Warning: Permanently added '[localhost]:2247' (ED25519) to the list of known hosts.
2025/05/18 05:01:16 ignoring optional flag "sandboxArg"="0"
2025/05/18 05:01:17 parsed 1 programs
[  133.741170][ T5724] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  137.882994][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[  137.889376][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
[  139.323519][ T1034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.331141][ T1034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.809756][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  139.815686][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  139.819764][   T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  139.823526][   T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  139.827350][   T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  140.029191][ T4015] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.032624][ T4015] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.657069][ T5736] syz-executor (5736) used greatest stack depth: 18616 bytes left
[  141.946522][   T49] Bluetooth: hci0: command tx timeout
[  144.358720][ T5775] chnl_net:caif_netlink_parms(): no params data found
[  144.519352][ T5775] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.526613][ T5775] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.540530][ T5775] bridge_slave_0: entered allmulticast mode
[  144.546412][ T5775] bridge_slave_0: entered promiscuous mode
[  144.572056][ T5775] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.575457][ T5775] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.601757][ T5775] bridge_slave_1: entered allmulticast mode
[  144.616220][ T5775] bridge_slave_1: entered promiscuous mode
[  144.697433][ T5775] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.734528][ T5775] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.809791][ T5775] team0: Port device team_slave_0 added
[  144.814309][ T5775] team0: Port device team_slave_1 added
[  144.903015][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.926020][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.976217][ T5775] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.006574][ T5775] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.009649][ T5775] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.056017][ T5775] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.170110][ T5775] hsr_slave_0: entered promiscuous mode
[  145.187236][ T5775] hsr_slave_1: entered promiscuous mode
[  145.471061][ T5775] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  145.491238][ T5775] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  145.503259][ T5775] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  145.509414][ T5775] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  145.575095][ T5775] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.589023][ T5775] 8021q: adding VLAN 0 to HW filter on device team0
[  145.597129][ T1034] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.600233][ T1034] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.617274][  T129] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.620378][  T129] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.833166][ T5775] 8021q: adding VLAN 0 to HW filter on device batadv0
[  145.872101][ T5775] veth0_vlan: entered promiscuous mode
[  145.882137][ T5775] veth1_vlan: entered promiscuous mode
[  145.911071][ T5775] veth0_macvtap: entered promiscuous mode
[  145.918638][ T5775] veth1_macvtap: entered promiscuous mode
[  145.935342][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.950181][ T5775] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.958732][ T5775] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.962611][ T5775] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.969192][ T5775] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.972927][ T5775] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/05/18 05:01:34 executed programs: 0
[  146.282818][ T4657] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  146.331641][ T4657] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  146.347602][ T5365] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  146.350939][ T5365] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  146.357437][ T5365] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  146.362218][ T5365] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  146.368171][ T5365] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  146.373062][ T5365] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  146.377230][ T5365] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  146.383598][ T5365] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  146.407712][ T5365] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  146.423495][ T5365] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  146.429209][ T5365] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  146.436567][ T5365] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  146.440065][ T5365] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  146.516337][ T5840] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  146.537656][ T5840] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  146.542442][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  146.546811][ T5840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  146.550240][ T5840] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  146.766392][ T5365] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  146.773885][ T5365] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  146.786121][ T5365] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  146.814169][ T5365] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  146.826914][   T49] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  146.896475][ T5840] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  146.922161][ T5840] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  146.936203][ T5840] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  146.940709][ T5840] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  146.945763][ T5840] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  148.408016][ T1033] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.426722][ T5840] Bluetooth: hci1: command tx timeout
[  148.430191][ T5365] Bluetooth: hci0: command tx timeout
[  148.506407][ T5840] Bluetooth: hci2: command tx timeout
[  148.722722][ T5832] chnl_net:caif_netlink_parms(): no params data found
[  148.748596][ T5840] Bluetooth: hci3: command tx timeout
[  148.986844][ T5840] Bluetooth: hci4: command tx timeout
