Warning: Permanently added '10.128.0.216' (ED25519) to the list of known hosts.
1970/01/01 00:00:48 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:49 parsed 1 programs
[   51.819523][ T4032] cgroup: Unknown subsys name 'net'
[   52.026981][ T4032] cgroup: Unknown subsys name 'rlimit'
[   52.377641][ T4032] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   68.679953][ T4073] chnl_net:caif_netlink_parms(): no params data found
[   68.792406][ T4073] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.794789][ T4073] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.797684][ T4073] device bridge_slave_0 entered promiscuous mode
[   68.802921][ T4073] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.804874][ T4073] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.807533][ T4073] device bridge_slave_1 entered promiscuous mode
[   68.825558][ T4073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.830138][ T4073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.849692][ T4073] team0: Port device team_slave_0 added
[   68.853554][ T4073] team0: Port device team_slave_1 added
[   68.868686][ T4073] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.872402][ T4073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.879637][ T4073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.886367][ T4073] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.888324][ T4073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.895601][ T4073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.004274][ T4073] device hsr_slave_0 entered promiscuous mode
[   69.042011][ T4073] device hsr_slave_1 entered promiscuous mode
[   69.203177][ T4073] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.253366][ T4073] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.304821][ T4073] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.345569][ T4073] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.404698][ T4073] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.406881][ T4073] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.409299][ T4073] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.411461][ T4073] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.457858][ T4073] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.471335][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   69.475678][  T634] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.479477][  T634] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.485122][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   69.494195][ T4073] 8021q: adding VLAN 0 to HW filter on device team0
[   69.505223][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.508491][  T634] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.510525][  T634] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.514292][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.517026][  T634] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.519021][  T634] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.542247][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.545597][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   69.548690][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   69.553148][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   69.556012][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.563497][ T4073] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.648966][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   69.651990][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   69.662640][ T2056] ieee802154 phy0 wpan0: encryption failed: -22
[   69.664614][ T2056] ieee802154 phy1 wpan1: encryption failed: -22
[   69.667765][ T4073] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.684070][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   69.687019][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   69.702290][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   69.705287][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   69.708673][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   69.712617][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   69.716321][ T4073] device veth0_vlan entered promiscuous mode
[   69.723945][ T4073] device veth1_vlan entered promiscuous mode
[   69.740154][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   69.745550][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   69.748183][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   69.751579][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   69.755952][ T4073] device veth0_macvtap entered promiscuous mode
[   69.761591][ T4073] device veth1_macvtap entered promiscuous mode
