Warning: Permanently added '10.128.0.95' (ED25519) to the list of known hosts.
2023/08/05 12:39:40 ignoring optional flag "sandboxArg"="0"
2023/08/05 12:39:40 parsed 1 programs
[ 1037.597430][ T5097] cgroup: Unknown subsys name 'net'
[ 1037.780894][ T5097] cgroup: Unknown subsys name 'rlimit'
2023/08/05 12:39:42 executed programs: 0
[ 1038.909552][ T5097] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[ 1038.920595][ T5092] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5092 'syz-execprog'
[ 1039.096990][ T5120] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1039.104190][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1039.111423][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1039.119061][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1039.131348][ T5124] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1039.138595][ T5124] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1039.147032][ T5129] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1039.154340][ T5129] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1039.157217][ T5134] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1039.161437][ T5136] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1039.175481][ T5129] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1039.175590][ T5134] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1039.189870][ T5135] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1039.190437][ T5134] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1039.196887][ T5137] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1039.204237][ T5134] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1039.210736][ T5129] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1039.225659][ T4443] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1039.232889][ T5135] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1039.240516][ T5134] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1039.248063][ T5135] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1039.255283][ T5134] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1039.263044][ T5135] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1039.270403][ T5134] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1039.278774][ T4443] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1039.279301][ T5135] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1039.293001][ T4443] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1039.296366][ T5134] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1039.300616][ T5135] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1039.307369][ T4443] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1039.320952][ T5135] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1039.321137][ T4443] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1039.335696][ T4443] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1039.342970][ T5134] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1039.351322][ T5122] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1039.360438][ T5122] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1039.542356][ T5115] chnl_net:caif_netlink_parms(): no params data found
[ 1039.649954][ T5117] chnl_net:caif_netlink_parms(): no params data found
[ 1039.705326][ T5115] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1039.712703][ T5115] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1039.720673][ T5115] bridge_slave_0: entered allmulticast mode
[ 1039.727339][ T5115] bridge_slave_0: entered promiscuous mode
[ 1039.736030][ T5115] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1039.743581][ T5115] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1039.750856][ T5115] bridge_slave_1: entered allmulticast mode
[ 1039.757331][ T5115] bridge_slave_1: entered promiscuous mode
[ 1039.772888][ T5130] chnl_net:caif_netlink_parms(): no params data found
[ 1039.815381][ T5115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1039.853977][ T5115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1039.873715][ T5132] chnl_net:caif_netlink_parms(): no params data found
[ 1039.928356][ T5115] team0: Port device team_slave_0 added
[ 1039.934840][ T5117] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1039.942316][ T5117] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1039.949571][ T5117] bridge_slave_0: entered allmulticast mode
[ 1039.955969][ T5117] bridge_slave_0: entered promiscuous mode
[ 1039.982990][ T5130] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1039.991010][ T5130] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1039.999859][ T5130] bridge_slave_0: entered allmulticast mode
[ 1040.006345][ T5130] bridge_slave_0: entered promiscuous mode
[ 1040.015560][ T5115] team0: Port device team_slave_1 added
[ 1040.028678][ T5117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.035747][ T5117] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.042920][ T5117] bridge_slave_1: entered allmulticast mode
[ 1040.049348][ T5117] bridge_slave_1: entered promiscuous mode
[ 1040.077434][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.084515][ T5130] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.092648][ T5130] bridge_slave_1: entered allmulticast mode
[ 1040.099161][ T5130] bridge_slave_1: entered promiscuous mode
