Warning: Permanently added '10.128.1.252' (ED25519) to the list of known hosts. 1970/01/01 00:01:19 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:20 parsed 1 programs [ 83.030596][ T4483] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS [ 91.395468][ T4524] chnl_net:caif_netlink_parms(): no params data found [ 91.435522][ T4524] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.437668][ T4524] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.440379][ T4524] device bridge_slave_0 entered promiscuous mode [ 91.444236][ T4524] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.446210][ T4524] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.449118][ T4524] device bridge_slave_1 entered promiscuous mode [ 91.464356][ T4524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.521422][ T4524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.545297][ T4524] team0: Port device team_slave_0 added [ 91.549186][ T4524] team0: Port device team_slave_1 added [ 91.564031][ T4524] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.566064][ T4524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.573526][ T4524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.581573][ T4524] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.583490][ T4524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.590884][ T4524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.660795][ T4524] device hsr_slave_0 entered promiscuous mode [ 91.707766][ T4524] device hsr_slave_1 entered promiscuous mode [ 92.437464][ T4524] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.471516][ T4524] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.520842][ T4524] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.569270][ T4524] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.674990][ T4524] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.683368][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 92.686352][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 92.692686][ T4524] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.697114][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 92.701751][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 92.704727][ T404] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.706639][ T404] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.728287][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 92.730802][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 92.733527][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 92.736019][ T404] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.738070][ T404] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.763084][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 92.766343][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 92.773536][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 92.779568][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 92.782353][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 92.785197][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 92.812347][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 92.820017][ T4524] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 92.822956][ T4524] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 92.828012][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 92.830955][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 92.833882][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 92.836562][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 92.845044][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 92.928546][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 92.930662][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 92.943134][ T4524] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.956673][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 92.966019][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 92.983468][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 92.986274][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 92.991241][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 92.994114][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 92.998888][ T4524] device veth0_vlan entered promiscuous mode [ 93.005297][ T4524] device veth1_vlan entered promiscuous mode [ 93.036749][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 93.040820][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 93.043510][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 93.046712][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 93.052292][ T4524] device veth0_macvtap entered promiscuous