Warning: Permanently added '10.128.1.76' (ED25519) to the list of known hosts.
2026/02/21 13:57:03 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[  125.206539][ T6268] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  131.017763][ T6317] chnl_net:caif_netlink_parms(): no params data found
[  131.111489][ T6317] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.111605][ T6317] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.111694][ T6317] bridge_slave_0: entered allmulticast mode
[  131.112997][ T6317] bridge_slave_0: entered promiscuous mode
[  131.143372][ T6317] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.143480][ T6317] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.143585][ T6317] bridge_slave_1: entered allmulticast mode
[  131.144936][ T6317] bridge_slave_1: entered promiscuous mode
[  131.315983][ T6317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.318290][ T6317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.352141][ T6317] team0: Port device team_slave_0 added
[  131.355493][ T6317] team0: Port device team_slave_1 added
[  131.387522][ T6317] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.387537][ T6317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.387553][ T6317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.388786][ T6317] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.388797][ T6317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  131.388817][ T6317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.501036][ T6317] hsr_slave_0: entered promiscuous mode
[  131.501726][ T6317] hsr_slave_1: entered promiscuous mode
[  132.890321][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  132.890408][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  133.181506][ T6317] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  133.219728][ T6317] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  133.257591][ T6317] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  133.298132][ T6317] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  133.445490][ T6317] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.470040][ T6317] 8021q: adding VLAN 0 to HW filter on device team0
[  133.484854][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.484965][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  133.489778][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.489900][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[  133.814857][ T6317] 8021q: adding VLAN 0 to HW filter on device batadv0
[  133.882572][ T6317] veth0_vlan: entered promiscuous mode
[  133.902469][ T6317] veth1_vlan: entered promiscuous mode
[  133.956200][ T6317] veth0_macvtap: entered promiscuous mode
[  133.961264][ T6317] veth1_macvtap: entered promiscuous mode
[  133.989693][ T6317] batman_adv: batadv0: Interface activated: batadv_slave_0
[  134.007871][ T6317] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.026289][ T1165] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.026569][ T1165] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.027504][ T1165] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.028847][ T1165] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.414802][ T5112] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  134.417307][ T5112] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  134.418146][ T5112] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  134.419302][ T5112] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  134.419986][ T5112] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  134.940924][   T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.218028][   T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.587729][   T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.612220][   T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.678710][ T1121] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.678730][ T1121] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.740470][ T1121] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.740490][ T1121] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.233456][   T42] bridge_slave_1: left allmulticast mode
