syzkaller login: [ 91.931149][ T54] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:17182' (ED25519) to the list of known hosts.
2025/08/10 00:48:29 ignoring optional flag "sandboxArg"="0"
2025/08/10 00:48:31 parsed 1 programs
[ 119.599165][ T5362] cgroup: Unknown subsys name 'net'
[ 119.688571][ T5362] cgroup: Unknown subsys name 'cpuset'
[ 119.693997][ T5362] cgroup: Unknown subsys name 'rlimit'
[ 121.347036][ T5362] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 125.092420][ T5377] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 125.438978][ T5382] syz-executor (5382) used greatest stack depth: 19528 bytes left
[ 125.878807][ T5399] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 125.883208][ T5399] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 125.887392][ T5399] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 125.891049][ T5399] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 125.896755][ T5399] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 126.305918][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.309672][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.341554][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.346184][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.317951][ T5433] chnl_net:caif_netlink_parms(): no params data found
[ 128.387287][ T5433] bridge0: port 1(bridge_slave_0) entered blocking state
[ 128.392776][ T5433] bridge0: port 1(bridge_slave_0) entered disabled state
[ 128.397642][ T5433] bridge_slave_0: entered allmulticast mode
[ 128.402174][ T5433] bridge_slave_0: entered promiscuous mode
[ 128.408711][ T5433] bridge0: port 2(bridge_slave_1) entered blocking state
[ 128.411756][ T5433] bridge0: port 2(bridge_slave_1) entered disabled state
[ 128.415248][ T5433] bridge_slave_1: entered allmulticast mode
[ 128.418861][ T5433] bridge_slave_1: entered promiscuous mode
[ 128.443547][ T5433] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 128.450594][ T5433] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 128.474157][ T5433] team0: Port device team_slave_0 added
[ 128.479306][ T5433] team0: Port device team_slave_1 added
[ 128.500254][ T5433] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 128.503267][ T5433] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 128.515479][ T5433] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 128.521934][ T5433] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 128.525144][ T5433] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 128.536562][ T5433] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 128.571124][ T5433] hsr_slave_0: entered promiscuous mode
[ 128.575520][ T5433] hsr_slave_1: entered promiscuous mode
[ 128.727184][ T5433] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 128.739488][ T5433] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 128.747749][ T5433] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 128.757310][ T5433] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 128.846005][ T5433] 8021q: adding VLAN 0 to HW filter on device bond0
[ 128.862137][ T5433] 8021q: adding VLAN 0 to HW filter on device team0
[ 128.872839][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 128.876085][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 128.899977][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 128.903057][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 129.084048][ T5433] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 129.127579][ T5433] veth0_vlan: entered promiscuous mode
[ 129.138595][ T5433] veth1_vlan: entered promiscuous mode
[ 129.171578][ T5433] veth0_macvtap: entered promiscuous mode
[ 129.180416][ T5433] veth1_macvtap: entered promiscuous mode
[ 129.199595][ T5433] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 129.210543][ T5433] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 129.222973][ T3103] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.237682][ T3103] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.241653][ T3103] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.253628][ T3103] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.397525][ T1151] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 129.456900][ T1151] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 129.506415][ T1151] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 129.558250][ T1151] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/08/10 00:48:45 executed programs: 0
[ 130.990696][ T4702] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 130.994308][ T4702] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 130.999209][ T4702] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 131.003342][ T4702] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 131.008636][ T4702] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 131.176313][ T5472] chnl_net:caif_netlink_parms(): no params data found
[ 131.233885][ T5472] bridge0: port 1(bridge_slave_0) entered blocking state
[ 131.237707][ T5472] bridge0: port 1(bridge_slave_0) entered disabled state
[ 131.240905][ T5472] bridge_slave_0: entered allmulticast mode
