Warning: Permanently added '10.128.1.106' (ED25519) to the list of known hosts.
2024/08/18 06:14:31 ignoring optional flag "sandboxArg"="0"
2024/08/18 06:14:32 parsed 1 programs
[   64.907130][ T3639] cgroup: Unknown subsys name 'net'
[   65.018493][ T3639] cgroup: Unknown subsys name 'rlimit'
[   66.474263][ T3639] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   68.223758][ T3654] chnl_net:caif_netlink_parms(): no params data found
[   68.486593][ T3654] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.494690][ T3654] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.506194][ T3654] device bridge_slave_0 entered promiscuous mode
[   68.518005][ T3654] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.526580][ T3654] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.534979][ T3654] device bridge_slave_1 entered promiscuous mode
[   68.588208][ T3654] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.626885][ T3654] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.671127][ T3654] team0: Port device team_slave_0 added
[   68.681747][ T3654] team0: Port device team_slave_1 added
[   68.746384][ T3654] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.753449][ T3654] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.782900][ T3654] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.809094][ T3654] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.827267][ T3654] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.859824][ T3654] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.027650][ T3654] device hsr_slave_0 entered promiscuous mode
[   69.063538][ T3654] device hsr_slave_1 entered promiscuous mode
[   69.345993][ T3696] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   69.354517][ T3696] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   69.361989][ T3696] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   69.370614][ T3696] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   69.378280][ T3696] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   69.385914][ T3696] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.891240][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.922526][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.931502][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   69.948792][ T3654] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   69.987874][   T99] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.997253][ T3654] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   70.014730][   T99] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.027842][ T3654] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   70.048205][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.063149][ T3654] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   70.216152][ T3654] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.229796][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   70.239986][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   70.252188][ T3654] 8021q: adding VLAN 0 to HW filter on device team0
[   70.264451][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   70.274220][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   70.287312][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.294612][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.306959][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   70.319174][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   70.330491][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   70.339526][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.346995][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.368222][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   70.377275][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   70.397272][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   70.407149][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   70.418176][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   