[ 1040.115781][ T5115] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1040.123297][ T5115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.149295][ T5115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1040.166026][ T5121] chnl_net:caif_netlink_parms(): no params data found
[ 1040.188117][ T5130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.197746][ T5115] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1040.204709][ T5115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.230730][ T5115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1040.245632][ T5117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.266191][ T5130] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.283201][ T5117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.310433][ T5116] chnl_net:caif_netlink_parms(): no params data found
[ 1040.337353][ T5130] team0: Port device team_slave_0 added
[ 1040.357829][ T5132] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1040.365029][ T5132] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.372675][ T5132] bridge_slave_0: entered allmulticast mode
[ 1040.379332][ T5132] bridge_slave_0: entered promiscuous mode
[ 1040.389953][ T5132] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.397071][ T5132] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.404173][ T5132] bridge_slave_1: entered allmulticast mode
[ 1040.410835][ T5132] bridge_slave_1: entered promiscuous mode
[ 1040.421343][ T5130] team0: Port device team_slave_1 added
[ 1040.428948][ T5115] hsr_slave_0: entered promiscuous mode
[ 1040.435291][ T5115] hsr_slave_1: entered promiscuous mode
[ 1040.443139][ T5117] team0: Port device team_slave_0 added
[ 1040.453679][ T5117] team0: Port device team_slave_1 added
[ 1040.491143][ T5130] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1040.498465][ T5130] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.524518][ T5130] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1040.552196][ T5132] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.575746][ T5130] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1040.583015][ T5130] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.609037][ T5130] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1040.625866][ T5117] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1040.632998][ T5117] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.659451][ T5117] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1040.671261][ T5117] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1040.678542][ T5117] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1040.704618][ T5117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1040.716324][ T5132] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.732890][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1040.740179][ T5121] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.748187][ T5121] bridge_slave_0: entered allmulticast mode
[ 1040.754585][ T5121] bridge_slave_0: entered promiscuous mode
[ 1040.793633][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.800832][ T5121] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.808525][ T5121] bridge_slave_1: entered allmulticast mode
[ 1040.814933][ T5121] bridge_slave_1: entered promiscuous mode
[ 1040.850162][ T5116] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1040.857466][ T5116] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1040.864565][ T5116] bridge_slave_0: entered allmulticast mode
[ 1040.871160][ T5116] bridge_slave_0: entered promiscuous mode
[ 1040.878880][ T5132] team0: Port device team_slave_0 added
[ 1040.899898][ T5130] hsr_slave_0: entered promiscuous mode
[ 1040.905936][ T5130] hsr_slave_1: entered promiscuous mode
[ 1040.912128][ T5130] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1040.919916][ T5130] Cannot create hsr debugfs directory
[ 1040.935242][ T5116] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1040.942397][ T5116] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1040.951012][ T5116] bridge_slave_1: entered allmulticast mode
[ 1040.958250][ T5116] bridge_slave_1: entered promiscuous mode
[ 1040.965976][ T5132] team0: Port device team_slave_1 added
[ 1040.973569][ T5121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1040.985247][ T5121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1040.999384][ T5117] hsr_slave_0: entered promiscuous mode
[ 1041.005452][ T5117] hsr_slave_1: entered promiscuous mode
[ 1041.011942][ T5117] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1041.019627][ T5117] Cannot create hsr debugfs directory
[ 1041.079431][ T5116] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1041.091027][ T5116] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1041.100682][ T5132] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.107821][ T5132] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.134410][ T5132] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1041.154576][ T5121] team0: Port device team_slave_0 added
[ 1041.163092][ T5121] team0: Port device team_slave_1 added
[ 1041.184746][ T5132] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1041.191834][ T5132] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.218214][ T5132] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1041.269671][ T5116] team0: Port device team_slave_0 added