[ 131.245948][ T5472] bridge_slave_0: entered promiscuous mode
[ 131.251384][ T5472] bridge0: port 2(bridge_slave_1) entered blocking state
[ 131.254277][ T5472] bridge0: port 2(bridge_slave_1) entered disabled state
[ 131.258150][ T5472] bridge_slave_1: entered allmulticast mode
[ 131.261784][ T5472] bridge_slave_1: entered promiscuous mode
[ 131.299919][ T5472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 131.318048][ T5472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 131.363564][ T5472] team0: Port device team_slave_0 added
[ 131.387160][ T5472] team0: Port device team_slave_1 added
[ 131.428237][ T5472] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 131.431188][ T5472] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 131.465421][ T5472] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 131.471602][ T5472] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 131.486178][ T5472] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 131.505523][ T5472] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 131.570776][ T5472] hsr_slave_0: entered promiscuous mode
[ 131.586052][ T5472] hsr_slave_1: entered promiscuous mode
[ 131.589093][ T5472] debugfs: 'hsr0' already exists in 'hsr'
[ 131.591712][ T5472] Cannot create hsr debugfs directory
[ 132.269662][ T1151] bridge_slave_1: left allmulticast mode
[ 132.272183][ T1151] bridge_slave_1: left promiscuous mode
[ 132.287294][ T1151] bridge0: port 2(bridge_slave_1) entered disabled state
[ 132.297546][ T1151] bridge_slave_0: left allmulticast mode
[ 132.300097][ T1151] bridge_slave_0: left promiscuous mode
[ 132.302838][ T1151] bridge0: port 1(bridge_slave_0) entered disabled state
[ 132.718863][ T1151] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 132.726007][ T1151] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 132.730701][ T1151] bond0 (unregistering): Released all slaves
[ 132.841411][ T1151] hsr_slave_0: left promiscuous mode
[ 132.844292][ T1151] hsr_slave_1: left promiscuous mode
[ 132.850569][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 132.853788][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 132.860115][ T1151] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 132.863357][ T1151] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 132.882666][ T1151] veth1_macvtap: left promiscuous mode
[ 132.886057][ T1151] veth0_macvtap: left promiscuous mode
[ 132.889116][ T1151] veth1_vlan: left promiscuous mode
[ 132.892125][ T1151] veth0_vlan: left promiscuous mode
[ 133.045444][ T5399] Bluetooth: hci0: command tx timeout
[ 133.179205][ T1151] team0 (unregistering): Port device team_slave_1 removed
[ 133.198237][ T1151] team0 (unregistering): Port device team_slave_0 removed
[ 133.738099][ T5472] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 133.748545][ T5472] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 134.013758][ T5472] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 134.042303][ T5472] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 134.239598][ T5472] 8021q: adding VLAN 0 to HW filter on device bond0
[ 134.254275][ T5472] 8021q: adding VLAN 0 to HW filter on device team0
[ 134.261944][ T1151] bridge0: port 1(bridge_slave_0) entered blocking state
[ 134.265377][ T1151] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 134.293580][ T1151] bridge0: port 2(bridge_slave_1) entered blocking state
[ 134.296929][ T1151] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 134.461482][ T5472] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 134.497489][ T5472] veth0_vlan: entered promiscuous mode
[ 134.507803][ T5472] veth1_vlan: entered promiscuous mode
[ 134.533417][ T5472] veth0_macvtap: entered promiscuous mode
[ 134.539759][ T5472] veth1_macvtap: entered promiscuous mode
[ 134.553735][ T5472] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 134.563477][ T5472] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 134.579420][ T1037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 134.583110][ T1037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 134.598639][ T1037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 134.602496][ T1037] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 134.661790][ T1151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 134.668858][ T1151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 134.695759][ T1151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 134.698571][ T1151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 134.770576][ T5503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 134.778060][ T5503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 134.783430][ T5503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 134.789844][ T5503] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 134.808942][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 134.815174][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 134.925659][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 135.035423][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 135.124682][ T5399] Bluetooth: hci0: command tx timeout