70.428646][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   70.438047][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   70.446945][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   70.466664][ T3654] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.480583][ T3654] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   70.490015][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   70.498894][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   70.507715][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   70.691285][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   70.699295][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   70.713852][ T3654] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.735371][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   70.744975][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   70.765690][ T3654] device veth0_vlan entered promiscuous mode
[   70.772263][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   70.781088][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   70.797054][ T3654] device veth1_vlan entered promiscuous mode
[   70.806232][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   70.814642][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   70.823149][   T99] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   70.847189][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   70.856223][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   70.866576][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   70.877743][ T3654] device veth0_macvtap entered promiscuous mode
[   70.889391][ T3654] device veth1_macvtap entered promiscuous mode
[   70.908740][ T3654] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.918656][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   70.927469][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   70.935979][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   70.944847][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   70.955804][ T3654] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.965680][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   70.974462][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   70.987693][ T3654] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.996679][ T3654] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.006878][ T3654] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.016510][ T3654] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2024/08/18 06:14:40 executed programs: 0
[   71.095053][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[   71.101660][ T1271] ieee802154 phy1 wpan1: encryption failed: -22
[   71.194970][   T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   71.207637][   T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   71.215306][   T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   71.226899][ T3699] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   71.246274][ T3699] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   71.253738][ T3699] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.274448][   T48] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   71.282694][   T48] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   71.295616][ T3738] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   71.303044][ T3696] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   71.310993][ T3738] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   71.320784][ T3654] syz-executor (3654) used greatest stack depth: 20152 bytes left
[   71.330067][ T3738] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   71.339695][ T3738] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   71.347621][ T3738] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   71.355430][ T3738] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   71.371300][ T3741] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   71.378929][ T3741] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   71.386708][ T3741] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   71.412680][    C1] ------------[ cut here ]------------
