Warning: Permanently added '10.128.0.121' (ED25519) to the list of known hosts.
2025/07/20 20:59:14 ignoring optional flag "sandboxArg"="0"
2025/07/20 20:59:14 parsed 1 programs
[ 378.302335][ T30] audit: type=1400 audit(1753045154.811:63): avc: denied { node_bind } for pid=5872 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 380.174813][ T30] audit: type=1400 audit(1753045156.681:64): avc: denied { mounton } for pid=5880 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 380.178245][ T5880] cgroup: Unknown subsys name 'net'
[ 380.197588][ T30] audit: type=1400 audit(1753045156.681:65): avc: denied { mount } for pid=5880 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 380.226596][ T30] audit: type=1400 audit(1753045156.741:66): avc: denied { unmount } for pid=5880 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 380.362547][ T5880] cgroup: Unknown subsys name 'cpuset'
[ 380.370459][ T5880] cgroup: Unknown subsys name 'rlimit'
[ 380.485418][ T30] audit: type=1400 audit(1753045156.991:67): avc: denied { setattr } for pid=5880 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 380.514899][ T30] audit: type=1400 audit(1753045156.991:68): avc: denied { create } for pid=5880 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 380.541681][ T30] audit: type=1400 audit(1753045156.991:69): avc: denied { write } for pid=5880 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 380.562079][ T30] audit: type=1400 audit(1753045156.991:70): avc: denied { read } for pid=5880 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 380.582411][ T30] audit: type=1400 audit(1753045156.991:71): avc: denied { mounton } for pid=5880 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 380.607360][ T30] audit: type=1400 audit(1753045156.991:72): avc: denied { mount } for pid=5880 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 380.649707][ T5884] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
[ 381.531349][ T5880] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 383.105720][ T5892] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 384.112261][ T30] kauditd_printk_skb: 29 callbacks suppressed
[ 384.112276][ T30] audit: type=1400 audit(1753045160.621:102): avc: denied { module_request } for pid=5908 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 384.254451][ T5908] chnl_net:caif_netlink_parms(): no params data found
[ 384.390649][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 384.398555][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 384.574769][ T5908] bridge0: port 1(bridge_slave_0) entered blocking state
[ 384.582484][ T5908] bridge0: port 1(bridge_slave_0) entered disabled state
[ 384.589631][ T5908] bridge_slave_0: entered allmulticast mode
[ 384.601616][ T5908] bridge_slave_0: entered promiscuous mode
[ 384.610203][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 384.618030][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 384.634860][ T5908] bridge0: port 2(bridge_slave_1) entered blocking state
[ 384.643191][ T5908] bridge0: port 2(bridge_slave_1) entered disabled state
[ 384.656872][ T5908] bridge_slave_1: entered allmulticast mode
[ 384.664322][ T5908] bridge_slave_1: entered promiscuous mode
[ 384.764760][ T5908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 384.802863][ T5908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 384.830710][ T30] audit: type=1400 audit(1753045161.331:103): avc: denied { create } for pid=5949 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 384.863779][ T5950] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 384.868659][ T30] audit: type=1400 audit(1753045161.331:104): avc: denied { read write } for pid=5949 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[ 384.879050][ T5950] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 384.913323][ T30] audit: type=1400 audit(1753045161.331:105): avc: denied { open } for pid=5949 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[ 384.927128][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 384.937429][ T30] audit: type=1400 audit(1753045161.371:106): avc: denied { ioctl } for pid=5949 comm="syz-executor" path="socket:[4951]" dev="sockfs" ino=4951 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 384.948335][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 384.979462][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 385.097876][ T5908] team0: Port device team_slave_0 added
[ 385.108470][ T5908] team0: Port device team_slave_1 added
[ 385.216913][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 385.224971][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 385.251290][ T5908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 385.273067][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 385.280013][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 385.306095][ T5908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 385.369723][ T5908] hsr_slave_0: entered promiscuous mode
[ 385.376894][ T5908] hsr_slave_1: entered promiscuous mode