mode [ 93.056765][ T4524] device veth1_macvtap entered promiscuous mode [ 93.071896][ T4524] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.074136][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 93.076746][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 93.081464][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 93.084769][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 93.090669][ T4524] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.094834][ T4524] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.098042][ T4524] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.100339][ T4524] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.102681][ T4524] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.106449][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 93.109775][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 93.977935][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.980340][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.983624][ T404] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 94.000655][ T404] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.002968][ T404] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.006233][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:34 executed programs: 0 [ 94.720627][ T4711] chnl_net:caif_netlink_parms(): no params data found [ 94.779219][ T4711] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.781330][ T4711] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.784093][ T4711] device bridge_slave_0 entered promiscuous mode [ 94.789480][ T4711] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.791511][ T4711] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.794454][ T4711] device bridge_slave_1 entered promiscuous mode [ 94.814795][ T4711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 94.820977][ T4711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 94.841981][ T4711] team0: Port device team_slave_0 added [ 94.845391][ T4711] team0: Port device team_slave_1 added [ 94.861939][ T4711] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 94.863915][ T4711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.873156][ T4711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 94.878693][ T4711] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 94.880638][ T4711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 94.888125][ T4711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 94.941576][ T4711] device hsr_slave_0 entered promiscuous mode [ 94.977889][ T4711] device hsr_slave_1 entered promiscuous mode [ 94.997959][ T4711] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 95.000078][ T4711] Cannot create hsr debugfs directory [ 95.060232][ T4711] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.668190][ T4204] Bluetooth: hci0: command 0x0409 tx timeout [ 98.526467][ T4711] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.645422][ T4711] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.716193][ T4711] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.747437][ T21] Bluetooth: hci0: command 0x041b tx timeout [ 98.899289][ T4711] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.959640][ T4711] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 99.010452][ T4711] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 99.069963][ T4711] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 99.155848][ T4711] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.163452][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 99.165983][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 99.175599][ T4711] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.180979][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 99.183871][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 99.186476][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.188610][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.191158][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 99.196220][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 99.199750][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 99.202379][ T4189] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.204318][ T4189] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.211556][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 99.215684][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 99.222425][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 99.226115][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 99.230668][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 99.236078][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 