[   81.901588][   T52] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.10.56' (ED25519) to the list of known hosts.
2025/03/08 19:00:33 ignoring optional flag "sandboxArg"="0"
2025/03/08 19:00:33 ignoring optional flag "type"="gce"
2025/03/08 19:00:33 parsed 1 programs
2025/03/08 19:00:33 executed programs: 0
[   85.426167][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.434247][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.442183][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.451924][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.459552][   T55] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   85.467380][   T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   85.555608][ T6134] chnl_net:caif_netlink_parms(): no params data found
[   85.599139][ T6134] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.606380][ T6134] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.613667][ T6134] bridge_slave_0: entered allmulticast mode
[   85.620756][ T6134] bridge_slave_0: entered promiscuous mode
[   85.628378][ T6134] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.635622][ T6134] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.642878][ T6134] bridge_slave_1: entered allmulticast mode
[   85.649475][ T6134] bridge_slave_1: entered promiscuous mode
[   85.669076][ T6134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.680498][ T6134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.704345][ T6134] team0: Port device team_slave_0 added
[   85.711852][ T6134] team0: Port device team_slave_1 added
[   85.729319][ T6134] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.736490][ T6134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.762538][ T6134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.774311][ T6134] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.781640][ T6134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.807581][ T6134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.836633][ T6134] hsr_slave_0: entered promiscuous mode
[   85.843176][ T6134] hsr_slave_1: entered promiscuous mode
[   86.264549][ T6134] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.278692][ T6134] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.290053][ T6134] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.301368][ T6134] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.325038][ T6134] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.332252][ T6134] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.339715][ T6134] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.346824][ T6134] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.406526][ T6134] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.425272][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.433965][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.449827][ T6134] 8021q: adding VLAN 0 to HW filter on device team0
[   86.473068][ T5128] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.480246][ T5128] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.491972][ T5128] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.499100][ T5128] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.676685][ T6134] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.721311][ T6134] veth0_vlan: entered promiscuous mode
[   86.734833][ T6134] veth1_vlan: entered promiscuous mode
[   86.766838][ T6134] veth0_macvtap: entered promiscuous mode
[   86.776038][ T6134] veth1_macvtap: entered promiscuous mode
