Warning: Permanently added '10.128.1.84' (ED25519) to the list of known hosts.
2025/11/28 15:00:02 parsed 1 programs
[   96.737314][ T5837] cgroup: Unknown subsys name 'net'
[   96.895689][ T5837] cgroup: Unknown subsys name 'cpuset'
[   96.905501][ T5837] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   97.273768][  T795] cfg80211: failed to load regulatory.db
[   98.595797][ T5837] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  101.652924][ T5845] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  102.780278][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.789963][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.800290][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.810316][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.818792][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.774615][ T5884] chnl_net:caif_netlink_parms(): no params data found
[  103.913772][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.923319][ T5884] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.930773][ T5884] bridge_slave_0: entered allmulticast mode
[  103.939063][ T5884] bridge_slave_0: entered promiscuous mode
[  103.955394][ T5884] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.963189][ T5884] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.970613][ T5884] bridge_slave_1: entered allmulticast mode
[  103.978508][ T5884] bridge_slave_1: entered promiscuous mode
[  104.016921][ T5884] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.030563][ T5884] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.074722][ T5884] team0: Port device team_slave_0 added
[  104.083649][ T5884] team0: Port device team_slave_1 added
[  104.116199][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.123227][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.150890][ T5884] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.164221][ T5884] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.172449][ T5884] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.199055][ T5884] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.247343][ T5884] hsr_slave_0: entered promiscuous mode
[  104.254066][ T5884] hsr_slave_1: entered promiscuous mode
[  104.446018][ T5884] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  104.459493][ T5884] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  104.470703][ T5884] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  104.484122][ T5884] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  104.519637][ T5884] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.527146][ T5884] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.535485][ T5884] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.542871][ T5884] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.611151][ T5884] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.631568][   T34] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.641105][   T34] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.659943][ T5884] 8021q: adding VLAN 0 to HW filter on device team0
[  104.675976][ T1314] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.683461][ T1314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.698513][   T34] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.705798][   T34] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.917034][ T5884] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.974699][ T5884] veth0_vlan: entered promiscuous mode
[  104.987717][ T5884] veth1_vlan: entered promiscuous mode
[  105.021259][ T5884] veth0_macvtap: entered promiscuous mode
[  105.031401][ T5884] veth1_macvtap: entered promiscuous mode
[  105.052898][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.069908][ T5884] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.087097][ T4107] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.098833][ T4107] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.109616][ T4107] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.119981][ T4107] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.300741][ T4107] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.366612][ T4107] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.443639][ T4107] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.525832][ T4107] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.016457][ T3458] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.025109][ T3458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.060464][   T34] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.070049][   T34] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/11/28 15:00:17 executed programs: 0
[  107.363191][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.371403][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.384624][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.393673][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.402211][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.573501][ T4107] bridge_slave_1: left allmulticast mode
[  107.579520][ T4107] bridge_slave_1: left promiscuous mode
[  107.590372][ T4107] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.606551][ T4107] bridge_slave_0: left allmulticast mode
