Warning: Permanently added '10.128.10.12' (ED25519) to the list of known hosts.
2024/01/30 16:14:41 ignoring optional flag "sandboxArg"="0"
2024/01/30 16:14:41 parsed 1 programs
2024/01/30 16:14:41 executed programs: 0
[ 86.685054][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 86.693613][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 86.701778][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 86.710109][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 86.717613][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 86.725827][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 86.845532][ T5406] chnl_net:caif_netlink_parms(): no params data found
[ 86.899158][ T5406] bridge0: port 1(bridge_slave_0) entered blocking state
[ 86.906327][ T5406] bridge0: port 1(bridge_slave_0) entered disabled state
[ 86.913934][ T5406] bridge_slave_0: entered allmulticast mode
[ 86.920874][ T5406] bridge_slave_0: entered promiscuous mode
[ 86.929252][ T5406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 86.936370][ T5406] bridge0: port 2(bridge_slave_1) entered disabled state
[ 86.943780][ T5406] bridge_slave_1: entered allmulticast mode
[ 86.951078][ T5406] bridge_slave_1: entered promiscuous mode
[ 86.975656][ T5406] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 86.987020][ T5406] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.016524][ T5406] team0: Port device team_slave_0 added
[ 87.025148][ T5406] team0: Port device team_slave_1 added
[ 87.049279][ T5406] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.056275][ T5406] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.082782][ T5406] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 87.095686][ T5406] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 87.103282][ T5406] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.129352][ T5406] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 87.165966][ T5406] hsr_slave_0: entered promiscuous mode
[ 87.173356][ T5406] hsr_slave_1: entered promiscuous mode
[ 87.834755][ T5406] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 87.847265][ T5406] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 87.859984][ T5406] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 87.872054][ T5406] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 87.986457][ T5406] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.015219][ T5406] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.027995][ T5064] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.035231][ T5064] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.061021][ T5064] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.068233][ T5064] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.285197][ T5406] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.345763][ T5406] veth0_vlan: entered promiscuous mode
[ 88.366398][ T5406] veth1_vlan: entered promiscuous mode
[ 88.404447][ T5406] veth0_macvtap: entered promiscuous mode
[ 88.418557][ T5406] veth1_macvtap: entered promiscuous mode