[ 385.704218][ T5908] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 385.714741][ T5908] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 385.723855][ T5908] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 385.747373][ T5908] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 385.819053][ T5908] 8021q: adding VLAN 0 to HW filter on device bond0
[ 385.834256][ T5908] 8021q: adding VLAN 0 to HW filter on device team0
[ 385.857712][ T5928] bridge0: port 1(bridge_slave_0) entered blocking state
[ 385.865001][ T5928] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 385.878886][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[ 385.886064][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 385.955219][ T30] audit: type=1400 audit(1753045162.461:107): avc: denied { sys_module } for pid=5908 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 386.028904][ T5908] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 386.058457][ T5908] veth0_vlan: entered promiscuous mode
[ 386.068201][ T5908] veth1_vlan: entered promiscuous mode
[ 386.089822][ T5908] veth0_macvtap: entered promiscuous mode
[ 386.098642][ T5908] veth1_macvtap: entered promiscuous mode
[ 386.112060][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 386.126689][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 386.136653][ T5908] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 386.145452][ T5908] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 386.154690][ T5908] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 386.164135][ T5908] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/07/20 20:59:22 executed programs: 0
[ 386.326560][ T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 386.341226][ T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 386.349460][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 386.357048][ T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 386.379926][ T5950] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 386.392501][ T5950] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 386.401952][ T5993] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 386.411046][ T5993] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 386.418772][ T5995] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 386.422516][ T5993] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 386.428268][ T5997] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 386.440495][ T5995] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 386.440858][ T5993] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 386.448169][ T5995] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 386.455643][ T5993] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 386.462506][ T5995] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 386.468696][ T5999] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 386.475968][ T5997] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 386.483163][ T5999] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 386.495793][ T5995] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 386.500163][ T5999] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 386.503824][ T5995] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 386.510462][ T5993] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 386.526969][ T51] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 386.534973][ T51] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 386.956805][ T1148] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 387.007489][ T5984] chnl_net:caif_netlink_parms(): no params data found
[ 387.058584][ T1148] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 387.159408][ T1148] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 387.179163][ T5991] chnl_net:caif_netlink_parms(): no params data found
[ 387.190415][ T5983] chnl_net:caif_netlink_parms(): no params data found
[ 387.235535][ T5984] bridge0: port 1(bridge_slave_0) entered blocking state
[ 387.242753][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[ 387.249854][ T5984] bridge_slave_0: entered allmulticast mode
[ 387.257233][ T5984] bridge_slave_0: entered promiscuous mode
[ 387.269311][ T5984] bridge0: port 2(bridge_slave_1) entered blocking state
[ 387.276461][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[ 387.283661][ T5984] bridge_slave_1: entered allmulticast mode
[ 387.291508][ T5984] bridge_slave_1: entered promiscuous mode
[ 387.321726][ T5981] chnl_net:caif_netlink_parms(): no params data found
[ 387.347601][ T5994] chnl_net:caif_netlink_parms(): no params data found
[ 387.361053][ T5984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 387.372965][ T5984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 387.451759][ T5984] team0: Port device team_slave_0 added
[ 387.479794][ T5984] team0: Port device team_slave_1 added
[ 387.549294][ T5991] bridge0: port 1(bridge_slave_0) entered blocking state
[ 387.557929][ T5991] bridge0: port 1(bridge_slave_0) entered disabled state
[ 387.565836][ T5991] bridge_slave_0: entered allmulticast mode
[ 387.573390][ T5991] bridge_slave_0: entered promiscuous mode
[ 387.586917][ T5983] bridge0: port 1(bridge_slave_0) entered blocking state
