Warning: Permanently added '10.128.0.245' (ED25519) to the list of known hosts.
2026/04/04 05:38:07 parsed 1 programs
[   89.248414][ T5849] cgroup: Unknown subsys name 'net'
[   89.337774][ T5849] cgroup: Unknown subsys name 'cpuset'
[   89.347494][ T5849] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   91.070972][ T5849] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   92.039901][  T808] cfg80211: failed to load regulatory.db
[   94.361880][ T5863] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   94.725945][ T5874] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.735663][ T5874] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.744709][ T5874] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.753233][ T5874] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.761155][ T5874] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   95.322757][  T143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.335161][  T143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.378129][  T143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.387854][  T143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.839227][ T5929] chnl_net:caif_netlink_parms(): no params data found
[   97.938558][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.946864][ T5929] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.954232][ T5929] bridge_slave_0: entered allmulticast mode
[   97.962114][ T5929] bridge_slave_0: entered promiscuous mode
[   97.973088][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.981008][ T5929] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.988326][ T5929] bridge_slave_1: entered allmulticast mode
[   97.995771][ T5929] bridge_slave_1: entered promiscuous mode
[   98.026864][ T5929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.040621][ T5929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.073017][ T5929] team0: Port device team_slave_0 added
[   98.081094][ T5929] team0: Port device team_slave_1 added
[   98.108339][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.115518][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.141487][ T5929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.154473][ T5929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.161456][ T5929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   98.187817][ T5929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.232705][ T5929] hsr_slave_0: entered promiscuous mode
[   98.241024][ T5929] hsr_slave_1: entered promiscuous mode
[   98.399384][ T5929] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.412756][ T5929] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.425499][ T5929] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.438753][ T5929] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.474310][ T5929] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.481526][ T5929] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.489854][ T5929] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.497094][ T5929] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.559849][ T5929] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.583366][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.592833][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.609860][ T5929] 8021q: adding VLAN 0 to HW filter on device team0
[   98.624220][ T1108] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.631752][ T1108] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.649138][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.656327][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.853356][ T5929] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.903118][ T5929] veth0_vlan: entered promiscuous mode
[   98.921088][ T5929] veth1_vlan: entered promiscuous mode
[   98.952918][ T5929] veth0_macvtap: entered promiscuous mode
[   98.962830][ T5929] veth1_macvtap: entered promiscuous mode
[   98.981827][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.998378][ T5929] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.014899][  T143] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.024699][  T143] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.038458][  T143] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.047599][  T143] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.188933][  T143] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.272649][  T143] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.341271][  T143] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.421415][  T143] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/04 05:38:22 executed programs: 0
[   99.763286][ T5874] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.773466][ T5874] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.781859][ T5874] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.791148][ T5874] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.801284][ T5874] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.977755][ T5954] chnl_net:caif_netlink_parms(): no params data found
