][ T9] bus_probe_device+0x185/0x260
[ 103.464119][ T9] device_add+0x7b6/0xb50
[ 103.468437][ T9] usb_set_configuration+0x1a87/0x20e0
[ 103.473884][ T9] usb_generic_driver_probe+0x8d/0x150
[ 103.479332][ T9] usb_probe_device+0x1c1/0x390
[ 103.484197][ T9] really_probe+0x26a/0x9e0
[ 103.488693][ T9] __driver_probe_device+0x18c/0x2f0
[ 103.493970][ T9] driver_probe_device+0x4f/0x430
[ 103.498988][ T9] __device_attach_driver+0x2ce/0x530
[ 103.504357][ T9] bus_for_each_drv+0x251/0x2e0
[ 103.509217][ T9] __device_attach+0x2b8/0x400
[ 103.513970][ T9] bus_probe_device+0x185/0x260
[ 103.518822][ T9] device_add+0x7b6/0xb50
[ 103.523151][ T9] usb_new_device+0xa39/0x16f0
[ 103.527917][ T9] hub_event+0x2958/0x4a20
[ 103.532325][ T9] process_scheduled_works+0xae1/0x17b0
[ 103.537868][ T9] worker_thread+0x8a0/0xda0
[ 103.542459][ T9] kthread+0x711/0x8a0
[ 103.546555][ T9] ret_from_fork+0x47c/0x820
[ 103.551152][ T9] ret_from_fork_asm+0x1a/0x30
[ 103.555916][ T9]
[ 103.558231][ T9] Freed by task 9:
[ 103.561940][ T9] kasan_save_track+0x3e/0x80
[ 103.566611][ T9] __kasan_save_free_info+0x46/0x50
[ 103.571811][ T9] __kasan_slab_free+0x5b/0x80
[ 103.576569][ T9] kfree+0x199/0x6d0
[ 103.580467][ T9] media_devnode_release+0x61/0xa0
[ 103.585574][ T9] device_release+0x9c/0x1c0
[ 103.590158][ T9] kobject_put+0x228/0x480
[ 103.594569][ T9] media_devnode_unregister+0x6d/0xf0
[ 103.599932][ T9] media_device_unregister+0x37c/0x400
[ 103.605383][ T9] em28xx_release_resources+0xac/0x240
[ 103.610838][ T9] em28xx_usb_disconnect+0x19f/0x2f0
[ 103.616122][ T9] usb_unbind_interface+0x26e/0x910
[ 103.621313][ T9] device_release_driver_internal+0x4d6/0x800
[ 103.627369][ T9] bus_remove_device+0x34d/0x410
[ 103.632308][ T9] device_del+0x511/0x8e0
[ 103.636626][ T9] usb_disable_device+0x3e9/0x8a0
[ 103.641636][ T9] usb_disconnect+0x330/0x950
[ 103.646314][ T9] hub_event+0x1cf5/0x4a20
[ 103.650722][ T9] process_scheduled_works+0xae1/0x17b0
[ 103.656269][ T9] worker_thread+0x8a0/0xda0
[ 103.660852][ T9] kthread+0x711/0x8a0
[ 103.664914][ T9] ret_from_fork+0x47c/0x820
[ 103.669494][ T9] ret_from_fork_asm+0x1a/0x30
[ 103.674251][ T9]
[ 103.676564][ T9] The buggy address belongs to the object at ffff88807c49f000
[ 103.676564][ T9] which belongs to the cache kmalloc-2k of size 2048
[ 103.690601][ T9] The buggy address is located 1264 bytes inside of
[ 103.690601][ T9] freed 2048-byte region [ffff88807c49f000, ffff88807c49f800)
[ 103.704556][ T9]
[ 103.706875][ T9] The buggy address belongs to the physical page:
[ 103.713292][ T9] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7c498
[ 103.722054][ T9] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 103.730546][ T9] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.738078][ T9] page_type: f5(slab)
[ 103.742048][ T9] raw: 00fff00000000040 ffff88801a842000 dead000000000122 0000000000000000
[ 103.750618][ T9] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 103.759187][ T9] head: 00fff00000000040 ffff88801a842000 dead000000000122 0000000000000000
[ 103.767844][ T9] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 103.776549][ T9] head: 00fff00000000003 ffffea0001f12601 00000000ffffffff 00000000ffffffff
[ 103.785217][ T9] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 103.793884][ T9] page dumped because: kasan: bad access detected
[ 103.800286][ T9] page_owner tracks the page as allocated
[ 103.805991][ T9] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5218, tgid 5218 (klogd), ts 102615007013, free_ts 100149684819
[ 103.826900][ T9] post_alloc_hook+0x240/0x2a0
[ 103.831655][ T9] get_page_from_freelist+0x21e4/0x22c0
[ 103.837189][ T9] __alloc_frozen_pages_noprof+0x181/0x370
[ 103.842988][ T9] alloc_pages_mpol+0x232/0x4a0
[ 103.847835][ T9] allocate_slab+0x8a/0x330
[ 103.852333][ T9] ___slab_alloc+0xbd1/0x13f0
[ 103.857009][ T9] __slab_alloc+0x55/0xa0
[ 103.861372][ T9] __kmalloc_cache_noprof+0x411/0x6f0
[ 103.866743][ T9] syslog_print+0xd2/0x590
[ 103.871156][ T9] do_syslog+0x544/0x760
[ 103.875389][ T9] __x64_sys_syslog+0x7c/0x90
[ 103.880063][ T9] do_syscall_64+0xfa/0xfa0
[ 103.884560][ T9] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.890444][ T9] page last free pid 5984 tgid 5984 stack trace:
[ 103.896751][ T9] __free_frozen_pages+0xbc4/0xd30
[ 103.901855][ T9] __slab_free+0x2e7/0x390
[ 103.906266][ T9] qlist_free_all+0x97/0x140
