last executing test programs: 5.09012002s ago: executing program 2 (id=200): timer_gettime(0x0, &(0x7f0000000000)) 5.062769436s ago: executing program 0 (id=203): sched_rr_get_interval(0x0, &(0x7f0000000000)) 4.990156506s ago: executing program 3 (id=204): setresuid(0x0, 0x0, 0x0) 4.989996677s ago: executing program 2 (id=205): get_thread_area(&(0x7f0000000000)) 4.989870426s ago: executing program 1 (id=206): timer_getoverrun(0x0) 4.96241645s ago: executing program 4 (id=207): socket$vsock_dgram(0x28, 0x2, 0x0) 4.941330961s ago: executing program 0 (id=208): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current', 0x2, 0x0) 4.894271683s ago: executing program 2 (id=209): inotify_rm_watch(0xffffffffffffffff, 0x0) 4.894090518s ago: executing program 3 (id=210): mincore(0x0, 0x0, &(0x7f0000000000)) 4.884443356s ago: executing program 1 (id=211): mprotect(0x0, 0x0, 0x0) 4.850924239s ago: executing program 2 (id=212): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rtc0', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0', 0x800, 0x0) 4.797700633s ago: executing program 3 (id=213): socket$pptp(0x18, 0x1, 0x2) 4.797458885s ago: executing program 4 (id=214): fstatfs(0xffffffffffffffff, &(0x7f0000000000)) 4.797285395s ago: executing program 0 (id=215): lchown(&(0x7f0000000000), 0x0, 0x0) 4.760282345s ago: executing program 1 (id=216): rseq(&(0x7f0000000000), 0x0, 0x0, 0x0) 4.74034068s ago: executing program 3 (id=217): socket$caif_stream(0x25, 0x1, 0x0) 4.665897529s ago: executing program 0 (id=218): brk(0x0) 4.665772544s ago: executing program 2 (id=219): rt_sigsuspend(&(0x7f0000000000), 0x0) 4.665689293s ago: executing program 4 (id=220): getpgid(0x0) 4.660226022s ago: executing program 1 (id=221): fdatasync(0xffffffffffffffff) 4.621983922s ago: executing program 0 (id=222): landlock_restrict_self(0xffffffffffffffff, 0x0) 4.573579284s ago: executing program 4 (id=223): epoll_create1(0x0) 4.573444825s ago: executing program 2 (id=224): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp', 0x800, 0x0) 4.573232735s ago: executing program 3 (id=225): syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) 2.925360961s ago: executing program 1 (id=226): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 2.88509061s ago: executing program 4 (id=227): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1.971612448s ago: executing program 3 (id=229): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1.242678301s ago: executing program 0 (id=228): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 583.192668ms ago: executing program 4 (id=233): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 0s ago: executing program 1 (id=232): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.10.59' (ED25519) to the list of known hosts. [ 168.631862][ T5766] cgroup: Unknown subsys name 'net' [ 168.746268][ T5766] cgroup: Unknown subsys name 'cpuset' [ 168.760762][ T5766] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 215.892400][ T5766] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 219.275600][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 219.282562][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 220.196084][ T5822] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 225.721936][ T6025] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 225.735661][ T6025] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 225.747717][ T6025] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 225.783526][ T6025] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 225.809481][ T6025] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 225.824866][ T6025] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 226.646365][ T6024] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 228.546455][ T1842] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.557002][ T1842] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.746636][ T1842] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.755272][ T1842] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 228.985983][ T6039] chnl_net:caif_netlink_parms(): no params data found [ 229.949240][ T1814] Oops: general protection fault, probably for non-canonical address 0xffff11026b463e40: 0000 [#1] PREEMPT SMP PTI [ 