[ 81.983722][ T8] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.216' (ED25519) to the list of known hosts.
2025/02/10 01:21:48 ignoring optional flag "sandboxArg"="0"
2025/02/10 01:21:48 ignoring optional flag "type"="gce"
2025/02/10 01:21:48 parsed 1 programs
2025/02/10 01:21:48 executed programs: 0
[ 84.707880][ T5146] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 84.716585][ T5146] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 84.724982][ T5146] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 84.734017][ T5146] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 84.742347][ T5146] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 84.750104][ T5146] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 84.841859][ T6133] chnl_net:caif_netlink_parms(): no params data found
[ 84.885047][ T6133] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.892343][ T6133] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.899676][ T6133] bridge_slave_0: entered allmulticast mode
[ 84.906726][ T6133] bridge_slave_0: entered promiscuous mode
[ 84.915086][ T6133] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.922891][ T6133] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.930180][ T6133] bridge_slave_1: entered allmulticast mode
[ 84.937649][ T6133] bridge_slave_1: entered promiscuous mode
[ 84.958057][ T6133] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 84.969066][ T6133] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 84.992689][ T6133] team0: Port device team_slave_0 added
[ 84.999811][ T6133] team0: Port device team_slave_1 added
[ 85.018385][ T6133] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 85.025408][ T6133] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 85.051836][ T6133] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 85.064095][ T6133] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 85.071054][ T6133] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 85.097225][ T6133] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 85.132798][ T6133] hsr_slave_0: entered promiscuous mode
[ 85.139705][ T6133] hsr_slave_1: entered promiscuous mode
[ 85.604758][ T6133] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 85.617213][ T6133] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 85.629946][ T6133] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 85.640093][ T6133] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 85.667056][ T6133] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.674226][ T6133] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 85.682238][ T6133] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.689485][ T6133] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 85.750558][ T6133] 8021q: adding VLAN 0 to HW filter on device bond0
[ 85.766947][ T133] bridge0: port 1(bridge_slave_0) entered disabled state
[ 85.776053][ T133] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.797077][ T6133] 8021q: adding VLAN 0 to HW filter on device team0
[ 85.811752][ T133] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.818957][ T133] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 85.864761][ T133] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.871902][ T133] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 85.895552][ T6133] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 86.043548][ T6133] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 86.085671][ T6133] veth0_vlan: entered promiscuous mode
[ 86.099749][ T6133] veth1_vlan: entered promiscuous mode
[ 86.136674][ T6133] veth0_macvtap: entered promiscuous mode
[ 86.150383][ T6133] veth1_macvtap: entered promiscuous mode