[ 135.145660][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 135.329798][ T5504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.338511][ T5504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.348624][ T5504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.354007][ T5504] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.368585][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 135.372500][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 135.484739][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 135.594644][ T1037] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 135.705141][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 135.888607][ T5505] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.893965][ T5505] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.900813][ T5505] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.909040][ T5505] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 135.930861][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 135.937183][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 136.045075][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 136.155635][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 136.265045][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 136.444252][ T5506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 136.452233][ T5506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 136.458990][ T5506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 136.464222][ T5506] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
2025/08/10 00:48:50 executed programs: 5
[ 136.476478][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 136.480216][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 136.584748][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 136.694642][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 136.806115][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 136.999211][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.005501][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.010582][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.020298][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.036558][ T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 137.041165][ T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 137.145286][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 137.204581][ T5399] Bluetooth: hci0: command tx timeout
[ 137.255141][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 137.365253][ T38] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 137.552989][ T5508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.562582][ T5508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.569241][ T5508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.576936][ T5508] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 137.587626][ T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 137.591070][ T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 137.695140][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 137.805076][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 137.915066][ T38] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 138.007356][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 138.010113][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 138.106792][ T5509] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.112431][ T5509] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.125924][ T5509] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.131141][ T5509] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.146267][ T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 138.150510][ T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 138.254592][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 138.364614][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 138.474965][ T38] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 138.667063][ T5510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.673285][ T5510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.687617][ T5510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.692754][ T5510] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 138.706101][ T9] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 138.710218][ T9] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 138.814657][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 138.924593][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 139.034646][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 139.228786][ T5511] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.237894][ T5511] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.243390][ T5511] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.251553][ T5511] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.266417][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 139.269425][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 139.287684][ T5399] Bluetooth: hci0: command tx timeout
