Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
2026/02/19 19:10:40 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[  132.915258][ T1318] ieee802154 phy0 wpan0: encryption failed: -22
[  132.915358][ T1318] ieee802154 phy1 wpan1: encryption failed: -22
[  133.666126][ T6130] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  136.734381][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.734396][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.783975][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.783996][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.354878][ T6152] chnl_net:caif_netlink_parms(): no params data found
[  137.568136][ T6152] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.568270][ T6152] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.568360][ T6152] bridge_slave_0: entered allmulticast mode
[  137.590241][ T6152] bridge_slave_0: entered promiscuous mode
[  137.593399][ T6152] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.593515][ T6152] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.593607][ T6152] bridge_slave_1: entered allmulticast mode
[  137.594978][ T6152] bridge_slave_1: entered promiscuous mode
[  137.655667][ T6152] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.658305][ T6152] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.698853][ T6152] team0: Port device team_slave_0 added
[  137.706919][ T6152] team0: Port device team_slave_1 added
[  138.162055][ T6152] batman_adv: batadv0: Adding interface: batadv_slave_0
[  138.162070][ T6152] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  138.162088][ T6152] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  138.164086][ T6152] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.164100][ T6152] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  138.164122][ T6152] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.232255][ T6152] hsr_slave_0: entered promiscuous mode
[  138.233400][ T6152] hsr_slave_1: entered promiscuous mode
[  140.061340][ T6152] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  140.097596][ T6152] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  140.134317][ T6152] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  140.175821][ T6152] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  140.351668][ T6152] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.371776][ T6152] 8021q: adding VLAN 0 to HW filter on device team0
[  140.378767][ T1214] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.379029][ T1214] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.389565][   T87] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.392203][   T87] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.725555][ T6152] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.783915][ T6152] veth0_vlan: entered promiscuous mode
[  140.794482][ T6152] veth1_vlan: entered promiscuous mode
[  140.836728][ T6152] veth0_macvtap: entered promiscuous mode
[  140.844368][ T6152] veth1_macvtap: entered promiscuous mode
[  140.868626][ T6152] batman_adv: batadv0: Interface activated: batadv_slave_0
[  140.881634][ T6152] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.903581][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.903870][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.904091][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.904127][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.686134][ T1214] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.922673][ T1214] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.206564][ T1214] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.016294][ T1214] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.320112][ T1214] bridge_slave_1: left allmulticast mode
[  144.320141][ T1214] bridge_slave_1: left promiscuous mode
[  144.320380][ T1214] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.390584][ T1214] bridge_slave_0: left allmulticast mode
[  144.390603][ T1214] bridge_slave_0: left promiscuous mode
[  144.390755][ T1214] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.820662][ T1214] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.881080][ T1214] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.921886][ T1214] bond0 (unregistering): Released all slaves