229.962711][ T1814] CPU: 0 UID: 0 PID: 1814 Comm: kworker/u8:6 Not tainted 6.13.0-syzkaller-09383-gebbb8be421ee #0 [ 229.973792][ T1814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 229.984133][ T1814] Workqueue: netns cleanup_net [ 229.989218][ T1814] RIP: 0010:refill_obj_stock+0x140/0x5d0 [ 229.995295][ T1814] Code: 00 00 48 85 db 0f 85 e1 02 00 00 be 08 00 00 00 4c 89 ff e8 52 c1 f4 ff 4d 85 e4 0f 85 dd 03 00 00 4d 85 e4 0f 85 e5 03 00 00 <65> 49 ff 07 e8 a7 b6 31 ff 4c 89 ef e8 df c0 f4 ff 48 c7 00 00 00 [ 230.015539][ T1814] RSP: 0018:ffff88810a80f828 EFLAGS: 00010046 [ 230.021924][ T1814] RAX: ffff88812b463e40 RBX: 0000000000000000 RCX: 0000000000000002 [ 230.030471][ T1814] RDX: 000000012b863e40 RSI: ffff88813fffad10 RDI: ffff88812b863e40 [ 230.038871][ T1814] RBP: ffff88810a80f8a0 R08: ffffea000000000f R09: 0000000000000000 [ 230.047371][ T1814] R10: ffff88812b063e40 R11: 0000000000000004 R12: 0000000000000000 [ 230.055769][ T1814] R13: ffff88813fca3160 R14: 0000000000000000 R15: ffff88812b863e40 [ 230.064679][ T1814] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 230.073956][ T1814] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 230.080767][ T1814] CR2: 00007f51724ef000 CR3: 000000011982c000 CR4: 00000000003526f0 [ 230.089069][ T1814] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 230.097265][ T1814] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 230.105504][ T1814] Call Trace: [ 230.109127][ T1814] [ 230.112262][ T1814] ? show_trace_log_lvl+0x268/0x3d0 [ 230.117975][ T1814] ? __memcg_slab_free_hook+0x21d/0x570 [ 230.123936][ T1814] ? __die_body+0xce/0x1a0 [ 230.128875][ T1814] ? die_addr+0x255/0x320 [ 230.133867][ T1814] ? exc_general_protection+0x2ce/0x4b0 [ 230.139798][ T1814] ? asm_exc_general_protection+0x2b/0x30 [ 230.145912][ T1814] ? refill_obj_stock+0x140/0x5d0 [ 230.151267][ T1814] ? refill_obj_stock+0x12e/0x5d0 [ 230.156632][ T1814] __memcg_slab_free_hook+0x21d/0x570 [ 230.162346][ T1814] kfree+0x676/0xdb0 [ 230.166676][ T1814] ? kvfree+0x69/0x80 [ 230.171023][ T1814] ? free_netdev+0x205/0x930 [ 230.175885][ T1814] ? kmsan_get_metadata+0x13e/0x1c0 [ 230.181401][ T1814] kvfree+0x69/0x80 [ 230.185517][ T1814] free_netdev+0x407/0x930 [ 230.190204][ T1814] netdev_run_todo+0x14c3/0x1780 [ 230.195420][ T1814] rtnl_unlock+0x17/0x20 [ 230.199945][ T1814] cleanup_net+0xf07/0x1d20 [ 230.204715][ T1814] ? __pfx_cleanup_net+0x10/0x10 [ 230.209923][ T1814] process_scheduled_works+0xae0/0x1c40 [ 230.215849][ T1814] worker_thread+0xea7/0x14f0 [ 230.220929][ T1814] kthread+0x6b9/0xef0 [ 230.225463][ T1814] ? __pfx_worker_thread+0x10/0x10 [ 230.230963][ T1814] ? __pfx_kthread+0x10/0x10 [ 230.235934][ T1814] ret_from_fork+0x6d/0x90 [ 230.240733][ T1814] ? __pfx_kthread+0x10/0x10 [ 230.245710][ T1814] ret_from_fork_asm+0x1a/0x30 [ 230.250897][ T1814] [ 230.254120][ T1814] Modules linked in: [ 230.258250][ T1814] ---[ end trace 0000000000000000 ]--- [ 230.264067][ T1814] RIP: 0010:refill_obj_stock+0x140/0x5d0 [ 230.270428][ T1814] Code: 00 00 48 85 db 0f 85 e1 02 00 00 be 08 00 00 00 4c 89 ff e8 52 c1 f4 ff 4d 85 e4 0f 85 dd 03 00 00 4d 85 e4 0f 85 e5 03 00 00 <65> 49 ff 07 e8 a7 b6 31 ff 4c 89 ef e8 df c0 f4 ff 48 c7 00 00 00 [ 230.291369][ T1814] RSP: 0018:ffff88810a80f828 EFLAGS: 00010046 [ 230.297809][ T1814] RAX: ffff88812b463e40 RBX: 0000000000000000 RCX: 0000000000000002 [ 230.306075][ T1814] RDX: 000000012b863e40 RSI: ffff88813fffad10 RDI: ffff88812b863e40 [ 230.314378][ T1814] RBP: ffff88810a80f8a0 R08: ffffea000000000f R09: 0000000000000000 [ 230.322564][ T1814] R10: ffff88812b063e40 R11: 0000000000000004 R12: 0000000000000000 [ 230.330741][ T1814] R13: ffff88813fca3160 R14: 0000000000000000 R15: ffff88812b863e40 [ 230.338922][ T1814] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 230.348062][ T1814] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 230.355134][ T1814] CR2: 00007f51724ef000 CR3: 000000011982c000 CR4: 00000000003526f0 [ 230.363364][ T1814] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 230.371845][ T1814] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 230.380231][ T1814] Kernel panic - not syncing: Fatal exception [ 230.387092][ T1814] Kernel Offset: disabled [ 230.391537][ T1814] Rebooting in 86400 seconds..