[   86.796172][ T6134] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.809313][ T6134] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.823441][ T6134] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.832639][ T6134] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.842584][ T6134] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.851704][ T6134] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.928828][ T1010] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.949446][ T1010] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.981568][ T1010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.989430][ T1010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.092573][ T6200] FAULT_INJECTION: forcing a failure.
[   87.092573][ T6200] name failslab, interval 1, probability 0, space 0, times 1
[   87.107428][ T6200] CPU: 1 UID: 0 PID: 6200 Comm: syz-executor.0 Not tainted 6.14.0-rc5-syzkaller-00227-g2e51e0ac575c #0
[   87.107452][ T6200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   87.107465][ T6200] Call Trace:
[   87.107471][ T6200]  <TASK>
[   87.107478][ T6200]  dump_stack_lvl+0x241/0x360
[   87.107522][ T6200]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.107543][ T6200]  ? __wake_up_klogd+0xcc/0x110
[   87.107565][ T6200]  should_fail_ex+0x40a/0x550
[   87.107592][ T6200]  should_failslab+0xac/0x100
[   87.107610][ T6200]  __kmalloc_cache_noprof+0x70/0x390
[   87.107629][ T6200]  ? dccp_feat_entry_new+0x173/0x3a0
[   87.107652][ T6200]  dccp_feat_entry_new+0x173/0x3a0
[   87.107670][ T6200]  dccp_feat_parse_options+0xeab/0x2b60
[   87.107691][ T6200]  ? __pfx_dccp_feat_parse_options+0x10/0x10
[   87.107704][ T6200]  ? __kmalloc_cache_noprof+0x243/0x390
[   87.107722][ T6200]  ? dccp_ackvec_parsed_add+0x5c/0x1d0
[   87.107750][ T6200]  dccp_parse_options+0x13bd/0x2670
[   87.107784][ T6200]  dccp_rcv_established+0x55/0x320
[   87.107802][ T6200]  dccp_v4_do_rcv+0xff/0x1f0
[   87.107831][ T6200]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   87.107846][ T6200]  __release_sock+0x243/0x350
[   87.107871][ T6200]  release_sock+0x61/0x1f0
[   87.107893][ T6200]  dccp_sendmsg+0x4f0/0xb90
[   87.107920][ T6200]  ? __pfx_dccp_sendmsg+0x10/0x10
[   87.107939][ T6200]  ? sock_rps_record_flow+0x1a/0x400
[   87.107962][ T6200]  ? inet_sendmsg+0x330/0x390
[   87.107985][ T6200]  __sock_sendmsg+0x1a6/0x270
[   87.108007][ T6200]  ____sys_sendmsg+0x53a/0x860
[   87.108030][ T6200]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.108044][ T6200]  ? __fget_files+0x2a/0x410
[   87.108067][ T6200]  ? __fget_files+0x2a/0x410
[   87.108094][ T6200]  __sys_sendmmsg+0x36a/0x720
[   87.108121][ T6200]  ? __pfx___sys_sendmmsg+0x10/0x10
[   87.108147][ T6200]  ? __pfx_lock_release+0x10/0x10
[   87.108166][ T6200]  ? kstrtouint_from_user+0x128/0x190
[   87.108204][ T6200]  ? ksys_write+0x22a/0x2b0
[   87.108220][ T6200]  ? __pfx_lock_release+0x10/0x10
[   87.108246][ T6200]  ? sb_end_write+0xe9/0x1c0
[   87.108266][ T6200]  ? vfs_write+0x7fa/0xd10
[   87.108284][ T6200]  ? __mutex_unlock_slowpath+0x227/0x800
[   87.108331][ T6200]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   87.108354][ T6200]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   87.108376][ T6200]  ? do_syscall_64+0x100/0x230
[   87.108400][ T6200]  __x64_sys_sendmmsg+0xa0/0xb0
[   87.108417][ T6200]  do_syscall_64+0xf3/0x230
[   87.108437][ T6200]  ? clear_bhb_loop+0x35/0x90
[   87.108460][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.108486][ T6200] RIP: 0033:0x7f728827ad39
[   87.108504][ T6200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   87.108516][ T6200] RSP: 002b:00007f728939b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   87.108533][ T6200] RAX: ffffffffffffffda RBX: 00007f728839bf80 RCX: 00007f728827ad39
[   87.108544][ T6200] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   87.108552][ T6200] RBP: 00007f728939b120 R08: 0000000000000000 R09: 0000000000000000