[ 387.594155][ T5983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 387.601557][ T5983] bridge_slave_0: entered allmulticast mode
[ 387.608172][ T5983] bridge_slave_0: entered promiscuous mode
[ 387.615441][ T5983] bridge0: port 2(bridge_slave_1) entered blocking state
[ 387.623303][ T5983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 387.630569][ T5983] bridge_slave_1: entered allmulticast mode
[ 387.637149][ T5983] bridge_slave_1: entered promiscuous mode
[ 387.654666][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 387.661803][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 387.687875][ T5984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 387.699333][ T5991] bridge0: port 2(bridge_slave_1) entered blocking state
[ 387.706695][ T5991] bridge0: port 2(bridge_slave_1) entered disabled state
[ 387.714217][ T5991] bridge_slave_1: entered allmulticast mode
[ 387.721709][ T5991] bridge_slave_1: entered promiscuous mode
[ 387.728000][ T5981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 387.735302][ T5981] bridge0: port 1(bridge_slave_0) entered disabled state
[ 387.742483][ T5981] bridge_slave_0: entered allmulticast mode
[ 387.749122][ T5981] bridge_slave_0: entered promiscuous mode
[ 387.782338][ T5994] bridge0: port 1(bridge_slave_0) entered blocking state
[ 387.789438][ T5994] bridge0: port 1(bridge_slave_0) entered disabled state
[ 387.796726][ T5994] bridge_slave_0: entered allmulticast mode
[ 387.804035][ T5994] bridge_slave_0: entered promiscuous mode
[ 387.814366][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 387.821525][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 387.847562][ T5984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 387.870131][ T5981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 387.877219][ T5981] bridge0: port 2(bridge_slave_1) entered disabled state
[ 387.884544][ T5981] bridge_slave_1: entered allmulticast mode
[ 387.891794][ T5981] bridge_slave_1: entered promiscuous mode
[ 387.909595][ T5983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 387.921983][ T5983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 387.931280][ T5994] bridge0: port 2(bridge_slave_1) entered blocking state
[ 387.938349][ T5994] bridge0: port 2(bridge_slave_1) entered disabled state
[ 387.945809][ T5994] bridge_slave_1: entered allmulticast mode
[ 387.952449][ T5994] bridge_slave_1: entered promiscuous mode
[ 387.977949][ T5991] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 387.999373][ T5981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 388.034410][ T5994] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 388.046669][ T5991] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 388.066815][ T5981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 388.078291][ T5983] team0: Port device team_slave_0 added
[ 388.086514][ T5983] team0: Port device team_slave_1 added
[ 388.094029][ T5994] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 388.170521][ T5994] team0: Port device team_slave_0 added
[ 388.179513][ T5984] hsr_slave_0: entered promiscuous mode
[ 388.186035][ T5984] hsr_slave_1: entered promiscuous mode
[ 388.192391][ T5984] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 388.203347][ T5984] Cannot create hsr debugfs directory
[ 388.211146][ T5991] team0: Port device team_slave_0 added
[ 388.218976][ T5981] team0: Port device team_slave_0 added
[ 388.233362][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 388.240418][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.267284][ T5983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 388.282034][ T5994] team0: Port device team_slave_1 added
[ 388.292751][ T1148] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 388.306500][ T5991] team0: Port device team_slave_1 added
[ 388.323707][ T5981] team0: Port device team_slave_1 added
[ 388.339497][ T5991] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 388.346559][ T5991] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.372796][ T5991] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 388.395696][ T5983] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 388.402779][ T5983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.429303][ T5983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 388.475261][ T5991] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 388.482506][ T5991] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.508664][ T5991] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 388.533750][ T5994] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 388.541080][ T5994] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.567393][ T5994] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 388.571285][ T5999] Bluetooth: hci5: command tx timeout
[ 388.580079][ T51] Bluetooth: hci1: command tx timeout
[ 388.583763][ T5154] Bluetooth: hci4: command tx timeout
[ 388.588738][ T5950] Bluetooth: hci3: command tx timeout
[ 388.596127][ T5994] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 388.608979][ T5994] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.635001][ T5994] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 388.660343][ T5950] Bluetooth: hci2: command tx timeout