[  100.058673][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.066135][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.073381][ T5954] bridge_slave_0: entered allmulticast mode
[  100.080834][ T5954] bridge_slave_0: entered promiscuous mode
[  100.090161][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.097503][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.104992][ T5954] bridge_slave_1: entered allmulticast mode
[  100.112370][ T5954] bridge_slave_1: entered promiscuous mode
[  100.146773][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.158709][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.192251][ T5954] team0: Port device team_slave_0 added
[  100.201125][ T5954] team0: Port device team_slave_1 added
[  100.233657][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.240675][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.266710][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.280114][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.287270][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  100.313221][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.382915][ T5954] hsr_slave_0: entered promiscuous mode
[  100.389677][ T5954] hsr_slave_1: entered promiscuous mode
[  100.396432][ T5954] debugfs: 'hsr0' already exists in 'hsr'
[  100.402843][ T5954] Cannot create hsr debugfs directory
[  101.861727][  T143] bridge_slave_1: left allmulticast mode
[  101.868768][  T143] bridge_slave_1: left promiscuous mode
[  101.876206][ T5165] Bluetooth: hci0: command tx timeout
[  101.883399][  T143] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.897888][  T143] bridge_slave_0: left allmulticast mode
[  101.903665][  T143] bridge_slave_0: left promiscuous mode
[  101.910255][  T143] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.100191][  T143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  102.111876][  T143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  102.122258][  T143] bond0 (unregistering): Released all slaves
[  102.230888][  T143] hsr_slave_0: left promiscuous mode
[  102.237450][  T143] hsr_slave_1: left promiscuous mode
[  102.249246][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.257055][  T143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.265817][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.273268][  T143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.293611][  T143] veth1_macvtap: left promiscuous mode
[  102.299773][  T143] veth0_macvtap: left promiscuous mode
[  102.305938][  T143] veth1_vlan: left promiscuous mode
[  102.311726][  T143] veth0_vlan: left promiscuous mode
[  102.625281][  T143] team0 (unregistering): Port device team_slave_1 removed
[  102.656368][  T143] team0 (unregistering): Port device team_slave_0 removed
[  103.120866][ T5954] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  103.147343][ T5954] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  103.161238][ T5954] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  103.174584][ T5954] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  103.291018][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.319213][ T5954] 8021q: adding VLAN 0 to HW filter on device team0
[  103.401368][ T1108] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.408645][ T1108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.423464][ T1108] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.430727][ T1108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.757224][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.817714][ T5954] veth0_vlan: entered promiscuous mode
[  103.838452][ T5954] veth1_vlan: entered promiscuous mode
[  103.881487][ T5954] veth0_macvtap: entered promiscuous mode
[  103.894247][ T5954] veth1_macvtap: entered promiscuous mode
[  103.921533][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.943336][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.957281][ T5165] Bluetooth: hci0: command tx timeout
[  103.968310][  T135] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.991714][  T135] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.020823][  T135] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.048859][  T135] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.095042][  T143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.107566][  T143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.155818][  T135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.165319][  T135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.226554][ T6014] lo speed is unknown, defaulting to 1000
[  104.235211][ T6014] lo speed is unknown, defaulting to 1000
[  104.242208][ T6014] lo speed is unknown, defaulting to 1000