[   71.418371][    C1] WARNING: CPU: 1 PID: 3695 at kernel/workqueue.c:1441 __queue_work+0xddc/0xf90
[   71.427446][    C1] Modules linked in:
[   71.431380][    C1] CPU: 1 PID: 3695 Comm: syz-executor Not tainted 6.1.105-syzkaller #0
[   71.439658][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   71.450280][    C1] RIP: 0010:__queue_work+0xddc/0xf90
[   71.455745][    C1] Code: 8b 3c 24 e8 c6 9a 88 00 e9 d9 fc ff ff e8 bc 1f 31 00 89 ee 48 c7 c7 80 99 1d 8d e8 1e a2 0a 03 e9 1e fc ff ff e8 a4 1f 31 00 <0f> 0b 48 83 c4 50 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 8e 1f 31 00
[   71.475405][    C1] RSP: 0018:ffffc900001e0af8 EFLAGS: 00010046
[   71.481621][    C1] RAX: ffffffff8159806c RBX: 00000000000b0012 RCX: ffff88802662bb80
[   71.489632][    C1] RDX: 0000000000000100 RSI: 0000000000000100 RDI: 0000000000000000
[   71.497637][    C1] RBP: 0000000000010000 R08: ffffffff815a6db5 R09: fffffbfff1d339ae
[   71.505648][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   71.513658][    C1] R13: dffffc0000000000 R14: 0000000000000008 R15: ffff888058b23800
[   71.521665][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[   71.530621][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.537229][    C1] CR2: 00007f5779c45000 CR3: 0000000071449000 CR4: 00000000003506e0
[   71.545229][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.553220][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.561218][    C1] Call Trace:
[   71.564514][    C1]  <IRQ>
[   71.567369][    C1]  ? __warn+0x15a/0x520
[   71.571548][    C1]  ? __queue_work+0xddc/0xf90
[   71.576256][    C1]  ? report_bug+0x2af/0x500
[   71.581151][    C1]  ? __queue_work+0xddc/0xf90
[   71.585862][    C1]  ? handle_bug+0x3d/0x70
[   71.590250][    C1]  ? exc_invalid_op+0x16/0x40
[   71.595408][    C1]  ? asm_exc_invalid_op+0x16/0x20
[   71.600467][    C1]  ? is_chained_work+0x25/0x100
[   71.605341][    C1]  ? __queue_work+0xddc/0xf90
[   71.610038][    C1]  ? __queue_work+0xddc/0xf90
[   71.614734][    C1]  ? __queue_work+0xddc/0xf90
[   71.619442][    C1]  call_timer_fn+0x1ad/0x6b0
[   71.624061][    C1]  ? queue_work_node+0x460/0x460
[   71.627365][ T3724] chnl_net:caif_netlink_parms(): no params data found
[   71.629005][    C1]  ? call_timer_fn+0xc2/0x6b0
[   71.640474][    C1]  ? __run_timers+0x890/0x890
[   71.645277][    C1]  ? do_raw_spin_unlock+0x137/0x8a0
[   71.650519][    C1]  ? rcu_is_watching+0x11/0xb0
[   71.655324][    C1]  ? queue_work_node+0x460/0x460
[   71.660301][    C1]  __run_timers+0x6a8/0x890
[   71.664858][    C1]  ? detach_timer+0x380/0x380
[   71.666191][   T48] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   71.669554][    C1]  ? print_irqtrace_events+0x210/0x210
[   71.681300][ T3738] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   71.681987][    C1]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[   71.690691][ T3738] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   71.695490][    C1]  run_timer_softirq+0x63/0xf0
[   71.695520][    C1]  handle_softirqs+0x2ee/0xa40
[   71.702967][   T48] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   71.707204][    C1]  ? __irq_exit_rcu+0x157/0x240
[   71.712797][   T48] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   71.718871][    C1]  ? do_softirq+0x240/0x240
[   71.724608][ T3738] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   71.730618][    C1]  ? hrtimer_interrupt+0x76b/0x980
[   71.736787][ T3738] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   71.742024][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[   71.747359][   T48] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   71.754058][    C1]  __irq_exit_rcu+0x157/0x240