[   87.108561][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.108570][ T6200] R13: 000000000000000b R14: 00007f728839bf80 R15: 00007ffc068801d8
[   87.108595][ T6200]  </TASK>
[   87.108758][ T6200] dccp_parse_options: DCCP(ffff88814d622100): Option 32 (len=7) error=9
[   87.444342][ T6200] ==================================================================
[   87.452441][ T6200] BUG: KASAN: slab-use-after-free in ccid2_hc_tx_packet_recv+0x1902/0x2070
[   87.461143][ T6200] Read of size 1 at addr ffff888056765494 by task syz-executor.0/6200
[   87.469392][ T6200] 
[   87.471725][ T6200] CPU: 1 UID: 0 PID: 6200 Comm: syz-executor.0 Not tainted 6.14.0-rc5-syzkaller-00227-g2e51e0ac575c #0
[   87.471744][ T6200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   87.471754][ T6200] Call Trace:
[   87.471760][ T6200]  <TASK>
[   87.471767][ T6200]  dump_stack_lvl+0x241/0x360
[   87.471800][ T6200]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.471817][ T6200]  ? __pfx__printk+0x10/0x10
[   87.471831][ T6200]  ? _printk+0xd5/0x120
[   87.471845][ T6200]  ? __virt_addr_valid+0x183/0x530
[   87.471861][ T6200]  ? __virt_addr_valid+0x183/0x530
[   87.471875][ T6200]  print_report+0x16e/0x5b0
[   87.471894][ T6200]  ? __virt_addr_valid+0x183/0x530
[   87.471907][ T6200]  ? __virt_addr_valid+0x183/0x530
[   87.471921][ T6200]  ? __virt_addr_valid+0x45f/0x530
[   87.471934][ T6200]  ? __phys_addr+0xba/0x170
[   87.471948][ T6200]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   87.471971][ T6200]  kasan_report+0x143/0x180
[   87.471991][ T6200]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   87.472016][ T6200]  ccid2_hc_tx_packet_recv+0x1902/0x2070
[   87.472045][ T6200]  ? dccp_ackvec_input+0x1d5/0xf70
[   87.472068][ T6200]  ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[   87.472089][ T6200]  ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[   87.472111][ T6200]  dccp_rcv_established+0x295/0x320
[   87.472129][ T6200]  dccp_v4_do_rcv+0xff/0x1f0
[   87.472148][ T6200]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   87.472165][ T6200]  __release_sock+0x243/0x350
[   87.472187][ T6200]  release_sock+0x61/0x1f0
[   87.472207][ T6200]  dccp_sendmsg+0x4f0/0xb90
[   87.472229][ T6200]  ? __pfx_dccp_sendmsg+0x10/0x10
[   87.472248][ T6200]  ? sock_rps_record_flow+0x1a/0x400
[   87.472270][ T6200]  ? inet_sendmsg+0x330/0x390
[   87.472292][ T6200]  __sock_sendmsg+0x1a6/0x270
[   87.472311][ T6200]  ____sys_sendmsg+0x53a/0x860
[   87.472330][ T6200]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.472345][ T6200]  ? __fget_files+0x2a/0x410
[   87.472367][ T6200]  ? __sys_sendmmsg+0x392/0x720
[   87.472383][ T6200]  ? __might_fault+0xaa/0x120
[   87.472400][ T6200]  __sys_sendmmsg+0x36a/0x720
[   87.472420][ T6200]  ? __pfx___sys_sendmmsg+0x10/0x10
[   87.472440][ T6200]  ? __pfx_lock_release+0x10/0x10
[   87.472461][ T6200]  ? kstrtouint_from_user+0x128/0x190
[   87.472487][ T6200]  ? ksys_write+0x22a/0x2b0
[   87.472502][ T6200]  ? __pfx_lock_release+0x10/0x10
[   87.472525][ T6200]  ? sb_end_write+0xe9/0x1c0
[   87.472545][ T6200]  ? vfs_write+0x7fa/0xd10
[   87.472562][ T6200]  ? __mutex_unlock_slowpath+0x227/0x800
[   87.472595][ T6200]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   87.472617][ T6200]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   87.472638][ T6200]  ? do_syscall_64+0x100/0x230
[   87.472661][ T6200]  __x64_sys_sendmmsg+0xa0/0xb0
[   87.472677][ T6200]  do_syscall_64+0xf3/0x230
[   87.472698][ T6200]  ? clear_bhb_loop+0x35/0x90
[   87.472720][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.472739][ T6200] RIP: 0033:0x7f728827ad39
