[  412.110341] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  412.123659] batman_adv: batadv0: Removing interface: batadv_slave_0
[  412.138094] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  412.150501] batman_adv: batadv0: Removing interface: batadv_slave_1
[  412.160135] device bridge_slave_1 left promiscuous mode
[  412.169276] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.227824] device bridge_slave_0 left promiscuous mode
[  412.235010] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.271105] device veth1_macvtap left promiscuous mode
[  412.278983] device veth0_macvtap left promiscuous mode
[  412.288211] device veth1_vlan left promiscuous mode
[  412.296523] device veth0_vlan left promiscuous mode
[  412.399213] device hsr_slave_1 left promiscuous mode
[  412.450669] device hsr_slave_0 left promiscuous mode
[  412.496219] team0 (unregistering): Port device team_slave_1 removed
[  412.513110] team0 (unregistering): Port device team_slave_0 removed
[  412.524247] bond0 (unregistering): Releasing backup interface bond_slave_1
[  412.569771] bond0 (unregistering): Releasing backup interface bond_slave_0
[  412.645867] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.0.44' (ECDSA) to the list of known hosts.
[  413.335735] list_del corruption, ffff8881e130f640->next is LIST_POISON1 (dead000000000100)
[  413.345053] ------------[ cut here ]------------
[  413.350295] kernel BUG at lib/list_debug.c:47!
[  413.355682] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  413.361587] CPU: 1 PID: 15257 Comm: syz-executor839 Not tainted 4.19.183-syzkaller #0
[  413.368575] list_del corruption, ffff8881d209f640->next is LIST_POISON1 (dead000000000100)
[  413.370302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  413.380378] ------------[ cut here ]------------
[  413.390144] RIP: 0010:__list_del_entry_valid.cold.1+0x26/0x4a
[  413.395333] kernel BUG at lib/list_debug.c:47!
[  413.401726] Code: f8 ff 0f 0b 4c 89 e2 48 89 de 48 c7 c7 40 64 8b 87 e8 99 33 f8 ff 0f 0b 4c 89 ea 48 89 de 48 c7 c7 e0 63 8b 87 e8 85 33 f8 ff <0f> 0b 48 89 de 48 c7 c7 00 65 8b 87 e8 74 33 f8 ff 0f 0b 48 89 de
[  413.430101] RSP: 0018:ffff8881e130f4d0 EFLAGS: 00010086
[  413.437664] RAX: 000000000000004e RBX: ffff8881e130f640 RCX: 0000000000000000
[  413.446590] RDX: 0000000000000000 RSI: ffffffff878b6140 RDI: ffffffff8a3e4aa0
[  413.454476] RBP: ffff8881e130f4e8 R08: ffffed103ece5081 R09: ffffed103ece5080
[  413.462760] R10: ffffed103ece5080 R11: ffff8881f6728407 R12: dead000000000200
[  413.471042] R13: dead000000000100 R14: ffff8881e7c20600 R15: ffff8881d890c8c0
[  413.479051] FS:  00007f942696c700(0000) GS:ffff8881f6700000(0000) knlGS:0000000000000000
[  413.488219] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  413.494944] CR2: 00000000004d0600 CR3: 00000001d898c006 CR4: 00000000001606e0
[  413.503471] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  413.511854] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  413.519818] Call Trace:
[  413.523196]  remove_wait_queue+0x30/0x1b0
[  413.527693]  tipc_send_group_bcast+0x33a/0xa10
[  413.532357]  ? tipc_release+0xbd0/0xbd0