[ 86.173325][ T6133] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 86.186951][ T6133] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 86.200702][ T6133] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.212057][ T6133] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.223331][ T6133] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.235244][ T6133] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.316940][ T1153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.330948][ T1153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.365221][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.376436][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.491146][ T6201] FAULT_INJECTION: forcing a failure.
[ 86.491146][ T6201] name failslab, interval 1, probability 0, space 0, times 1
[ 86.506999][ T6201] CPU: 0 UID: 0 PID: 6201 Comm: syz-executor.0 Not tainted 6.14.0-rc1-syzkaller-00092-g011b03359038 #0
[ 86.507023][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 86.507037][ T6201] Call Trace:
[ 86.507043][ T6201]
[ 86.507050][ T6201] dump_stack_lvl+0x241/0x360
[ 86.507092][ T6201] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.507109][ T6201] ? __pfx__printk+0x10/0x10
[ 86.507135][ T6201] ? __kmalloc_cache_noprof+0x48/0x390
[ 86.507153][ T6201] ? __pfx___might_resched+0x10/0x10
[ 86.507169][ T6201] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 86.507193][ T6201] should_fail_ex+0x40a/0x550
[ 86.507220][ T6201] should_failslab+0xac/0x100
[ 86.507237][ T6201] __kmalloc_cache_noprof+0x70/0x390
[ 86.507261][ T6201] ? dccp_feat_entry_new+0x173/0x3a0
[ 86.507290][ T6201] dccp_feat_entry_new+0x173/0x3a0
[ 86.507312][ T6201] dccp_feat_parse_options+0xeac/0x2c40
[ 86.507340][ T6201] ? __pfx_dccp_feat_parse_options+0x10/0x10
[ 86.507358][ T6201] ? __kmalloc_cache_noprof+0x243/0x390
[ 86.507374][ T6201] ? dccp_ackvec_parsed_add+0x5c/0x1d0
[ 86.507400][ T6201] dccp_parse_options+0x13bd/0x2670
[ 86.507436][ T6201] dccp_rcv_established+0x55/0x320
[ 86.507458][ T6201] dccp_v4_do_rcv+0xff/0x1f0
[ 86.507481][ T6201] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 86.507499][ T6201] __release_sock+0x243/0x350
[ 86.507524][ T6201] release_sock+0x61/0x1f0
[ 86.507546][ T6201] dccp_sendmsg+0x4f0/0xb90
[ 86.507570][ T6201] ? __pfx_dccp_sendmsg+0x10/0x10
[ 86.507585][ T6201] ? sock_rps_record_flow+0x1a/0x400
[ 86.507606][ T6201] ? inet_sendmsg+0x330/0x390
[ 86.507627][ T6201] __sock_sendmsg+0x1a6/0x270
[ 86.507648][ T6201] ____sys_sendmsg+0x52a/0x7e0
[ 86.507670][ T6201] ? __pfx_____sys_sendmsg+0x10/0x10
[ 86.507683][ T6201] ? __fget_files+0x2a/0x410
[ 86.507702][ T6201] ? __fget_files+0x2a/0x410
[ 86.507726][ T6201] __sys_sendmmsg+0x36a/0x720
[ 86.507751][ T6201] ? __pfx___sys_sendmmsg+0x10/0x10
[ 86.507776][ T6201] ? __pfx_lock_release+0x10/0x10
[ 86.507793][ T6201] ? kstrtouint_from_user+0x128/0x190
[ 86.507832][ T6201] ? ksys_write+0x22a/0x2b0
[ 86.507852][ T6201] ? __pfx_lock_release+0x10/0x10
[ 86.507877][ T6201] ? sb_end_write+0xe9/0x1c0
[ 86.507894][ T6201] ? vfs_write+0x7fa/0xd10
[ 86.507916][ T6201] ? __mutex_unlock_slowpath+0x227/0x800
[ 86.507965][ T6201] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 86.507988][ T6201] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 86.508014][ T6201] ? do_syscall_64+0x100/0x230
[ 86.508039][ T6201] __x64_sys_sendmmsg+0xa0/0xb0
[ 86.508057][ T6201] do_syscall_64+0xf3/0x230
[ 86.508078][ T6201] ? clear_bhb_loop+0x35/0x90
[ 86.508102][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.508121][ T6201] RIP: 0033:0x7f9d82a7ad39