[   71.761999][   T48] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   71.766181][    C1]  ? irq_exit_rcu+0x20/0x20
[   71.766226][    C1]  irq_exit_rcu+0x5/0x20
[   71.771127][ T3738] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   71.777813][    C1]  sysvec_apic_timer_interrupt+0x91/0xb0
[   71.777842][    C1]  </IRQ>
[   71.777851][    C1]  <TASK>
[   71.777859][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   71.777887][    C1] RIP: 0010:lock_acquire+0x26f/0x5a0
[   71.777919][    C1] Code: 2b 00 74 08 4c 89 f7 e8 8f a6 77 00 f6 44 24 61 02 0f 85 84 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[   71.777937][    C1] RSP: 0018:ffffc90003d0f460 EFLAGS: 00000206
[   71.777958][    C1] RAX: 0000000000000001 RBX: 1ffff920007a1e98 RCX: 1ffff920007a1e38
[   71.777975][    C1] RDX: dffffc0000000000 RSI: ffffffff8b0c13e0 RDI: ffffffff8b5d5ec0
[   71.777992][    C1] RBP: ffffc90003d0f5b8 R08: dffffc0000000000 R09: fffffbfff20e7445
[   71.778020][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920007a1e94
[   71.778035][    C1] R13: dffffc0000000000 R14: ffffc90003d0f4c0 R15: 0000000000000246
[   71.778074][    C1]  ? read_lock_is_recursive+0x10/0x10
[   71.786145][ T3738] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   71.786906][    C1]  ? kvm_sched_clock_read+0x14/0x40
[   71.794126][   T48] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   71.799436][    C1]  ? sched_clock_cpu+0x71/0x2b0
[   71.911684][    C1]  ? __sched_clock_gtod_offset+0xe0/0xe0
[   71.917322][    C1]  ? page_ext_get+0x1c/0x2a0
[   71.921927][    C1]  page_ext_get+0x39/0x2a0
[   71.926385][    C1]  ? page_ext_get+0x1c/0x2a0
[   71.931010][    C1]  __reset_page_owner+0x32/0x1a0
[   71.935985][    C1]  free_unref_page_prepare+0xf63/0x1120
[   71.941542][    C1]  ? insert_vmap_area_augment+0x600/0x600
[   71.947267][    C1]  free_unref_page+0x33/0x3e0
[   71.951938][    C1]  __vunmap+0x834/0x9a0
[   71.956109][    C1]  kcov_close+0x27/0x50
[   71.960271][    C1]  ? kcov_open+0x80/0x80
[   71.964551][    C1]  __fput+0x3f6/0x8d0
[   71.968536][    C1]  task_work_run+0x246/0x300
[   71.973152][    C1]  ? kasan_quarantine_put+0xd4/0x220
[   71.978473][    C1]  ? task_work_cancel+0x2e0/0x2e0
[   71.983511][    C1]  ? kmem_cache_free+0x292/0x510
[   71.988443][    C1]  ? do_exit+0xa6e/0x26a0
[   71.992767][    C1]  do_exit+0xa73/0x26a0
[   71.996975][    C1]  ? put_task_struct+0x80/0x80
[   72.001736][    C1]  ? get_signal+0x137e/0x17d0
[   72.006412][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.012397][    C1]  ? print_irqtrace_events+0x210/0x210
[   72.017887][    C1]  ? _raw_spin_lock_irq+0xdb/0x110
[   72.023025][    C1]  do_group_exit+0x202/0x2b0
[   72.027634][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[   72.032818][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[   72.038003][    C1]  get_signal+0x16f7/0x17d0
[   72.042526][    C1]  ? pipe_wait_writable+0x590/0x590
[   72.047726][    C1]  ? ptrace_notify+0x370/0x370
[   72.052481][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.058537][    C1]  ? wake_bit_function+0x210/0x210
[   72.063661][    C1]  arch_do_signal_or_restart+0xb0/0x1a10
[   72.069293][    C1]  ? vfs_read+0x553/0xbf0
[   72.073635][    C1]  ? kernel_read+0x1f0/0x1f0
[   72.078266][    C1]  ? __fput+0x6c6/0x8d0
[   72.082431][    C1]  ? get_sigframe_size+0x10/0x10
[   72.087391][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.093376][    C1]  ? ksys_read+0x252/0x2c0
[   72.097806][    C1]  ? exit_to_user_mode_loop+0x39/0x100
[   72.103283][    C1]  exit_to_user_mode_loop+0x6a/0x100
[   72.108572][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[   72.114110][    C1]  syscall_exit_to_user_mode+0x60/0x270
[   72.119649][    C1]  do_syscall_64+0x47/0xb0
[   72.124073][    C1]  ? clear_bhb_loop+0x45/0xa0
[   72.128881][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   72.134769][    C1] RIP: 0033:0x7fa232b7887d
[   72.139192][    C1] Code: Unable to access opcode bytes at 0x7fa232b78853.