[  413.536746]  ? do_wait_intr_irq+0x310/0x310
[  413.541798]  ? __lock_acquire+0x764/0x47c0
[  413.546394]  ? _raw_spin_unlock_irq+0x27/0x90
[  413.551217]  ? finish_task_switch+0x14a/0x700
[  413.555990]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  413.560843]  ? _raw_spin_unlock_irq+0x27/0x90
[  413.566485]  __tipc_sendmsg+0x449/0x12c0
[  413.571424]  ? tipc_sendmcast+0xb10/0xb10
[  413.576601]  ? mark_held_locks+0x130/0x130
[  413.581590]  ? __might_sleep+0x95/0x190
[  413.585824]  ? mark_held_locks+0xc7/0x130
[  413.590589]  ? __local_bh_enable_ip+0x160/0x250
[  413.596279]  ? lock_sock_nested+0xc5/0x100
[  413.601029]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  413.606256]  ? __local_bh_enable_ip+0x160/0x250
[  413.611714]  ? trace_hardirqs_on+0x28/0x190
[  413.617104]  ? lock_sock_nested+0x82/0x100
[  413.621765]  ? lock_sock_nested+0x82/0x100
[  413.626922]  ? __local_bh_enable_ip+0x160/0x250
[  413.632728]  tipc_sendmsg+0x4b/0x70
[  413.636983]  ? __tipc_sendmsg+0x12c0/0x12c0
[  413.642404]  sock_sendmsg+0xac/0xf0
[  413.646483]  ___sys_sendmsg+0x28e/0x950
[  413.650922]  ? copy_msghdr_from_user+0x430/0x430
[  413.655953]  ? __fget+0x285/0x400
[  413.660094]  ? lock_downgrade+0x860/0x860
[  413.664622]  ? kasan_check_read+0x11/0x20
[  413.669313]  ? __fget+0x2a2/0x400
[  413.672768]  ? do_dup2+0x3f0/0x3f0
[  413.676806]  ? futex_exit_release+0x60/0x60
[  413.682463]  ? __fget_light+0x174/0x1e0
[  413.686748]  ? _raw_spin_unlock_bh+0x30/0x40
[  413.691675]  ? __fdget+0xe/0x10
[  413.695187]  ? sockfd_lookup_light+0x1c/0x160
[  413.699923]  __sys_sendmmsg+0x160/0x370
[  413.704323]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  413.709069]  ? tipc_setsockopt+0x52f/0x870
[  413.714079]  ? trace_hardirqs_on_caller+0x28/0x180
[  413.719658]  ? do_futex+0x1550/0x1550
[  413.723959]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  413.729251]  ? do_syscall_64+0x21/0x4e0
[  413.733741]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  413.739402]  __x64_sys_sendmmsg+0x98/0x100
[  413.744244]  do_syscall_64+0xd0/0x4e0
[  413.748517]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  413.755050] RIP: 0033:0x4459c9
[  413.758579] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  413.779912] RSP: 002b:00007f942696c318 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  413.788926] RAX: ffffffffffffffda RBX: 00000000004ca428 RCX: 00000000004459c9
[  413.797305] RDX: 08000000000000b0 RSI: 0000000020000a40 RDI: 0000000000000004
[  413.806368] RBP: 00000000004ca420 R08: 0000000000000000 R09: 0000000000000000
[  413.814866] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000049a064
[  413.823259] R13: 00007fff0429a22f R14: 00007f942696c400 R15: 0000000000022000
[  413.831454] Modules linked in:
[  413.835886] ---[ end trace f4add992862555ca ]---
[  413.835924] invalid opcode: 0000 [#2] PREEMPT SMP KASAN
[  413.841011] RIP: 0010:__list_del_entry_valid.cold.1+0x26/0x4a
[  413.847682] CPU: 0 PID: 15263 Comm: syz-executor839 Tainted: G      D           4.19.183-syzkaller #0