99.239339][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 99.274099][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 99.276880][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 99.283953][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 99.286757][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 99.292595][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 99.371066][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 99.373250][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 99.380496][ T4711] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.394047][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 99.397163][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 99.411084][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 99.414011][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 99.416768][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 99.422019][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 99.426617][ T4711] device veth0_vlan entered promiscuous mode [ 99.435472][ T4711] device veth1_vlan entered promiscuous mode [ 99.452203][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 99.454882][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 99.457552][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 99.460792][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 99.465470][ T4711] device veth0_macvtap entered promiscuous mode [ 99.470923][ T4711] device veth1_macvtap entered promiscuous mode [ 99.480557][ T4711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 99.483480][ T4711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.487226][ T4711] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.490595][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 99.494407][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 99.496931][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 99.501036][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 99.506080][ T4711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 99.509993][ T4711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 99.513736][ T4711] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.516075][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 99.519680][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 99.524950][ T4711] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.527724][ T4711] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.530118][ T4711] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.532444][ T4711] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.570049][ T4189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.572318][ T4189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.575040][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 99.591604][ T4189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.593832][ T4189] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.597015][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 1970/01/01 00:01:39 executed programs: 2 [ 100.381675][ T4978] ------------[ cut here ]------------ [ 100.383376][ T4978] ODEBUG: init active (active state 0) object type: timer_list hint: 0x0 [ 100.386031][ T4978] WARNING: CPU: 1 PID: 4978 at lib/debugobjects.c:521 __debug_object_init+0x338/0x98c [ 100.388775][ T4978] Modules linked in: [ 100.389870][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Not tainted 5.15.189-syzkaller #0 [ 100.392077][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.394906][ T4978] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.397055][ T4978] pc : __debug_object_init+0x338/0x98c [ 100.398686][ T4978] lr : __debug_object_init+0x338/0x98c [ 100.400225][ T4978] sp : ffff80001f927060 [ 100.401342][ T4978] x29: ffff80001f927190 x28: dfff800000000000 x27: ffff700003f24e14 [ 100.403532][ T4978] x26: ffff0000d8095a38 x25: 0000000000000000 x24: ffff800011332ce0 [ 100.405749][ T4978] x23: ffff8000117c8f20 x22: 0000000000000000 x21: 0000000000000003 [ 100.407989][ T4978] x20: ffff0000d8095a38 x19: ffff800011332ce0 x18: 0000000000000001 [ 100.410171][ T4978] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.412371][ T4978] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.414629][ T4978] x11: 0000000000000000 x10: 0000000000000000 x9 : 2f445730ce98b700 [ 100.416970][ T4978] x8 : 2f445730ce98b700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.419155][ T4978] x5 : ffff80001f926958 x4 : ffff80001424f400 x3 : ffff80000850433c [ 100.421515][ T4978] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000046 [ 100.423864][ T4978] Call trace: [ 