[ 86.508142][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 86.508155][ T6201] RSP: 002b:00007f9d83c960c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 86.508179][ T6201] RAX: ffffffffffffffda RBX: 00007f9d82b9bf80 RCX: 00007f9d82a7ad39
[ 86.508191][ T6201] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 86.508202][ T6201] RBP: 00007f9d83c96120 R08: 0000000000000000 R09: 0000000000000000
[ 86.508212][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 86.508222][ T6201] R13: 000000000000000b R14: 00007f9d82b9bf80 R15: 00007ffd6749a168
[ 86.508253][ T6201]
[ 86.508488][ T6201] dccp_parse_options: DCCP(ffff88807f248b00): Option 32 (len=7) error=9
[ 86.801375][ T54] Bluetooth: hci0: command tx timeout
[ 86.891018][ T6201] ==================================================================
[ 86.899123][ T6201] BUG: KASAN: slab-use-after-free in ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 86.907734][ T6201] Read of size 1 at addr ffff888034e26494 by task syz-executor.0/6201
[ 86.915898][ T6201]
[ 86.918239][ T6201] CPU: 0 UID: 0 PID: 6201 Comm: syz-executor.0 Not tainted 6.14.0-rc1-syzkaller-00092-g011b03359038 #0
[ 86.918260][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 86.918270][ T6201] Call Trace:
[ 86.918276][ T6201]
[ 86.918283][ T6201] dump_stack_lvl+0x241/0x360
[ 86.918305][ T6201] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.918320][ T6201] ? __pfx__printk+0x10/0x10
[ 86.918341][ T6201] ? _printk+0xd5/0x120
[ 86.918362][ T6201] ? __virt_addr_valid+0x183/0x530
[ 86.918385][ T6201] ? __virt_addr_valid+0x183/0x530
[ 86.918406][ T6201] print_report+0x169/0x550
[ 86.918428][ T6201] ? __virt_addr_valid+0x183/0x530
[ 86.918447][ T6201] ? __virt_addr_valid+0x183/0x530
[ 86.918466][ T6201] ? __virt_addr_valid+0x45f/0x530
[ 86.918485][ T6201] ? __phys_addr+0xba/0x170
[ 86.918505][ T6201] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 86.918524][ T6201] kasan_report+0x143/0x180
[ 86.918546][ T6201] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 86.918566][ T6201] ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 86.918593][ T6201] ? dccp_ackvec_input+0x1d5/0xf60
[ 86.918611][ T6201] ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[ 86.918628][ T6201] ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[ 86.918646][ T6201] dccp_rcv_established+0x295/0x320
[ 86.918667][ T6201] dccp_v4_do_rcv+0xff/0x1f0
[ 86.918688][ T6201] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 86.918708][ T6201] __release_sock+0x243/0x350
[ 86.918729][ T6201] release_sock+0x61/0x1f0
[ 86.918749][ T6201] dccp_sendmsg+0x4f0/0xb90
[ 86.918767][ T6201] ? __pfx_dccp_sendmsg+0x10/0x10
[ 86.918782][ T6201] ? sock_rps_record_flow+0x1a/0x400
[ 86.918799][ T6201] ? inet_sendmsg+0x330/0x390
[ 86.918815][ T6201] __sock_sendmsg+0x1a6/0x270
[ 86.918835][ T6201] ____sys_sendmsg+0x52a/0x7e0
[ 86.918853][ T6201] ? __pfx_____sys_sendmsg+0x10/0x10
[ 86.918867][ T6201] ? __fget_files+0x2a/0x410
[ 86.918883][ T6201] ? __sys_sendmmsg+0x392/0x720
[ 86.918898][ T6201] ? __might_fault+0xaa/0x120
[ 86.918918][ T6201] __sys_sendmmsg+0x36a/0x720
[ 86.918936][ T6201] ? __pfx___sys_sendmmsg+0x10/0x10
[ 86.918953][ T6201] ? __pfx_lock_release+0x10/0x10
[ 86.918970][ T6201] ? kstrtouint_from_user+0x128/0x190
[ 86.918993][ T6201] ? ksys_write+0x22a/0x2b0
[ 86.919010][ T6201] ? __pfx_lock_release+0x10/0x10
[ 86.919028][ T6201] ? sb_end_write+0xe9/0x1c0
[ 86.919043][ T6201] ? vfs_write+0x7fa/0xd10
[ 86.919061][ T6201] ? __mutex_unlock_slowpath+0x227/0x800
[ 86.919091][ T6201] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 86.919110][ T6201] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 86.919142][ T6201] ? do_syscall_64+0x100/0x230