[  148.989905][ T5840] Bluetooth: hci5: command tx timeout
[  149.125086][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.129120][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.132326][ T5832] bridge_slave_0: entered allmulticast mode
[  149.148294][ T5832] bridge_slave_0: entered promiscuous mode
[  149.157749][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.160844][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.164222][ T5832] bridge_slave_1: entered allmulticast mode
[  149.177931][ T5832] bridge_slave_1: entered promiscuous mode
[  149.337269][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.391213][ T1033] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.507794][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.562626][ T1033] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.696243][ T1033] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.817621][ T5832] team0: Port device team_slave_0 added
[  149.868531][ T5832] team0: Port device team_slave_1 added
[  149.989032][ T5839] chnl_net:caif_netlink_parms(): no params data found
[  150.070635][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.073715][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.106603][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.112818][ T5837] chnl_net:caif_netlink_parms(): no params data found
[  150.121396][ T5833] chnl_net:caif_netlink_parms(): no params data found
[  150.178879][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.182131][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.243868][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.319948][ T5850] chnl_net:caif_netlink_parms(): no params data found
[  150.506402][ T5365] Bluetooth: hci1: command tx timeout
[  150.508547][ T5365] Bluetooth: hci0: command tx timeout
[  150.590576][ T5840] Bluetooth: hci2: command tx timeout
[  150.618914][ T5848] chnl_net:caif_netlink_parms(): no params data found
[  150.631536][ T1033] bridge_slave_1: left allmulticast mode
[  150.634258][ T1033] bridge_slave_1: left promiscuous mode
[  150.657363][ T1033] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.662261][ T1033] bridge_slave_0: left allmulticast mode
[  150.664615][ T1033] bridge_slave_0: left promiscuous mode
[  150.686761][ T1033] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.827252][ T5840] Bluetooth: hci3: command tx timeout
[  151.069432][ T5840] Bluetooth: hci5: command tx timeout
[  151.072229][ T5840] Bluetooth: hci4: command tx timeout
[  151.130597][ T1033] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.139383][ T1033] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.144135][ T1033] bond0 (unregistering): Released all slaves
[  151.205648][ T5832] hsr_slave_0: entered promiscuous mode
[  151.222317][ T5832] hsr_slave_1: entered promiscuous mode
[  151.238181][ T5832] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  151.241514][ T5832] Cannot create hsr debugfs directory
[  151.389962][ T1033] hsr_slave_0: left promiscuous mode
[  151.397523][ T1033] hsr_slave_1: left promiscuous mode
[  151.409801][ T1033] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.413165][ T1033] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.425279][ T1033] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.436876][ T1033] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.451953][ T1033] veth1_macvtap: left promiscuous mode
[  151.454410][ T1033] veth0_macvtap: left promiscuous mode
[  151.459089][ T1033] veth1_vlan: left promiscuous mode
[  151.461544][ T1033] veth0_vlan: left promiscuous mode
[  151.813117][ T1033] team0 (unregistering): Port device team_slave_1 removed
[  151.835164][ T1033] team0 (unregistering): Port device team_slave_0 removed
[  152.215612][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.227154][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.230351][ T5839] bridge_slave_0: entered allmulticast mode
[  152.246379][ T5839] bridge_slave_0: entered promiscuous mode
[  152.292776][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.307097][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.310233][ T5839] bridge_slave_1: entered allmulticast mode
[  152.314056][ T5839] bridge_slave_1: entered promiscuous mode
[  152.403854][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.420732][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.424068][ T5833] bridge_slave_0: entered allmulticast mode
[  152.439264][ T5833] bridge_slave_0: entered promiscuous mode
[  152.456795][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.459994][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.463129][ T5833] bridge_slave_1: entered allmulticast mode
[  152.481114][ T5833] bridge_slave_1: entered promiscuous mode
[  152.543903][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.589410][ T5365] Bluetooth: hci0: command tx timeout
[  152.591766][ T5365] Bluetooth: hci1: command tx timeout
[  152.595524][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.599162][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.602338][ T5837] bridge_slave_0: entered allmulticast mode
[  152.616851][ T5837] bridge_slave_0: entered promiscuous mode
[  152.660183][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.666279][ T5840] Bluetooth: hci2: command tx timeout
[  152.699828][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.703089][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.718283][ T5837] bridge_slave_1: entered allmulticast mode
[  152.726678][ T5837] bridge_slave_1: entered promiscuous mode
[  152.807040][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.810133][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.812879][ T5850] bridge_slave_0: entered allmulticast mode
[  152.837837][ T5850] bridge_slave_0: entered promiscuous mode
[  152.855200][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.861571][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.864673][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.870112][ T5848] bridge_slave_0: entered allmulticast mode
[  152.874013][ T5848] bridge_slave_0: entered promiscuous mode
[  152.906571][ T5840] Bluetooth: hci3: command tx timeout
[  152.918636][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.921855][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.924922][ T5850] bridge_slave_1: entered allmulticast mode
[  152.954590][ T5850] bridge_slave_1: entered promiscuous mode
[  152.971206][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.981190][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.986222][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.992165][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.995361][ T5848] bridge_slave_1: entered allmulticast mode