[ 388.660777][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 388.673485][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.699454][ T5981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 388.753494][ T5981] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 388.760709][ T5981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 388.786753][ T5981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 388.813616][ T5983] hsr_slave_0: entered promiscuous mode
[ 388.821401][ T5983] hsr_slave_1: entered promiscuous mode
[ 388.827265][ T5983] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 388.835135][ T5983] Cannot create hsr debugfs directory
[ 388.868021][ T5994] hsr_slave_0: entered promiscuous mode
[ 388.874194][ T5994] hsr_slave_1: entered promiscuous mode
[ 388.881571][ T5994] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 388.889118][ T5994] Cannot create hsr debugfs directory
[ 388.916215][ T5991] hsr_slave_0: entered promiscuous mode
[ 388.922665][ T5991] hsr_slave_1: entered promiscuous mode
[ 388.928611][ T5991] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 388.936186][ T5991] Cannot create hsr debugfs directory
[ 388.993304][ T30] audit: type=1400 audit(1753045165.501:108): avc: denied { search } for pid=5498 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.014920][ T30] audit: type=1400 audit(1753045165.501:109): avc: denied { search } for pid=5498 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.037285][ T30] audit: type=1400 audit(1753045165.501:110): avc: denied { search } for pid=5498 comm="dhcpcd" name="data" dev="tmpfs" ino=13 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.122808][ T5981] hsr_slave_0: entered promiscuous mode
[ 389.128840][ T5981] hsr_slave_1: entered promiscuous mode
[ 389.134973][ T5981] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 389.142625][ T5981] Cannot create hsr debugfs directory
[ 389.267325][ T30] audit: type=1400 audit(1753045165.771:111): avc: denied { read open } for pid=6035 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1844 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.303736][ T30] audit: type=1400 audit(1753045165.771:112): avc: denied { getattr } for pid=6035 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1844 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.355906][ T1148] bridge_slave_1: left allmulticast mode
[ 389.362275][ T1148] bridge_slave_1: left promiscuous mode
[ 389.368609][ T1148] bridge0: port 2(bridge_slave_1) entered disabled state
[ 389.387416][ T1148] bridge_slave_0: left allmulticast mode
[ 389.393462][ T1148] bridge_slave_0: left promiscuous mode
[ 389.399679][ T1148] bridge0: port 1(bridge_slave_0) entered disabled state
[ 389.448109][ T30] audit: type=1400 audit(1753045165.951:113): avc: denied { add_name } for pid=6034 comm="dhcpcd-run-hook" name="resolv.conf.eth1.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.548186][ T30] audit: type=1400 audit(1753045166.051:114): avc: denied { remove_name } for pid=6045 comm="rm" name="resolv.conf.eth1.link" dev="tmpfs" ino=2008 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 389.743692][ T1148] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 389.753973][ T1148] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 389.763976][ T1148] bond0 (unregistering): Released all slaves
[ 389.936627][ T1148] hsr_slave_0: left promiscuous mode
[ 389.942994][ T1148] hsr_slave_1: left promiscuous mode
[ 389.948567][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 389.956069][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 389.965052][ T1148] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 389.972556][ T1148] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 389.986836][ T1148] veth1_macvtap: left promiscuous mode
[ 389.992502][ T1148] veth0_macvtap: left promiscuous mode
[ 389.998023][ T1148] veth1_vlan: left promiscuous mode
[ 390.003704][ T1148] veth0_vlan: left promiscuous mode
[ 390.208263][ T1148] team0 (unregistering): Port device team_slave_1 removed
[ 390.229794][ T1148] team0 (unregistering): Port device team_slave_0 removed
[ 390.536023][ T5984] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 390.549011][ T5984] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 390.569283][ T5984] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 390.585145][ T5984] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 390.654856][ T5950] Bluetooth: hci4: command tx timeout
[ 390.660553][ T51] Bluetooth: hci3: command tx timeout
[ 390.664119][ T5999] Bluetooth: hci1: command tx timeout
[ 390.671383][ T5154] Bluetooth: hci5: command tx timeout
[ 390.687642][ T5984] 8021q: adding VLAN 0 to HW filter on device bond0
[ 390.728023][ T5984] 8021q: adding VLAN 0 to HW filter on device team0
[ 390.734938][ T5154] Bluetooth: hci2: command tx timeout