[   87.472753][ T6200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   87.472766][ T6200] RSP: 002b:00007f728939b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   87.472789][ T6200] RAX: ffffffffffffffda RBX: 00007f728839bf80 RCX: 00007f728827ad39
[   87.472800][ T6200] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   87.472810][ T6200] RBP: 00007f728939b120 R08: 0000000000000000 R09: 0000000000000000
[   87.472820][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.472830][ T6200] R13: 000000000000000b R14: 00007f728839bf80 R15: 00007ffc068801d8
[   87.472845][ T6200]  </TASK>
[   87.472850][ T6200] 
[   87.822264][ T6200] Allocated by task 6200:
[   87.826576][ T6200]  kasan_save_track+0x3f/0x80
[   87.831246][ T6200]  __kasan_kmalloc+0x98/0xb0
[   87.835820][ T6200]  __kmalloc_node_track_caller_noprof+0x28b/0x4c0
[   87.842224][ T6200]  kmalloc_reserve+0x111/0x2a0
[   87.846975][ T6200]  __alloc_skb+0x1f3/0x440
[   87.851380][ T6200]  dccp_send_ack+0xaa/0x310
[   87.855875][ T6200]  ccid2_hc_rx_packet_recv+0x10c/0x1c0
[   87.861320][ T6200]  dccp_rcv_established+0x1bb/0x320
[   87.866501][ T6200]  dccp_v4_do_rcv+0xff/0x1f0
[   87.871077][ T6200]  __sk_receive_skb+0x82b/0x8b0
[   87.875913][ T6200]  ip_protocol_deliver_rcu+0x2e9/0x440
[   87.881355][ T6200]  ip_local_deliver_finish+0x341/0x5f0
[   87.886798][ T6200]  NF_HOOK+0x3a4/0x450
[   87.890850][ T6200]  NF_HOOK+0x3a4/0x450
[   87.894901][ T6200]  __netif_receive_skb+0x2bf/0x650
[   87.899998][ T6200]  process_backlog+0x662/0x15b0
[   87.904838][ T6200]  __napi_poll+0xcb/0x490
[   87.909151][ T6200]  net_rx_action+0x89b/0x1240
[   87.913817][ T6200]  handle_softirqs+0x2d4/0x9b0
[   87.918568][ T6200]  do_softirq+0x11b/0x1e0
[   87.922882][ T6200]  __local_bh_enable_ip+0x1bb/0x200
[   87.928072][ T6200]  __dev_queue_xmit+0x1775/0x3f50
[   87.933082][ T6200]  ip_finish_output2+0xcd3/0x12e0
[   87.938094][ T6200]  __ip_queue_xmit+0x103f/0x1960
[   87.943019][ T6200]  dccp_transmit_skb+0xf37/0x16d0
[   87.948031][ T6200]  dccp_xmit_packet+0x376/0x610
[   87.952880][ T6200]  dccp_write_xmit+0x138/0x220
[   87.957627][ T6200]  dccp_sendmsg+0x76f/0xb90
[   87.962145][ T6200]  __sock_sendmsg+0x1a6/0x270
[   87.966810][ T6200]  ____sys_sendmsg+0x53a/0x860
[   87.971556][ T6200]  __sys_sendmmsg+0x36a/0x720
[   87.976216][ T6200]  __x64_sys_sendmmsg+0xa0/0xb0
[   87.981053][ T6200]  do_syscall_64+0xf3/0x230
[   87.985543][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.991424][ T6200] 
[   87.993731][ T6200] Freed by task 6200:
[   87.997692][ T6200]  kasan_save_track+0x3f/0x80
[   88.002353][ T6200]  kasan_save_free_info+0x40/0x50
[   88.007363][ T6200]  __kasan_slab_free+0x59/0x70
[   88.012114][ T6200]  kfree+0x196/0x430
[   88.015997][ T6200]  skb_release_data+0x6a0/0x8a0
[   88.020838][ T6200]  sk_skb_reason_drop+0x1c9/0x380
[   88.025846][ T6200]  dccp_v4_do_rcv+0x145/0x1f0
[   88.030508][ T6200]  __release_sock+0x243/0x350
[   88.035268][ T6200]  release_sock+0x61/0x1f0
[   88.039673][ T6200]  dccp_sendmsg+0x4f0/0xb90
[   88.044165][ T6200]  __sock_sendmsg+0x1a6/0x270
[   88.048825][ T6200]  ____sys_sendmsg+0x53a/0x860
[   88.053571][ T6200]  __sys_sendmmsg+0x36a/0x720
[   88.058229][ T6200]  __x64_sys_sendmmsg+0xa0/0xb0
[   88.063062][ T6200]  do_syscall_64+0xf3/0x230
[   88.067553][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.073431][ T6200] 
[   88.075753][ T6200] The buggy address belongs to the object at ffff888056765000
[   88.075753][ T6200]  which belongs to the cache kmalloc-2k of size 2048
[   88.089788][ T6200] The buggy address is located 1172 bytes inside of
[   88.089788][ T6200]  freed 2048-byte region [ffff888056765000, ffff888056765800)