[  146.290013][ T1214] hsr_slave_0: left promiscuous mode
[  146.339839][ T1214] hsr_slave_1: left promiscuous mode
[  146.340819][ T1214] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  146.340842][ T1214] batman_adv: batadv0: Removing interface: batadv_slave_0
[  146.390764][ T1214] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  146.390792][ T1214] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.486635][ T1214] veth1_macvtap: left promiscuous mode
[  146.486704][ T1214] veth0_macvtap: left promiscuous mode
[  146.486842][ T1214] veth1_vlan: left promiscuous mode
[  146.487819][ T1214] veth0_vlan: left promiscuous mode
[  148.770388][ T1214] team0 (unregistering): Port device team_slave_1 removed
[  148.970426][ T1214] team0 (unregistering): Port device team_slave_0 removed
[  151.132128][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  151.135427][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  151.140042][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  151.141191][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  151.141827][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2026/02/19 19:11:04 executed programs: 0
[  153.377520][   T60] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  153.379449][   T60] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  153.381089][   T60] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  153.382103][   T60] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  153.383070][   T60] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  153.870619][ T6453] chnl_net:caif_netlink_parms(): no params data found
[  154.078376][ T6453] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.078572][ T6453] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.078721][ T6453] bridge_slave_0: entered allmulticast mode
[  154.082468][ T6453] bridge_slave_0: entered promiscuous mode
[  154.085576][ T6453] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.085754][ T6453] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.085900][ T6453] bridge_slave_1: entered allmulticast mode
[  154.088204][ T6453] bridge_slave_1: entered promiscuous mode
[  154.152639][ T6453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.155012][ T6453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.203536][ T6453] team0: Port device team_slave_0 added
[  154.206612][ T6453] team0: Port device team_slave_1 added
[  154.250178][ T6453] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.250193][ T6453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  154.250215][ T6453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.252292][ T6453] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.252304][ T6453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  154.252328][ T6453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.377169][ T6453] hsr_slave_0: entered promiscuous mode
[  154.377873][ T6453] hsr_slave_1: entered promiscuous mode
[  155.469833][ T5112] Bluetooth: hci0: command tx timeout
[  156.306841][ T6453] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  156.334896][ T6453] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  156.374283][ T6453] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  156.417686][ T6453] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  156.572847][ T6453] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.593751][ T6453] 8021q: adding VLAN 0 to HW filter on device team0
[  156.609450][ T1214] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.609577][ T1214] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.633393][ T1214] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.646987][ T1214] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.943712][ T6453] 8021q: adding VLAN 0 to HW filter on device batadv0
[  157.021206][ T6453] veth0_vlan: entered promiscuous mode
[  157.038348][ T6453] veth1_vlan: entered promiscuous mode
[  157.088408][ T6453] veth0_macvtap: entered promiscuous mode
[  157.107156][ T6453] veth1_macvtap: entered promiscuous mode
[  157.141515][ T6453] batman_adv: batadv0: Interface activated: batadv_slave_0
[  157.159562][ T6453] batman_adv: batadv0: Interface activated: batadv_slave_1