[ 103.910853][ T9] kasan_quarantine_reduce+0x148/0x160
[ 103.916300][ T9] __kasan_slab_alloc+0x22/0x80
[ 103.921142][ T9] __kmalloc_cache_noprof+0x36f/0x6f0
[ 103.926508][ T9] kobject_uevent_env+0x27c/0x8c0
[ 103.931523][ T9] __kobject_del+0xd2/0x300
[ 103.936022][ T9] kobject_put+0x243/0x480
[ 103.940462][ T9] net_rx_queue_update_kobjects+0x695/0x740
[ 103.946352][ T9] netif_set_real_num_rx_queues+0x217/0x360
[ 103.952244][ T9] veth_newlink+0x718/0xa50
[ 103.956748][ T9] rtnl_newlink_create+0x30d/0xb00
[ 103.961861][ T9] rtnl_newlink+0x16d6/0x1c70
[ 103.966536][ T9] rtnetlink_rcv_msg+0x7cc/0xb70
[ 103.971477][ T9] netlink_rcv_skb+0x205/0x470
[ 103.976249][ T9]
[ 103.978577][ T9] Memory state around the buggy address:
[ 103.984196][ T9] ffff88807c49f380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 103.992246][ T9] ffff88807c49f400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.000299][ T9] >ffff88807c49f480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.008348][ T9] ^
[ 104.016053][ T9] ffff88807c49f500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.024113][ T9] ffff88807c49f580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 104.032168][ T9] ==================================================================
[ 104.068523][ T9] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 104.075758][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted syzkaller #0 PREEMPT(full)
[ 104.084881][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 104.094950][ T9] Workqueue: usb_hub_wq hub_event
[ 104.099990][ T9] Call Trace:
[ 104.103261][ T9]
[ 104.106187][ T9] dump_stack_lvl+0x99/0x250
[ 104.110804][ T9] ? __asan_memcpy+0x40/0x70
[ 104.115431][ T9] ? __pfx_dump_stack_lvl+0x10/0x10
[ 104.120630][ T9] ? __pfx__printk+0x10/0x10
[ 104.125228][ T9] vpanic+0x237/0x6d0
[ 104.129246][ T9] ? __pfx_vpanic+0x10/0x10
[ 104.133762][ T9] ? preempt_schedule+0xae/0xc0
[ 104.138616][ T9] ? __pfx_preempt_schedule+0x10/0x10
[ 104.143990][ T9] panic+0xb9/0xc0
[ 104.147708][ T9] ? __pfx_panic+0x10/0x10
[ 104.152126][ T9] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 104.158020][ T9] ? media_devnode_unregister+0xe2/0xf0
[ 104.163559][ T9] check_panic_on_warn+0x89/0xb0
[ 104.168505][ T9] ? media_devnode_unregister+0xe2/0xf0
[ 104.174053][ T9] end_report+0x78/0x160
[ 104.178294][ T9] kasan_report+0x129/0x150
[ 104.182800][ T9] ? media_devnode_unregister+0xe2/0xf0
[ 104.188353][ T9] media_devnode_unregister+0xe2/0xf0
[ 104.193728][ T9] media_device_unregister+0x37c/0x400
[ 104.199200][ T9] em28xx_release_resources+0xac/0x240
[ 104.204672][ T9] em28xx_usb_disconnect+0x19f/0x2f0
[ 104.209965][ T9] usb_unbind_interface+0x26e/0x910
[ 104.215167][ T9] ? __pfx_usb_unbind_interface+0x10/0x10
[ 104.220890][ T9] device_release_driver_internal+0x4d6/0x800
[ 104.226970][ T9] bus_remove_device+0x34d/0x410
[ 104.231918][ T9] device_del+0x511/0x8e0
[ 104.236277][ T9] ? __pfx_device_del+0x10/0x10
[ 104.241136][ T9] ? kobject_put+0x446/0x480
[ 104.245741][ T9] usb_disable_device+0x3e9/0x8a0
[ 104.250769][ T9] usb_disconnect+0x330/0x950
[ 104.255450][ T9] hub_event+0x1cf5/0x4a20
[ 104.259887][ T9] ? do_raw_spin_lock+0x121/0x290
[ 104.264914][ T9] ? register_lock_class+0x51/0x320
[ 104.270113][ T9] ? __pfx_hub_event+0x10/0x10
[ 104.274875][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 104.280608][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 104.285809][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 104.291523][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 104.297242][ T9] process_scheduled_works+0xae1/0x17b0
[ 104.302803][ T9] ? __pfx_process_scheduled_works+0x10/0x10
[ 104.308795][ T9] worker_thread+0x8a0/0xda0
[ 104.313396][ T9] kthread+0x711/0x8a0
[ 104.317482][ T9] ? __pfx_worker_thread+0x10/0x10
[ 104.322604][ T9] ? __pfx_kthread+0x10/0x10
[ 104.327202][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 104.332410][ T9] ? lockdep_hardirqs_on+0x9c/0x150
[ 104.337627][ T9] ? __pfx_kthread+0x10/0x10
[ 104.342218][ T9] ret_from_fork+0x47c/0x820
[ 104.346821][ T9] ? __pfx_ret_from_fork+0x10/0x10
[ 104.351933][ T9] ? __switch_to_asm+0x39/0x70
[ 104.356699][ T9] ? __switch_to_asm+0x33/0x70
[ 104.361477][ T9] ? __pfx_kthread+0x10/0x10
[ 104.366074][ T9] ret_from_fork_asm+0x1a/0x30
[ 104.370850][ T9]
[ 104.374252][ T9] Kernel Offset: disabled
[ 104.378592][ T9] Rebooting in 86400 seconds..