[ 139.374597][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 139.484714][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 139.594619][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 139.788799][ T5512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.793549][ T5512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.800060][ T5512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.809098][ T5512] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 139.825939][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 139.829463][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 139.934665][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 140.044669][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 140.154668][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 140.343787][ T5513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.353551][ T5513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.360307][ T5513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.368031][ T5513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.376366][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 140.380557][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 140.485199][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 140.594692][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 140.704628][ T38] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 140.897786][ T5514] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.902619][ T5514] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.916053][ T5514] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.921569][ T5514] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 140.936831][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 140.940279][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 141.044596][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 141.154653][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 141.265032][ T38] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 141.455077][ T5515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 141.463489][ T5515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 141.472211][ T5515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
2025/08/10 00:48:55 executed programs: 14
[ 141.481402][ T5515] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 141.487443][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 141.492190][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 141.608168][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 141.714619][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 141.824649][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 142.018968][ T5516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.028281][ T5516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.033426][ T5516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.039554][ T5516] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.056684][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 142.060537][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 142.164700][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 142.274813][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 142.384847][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 142.572361][ T5517] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.579344][ T5517] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.586395][ T5517] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.591466][ T5517] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 142.598690][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 142.603558][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 142.714680][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 142.824605][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 142.934551][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 143.129896][ T5518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.146361][ T5518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.151760][ T5518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.159032][ T5518] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.166420][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 143.170824][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 143.274525][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 143.385037][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 143.494610][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 143.686936][ T5519] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.697740][ T5519] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.703081][ T5519] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.710099][ T5519] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 143.726412][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 143.730846][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 143.834576][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 143.944714][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 144.054586][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 144.241327][ T5520] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.248979][ T5520] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.254136][ T5520] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.260332][ T5520] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.276133][ T5502] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 144.279826][ T5502] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 144.384688][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 144.494632][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 144.604653][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 144.782190][ T5521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.788928][ T5521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.796688][ T5521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.801511][ T5521] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 144.817491][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 144.821699][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 144.934637][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 145.047097][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 145.154736][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 145.320627][ T5522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.326812][ T5522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.332298][ T5522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.339632][ T5522] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.357488][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 145.361334][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 145.474627][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 145.585031][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 145.694594][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 145.866485][ T5523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.872008][ T5523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.880061][ T5523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.886693][ T5523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 145.906318][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 145.910714][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 146.014710][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 146.124942][ T1151] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 146.234720][ T1151] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 146.412976][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 146.418393][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 146.423502][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 146.435333][ T5524] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 146.448509][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 146.452393][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 146.564644][ T3103] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[ 146.674677][ T38] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[ 146.784680][ T3103] wlan1: authentication with 08:02:11:00:00:00 timed out
[ 146.980955][ T5525] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
2025/08/10 00:49:01 executed programs: 24
[ 146.988804][ T5525] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 146.996387][ T10] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[ 146.999975][ T10] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[ 147.003270][ T5525] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 147.009585][ T5525] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 147.527645][ T5526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 147.532372][ T38] wlan1: authenticated
[ 147.534865][ T5526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 147.540603][ T38] wlan1: RX AssocResp from 08:02:11:00:00:00 (capab=0x1 status=0 aid=1)
[ 147.551132][ T5526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 147.557441][ T38] wlan1: associated
[ 147.560509][ T5526] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.081155][ T5527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.089753][ T5527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.097505][ T5527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.103254][ T3103] wlan1: AP 08:02:11:00:00:00 tries to chanswitch to same channel, ignore
[ 148.107924][ T5527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.628522][ T5528] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.633425][ T5528] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.639599][ T5528] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 148.646993][ T5528] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 149.165644][ T5529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 149.170154][ T5529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 149.176863][ T5529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 149.182085][ T5529] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 149.703091][ T38] ==================================================================
[ 149.707362][ T38] BUG: KASAN: slab-use-after-free in cmp_bss+0xd4d/0xe80
[ 149.711213][ T38] Read of size 4 at addr ffff88804b2de518 by task kworker/u4:3/38
[ 149.715465][ T38]
[ 149.716587][ T38] CPU: 0 UID: 0 PID: 38 Comm: kworker/u4:3 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 149.716601][ T38] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 149.716609][ T38] Workqueue: events_unbound cfg80211_wiphy_work