[  104.392065][ T6014] infiniband syz0: set active
[  104.397642][ T6014] infiniband syz0: added lo
[  104.402315][ T5946] lo speed is unknown, defaulting to 1000
[  104.420791][ T6014] smbdirect: ib_dev[syz0]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000
[  104.437155][ T6014] smbdirect: ib_dev[syz0]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32
[  104.454530][ T6014] smbdirect: ib_dev[syz0]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005
[  104.485313][ T6014] RDS/IB: syz0: added
[  104.491332][ T6014] smc: adding ib device syz0 with port count 1
[  104.498688][ T6014] smc:    ib device syz0 port 1 has no pnetid
[  104.506789][ T6012] lo speed is unknown, defaulting to 1000
[  104.517232][ T6014] lo speed is unknown, defaulting to 1000
2026/04/04 05:38:27 executed programs: 3
[  104.699634][ T6016] syz0: rxe_newlink: already configured on lo
[  104.719738][ T6017] syz0: rxe_newlink: already configured on lo
[  104.741463][ T6018] syz0: rxe_newlink: already configured on lo
[  104.766466][ T6019] syz0: rxe_newlink: already configured on lo
[  104.787569][ T6020] syz0: rxe_newlink: already configured on lo
[  104.811800][ T6021] syz0: rxe_newlink: already configured on lo
[  104.830838][ T6022] syz0: rxe_newlink: already configured on lo
[  104.861261][ T6023] syz0: rxe_newlink: already configured on lo
[  104.885710][ T6024] syz0: rxe_newlink: already configured on lo
[  104.906089][ T6025] syz0: rxe_newlink: already configured on lo
[  106.034996][ T5165] Bluetooth: hci0: command tx timeout
[  108.115147][ T5165] Bluetooth: hci0: command tx timeout
2026/04/04 05:38:32 executed programs: 255
[  109.709885][ T6269] rxe_newlink: 242 callbacks suppressed
[  109.709900][ T6269] syz0: rxe_newlink: already configured on lo
[  109.740269][ T6270] syz0: rxe_newlink: already configured on lo
[  109.761790][ T6271] syz0: rxe_newlink: already configured on lo
[  109.782296][ T6272] syz0: rxe_newlink: already configured on lo
[  109.807406][ T6273] syz0: rxe_newlink: already configured on lo
[  109.826486][ T6274] syz0: rxe_newlink: already configured on lo
[  109.850387][ T6275] syz0: rxe_newlink: already configured on lo
[  109.871265][ T6276] syz0: rxe_newlink: already configured on lo
[  109.894749][ T6277] syz0: rxe_newlink: already configured on lo
[  109.914406][ T6278] syz0: rxe_newlink: already configured on lo
[  114.730169][ T6528] rxe_newlink: 247 callbacks suppressed
[  114.730185][ T6528] syz0: rxe_newlink: already configured on lo
[  114.757189][ T6529] syz0: rxe_newlink: already configured on lo
2026/04/04 05:38:37 executed programs: 513
[  114.777343][ T6530] syz0: rxe_newlink: already configured on lo
[  114.802288][ T6531] syz0: rxe_newlink: already configured on lo
[  114.823282][ T6532] syz0: rxe_newlink: already configured on lo
[  114.842345][ T6533] syz0: rxe_newlink: already configured on lo
[  114.870817][ T6534] syz0: rxe_newlink: already configured on lo
[  114.893488][ T6535] syz0: rxe_newlink: already configured on lo
[  114.912940][ T6536] syz0: rxe_newlink: already configured on lo
[  114.940105][ T6537] syz0: rxe_newlink: already configured on lo
[  116.559268][ T5874] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  116.573205][ T5874] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  116.582604][ T5874] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  116.597403][ T5874] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  116.607470][ T5874] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  116.644897][ T6619] lo speed is unknown, defaulting to 1000
[  116.774557][  T143] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.870658][  T143] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.961470][  T143] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.986335][ T6619] chnl_net:caif_netlink_parms(): no params data found
[  117.034168][  T143] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.102158][ T6619] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.109513][ T6619] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.117128][ T6619] bridge_slave_0: entered allmulticast mode
[  117.126891][ T6619] bridge_slave_0: entered promiscuous mode
[  117.137327][ T6619] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.144894][ T6619] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.152184][ T6619] bridge_slave_1: entered allmulticast mode
[  117.159744][ T6619] bridge_slave_1: entered promiscuous mode
[  117.207439][ T6619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  117.219971][ T6619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.281741][ T6619] team0: Port device team_slave_0 added
[  117.292777][ T6619] team0: Port device team_slave_1 added
[  117.337137][  T143] bridge_slave_1: left allmulticast mode
[  117.342915][  T143] bridge_slave_1: left promiscuous mode