[  413.854152] Code: f8 ff 0f 0b 4c 89 e2 48 89 de 48 c7 c7 40 64 8b 87 e8 99 33 f8 ff 0f 0b 4c 89 ea 48 89 de 48 c7 c7 e0 63 8b 87 e8 85 33 f8 ff <0f> 0b 48 89 de 48 c7 c7 00 65 8b 87 e8 74 33 f8 ff 0f 0b 48 89 de
[  413.865400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  413.889390] RSP: 0018:ffff8881e130f4d0 EFLAGS: 00010086
[  413.901551] RIP: 0010:__list_del_entry_valid.cold.1+0x26/0x4a
[  413.908497] RAX: 000000000000004e RBX: ffff8881e130f640 RCX: 0000000000000000
[  413.915377] Code: f8 ff 0f 0b 4c 89 e2 48 89 de 48 c7 c7 40 64 8b 87 e8 99 33 f8 ff 0f 0b 4c 89 ea 48 89 de 48 c7 c7 e0 63 8b 87 e8 85 33 f8 ff <0f> 0b 48 89 de 48 c7 c7 00 65 8b 87 e8 74 33 f8 ff 0f 0b 48 89 de
[  413.926368] RDX: 0000000000000000 RSI: ffffffff878b6140 RDI: ffffffff8a3e4aa0
[  413.947264] RSP: 0018:ffff8881d209f4d0 EFLAGS: 00010086
[  413.955404] RBP: ffff8881e130f4e8 R08: ffffed103ece5081 R09: ffffed103ece5080
[  413.960833] RAX: 000000000000004e RBX: ffff8881d209f640 RCX: 0000000000000001
[  413.968603] R10: ffffed103ece5080 R11: ffff8881f6728407 R12: dead000000000200
[  413.976285] RDX: 0000000000000000 RSI: ffffffff878b6140 RDI: ffffffff8a3e4aa0
[  413.983706] R13: dead000000000100 R14: ffff8881e7c20600 R15: ffff8881d890c8c0
[  413.991484] RBP: ffff8881d209f4e8 R08: ffffed103ecc5081 R09: ffffed103ecc5080
[  413.991487] R10: ffffed103ecc5080 R11: ffff8881f6628407 R12: dead000000000200
[  413.999014] FS:  00007f942696c700(0000) GS:ffff8881f6700000(0000) knlGS:0000000000000000
[  414.006547] R13: dead000000000100 R14: ffff8881d8e2a000 R15: ffff8881d890c300
[  414.013883] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  414.022225] FS:  00007f942696c700(0000) GS:ffff8881f6600000(0000) knlGS:0000000000000000
[  414.030320] CR2: 00000000004d0600 CR3: 00000001d898c006 CR4: 00000000001606e0
[  414.037166] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  414.045891] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  414.053314] CR2: 00000000004d0600 CR3: 00000001dbf69005 CR4: 00000000001606f0
[  414.053320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  414.059606] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  414.067592] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  414.075884] Kernel panic - not syncing: Fatal exception
[  414.084651] Call Trace:
[  414.110277]  remove_wait_queue+0x30/0x1b0
[  414.114931]  tipc_send_group_bcast+0x33a/0xa10
[  414.119934]  ? tipc_release+0xbd0/0xbd0
[  414.124331]  ? trace_hardirqs_on_caller+0x28/0x180
[  414.129628]  ? do_wait_intr_irq+0x310/0x310
[  414.134455]  ? retint_kernel+0x2d/0x2d
[  414.138682]  __tipc_sendmsg+0x449/0x12c0
[  414.142726]  ? tipc_sendmcast+0xb10/0xb10
[  414.147402]  ? mark_held_locks+0x130/0x130
[  414.151882]  ? __might_sleep+0x95/0x190
[  414.156117]  ? mark_held_locks+0xc7/0x130
[  414.160599]  ? __local_bh_enable_ip+0x160/0x250
[  414.165772]  ? lock_sock_nested+0xc5/0x100
[  414.170072]  ? lockdep_hardirqs_on+0x3bb/0x5b0
[  414.175229]  ? __local_bh_enable_ip+0x160/0x250
[  414.180243]  ? trace_hardirqs_on+0x28/0x190
[  414.184813]  ? lock_sock_nested+0x82/0x100
[  414.189290]  ? lock_sock_nested+0x82/0x100
[  414.193689]  ? __local_bh_enable_ip+0x160/0x250
[  414.198974]  tipc_sendmsg+0x4b/0x70