[ 390.766930][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 390.774074][ T5942] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 390.865839][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[ 390.872995][ T5942] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 390.942899][ T5984] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 391.076808][ T5983] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 391.087501][ T5983] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 391.113977][ T5983] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 391.125358][ T5983] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 391.211677][ T5984] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 391.223190][ T5994] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 391.278511][ T5994] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 391.289350][ T5994] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 391.330133][ T5994] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 391.381993][ T5981] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 391.416647][ T5981] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 391.429282][ T5981] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 391.445445][ T5984] veth0_vlan: entered promiscuous mode
[ 391.466150][ T5981] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 391.522910][ T5984] veth1_vlan: entered promiscuous mode
[ 391.536927][ T5983] 8021q: adding VLAN 0 to HW filter on device bond0
[ 391.591248][ T5983] 8021q: adding VLAN 0 to HW filter on device team0
[ 391.613658][ T5991] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 391.649756][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[ 391.656909][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 391.673359][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[ 391.680496][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 391.697913][ T5991] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 391.719396][ T5984] veth0_macvtap: entered promiscuous mode
[ 391.736784][ T5991] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 391.757633][ T5984] veth1_macvtap: entered promiscuous mode
[ 391.779814][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 391.795293][ T5991] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 391.838238][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 391.868605][ T5984] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 391.879506][ T5984] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 391.891890][ T5984] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 391.900800][ T5984] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 391.974917][ T5994] 8021q: adding VLAN 0 to HW filter on device bond0
[ 392.021595][ T5981] 8021q: adding VLAN 0 to HW filter on device bond0
[ 392.104796][ T5994] 8021q: adding VLAN 0 to HW filter on device team0
[ 392.137098][ T3587] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 392.155497][ T3587] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 392.185774][ T5981] 8021q: adding VLAN 0 to HW filter on device team0
[ 392.199696][ T6017] bridge0: port 1(bridge_slave_0) entered blocking state
[ 392.206813][ T6017] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 392.267556][ T6017] bridge0: port 2(bridge_slave_1) entered blocking state
[ 392.274701][ T6017] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 392.329533][ T5983] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 392.340994][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[ 392.348105][ T5942] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 392.375485][ T5942] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 392.387621][ T5942] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 392.395643][ T64] bridge0: port 2(bridge_slave_1) entered blocking state
[ 392.402782][ T64] bridge0: port 2(bridge_slave_1) entered forwarding state
2025/07/20 20:59:29 executed programs: 10
[ 392.462587][ T5991] 8021q: adding VLAN 0 to HW filter on device bond0
[ 392.539105][ T5994] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 392.655586][ T5981] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 392.668491][ T5981] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 392.715077][ T30] audit: type=1400 audit(1753045169.221:115): avc: denied { create } for pid=6136 comm="syz.2.18" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 392.740118][ T30] audit: type=1400 audit(1753045169.221:116): avc: denied { ioctl } for pid=6136 comm="syz.2.18" path="socket:[7761]" dev="sockfs" ino=7761 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 392.745299][ T5154] Bluetooth: hci5: command tx timeout
[ 392.764665][ T30] audit: type=1400 audit(1753045169.221:117): avc: denied { connect } for pid=6136 comm="syz.2.18" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1
[ 392.770209][ T5999] Bluetooth: hci1: command tx timeout
[ 392.789761][ T5950] Bluetooth: hci4: command tx timeout
[ 392.795113][ T5154] Bluetooth: hci3: command tx timeout
[ 392.821895][ T5999] Bluetooth: hci2: command tx timeout
[ 392.833700][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 392.867498][ T5983] veth0_vlan: entered promiscuous mode
[ 392.907086][ T5991] 8021q: adding VLAN 0 to HW filter on device team0
[ 392.950443][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 392.989264][ T5983] veth1_vlan: entered promiscuous mode