100.424780][ T4978] __debug_object_init+0x338/0x98c [ 100.426182][ T4978] debug_object_init+0x20/0x2c [ 100.427508][ T4978] init_timer_key+0x54/0x418 [ 100.428808][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.430435][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.431911][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.433342][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.434673][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.436014][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.437347][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.438482][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.439676][ T4978] genl_rcv+0x38/0x50 [ 100.440701][ T4978] netlink_unicast+0x624/0x8b0 [ 100.442041][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.443409][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.444706][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.445974][ T4978] invoke_syscall+0x98/0x2b8 [ 100.447268][ T4978] el0_svc_common+0x138/0x258 [ 100.448571][ T4978] do_el0_svc+0x58/0x14c [ 100.449787][ T4978] el0_svc+0x78/0x1e0 [ 100.450899][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.452286][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.453522][ T4978] irq event stamp: 2380 [ 100.454718][ T4978] hardirqs last enabled at (2379): [] __up_console_sem+0xb4/0x100 [ 100.457288][ T4978] hardirqs last disabled at (2380): [] el1_dbg+0x24/0x80 [ 100.459596][ T4978] softirqs last enabled at (1982): [] ieee80211_configure_filter+0x4f0/0xf30 [ 100.462395][ T4978] softirqs last disabled at (1980): [] ieee80211_configure_filter+0x328/0xf30 [ 100.465215][ T4978] ---[ end trace a910a9d88e702ecd ]--- [ 100.469775][ T4978] INFO: trying to register non-static key. [ 100.471451][ T4978] The code is fine but needs lockdep annotation, or maybe [ 100.473557][ T4978] you didn't initialize this object before use? [ 100.475278][ T4978] turning off the locking correctness validator. [ 100.476909][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.479626][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.482480][ T4978] Call trace: [ 100.483367][ T4978] dump_backtrace+0x0/0x43c [ 100.484616][ T4978] show_stack+0x2c/0x3c [ 100.485736][ T4978] __dump_stack+0x30/0x40 [ 100.486858][ T4978] dump_stack_lvl+0xf8/0x160 [ 100.488078][ T4978] dump_stack+0x1c/0x5c [ 100.489189][ T4978] assign_lock_key+0x19c/0x1a8 [ 100.490468][ T4978] register_lock_class+0x1ac/0x694 [ 100.491831][ T4978] __lock_acquire+0x150/0x651c [ 100.493079][ T4978] lock_acquire+0x1f4/0x620 [ 100.494317][ T4978] timer_delete_sync+0x98/0x20c [ 100.495575][ T4978] timer_fixup_init+0x3c/0x6c [ 100.496830][ T4978] __debug_object_init+0x380/0x98c [ 100.498290][ T4978] debug_object_init+0x20/0x2c [ 100.499569][ T4978] init_timer_key+0x54/0x418 [ 100.500909][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.502527][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.503951][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.505488][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.506889][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.508398][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.509833][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.511039][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.512346][ T4978] genl_rcv+0x38/0x50 [ 100.513416][ T4978] netlink_unicast+0x624/0x8b0 [ 100.514738][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.516065][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.517301][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.518682][ T4978] invoke_syscall+0x98/0x2b8 [ 100.519934][ T4978] el0_svc_common+0x138/0x258 [ 100.521268][ T4978] do_el0_svc+0x58/0x14c [ 100.522446][ T4978] el0_svc+0x78/0x1e0 [ 100.523527][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.524861][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.527411][ T4978] ------------[ cut here ]------------ [ 100.528999][ T4978] ODEBUG: init active (active state 0) object type: timer_list hint: 0x0 [ 100.531562][ T4978] WARNING: CPU: 1 PID: 4978 at lib/debugobjects.c:521 __debug_object_init+0x338/0x98c [ 100.534234][ T4978] Modules linked in: [ 100.535296][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.537918][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.540768][ T4978] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.543028][ T4978] pc : __debug_object_init+0x338/0x98c [ 100.544529][ T4978] lr : __debug_object_init+0x338/0x98c [ 100.545948][ T4978] sp : ffff80001f926ea0 [ 100.547062][ T4978] x29: ffff80001f926fd0 x28: dfff800000000000 x27: ffff700003f24ddc [ 