[  137.233483][   T42] bridge_slave_1: left promiscuous mode
[  137.235927][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.324987][   T42] bridge_slave_0: left allmulticast mode
[  137.325012][   T42] bridge_slave_0: left promiscuous mode
[  137.325262][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
2026/02/21 13:57:19 executed programs: 0
[  137.926029][   T60] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  137.931725][   T60] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  137.932618][   T60] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  137.957231][   T60] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  137.958554][   T60] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  138.283923][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.374536][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.431740][   T42] bond0 (unregistering): Released all slaves
[  138.843248][   T42] hsr_slave_0: left promiscuous mode
[  138.883312][   T42] hsr_slave_1: left promiscuous mode
[  138.884282][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.884304][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.945464][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.945492][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.994423][   T42] veth1_macvtap: left promiscuous mode
[  138.994484][   T42] veth0_macvtap: left promiscuous mode
[  138.994614][   T42] veth1_vlan: left promiscuous mode
[  138.994703][   T42] veth0_vlan: left promiscuous mode
[  139.686092][   T42] team0 (unregistering): Port device team_slave_1 removed
[  139.744051][   T42] team0 (unregistering): Port device team_slave_0 removed
[  139.980796][ T6514] chnl_net:caif_netlink_parms(): no params data found
[  140.004319][   T60] Bluetooth: hci0: command tx timeout
[  140.132889][ T6514] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.141296][ T6514] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.141491][ T6514] bridge_slave_0: entered allmulticast mode
[  140.159188][ T6514] bridge_slave_0: entered promiscuous mode
[  140.162222][ T6514] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.162404][ T6514] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.162561][ T6514] bridge_slave_1: entered allmulticast mode
[  140.185219][ T6514] bridge_slave_1: entered promiscuous mode
[  140.251784][ T6514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.256008][ T6514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.306587][ T6514] team0: Port device team_slave_0 added
[  140.309966][ T6514] team0: Port device team_slave_1 added
[  140.357171][ T6514] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.357187][ T6514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.357207][ T6514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.359346][ T6514] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.359359][ T6514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.359381][ T6514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.510631][ T6514] hsr_slave_0: entered promiscuous mode
[  140.511905][ T6514] hsr_slave_1: entered promiscuous mode
[  142.083257][   T60] Bluetooth: hci0: command tx timeout
[  142.322322][ T6514] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  142.348121][ T6514] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  142.399217][ T6514] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  142.438134][ T6514] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  142.902877][ T6514] 8021q: adding VLAN 0 to HW filter on device bond0
[  143.247166][ T6514] 8021q: adding VLAN 0 to HW filter on device team0
[  143.339362][  T565] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.339504][  T565] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.356577][ T5103] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.356800][ T5103] bridge0: port 2(bridge_slave_1) entered forwarding state
[  143.739304][ T6514] 8021q: adding VLAN 0 to HW filter on device batadv0
[  143.777485][ T6514] veth0_vlan: entered promiscuous mode