[ 1041.276836][ T5116] team0: Port device team_slave_1 added
[ 1041.286718][ T5122] Bluetooth: hci0: command 0x0409 tx timeout
[ 1041.304537][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.312944][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.339500][ T5121] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1041.364649][ T5116] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1041.372157][ T5122] Bluetooth: hci3: command 0x0409 tx timeout
[ 1041.372191][ T5122] Bluetooth: hci2: command 0x0409 tx timeout
[ 1041.378361][ T5134] Bluetooth: hci1: command 0x0409 tx timeout
[ 1041.378880][ T5116] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.417313][ T5116] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1041.443386][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1041.446770][ T5128] Bluetooth: hci5: command 0x0409 tx timeout
[ 1041.452586][ T5122] Bluetooth: hci4: command 0x0409 tx timeout
[ 1041.457319][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.490445][ T5121] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1041.519516][ T5116] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1041.526522][ T5116] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1041.554427][ T5116] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1041.592186][ T5132] hsr_slave_0: entered promiscuous mode
[ 1041.598925][ T5132] hsr_slave_1: entered promiscuous mode
[ 1041.604961][ T5132] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1041.613100][ T5132] Cannot create hsr debugfs directory
[ 1041.710973][ T5116] hsr_slave_0: entered promiscuous mode
[ 1041.719471][ T5116] hsr_slave_1: entered promiscuous mode
[ 1041.725435][ T5116] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1041.733071][ T5116] Cannot create hsr debugfs directory
[ 1041.760389][ T5115] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1041.769742][ T5115] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1041.781665][ T5121] hsr_slave_0: entered promiscuous mode
[ 1041.788150][ T5121] hsr_slave_1: entered promiscuous mode
[ 1041.794044][ T5121] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1041.801774][ T5121] Cannot create hsr debugfs directory
[ 1041.820305][ T5115] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1041.886674][ T5115] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1042.015995][ T5130] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1042.056403][ T5130] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1042.065525][ T5130] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1042.089037][ T5130] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1042.100955][ T5117] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1042.119538][ T5117] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1042.129013][ T5117] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1042.138576][ T5117] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1042.198625][ T5121] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1042.207645][ T5121] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1042.217250][ T5132] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1042.232193][ T5121] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1042.242951][ T5121] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1042.252797][ T5132] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1042.285530][ T5132] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1042.295157][ T5132] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1042.311847][ T5115] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.319061][ T5116] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1042.329406][ T5116] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1042.338399][ T5116] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1042.353509][ T5116] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1042.403481][ T5115] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.434025][ T5182] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.441135][ T5182] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.459690][ T5182] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.466944][ T5182] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.490439][ T5130] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.558581][ T5121] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.579849][ T5117] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.602563][ T5117] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.612328][ T5130] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.623732][ T5121] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.644392][ T5115] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1042.665650][ T5185] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.672773][ T5185] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.682004][ T5185] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.689267][ T5185] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.712265][ T5132] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.720775][ T5080] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.727942][ T5080] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.751383][ T5183] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.758517][ T5183] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.784362][ T5183] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.791539][ T5183] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.822259][ T5132] 8021q: adding VLAN 0 to HW filter on device team0
