[   45.512548] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.520197] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  158.669658] Bluetooth: hci1 command 0x0406 tx timeout
[  158.686073] Bluetooth: hci0 command 0x0406 tx timeout
[  158.706004] Bluetooth: hci2 command 0x0406 tx timeout
[  158.723157] Bluetooth: hci3 command 0x0406 tx timeout
[  158.764366] Bluetooth: hci5 command 0x0406 tx timeout
[  158.784910] Bluetooth: hci4 command 0x0406 tx timeout
[  180.291534] random: crng init done
[  180.295134] random: 7 urandom warning(s) missed due to ratelimiting
[  399.965230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  399.972636] batman_adv: batadv0: Removing interface: batadv_slave_0
[  399.982403] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  399.989856] batman_adv: batadv0: Removing interface: batadv_slave_1
[  400.000170] device bridge_slave_1 left promiscuous mode
[  400.005883] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.041005] device bridge_slave_0 left promiscuous mode
[  400.046498] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.093163] device veth1_macvtap left promiscuous mode
[  400.099588] device veth0_macvtap left promiscuous mode
[  400.104898] device veth1_vlan left promiscuous mode
[  400.110367] device veth0_vlan left promiscuous mode
[  400.210466] device hsr_slave_1 left promiscuous mode
[  400.251532] device hsr_slave_0 left promiscuous mode
[  400.298089] team0 (unregistering): Port device team_slave_1 removed
[  400.308339] team0 (unregistering): Port device team_slave_0 removed
[  400.318735] bond0 (unregistering): Releasing backup interface bond_slave_1
[  400.343351] bond0 (unregistering): Releasing backup interface bond_slave_0
[  400.415080] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.0.170' (ECDSA) to the list of known hosts.
[  406.183234] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.190983] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.200550] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.207602] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.217180] device bridge_slave_1 left promiscuous mode
[  406.223192] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.258820] device bridge_slave_0 left promiscuous mode
[  406.264838] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.310707] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.317443] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.327570] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.335813] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.345073] device bridge_slave_1 left promiscuous mode
[  406.351572] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.419545] device bridge_slave_0 left promiscuous mode
[  406.425359] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.470510] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.477272] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.485786] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.495087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.504019] device bridge_slave_1 left promiscuous mode
[  406.511369] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.538630] device bridge_slave_0 left promiscuous mode
[  406.544262] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.580398] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.587623] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.597101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.604377] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.613187] device bridge_slave_1 left promiscuous mode
[  406.620109] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.658894] device bridge_slave_0 left promiscuous mode
[  406.664589] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.730559] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.737495] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.747252] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.754800] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.763670] device bridge_slave_1 left promiscuous mode
[  406.769790] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.829255] device bridge_slave_0 left promiscuous mode
[  406.835001] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.882185] device veth1_macvtap left promiscuous mode
[  406.890388] device veth0_macvtap left promiscuous mode
[  406.896046] device veth1_vlan left promiscuous mode
[  406.902130] device veth0_vlan left promiscuous mode
[  406.907944] device veth1_macvtap left promiscuous mode
[  406.913365] device veth0_macvtap left promiscuous mode
[  406.919565] device veth1_vlan left promiscuous mode
[  406.924975] device veth0_vlan left promiscuous mode
[  406.930738] device veth1_macvtap left promiscuous mode
[  406.936315] device veth0_macvtap left promiscuous mode
[  406.942059] device veth1_vlan left promiscuous mode
[  406.947492] device veth0_vlan left promiscuous mode
[  406.953520] device veth1_macvtap left promiscuous mode
[  406.960000] device veth0_macvtap left promiscuous mode
[  406.965418] device veth1_vlan left promiscuous mode
[  406.970737] device veth0_vlan left promiscuous mode
[  406.976202] device veth1_macvtap left promiscuous mode
[  406.982044] device veth0_macvtap left promiscuous mode
[  406.987371] device veth1_vlan left promiscuous mode
[  406.993010] device veth0_vlan left promiscuous mode
[  407.220680] device hsr_slave_1 left promiscuous mode
[  407.259947] device hsr_slave_0 left promiscuous mode