[ 88.444223][ T5406] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 88.462947][ T5406] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 88.478520][ T5406] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.487371][ T5406] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.499510][ T5406] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.509596][ T5406] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.602340][ T1044] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.622236][ T1044] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.657447][ T2793] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.666373][ T2793] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.736269][ T5469] FAULT_INJECTION: forcing a failure.
[ 88.736269][ T5469] name failslab, interval 1, probability 0, space 0, times 1
[ 88.753516][ T5469] CPU: 0 PID: 5469 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-00031-g861c0981648f #0
[ 88.763912][ T5469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 88.774076][ T5469] Call Trace:
[ 88.777376][ T5469]
[ 88.780319][ T5469] dump_stack_lvl+0x1e7/0x2d0
[ 88.785030][ T5469] ? tcp_gro_dev_warn+0x260/0x260
[ 88.790079][ T5469] ? panic+0x850/0x850
[ 88.794277][ T5469] ? __might_sleep+0xe0/0xe0
[ 88.798907][ T5469] ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 88.804931][ T5469] should_fail_ex+0x3aa/0x4e0
[ 88.809644][ T5469] ? dccp_feat_entry_new+0x173/0x3a0
[ 88.815031][ T5469] should_failslab+0x9/0x20
[ 88.819536][ T5469] kmalloc_trace+0x76/0x360
[ 88.824041][ T5469] dccp_feat_entry_new+0x173/0x3a0
[ 88.829242][ T5469] dccp_feat_parse_options+0xeac/0x2c20
[ 88.835056][ T5469] ? dccp_feat_server_ccid_dependencies+0x390/0x390
[ 88.841660][ T5469] dccp_parse_options+0x13bd/0x2660
[ 88.846869][ T5469] dccp_rcv_established+0x55/0x310
[ 88.851987][ T5469] dccp_v4_do_rcv+0xff/0x1f0
[ 88.856705][ T5469] __release_sock+0x19c/0x4c0
[ 88.861393][ T5469] release_sock+0x61/0x1d0
[ 88.865897][ T5469] dccp_sendmsg+0x4de/0xb70
[ 88.870492][ T5469] ? dccp_getsockopt+0x1910/0x1910
[ 88.875698][ T5469] ? sock_rps_record_flow+0x1a/0x400
[ 88.880978][ T5469] ? inet_sendmsg+0x85/0x310
[ 88.885568][ T5469] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 88.890854][ T5469] ? security_socket_sendmsg+0x81/0xa0
[ 88.896311][ T5469] ? inet_send_prepare+0x250/0x250
[ 88.901421][ T5469] ____sys_sendmsg+0x592/0x890
[ 88.906212][ T5469] ? __sys_sendmsg_sock+0x30/0x30
[ 88.911278][ T5469] __sys_sendmmsg+0x3b2/0x730
[ 88.916317][ T5469] ? __ia32_sys_sendmsg+0x90/0x90
[ 88.921449][ T5469] ? proc_fail_nth_read+0x250/0x250
[ 88.926642][ T5469] ? ksys_write+0x23e/0x2c0
[ 88.931135][ T5469] ? __lock_acquire+0x1fd0/0x1fd0
[ 88.936166][ T5469] ? vfs_write+0x77d/0xca0
[ 88.940579][ T5469] ? __mutex_unlock_slowpath+0x21c/0x750
[ 88.946296][ T5469] ? kernel_write+0x330/0x330
[ 88.951007][ T5469] ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 88.957002][ T5469] ? print_irqtrace_events+0x220/0x220
[ 88.962510][ T5469] ? do_syscall_64+0x102/0x230
[ 88.967291][ T5469] __x64_sys_sendmmsg+0xa0/0xb0
[ 88.973124][ T5469] do_syscall_64+0xf5/0x230
[ 88.977644][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 88.983536][ T5469] RIP: 0033:0x7f28ddc7c859
[ 88.987952][ T5469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 89.007646][ T5469] RSP: 002b:00007f28deac60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 89.016352][ T5469] RAX: ffffffffffffffda RBX: 00007f28ddd9bf80 RCX: 00007f28ddc7c859