100.549324][ T4978] x26: ffff0000d8095a38 x25: 0000000000000000 x24: ffff800011332ce0 [ 100.551613][ T4978] x23: ffff8000117c8f20 x22: 0000000000000000 x21: 0000000000000003 [ 100.553872][ T4978] x20: ffff0000d8095a38 x19: ffff800011332ce0 x18: 0000000000000001 [ 100.556116][ T4978] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.558350][ T4978] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.560536][ T4978] x11: 0000000000000000 x10: 0000000000000000 x9 : 2f445730ce98b700 [ 100.562708][ T4978] x8 : 2f445730ce98b700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.565000][ T4978] x5 : ffff80001f926798 x4 : ffff80001424f400 x3 : ffff80000850433c [ 100.567293][ T4978] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000046 [ 100.569488][ T4978] Call trace: [ 100.570448][ T4978] __debug_object_init+0x338/0x98c [ 100.571875][ T4978] debug_object_init+0x20/0x2c [ 100.573231][ T4978] timer_fixup_init+0x4c/0x6c [ 100.574541][ T4978] __debug_object_init+0x380/0x98c [ 100.575970][ T4978] debug_object_init+0x20/0x2c [ 100.577311][ T4978] init_timer_key+0x54/0x418 [ 100.578556][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.580129][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.581646][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.583182][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.584698][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.586174][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.587704][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.588954][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.590296][ T4978] genl_rcv+0x38/0x50 [ 100.591406][ T4978] netlink_unicast+0x624/0x8b0 [ 100.592724][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.594060][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.595376][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.596698][ T4978] invoke_syscall+0x98/0x2b8 [ 100.597967][ T4978] el0_svc_common+0x138/0x258 [ 100.599338][ T4978] do_el0_svc+0x58/0x14c [ 100.600528][ T4978] el0_svc+0x78/0x1e0 [ 100.601674][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.603138][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.604378][ T4978] irq event stamp: 2574 [ 100.605573][ T4978] hardirqs last enabled at (2573): [] exit_to_kernel_mode+0xe0/0x168 [ 100.608293][ T4978] hardirqs last disabled at (2574): [] timer_delete_sync+0x70/0x20c [ 100.611075][ T4978] softirqs last enabled at (2568): [] handle_softirqs+0xa4c/0xbf0 [ 100.613722][ T4978] softirqs last disabled at (2383): [] __irq_exit_rcu+0x240/0x440 [ 100.616464][ T4978] ---[ end trace a910a9d88e702ece ]--- [ 100.619636][ T4978] ------------[ cut here ]------------ [ 100.621134][ T4978] ODEBUG: init active (active state 0) object type: timer_list hint: 0x0 [ 100.623739][ T4978] WARNING: CPU: 1 PID: 4978 at lib/debugobjects.c:521 __debug_object_init+0x338/0x98c [ 100.626405][ T4978] Modules linked in: [ 100.627443][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.630101][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.632920][ T4978] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.635082][ T4978] pc : __debug_object_init+0x338/0x98c [ 100.636631][ T4978] lr : __debug_object_init+0x338/0x98c [ 100.638248][ T4978] sp : ffff80001f926ce0 [ 100.639369][ T4978] x29: ffff80001f926e10 x28: dfff800000000000 x27: ffff700003f24da4 [ 100.641625][ T4978] x26: ffff0000d8095a38 x25: 0000000000000000 x24: ffff800011332ce0 [ 100.643861][ T4978] x23: ffff8000117c8f20 x22: 0000000000000000 x21: 0000000000000003 [ 100.646150][ T4978] x20: ffff0000d8095a38 x19: ffff800011332ce0 x18: 0000000000000001 [ 100.648386][ T4978] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.650592][ T4978] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.652829][ T4978] x11: 0000000000000000 x10: 0000000000000000 x9 : 2f445730ce98b700 [ 100.655042][ T4978] x8 : 2f445730ce98b700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.657312][ T4978] x5 : ffff80001f9265d8 x4 : ffff80001424f400 x3 : ffff80000850433c [ 100.659548][ T4978] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000046 [ 100.661737][ T4978] Call trace: [ 100.662665][ T4978] __debug_object_init+0x338/0x98c [ 100.664085][ T4978] debug_object_init+0x20/0x2c [ 100.665366][ T4978] timer_fixup_init+0x4c/0x6c [ 100.666728][ T4978] __debug_object_init+0x380/0x98c [ 100.668153][ T4978] debug_object_init+0x20/0x2c [ 100.669490][ T4978] timer_fixup_init+0x4c/0x6c [ 100.670811][ T4978] __debug_object_init+0x380/0x98c [ 100.672195][ T4978] debug_object_init+0x20/0x2c [ 100.673570][ T4978] init_timer_key+0x54/0x418 [ 