[  399.592134] protocol 88fb is buggy, dev hsr_slave_0
[  399.602743] protocol 88fb is buggy, dev hsr_slave_1
[  399.682130] protocol 88fb is buggy, dev hsr_slave_0
[  399.687241] protocol 88fb is buggy, dev hsr_slave_1
[  400.152100] protocol 88fb is buggy, dev hsr_slave_0
[  400.152114] protocol 88fb is buggy, dev hsr_slave_1
[  400.157340] protocol 88fb is buggy, dev hsr_slave_1
[  400.232078] protocol 88fb is buggy, dev hsr_slave_0
[  400.237284] protocol 88fb is buggy, dev hsr_slave_1
[  400.392115] protocol 88fb is buggy, dev hsr_slave_0
[  404.493059] syz-executor.3 (8762) used greatest stack depth: 23600 bytes left
[  405.014216] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  405.021273] batman_adv: batadv0: Removing interface: batadv_slave_0
[  405.028752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  405.036535] batman_adv: batadv0: Removing interface: batadv_slave_1
[  405.044077] device bridge_slave_1 left promiscuous mode
[  405.050180] bridge0: port 2(bridge_slave_1) entered disabled state
[  405.057314] device bridge_slave_0 left promiscuous mode
[  405.064202] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.072207] device veth1_macvtap left promiscuous mode
[  405.077877] device veth0_macvtap left promiscuous mode
[  405.084796] device veth1_vlan left promiscuous mode
[  405.090028] device veth0_vlan left promiscuous mode
[  405.121786] device hsr_slave_1 left promiscuous mode
[  405.128581] device hsr_slave_0 left promiscuous mode
[  405.140012] team0 (unregistering): Port device team_slave_1 removed
[  405.148195] team0 (unregistering): Port device team_slave_0 removed
[  405.156647] bond0 (unregistering): Releasing backup interface bond_slave_1
[  405.165582] bond0 (unregistering): Releasing backup interface bond_slave_0
[  405.180865] bond0 (unregistering): Released all slaves
[  406.335365] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.342512] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.350037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.357254] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.364601] device bridge_slave_1 left promiscuous mode
[  406.370205] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.377495] device bridge_slave_0 left promiscuous mode
[  406.383086] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.390641] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.397635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.404816] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.411796] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.418838] device bridge_slave_1 left promiscuous mode
[  406.425017] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.432123] device bridge_slave_0 left promiscuous mode
[  406.437537] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.445716] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.452748] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.459798] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.466983] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.473997] kasan: CONFIG_KASAN_INLINE enabled
[  406.478613] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  406.486123] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  406.492347] CPU: 0 PID: 10185 Comm: kworker/u4:7 Not tainted 4.19.0-rc6-syzkaller #0
[  406.500505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  406.509976] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
[  406.517529] RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50
[  406.522959] Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 99 0b 00 00
[  406.541842] RSP: 0018:ffff88009822faa8 EFLAGS: 00010246
[  406.547271] RAX: dffffc0000000000 RBX: ffff8800a9494cc0 RCX: 0000000000000000
[  406.554539] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  406.562058] RBP: ffff88009822fbc0 R08: ffff880095a08500 R09: 0000000000000001
[  406.569499] R10: ffffed0013045f8f R11: 0000000000000003 R12: ffff880095a08500
[  406.577512] R13: dffffc0000000000 R14: ffffed0012b410af R15: 000000000000003c
[  406.584915] FS:  0000000000000000(0000) GS:ffff8800ba200000(0000) knlGS:0000000000000000
[  406.593409] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  406.599355] CR2: 00007ffb66ce1018 CR3: 00000000a56a0000 CR4: 00000000001406f0
[  406.606887] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  406.614430] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  406.622171] Call Trace:
[  406.624840]  ? kasan_unpoison_shadow+0x35/0x50
[  406.629569]  ? batadv_tvlv_container_ogm_append+0x383/0x4b0
[  406.635403]  ? __local_bh_enable_ip+0x160/0x250
[  406.640304]  ? trace_hardirqs_on+0x28/0x190
[  406.644715]  ? batadv_tvlv_container_ogm_append+0x383/0x4b0
[  406.650406]  ? batadv_iv_ogm_iface_enable+0x370/0x370
[  406.655592]  ? lock_acquire+0x180/0x3a0
[  406.659649]  ? batadv_iv_ogm_schedule+0x94d/0xf30
[  406.664499]  batadv_iv_ogm_schedule+0xb7e/0xf30
[  406.669161]  ? batadv_iv_ogm_neigh_dump+0x580/0x580
[  406.674259]  batadv_iv_send_outstanding_bat_ogm_packet+0x4b2/0x7b0
[  406.680739]  ? process_one_work+0x71b/0x14f0
[  406.685240]  ? trace_hardirqs_on+0x28/0x190
[  406.689992]  process_one_work+0x7b9/0x14f0
[  406.694817]  ? pwq_dec_nr_in_flight+0x2c0/0x2c0
[  406.699636]  ? lock_acquire+0x180/0x3a0
[  406.703605]  ? kasan_check_write+0x14/0x20
[  406.708139]  ? do_raw_spin_lock+0xc1/0x200
[  406.712358]  worker_thread+0x85/0xb60
[  406.716273]  ? __kthread_parkme+0x47/0x190
[  406.720687]  kthread+0x324/0x3e0
[  406.724126]  ? process_one_work+0x14f0/0x14f0
[  406.728722]  ? kthread_park+0x120/0x120
[  406.732759]  ret_from_fork+0x24/0x30
[  406.736560] Modules linked in:
[  406.740488] ---[ end trace f3bf69a9bb8b110a ]---
[  406.745425] RIP: 0010:batadv_iv_ogm_queue_add+0x9b/0xe50
[  406.750876] Code: 44 89 8d 64 ff ff ff c7 02 f1 f1 f1 f1 c7 42 04 04 f2 f2 f2 48 89 fa 65 48 8b 0c 25 28 00 00 00 48 89 4d d0 31 c9 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 99 0b 00 00
[  406.769939] RSP: 0018:ffff88009822faa8 EFLAGS: 00010246
[  406.775876] RAX: dffffc0000000000 RBX: ffff8800a9494cc0 RCX: 0000000000000000
[  406.783450] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  406.790716] RBP: ffff88009822fbc0 R08: ffff880095a08500 R09: 0000000000000001
[  406.798213] R10: ffffed0013045f8f R11: 0000000000000003 R12: ffff880095a08500
[  406.805540] R13: dffffc0000000000 R14: ffffed0012b410af R15: 000000000000003c
[  406.812958] FS:  0000000000000000(0000) GS:ffff8800ba200000(0000) knlGS:0000000000000000
[  406.821176] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  406.827101] CR2: 00007ffb66ce1018 CR3: 00000000a56a0000 CR4: 00000000001406f0
[  406.834414] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  406.841984] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  406.849882] Kernel panic - not syncing: Fatal exception
[  406.857221] Kernel Offset: disabled
[  406.860858] Rebooting in 86400 seconds..