[ 89.024436][ T5469] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 89.032410][ T5469] RBP: 00007f28deac6120 R08: 0000000000000000 R09: 0000000000000000
[ 89.040544][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 89.048504][ T5469] R13: 000000000000000b R14: 00007f28ddd9bf80 R15: 00007ffc6b911898
[ 89.056479][ T5469]
[ 89.067968][ T5469] dccp_parse_options: DCCP(ffff8880299b1580): Option 32 (len=7) error=9
[ 89.079580][ T5469] ==================================================================
[ 89.083361][ T5054] Bluetooth: hci0: command 0x0409 tx timeout
[ 89.087838][ T5469] BUG: KASAN: slab-use-after-free in ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 89.102522][ T5469] Read of size 1 at addr ffff88802daa6494 by task syz-executor.0/5469
[ 89.110845][ T5469]
[ 89.113168][ T5469] CPU: 1 PID: 5469 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-00031-g861c0981648f #0
[ 89.123475][ T5469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 89.133514][ T5469] Call Trace:
[ 89.136927][ T5469]
[ 89.139859][ T5469] dump_stack_lvl+0x1e7/0x2d0
[ 89.144642][ T5469] ? tcp_gro_dev_warn+0x260/0x260
[ 89.149655][ T5469] ? panic+0x850/0x850
[ 89.153712][ T5469] ? _printk+0xd5/0x120
[ 89.157868][ T5469] ? __virt_addr_valid+0x183/0x520
[ 89.162970][ T5469] ? __virt_addr_valid+0x183/0x520
[ 89.168071][ T5469] print_report+0x163/0x540
[ 89.172574][ T5469] ? __virt_addr_valid+0x183/0x520
[ 89.177700][ T5469] ? __virt_addr_valid+0x183/0x520
[ 89.182797][ T5469] ? __virt_addr_valid+0x44e/0x520
[ 89.187893][ T5469] ? __phys_addr+0xba/0x170
[ 89.192395][ T5469] ? ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 89.198214][ T5469] kasan_report+0x142/0x170
[ 89.202708][ T5469] ? ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 89.208597][ T5469] ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 89.214325][ T5469] ? dccp_ackvec_clear_state+0x5dd/0x8b0
[ 89.219951][ T5469] ? dccp_ackvec_input+0x1d5/0xf60
[ 89.225163][ T5469] ? ccid2_hc_rx_packet_recv+0x12e/0x1b0
[ 89.230804][ T5469] ? ccid2_hc_rx_packet_recv+0x1b0/0x1b0
[ 89.236617][ T5469] dccp_rcv_established+0x28b/0x310
[ 89.241813][ T5469] dccp_v4_do_rcv+0xff/0x1f0
[ 89.246393][ T5469] __release_sock+0x19c/0x4c0
[ 89.251066][ T5469] release_sock+0x61/0x1d0
[ 89.255479][ T5469] dccp_sendmsg+0x4de/0xb70
[ 89.259978][ T5469] ? dccp_getsockopt+0x1910/0x1910
[ 89.265090][ T5469] ? sock_rps_record_flow+0x1a/0x400
[ 89.270537][ T5469] ? inet_sendmsg+0x85/0x310
[ 89.275118][ T5469] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 89.280390][ T5469] ? security_socket_sendmsg+0x81/0xa0
[ 89.285844][ T5469] ? inet_send_prepare+0x250/0x250
[ 89.290953][ T5469] ____sys_sendmsg+0x592/0x890
[ 89.295712][ T5469] ? __sys_sendmsg_sock+0x30/0x30
[ 89.300811][ T5469] ? __might_fault+0xa5/0x120
[ 89.305480][ T5469] __sys_sendmmsg+0x3b2/0x730
[ 89.310155][ T5469] ? __ia32_sys_sendmsg+0x90/0x90
[ 89.315265][ T5469] ? proc_fail_nth_read+0x250/0x250
[ 89.320454][ T5469] ? ksys_write+0x23e/0x2c0
[ 89.324951][ T5469] ? __lock_acquire+0x1fd0/0x1fd0
[ 89.329973][ T5469] ? vfs_write+0x77d/0xca0
[ 89.334385][ T5469] ? __mutex_unlock_slowpath+0x21c/0x750
[ 89.340010][ T5469] ? kernel_write+0x330/0x330