100.674750][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.676365][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.677870][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.679575][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.681039][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.682543][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.684055][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.685317][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.686686][ T4978] genl_rcv+0x38/0x50 [ 100.687868][ T4978] netlink_unicast+0x624/0x8b0 [ 100.689198][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.690549][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.691868][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.693175][ T4978] invoke_syscall+0x98/0x2b8 [ 100.694433][ T4978] el0_svc_common+0x138/0x258 [ 100.695737][ T4978] do_el0_svc+0x58/0x14c [ 100.696926][ T4978] el0_svc+0x78/0x1e0 [ 100.698078][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.699469][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.700676][ T4978] irq event stamp: 2574 [ 100.701814][ T4978] hardirqs last enabled at (2573): [] exit_to_kernel_mode+0xe0/0x168 [ 100.704526][ T4978] hardirqs last disabled at (2574): [] timer_delete_sync+0x70/0x20c [ 100.707165][ T4978] softirqs last enabled at (2568): [] handle_softirqs+0xa4c/0xbf0 [ 100.709766][ T4978] softirqs last disabled at (2383): [] __irq_exit_rcu+0x240/0x440 [ 100.712426][ T4978] ---[ end trace a910a9d88e702ecf ]--- [ 100.714398][ T4978] ------------[ cut here ]------------ [ 100.715948][ T4978] ODEBUG: init active (active state 0) object type: timer_list hint: 0x0 [ 100.718631][ T4978] WARNING: CPU: 1 PID: 4978 at lib/debugobjects.c:521 __debug_object_init+0x338/0x98c [ 100.721158][ T4978] Modules linked in: [ 100.722194][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.724796][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.727564][ T4978] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.729733][ T4978] pc : __debug_object_init+0x338/0x98c [ 100.731208][ T4978] lr : __debug_object_init+0x338/0x98c [ 100.732677][ T4978] sp : ffff80001f926b20 [ 100.733814][ T4978] x29: ffff80001f926c50 x28: dfff800000000000 x27: ffff700003f24d6c [ 100.736017][ T4978] x26: ffff0000d8095a38 x25: 0000000000000000 x24: ffff800011332ce0 [ 100.738282][ T4978] x23: ffff8000117c8f20 x22: 0000000000000000 x21: 0000000000000003 [ 100.740560][ T4978] x20: ffff0000d8095a38 x19: ffff800011332ce0 x18: 0000000000000001 [ 100.742776][ T4978] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.744960][ T4978] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.747243][ T4978] x11: 0000000000000000 x10: 0000000000000000 x9 : 2f445730ce98b700 [ 100.749447][ T4978] x8 : 2f445730ce98b700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.751695][ T4978] x5 : ffff80001f926418 x4 : ffff80001424f400 x3 : ffff80000a723764 [ 100.753895][ T4978] x2 : ffff0001a10e6d50 x1 : 0000000100000000 x0 : 0000000000000046 [ 100.756115][ T4978] Call trace: [ 100.756959][ T4978] __debug_object_init+0x338/0x98c [ 100.758370][ T4978] debug_object_init+0x20/0x2c [ 100.759709][ T4978] timer_fixup_init+0x4c/0x6c [ 100.760980][ T4978] __debug_object_init+0x380/0x98c [ 100.762361][ T4978] debug_object_init+0x20/0x2c [ 100.763682][ T4978] timer_fixup_init+0x4c/0x6c [ 100.764996][ T4978] __debug_object_init+0x380/0x98c [ 100.766398][ T4978] debug_object_init+0x20/0x2c [ 100.767645][ T4978] timer_fixup_init+0x4c/0x6c [ 100.768928][ T4978] __debug_object_init+0x380/0x98c [ 100.770361][ T4978] debug_object_init+0x20/0x2c [ 100.771683][ T4978] init_timer_key+0x54/0x418 [ 100.772953][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.774553][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.775983][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.777475][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.778884][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.780309][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.781720][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.782960][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.784290][ T4978] genl_rcv+0x38/0x50 [ 100.785408][ T4978] netlink_unicast+0x624/0x8b0 [ 100.786705][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.788022][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.789366][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.790704][ T4978] invoke_syscall+0x98/0x2b8 [ 100.791995][ T4978] el0_svc_common+0x138/0x258 [ 100.793340][ T4978] do_el0_svc+0x58/0x14c [ 100.794508][ T4978] el0_svc+0x78/0x1e0 [ 