[  117.348874][  T143] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.358960][  T143] bridge_slave_0: left allmulticast mode
[  117.365133][  T143] bridge_slave_0: left promiscuous mode
[  117.371496][  T143] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.560846][  T143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.572053][  T143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.582233][  T143] bond0 (unregistering): Released all slaves
[  117.593417][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.600946][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.627733][ T6619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.655901][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.662964][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.689762][ T6619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.765467][ T6619] hsr_slave_0: entered promiscuous mode
[  117.771861][ T6619] hsr_slave_1: entered promiscuous mode
[  118.263246][  T143] hsr_slave_0: left promiscuous mode
[  118.292561][  T143] hsr_slave_1: left promiscuous mode
[  118.298793][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.307785][  T143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.316641][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.324350][  T143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.338268][  T143] veth1_macvtap: left promiscuous mode
[  118.343883][  T143] veth0_macvtap: left promiscuous mode
[  118.349543][  T143] veth1_vlan: left promiscuous mode
[  118.355072][  T143] veth0_vlan: left promiscuous mode
[  118.591737][  T143] team0 (unregistering): Port device team_slave_1 removed
[  118.620911][  T143] team0 (unregistering): Port device team_slave_0 removed
[  118.673771][ T5165] Bluetooth: hci1: command tx timeout
[  118.745194][  T135] smc: removing ib device syz0
[  118.790215][  T135] smbdirect: ib_dev[syz0] removed
[  118.820508][ T6012] lo speed is unknown, defaulting to 1000
[  118.830703][ T6012] syz0: Port: 1 Link DOWN
[  119.431333][  T135] ==================================================================
[  119.439461][  T135] BUG: KASAN: invalid-free in gid_table_release_one+0x384/0x470
[  119.447163][  T135] Free of addr ffff888031df40d8 by task kworker/u8:5/135
[  119.454213][  T135] 
[  119.456591][  T135] CPU: 1 UID: 0 PID: 135 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[  119.456615][  T135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  119.456628][  T135] Workqueue: ib-unreg-wq ib_unregister_work
[  119.456671][  T135] Call Trace:
[  119.456679][  T135]  <TASK>
[  119.456688][  T135]  dump_stack_lvl+0xe8/0x150
[  119.456718][  T135]  print_address_description+0x55/0x1e0
[  119.456746][  T135]  print_report+0x58/0x70
[  119.456771][  T135]  ? gid_table_release_one+0x384/0x470
[  119.456791][  T135]  kasan_report_invalid_free+0xea/0x110
[  119.456813][  T135]  ? gid_table_release_one+0x384/0x470
[  119.456837][  T135]  free_large_kmalloc+0x3c/0x110
[  119.456857][  T135]  gid_table_release_one+0x384/0x470
[  119.456898][  T135]  ib_device_release+0xd2/0x1c0
[  119.456927][  T135]  ? __pfx_ib_device_release+0x10/0x10
[  119.456955][  T135]  device_release+0xc4/0x1f0
[  119.456978][  T135]  kobject_put+0x228/0x560
[  119.457008][  T135]  ? process_scheduled_works+0xa70/0x1860
[  119.457037][  T135]  process_scheduled_works+0xb5d/0x1860
[  119.457080][  T135]  ? __pfx_process_scheduled_works+0x10/0x10
[  119.457112][  T135]  ? assign_work+0x3d5/0x5e0
[  119.457141][  T135]  worker_thread+0xa53/0xfc0
[  119.457182][  T135]  kthread+0x388/0x470
[  119.457203][  T135]  ? __pfx_worker_thread+0x10/0x10
[  119.457229][  T135]  ? __pfx_kthread+0x10/0x10
[  119.457251][  T135]  ret_from_fork+0x514/0xb70
[  119.457280][  T135]  ? __pfx_ret_from_fork+0x10/0x10
[  119.457319][  T135]  ? __switch_to+0xc79/0x1410
[  119.457343][  T135]  ? __pfx_kthread+0x10/0x10
[  119.457365][  T135]  ret_from_fork_asm+0x1a/0x30
[  119.457390][  T135]  </TASK>
[  119.457397][  T135] 
[  119.619045][  T135] The buggy address belongs to the physical page:
[  119.625486][  T135] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888031df6400 pfn:0x31df4
[  119.635569][  T135] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  119.644079][  T135] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  119.651655][  T135] page_type: f8(unknown)
[  119.655915][  T135] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  119.664521][  T135] raw: ffff888031df6400 0000000000000000 00000000f8000000 0000000000000000
[  119.673136][  T135] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  119.681834][  T135] head: ffff888031df6400 0000000000000000 00000000f8000000 0000000000000000
[  119.690542][  T135] head: 00fff00000000002 ffffffffffffff01 00000000ffffffff 00000000ffffffff
[  119.699225][  T135] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  119.707913][  T135] page dumped because: kasan: bad access detected