[ 149.716631][ T38] Call Trace:
[ 149.716638][ T38]
[ 149.716644][ T38] dump_stack_lvl+0x189/0x250
[ 149.716657][ T38] ? __kasan_check_byte+0x12/0x40
[ 149.716710][ T38] ? __pfx_dump_stack_lvl+0x10/0x10
[ 149.716717][ T38] ? lock_release+0x4b/0x3e0
[ 149.716731][ T38] ? __virt_addr_valid+0x4a5/0x5c0
[ 149.716743][ T38] print_report+0xca/0x240
[ 149.716753][ T38] ? cmp_bss+0xd4d/0xe80
[ 149.716762][ T38] kasan_report+0x118/0x150
[ 149.716773][ T38] ? ret_from_fork_asm+0x1a/0x30
[ 149.716786][ T38] ? cmp_bss+0xd4d/0xe80
[ 149.716796][ T38] cmp_bss+0xd4d/0xe80
[ 149.716805][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.716817][ T38] __cfg80211_bss_update+0xdb/0x2120
[ 149.716827][ T38] ? do_raw_spin_lock+0x121/0x290
[ 149.716839][ T38] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 149.716851][ T38] ? trace_kmalloc+0x1f/0xd0
[ 149.716861][ T38] ? cfg80211_inform_single_bss_data+0xb90/0x1ac0
[ 149.716871][ T38] cfg80211_inform_single_bss_data+0xba9/0x1ac0
[ 149.716882][ T38] ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 149.716898][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.716910][ T38] ? cfg80211_inform_bss_data+0x1e8/0x3b30
[ 149.716920][ T38] cfg80211_inform_bss_data+0x1fb/0x3b30
[ 149.716930][ T38] ? unwind_next_frame+0xa5/0x2390
[ 149.716943][ T38] ? unwind_next_frame+0xa5/0x2390
[ 149.716954][ T38] ? unwind_next_frame+0xa5/0x2390
[ 149.716963][ T38] ? unwind_next_frame+0x19ae/0x2390
[ 149.716974][ T38] ? unwind_next_frame+0xa5/0x2390
[ 149.716981][ T38] ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 149.716988][ T38] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 149.716996][ T38] ? arch_stack_walk+0x11c/0x150
[ 149.717004][ T38] ? ret_from_fork_asm+0x1a/0x30
[ 149.717012][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.717021][ T38] ? __update_page_owner_handle+0x5a/0x570
[ 149.717031][ T38] cfg80211_inform_bss_frame_data+0x3d7/0x730
[ 149.717039][ T38] ? ieee80211_bss_info_update+0x2dc/0x9e0
[ 149.717077][ T38] ieee80211_bss_info_update+0x746/0x9e0
[ 149.717089][ T38] ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 149.717100][ T38] ? ieee80211_get_channel_khz+0x15b/0x8a0
[ 149.717114][ T38] ieee80211_rx_bss_info+0x176/0x280
[ 149.717128][ T38] ieee80211_sta_rx_queued_mgmt+0x1294/0x4470
[ 149.717146][ T38] ? __pfx_ieee80211_sta_rx_queued_mgmt+0x10/0x10
[ 149.717161][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.717173][ T38] ? rcu_is_watching+0x15/0xb0
[ 149.717190][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.717204][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.717218][ T38] ? __lock_acquire+0xab9/0xd20
[ 149.717235][ T38] ? kcov_remote_start+0x18e/0x7f0
[ 149.717248][ T38] ieee80211_iface_work+0x652/0x12d0
[ 149.717261][ T38] cfg80211_wiphy_work+0x2b8/0x470
[ 149.717273][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 149.717284][ T38] process_scheduled_works+0xade/0x17b0
[ 149.717300][ T38] ? __pfx_process_scheduled_works+0x10/0x10
[ 149.717319][ T38] worker_thread+0x8a0/0xda0
[ 149.717327][ T38] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 149.717337][ T38] ? __kthread_parkme+0x7b/0x200
[ 149.717344][ T38] kthread+0x70e/0x8a0
[ 149.717352][ T38] ? __pfx_worker_thread+0x10/0x10
[ 149.717358][ T38] ? __pfx_kthread+0x10/0x10
[ 149.717366][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 149.717372][ T38] ? lockdep_hardirqs_on+0x9c/0x150
[ 149.717380][ T38] ? __pfx_kthread+0x10/0x10
[ 149.717387][ T38] ret_from_fork+0x3fc/0x770
[ 149.717394][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 149.717402][ T38] ? __pfx_kthread+0x10/0x10
[ 149.717413][ T38] ret_from_fork_asm+0x1a/0x30
[ 149.717427][ T38]
[ 149.717431][ T38]
[ 149.883083][ T38] Allocated by task 3103:
[ 149.884842][ T38] kasan_save_track+0x3e/0x80
[ 149.886588][ T38] __kasan_kmalloc+0x93/0xb0
[ 149.888578][ T38] __kmalloc_noprof+0x27a/0x4f0
[ 149.890751][ T38] cfg80211_inform_single_bss_data+0x905/0x1ac0
[ 149.893341][ T38] cfg80211_inform_bss_data+0x1fb/0x3b30
[ 149.895925][ T38] cfg80211_inform_bss_frame_data+0x3d7/0x730
[ 149.898523][ T38] ieee80211_bss_info_update+0x746/0x9e0
[ 149.900859][ T38] ieee80211_rx_bss_info+0x176/0x280
[ 149.903124][ T38] ieee80211_rx_mgmt_beacon+0x197d/0x2cd0
[ 149.905618][ T38] ieee80211_sta_rx_queued_mgmt+0x4ed/0x4470
[ 149.908315][ T38] ieee80211_iface_work+0x652/0x12d0
[ 149.910668][ T38] cfg80211_wiphy_work+0x2b8/0x470
[ 149.912875][ T38] process_scheduled_works+0xade/0x17b0
[ 149.915316][ T38] worker_thread+0x8a0/0xda0
[ 149.917335][ T38] kthread+0x70e/0x8a0
[ 149.919188][ T38] ret_from_fork+0x3fc/0x770
[ 149.921338][ T38] ret_from_fork_asm+0x1a/0x30
[ 149.923600][ T38]
[ 149.924744][ T38] Freed by task 38:
[ 149.926454][ T38] kasan_save_track+0x3e/0x80
[ 149.928437][ T38] kasan_save_free_info+0x46/0x50
[ 149.930578][ T38] __kasan_slab_free+0x5b/0x80
[ 149.932675][ T38] kmem_cache_free_bulk+0x2d1/0x520
[ 149.934955][ T38] kvfree_rcu_bulk+0xe5/0x1f0
[ 149.937038][ T38] kfree_rcu_work+0xed/0x170
[ 149.939059][ T38] process_scheduled_works+0xade/0x17b0
[ 149.941495][ T38] worker_thread+0x8a0/0xda0