[  107.615960][ T4107] bridge_slave_0: left promiscuous mode
[  107.622152][ T4107] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.972225][ T4107] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.986582][ T4107] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.997836][ T4107] bond0 (unregistering): Released all slaves
[  108.165950][ T4107] hsr_slave_0: left promiscuous mode
[  108.172535][ T4107] hsr_slave_1: left promiscuous mode
[  108.179020][ T4107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.186833][ T4107] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.195827][ T4107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.203694][ T4107] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.223943][ T4107] veth1_macvtap: left promiscuous mode
[  108.230258][ T4107] veth0_macvtap: left promiscuous mode
[  108.236804][ T4107] veth1_vlan: left promiscuous mode
[  108.242423][ T4107] veth0_vlan: left promiscuous mode
[  108.570541][ T4107] team0 (unregistering): Port device team_slave_1 removed
[  108.606974][ T4107] team0 (unregistering): Port device team_slave_0 removed
[  108.867950][ T5941] chnl_net:caif_netlink_parms(): no params data found
[  109.017091][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.026601][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.035201][ T5941] bridge_slave_0: entered allmulticast mode
[  109.044343][ T5941] bridge_slave_0: entered promiscuous mode
[  109.068395][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.075905][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.083944][ T5941] bridge_slave_1: entered allmulticast mode
[  109.103483][ T5941] bridge_slave_1: entered promiscuous mode
[  109.159469][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.174524][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.226336][ T5941] team0: Port device team_slave_0 added
[  109.243395][ T5941] team0: Port device team_slave_1 added
[  109.291366][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.298599][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  109.325845][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.339300][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.347553][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  109.375383][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.422700][   T52] Bluetooth: hci0: command tx timeout
[  109.850660][ T5941] hsr_slave_0: entered promiscuous mode
[  109.859118][ T5941] hsr_slave_1: entered promiscuous mode
[  110.890834][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  110.913598][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  110.927040][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  110.940302][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  111.091769][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[  111.135650][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[  111.150756][ T4107] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.158059][ T4107] bridge0: port 1(bridge_slave_0) entered forwarding state
[  111.178479][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.185765][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state
[  111.483805][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[  111.503056][   T52] Bluetooth: hci0: command tx timeout
[  111.549259][ T5941] veth0_vlan: entered promiscuous mode
[  111.565747][ T5941] veth1_vlan: entered promiscuous mode
[  111.617966][ T5941] veth0_macvtap: entered promiscuous mode
[  111.629592][ T5941] veth1_macvtap: entered promiscuous mode
[  111.656018][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[  111.679223][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[  111.703255][ T4107] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.713284][ T4107] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.725100][ T4107] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.735130][ T4107] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.838927][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.859008][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.896872][ T4107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.913131][ T4107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.019414][ T6029] mac80211_hwsim hwsim5 syzkaller0: entered promiscuous mode
[  112.028004][ T6029] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode
[  112.054309][ T6029] ==================================================================
[  112.062607][ T6029] BUG: KASAN: slab-out-of-bounds in ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.071500][ T6029] Read of size 1 at addr ffff8880753b7d90 by task syz.0.17/6029
[  112.079250][ T6029] 
[  112.081668][ T6029] CPU: 0 UID: 0 PID: 6029 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  112.081694][ T6029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  112.081715][ T6029] Call Trace:
[  112.081723][ T6029]  <TASK>
[  112.081732][ T6029]  dump_stack_lvl+0x189/0x250
[  112.081756][ T6029]  ? __virt_addr_valid+0x1c8/0x5c0
[  112.081779][ T6029]  ? rcu_is_watching+0x15/0xb0