[ 89.344682][ T5469] ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 89.350679][ T5469] ? print_irqtrace_events+0x220/0x220
[ 89.356135][ T5469] ? do_syscall_64+0x102/0x230
[ 89.360892][ T5469] __x64_sys_sendmmsg+0xa0/0xb0
[ 89.365731][ T5469] do_syscall_64+0xf5/0x230
[ 89.370229][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 89.376140][ T5469] RIP: 0033:0x7f28ddc7c859
[ 89.380549][ T5469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 89.400229][ T5469] RSP: 002b:00007f28deac60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 89.408751][ T5469] RAX: ffffffffffffffda RBX: 00007f28ddd9bf80 RCX: 00007f28ddc7c859
[ 89.416720][ T5469] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 89.424941][ T5469] RBP: 00007f28deac6120 R08: 0000000000000000 R09: 0000000000000000
[ 89.432900][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 89.440881][ T5469] R13: 000000000000000b R14: 00007f28ddd9bf80 R15: 00007ffc6b911898
[ 89.448875][ T5469]
[ 89.451891][ T5469]
[ 89.454201][ T5469] Allocated by task 5469:
[ 89.458519][ T5469] kasan_save_track+0x3f/0x70
[ 89.463281][ T5469] __kasan_kmalloc+0x98/0xb0
[ 89.467862][ T5469] __kmalloc_node_track_caller+0x249/0x4e0
[ 89.473653][ T5469] kmalloc_reserve+0xf3/0x260
[ 89.479044][ T5469] __alloc_skb+0x1b1/0x420
[ 89.483444][ T5469] dccp_send_ack+0xa6/0x310
[ 89.487935][ T5469] ccid2_hc_rx_packet_recv+0x10c/0x1b0
[ 89.493384][ T5469] dccp_rcv_established+0x1b7/0x310
[ 89.498572][ T5469] dccp_v4_do_rcv+0xff/0x1f0
[ 89.503151][ T5469] __sk_receive_skb+0x41e/0x9d0
[ 89.508115][ T5469] ip_protocol_deliver_rcu+0x208/0x3f0
[ 89.513566][ T5469] ip_local_deliver_finish+0x2b6/0x500
[ 89.519100][ T5469] NF_HOOK+0x3a1/0x450
[ 89.523161][ T5469] NF_HOOK+0x3a1/0x450
[ 89.527227][ T5469] __netif_receive_skb+0x1ca/0x530
[ 89.532328][ T5469] process_backlog+0x385/0x760
[ 89.537079][ T5469] __napi_poll+0xc7/0x480
[ 89.541411][ T5469] net_rx_action+0x78b/0x1010
[ 89.546085][ T5469] __do_softirq+0x2b8/0x939
[ 89.550585][ T5469]
[ 89.552895][ T5469] Freed by task 5469:
[ 89.556947][ T5469] kasan_save_track+0x3f/0x70
[ 89.561618][ T5469] kasan_save_free_info+0x4e/0x60
[ 89.566720][ T5469] poison_slab_object+0xa6/0xe0
[ 89.571564][ T5469] __kasan_slab_free+0x34/0x60
[ 89.576320][ T5469] kfree+0x14a/0x380
[ 89.580204][ T5469] skb_release_data+0x660/0x850
[ 89.585088][ T5469] kfree_skb_reason+0x195/0x390
[ 89.589929][ T5469] dccp_v4_do_rcv+0x143/0x1f0
[ 89.594592][ T5469] __release_sock+0x19c/0x4c0
[ 89.599263][ T5469] release_sock+0x61/0x1d0
[ 89.603668][ T5469] dccp_sendmsg+0x4de/0xb70
[ 89.608160][ T5469] ____sys_sendmsg+0x592/0x890
[ 89.612911][ T5469] __sys_sendmmsg+0x3b2/0x730
[ 89.617574][ T5469] __x64_sys_sendmmsg+0xa0/0xb0
[ 89.622413][ T5469] do_syscall_64+0xf5/0x230
[ 89.626906][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 89.632787][ T5469]
[ 89.635113][ T5469] The buggy address belongs to the object at ffff88802daa6000
[ 89.635113][ T5469] which belongs to the cache kmalloc-2k of size 2048
[ 89.649329][ T5469] The buggy address is located 1172 bytes inside of
[ 89.649329][ T5469] freed 2048-byte region [ffff88802daa6000, ffff88802daa6800)
[ 89.663373][ T5469]
[ 89.665684][ T5469] The buggy address belongs to the physical page:
[ 89.672114][ T5469] page:ffffea0000b6a800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2daa0