[ 1042.841901][ T5116] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1042.851494][ T5181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.858690][ T5181] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.873247][ T5181] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1042.880363][ T5181] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1042.903896][ T5117] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1042.914559][ T5117] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1042.946317][ T5181] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1042.953469][ T5181] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1042.991421][ T5130] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1043.003487][ T5130] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1043.026119][ T5116] 8021q: adding VLAN 0 to HW filter on device team0
[ 1043.063016][ T5132] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1043.087161][ T5132] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1043.111876][ T5186] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1043.119033][ T5186] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1043.132558][ T5186] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1043.139718][ T5186] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1043.194304][ T5115] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.231215][ T5121] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.251473][ T5117] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.328789][ T5130] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.345083][ T5115] veth0_vlan: entered promiscuous mode
[ 1043.376767][ T5128] Bluetooth: hci0: command 0x041b tx timeout
[ 1043.390235][ T5115] veth1_vlan: entered promiscuous mode
[ 1043.404474][ T5121] veth0_vlan: entered promiscuous mode
[ 1043.420327][ T5117] veth0_vlan: entered promiscuous mode
[ 1043.431039][ T5117] veth1_vlan: entered promiscuous mode
[ 1043.446929][ T5122] Bluetooth: hci1: command 0x041b tx timeout
[ 1043.447335][ T5134] Bluetooth: hci3: command 0x041b tx timeout
[ 1043.458306][ T5121] veth1_vlan: entered promiscuous mode
[ 1043.459084][ T5128] Bluetooth: hci2: command 0x041b tx timeout
[ 1043.484072][ T5132] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.510505][ T5130] veth0_vlan: entered promiscuous mode
[ 1043.527149][ T5134] Bluetooth: hci5: command 0x041b tx timeout
[ 1043.531117][ T5121] veth0_macvtap: entered promiscuous mode
[ 1043.533243][ T5128] Bluetooth: hci4: command 0x041b tx timeout
[ 1043.552874][ T5116] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1043.571248][ T5130] veth1_vlan: entered promiscuous mode
[ 1043.581098][ T5115] veth0_macvtap: entered promiscuous mode
[ 1043.591301][ T5115] veth1_macvtap: entered promiscuous mode
[ 1043.599929][ T5121] veth1_macvtap: entered promiscuous mode
[ 1043.635553][ T5117] veth0_macvtap: entered promiscuous mode
[ 1043.669964][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1043.680103][ T5117] veth1_macvtap: entered promiscuous mode
[ 1043.698028][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1043.717763][ T5121] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.726520][ T5121] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.746052][ T5121] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.755315][ T5121] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.782606][ T5115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1043.794782][ T5115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.808264][ T5115] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1043.845152][ T5130] veth0_macvtap: entered promiscuous mode
[ 1043.854606][ T5130] veth1_macvtap: entered promiscuous mode
[ 1043.861424][ T5115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1043.873638][ T5115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.884967][ T5115] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1043.909097][ T5117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1043.920151][ T5117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.931179][ T5117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1043.942818][ T5117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1043.953632][ T5117] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1043.972563][ T5115] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.981583][ T5115] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.991472][ T5115] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.000998][ T5115] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.027200][ T5181] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.035676][ T5181] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1044.040570][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.054214][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.064849][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.076010][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.085924][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.097509][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.108407][ T5130] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1044.116469][ T5117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.127245][ T5117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.137140][ T5117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.147585][ T5117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.158361][ T5117] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1044.165692][ T5132] veth0_vlan: entered promiscuous mode