[   72.146190][    C1] RSP: 002b:00007ffd553f6d18 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.154612][    C1] RAX: fffffffffffffe00 RBX: 0000000000000003 RCX: 00007fa232b7887d
[   72.162570][    C1] RDX: 0000000000000028 RSI: 00007ffd553f6da0 RDI: 00000000000000f9
[   72.170621][    C1] RBP: 00007ffd553f6d4c R08: 00007ffd553f664c R09: 0079746972756365
[   72.178592][    C1] R10: 00007ffd553f66b0 R11: 0000000000000246 R12: 0000000000000032
[   72.186554][    C1] R13: 0000000000011136 R14: 000000000001110d R15: 00007ffd553f6da0
[   72.194523][    C1]  </TASK>
[   72.197528][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   72.204793][    C1] CPU: 1 PID: 3695 Comm: syz-executor Not tainted 6.1.105-syzkaller #0
[   72.213016][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   72.223085][    C1] Call Trace:
[   72.226383][    C1]  <IRQ>
[   72.229228][    C1]  dump_stack_lvl+0x1e3/0x2cb
[   72.233947][    C1]  ? nf_tcp_handle_invalid+0x642/0x642
[   72.239461][    C1]  ? panic+0x764/0x764
[   72.243545][    C1]  ? vscnprintf+0x59/0x80
[   72.247882][    C1]  panic+0x318/0x764
[   72.251913][    C1]  ? __warn+0x169/0x520
[   72.256073][    C1]  ? memcpy_page_flushcache+0xfc/0xfc
[   72.261447][    C1]  __warn+0x348/0x520
[   72.265423][    C1]  ? __queue_work+0xddc/0xf90
[   72.270102][    C1]  report_bug+0x2af/0x500
[   72.274509][    C1]  ? __queue_work+0xddc/0xf90
[   72.279194][    C1]  handle_bug+0x3d/0x70
[   72.283367][    C1]  exc_invalid_op+0x16/0x40
[   72.287872][    C1]  asm_exc_invalid_op+0x16/0x20
[   72.292716][    C1] RIP: 0010:__queue_work+0xddc/0xf90
[   72.297988][    C1] Code: 8b 3c 24 e8 c6 9a 88 00 e9 d9 fc ff ff e8 bc 1f 31 00 89 ee 48 c7 c7 80 99 1d 8d e8 1e a2 0a 03 e9 1e fc ff ff e8 a4 1f 31 00 <0f> 0b 48 83 c4 50 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 8e 1f 31 00
[   72.317668][    C1] RSP: 0018:ffffc900001e0af8 EFLAGS: 00010046
[   72.323780][    C1] RAX: ffffffff8159806c RBX: 00000000000b0012 RCX: ffff88802662bb80
[   72.331788][    C1] RDX: 0000000000000100 RSI: 0000000000000100 RDI: 0000000000000000
[   72.339854][    C1] RBP: 0000000000010000 R08: ffffffff815a6db5 R09: fffffbfff1d339ae
[   72.347875][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   72.355836][    C1] R13: dffffc0000000000 R14: 0000000000000008 R15: ffff888058b23800
[   72.363808][    C1]  ? is_chained_work+0x25/0x100
[   72.368656][    C1]  ? __queue_work+0xddc/0xf90
[   72.373337][    C1]  ? __queue_work+0xddc/0xf90
[   72.378021][    C1]  call_timer_fn+0x1ad/0x6b0
[   72.382599][    C1]  ? queue_work_node+0x460/0x460
[   72.387516][    C1]  ? call_timer_fn+0xc2/0x6b0
[   72.392212][    C1]  ? __run_timers+0x890/0x890
[   72.396971][    C1]  ? do_raw_spin_unlock+0x137/0x8a0
[   72.402161][    C1]  ? rcu_is_watching+0x11/0xb0
[   72.406916][    C1]  ? queue_work_node+0x460/0x460
[   72.411881][    C1]  __run_timers+0x6a8/0x890
[   72.416411][    C1]  ? detach_timer+0x380/0x380
[   72.421129][    C1]  ? print_irqtrace_events+0x210/0x210
[   72.426590][    C1]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[   72.432831][    C1]  run_timer_softirq+0x63/0xf0
[   72.437595][    C1]  handle_softirqs+0x2ee/0xa40
[   72.442439][    C1]  ? __irq_exit_rcu+0x157/0x240
[   72.447302][    C1]  ? do_softirq+0x240/0x240
[   72.451798][    C1]  ? hrtimer_interrupt+0x76b/0x980
[   72.456908][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[   72.462147][    C1]  __irq_exit_rcu+0x157/0x240
[   72.466830][    C1]  ? irq_exit_rcu+0x20/0x20
[   72.471355][    C1]  irq_exit_rcu+0x5/0x20
[   72.475604][    C1]  sysvec_apic_timer_interrupt+0x91/0xb0
[   72.481234][    C1]  </IRQ>
[   72.484167][    C1]  <TASK>
[   72.487117][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   72.493283][    C1] RIP: 0010:lock_acquire+0x26f/0x5a0
[   72.498564][    C1] Code: 2b 00 74 08 4c 89 f7 e8 8f a6 77 00 f6 44 24 61 02 0f 85 84 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25