[ 149.943484][ T38] kthread+0x70e/0x8a0
[ 149.945091][ T38] ret_from_fork+0x3fc/0x770
[ 149.947020][ T38] ret_from_fork_asm+0x1a/0x30
[ 149.949011][ T38]
[ 149.949998][ T38] Last potentially related work creation:
[ 149.952117][ T38] kasan_save_stack+0x3e/0x60
[ 149.954117][ T38] kasan_record_aux_stack+0xbd/0xd0
[ 149.956207][ T38] kvfree_call_rcu+0xbb/0x410
[ 149.958187][ T38] cfg80211_update_known_bss+0x454/0x1330
[ 149.960388][ T38] cfg80211_update_assoc_bss_entry+0x4ba/0x6a0
[ 149.962907][ T38] cfg80211_ch_switch_notify+0x3c1/0x780
[ 149.965363][ T38] ieee80211_sta_process_chanswitch+0xad4/0x2870
[ 149.967993][ T38] ieee80211_rx_mgmt_beacon+0x19c7/0x2cd0
[ 149.970483][ T38] ieee80211_sta_rx_queued_mgmt+0x4ed/0x4470
[ 149.973077][ T38] ieee80211_iface_work+0x652/0x12d0
[ 149.975363][ T38] cfg80211_wiphy_work+0x2b8/0x470
[ 149.977647][ T38] process_scheduled_works+0xade/0x17b0
[ 149.980084][ T38] worker_thread+0x8a0/0xda0
[ 149.982079][ T38] kthread+0x70e/0x8a0
[ 149.983794][ T38] ret_from_fork+0x3fc/0x770
[ 149.985745][ T38] ret_from_fork_asm+0x1a/0x30
[ 149.987824][ T38]
[ 149.988831][ T38] The buggy address belongs to the object at ffff88804b2de500
[ 149.988831][ T38] which belongs to the cache kmalloc-96 of size 96
[ 149.994563][ T38] The buggy address is located 24 bytes inside of
[ 149.994563][ T38] freed 96-byte region [ffff88804b2de500, ffff88804b2de560)
[ 150.000666][ T38]
[ 150.001840][ T38] The buggy address belongs to the physical page:
[ 150.004637][ T38] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b2de
[ 150.008601][ T38] anon flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 150.012003][ T38] page_type: f5(slab)
[ 150.013697][ T38] raw: 04fff00000000000 ffff88801a441280 ffffea00010fab80 dead000000000005
[ 150.017846][ T38] raw: 0000000000000000 0000000000200020 00000000f5000000 0000000000000000
[ 150.022129][ T38] page dumped because: kasan: bad access detected
[ 150.024924][ T38] page_owner tracks the page as allocated
[ 150.027703][ T38] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 3103, tgid 3103 (kworker/u4:12), ts 130328667868, free_ts 130314026448
[ 150.036267][ T38] post_alloc_hook+0x240/0x2a0
[ 150.038306][ T38] get_page_from_freelist+0x21e4/0x22c0
[ 150.040689][ T38] __alloc_frozen_pages_noprof+0x181/0x370
[ 150.043191][ T38] allocate_slab+0x65/0x370
[ 150.044981][ T38] ___slab_alloc+0xbeb/0x1410
[ 150.046996][ T38] __kmalloc_node_noprof+0x2fd/0x4e0
[ 150.049313][ T38] allocate_slab+0x16a/0x370
[ 150.051295][ T38] ___slab_alloc+0xbeb/0x1410
[ 150.053305][ T38] kmem_cache_alloc_noprof+0x283/0x3c0
[ 150.055644][ T38] dst_alloc+0x105/0x170
[ 150.057292][ T38] icmp6_dst_alloc+0x75/0x420
[ 150.059378][ T38] ndisc_send_skb+0x41f/0x1440
[ 150.061514][ T38] addrconf_dad_completed+0x7ae/0xd60
[ 150.063976][ T38] addrconf_dad_work+0xc36/0x14b0
[ 150.066199][ T38] process_scheduled_works+0xade/0x17b0
[ 150.068615][ T38] worker_thread+0x8a0/0xda0
[ 150.070687][ T38] page last free pid 5457 tgid 5457 stack trace:
[ 150.073550][ T38] __free_frozen_pages+0xbc4/0xd30
[ 150.075670][ T38] tlb_finish_mmu+0x112/0x1d0
[ 150.077737][ T38] exit_mmap+0x44c/0xb50
[ 150.079688][ T38] __mmput+0x118/0x430
[ 150.081478][ T38] exit_mm+0x1da/0x2c0
[ 150.083239][ T38] do_exit+0x648/0x2300
[ 150.085025][ T38] do_group_exit+0x21c/0x2d0
[ 150.087100][ T38] get_signal+0x1286/0x1340
[ 150.088995][ T38] arch_do_signal_or_restart+0x9a/0x750
[ 150.091447][ T38] exit_to_user_mode_loop+0x75/0x110
[ 150.093766][ T38] do_syscall_64+0x2bd/0x3b0
[ 150.095722][ T38] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 150.098239][ T38]
[ 150.099244][ T38] Memory state around the buggy address:
[ 150.101557][ T38] ffff88804b2de400: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 150.105011][ T38] ffff88804b2de480: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[ 150.108363][ T38] >ffff88804b2de500: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 150.111684][ T38] ^
[ 150.113792][ T38] ffff88804b2de580: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[ 150.117285][ T38] ffff88804b2de600: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc
[ 150.120637][ T38] ==================================================================
[ 150.124101][ T38] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 150.127118][ T38] CPU: 0 UID: 0 PID: 38 Comm: kworker/u4:3 Not tainted 6.16.0-syzkaller-12250-gc30a13538d9f #0 PREEMPT(full)
[ 150.132025][ T38] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 150.136513][ T38] Workqueue: events_unbound cfg80211_wiphy_work
[ 150.139212][ T38] Call Trace:
[ 150.140876][ T38]
[ 150.142163][ T38] dump_stack_lvl+0x99/0x250
[ 150.144174][ T38] ? __asan_memcpy+0x40/0x70
[ 150.146008][ T38] ? __pfx_dump_stack_lvl+0x10/0x10
[ 150.147983][ T38] ? __pfx__printk+0x10/0x10
[ 150.149764][ T38] vpanic+0x281/0x750
[ 150.151398][ T38] ? __pfx_vpanic+0x10/0x10
[ 150.153246][ T38] ? irqentry_exit+0x74/0x90
[ 150.155137][ T38] panic+0xb9/0xc0
[ 150.156622][ T38] ? __pfx_panic+0x10/0x10
[ 150.158392][ T38] ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 150.160718][ T38] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 150.163470][ T38] ? cmp_bss+0xd4d/0xe80