[ 393.011909][ T3587] bridge0: port 1(bridge_slave_0) entered blocking state
[ 393.019126][ T3587] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 393.040744][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.057928][ T6017] bridge0: port 2(bridge_slave_1) entered blocking state
[ 393.065032][ T6017] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 393.110548][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.220362][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.319821][ T5983] veth0_macvtap: entered promiscuous mode
[ 393.355110][ T5983] veth1_macvtap: entered promiscuous mode
[ 393.441187][ T5994] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 393.459256][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 393.487146][ T5983] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 393.517826][ T5983] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 393.540602][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.550404][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.561510][ T5983] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 393.582674][ T5983] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 393.600415][ T5983] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 393.634166][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.666507][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 393.700859][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 393.870410][ T6156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 393.891445][ T6156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 394.043863][ T6156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 394.058967][ T5981] veth0_vlan: entered promiscuous mode
[ 394.072379][ T5991] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 394.093303][ T5981] veth1_vlan: entered promiscuous mode
[ 394.096817][ T6156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 394.125542][ T5981] veth0_macvtap: entered promiscuous mode
[ 394.149950][ T5981] veth1_macvtap: entered promiscuous mode
[ 394.156444][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 394.197745][ T5991] veth0_vlan: entered promiscuous mode
[ 394.209723][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 394.253448][ T5981] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 394.288756][ T5981] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.311176][ T5981] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.319962][ T5981] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.330852][ T5981] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.346551][ T5991] veth1_vlan: entered promiscuous mode
[ 394.436317][ T6156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 394.437098][ T5994] veth0_vlan: entered promiscuous mode
[ 394.449912][ T6156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 394.481481][ T5991] veth0_macvtap: entered promiscuous mode
[ 394.504497][ T6156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 394.514350][ T5991] veth1_macvtap: entered promiscuous mode
[ 394.524001][ T5994] veth1_vlan: entered promiscuous mode
[ 394.529952][ T6156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 394.551164][ T5991] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 394.575644][ T5991] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 394.597783][ T5991] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.612077][ T5991] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.623538][ T5991] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.637388][ T5991] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 394.810636][ T5999] Bluetooth: hci1: command tx timeout
[ 394.816475][ T5154] Bluetooth: hci3: command tx timeout
[ 394.816501][ T51] Bluetooth: hci4: command tx timeout
[ 394.822167][ T5154] Bluetooth: hci5: command tx timeout
[ 394.890365][ T5154] Bluetooth: hci2: command tx timeout
[ 394.982544][ T5994] veth0_macvtap: entered promiscuous mode
[ 395.064408][ T6192] ==================================================================
[ 395.072491][ T6192] BUG: KASAN: slab-use-after-free in rose_transmit_link+0x515/0x5e0
[ 395.080482][ T6192] Read of size 1 at addr ffff888059aa7832 by task syz.1.17/6192
[ 395.080775][ T5994] veth1_macvtap: entered promiscuous mode
[ 395.088093][ T6192]
[ 395.088104][ T6192] CPU: 0 UID: 0 PID: 6192 Comm: syz.1.17 Not tainted 6.16.0-rc6-syzkaller-00281-gf4a40a4282f4 #0 PREEMPT(full)
[ 395.088127][ T6192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 395.088137][ T6192] Call Trace:
[ 395.088143][ T6192]
[ 395.088150][ T6192] dump_stack_lvl+0x116/0x1f0
[ 395.088178][ T6192] print_report+0xcd/0x610
[ 395.088193][ T6192] ? __virt_addr_valid+0x81/0x610
[ 395.088211][ T6192] ? __phys_addr+0xe8/0x180
[ 395.088229][ T6192] ? rose_transmit_link+0x515/0x5e0
[ 395.088248][ T6192] kasan_report+0xe0/0x110
[ 395.088262][ T6192] ? rose_transmit_link+0x515/0x5e0
[ 395.088283][ T6192] rose_transmit_link+0x515/0x5e0
[ 395.088302][ T6192] rose_write_internal+0x2f6/0x1850
[ 395.088325][ T6192] ? __timer_delete+0xf5/0x1c0
[ 395.088346][ T6192] ? __pfx___timer_delete+0x10/0x10
[ 395.088367][ T6192] ? __pfx_rose_write_internal+0x10/0x10