[   72.518508][    C1] RSP: 0018:ffffc90003d0f460 EFLAGS: 00000206
[   72.524579][    C1] RAX: 0000000000000001 RBX: 1ffff920007a1e98 RCX: 1ffff920007a1e38
[   72.532556][    C1] RDX: dffffc0000000000 RSI: ffffffff8b0c13e0 RDI: ffffffff8b5d5ec0
[   72.540514][    C1] RBP: ffffc90003d0f5b8 R08: dffffc0000000000 R09: fffffbfff20e7445
[   72.548473][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920007a1e94
[   72.556483][    C1] R13: dffffc0000000000 R14: ffffc90003d0f4c0 R15: 0000000000000246
[   72.564453][    C1]  ? read_lock_is_recursive+0x10/0x10
[   72.569834][    C1]  ? kvm_sched_clock_read+0x14/0x40
[   72.575040][    C1]  ? sched_clock_cpu+0x71/0x2b0
[   72.579917][    C1]  ? __sched_clock_gtod_offset+0xe0/0xe0
[   72.585587][    C1]  ? page_ext_get+0x1c/0x2a0
[   72.590265][    C1]  page_ext_get+0x39/0x2a0
[   72.594677][    C1]  ? page_ext_get+0x1c/0x2a0
[   72.599262][    C1]  __reset_page_owner+0x32/0x1a0
[   72.604232][    C1]  free_unref_page_prepare+0xf63/0x1120
[   72.609773][    C1]  ? insert_vmap_area_augment+0x600/0x600
[   72.615492][    C1]  free_unref_page+0x33/0x3e0
[   72.620161][    C1]  __vunmap+0x834/0x9a0
[   72.624379][    C1]  kcov_close+0x27/0x50
[   72.628546][    C1]  ? kcov_open+0x80/0x80
[   72.632820][    C1]  __fput+0x3f6/0x8d0
[   72.636799][    C1]  task_work_run+0x246/0x300
[   72.641388][    C1]  ? kasan_quarantine_put+0xd4/0x220
[   72.646667][    C1]  ? task_work_cancel+0x2e0/0x2e0
[   72.651684][    C1]  ? kmem_cache_free+0x292/0x510
[   72.656614][    C1]  ? do_exit+0xa6e/0x26a0
[   72.660941][    C1]  do_exit+0xa73/0x26a0
[   72.665100][    C1]  ? put_task_struct+0x80/0x80
[   72.669875][    C1]  ? get_signal+0x137e/0x17d0
[   72.674560][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.680580][    C1]  ? print_irqtrace_events+0x210/0x210
[   72.686044][    C1]  ? _raw_spin_lock_irq+0xdb/0x110
[   72.691153][    C1]  do_group_exit+0x202/0x2b0
[   72.695777][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[   72.700989][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[   72.706203][    C1]  get_signal+0x16f7/0x17d0
[   72.710739][    C1]  ? pipe_wait_writable+0x590/0x590
[   72.715933][    C1]  ? ptrace_notify+0x370/0x370
[   72.720693][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.726678][    C1]  ? wake_bit_function+0x210/0x210
[   72.731813][    C1]  arch_do_signal_or_restart+0xb0/0x1a10
[   72.737447][    C1]  ? vfs_read+0x553/0xbf0
[   72.741775][    C1]  ? kernel_read+0x1f0/0x1f0
[   72.746358][    C1]  ? __fput+0x6c6/0x8d0
[   72.750597][    C1]  ? get_sigframe_size+0x10/0x10
[   72.755540][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   72.761609][    C1]  ? ksys_read+0x252/0x2c0
[   72.766041][    C1]  ? exit_to_user_mode_loop+0x39/0x100
[   72.771493][    C1]  exit_to_user_mode_loop+0x6a/0x100
[   72.776774][    C1]  exit_to_user_mode_prepare+0xb1/0x140
[   72.782317][    C1]  syscall_exit_to_user_mode+0x60/0x270
[   72.787865][    C1]  do_syscall_64+0x47/0xb0
[   72.792287][    C1]  ? clear_bhb_loop+0x45/0xa0
[   72.796977][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   72.802866][    C1] RIP: 0033:0x7fa232b7887d
[   72.807279][    C1] Code: Unable to access opcode bytes at 0x7fa232b78853.
[   72.814278][    C1] RSP: 002b:00007ffd553f6d18 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.822685][    C1] RAX: fffffffffffffe00 RBX: 0000000000000003 RCX: 00007fa232b7887d
[   72.830658][    C1] RDX: 0000000000000028 RSI: 00007ffd553f6da0 RDI: 00000000000000f9
[   72.838615][    C1] RBP: 00007ffd553f6d4c R08: 00007ffd553f664c R09: 0079746972756365
[   72.846573][    C1] R10: 00007ffd553f66b0 R11: 0000000000000246 R12: 0000000000000032
[   72.854528][    C1] R13: 0000000000011136 R14: 000000000001110d R15: 00007ffd553f6da0
[   72.862496][    C1]  </TASK>
[   72.865891][    C1] Kernel Offset: disabled
[   72.870257][    C1] Rebooting in 86400 seconds..