100.795584][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.796948][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.798246][ T4978] irq event stamp: 2574 [ 100.799347][ T4978] hardirqs last enabled at (2573): [] exit_to_kernel_mode+0xe0/0x168 [ 100.802050][ T4978] hardirqs last disabled at (2574): [] timer_delete_sync+0x70/0x20c [ 100.804640][ T4978] softirqs last enabled at (2568): [] handle_softirqs+0xa4c/0xbf0 [ 100.807279][ T4978] softirqs last disabled at (2383): [] __irq_exit_rcu+0x240/0x440 [ 100.809902][ T4978] ---[ end trace a910a9d88e702ed0 ]--- [ 100.811962][ T4978] ------------[ cut here ]------------ [ 100.813416][ T4978] ODEBUG: init active (active state 0) object type: timer_list hint: 0x0 [ 100.815966][ T4978] WARNING: CPU: 1 PID: 4978 at lib/debugobjects.c:521 __debug_object_init+0x338/0x98c [ 100.818628][ T4978] Modules linked in: [ 100.819649][ T4978] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.822288][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.824981][ T4978] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.827201][ T4978] pc : __debug_object_init+0x338/0x98c [ 100.828737][ T4978] lr : __debug_object_init+0x338/0x98c [ 100.830214][ T4978] sp : ffff80001f926960 [ 100.831350][ T4978] x29: ffff80001f926a90 x28: dfff800000000000 x27: ffff700003f24d34 [ 100.833511][ T4978] x26: ffff0000d8095a38 x25: 0000000000000000 x24: ffff800011332ce0 [ 100.835762][ T4978] x23: ffff8000117c8f20 x22: 0000000000000000 x21: 0000000000000003 [ 100.837990][ T4978] x20: ffff0000d8095a38 x19: ffff800011332ce0 x18: 0000000000000001 [ 100.840181][ T4978] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.842419][ T4978] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.844660][ T4978] x11: 0000000000000000 x10: 0000000000000000 x9 : 2f445730ce98b700 [ 100.846903][ T4978] x8 : 2f445730ce98b700 x7 : 0000000000000001 x6 : 0000000000000001 [ 100.849112][ T4978] x5 : ffff80001f926258 x4 : ffff80001424f400 x3 : ffff80000a723764 [ 100.851363][ T4978] x2 : ffff0001a10e6d50 x1 : 0000000100000000 x0 : 0000000000000046 [ 100.853590][ T4978] Call trace: [ 100.854534][ T4978] __debug_object_init+0x338/0x98c [ 100.855916][ T4978] debug_object_init+0x20/0x2c [ 100.857240][ T4978] timer_fixup_init+0x4c/0x6c [ 100.858518][ T4978] __debug_object_init+0x380/0x98c [ 100.859947][ T4978] debug_object_init+0x20/0x2c [ 100.861302][ T4978] timer_fixup_init+0x4c/0x6c [ 100.862637][ T4978] __debug_object_init+0x380/0x98c [ 100.864035][ T4978] debug_object_init+0x20/0x2c [ 100.865385][ T4978] timer_fixup_init+0x4c/0x6c [ 100.866663][ T4978] __debug_object_init+0x380/0x98c [ 100.868110][ T4978] debug_object_init+0x20/0x2c [ 100.869445][ T4978] timer_fixup_init+0x4c/0x6c [ 100.870756][ T4978] __debug_object_init+0x380/0x98c [ 100.872204][ T4978] debug_object_init+0x20/0x2c [ 100.873646][ T4978] init_timer_key+0x54/0x418 [ 100.874923][ T4978] ieee80211_ibss_setup_sdata+0x48/0x158 [ 100.876686][ T4978] ieee80211_setup_sdata+0x80c/0xba4 [ 100.878150][ T4978] ieee80211_if_change_type+0x730/0xbf8 [ 100.879714][ T4978] ieee80211_change_iface+0x64/0x384 [ 100.881225][ T4978] cfg80211_change_iface+0x764/0x12d8 [ 100.882737][ T4978] nl80211_set_interface+0x3c8/0x67c [ 100.884283][ T4978] genl_rcv_msg+0x8b4/0xb6c [ 100.885537][ T4978] netlink_rcv_skb+0x208/0x3c4 [ 100.886839][ T4978] genl_rcv+0x38/0x50 [ 100.888028][ T4978] netlink_unicast+0x624/0x8b0 [ 100.889383][ T4978] netlink_sendmsg+0x6e8/0x9cc [ 100.890734][ T4978] __sys_sendto+0x2e8/0x3d8 [ 100.891985][ T4978] __arm64_sys_sendto+0xd8/0xf8 [ 100.893393][ T4978] invoke_syscall+0x98/0x2b8 [ 100.894657][ T4978] el0_svc_common+0x138/0x258 [ 100.895961][ T4978] do_el0_svc+0x58/0x14c [ 100.897160][ T4978] el0_svc+0x78/0x1e0 [ 100.898306][ T4978] el0t_64_sync_handler+0xcc/0xe4 [ 100.899729][ T4978] el0t_64_sync+0x1a0/0x1a4 [ 100.900990][ T4978] irq event stamp: 2574 [ 100.902126][ T4978] hardirqs last enabled at (2573): [] exit_to_kernel_mode+0xe0/0x168 [ 100.904966][ T4978] hardirqs last disabled at (2574): [] timer_delete_sync+0x70/0x20c [ 100.907704][ T4978] softirqs last enabled at (2568): [] handle_softirqs+0xa4c/0xbf0 [ 100.910406][ T4978] softirqs last disabled at (2383): [] __irq_exit_rcu+0x240/0x440 [ 100.913042][ T4978] ---[ end trace a910a9d88e702ed1 ]--- [ 100.915173][ T21] Bluetooth: hci0: command 0x040f tx timeout [ 100.917841][ C1] Insufficient stack space to handle exception! [ 100.917847][ C1] ESR: 0x0000000096000047 -- DABT (current EL) [ 100.917853][ C1] FAR: 0xffff80001f91ffd0 [ 100.917856][ C1] Task stack: [0xffff80001f920000..0xffff80001f928000] [ 100.917861][ C1] IRQ stack: [0xffff800008010000..0xffff800008018000] [ 