[ 1044.178278][ T5132] veth1_vlan: entered promiscuous mode
[ 1044.201066][ T5181] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.210180][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.221131][ T5181] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1044.228976][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.239050][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.250424][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.260416][ T5130] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.270934][ T5130] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.281629][ T5130] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1044.299535][ T5117] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.308587][ T5117] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.319012][ T5117] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.328338][ T5117] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.344033][ T5130] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.353762][ T5130] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.363951][ T5130] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.372893][ T5130] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.416512][ T5116] veth0_vlan: entered promiscuous mode
[ 1044.447338][ T5185] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.455371][ T5185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
2023/08/05 12:39:47 executed programs: 6
[ 1044.479297][ T5132] veth0_macvtap: entered promiscuous mode
[ 1044.500604][ T5116] veth1_vlan: entered promiscuous mode
[ 1044.538420][ T5132] veth1_macvtap: entered promiscuous mode
[ 1044.598451][ T5116] veth0_macvtap: entered promiscuous mode
[ 1044.615191][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.629252][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.639297][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.652519][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.666180][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.679280][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.689957][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.701163][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.717074][ T5132] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1044.726090][ T5187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.738226][ T5187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1044.751256][ T5116] veth1_macvtap: entered promiscuous mode
[ 1044.796240][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.807887][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.818052][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.828700][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.838591][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.849090][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.859134][ T5132] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1044.870975][ T5132] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.881901][ T5132] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1044.892431][ T5132] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.902345][ T5132] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.912715][ T5132] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.921708][ T5132] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.935274][ T5225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.943253][ T5225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1044.964317][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1044.978789][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1044.994360][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1045.012332][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.022473][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1045.035528][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.046281][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1045.061582][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.071952][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1045.082614][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.094173][ T5116] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1045.113775][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1045.126183][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.138508][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1045.149161][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.159219][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1045.170451][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.180709][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1045.191609][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.203626][ T5116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1045.214335][ T5116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1045.226328][ T5116] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1045.239694][ T5255] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.260269][ T5255] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.274976][ T5116] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1045.283906][ T5116] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1045.293055][ T5116] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1045.304040][ T5116] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1045.315716][ T5183] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.332882][ T5183] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.365010][ T5249] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.375921][ T5249] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.427122][ T5182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.437019][ T5182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.449661][ T5128] Bluetooth: hci0: command 0x040f tx timeout
[ 1045.526978][ T5128] Bluetooth: hci1: command 0x040f tx timeout
[ 1045.526991][ T5120] Bluetooth: hci2: command 0x040f tx timeout
[ 1045.527003][ T5134] Bluetooth: hci3: command 0x040f tx timeout
[ 1045.561567][ T5182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.578186][ T5182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.599199][ T5187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.607536][ T5134] Bluetooth: hci5: command 0x040f tx timeout
[ 1045.613600][ T5128] Bluetooth: hci4: command 0x040f tx timeout
[ 1045.619902][ T5187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.634565][ T5183] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.662290][ T5183] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1047.526738][ T5134] Bluetooth: hci0: command 0x0419 tx timeout
[ 1047.606793][ T5134] Bluetooth: hci3: command 0x0419 tx timeout
[ 1047.606858][ T5122] Bluetooth: hci2: command 0x0419 tx timeout
[ 1047.612871][ T5128] Bluetooth: hci1: command 0x0419 tx timeout
[ 1047.686737][ T5122] Bluetooth: hci5: command 0x0419 tx timeout
[ 1047.693236][ T5120] Bluetooth: hci4: command 0x0419 tx timeout
2023/08/05 12:39:52 executed programs: 286
2023/08/05 12:39:57 executed programs: 649
[ 1054.569027][ T1236] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.575372][ T1236] ieee802154 phy1 wpan1: encryption failed: -22
2023/08/05 12:40:02 executed programs: 1024
2023/08/05 12:40:07 executed programs: 1395
2023/08/05 12:40:12 executed programs: 1775
2023/08/05 12:40:17 executed programs: 2146
2023/08/05 12:40:22 executed programs: 2462
[ 1084.454476][T19642] ==================================================================
[ 1084.462593][T19642] BUG: KASAN: slab-use-after-free in __list_add_valid+0xed/0x100
[ 1084.470515][T19642] Read of size 8 at addr ffff88807cb2b008 by task syz-executor.4/19642
[ 1084.478781][T19642] 
[ 1084.481116][T19642] CPU: 1 PID: 19642 Comm: syz-executor.4 Not tainted 6.5.0-rc4-next-20230804-syzkaller #0
[ 1084.491052][T19642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[ 1084.501126][T19642] Call Trace:
[ 1084.504416][T19642]  <TASK>
[ 1084.507359][T19642]  dump_stack_lvl+0xd9/0x1b0
[ 1084.512050][T19642]  print_report+0xc4/0x620
[ 1084.516532][T19642]  ? __virt_addr_valid+0x5e/0x2d0
[ 1084.521604][T19642]  ? __phys_addr+0xc6/0x140
[ 1084.526147][T19642]  kasan_report+0xda/0x110
[ 1084.530606][T19642]  ? __list_add_valid+0xed/0x100
[ 1084.535588][T19642]  ? __list_add_valid+0xed/0x100
[ 1084.540572][T19642]  __list_add_valid+0xed/0x100
[ 1084.545378][T19642]  nfc_llcp_register_device+0x7a3/0x9d0
[ 1084.551049][T19642]  nfc_register_device+0x6d/0x3c0
[ 1084.556107][T19642]  nci_register_device+0x7f4/0xb80
[ 1084.561245][T19642]  ? nci_init_complete_req+0x410/0x410
[ 1084.566733][T19642]  ? lockdep_init_map_type+0x16d/0x7c0
[ 1084.572267][T19642]  virtual_ncidev_open+0x147/0x220
[ 1084.577497][T19642]  ? virtual_ncidev_read+0x4e0/0x4e0
[ 1084.582815][T19642]  misc_open+0x3da/0x4c0
[ 1084.587128][T19642]  ? misc_devnode+0x120/0x120
[ 1084.591832][T19642]  chrdev_open+0x277/0x700
[ 1084.596313][T19642]  ? __unregister_chrdev+0x100/0x100
[ 1084.601657][T19642]  ? fsnotify_perm.part.0+0x25d/0x630
[ 1084.607095][T19642]  ? fsnotify_perm.part.0+0x268/0x630
[ 1084.612518][T19642]  do_dentry_open+0x88b/0x1780
[ 1084.617319][T19642]  ? __unregister_chrdev+0x100/0x100
[ 1084.622650][T19642]  ? may_open+0x1f2/0x400
[ 1084.627019][T19642]  path_openat+0x19af/0x29c0
[ 1084.631659][T19642]  ? path_lookupat+0x770/0x770
[ 1084.636561][T19642]  do_filp_open+0x1de/0x430
[ 1084.641113][T19642]  ? may_open_dev+0xf0/0xf0
[ 1084.645656][T19642]  ? expand_files+0x442/0x910
[ 1084.650381][T19642]  ? _raw_spin_unlock+0x28/0x40
[ 1084.655428][T19642]  ? alloc_fd+0x2da/0x6c0
[ 1084.659804][T19642]  do_sys_openat2+0x176/0x1e0
[ 1084.664518][T19642]  ? build_open_flags+0x690/0x690
[ 1084.669582][T19642]  ? xfd_validate_state+0x5d/0x180
[ 1084.674861][T19642]  __x64_sys_openat+0x175/0x210
[ 1084.679750][T19642]  ? __ia32_sys_open+0x1e0/0x1e0
[ 1084.684728][T19642]  ? rcu_is_watching+0x12/0xb0
[ 1084.689515][T19642]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 1084.695561][T19642]  do_syscall_64+0x38/0xb0