[  143.794968][ T6514] veth1_vlan: entered promiscuous mode
[  143.823850][ T6514] veth0_macvtap: entered promiscuous mode
[  143.827269][ T6514] veth1_macvtap: entered promiscuous mode
[  143.840753][ T6514] batman_adv: batadv0: Interface activated: batadv_slave_0
[  143.845815][ T6514] batman_adv: batadv0: Interface activated: batadv_slave_1
[  143.908223][ T1121] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.908996][ T1121] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.909791][ T1121] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.910600][ T1121] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.042381][  T565] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.042401][  T565] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.080378][ T1121] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.080397][ T1121] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/21 13:57:26 executed programs: 2
[  144.163277][   T60] Bluetooth: hci0: command tx timeout
[  144.288278][ T6637] ==================================================================
[  144.288293][ T6637] BUG: KASAN: slab-use-after-free in dvb_device_open+0xc4/0x360
[  144.288330][ T6637] Read of size 8 at addr ffff88802b6da418 by task syz.0.19/6637
[  144.288345][ T6637] 
[  144.288370][ T6637] CPU: 1 UID: 0 PID: 6637 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  144.288389][ T6637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  144.288406][ T6637] Call Trace:
[  144.288416][ T6637]  <TASK>
[  144.288424][ T6637]  dump_stack_lvl+0xe8/0x150
[  144.288448][ T6637]  print_report+0xba/0x230
[  144.288468][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.288488][ T6637]  kasan_report+0x117/0x150
[  144.288511][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.288536][ T6637]  dvb_device_open+0xc4/0x360
[  144.288558][ T6637]  ? rt_spin_unlock+0x160/0x200
[  144.288577][ T6637]  chrdev_open+0x4d0/0x5f0
[  144.288617][ T6637]  ? __pfx_chrdev_open+0x10/0x10
[  144.288639][ T6637]  ? fsnotify_open_perm_and_set_mode+0x13b/0x6e0
[  144.288663][ T6637]  ? __pfx_chrdev_open+0x10/0x10
[  144.288685][ T6637]  do_dentry_open+0x83d/0x13e0
[  144.288715][ T6637]  vfs_open+0x3b/0x350
[  144.288731][ T6637]  ? path_openat+0x2e2b/0x38a0
[  144.288754][ T6637]  path_openat+0x2e43/0x38a0
[  144.288788][ T6637]  ? __pfx_path_openat+0x10/0x10
[  144.288808][ T6637]  ? __lock_acquire+0x6b5/0x2cf0
[  144.288826][ T6637]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  144.288851][ T6637]  ? do_raw_spin_lock+0x12b/0x2f0
[  144.288875][ T6637]  do_file_open+0x23e/0x4a0
[  144.288894][ T6637]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  144.288916][ T6637]  ? __pfx_do_file_open+0x10/0x10
[  144.288935][ T6637]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  144.288961][ T6637]  ? alloc_fd+0x64e/0x6c0
[  144.288981][ T6637]  do_sys_openat2+0x113/0x200
[  144.289000][ T6637]  ? __pfx_do_sys_openat2+0x10/0x10
[  144.289018][ T6637]  ? exc_page_fault+0x6a/0xc0
[  144.289039][ T6637]  ? do_user_addr_fault+0xc6f/0x1340
[  144.289062][ T6637]  __x64_sys_openat+0x138/0x170
[  144.289082][ T6637]  do_syscall_64+0x14d/0xf80
[  144.289101][ T6637]  ? trace_irq_disable+0x3b/0x150
[  144.289120][ T6637]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.289137][ T6637]  ? clear_bhb_loop+0x40/0x90
[  144.289156][ T6637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.289172][ T6637] RIP: 0033:0x7f0b55cdc84e
[  144.289196][ T6637] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  144.289211][ T6637] RSP: 002b:00007f0b5537db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  144.289234][ T6637] RAX: ffffffffffffffda RBX: 00007f0b5537e6c0 RCX: 00007f0b55cdc84e
[  144.289246][ T6637] RDX: 0000000000000400 RSI: 00007f0b5537dc00 RDI: ffffffffffffff9c
[  144.289259][ T6637] RBP: 00007f0b5537dc00 R08: 0000000000000000 R09: 0000000000000000
[  144.289270][ T6637] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  144.289281][ T6637] R13: 00007f0b55f96038 R14: 00007f0b55f95fa0 R15: 00007ffc62e6c1b8
[  144.289301][ T6637]  </TASK>