100.917866][ C1] Overflow stack: [0xffff0001a10e4310..0xffff0001a10e5310] [ 100.917874][ C1] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.917884][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.917889][ C1] pstate: 204000c5 (nzCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 100.917900][ C1] pc : __sanitizer_cov_trace_pc+0x4/0xac [ 100.917912][ C1] lr : unwind_frame+0x88/0x668 [ 100.917919][ C1] sp : ffff80001f91ffe0 [ 100.917922][ C1] x29: ffff80001f920090 x28: ffff80001f920000 x27: 1fffe0001a454001 [ 100.917937][ C1] x26: dfff800000000000 x25: ffff700003f24000 x24: 1ffff00003f24031 [ 100.917950][ C1] x23: ffff80001f920188 x22: ffff0000d22a0000 x21: ffff0000d22a0000 [ 100.917962][ C1] x20: ffff80000804a9f4 x19: ffff80001f920180 x18: 0000000000000001 [ 100.917975][ C1] x17: 0000000000000000 x16: ffff8000111bc798 x15: 00000000ffffffff [ 100.917986][ C1] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100 [ 100.917998][ C1] x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000041b58ab3 [ 100.918010][ C1] x8 : 00000000f3f3f3f3 x7 : 0000000000000000 x6 : ffff80000837befc [ 100.918021][ C1] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80001f920160 [ 100.918033][ C1] x2 : ffff80000804a9f4 x1 : ffff80001f920180 x0 : ffff0000d22a0000 [ 100.918047][ C1] Kernel panic - not syncing: kernel stack overflow [ 100.918052][ C1] CPU: 1 PID: 4978 Comm: syz.0.37 Tainted: G W 5.15.189-syzkaller #0 [ 100.918061][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 100.918069][ C1] Call trace: [ 100.918071][ C1] dump_backtrace+0x0/0x43c [ 100.918468][ T3637] Unable to handle kernel write to read-only memory at virtual address ffff8000080232f8 [ 100.974769][ T3637] Mem abort info: [ 100.975816][ T3637] ESR = 0x000000009600004f [ 100.977071][ T3637] EC = 0x25: DABT (current EL), IL = 32 bits [ 100.978763][ T3637] SET = 0, FnV = 0 [ 100.979861][ T3637] EA = 0, S1PTW = 0 [ 100.980991][ T3637] FSC = 0x0f: level 3 permission fault [ 100.982615][ T3637] Data abort info: [ 100.983626][ T3637] ISV = 0, ISS = 0x0000004f [ 100.984890][ T3637] CM = 0, WnR = 1 [ 100.985945][ T3637] swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000002113bb000 [ 100.988096][ T3637] [ffff8000080232f8] pgd=100000023ffff003, p4d=100000023ffff003, pud=100000023fffe003, pmd=100000023fffd003, pte=0050000205623783 [ 100.991793][ T3637] Internal error: Oops: 000000009600004f [#1] PREEMPT SMP [ 100.993788][ T3637] Modules linked in: [ 100.994829][ T3637] CPU: 0 PID: 3637 Comm: syslogd Tainted: G W 5.15.189-syzkaller #0 [ 100.997394][ T3637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 101.000115][ T3637] pstate: 404000c5 (nZcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 101.002336][ T3637] pc : __skb_try_recv_from_queue+0x26c/0x61c [ 101.004009][ T3637] lr : __skb_try_recv_from_queue+0x240/0x61c [ 101.005647][ T3637] sp : ffff8000218b76b0 [ 101.006723][ T3637] x29: ffff8000218b76c0 x28: dfff800000000000 x27: ffff0000d619d1c0 [ 101.008926][ T3637] x26: 0000000000000000 x25: ffff0001a10e1030 x24: ffff0001a10e1170 [ 101.011146][ T3637] x23: ffff0001a10e1178 x22: ffff8000080232f8 x21: ffff0001a10e1030 [ 101.013370][ T3637] x20: 0000000000000000 x19: ffff8000218b7900 x18: 0000000000000000 [ 101.015559][ T3637] x17: 0000000000000000 x16: ffff8000082d5f6c x15: 0000000000000000 [ 101.017753][ T3637] x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000002 [ 101.019910][ T3637] x11: 1fffe0003421c206 x10: 0000000000000000 x9 : 0000000000000000 [ 101.022097][ T3637] x8 : 0000000000000000 x7 : 0000000000000000 x6 : ffff80000f6d22e0 [ 101.024301][ T3637] x5 : ffff8000218b78c0 x4 : 0000000000000000 x3 : 0000000000000010 [ 101.026475][ T3637] x2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff0001a10e1030 [ 101.028790][ T3637] Call trace: [ 101.029709][ T3637] __skb_try_recv_from_queue+0x26c/0x61c [ 101.031250][ T3637] __skb_try_recv_datagram+0x124/0x410 [ 101.032726][ T3637] __unix_dgram_recvmsg+0x19c/0xb28 [ 101.034205][ T3637] unix_dgram_recvmsg+0xd4/0xec [ 101.035583][ T3637] sock_read_iter+0x23c/0x2dc [ 101.036887][ T3637] vfs_read+0x7c4/0xa10 [ 101.038004][ T3637] ksys_read+0x120/0x210 [ 101.039228][ T3637] __arm64_sys_read+0x7c/0x90 [ 101.040554][ T3637] invoke_syscall+0x98/0x2b8 [ 101.041810][ T3637] el0_svc_common+0x138/0x258 [ 101.043068][ T3637] do_el0_svc+0x58/0x14c [ 101.044312][ T3637] el0_svc+0x78/0x1e0 [ 101.045402][ T3637] el0t_64_sync_handler+0xcc/0xe4 [ 101.046743][ T3637] el0t_64_sync+0x1a0/0x1a4 [ 101.047970][ T3637] Code: 387c6908 34000068 aa1603e0 9645abd3 (f90002d8) [ 101.049925][ T3637] ---[ end trace a910a9d88e702ed2 ]---