[  157.181821][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.181866][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  157.181899][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.181930][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.424458][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.424484][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.492717][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.492738][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.549978][ T5112] Bluetooth: hci0: command tx timeout
[  157.901061][ T6566] ==================================================================
[  157.901080][ T6566] BUG: KASAN: slab-use-after-free in dvb_device_open+0xc4/0x360
[  157.901116][ T6566] Read of size 8 at addr ffff88802b430818 by task syz.0.19/6566
[  157.901131][ T6566] 
[  157.901155][ T6566] CPU: 1 UID: 0 PID: 6566 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  157.901176][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  157.901193][ T6566] Call Trace:
[  157.901202][ T6566]  <TASK>
[  157.901211][ T6566]  dump_stack_lvl+0xe8/0x150
[  157.901235][ T6566]  print_report+0xba/0x230
[  157.901256][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.901276][ T6566]  kasan_report+0x117/0x150
[  157.901296][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.901320][ T6566]  dvb_device_open+0xc4/0x360
[  157.901340][ T6566]  ? rt_spin_unlock+0x160/0x200
[  157.901360][ T6566]  chrdev_open+0x4d0/0x5f0
[  157.901380][ T6566]  ? __pfx_chrdev_open+0x10/0x10
[  157.901398][ T6566]  ? fsnotify_open_perm_and_set_mode+0x138/0x6e0
[  157.901423][ T6566]  ? __pfx_chrdev_open+0x10/0x10
[  157.901440][ T6566]  do_dentry_open+0x83d/0x13e0
[  157.901463][ T6566]  vfs_open+0x3b/0x350
[  157.901478][ T6566]  ? path_openat+0x2e25/0x38a0
[  157.901495][ T6566]  path_openat+0x2e3d/0x38a0
[  157.901521][ T6566]  ? __pfx_path_openat+0x10/0x10
[  157.901537][ T6566]  ? kasan_save_track+0x4f/0x80
[  157.901552][ T6566]  ? kasan_save_track+0x3e/0x80
[  157.901566][ T6566]  ? __kasan_slab_alloc+0x6c/0x80
[  157.901581][ T6566]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  157.901600][ T6566]  ? do_raw_spin_lock+0x12b/0x2f0
[  157.901627][ T6566]  do_file_open+0x23e/0x4a0
[  157.901642][ T6566]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  157.901665][ T6566]  ? __pfx_do_file_open+0x10/0x10
[  157.901679][ T6566]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  157.901707][ T6566]  ? alloc_fd+0x64e/0x6c0
[  157.901731][ T6566]  do_sys_openat2+0x113/0x200
[  157.901758][ T6566]  ? __pfx_do_sys_openat2+0x10/0x10
[  157.901778][ T6566]  ? exc_page_fault+0x6a/0xc0
[  157.901799][ T6566]  ? do_user_addr_fault+0xc7c/0x1360
[  157.901820][ T6566]  __x64_sys_openat+0x138/0x170
[  157.901842][ T6566]  do_syscall_64+0x14d/0xf80
[  157.901863][ T6566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.901880][ T6566]  ? trace_irq_disable+0x37/0x100
[  157.901895][ T6566]  ? clear_bhb_loop+0x40/0x90
[  157.901913][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.901930][ T6566] RIP: 0033:0x7f6a5c68c84e
[  157.901951][ T6566] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  157.901966][ T6566] RSP: 002b:00007f6a5bd25b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  157.901991][ T6566] RAX: ffffffffffffffda RBX: 00007f6a5bd266c0 RCX: 00007f6a5c68c84e
[  157.902004][ T6566] RDX: 0000000000000400 RSI: 00007f6a5bd25c00 RDI: ffffffffffffff9c
[  157.902017][ T6566] RBP: 00007f6a5bd25c00 R08: 0000000000000000 R09: 0000000000000000
[  157.902029][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  157.902041][ T6566] R13: 00007f6a5c946038 R14: 00007f6a5c945fa0 R15: 00007ffc29cccd18
[  157.902061][ T6566]  </TASK>
[  157.902067][ T6566] 
[  157.902071][ T6566] Allocated by task 1:
[  157.902080][ T6566]  kasan_save_track+0x3e/0x80
[  157.902095][ T6566]  __kasan_kmalloc+0x93/0xb0
[  157.902109][ T6566]  __kmalloc_cache_noprof+0x3a6/0x690
[  157.902125][ T6566]  dvb_register_device+0x2fd/0x2210
[  157.902144][ T6566]  dvb_register_frontend+0x665/0x970
[  157.902161][ T6566]  vidtv_bridge_probe+0x9aa/0xf80
[  157.902181][ T6566]  platform_probe+0xf9/0x190
[  157.902201][ T6566]  really_probe+0x267/0xaf0