[  144.289307][ T6637] 
[  144.289311][ T6637] Allocated by task 1:
[  144.289318][ T6637]  kasan_save_track+0x3e/0x80
[  144.289337][ T6637]  __kasan_kmalloc+0x93/0xb0
[  144.289355][ T6637]  __kmalloc_cache_noprof+0x3a6/0x690
[  144.289374][ T6637]  dvb_register_device+0x2fd/0x2210
[  144.289393][ T6637]  dvb_register_frontend+0x665/0x970
[  144.289412][ T6637]  vidtv_bridge_probe+0x9aa/0xf80
[  144.289426][ T6637]  platform_probe+0xf9/0x190
[  144.289445][ T6637]  really_probe+0x267/0xaf0
[  144.289458][ T6637]  __driver_probe_device+0x18c/0x320
[  144.289478][ T6637]  driver_probe_device+0x4f/0x240
[  144.289498][ T6637]  __driver_attach+0x3e7/0x710
[  144.289517][ T6637]  bus_for_each_dev+0x23e/0x2c0
[  144.289533][ T6637]  bus_add_driver+0x348/0x670
[  144.289548][ T6637]  driver_register+0x23a/0x320
[  144.289562][ T6637]  vidtv_bridge_init+0x28/0x50
[  144.289582][ T6637]  do_one_initcall+0x250/0x8d0
[  144.289601][ T6637]  do_initcall_level+0x104/0x190
[  144.289616][ T6637]  do_initcalls+0x59/0xa0
[  144.289628][ T6637]  kernel_init_freeable+0x2a6/0x3e0
[  144.289642][ T6637]  kernel_init+0x1d/0x1d0
[  144.289654][ T6637]  ret_from_fork+0x51e/0xb90
[  144.289673][ T6637]  ret_from_fork_asm+0x1a/0x30
[  144.289687][ T6637] 
[  144.289691][ T6637] Freed by task 6634:
[  144.289699][ T6637]  kasan_save_track+0x3e/0x80
[  144.289723][ T6637]  kasan_save_free_info+0x46/0x50
[  144.289738][ T6637]  __kasan_slab_free+0x5c/0x80
[  144.289756][ T6637]  kfree+0x1c1/0x6c0
[  144.289773][ T6637]  dvb_frontend_release+0x3de/0x500
[  144.289791][ T6637]  __fput+0x461/0xa90
[  144.289806][ T6637]  task_work_run+0x1d9/0x270
[  144.289821][ T6637]  exit_to_user_mode_loop+0xed/0x480
[  144.289841][ T6637]  do_syscall_64+0x32d/0xf80
[  144.289858][ T6637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.289873][ T6637] 
[  144.289877][ T6637] The buggy address belongs to the object at ffff88802b6da400
[  144.289877][ T6637]  which belongs to the cache kmalloc-512 of size 512
[  144.289891][ T6637] The buggy address is located 24 bytes inside of
[  144.289891][ T6637]  freed 512-byte region [ffff88802b6da400, ffff88802b6da600)
[  144.289908][ T6637] 
[  144.289911][ T6637] The buggy address belongs to the physical page:
[  144.289928][ T6637] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2b6d8
[  144.289944][ T6637] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  144.289958][ T6637] flags: 0x80000000000040(head|node=0|zone=1)
[  144.289978][ T6637] page_type: f5(slab)
[  144.289993][ T6637] raw: 0080000000000040 ffff88813fe1cc80 dead000000000100 dead000000000122
[  144.290007][ T6637] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  144.290022][ T6637] head: 0080000000000040 ffff88813fe1cc80 dead000000000100 dead000000000122
[  144.290035][ T6637] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  144.290049][ T6637] head: 0080000000000002 ffffea0000adb601 00000000ffffffff 00000000ffffffff
[  144.290063][ T6637] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000004
[  144.290071][ T6637] page dumped because: kasan: bad access detected
[  144.290082][ T6637] page_owner tracks the page as allocated
[  144.290089][ T6637] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 13477098013, free_ts 0
[  144.290116][ T6637]  post_alloc_hook+0x231/0x280
[  144.290135][ T6637]  get_page_from_freelist+0x28bb/0x2950
[  144.290148][ T6637]  __alloc_frozen_pages_noprof+0x18d/0x380
[  144.290162][ T6637]  allocate_slab+0x77/0x660
[  144.290177][ T6637]  refill_objects+0x334/0x3c0
[  144.290191][ T6637]  __pcs_replace_empty_main+0x328/0x5f0
[  144.290206][ T6637]  __kmalloc_cache_noprof+0x44e/0x690
[  144.290226][ T6637]  bus_add_driver+0x165/0x670
[  144.290241][ T6637]  driver_register+0x23a/0x320
[  144.290256][ T6637]  usb_register_driver+0x1e4/0x390
[  144.290277][ T6637]  do_one_initcall+0x250/0x8d0
[  144.290296][ T6637]  do_initcall_level+0x104/0x190
[  144.290308][ T6637]  do_initcalls+0x59/0xa0
[  144.290320][ T6637]  kernel_init_freeable+0x2a6/0x3e0
[  144.290333][ T6637]  kernel_init+0x1d/0x1d0
[  144.290345][ T6637]  ret_from_fork+0x51e/0xb90