[  119.714383][  T135] page_owner tracks the page as allocated
[  119.720118][  T135] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x40dc0(GFP_KERNEL|__GFP_ZERO|__GFP_COMP), pid 6014, tgid 6014 (syz.0.17), ts 104232866803, free_ts 104206790295
[  119.737881][  T135]  post_alloc_hook+0x231/0x280
[  119.742681][  T135]  get_page_from_freelist+0x24ba/0x2540
[  119.748245][  T135]  __alloc_frozen_pages_noprof+0x18d/0x380
[  119.754068][  T135]  alloc_pages_mpol+0x235/0x490
[  119.758937][  T135]  ___kmalloc_large_node+0x4e/0x120
[  119.764155][  T135]  __kmalloc_large_node_noprof+0x18/0x90
[  119.769817][  T135]  __kmalloc_noprof+0x3e8/0x760
[  119.774699][  T135]  ib_cache_setup_one+0x198/0x570
[  119.779740][  T135]  ib_register_device+0xfbd/0x13e0
[  119.784873][  T135]  rxe_register_device+0x1e3/0x350
[  119.790009][  T135]  rxe_net_add+0x81/0x110
[  119.794368][  T135]  rxe_newlink+0xf4/0x1c0
[  119.798851][  T135]  nldev_newlink+0x5bc/0x650
[  119.803492][  T135]  rdma_nl_rcv+0x6d1/0xa10
[  119.807944][  T135]  netlink_unicast+0x80f/0x9b0
[  119.812748][  T135]  netlink_sendmsg+0x813/0xb40
[  119.817551][  T135] page last free pid 5954 tgid 5954 stack trace:
[  119.823981][  T135]  __free_frozen_pages+0xbc7/0xd30
[  119.829126][  T135]  __slab_free+0x274/0x2c0
[  119.833566][  T135]  qlist_free_all+0x99/0x100
[  119.838183][  T135]  kasan_quarantine_reduce+0x148/0x160
[  119.843671][  T135]  __kasan_slab_alloc+0x22/0x80
[  119.848541][  T135]  __kmalloc_node_noprof+0x498/0x7c0
[  119.853871][  T135]  __vmalloc_node_range_noprof+0x5ef/0x1750
[  119.859791][  T135]  vzalloc_noprof+0xb2/0xe0
[  119.864317][  T135]  alloc_counters+0x64/0x5d0
[  119.868932][  T135]  do_ip6t_get_ctl+0xabd/0x1230
[  119.873806][  T135]  nf_getsockopt+0x26e/0x290
[  119.878420][  T135]  ipv6_getsockopt+0x1fd/0x2b0
[  119.883200][  T135]  do_sock_getsockopt+0x2d3/0x3f0
[  119.888243][  T135]  __x64_sys_getsockopt+0x1a4/0x240
[  119.893457][  T135]  do_syscall_64+0x15f/0xf80
[  119.898075][  T135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.903989][  T135] 
[  119.906328][  T135] Memory state around the buggy address:
[  119.911977][  T135]  ffff888031df3f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  119.920065][  T135]  ffff888031df4000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  119.928143][  T135] >ffff888031df4080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  119.936212][  T135]                                                     ^
[  119.943156][  T135]  ffff888031df4100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  119.951231][  T135]  ffff888031df4180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  119.959300][  T135] ==================================================================
[  119.990041][  T135] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  119.997305][  T135] CPU: 1 UID: 0 PID: 135 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[  120.006709][  T135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  120.016811][  T135] Workqueue: ib-unreg-wq ib_unregister_work
[  120.022782][  T135] Call Trace:
[  120.026124][  T135]  <TASK>
[  120.029092][  T135]  vpanic+0x56c/0xa60
[  120.033119][  T135]  ? __pfx_vpanic+0x10/0x10
[  120.037640][  T135]  ? __pfx___schedule+0x10/0x10
[  120.042517][  T135]  panic+0xc5/0xd0
[  120.046261][  T135]  ? __pfx_panic+0x10/0x10
[  120.050695][  T135]  ? preempt_schedule_common+0x82/0xd0
[  120.056204][  T135]  check_panic_on_warn+0x89/0xb0
[  120.061167][  T135]  end_report+0x73/0x170
[  120.065598][  T135]  ? gid_table_release_one+0x384/0x470
[  120.071086][  T135]  kasan_report_invalid_free+0xfa/0x110
[  120.076681][  T135]  ? gid_table_release_one+0x384/0x470
[  120.082165][  T135]  free_large_kmalloc+0x3c/0x110
[  120.087130][  T135]  gid_table_release_one+0x384/0x470
[  120.092437][  T135]  ib_device_release+0xd2/0x1c0
[  120.097318][  T135]  ? __pfx_ib_device_release+0x10/0x10
[  120.102811][  T135]  device_release+0xc4/0x1f0
[  120.107424][  T135]  kobject_put+0x228/0x560
[  120.111875][  T135]  ? process_scheduled_works+0xa70/0x1860
[  120.117628][  T135]  process_scheduled_works+0xb5d/0x1860
[  120.123304][  T135]  ? __pfx_process_scheduled_works+0x10/0x10
[  120.129313][  T135]  ? assign_work+0x3d5/0x5e0
[  120.133934][  T135]  worker_thread+0xa53/0xfc0
[  120.138572][  T135]  kthread+0x388/0x470
[  120.142663][  T135]  ? __pfx_worker_thread+0x10/0x10
[  120.147805][  T135]  ? __pfx_kthread+0x10/0x10
[  120.152413][  T135]  ret_from_fork+0x514/0xb70
[  120.157032][  T135]  ? __pfx_ret_from_fork+0x10/0x10
[  120.162173][  T135]  ? __switch_to+0xc79/0x1410
[  120.166871][  T135]  ? __pfx_kthread+0x10/0x10
[  120.171484][  T135]  ret_from_fork_asm+0x1a/0x30
[  120.176271][  T135]  </TASK>
[  120.180180][  T135] Kernel Offset: disabled
[  120.184528][  T135] Rebooting in 86400 seconds..