[   69.774485][ T4073] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.776722][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   69.779413][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   69.784652][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   69.787535][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   69.792903][ T4073] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.797219][ T4073] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.799640][ T4073] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.804847][ T4073] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.807181][ T4073] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.812904][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   69.815693][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   70.175455][  T153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.177672][  T153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.181126][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   70.205654][  T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.207928][  T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.213333][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:11 executed programs: 0
[   71.210040][ T4133] chnl_net:caif_netlink_parms(): no params data found
[   71.251616][ T4133] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.253651][ T4133] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.256445][ T4133] device bridge_slave_0 entered promiscuous mode
[   71.261028][ T4133] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.263110][ T4133] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.265650][ T4133] device bridge_slave_1 entered promiscuous mode
[   71.283939][ T4133] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.288579][ T4133] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.305950][ T4133] team0: Port device team_slave_0 added
[   71.309943][ T4133] team0: Port device team_slave_1 added
[   71.324656][ T4133] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.326692][ T4133] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.334681][ T4133] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.341077][ T4133] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.342996][ T4133] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.349758][ T4133] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.403628][ T4133] device hsr_slave_0 entered promiscuous mode
[   71.450808][ T4133] device hsr_slave_1 entered promiscuous mode
[   71.500613][ T4133] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.502981][ T4133] Cannot create hsr debugfs directory
[   71.568716][ T4133] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.171023][ T4077] Bluetooth: hci0: command 0x0409 tx timeout
[   74.757891][ T4133] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.771805][   T25] cfg80211: failed to load regulatory.db
[   75.178097][ T4133] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.250415][ T4142] Bluetooth: hci0: command 0x041b tx timeout
[   75.256336][ T4133] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.514760][ T4133] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   75.593555][ T4133] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   75.662603][ T4133] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   75.722224][ T4133] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   75.809691][ T4133] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.817955][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   75.824180][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   75.829080][ T4133] 8021q: adding VLAN 0 to HW filter on device team0
[   75.837010][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   75.843242][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   75.845842][  T136] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.847820][  T136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.851584][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   75.856792][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   75.859640][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   75.862973][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.864893][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.869448][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   75.911336][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   75.917044][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   75.919976][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   75.924787][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   75.929190][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   75.933111][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   75.938442][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   75.943372][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   75.948325][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   75.951836][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   75.956761][ T4133] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   76.039403][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   76.042099][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   76.049585][ T4133] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.063074][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   76.065998][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   76.077416][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   76.080055][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   76.083482][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   76.085916][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   76.093491][ T4133] device veth0_vlan entered promiscuous mode