[  407.315270] team0 (unregistering): Port device team_slave_1 removed
[  407.325742] team0 (unregistering): Port device team_slave_0 removed
[  407.340315] bond0 (unregistering): Releasing backup interface bond_slave_1
[  407.382554] bond0 (unregistering): Releasing backup interface bond_slave_0
[  407.426446] bond0 (unregistering): Released all slaves
[  407.520931] device hsr_slave_1 left promiscuous mode
[  407.540537] device hsr_slave_0 left promiscuous mode
[  407.586380] team0 (unregistering): Port device team_slave_1 removed
[  407.598733] team0 (unregistering): Port device team_slave_0 removed
[  407.609069] bond0 (unregistering): Releasing backup interface bond_slave_1
[  407.650494] bond0 (unregistering): Releasing backup interface bond_slave_0
[  407.687374] bond0 (unregistering): Released all slaves
[  407.799843] device hsr_slave_1 left promiscuous mode
[  407.830988] device hsr_slave_0 left promiscuous mode
[  407.873829] team0 (unregistering): Port device team_slave_1 removed
[  407.883417] team0 (unregistering): Port device team_slave_0 removed
[  407.894020] bond0 (unregistering): Releasing backup interface bond_slave_1
[  407.963010] bond0 (unregistering): Releasing backup interface bond_slave_0
[  408.003577] bond0 (unregistering): Released all slaves
[  408.119896] device hsr_slave_1 left promiscuous mode
[  408.150026] device hsr_slave_0 left promiscuous mode
[  408.176448] team0 (unregistering): Port device team_slave_1 removed
[  408.186788] team0 (unregistering): Port device team_slave_0 removed
[  408.197055] bond0 (unregistering): Releasing backup interface bond_slave_1
[  408.251606] bond0 (unregistering): Releasing backup interface bond_slave_0
[  408.314164] bond0 (unregistering): Released all slaves
[  408.390640] device hsr_slave_1 left promiscuous mode
[  408.430239] device hsr_slave_0 left promiscuous mode
[  408.484130] team0 (unregistering): Port device team_slave_1 removed
[  408.493759] team0 (unregistering): Port device team_slave_0 removed
[  408.505220] bond0 (unregistering): Releasing backup interface bond_slave_1
[  408.551990] bond0 (unregistering): Releasing backup interface bond_slave_0
[  408.604983] bond0 (unregistering): Released all slaves
[  500.938981] kasan: CONFIG_KASAN_INLINE enabled
[  500.944337] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  500.952056] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  500.958379] Modules linked in:
[  500.961568] CPU: 0 PID: 13602 Comm: syz-executor207 Not tainted 4.14.226-syzkaller #0
[  500.969613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  500.979135] task: ffff8881e8f74400 task.stack: ffff8881e94c8000
[  500.985246] RIP: 0010:vgem_fence_attach_ioctl+0x2f2/0x6d0
[  500.990877] RSP: 0018:ffff8881e94cfb40 EFLAGS: 00010202
[  500.996237] RAX: dffffc0000000000 RBX: ffff8881e5e01780 RCX: 0000000000000000
[  501.003740] RDX: 000000000000001c RSI: 0000000000000001 RDI: 00000000000000e0
[  501.011095] RBP: ffff8881e94cfbe8 R08: 0000000000000001 R09: 0000000000000000
[  501.018674] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881d7088080
[  501.026247] R13: ffff8881d6d4e780 R14: ffff8881d7088084 R15: 0000000000000000
[  501.033510] FS:  00007ff9efd9a700(0000) GS:ffff8881f6600000(0000) knlGS:0000000000000000
[  501.042027] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  501.047907] CR2: 00007ff9efd99ee8 CR3: 00000001ee802005 CR4: 00000000001606f0
[  501.055287] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  501.062587] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  501.069837] Call Trace:
[  501.072410]  ? __might_fault+0xf1/0x1b0
[  501.076363]  ? __vgem_fence_idr_fini+0x40/0x40
[  501.080936]  ? __vgem_fence_idr_fini+0x40/0x40
[  501.085618]  drm_ioctl_kernel+0x133/0x1d0
[  501.089746]  ? __vgem_fence_idr_fini+0x40/0x40
[  501.094306]  drm_ioctl+0x417/0x900
[  501.097825]  ? drm_getstats+0x20/0x20
[  501.101606]  ? trace_hardirqs_on+0x10/0x10
[  501.105821]  ? trace_hardirqs_on+0x10/0x10
[  501.110050]  do_vfs_ioctl+0x180/0xfb0
[  501.113930]  ? __fget+0x1a9/0x2f0
[  501.117360]  ? lock_downgrade+0x7f0/0x7f0
[  501.121487]  ? ioctl_preallocate+0x1a0/0x1a0
[  501.125962]  ? __fget+0x1c6/0x2f0
[  501.129393]  ? __fget_light+0x166/0x200
[  501.133348]  ? SyS_getpgid+0x220/0x220
[  501.137226]  SyS_ioctl+0x74/0x80
[  501.140570]  ? do_vfs_ioctl+0xfb0/0xfb0
[  501.144524]  do_syscall_64+0x1c7/0x5b0
[  501.148481]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  501.153306]  entry_SYSCALL_64_after_hwframe+0x46/0xbb
[  501.158477] RIP: 0033:0x449e69
[  501.161645] RSP: 002b:00007ff9efd9a308 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  501.169332] RAX: ffffffffffffffda RBX: 00000000004ca428 RCX: 0000000000449e69
[  501.176680] RDX: 0000000020000140 RSI: 00000000c10c5541 RDI: 0000000000000004
[  501.184035] RBP: 00000000004ca420 R08: 0000000000000000 R09: 0000000000000000
[  501.191543] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004ca42c
[  501.199244] R13: 000000000049a064 R14: 6972642f7665642f R15: 0000000000022000
[  501.206606] Code: ea 03 80 3c 02 00 0f 85 93 03 00 00 4d 8b bd 18 01 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d bf e0 00 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 8f 03 00 00 49 8b 87 e0 00 00 00 4c 89 f2 48 
[  501.225944] RIP: vgem_fence_attach_ioctl+0x2f2/0x6d0 RSP: ffff8881e94cfb40
[  501.238233] ---[ end trace 3dfccd393d912d75 ]---
[  501.243069] Kernel panic - not syncing: Fatal exception
[  501.250772] Kernel Offset: disabled
[  501.254594] Rebooting in 86400 seconds..