[ 1084.700070][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1084.706060][T19642] RIP: 0033:0x7f359be7cae9
[ 1084.710581][T19642] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1084.730396][T19642] RSP: 002b:00007f359cbbd0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1084.738835][T19642] RAX: ffffffffffffffda RBX: 00007f359bf9bf80 RCX: 00007f359be7cae9
[ 1084.746827][T19642] RDX: 0000000000000002 RSI: 0000000020000700 RDI: ffffffffffffff9c
[ 1084.754820][T19642] RBP: 00007f359bec847a R08: 0000000000000000 R09: 0000000000000000
[ 1084.762817][T19642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1084.770810][T19642] R13: 000000000000000b R14: 00007f359bf9bf80 R15: 00007ffc8b607958
[ 1084.778813][T19642]  </TASK>
[ 1084.781846][T19642] 
[ 1084.784175][T19642] Allocated by task 19640:
[ 1084.788599][T19642]  kasan_save_stack+0x33/0x50
[ 1084.793315][T19642]  kasan_set_track+0x25/0x30
[ 1084.797946][T19642]  __kasan_kmalloc+0xa2/0xb0
[ 1084.802571][T19642]  nfc_llcp_register_device+0x47/0x9d0
[ 1084.808082][T19642]  nfc_register_device+0x6d/0x3c0
[ 1084.813140][T19642]  nci_register_device+0x7f4/0xb80
[ 1084.818285][T19642]  virtual_ncidev_open+0x147/0x220
[ 1084.823438][T19642]  misc_open+0x3da/0x4c0
[ 1084.827704][T19642]  chrdev_open+0x277/0x700
[ 1084.832239][T19642]  do_dentry_open+0x88b/0x1780
[ 1084.837050][T19642]  path_openat+0x19af/0x29c0
[ 1084.841669][T19642]  do_filp_open+0x1de/0x430
[ 1084.846207][T19642]  do_sys_openat2+0x176/0x1e0
[ 1084.850920][T19642]  __x64_sys_openat+0x175/0x210
[ 1084.855810][T19642]  do_syscall_64+0x38/0xb0
[ 1084.860263][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1084.866200][T19642] 
[ 1084.868532][T19642] Freed by task 19636:
[ 1084.872608][T19642]  kasan_save_stack+0x33/0x50
[ 1084.877326][T19642]  kasan_set_track+0x25/0x30
[ 1084.881944][T19642]  kasan_save_free_info+0x2b/0x40
[ 1084.886990][T19642]  ____kasan_slab_free+0x15e/0x1b0
[ 1084.892141][T19642]  slab_free_freelist_hook+0x114/0x1e0
[ 1084.897633][T19642]  __kmem_cache_free+0xb8/0x2f0
[ 1084.902518][T19642]  nfc_llcp_local_put.part.0+0x88/0xb0
[ 1084.908012][T19642]  nfc_llcp_unregister_device+0x1db/0x2c0
[ 1084.913767][T19642]  nfc_unregister_device+0x194/0x330
[ 1084.919079][T19642]  virtual_ncidev_close+0x51/0xa0
[ 1084.924131][T19642]  __fput+0x3fd/0xac0
[ 1084.928136][T19642]  task_work_run+0x14d/0x240
[ 1084.932770][T19642]  exit_to_user_mode_prepare+0x210/0x240
[ 1084.938432][T19642]  syscall_exit_to_user_mode+0x1d/0x50
[ 1084.943917][T19642]  do_syscall_64+0x44/0xb0
[ 1084.948367][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1084.954296][T19642] 
[ 1084.956640][T19642] Last potentially related work creation:
[ 1084.962362][T19642]  kasan_save_stack+0x33/0x50
[ 1084.967084][T19642]  __kasan_record_aux_stack+0xbc/0xd0
[ 1084.972479][T19642]  insert_work+0x4a/0x330
[ 1084.976849][T19642]  __queue_work+0x5f5/0x1040
[ 1084.981466][T19642]  queue_work_on+0xed/0x110
[ 1084.986013][T19642]  rfkill_register+0x67f/0xb00
[ 1084.990901][T19642]  nfc_register_device+0x11f/0x3c0
[ 1084.996045][T19642]  nci_register_device+0x7f4/0xb80
[ 1085.001183][T19642]  virtual_ncidev_open+0x147/0x220
[ 1085.006334][T19642]  misc_open+0x3da/0x4c0
[ 1085.010604][T19642]  chrdev_open+0x277/0x700
[ 1085.015051][T19642]  do_dentry_open+0x88b/0x1780
[ 1085.019849][T19642]  path_openat+0x19af/0x29c0
[ 1085.024470][T19642]  do_filp_open+0x1de/0x430
[ 1085.029002][T19642]  do_sys_openat2+0x176/0x1e0
[ 1085.033722][T19642]  __x64_sys_openat+0x175/0x210
[ 1085.038612][T19642]  do_syscall_64+0x38/0xb0
[ 1085.043062][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1085.048990][T19642] 
[ 1085.051328][T19642] The buggy address belongs to the object at ffff88807cb2b000
[ 1085.051328][T19642]  which belongs to the cache kmalloc-2k of size 2048
[ 1085.065399][T19642] The buggy address is located 8 bytes inside of
[ 1085.065399][T19642]  freed 2048-byte region [ffff88807cb2b000, ffff88807cb2b800)
[ 1085.079133][T19642] 
[ 1085.081470][T19642] The buggy address belongs to the physical page:
[ 1085.087892][T19642] page:ffffea0001f2ca00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7cb28
[ 1085.098066][T19642] head:ffffea0001f2ca00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1085.107020][T19642] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1085.115019][T19642] page_type: 0xffffffff()
[ 1085.119371][T19642] raw: 00fff00000010200 ffff888012842000 dead000000000100 dead000000000122
[ 1085.127979][T19642] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000
[ 1085.136666][T19642] page dumped because: kasan: bad access detected
[ 1085.143117][T19642] page_owner tracks the page as allocated
[ 1085.148839][T19642] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5130, tgid 5130 (syz-executor.3), ts 1042989401008, free_ts 1042963273415
[ 1085.170152][T19642]  post_alloc_hook+0x2d2/0x350
[ 1085.174974][T19642]  get_page_from_freelist+0x10d7/0x31b0
[ 1085.180569][T19642]  __alloc_pages+0x1d0/0x4a0
[ 1085.185198][T19642]  alloc_pages+0x1a9/0x270
[ 1085.189653][T19642]  allocate_slab+0x24e/0x380
[ 1085.194278][T19642]  ___slab_alloc+0x8bc/0x1570
[ 1085.199082][T19642]  __slab_alloc.constprop.0+0x56/0xa0
[ 1085.204485][T19642]  __kmem_cache_alloc_node+0x137/0x350