[  157.902216][ T6566]  __driver_probe_device+0x18c/0x320
[  157.902231][ T6566]  driver_probe_device+0x4f/0x240
[  157.902245][ T6566]  __driver_attach+0x349/0x640
[  157.902259][ T6566]  bus_for_each_dev+0x23e/0x2c0
[  157.902277][ T6566]  bus_add_driver+0x348/0x670
[  157.902294][ T6566]  driver_register+0x23a/0x320
[  157.902310][ T6566]  vidtv_bridge_init+0x28/0x50
[  157.902331][ T6566]  do_one_initcall+0x250/0x840
[  157.902351][ T6566]  do_initcall_level+0x104/0x190
[  157.902367][ T6566]  do_initcalls+0x59/0xa0
[  157.902382][ T6566]  kernel_init_freeable+0x2a6/0x3d0
[  157.902397][ T6566]  kernel_init+0x1d/0x1d0
[  157.902410][ T6566]  ret_from_fork+0x51e/0xb90
[  157.902426][ T6566]  ret_from_fork_asm+0x1a/0x30
[  157.902445][ T6566] 
[  157.902449][ T6566] Freed by task 6559:
[  157.902456][ T6566]  kasan_save_track+0x3e/0x80
[  157.902470][ T6566]  kasan_save_free_info+0x46/0x50
[  157.902488][ T6566]  __kasan_slab_free+0x5c/0x80
[  157.902502][ T6566]  kfree+0x1c1/0x690
[  157.902512][ T6566]  dvb_frontend_release+0x3de/0x500
[  157.902525][ T6566]  __fput+0x45e/0xa80
[  157.902542][ T6566]  task_work_run+0x1d9/0x270
[  157.902555][ T6566]  exit_to_user_mode_loop+0xed/0x480
[  157.902573][ T6566]  do_syscall_64+0x32d/0xf80
[  157.902590][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.902606][ T6566] 
[  157.902610][ T6566] The buggy address belongs to the object at ffff88802b430800
[  157.902610][ T6566]  which belongs to the cache kmalloc-512 of size 512
[  157.902625][ T6566] The buggy address is located 24 bytes inside of
[  157.902625][ T6566]  freed 512-byte region [ffff88802b430800, ffff88802b430a00)
[  157.902644][ T6566] 
[  157.902648][ T6566] The buggy address belongs to the physical page:
[  157.902663][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2b430
[  157.902682][ T6566] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  157.902697][ T6566] flags: 0x80000000000040(head|node=0|zone=1)
[  157.902718][ T6566] page_type: f5(slab)
[  157.902733][ T6566] raw: 0080000000000040 ffff88813fe0dc80 dead000000000100 dead000000000122
[  157.902747][ T6566] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  157.902769][ T6566] head: 0080000000000040 ffff88813fe0dc80 dead000000000100 dead000000000122
[  157.902782][ T6566] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  157.902797][ T6566] head: 0080000000000002 ffffea0000ad0c01 00000000ffffffff 00000000ffffffff
[  157.902811][ T6566] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000004
[  157.902820][ T6566] page dumped because: kasan: bad access detected
[  157.902832][ T6566] page_owner tracks the page as allocated
[  157.902839][ T6566] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 14672887637, free_ts 14671573424
[  157.902868][ T6566]  post_alloc_hook+0x228/0x280
[  157.902885][ T6566]  get_page_from_freelist+0x28bb/0x2950
[  157.902903][ T6566]  __alloc_frozen_pages_noprof+0x18d/0x380
[  157.902920][ T6566]  allocate_slab+0x77/0x660
[  157.902965][ T6566]  refill_objects+0x334/0x3c0
[  157.902983][ T6566]  __pcs_replace_empty_main+0x328/0x5f0
[  157.903002][ T6566]  __kmalloc_cache_noprof+0x44e/0x690
[  157.903026][ T6566]  dvb_register_device+0x2fd/0x2210
[  157.903043][ T6566]  dvb_register_frontend+0x665/0x970
[  157.903060][ T6566]  vidtv_bridge_probe+0x9aa/0xf80
[  157.903079][ T6566]  platform_probe+0xf9/0x190
[  157.903098][ T6566]  really_probe+0x267/0xaf0
[  157.903112][ T6566]  __driver_probe_device+0x18c/0x320
[  157.903125][ T6566]  driver_probe_device+0x4f/0x240
[  157.903138][ T6566]  __driver_attach+0x349/0x640
[  157.903151][ T6566]  bus_for_each_dev+0x23e/0x2c0
[  157.903168][ T6566] page last free pid 1 tgid 1 stack trace:
[  157.903177][ T6566]  __free_frozen_pages+0xfd0/0x1160
[  157.903191][ T6566]  stack_depot_save_flags+0x40e/0x810
[  157.903208][ T6566]  kasan_save_track+0x4f/0x80
[  157.903221][ T6566]  __kasan_kmalloc+0x93/0xb0
[  157.903235][ T6566]  __kmalloc_cache_noprof+0x3a6/0x690
[  157.903251][ T6566]  kobject_uevent_env+0x28f/0x9e0
[  157.903264][ T6566]  device_add+0x557/0xb80
[  157.903283][ T6566]  i2c_new_client_device+0xa1f/0x1160
[  157.903304][ T6566]  dvb_module_probe+0x1c7/0x310
[  157.903322][ T6566]  vidtv_bridge_probe+0x93b/0xf80