[ 89.683295][ T5469] head:ffffea0000b6a800 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 89.692218][ T5469] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 89.700181][ T5469] page_type: 0xffffffff()
[ 89.704517][ T5469] raw: 00fff00000000840 ffff888013042000 dead000000000122 0000000000000000
[ 89.713157][ T5469] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000
[ 89.721830][ T5469] page dumped because: kasan: bad access detected
[ 89.728256][ T5469] page_owner tracks the page as allocated
[ 89.733960][ T5469] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4838, tgid 4838 (kworker/0:3), ts 88729761992, free_ts 88669368141
[ 89.756699][ T5469] post_alloc_hook+0x1e6/0x210
[ 89.761456][ T5469] get_page_from_freelist+0x33ea/0x3570
[ 89.766992][ T5469] __alloc_pages+0x255/0x680
[ 89.771571][ T5469] alloc_slab_page+0x5f/0x160
[ 89.776236][ T5469] new_slab+0x84/0x2f0
[ 89.780291][ T5469] ___slab_alloc+0xd17/0x13d0
[ 89.784952][ T5469] __kmalloc_node_track_caller+0x2cd/0x4e0
[ 89.790742][ T5469] kmalloc_reserve+0xf3/0x260
[ 89.795510][ T5469] __alloc_skb+0x1b1/0x420
[ 89.799911][ T5469] alloc_skb_with_frags+0xc3/0x780
[ 89.805098][ T5469] sock_alloc_send_pskb+0x919/0xa50
[ 89.810287][ T5469] mld_newpack+0x1c3/0xa90
[ 89.814694][ T5469] add_grec+0x148e/0x19a0
[ 89.819016][ T5469] mld_ifc_work+0x6bf/0xb20
[ 89.823511][ T5469] process_scheduled_works+0x90f/0x1420
[ 89.829046][ T5469] worker_thread+0xa5f/0x1000
[ 89.833710][ T5469] page last free pid 5466 tgid 5466 stack trace:
[ 89.840019][ T5469] free_unref_page_prepare+0x959/0xa80
[ 89.845466][ T5469] free_unref_page+0x37/0x3f0
[ 89.850138][ T5469] __put_partials+0xeb/0x130
[ 89.854711][ T5469] put_cpu_partial+0x17b/0x250
[ 89.859549][ T5469] __slab_free+0x2fe/0x410
[ 89.864092][ T5469] qlist_free_all+0x6d/0xd0
[ 89.868592][ T5469] kasan_quarantine_reduce+0x14b/0x160
[ 89.874034][ T5469] __kasan_slab_alloc+0x23/0x70
[ 89.878873][ T5469] kmem_cache_alloc+0x16f/0x340
[ 89.883713][ T5469] vm_area_alloc+0x24/0x1d0
[ 89.888203][ T5469] mmap_region+0xbd8/0x1f90
[ 89.892692][ T5469] do_mmap+0x7ae/0xe60
[ 89.896756][ T5469] vm_mmap_pgoff+0x1e2/0x420
[ 89.901340][ T5469] do_syscall_64+0xf5/0x230
[ 89.905833][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 89.911716][ T5469]
[ 89.914400][ T5469] Memory state around the buggy address:
[ 89.920016][ T5469] ffff88802daa6380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 89.928065][ T5469] ffff88802daa6400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 89.936110][ T5469] >ffff88802daa6480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 89.944155][ T5469] ^
[ 89.948724][ T5469] ffff88802daa6500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 89.956774][ T5469] ffff88802daa6580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 89.964818][ T5469] ==================================================================
[ 90.012824][ T5469] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 90.020232][ T5469] CPU: 1 PID: 5469 Comm: syz-executor.0 Not tainted 6.8.0-rc2-syzkaller-00031-g861c0981648f #0
[ 90.030564][ T5469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 90.040720][ T5469] Call Trace:
[ 90.044015][ T5469]