[ 1085.209985][T19642]  __kmalloc_node_track_caller+0x50/0x100
[ 1085.215752][T19642]  kmalloc_reserve+0xef/0x270
[ 1085.220545][T19642]  pskb_expand_head+0x236/0x1170
[ 1085.225517][T19642]  netlink_trim+0x1eb/0x240
[ 1085.230138][T19642]  netlink_broadcast_filtered+0xc4/0xef0
[ 1085.235813][T19642]  nlmsg_notify+0x9e/0x220
[ 1085.240258][T19642]  rtmsg_ifinfo+0x16f/0x1a0
[ 1085.244855][T19642]  __dev_notify_flags+0x24a/0x2e0
[ 1085.250028][T19642] page last free stack trace:
[ 1085.254716][T19642]  free_unref_page_prepare+0x508/0xb90
[ 1085.260232][T19642]  free_unref_page+0x33/0x3b0
[ 1085.264943][T19642]  __unfreeze_partials+0x21d/0x240
[ 1085.270091][T19642]  qlist_free_all+0x6a/0x170
[ 1085.274708][T19642]  kasan_quarantine_reduce+0x18b/0x1d0
[ 1085.280195][T19642]  __kasan_slab_alloc+0x65/0x90
[ 1085.285086][T19642]  kmem_cache_alloc+0x172/0x3b0
[ 1085.289971][T19642]  getname_flags.part.0+0x50/0x4d0
[ 1085.295113][T19642]  getname_flags+0x9c/0xf0
[ 1085.299563][T19642]  vfs_fstatat+0x77/0xb0
[ 1085.303856][T19642]  __do_sys_newfstatat+0x98/0x110
[ 1085.308918][T19642]  do_syscall_64+0x38/0xb0
[ 1085.313369][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1085.319301][T19642] 
[ 1085.321634][T19642] Memory state around the buggy address:
[ 1085.327269][T19642]  ffff88807cb2af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1085.335347][T19642]  ffff88807cb2af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1085.343430][T19642] >ffff88807cb2b000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1085.351506][T19642]                       ^
2023/08/05 12:40:28 executed programs: 2843
[ 1085.355850][T19642]  ffff88807cb2b080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1085.363935][T19642]  ffff88807cb2b100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1085.372281][T19642] ==================================================================
[ 1085.405953][T19642] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1085.413286][T19642] CPU: 0 PID: 19642 Comm: syz-executor.4 Not tainted 6.5.0-rc4-next-20230804-syzkaller #0
[ 1085.423297][T19642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[ 1085.433516][T19642] Call Trace:
[ 1085.436898][T19642]  <TASK>
[ 1085.439847][T19642]  dump_stack_lvl+0xd9/0x1b0
[ 1085.444584][T19642]  panic+0x6a4/0x750
[ 1085.448513][T19642]  ? panic_smp_self_stop+0xa0/0xa0
[ 1085.453753][T19642]  ? preempt_schedule_thunk+0x1a/0x30
[ 1085.459197][T19642]  ? preempt_schedule_common+0x45/0xc0
[ 1085.464707][T19642]  check_panic_on_warn+0xab/0xb0
[ 1085.469689][T19642]  end_report+0x108/0x150
[ 1085.474059][T19642]  kasan_report+0xea/0x110
[ 1085.478521][T19642]  ? __list_add_valid+0xed/0x100
[ 1085.483516][T19642]  ? __list_add_valid+0xed/0x100
[ 1085.488506][T19642]  __list_add_valid+0xed/0x100
[ 1085.493325][T19642]  nfc_llcp_register_device+0x7a3/0x9d0
[ 1085.498930][T19642]  nfc_register_device+0x6d/0x3c0
[ 1085.504004][T19642]  nci_register_device+0x7f4/0xb80
[ 1085.509154][T19642]  ? nci_init_complete_req+0x410/0x410
[ 1085.514646][T19642]  ? lockdep_init_map_type+0x16d/0x7c0
[ 1085.520152][T19642]  virtual_ncidev_open+0x147/0x220
[ 1085.525305][T19642]  ? virtual_ncidev_read+0x4e0/0x4e0
[ 1085.530625][T19642]  misc_open+0x3da/0x4c0
[ 1085.534896][T19642]  ? misc_devnode+0x120/0x120
[ 1085.539594][T19642]  chrdev_open+0x277/0x700
[ 1085.544051][T19642]  ? __unregister_chrdev+0x100/0x100
[ 1085.549380][T19642]  ? fsnotify_perm.part.0+0x25d/0x630
[ 1085.554788][T19642]  ? fsnotify_perm.part.0+0x268/0x630
[ 1085.560206][T19642]  do_dentry_open+0x88b/0x1780
[ 1085.565013][T19642]  ? __unregister_chrdev+0x100/0x100
[ 1085.570340][T19642]  ? may_open+0x1f2/0x400
[ 1085.574703][T19642]  path_openat+0x19af/0x29c0
[ 1085.579332][T19642]  ? path_lookupat+0x770/0x770
[ 1085.584136][T19642]  do_filp_open+0x1de/0x430
[ 1085.588694][T19642]  ? may_open_dev+0xf0/0xf0
[ 1085.593231][T19642]  ? expand_files+0x442/0x910
[ 1085.597959][T19642]  ? _raw_spin_unlock+0x28/0x40
[ 1085.602850][T19642]  ? alloc_fd+0x2da/0x6c0
[ 1085.607553][T19642]  do_sys_openat2+0x176/0x1e0
[ 1085.612366][T19642]  ? build_open_flags+0x690/0x690
[ 1085.617437][T19642]  ? xfd_validate_state+0x5d/0x180
[ 1085.622592][T19642]  __x64_sys_openat+0x175/0x210
[ 1085.627490][T19642]  ? __ia32_sys_open+0x1e0/0x1e0
[ 1085.632472][T19642]  ? rcu_is_watching+0x12/0xb0
[ 1085.637265][T19642]  ? trace_irq_enable.constprop.0+0xd0/0x100
[ 1085.643286][T19642]  do_syscall_64+0x38/0xb0
[ 1085.647750][T19642]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 1085.653726][T19642] RIP: 0033:0x7f359be7cae9
[ 1085.658164][T19642] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 1085.677801][T19642] RSP: 002b:00007f359cbbd0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 1085.686252][T19642] RAX: ffffffffffffffda RBX: 00007f359bf9bf80 RCX: 00007f359be7cae9
[ 1085.694251][T19642] RDX: 0000000000000002 RSI: 0000000020000700 RDI: ffffffffffffff9c
[ 1085.702253][T19642] RBP: 00007f359bec847a R08: 0000000000000000 R09: 0000000000000000
[ 1085.710252][T19642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1085.718245][T19642] R13: 000000000000000b R14: 00007f359bf9bf80 R15: 00007ffc8b607958
[ 1085.726257][T19642]  </TASK>
[ 1085.729546][T19642] Kernel Offset: disabled
[ 1085.733869][T19642] Rebooting in 86400 seconds..