[ 86.919161][ T6201] __x64_sys_sendmmsg+0xa0/0xb0
[ 86.919176][ T6201] do_syscall_64+0xf3/0x230
[ 86.919196][ T6201] ? clear_bhb_loop+0x35/0x90
[ 86.919218][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.919237][ T6201] RIP: 0033:0x7f9d82a7ad39
[ 86.919251][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 86.919265][ T6201] RSP: 002b:00007f9d83c960c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 86.919283][ T6201] RAX: ffffffffffffffda RBX: 00007f9d82b9bf80 RCX: 00007f9d82a7ad39
[ 86.919295][ T6201] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 86.919306][ T6201] RBP: 00007f9d83c96120 R08: 0000000000000000 R09: 0000000000000000
[ 86.919316][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 86.919326][ T6201] R13: 000000000000000b R14: 00007f9d82b9bf80 R15: 00007ffd6749a168
[ 86.919342][ T6201]
[ 86.919348][ T6201]
[ 87.272147][ T6201] Allocated by task 6201:
[ 87.276919][ T6201] kasan_save_track+0x3f/0x80
[ 87.281638][ T6201] __kasan_kmalloc+0x98/0xb0
[ 87.286262][ T6201] __kmalloc_node_track_caller_noprof+0x28b/0x4c0
[ 87.292787][ T6201] kmalloc_reserve+0x111/0x2a0
[ 87.297577][ T6201] __alloc_skb+0x1f3/0x440
[ 87.302100][ T6201] dccp_send_ack+0xaa/0x310
[ 87.306634][ T6201] ccid2_hc_rx_packet_recv+0x10c/0x1c0
[ 87.312244][ T6201] dccp_rcv_established+0x1bb/0x320
[ 87.317466][ T6201] dccp_v4_do_rcv+0xff/0x1f0
[ 87.322080][ T6201] __sk_receive_skb+0x82b/0x8b0
[ 87.326952][ T6201] ip_protocol_deliver_rcu+0x2e9/0x440
[ 87.332433][ T6201] ip_local_deliver_finish+0x341/0x5f0
[ 87.337923][ T6201] NF_HOOK+0x3a4/0x450
[ 87.342015][ T6201] NF_HOOK+0x3a4/0x450
[ 87.346100][ T6201] __netif_receive_skb+0x2bf/0x650
[ 87.351236][ T6201] process_backlog+0x662/0x15b0
[ 87.356105][ T6201] __napi_poll+0xcb/0x490
[ 87.360454][ T6201] net_rx_action+0x89b/0x1240
[ 87.365159][ T6201] handle_softirqs+0x2d4/0x9b0
[ 87.369942][ T6201] do_softirq+0x11b/0x1e0
[ 87.374292][ T6201] __local_bh_enable_ip+0x1bb/0x200
[ 87.379513][ T6201] __dev_queue_xmit+0x1775/0x3f50
[ 87.384557][ T6201] ip_finish_output2+0xd76/0x12b0
[ 87.389601][ T6201] __ip_queue_xmit+0x103f/0x1960
[ 87.394556][ T6201] dccp_transmit_skb+0xf65/0x16f0
[ 87.399691][ T6201] dccp_xmit_packet+0x376/0x610
[ 87.404592][ T6201] dccp_write_xmit+0x138/0x220
[ 87.409378][ T6201] dccp_sendmsg+0x76f/0xb90
[ 87.413902][ T6201] __sock_sendmsg+0x1a6/0x270
[ 87.418607][ T6201] ____sys_sendmsg+0x52a/0x7e0
[ 87.423387][ T6201] __sys_sendmmsg+0x36a/0x720
[ 87.428080][ T6201] __x64_sys_sendmmsg+0xa0/0xb0
[ 87.432956][ T6201] do_syscall_64+0xf3/0x230
[ 87.437486][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.443394][ T6201]
[ 87.445722][ T6201] Freed by task 6201:
[ 87.449706][ T6201] kasan_save_track+0x3f/0x80
[ 87.454409][ T6201] kasan_save_free_info+0x40/0x50
[ 87.459448][ T6201] __kasan_slab_free+0x59/0x70
[ 87.464226][ T6201] kfree+0x196/0x430
[ 87.468133][ T6201] skb_release_data+0x6a0/0x8a0
[ 87.472995][ T6201] sk_skb_reason_drop+0x1c9/0x380
[ 87.478030][ T6201] dccp_v4_do_rcv+0x145/0x1f0
[ 87.482728][ T6201] __release_sock+0x243/0x350
[ 87.487955][ T6201] release_sock+0x61/0x1f0
[ 87.492397][ T6201] dccp_sendmsg+0x4f0/0xb90
[ 87.496916][ T6201] __sock_sendmsg+0x1a6/0x270
[ 87.501621][ T6201] ____sys_sendmsg+0x52a/0x7e0
[ 87.506487][ T6201] __sys_sendmmsg+0x36a/0x720
[ 87.511213][ T6201] __x64_sys_sendmmsg+0xa0/0xb0
[ 87.516079][ T6201] do_syscall_64+0xf3/0x230
[ 87.520608][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.526525][ T6201]
[ 87.528855][ T6201] The buggy address belongs to the object at ffff888034e26000
[ 87.528855][ T6201] which belongs to the cache kmalloc-2k of size 2048