[   76.100073][ T4133] device veth1_vlan entered promiscuous mode
[   76.117297][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   76.119941][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   76.123061][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   76.125811][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   76.131403][ T4133] device veth0_macvtap entered promiscuous mode
[   76.135835][ T4133] device veth1_macvtap entered promiscuous mode
[   76.147873][ T4133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.151558][ T4133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.155088][ T4133] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.157354][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   76.160021][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   76.164479][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   76.167330][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   76.172166][ T4133] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.175000][ T4133] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.178475][ T4133] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.183290][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   76.186050][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   76.192367][ T4133] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.194688][ T4133] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.197126][ T4133] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.199601][ T4133] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.274025][  T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.280024][  T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.285290][  T634] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   76.295068][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.297393][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.300358][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:16 executed programs: 2
[   76.334021][ T4160] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[   76.373970][ T4162] ==================================================================
[   76.376390][ T4162] BUG: KASAN: use-after-free in ax25_fillin_cb+0x394/0x568
[   76.378375][ T4162] Read of size 4 at addr ffff0000dbd26238 by task syz.0.18/4162
[   76.380414][ T4162] 
[   76.381012][ T4162] CPU: 0 PID: 4162 Comm: syz.0.18 Not tainted 5.15.186-syzkaller #0
[   76.383115][ T4162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.385892][ T4162] Call trace:
[   76.386818][ T4162]  dump_backtrace+0x0/0x43c
[   76.388125][ T4162]  show_stack+0x2c/0x3c
[   76.389356][ T4162]  __dump_stack+0x30/0x40
[   76.390549][ T4162]  dump_stack_lvl+0xf8/0x160
[   76.391831][ T4162]  print_address_description+0x78/0x30c
[   76.393358][ T4162]  kasan_report+0xec/0x15c
[   76.394573][ T4162]  __asan_report_load4_noabort+0x44/0x50
[   76.396067][ T4162]  ax25_fillin_cb+0x394/0x568
[   76.397366][ T4162]  ax25_setsockopt+0x8d0/0xa5c
[   76.398752][ T4162]  __sys_setsockopt+0x2f8/0x4b0
[   76.400126][ T4162]  __arm64_sys_setsockopt+0xb8/0xd4
[   76.401570][ T4162]  invoke_syscall+0x98/0x2b8
[   76.402798][ T4162]  el0_svc_common+0x138/0x258
[   76.404103][ T4162]  do_el0_svc+0x58/0x14c
[   76.405319][ T4162]  el0_svc+0x78/0x1e0
[   76.406462][ T4162]  el0t_64_sync_handler+0xcc/0xe4
[   76.407796][ T4162]  el0t_64_sync+0x1a0/0x1a4
[   76.408993][ T4162] 
[   76.409642][ T4162] Allocated by task 4160:
[   76.410817][ T4162]  __kasan_kmalloc+0xb0/0xf0
[   76.412032][ T4162]  kmem_cache_alloc_trace+0x274/0x3fc
[   76.413487][ T4162]  ax25_dev_device_up+0x5c/0x540
[   76.414806][ T4162]  ax25_device_event+0x504/0x590
[   76.416108][ T4162]  raw_notifier_call_chain+0xd4/0x164
[   76.417649][ T4162]  __dev_notify_flags+0x250/0x46c
[   76.419038][ T4162]  dev_change_flags+0xc8/0x154
[   76.420374][ T4162]  dev_ifsioc+0x504/0xef4
[   76.421604][ T4162]  dev_ioctl+0x4d0/0xc94
[   76.422739][ T4162]  sock_do_ioctl+0x18c/0x240
[   76.423930][ T4162]  sock_ioctl+0x5c8/0x87c
[   76.425107][ T4162]  __arm64_sys_ioctl+0x14c/0x1c8
[   76.426491][ T4162]  invoke_syscall+0x98/0x2b8
[   76.427707][ T4162]  el0_svc_common+0x138/0x258
[   76.428973][ T4162]  do_el0_svc+0x58/0x14c
[   76.430114][ T4162]  el0_svc+0x78/0x1e0
[   76.431208][ T4162]  el0t_64_sync_handler+0xcc/0xe4
[   76.432624][ T4162]  el0t_64_sync+0x1a0/0x1a4
[   76.433874][ T4162] 
[   76.434486][ T4162] Freed by task 4161:
[   76.435662][ T4162]  kasan_set_track+0x4c/0x84
[   76.436946][ T4162]  kasan_set_free_info+0x28/0x4c
[   76.438250][ T4162]  ____kasan_slab_free+0x118/0x164
[   76.439640][ T4162]  __kasan_slab_free+0x18/0x28
[   76.440926][ T4162]  slab_free_freelist_hook+0x128/0x1e8
[   76.442381][ T4162]  kfree+0x170/0x40c