[ 395.088390][ T6192] rose_release+0x1c0/0x5b0
[ 395.088408][ T6192] __sock_release+0xb0/0x270
[ 395.088424][ T6192] ? __pfx_sock_close+0x10/0x10
[ 395.088438][ T6192] sock_close+0x1c/0x30
[ 395.088452][ T6192] __fput+0x3ff/0xb70
[ 395.088468][ T6192] ? _raw_spin_unlock_irq+0x23/0x50
[ 395.088490][ T6192] task_work_run+0x14d/0x240
[ 395.088507][ T6192] ? __pfx_task_work_run+0x10/0x10
[ 395.088521][ T6192] ? kick_process+0xf6/0x1b0
[ 395.088538][ T6192] ? task_work_add+0x1d5/0x360
[ 395.088554][ T6192] get_signal+0x1d1/0x26d0
[ 395.088574][ T6192] ? __fput_deferred+0x213/0x480
[ 395.088590][ T6192] ? __pfx___fput_deferred+0x10/0x10
[ 395.088607][ T6192] ? __pfx___file_ref_put+0x10/0x10
[ 395.088628][ T6192] ? __pfx_get_signal+0x10/0x10
[ 395.088649][ T6192] arch_do_signal_or_restart+0x8f/0x7d0
[ 395.088666][ T6192] ? __pfx___sys_connect+0x10/0x10
[ 395.088686][ T6192] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 395.088706][ T6192] ? xfd_validate_state+0x61/0x180
[ 395.088729][ T6192] exit_to_user_mode_loop+0x84/0x110
[ 395.088747][ T6192] do_syscall_64+0x3f6/0x4c0
[ 395.088763][ T6192] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 395.088777][ T6192] RIP: 0033:0x7f7bb3f8e9a9
[ 395.088790][ T6192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 395.088804][ T6192] RSP: 002b:00007f7bb4d1c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 395.088819][ T6192] RAX: fffffffffffffe00 RBX: 00007f7bb41b5fa0 RCX: 00007f7bb3f8e9a9
[ 395.088830][ T6192] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 000000000000000d
[ 395.088839][ T6192] RBP: 00007f7bb4010d69 R08: 0000000000000000 R09: 0000000000000000
[ 395.088848][ T6192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 395.088857][ T6192] R13: 0000000000000000 R14: 00007f7bb41b5fa0 R15: 00007ffce553f298
[ 395.088871][ T6192]
[ 395.088876][ T6192]
[ 395.368011][ T6192] Allocated by task 6152:
[ 395.372311][ T6192] kasan_save_stack+0x33/0x60
[ 395.376969][ T6192] kasan_save_track+0x14/0x30
[ 395.381711][ T6192] __kasan_kmalloc+0xaa/0xb0
[ 395.386277][ T6192] rose_rt_ioctl+0x87e/0x1d40
[ 395.390930][ T6192] rose_ioctl+0x64d/0x7d0
[ 395.395230][ T6192] sock_do_ioctl+0x118/0x280
[ 395.399794][ T6192] sock_ioctl+0x227/0x6b0
[ 395.404096][ T6192] __x64_sys_ioctl+0x18e/0x210
[ 395.408842][ T6192] do_syscall_64+0xcd/0x4c0
[ 395.413316][ T6192] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 395.419180][ T6192]
[ 395.421476][ T6192] Freed by task 6198:
[ 395.425429][ T6192] kasan_save_stack+0x33/0x60
[ 395.430085][ T6192] kasan_save_track+0x14/0x30
[ 395.434737][ T6192] kasan_save_free_info+0x3b/0x60
[ 395.439736][ T6192] __kasan_slab_free+0x51/0x70
[ 395.444475][ T6192] kfree+0x2b4/0x4d0
[ 395.448347][ T6192] rose_remove_neigh+0x25e/0x370
[ 395.453260][ T6192] rose_rt_device_down+0x2dc/0x430
[ 395.458346][ T6192] rose_device_event+0xfc/0x120
[ 395.463255][ T6192] notifier_call_chain+0xbc/0x410
[ 395.468255][ T6192] call_netdevice_notifiers_info+0xbe/0x140
[ 395.474122][ T6192] __dev_notify_flags+0x1f7/0x2e0
[ 395.479126][ T6192] netif_change_flags+0x108/0x160
[ 395.484123][ T6192] dev_change_flags+0xba/0x250
[ 395.488859][ T6192] dev_ifsioc+0x1498/0x1f70
[ 395.493337][ T6192] dev_ioctl+0x223/0x10e0
[ 395.497642][ T6192] sock_do_ioctl+0x19d/0x280
[ 395.502218][ T6192] sock_ioctl+0x227/0x6b0
[ 395.506522][ T6192] __x64_sys_ioctl+0x18e/0x210
[ 395.511261][ T6192] do_syscall_64+0xcd/0x4c0
[ 395.515735][ T6192] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 395.521599][ T6192]
[ 395.523894][ T6192] The buggy address belongs to the object at ffff888059aa7800
[ 395.523894][ T6192] which belongs to the cache kmalloc-512 of size 512
[ 395.537919][ T6192] The buggy address is located 50 bytes inside of
[ 395.537919][ T6192] freed 512-byte region [ffff888059aa7800, ffff888059aa7a00)
[ 395.551686][ T6192]
[ 395.553993][ T6192] The buggy address belongs to the physical page:
[ 395.560381][ T6192] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x59aa4
[ 395.569115][ T6192] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 395.577605][ T6192] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 395.585141][ T6192] page_type: f5(slab)
[ 395.589096][ T6192] raw: 00fff00000000040 ffff88801b841c80 dead000000000122 0000000000000000
[ 395.597655][ T6192] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 395.606222][ T6192] head: 00fff00000000040 ffff88801b841c80 dead000000000122 0000000000000000
[ 395.614865][ T6192] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 395.623512][ T6192] head: 00fff00000000002 ffffea000166a901 00000000ffffffff 00000000ffffffff
[ 395.632154][ T6192] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[ 395.640792][ T6192] page dumped because: kasan: bad access detected
[ 395.647173][ T6192] page_owner tracks the page as allocated
[ 395.652858][ T6192] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6017, tgid 6017 (kworker/u8:2), ts 393057117996, free_ts 392915261402
[ 395.674458][ T6192] post_alloc_hook+0x1c0/0x230
[ 395.679210][ T6192] get_page_from_freelist+0x1321/0x3890
[ 395.684733][ T6192] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 395.690607][ T6192] alloc_pages_mpol+0x1fb/0x550