[ 87.542922][ T6201] The buggy address is located 1172 bytes inside of
[ 87.542922][ T6201] freed 2048-byte region [ffff888034e26000, ffff888034e26800)
[ 87.556999][ T6201]
[ 87.559336][ T6201] The buggy address belongs to the physical page:
[ 87.565823][ T6201] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x34e20
[ 87.574609][ T6201] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 87.583149][ T6201] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 87.591156][ T6201] page_type: f5(slab)
[ 87.595166][ T6201] raw: 00fff00000000040 ffff88801ac42000 0000000000000000 dead000000000001
[ 87.603855][ T6201] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 87.612456][ T6201] head: 00fff00000000040 ffff88801ac42000 0000000000000000 dead000000000001
[ 87.621226][ T6201] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 87.629925][ T6201] head: 00fff00000000003 ffffea0000d38801 ffffffffffffffff 0000000000000000
[ 87.638786][ T6201] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 87.647466][ T6201] page dumped because: kasan: bad access detected
[ 87.653911][ T6201] page_owner tracks the page as allocated
[ 87.659721][ T6201] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 133, tgid 133 (kworker/u8:5), ts 66833827023, free_ts 66832121527
[ 87.680918][ T6201] post_alloc_hook+0x1f4/0x240
[ 87.685791][ T6201] get_page_from_freelist+0x365c/0x37a0
[ 87.691359][ T6201] __alloc_frozen_pages_noprof+0x292/0x710
[ 87.697184][ T6201] alloc_pages_mpol+0x311/0x660
[ 87.702052][ T6201] allocate_slab+0x8f/0x3a0
[ 87.706580][ T6201] ___slab_alloc+0xc27/0x14a0
[ 87.711274][ T6201] __slab_alloc+0x58/0xa0
[ 87.715629][ T6201] __kmalloc_node_track_caller_noprof+0x2e9/0x4c0
[ 87.722060][ T6201] kmalloc_reserve+0x111/0x2a0
[ 87.726939][ T6201] __alloc_skb+0x1f3/0x440
[ 87.731374][ T6201] rtmsg_ifinfo_build_skb+0x84/0x260
[ 87.736680][ T6201] unregister_netdevice_many_notify+0x10c3/0x1f10
[ 87.743123][ T6201] cleanup_net+0x76d/0xd60
[ 87.747569][ T6201] process_scheduled_works+0xa66/0x1840
[ 87.753141][ T6201] worker_thread+0x870/0xd30
[ 87.757750][ T6201] kthread+0x7a9/0x920
[ 87.761847][ T6201] page last free pid 133 tgid 133 stack trace:
[ 87.768011][ T6201] free_frozen_pages+0xe0d/0x10e0
[ 87.773050][ T6201] __put_partials+0x160/0x1c0
[ 87.777755][ T6201] put_cpu_partial+0x17c/0x250
[ 87.782540][ T6201] __slab_free+0x290/0x380
[ 87.786977][ T6201] qlist_free_all+0x9a/0x140
[ 87.791592][ T6201] kasan_quarantine_reduce+0x14f/0x170
[ 87.797070][ T6201] __kasan_slab_alloc+0x23/0x80
[ 87.801999][ T6201] __kmalloc_cache_noprof+0x1d9/0x390
[ 87.807392][ T6201] netdevice_event+0x37d/0x950
[ 87.812176][ T6201] notifier_call_chain+0x1a5/0x3f0
[ 87.817306][ T6201] unregister_netdevice_many_notify+0x102f/0x1f10
[ 87.823744][ T6201] cleanup_net+0x76d/0xd60
[ 87.828614][ T6201] process_scheduled_works+0xa66/0x1840
[ 87.834278][ T6201] worker_thread+0x870/0xd30
[ 87.839093][ T6201] kthread+0x7a9/0x920
[ 87.843281][ T6201] ret_from_fork+0x4b/0x80
[ 87.847721][ T6201]
[ 87.850062][ T6201] Memory state around the buggy address:
[ 87.855707][ T6201] ffff888034e26380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 87.863784][ T6201] ffff888034e26400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 87.871963][ T6201] >ffff888034e26480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 87.880308][ T6201] ^
[ 87.884907][ T6201] ffff888034e26500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 87.893079][ T6201] ffff888034e26580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 87.901363][ T6201] ==================================================================