[   88.103758][ T6200] 
[   88.106067][ T6200] The buggy address belongs to the physical page:
[   88.112457][ T6200] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x56760
[   88.121214][ T6200] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   88.129703][ T6200] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[   88.137661][ T6200] page_type: f5(slab)
[   88.141632][ T6200] raw: 00fff00000000040 ffff88801b042000 ffffea000158ea00 dead000000000002
[   88.150199][ T6200] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   88.158946][ T6200] head: 00fff00000000040 ffff88801b042000 ffffea000158ea00 dead000000000002
[   88.167601][ T6200] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   88.176256][ T6200] head: 00fff00000000003 ffffea000159d801 ffffffffffffffff 0000000000000000
[   88.184919][ T6200] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[   88.193568][ T6200] page dumped because: kasan: bad access detected
[   88.199976][ T6200] page_owner tracks the page as allocated
[   88.205703][ T6200] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5208, tgid 5208 (udevd), ts 67212669299, free_ts 67194447636
[   88.226446][ T6200]  post_alloc_hook+0x1f4/0x240
[   88.231210][ T6200]  get_page_from_freelist+0x365c/0x37a0
[   88.236753][ T6200]  __alloc_frozen_pages_noprof+0x292/0x710
[   88.242546][ T6200]  alloc_pages_mpol+0x311/0x660
[   88.247386][ T6200]  allocate_slab+0x8f/0x3a0
[   88.251874][ T6200]  ___slab_alloc+0xc27/0x14a0
[   88.256543][ T6200]  __slab_alloc+0x58/0xa0
[   88.260861][ T6200]  __kmalloc_noprof+0x2e6/0x4c0
[   88.265699][ T6200]  sk_prot_alloc+0xe0/0x210
[   88.270199][ T6200]  sk_alloc+0x3e/0x370
[   88.274257][ T6200]  __netlink_create+0x65/0x260
[   88.279004][ T6200]  netlink_create+0x3ab/0x560
[   88.283669][ T6200]  __sock_create+0x4c0/0xa30
[   88.288245][ T6200]  __sys_socket+0x150/0x3c0
[   88.292755][ T6200]  __x64_sys_socket+0x7a/0x90
[   88.297426][ T6200]  do_syscall_64+0xf3/0x230
[   88.301923][ T6200] page last free pid 5859 tgid 5859 stack trace:
[   88.308235][ T6200]  free_frozen_pages+0xe0d/0x10e0
[   88.313260][ T6200]  __put_partials+0x160/0x1c0
[   88.317932][ T6200]  put_cpu_partial+0x17c/0x250
[   88.322680][ T6200]  __slab_free+0x290/0x380
[   88.327083][ T6200]  qlist_free_all+0x9a/0x140
[   88.331660][ T6200]  kasan_quarantine_reduce+0x14f/0x170
[   88.337104][ T6200]  __kasan_slab_alloc+0x23/0x80
[   88.341937][ T6200]  kmem_cache_alloc_noprof+0x1d9/0x380
[   88.347384][ T6200]  getname_flags+0xb7/0x540
[   88.351876][ T6200]  do_readlinkat+0xd8/0x3a0
[   88.356380][ T6200]  __x64_sys_readlink+0x7f/0x90
[   88.361231][ T6200]  do_syscall_64+0xf3/0x230
[   88.365731][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.371618][ T6200] 
[   88.373929][ T6200] Memory state around the buggy address:
[   88.379548][ T6200]  ffff888056765380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   88.387594][ T6200]  ffff888056765400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   88.395637][ T6200] >ffff888056765480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   88.403706][ T6200]                          ^
[   88.408277][ T6200]  ffff888056765500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   88.416319][ T6200]  ffff888056765580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   88.424363][ T6200] ==================================================================
[   88.514479][ T6200] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   88.521719][ T6200] CPU: 0 UID: 0 PID: 6200 Comm: syz-executor.0 Not tainted 6.14.0-rc5-syzkaller-00227-g2e51e0ac575c #0
[   88.532757][ T6200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   88.542920][ T6200] Call Trace:
[   88.546213][ T6200]  <TASK>
[   88.549158][ T6200]  dump_stack_lvl+0x241/0x360
[   88.553855][ T6200]  ? __pfx_dump_stack_lvl+0x10/0x10
[   88.559067][ T6200]  ? __pfx__printk+0x10/0x10
[   88.563681][ T6200]  ? preempt_schedule+0xe1/0xf0
[   88.568550][ T6200]  ? vscnprintf+0x5d/0x90
[   88.572897][ T6200]  panic+0x349/0x880
[   88.576809][ T6200]  ? check_panic_on_warn+0x21/0xb0
[   88.581940][ T6200]  ? __pfx_panic+0x10/0x10
[   88.586373][ T6200]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   88.592368][ T6200]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   88.598713][ T6200]  ? print_report+0x519/0x5b0
[   88.603401][ T6200]  check_panic_on_warn+0x86/0xb0
[   88.608361][ T6200]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   88.614165][ T6200]  end_report+0x77/0x160
[   88.618404][ T6200]  kasan_report+0x154/0x180
[   88.622899][ T6200]  ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[   88.628706][ T6200]  ccid2_hc_tx_packet_recv+0x1902/0x2070
[   88.634348][ T6200]  ? dccp_ackvec_input+0x1d5/0xf70
[   88.639458][ T6200]  ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[   88.645084][ T6200]  ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[   88.651057][ T6200]  dccp_rcv_established+0x295/0x320
[   88.656244][ T6200]  dccp_v4_do_rcv+0xff/0x1f0
[   88.660828][ T6200]  ? __pfx_dccp_v4_do_rcv+0x10/0x10
[   88.666011][ T6200]  __release_sock+0x243/0x350
[   88.670684][ T6200]  release_sock+0x61/0x1f0
[   88.675095][ T6200]  dccp_sendmsg+0x4f0/0xb90
[   88.679593][ T6200]  ? __pfx_dccp_sendmsg+0x10/0x10
[   88.684605][ T6200]  ? sock_rps_record_flow+0x1a/0x400
[   88.689881][ T6200]  ? inet_sendmsg+0x330/0x390
[   88.694554][ T6200]  __sock_sendmsg+0x1a6/0x270
[   88.699220][ T6200]  ____sys_sendmsg+0x53a/0x860
[   88.703973][ T6200]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.709247][ T6200]  ? __fget_files+0x2a/0x410
[   88.713828][ T6200]  ? __sys_sendmmsg+0x392/0x720
[   88.718667][ T6200]  ? __might_fault+0xaa/0x120
[   88.723340][ T6200]  __sys_sendmmsg+0x36a/0x720
[   88.728004][ T6200]  ? __pfx___sys_sendmmsg+0x10/0x10
[   88.733193][ T6200]  ? __pfx_lock_release+0x10/0x10
[   88.738211][ T6200]  ? kstrtouint_from_user+0x128/0x190
[   88.743578][ T6200]  ? ksys_write+0x22a/0x2b0
[   88.748067][ T6200]  ? __pfx_lock_release+0x10/0x10
[   88.753082][ T6200]  ? sb_end_write+0xe9/0x1c0
[   88.757663][ T6200]  ? vfs_write+0x7fa/0xd10
[   88.762065][ T6200]  ? __mutex_unlock_slowpath+0x227/0x800
[   88.767697][ T6200]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   88.773672][ T6200]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   88.779995][ T6200]  ? do_syscall_64+0x100/0x230
[   88.784750][ T6200]  __x64_sys_sendmmsg+0xa0/0xb0
[   88.789586][ T6200]  do_syscall_64+0xf3/0x230
[   88.794077][ T6200]  ? clear_bhb_loop+0x35/0x90
[   88.798744][ T6200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.804626][ T6200] RIP: 0033:0x7f728827ad39
[   88.809032][ T6200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   88.828970][ T6200] RSP: 002b:00007f728939b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   88.837375][ T6200] RAX: ffffffffffffffda RBX: 00007f728839bf80 RCX: 00007f728827ad39
[   88.845335][ T6200] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[   88.853303][ T6200] RBP: 00007f728939b120 R08: 0000000000000000 R09: 0000000000000000
[   88.861262][ T6200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.869221][ T6200] R13: 000000000000000b R14: 00007f728839bf80 R15: 00007ffc068801d8
[   88.877186][ T6200]  </TASK>
[   88.880429][ T6200] Kernel Offset: disabled
[   88.884738][ T6200] Rebooting in 86400 seconds..