[  414.202668]  ? __tipc_sendmsg+0x12c0/0x12c0
[  414.207070]  sock_sendmsg+0xac/0xf0
[  414.210897]  ___sys_sendmsg+0x28e/0x950
[  414.215893]  ? copy_msghdr_from_user+0x430/0x430
[  414.220897]  ? __fget+0x285/0x400
[  414.224506]  ? lock_downgrade+0x860/0x860
[  414.229016]  ? kasan_check_read+0x11/0x20
[  414.233416]  ? __fget+0x2a2/0x400
[  414.237313]  ? do_dup2+0x3f0/0x3f0
[  414.241792]  ? futex_exit_release+0x60/0x60
[  414.246549]  ? __fget_light+0x174/0x1e0
[  414.250834]  ? _raw_spin_unlock_bh+0x30/0x40
[  414.255320]  ? __fdget+0xe/0x10
[  414.258926]  ? sockfd_lookup_light+0x1c/0x160
[  414.263752]  __sys_sendmmsg+0x160/0x370
[  414.268159]  ? __ia32_sys_sendmsg+0xb0/0xb0
[  414.273196]  ? tipc_setsockopt+0x52f/0x870
[  414.278809]  ? fput+0x18/0x120
[  414.282077]  ? do_futex+0x1550/0x1550
[  414.286867]  ? kernel_accept+0x300/0x300
[  414.291205]  ? __sys_socket+0x115/0x1d0
[  414.295596]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  414.301319]  ? do_syscall_64+0x21/0x4e0
[  414.305645]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  414.313039]  __x64_sys_sendmmsg+0x98/0x100
[  414.317825]  do_syscall_64+0xd0/0x4e0
[  414.322404]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  414.328693] RIP: 0033:0x4459c9
[  414.332681] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  414.354655] RSP: 002b:00007f942696c318 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  414.363948] RAX: ffffffffffffffda RBX: 00000000004ca428 RCX: 00000000004459c9
[  414.372843] RDX: 08000000000000b0 RSI: 0000000020000a40 RDI: 0000000000000004
[  414.380736] RBP: 00000000004ca420 R08: 0000000000000000 R09: 0000000000000000
[  414.390283] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000049a064
[  414.398613] R13: 00007fff0429a22f R14: 00007f942696c400 R15: 0000000000022000
[  414.406512] Modules linked in:
[  414.409863] ---[ end trace f4add992862555cb ]---
[  414.415192] RIP: 0010:__list_del_entry_valid.cold.1+0x26/0x4a
[  414.422410] Code: f8 ff 0f 0b 4c 89 e2 48 89 de 48 c7 c7 40 64 8b 87 e8 99 33 f8 ff 0f 0b 4c 89 ea 48 89 de 48 c7 c7 e0 63 8b 87 e8 85 33 f8 ff <0f> 0b 48 89 de 48 c7 c7 00 65 8b 87 e8 74 33 f8 ff 0f 0b 48 89 de
[  414.444428] RSP: 0018:ffff8881e130f4d0 EFLAGS: 00010086
[  414.450643] RAX: 000000000000004e RBX: ffff8881e130f640 RCX: 0000000000000000
[  414.458569] RDX: 0000000000000000 RSI: ffffffff878b6140 RDI: ffffffff8a3e4aa0
[  414.467553] RBP: ffff8881e130f4e8 R08: ffffed103ece5081 R09: ffffed103ece5080
[  414.475366] R10: ffffed103ece5080 R11: ffff8881f6728407 R12: dead000000000200
[  414.483490] R13: dead000000000100 R14: ffff8881e7c20600 R15: ffff8881d890c8c0
[  414.491422] FS:  00007f942696c700(0000) GS:ffff8881f6600000(0000) knlGS:0000000000000000
[  414.500526] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  414.507169] CR2: 00000000004d0600 CR3: 00000001dbf69005 CR4: 00000000001606f0
[  414.515712] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  414.524361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  415.219346] Shutting down cpus with NMI
[  415.226566] Kernel Offset: disabled
[  415.230994] Rebooting in 86400 seconds..