[ 87.924286][ T6201] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 87.931521][ T6201] CPU: 0 UID: 0 PID: 6201 Comm: syz-executor.0 Not tainted 6.14.0-rc1-syzkaller-00092-g011b03359038 #0
[ 87.942549][ T6201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 87.952616][ T6201] Call Trace:
[ 87.955899][ T6201]
[ 87.958832][ T6201] dump_stack_lvl+0x241/0x360
[ 87.963537][ T6201] ? __pfx_dump_stack_lvl+0x10/0x10
[ 87.968755][ T6201] ? __pfx__printk+0x10/0x10
[ 87.973375][ T6201] ? vscnprintf+0x5d/0x90
[ 87.977723][ T6201] panic+0x349/0x880
[ 87.981645][ T6201] ? check_panic_on_warn+0x21/0xb0
[ 87.986774][ T6201] ? __pfx_panic+0x10/0x10
[ 87.991209][ T6201] ? check_panic_on_warn+0x21/0xb0
[ 87.996341][ T6201] ? check_panic_on_warn+0x72/0xb0
[ 88.001477][ T6201] check_panic_on_warn+0x86/0xb0
[ 88.006579][ T6201] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 88.012412][ T6201] end_report+0x77/0x160
[ 88.016670][ T6201] kasan_report+0x154/0x180
[ 88.021206][ T6201] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 88.027182][ T6201] ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 88.032820][ T6201] ? dccp_ackvec_input+0x1d5/0xf60
[ 88.037923][ T6201] ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[ 88.043553][ T6201] ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[ 88.049627][ T6201] dccp_rcv_established+0x295/0x320
[ 88.054818][ T6201] dccp_v4_do_rcv+0xff/0x1f0
[ 88.059399][ T6201] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 88.064675][ T6201] __release_sock+0x243/0x350
[ 88.069346][ T6201] release_sock+0x61/0x1f0
[ 88.073755][ T6201] dccp_sendmsg+0x4f0/0xb90
[ 88.078259][ T6201] ? __pfx_dccp_sendmsg+0x10/0x10
[ 88.083533][ T6201] ? sock_rps_record_flow+0x1a/0x400
[ 88.088938][ T6201] ? inet_sendmsg+0x330/0x390
[ 88.093800][ T6201] __sock_sendmsg+0x1a6/0x270
[ 88.098483][ T6201] ____sys_sendmsg+0x52a/0x7e0
[ 88.103762][ T6201] ? __pfx_____sys_sendmsg+0x10/0x10
[ 88.109086][ T6201] ? __fget_files+0x2a/0x410
[ 88.113869][ T6201] ? __sys_sendmmsg+0x392/0x720
[ 88.118748][ T6201] ? __might_fault+0xaa/0x120
[ 88.123427][ T6201] __sys_sendmmsg+0x36a/0x720
[ 88.128149][ T6201] ? __pfx___sys_sendmmsg+0x10/0x10
[ 88.133725][ T6201] ? __pfx_lock_release+0x10/0x10
[ 88.138870][ T6201] ? kstrtouint_from_user+0x128/0x190
[ 88.144373][ T6201] ? ksys_write+0x22a/0x2b0
[ 88.149007][ T6201] ? __pfx_lock_release+0x10/0x10
[ 88.154039][ T6201] ? sb_end_write+0xe9/0x1c0
[ 88.159161][ T6201] ? vfs_write+0x7fa/0xd10
[ 88.163661][ T6201] ? __mutex_unlock_slowpath+0x227/0x800
[ 88.169384][ T6201] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 88.175358][ T6201] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 88.181766][ T6201] ? do_syscall_64+0x100/0x230
[ 88.186543][ T6201] __x64_sys_sendmmsg+0xa0/0xb0
[ 88.191404][ T6201] do_syscall_64+0xf3/0x230
[ 88.195918][ T6201] ? clear_bhb_loop+0x35/0x90
[ 88.200612][ T6201] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.206536][ T6201] RIP: 0033:0x7f9d82a7ad39
[ 88.210953][ T6201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 88.230659][ T6201] RSP: 002b:00007f9d83c960c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 88.239102][ T6201] RAX: ffffffffffffffda RBX: 00007f9d82b9bf80 RCX: 00007f9d82a7ad39
[ 88.247097][ T6201] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 88.255074][ T6201] RBP: 00007f9d83c96120 R08: 0000000000000000 R09: 0000000000000000
[ 88.263080][ T6201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 88.271053][ T6201] R13: 000000000000000b R14: 00007f9d82b9bf80 R15: 00007ffd6749a168
[ 88.279208][ T6201]
[ 88.282546][ T6201] Kernel Offset: disabled
[ 88.286869][ T6201] Rebooting in 86400 seconds..