[  157.903341][ T6566]  platform_probe+0xf9/0x190
[  157.903360][ T6566]  really_probe+0x267/0xaf0
[  157.903373][ T6566]  __driver_probe_device+0x18c/0x320
[  157.903388][ T6566]  driver_probe_device+0x4f/0x240
[  157.903403][ T6566]  __driver_attach+0x349/0x640
[  157.903416][ T6566]  bus_for_each_dev+0x23e/0x2c0
[  157.903433][ T6566] 
[  157.903438][ T6566] Memory state around the buggy address:
[  157.903447][ T6566]  ffff88802b430700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  157.903459][ T6566]  ffff88802b430780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  157.903470][ T6566] >ffff88802b430800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  157.903478][ T6566]                             ^
[  157.903487][ T6566]  ffff88802b430880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  157.903498][ T6566]  ffff88802b430900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  157.903505][ T6566] ==================================================================
[  157.903522][ T6566] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  157.903539][ T6566] CPU: 1 UID: 0 PID: 6566 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  157.903560][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  157.903570][ T6566] Call Trace:
[  157.903577][ T6566]  <TASK>
[  157.903584][ T6566]  vpanic+0x1e0/0x670
[  157.903608][ T6566]  panic+0xc5/0xd0
[  157.903629][ T6566]  ? __pfx_panic+0x10/0x10
[  157.903650][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.903673][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.903692][ T6566]  check_panic_on_warn+0x89/0xb0
[  157.903709][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.903729][ T6566]  end_report+0x6f/0x140
[  157.903747][ T6566]  kasan_report+0x128/0x150
[  157.903774][ T6566]  ? dvb_device_open+0xc4/0x360
[  157.903798][ T6566]  dvb_device_open+0xc4/0x360
[  157.903819][ T6566]  ? rt_spin_unlock+0x160/0x200
[  157.903837][ T6566]  chrdev_open+0x4d0/0x5f0
[  157.903857][ T6566]  ? __pfx_chrdev_open+0x10/0x10
[  157.903876][ T6566]  ? fsnotify_open_perm_and_set_mode+0x138/0x6e0
[  157.903901][ T6566]  ? __pfx_chrdev_open+0x10/0x10
[  157.903919][ T6566]  do_dentry_open+0x83d/0x13e0
[  157.903944][ T6566]  vfs_open+0x3b/0x350
[  157.903962][ T6566]  ? path_openat+0x2e25/0x38a0
[  157.903979][ T6566]  path_openat+0x2e3d/0x38a0
[  157.904010][ T6566]  ? __pfx_path_openat+0x10/0x10
[  157.904028][ T6566]  ? kasan_save_track+0x4f/0x80
[  157.904043][ T6566]  ? kasan_save_track+0x3e/0x80
[  157.904058][ T6566]  ? __kasan_slab_alloc+0x6c/0x80
[  157.904074][ T6566]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  157.904095][ T6566]  ? do_raw_spin_lock+0x12b/0x2f0
[  157.904118][ T6566]  do_file_open+0x23e/0x4a0
[  157.904134][ T6566]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  157.904156][ T6566]  ? __pfx_do_file_open+0x10/0x10
[  157.904171][ T6566]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  157.904198][ T6566]  ? alloc_fd+0x64e/0x6c0
[  157.904222][ T6566]  do_sys_openat2+0x113/0x200
[  157.904244][ T6566]  ? __pfx_do_sys_openat2+0x10/0x10
[  157.904265][ T6566]  ? exc_page_fault+0x6a/0xc0
[  157.904286][ T6566]  ? do_user_addr_fault+0xc7c/0x1360
[  157.904308][ T6566]  __x64_sys_openat+0x138/0x170
[  157.904331][ T6566]  do_syscall_64+0x14d/0xf80
[  157.904350][ T6566]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.904367][ T6566]  ? trace_irq_disable+0x37/0x100
[  157.904382][ T6566]  ? clear_bhb_loop+0x40/0x90
[  157.904400][ T6566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.904416][ T6566] RIP: 0033:0x7f6a5c68c84e
[  157.904431][ T6566] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  157.904445][ T6566] RSP: 002b:00007f6a5bd25b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  157.904464][ T6566] RAX: ffffffffffffffda RBX: 00007f6a5bd266c0 RCX: 00007f6a5c68c84e
[  157.904476][ T6566] RDX: 0000000000000400 RSI: 00007f6a5bd25c00 RDI: ffffffffffffff9c
[  157.904488][ T6566] RBP: 00007f6a5bd25c00 R08: 0000000000000000 R09: 0000000000000000
[  157.904500][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  157.904511][ T6566] R13: 00007f6a5c946038 R14: 00007f6a5c945fa0 R15: 00007ffc29cccd18
[  157.904532][ T6566]  </TASK>
[  157.904884][ T6566] Kernel Offset: disabled