[  112.081799][ T6029]  ? __kasan_check_byte+0x12/0x40
[  112.081833][ T6029]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.081851][ T6029]  ? rcu_is_watching+0x15/0xb0
[  112.081871][ T6029]  ? lock_release+0x4b/0x3b0
[  112.081910][ T6029]  ? __virt_addr_valid+0x1c8/0x5c0
[  112.081933][ T6029]  ? __virt_addr_valid+0x4a5/0x5c0
[  112.081957][ T6029]  print_report+0xca/0x240
[  112.081979][ T6029]  ? ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.082003][ T6029]  kasan_report+0x118/0x150
[  112.082023][ T6029]  ? ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.082051][ T6029]  ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.082080][ T6029]  ieee80211_do_stop+0x1786/0x1f70
[  112.082113][ T6029]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  112.082137][ T6029]  ? __pfx_ieee80211_do_stop+0x10/0x10
[  112.082164][ T6029]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  112.082193][ T6029]  ? lockdep_hardirqs_on+0x98/0x140
[  112.082227][ T6029]  ? wiphy_work_cancel+0x1db/0x3b0
[  112.082256][ T6029]  ieee80211_stop+0x1b1/0x240
[  112.082280][ T6029]  ? __pfx_ieee80211_stop+0x10/0x10
[  112.082306][ T6029]  __dev_close_many+0x344/0x6b0
[  112.082338][ T6029]  ? __pfx___dev_close_many+0x10/0x10
[  112.082372][ T6029]  __dev_change_flags+0x2be/0x680
[  112.082395][ T6029]  ? __pfx___dev_change_flags+0x10/0x10
[  112.082415][ T6029]  ? full_name_hash+0x92/0xe0
[  112.082440][ T6029]  netif_change_flags+0x88/0x1a0
[  112.082463][ T6029]  dev_change_flags+0x130/0x260
[  112.082497][ T6029]  dev_ioctl+0x7b4/0x1150
[  112.082530][ T6029]  sock_do_ioctl+0x22c/0x300
[  112.082556][ T6029]  ? __pfx_sock_do_ioctl+0x10/0x10
[  112.082589][ T6029]  sock_ioctl+0x576/0x790
[  112.082614][ T6029]  ? __pfx_sock_ioctl+0x10/0x10
[  112.082640][ T6029]  ? __pfx___se_sys_futex+0x10/0x10
[  112.082672][ T6029]  ? bpf_lsm_file_ioctl+0x9/0x20
[  112.082704][ T6029]  ? __pfx_sock_ioctl+0x10/0x10
[  112.082726][ T6029]  __se_sys_ioctl+0xfc/0x170
[  112.082755][ T6029]  do_syscall_64+0xfa/0xf80
[  112.082785][ T6029]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.082806][ T6029]  ? clear_bhb_loop+0x60/0xb0
[  112.082829][ T6029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.082849][ T6029] RIP: 0033:0x7f5875f8f749
[  112.082884][ T6029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.082902][ T6029] RSP: 002b:00007ffc52c16018 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  112.082925][ T6029] RAX: ffffffffffffffda RBX: 00007f58761e5fa0 RCX: 00007f5875f8f749
[  112.082941][ T6029] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000006
[  112.082955][ T6029] RBP: 00007f5876013f91 R08: 0000000000000000 R09: 0000000000000000
[  112.082968][ T6029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.082981][ T6029] R13: 00007f58761e5fa0 R14: 00007f58761e5fa0 R15: 0000000000000003
[  112.083004][ T6029]  </TASK>
[  112.083012][ T6029] 
[  112.402665][ T6029] The buggy address belongs to the physical page:
[  112.409097][ T6029] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880753b5d40 pfn:0x753b4
[  112.419261][ T6029] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  112.428017][ T6029] memcg:ffff888026064282
[  112.432264][ T6029] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  112.439824][ T6029] page_type: f8(unknown)
[  112.444161][ T6029] raw: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  112.452808][ T6029] raw: ffff8880753b5d40 0000000000000000 00000000f8000000 ffff888026064282
[  112.461502][ T6029] head: 00fff00000000040 0000000000000000 dead000000000122 0000000000000000
[  112.470207][ T6029] head: ffff8880753b5d40 0000000000000000 00000000f8000000 ffff888026064282
[  112.478920][ T6029] head: 00fff00000000002 ffffea0001d4ed01 00000000ffffffff 00000000ffffffff
[  112.487706][ T6029] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  112.496393][ T6029] page dumped because: kasan: bad access detected
[  112.502837][ T6029] page_owner tracks the page as allocated
[  112.508569][ T6029] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x446dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP), pid 6029, tgid 6029 (syz.0.17), ts 111996806551, free_ts 111081173010
[  112.529966][ T6029]  post_alloc_hook+0x234/0x290
[  112.534779][ T6029]  get_page_from_freelist+0x2365/0x2440
[  112.540359][ T6029]  __alloc_frozen_pages_noprof+0x181/0x370
[  112.546202][ T6029]  alloc_pages_mpol+0x232/0x4a0
[  112.551180][ T6029]  ___kmalloc_large_node+0x4e/0x150
[  112.556391][ T6029]  __kmalloc_large_node_noprof+0x18/0x90
[  112.562136][ T6029]  __kvmalloc_node_noprof+0x6e/0x920
[  112.567498][ T6029]  alloc_netdev_mqs+0xa8/0x1200
[  112.572370][ T6029]  ieee80211_if_add+0x45c/0x1370
[  112.577325][ T6029]  ieee80211_add_iface+0xb5/0x5a0
[  112.582369][ T6029]  nl80211_new_interface+0x883/0x1130
[  112.587843][ T6029]  genl_family_rcv_msg_doit+0x215/0x300
[  112.593491][ T6029]  genl_rcv_msg+0x60e/0x790
[  112.598026][ T6029]  netlink_rcv_skb+0x208/0x470
[  112.602798][ T6029]  genl_rcv+0x28/0x40
[  112.606794][ T6029]  netlink_unicast+0x82f/0x9e0
[  112.611578][ T6029] page last free pid 6006 tgid 6006 stack trace:
[  112.617968][ T6029]  __free_frozen_pages+0xbc8/0xd30
[  112.623106][ T6029]  __slab_free+0x21b/0x2a0
[  112.627536][ T6029]  qlist_free_all+0x97/0x100
[  112.632157][ T6029]  kasan_quarantine_reduce+0x148/0x160
[  112.637645][ T6029]  __kasan_slab_alloc+0x22/0x80
[  112.642610][ T6029]  kmem_cache_alloc_noprof+0x37d/0x710
[  112.648087][ T6029]  vm_area_dup+0x2b/0x680
[  112.652437][ T6029]  __split_vma+0x1a9/0xa00
[  112.656879][ T6029]  vma_modify+0x952/0x1a70
[  112.661315][ T6029]  vma_modify_flags+0x208/0x2e0
[  112.666176][ T6029]  mprotect_fixup+0x43c/0xa30
[  112.670870][ T6029]  do_mprotect_pkey+0x8c5/0xcd0
[  112.675725][ T6029]  __x64_sys_mprotect+0x80/0x90
[  112.680698][ T6029]  do_syscall_64+0xfa/0xf80
[  112.685312][ T6029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.691242][ T6029] 
[  112.693601][ T6029] Memory state around the buggy address:
[  112.699242][ T6029]  ffff8880753b7c80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  112.707312][ T6029]  ffff8880753b7d00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  112.715431][ T6029] >ffff8880753b7d80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  112.723797][ T6029]                          ^
[  112.728421][ T6029]  ffff8880753b7e00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  112.736490][ T6029]  ffff8880753b7e80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  112.744643][ T6029] ==================================================================
[  112.763137][ T6029] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  112.770478][ T6029] CPU: 0 UID: 0 PID: 6029 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  112.779626][ T6029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  112.789720][ T6029] Call Trace:
[  112.793040][ T6029]  <TASK>
[  112.796014][ T6029]  dump_stack_lvl+0x99/0x250
[  112.800653][ T6029]  ? __asan_memcpy+0x40/0x70
[  112.805285][ T6029]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.810529][ T6029]  ? __pfx__printk+0x10/0x10
[  112.815169][ T6029]  vpanic+0x237/0x6d0
[  112.819201][ T6029]  ? __pfx_vpanic+0x10/0x10
[  112.823750][ T6029]  ? preempt_schedule_common+0x83/0xd0
[  112.829251][ T6029]  ? preempt_schedule+0xae/0xc0
[  112.834334][ T6029]  panic+0xb9/0xc0
[  112.838095][ T6029]  ? __pfx_panic+0x10/0x10
[  112.842556][ T6029]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  112.848935][ T6029]  ? ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.855129][ T6029]  check_panic_on_warn+0x89/0xb0
[  112.860111][ T6029]  ? ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.866307][ T6029]  end_report+0x6f/0x140
[  112.870587][ T6029]  kasan_report+0x129/0x150
[  112.875125][ T6029]  ? ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.881303][ T6029]  ieee80211_add_virtual_monitor+0xa42/0xce0
[  112.887313][ T6029]  ieee80211_do_stop+0x1786/0x1f70
[  112.892453][ T6029]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  112.897837][ T6029]  ? __pfx_ieee80211_do_stop+0x10/0x10
[  112.903397][ T6029]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  112.909310][ T6029]  ? lockdep_hardirqs_on+0x98/0x140
[  112.914530][ T6029]  ? wiphy_work_cancel+0x1db/0x3b0
[  112.919669][ T6029]  ieee80211_stop+0x1b1/0x240
[  112.924384][ T6029]  ? __pfx_ieee80211_stop+0x10/0x10
[  112.929949][ T6029]  __dev_close_many+0x344/0x6b0
[  112.934823][ T6029]  ? __pfx___dev_close_many+0x10/0x10
[  112.940244][ T6029]  __dev_change_flags+0x2be/0x680
[  112.945281][ T6029]  ? __pfx___dev_change_flags+0x10/0x10
[  112.950840][ T6029]  ? full_name_hash+0x92/0xe0
[  112.955529][ T6029]  netif_change_flags+0x88/0x1a0
[  112.960480][ T6029]  dev_change_flags+0x130/0x260
[  112.965355][ T6029]  dev_ioctl+0x7b4/0x1150
[  112.969708][ T6029]  sock_do_ioctl+0x22c/0x300
[  112.974312][ T6029]  ? __pfx_sock_do_ioctl+0x10/0x10
[  112.979552][ T6029]  sock_ioctl+0x576/0x790
[  112.983979][ T6029]  ? __pfx_sock_ioctl+0x10/0x10
[  112.988852][ T6029]  ? __pfx___se_sys_futex+0x10/0x10
[  112.994077][ T6029]  ? bpf_lsm_file_ioctl+0x9/0x20
[  112.999124][ T6029]  ? __pfx_sock_ioctl+0x10/0x10
[  113.003988][ T6029]  __se_sys_ioctl+0xfc/0x170
[  113.008600][ T6029]  do_syscall_64+0xfa/0xf80
[  113.013119][ T6029]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.019194][ T6029]  ? clear_bhb_loop+0x60/0xb0
[  113.023886][ T6029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.029796][ T6029] RIP: 0033:0x7f5875f8f749
[  113.034221][ T6029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.053854][ T6029] RSP: 002b:00007ffc52c16018 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  113.062278][ T6029] RAX: ffffffffffffffda RBX: 00007f58761e5fa0 RCX: 00007f5875f8f749
[  113.070265][ T6029] RDX: 0000200000000000 RSI: 0000000000008914 RDI: 0000000000000006
[  113.078243][ T6029] RBP: 00007f5876013f91 R08: 0000000000000000 R09: 0000000000000000
[  113.086223][ T6029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.094376][ T6029] R13: 00007f58761e5fa0 R14: 00007f58761e5fa0 R15: 0000000000000003
[  113.102548][ T6029]  </TASK>
[  113.105904][ T6029] Kernel Offset: disabled
[  113.110232][ T6029] Rebooting in 86400 seconds..