[ 90.047008][ T5469] dump_stack_lvl+0x1e7/0x2d0
[ 90.051714][ T5469] ? tcp_gro_dev_warn+0x260/0x260
[ 90.056889][ T5469] ? panic+0x850/0x850
[ 90.060984][ T5469] ? vscnprintf+0x5d/0x80
[ 90.065333][ T5469] panic+0x349/0x850
[ 90.069249][ T5469] ? check_panic_on_warn+0x21/0xa0
[ 90.074421][ T5469] ? __memcpy_flushcache+0x2b0/0x2b0
[ 90.079727][ T5469] ? _raw_spin_unlock_irqrestore+0x12c/0x140
[ 90.085730][ T5469] ? _raw_spin_unlock+0x40/0x40
[ 90.090598][ T5469] ? print_report+0x4fb/0x540
[ 90.095301][ T5469] check_panic_on_warn+0x82/0xa0
[ 90.100262][ T5469] ? ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 90.106098][ T5469] end_report+0x6e/0x140
[ 90.110366][ T5469] kasan_report+0x153/0x170
[ 90.114888][ T5469] ? ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 90.120727][ T5469] ccid2_hc_tx_packet_recv+0x18fe/0x2070
[ 90.126412][ T5469] ? dccp_ackvec_clear_state+0x5dd/0x8b0
[ 90.132083][ T5469] ? dccp_ackvec_input+0x1d5/0xf60
[ 90.137232][ T5469] ? ccid2_hc_rx_packet_recv+0x12e/0x1b0
[ 90.142887][ T5469] ? ccid2_hc_rx_packet_recv+0x1b0/0x1b0
[ 90.148543][ T5469] dccp_rcv_established+0x28b/0x310
[ 90.153764][ T5469] dccp_v4_do_rcv+0xff/0x1f0
[ 90.158388][ T5469] __release_sock+0x19c/0x4c0
[ 90.163097][ T5469] release_sock+0x61/0x1d0
[ 90.167631][ T5469] dccp_sendmsg+0x4de/0xb70
[ 90.172161][ T5469] ? dccp_getsockopt+0x1910/0x1910
[ 90.177315][ T5469] ? sock_rps_record_flow+0x1a/0x400
[ 90.182624][ T5469] ? inet_sendmsg+0x85/0x310
[ 90.187328][ T5469] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 90.192635][ T5469] ? security_socket_sendmsg+0x81/0xa0
[ 90.198198][ T5469] ? inet_send_prepare+0x250/0x250
[ 90.203330][ T5469] ____sys_sendmsg+0x592/0x890
[ 90.208116][ T5469] ? __sys_sendmsg_sock+0x30/0x30
[ 90.213160][ T5469] ? __might_fault+0xa5/0x120
[ 90.217945][ T5469] __sys_sendmmsg+0x3b2/0x730
[ 90.222652][ T5469] ? __ia32_sys_sendmsg+0x90/0x90
[ 90.227712][ T5469] ? proc_fail_nth_read+0x250/0x250
[ 90.232947][ T5469] ? ksys_write+0x23e/0x2c0
[ 90.237566][ T5469] ? __lock_acquire+0x1fd0/0x1fd0
[ 90.242788][ T5469] ? vfs_write+0x77d/0xca0
[ 90.247316][ T5469] ? __mutex_unlock_slowpath+0x21c/0x750
[ 90.252964][ T5469] ? kernel_write+0x330/0x330
[ 90.257758][ T5469] ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 90.263760][ T5469] ? print_irqtrace_events+0x220/0x220
[ 90.269245][ T5469] ? do_syscall_64+0x102/0x230
[ 90.274032][ T5469] __x64_sys_sendmmsg+0xa0/0xb0
[ 90.278911][ T5469] do_syscall_64+0xf5/0x230
[ 90.283610][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 90.289546][ T5469] RIP: 0033:0x7f28ddc7c859
[ 90.294001][ T5469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 90.314060][ T5469] RSP: 002b:00007f28deac60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 90.322589][ T5469] RAX: ffffffffffffffda RBX: 00007f28ddd9bf80 RCX: 00007f28ddc7c859
[ 90.330582][ T5469] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 90.338656][ T5469] RBP: 00007f28deac6120 R08: 0000000000000000 R09: 0000000000000000
[ 90.346640][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 90.354720][ T5469] R13: 000000000000000b R14: 00007f28ddd9bf80 R15: 00007ffc6b911898
[ 90.362826][ T5469]
[ 90.366037][ T5469] Kernel Offset: disabled
[ 90.370352][ T5469] Rebooting in 86400 seconds..