[ 395.695433][ T6192] new_slab+0x23b/0x330
[ 395.699568][ T6192] ___slab_alloc+0xd9c/0x1940
[ 395.704223][ T6192] __slab_alloc.constprop.0+0x56/0xb0
[ 395.709587][ T6192] __kmalloc_noprof+0x2f2/0x510
[ 395.714418][ T6192] fib6_info_alloc+0x40/0x160
[ 395.719068][ T6192] ip6_route_info_create+0x14c/0x870
[ 395.724332][ T6192] addrconf_f6i_alloc+0x2da/0x660
[ 395.729335][ T6192] ipv6_add_addr+0x531/0x1fe0
[ 395.733995][ T6192] addrconf_add_linklocal+0x2a5/0x500
[ 395.739340][ T6192] addrconf_addr_gen+0x36d/0x3c0
[ 395.744250][ T6192] addrconf_init_auto_addrs+0x4ae/0x880
[ 395.749775][ T6192] addrconf_notify+0x6e2/0x19e0
[ 395.754601][ T6192] page last free pid 6150 tgid 6150 stack trace:
[ 395.760895][ T6192] __free_frozen_pages+0x7fe/0x1180
[ 395.766081][ T6192] qlist_free_all+0x4d/0x120
[ 395.770670][ T6192] kasan_quarantine_reduce+0x195/0x1e0
[ 395.776117][ T6192] __kasan_slab_alloc+0x69/0x90
[ 395.780946][ T6192] kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 395.786382][ T6192] getname_flags.part.0+0x4c/0x550
[ 395.791469][ T6192] getname_flags+0x93/0xf0
[ 395.795863][ T6192] __x64_sys_execve+0x74/0xb0
[ 395.800536][ T6192] do_syscall_64+0xcd/0x4c0
[ 395.805011][ T6192] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 395.810881][ T6192]
[ 395.813180][ T6192] Memory state around the buggy address:
[ 395.818779][ T6192] ffff888059aa7700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 395.826814][ T6192] ffff888059aa7780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 395.834848][ T6192] >ffff888059aa7800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 395.842877][ T6192] ^
[ 395.848487][ T6192] ffff888059aa7880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 395.856520][ T6192] ffff888059aa7900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 395.864550][ T6192] ==================================================================
[ 395.877912][ T6192] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 395.885101][ T6192] CPU: 0 UID: 0 PID: 6192 Comm: syz.1.17 Not tainted 6.16.0-rc6-syzkaller-00281-gf4a40a4282f4 #0 PREEMPT(full)
[ 395.896883][ T6192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 395.906929][ T6192] Call Trace:
[ 395.910191][ T6192]
[ 395.913106][ T6192] dump_stack_lvl+0x3d/0x1f0
[ 395.917688][ T6192] panic+0x71c/0x800
[ 395.921566][ T6192] ? __pfx_panic+0x10/0x10
[ 395.925962][ T6192] ? mark_held_locks+0x49/0x80
[ 395.930701][ T6192] ? preempt_schedule_thunk+0x16/0x30
[ 395.936062][ T6192] ? rose_transmit_link+0x515/0x5e0
[ 395.941249][ T6192] ? preempt_schedule_common+0x44/0xc0
[ 395.946698][ T6192] ? check_panic_on_warn+0x1f/0xb0
[ 395.951790][ T6192] ? rose_transmit_link+0x515/0x5e0
[ 395.956978][ T6192] check_panic_on_warn+0xab/0xb0
[ 395.961910][ T6192] end_report+0x107/0x170
[ 395.966218][ T6192] kasan_report+0xee/0x110
[ 395.970617][ T6192] ? rose_transmit_link+0x515/0x5e0
[ 395.975820][ T6192] rose_transmit_link+0x515/0x5e0
[ 395.980833][ T6192] rose_write_internal+0x2f6/0x1850
[ 395.986016][ T6192] ? __timer_delete+0xf5/0x1c0
[ 395.990759][ T6192] ? __pfx___timer_delete+0x10/0x10
[ 395.995937][ T6192] ? __pfx_rose_write_internal+0x10/0x10
[ 396.001553][ T6192] rose_release+0x1c0/0x5b0
[ 396.006041][ T6192] __sock_release+0xb0/0x270
[ 396.010608][ T6192] ? __pfx_sock_close+0x10/0x10
[ 396.015439][ T6192] sock_close+0x1c/0x30
[ 396.019571][ T6192] __fput+0x3ff/0xb70
[ 396.023537][ T6192] ? _raw_spin_unlock_irq+0x23/0x50
[ 396.028717][ T6192] task_work_run+0x14d/0x240
[ 396.033282][ T6192] ? __pfx_task_work_run+0x10/0x10
[ 396.038365][ T6192] ? kick_process+0xf6/0x1b0
[ 396.042928][ T6192] ? task_work_add+0x1d5/0x360
[ 396.047669][ T6192] get_signal+0x1d1/0x26d0
[ 396.052086][ T6192] ? __fput_deferred+0x213/0x480
[ 396.057021][ T6192] ? __pfx___fput_deferred+0x10/0x10
[ 396.062286][ T6192] ? __pfx___file_ref_put+0x10/0x10
[ 396.067469][ T6192] ? __pfx_get_signal+0x10/0x10
[ 396.072302][ T6192] arch_do_signal_or_restart+0x8f/0x7d0
[ 396.077844][ T6192] ? __pfx___sys_connect+0x10/0x10
[ 396.082952][ T6192] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 396.089096][ T6192] ? xfd_validate_state+0x61/0x180
[ 396.094193][ T6192] exit_to_user_mode_loop+0x84/0x110
[ 396.099456][ T6192] do_syscall_64+0x3f6/0x4c0
[ 396.104022][ T6192] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 396.109891][ T6192] RIP: 0033:0x7f7bb3f8e9a9
[ 396.114283][ T6192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 396.133876][ T6192] RSP: 002b:00007f7bb4d1c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 396.142273][ T6192] RAX: fffffffffffffe00 RBX: 00007f7bb41b5fa0 RCX: 00007f7bb3f8e9a9
[ 396.150218][ T6192] RDX: 0000000000000040 RSI: 0000200000000100 RDI: 000000000000000d
[ 396.158163][ T6192] RBP: 00007f7bb4010d69 R08: 0000000000000000 R09: 0000000000000000
[ 396.166118][ T6192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 396.174064][ T6192] R13: 0000000000000000 R14: 00007f7bb41b5fa0 R15: 00007ffce553f298
[ 396.182013][ T6192]
[ 396.185333][ T6192] Kernel Offset: disabled
[ 396.189637][ T6192] Rebooting in 86400 seconds..