[ 150.165419][ T38] check_panic_on_warn+0x89/0xb0
[ 150.167470][ T38] ? cmp_bss+0xd4d/0xe80
[ 150.169370][ T38] end_report+0x78/0x160
[ 150.170956][ T38] kasan_report+0x129/0x150
[ 150.172764][ T38] ? ret_from_fork_asm+0x1a/0x30
[ 150.174947][ T38] ? cmp_bss+0xd4d/0xe80
[ 150.176792][ T38] cmp_bss+0xd4d/0xe80
[ 150.178585][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.180790][ T38] __cfg80211_bss_update+0xdb/0x2120
[ 150.183116][ T38] ? do_raw_spin_lock+0x121/0x290
[ 150.185249][ T38] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 150.187650][ T38] ? trace_kmalloc+0x1f/0xd0
[ 150.189749][ T38] ? cfg80211_inform_single_bss_data+0xb90/0x1ac0
[ 150.192618][ T38] cfg80211_inform_single_bss_data+0xba9/0x1ac0
[ 150.195365][ T38] ? __pfx_cfg80211_inform_single_bss_data+0x10/0x10
[ 150.198179][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.200470][ T38] ? cfg80211_inform_bss_data+0x1e8/0x3b30
[ 150.203050][ T38] cfg80211_inform_bss_data+0x1fb/0x3b30
[ 150.205480][ T38] ? unwind_next_frame+0xa5/0x2390
[ 150.207749][ T38] ? unwind_next_frame+0xa5/0x2390
[ 150.209955][ T38] ? unwind_next_frame+0xa5/0x2390
[ 150.212189][ T38] ? unwind_next_frame+0x19ae/0x2390
[ 150.214597][ T38] ? unwind_next_frame+0xa5/0x2390
[ 150.216877][ T38] ? __pfx_cfg80211_inform_bss_data+0x10/0x10
[ 150.219323][ T38] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 150.221723][ T38] ? arch_stack_walk+0x11c/0x150
[ 150.223819][ T38] ? ret_from_fork_asm+0x1a/0x30
[ 150.226026][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.228209][ T38] ? __update_page_owner_handle+0x5a/0x570
[ 150.230691][ T38] cfg80211_inform_bss_frame_data+0x3d7/0x730
[ 150.233375][ T38] ? ieee80211_bss_info_update+0x2dc/0x9e0
[ 150.236126][ T38] ieee80211_bss_info_update+0x746/0x9e0
[ 150.238822][ T38] ? __pfx_ieee80211_bss_info_update+0x10/0x10
[ 150.241576][ T38] ? ieee80211_get_channel_khz+0x15b/0x8a0
[ 150.244212][ T38] ieee80211_rx_bss_info+0x176/0x280
[ 150.246424][ T38] ieee80211_sta_rx_queued_mgmt+0x1294/0x4470
[ 150.248850][ T38] ? __pfx_ieee80211_sta_rx_queued_mgmt+0x10/0x10
[ 150.251466][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.253426][ T38] ? rcu_is_watching+0x15/0xb0
[ 150.255436][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.257454][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.259489][ T38] ? __lock_acquire+0xab9/0xd20
[ 150.261703][ T38] ? kcov_remote_start+0x18e/0x7f0
[ 150.264155][ T38] ieee80211_iface_work+0x652/0x12d0
[ 150.266677][ T38] cfg80211_wiphy_work+0x2b8/0x470
[ 150.269062][ T38] ? process_scheduled_works+0x9ef/0x17b0
[ 150.271579][ T38] process_scheduled_works+0xade/0x17b0
[ 150.274066][ T38] ? __pfx_process_scheduled_works+0x10/0x10
[ 150.276733][ T38] worker_thread+0x8a0/0xda0
[ 150.278811][ T38] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 150.281598][ T38] ? __kthread_parkme+0x7b/0x200
[ 150.283833][ T38] kthread+0x70e/0x8a0
[ 150.285584][ T38] ? __pfx_worker_thread+0x10/0x10
[ 150.287472][ T38] ? __pfx_kthread+0x10/0x10
[ 150.289409][ T38] ? _raw_spin_unlock_irq+0x23/0x50
[ 150.291822][ T38] ? lockdep_hardirqs_on+0x9c/0x150
[ 150.294188][ T38] ? __pfx_kthread+0x10/0x10
[ 150.296275][ T38] ret_from_fork+0x3fc/0x770
[ 150.298310][ T38] ? __pfx_ret_from_fork+0x10/0x10
[ 150.300598][ T38] ? __pfx_kthread+0x10/0x10
[ 150.302424][ T38] ret_from_fork_asm+0x1a/0x30
[ 150.304349][ T38]
[ 150.305932][ T38] Kernel Offset: disabled
[ 150.307718][ T38] Rebooting in 86400 seconds..
VM DIAGNOSIS:
00:49:04 Registers:
info registers vcpu 0
CPU#0
RAX=000000000000007a RBX=000000000000007a RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90000596450
R8 =ffff888033a78237 R9 =1ffff1100674f046 R10=dffffc0000000000 R11=ffffffff855080e0
R12=dffffc0000000000 R13=ffffffff99b048e2 R14=ffffffff99df97a0 R15=0000000000000000
RIP=ffffffff8550815c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808d211000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000055557565b808 CR3=0000000059be3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000004000 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000316e616c77
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe96200a96
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe96200a96 00007ffe96200a9c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12e46
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12e53
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12e4d
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12e61
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12ee7
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f0a09c12fc5
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000110208 0000001102080100 0011020800000050
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 8201010202020202 0206000001006400 0000000000000000 0000000011020800
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c667265766f20 6772612061746164 000a747261745374 6f68000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49435740534a05 4257440544514441 000a515744515351 4a4d5655444b5300
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000