[  144.290363][ T6637] page_owner free stack trace missing
[  144.290369][ T6637] 
[  144.290372][ T6637] Memory state around the buggy address:
[  144.290380][ T6637]  ffff88802b6da300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  144.290390][ T6637]  ffff88802b6da380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  144.290401][ T6637] >ffff88802b6da400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.290408][ T6637]                             ^
[  144.290417][ T6637]  ffff88802b6da480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.290427][ T6637]  ffff88802b6da500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.290435][ T6637] ==================================================================
[  144.290454][ T6637] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  144.290466][ T6637] CPU: 1 UID: 0 PID: 6637 Comm: syz.0.19 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  144.290485][ T6637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  144.290495][ T6637] Call Trace:
[  144.290501][ T6637]  <TASK>
[  144.290508][ T6637]  vpanic+0x56c/0xa60
[  144.290531][ T6637]  ? __pfx_vpanic+0x10/0x10
[  144.290557][ T6637]  panic+0xc5/0xd0
[  144.290577][ T6637]  ? __pfx_panic+0x10/0x10
[  144.290600][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.290620][ T6637]  ? rcu_is_watching+0x15/0xb0
[  144.290640][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.290660][ T6637]  check_panic_on_warn+0x89/0xb0
[  144.290678][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.290699][ T6637]  end_report+0x73/0x180
[  144.290727][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.290747][ T6637]  kasan_report+0x128/0x150
[  144.290769][ T6637]  ? dvb_device_open+0xc4/0x360
[  144.290794][ T6637]  dvb_device_open+0xc4/0x360
[  144.290815][ T6637]  ? rt_spin_unlock+0x160/0x200
[  144.290831][ T6637]  chrdev_open+0x4d0/0x5f0
[  144.290853][ T6637]  ? __pfx_chrdev_open+0x10/0x10
[  144.290875][ T6637]  ? fsnotify_open_perm_and_set_mode+0x13b/0x6e0
[  144.290904][ T6637]  ? __pfx_chrdev_open+0x10/0x10
[  144.290926][ T6637]  do_dentry_open+0x83d/0x13e0
[  144.290949][ T6637]  vfs_open+0x3b/0x350
[  144.290963][ T6637]  ? path_openat+0x2e2b/0x38a0
[  144.290983][ T6637]  path_openat+0x2e43/0x38a0
[  144.291016][ T6637]  ? __pfx_path_openat+0x10/0x10
[  144.291035][ T6637]  ? __lock_acquire+0x6b5/0x2cf0
[  144.291051][ T6637]  ? kmem_cache_alloc_noprof+0x33b/0x680
[  144.291073][ T6637]  ? do_raw_spin_lock+0x12b/0x2f0
[  144.291096][ T6637]  do_file_open+0x23e/0x4a0
[  144.291114][ T6637]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  144.291135][ T6637]  ? __pfx_do_file_open+0x10/0x10
[  144.291154][ T6637]  ? rt_mutex_slowunlock+0x4a7/0x8b0
[  144.291179][ T6637]  ? alloc_fd+0x64e/0x6c0
[  144.291200][ T6637]  do_sys_openat2+0x113/0x200
[  144.291218][ T6637]  ? __pfx_do_sys_openat2+0x10/0x10
[  144.291236][ T6637]  ? exc_page_fault+0x6a/0xc0
[  144.291257][ T6637]  ? do_user_addr_fault+0xc6f/0x1340
[  144.291279][ T6637]  __x64_sys_openat+0x138/0x170
[  144.291299][ T6637]  do_syscall_64+0x14d/0xf80
[  144.291318][ T6637]  ? trace_irq_disable+0x3b/0x150
[  144.291336][ T6637]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.291352][ T6637]  ? clear_bhb_loop+0x40/0x90
[  144.291371][ T6637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.291387][ T6637] RIP: 0033:0x7f0b55cdc84e
[  144.291402][ T6637] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  144.291416][ T6637] RSP: 002b:00007f0b5537db28 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  144.291434][ T6637] RAX: ffffffffffffffda RBX: 00007f0b5537e6c0 RCX: 00007f0b55cdc84e
[  144.291447][ T6637] RDX: 0000000000000400 RSI: 00007f0b5537dc00 RDI: ffffffffffffff9c
[  144.291458][ T6637] RBP: 00007f0b5537dc00 R08: 0000000000000000 R09: 0000000000000000
[  144.291469][ T6637] R10: 0000000000000000 R11: 0000000000000246 R12: cccccccccccccccd
[  144.291480][ T6637] R13: 00007f0b55f96038 R14: 00007f0b55f95fa0 R15: 00007ffc62e6c1b8
[  144.291500][ T6637]  </TASK>
[  144.291941][ T6637] Kernel Offset: disabled