[   76.443418][ T4162]  ax25_release+0x564/0x814
[   76.444634][ T4162]  sock_close+0xb4/0x1f8
[   76.445776][ T4162]  __fput+0x1c0/0x7f8
[   76.446836][ T4162]  ____fput+0x20/0x30
[   76.447914][ T4162]  task_work_run+0x12c/0x1e0
[   76.449121][ T4162]  do_notify_resume+0x24b4/0x3128
[   76.450446][ T4162]  el0_svc+0xf0/0x1e0
[   76.451554][ T4162]  el0t_64_sync_handler+0xcc/0xe4
[   76.453000][ T4162]  el0t_64_sync+0x1a0/0x1a4
[   76.454238][ T4162] 
[   76.454838][ T4162] The buggy address belongs to the object at ffff0000dbd26200
[   76.454838][ T4162]  which belongs to the cache kmalloc-256 of size 256
[   76.458708][ T4162] The buggy address is located 56 bytes inside of
[   76.458708][ T4162]  256-byte region [ffff0000dbd26200, ffff0000dbd26300)
[   76.462245][ T4162] The buggy address belongs to the page:
[   76.463776][ T4162] page:0000000074a8c777 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11bd26
[   76.466613][ T4162] head:0000000074a8c777 order:1 compound_mapcount:0
[   76.468431][ T4162] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[   76.470633][ T4162] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c0002480
[   76.473002][ T4162] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   76.475438][ T4162] page dumped because: kasan: bad access detected
[   76.477151][ T4162] 
[   76.477786][ T4162] Memory state around the buggy address:
[   76.479344][ T4162]  ffff0000dbd26100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.481553][ T4162]  ffff0000dbd26180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.483803][ T4162] >ffff0000dbd26200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   76.486072][ T4162]                                         ^
[   76.487693][ T4162]  ffff0000dbd26280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   76.490031][ T4162]  ffff0000dbd26300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   76.492263][ T4162] ==================================================================
[   76.494510][ T4162] Disabling lock debugging due to kernel taint
[   76.501682][ T4162] Unable to handle kernel paging request at virtual address 00000316000015e9
[   76.504030][ T4162] Mem abort info:
[   76.505870][ T4162]   ESR = 0x0000000096000021
[   76.507279][ T4162]   EC = 0x25: DABT (current EL), IL = 32 bits
[   76.508899][ T4162]   SET = 0, FnV = 0
[   76.509968][ T4162]   EA = 0, S1PTW = 0
[   76.513107][ T4162]   FSC = 0x21: alignment fault
[   76.514401][ T4162] Data abort info:
[   76.515418][ T4162]   ISV = 0, ISS = 0x00000021
[   76.516738][ T4162]   CM = 0, WnR = 0
[   76.517792][ T4162] user pgtable: 4k pages, 48-bit VAs, pgdp=000000011075c000
[   76.519857][ T4162] [00000316000015e9] pgd=0000000000000000, p4d=0000000000000000
[   76.522352][ T4162] Internal error: Oops: 0000000096000021 [#1] PREEMPT SMP
[   76.524178][ T4162] Modules linked in:
[   76.525177][ T4162] CPU: 1 PID: 4162 Comm: syz.0.18 Tainted: G    B             5.15.186-syzkaller #0
[   76.527581][ T4162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   76.530301][ T4162] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   76.532419][ T4162] pc : ax25_release+0x4f4/0x814
[   76.533755][ T4162] lr : ax25_release+0x4ec/0x814
[   76.535090][ T4162] sp : ffff80001f767a00
[   76.536211][ T4162] x29: ffff80001f767a20 x28: dfff800000000000 x27: ffff0000d754f080
[   76.538422][ T4162] x26: ffff0000d77c5828 x25: 0000000000000002 x24: 00000000ffffffff
[   76.540656][ T4162] x23: 94000316000015e9 x22: ffff0000dbd26200 x21: ffff0000e6ba2418
[   76.542933][ T4162] x20: ffff0000d754f000 x19: 1fffe0001aef8b05 x18: 0000000000000000
[   76.545201][ T4162] x17: 0000000000000000 x16: ffff8000082d6448 x15: 000000000000000a
[   76.547451][ T4162] x14: 00000000111ae534 x13: 000000007f13aa30 x12: 0000000000ff0100
[   76.549763][ T4162] x11: 0000000000000000 x10: 0000000000000000 x9 : ffff8000104555f4
[   76.552011][ T4162] x8 : ffff0000dc7d1b40 x7 : 0000000000000000 x6 : ffff80000837b9b0
[   76.554266][ T4162] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000104555e8
[   76.556502][ T4162] x2 : 0000000000000001 x1 : 0000000000000004 x0 : 0000000000000001
[   76.558715][ T4162] Call trace:
[   76.559677][ T4162]  ax25_release+0x4f4/0x814
[   76.560924][ T4162]  sock_close+0xb4/0x1f8
[   76.562094][ T4162]  __fput+0x1c0/0x7f8
[   76.563221][ T4162]  ____fput+0x20/0x30
[   76.564405][ T4162]  task_work_run+0x12c/0x1e0
[   76.565684][ T4162]  do_notify_resume+0x24b4/0x3128
[   76.567029][ T4162]  el0_svc+0xf0/0x1e0
[   76.568099][ T4162]  el0t_64_sync_handler+0xcc/0xe4
[   76.569460][ T4162]  el0t_64_sync+0x1a0/0x1a4
[   76.570718][ T4162] Code: d503201f 9600931b 52800038 4b1803f8 (b87802f8) 
[   76.572599][ T4162] ---[ end trace aedc24c48045b1bf ]---
[   76.918262][ T4162] Kernel panic - not syncing: Oops: Fatal exception
[   76.920143][ T4162] SMP: stopping secondary CPUs
[   76.921490][ T4162] Kernel Offset: disabled
[   76.922691][ T4162] CPU features: 0x8,000081c1,21302e40
[   76.924249][ T4162] Memory Limit: none
[   77.260443][ T4162] Rebooting in 86400 seconds..