[  153.003400][ T5848] bridge_slave_1: entered promiscuous mode
[  153.012026][ T5839] team0: Port device team_slave_0 added
[  153.069739][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.085520][ T5839] team0: Port device team_slave_1 added
[  153.146413][ T5840] Bluetooth: hci4: command tx timeout
[  153.149222][ T5840] Bluetooth: hci5: command tx timeout
[  153.181376][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.223476][ T5837] team0: Port device team_slave_0 added
[  153.239606][ T5833] team0: Port device team_slave_0 added
[  153.244515][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.257406][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.260239][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.288348][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.311477][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.317128][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.320093][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.352231][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.370983][ T5837] team0: Port device team_slave_1 added
[  153.375506][ T5833] team0: Port device team_slave_1 added
[  153.381199][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.631800][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.634935][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.670033][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.770798][ T5850] team0: Port device team_slave_0 added
[  153.783475][ T5848] team0: Port device team_slave_0 added
[  153.803553][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.808073][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.822637][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.851805][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.854781][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.873635][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.880267][ T5850] team0: Port device team_slave_1 added
[  153.883843][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.891663][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.902809][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.912578][ T5848] team0: Port device team_slave_1 added
[  154.120523][ T5839] hsr_slave_0: entered promiscuous mode
[  154.124332][ T5839] hsr_slave_1: entered promiscuous mode
[  154.261747][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.264776][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.307288][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.367912][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.370959][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.398966][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.407835][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.410864][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.445695][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.459204][ T5833] hsr_slave_0: entered promiscuous mode
[  154.462485][ T5833] hsr_slave_1: entered promiscuous mode
[  154.465493][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.469328][ T5833] Cannot create hsr debugfs directory
[  154.478902][ T5837] hsr_slave_0: entered promiscuous mode
[  154.481992][ T5837] hsr_slave_1: entered promiscuous mode
[  154.485690][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.489997][ T5837] Cannot create hsr debugfs directory
[  154.504891][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.511066][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.539024][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.666344][ T5365] Bluetooth: hci1: command tx timeout
[  154.668820][ T5365] Bluetooth: hci0: command tx timeout
[  154.746078][ T5840] Bluetooth: hci2: command tx timeout
[  154.860715][ T5848] hsr_slave_0: entered promiscuous mode
[  154.875733][ T5848] hsr_slave_1: entered promiscuous mode
[  154.890683][ T5848] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  154.894058][ T5848] Cannot create hsr debugfs directory
[  154.988614][ T5840] Bluetooth: hci3: command tx timeout
[  155.031304][ T5850] hsr_slave_0: entered promiscuous mode
[  155.034450][ T5850] hsr_slave_1: entered promiscuous mode
[  155.048657][ T5850] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  155.051953][ T5850] Cannot create hsr debugfs directory
[  155.214568][ T5832] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  155.226255][ T5840] Bluetooth: hci5: command tx timeout
[  155.228662][ T5840] Bluetooth: hci4: command tx timeout
[  155.281074][ T5832] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  155.365198][ T5832] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  155.379526][ T5832] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  155.730312][ T5839] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  155.854574][ T5839] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  155.960707][ T5839] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  155.980590][ T5839] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  156.159683][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.413191][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[  156.528113][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.531310][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.535549][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.538799][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.741765][ T5832] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  156.787610][ T5832] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  156.801464][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[  156.851403][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[  156.910583][ T1033] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.913495][ T1033] bridge0: port 1(bridge_slave_0) entered forwarding state
[  156.954538][ T1033] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.957740][ T1033] bridge0: port 2(bridge_slave_1) entered forwarding state
[  157.038261][ T5833] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  157.101749][ T5833] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  157.119283][ T5833] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  157.189188][ T5833] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  157.431335][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  157.481666][ T5850] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  157.512635][ T5850] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  157.580403][ T5850] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  157.639968][ T5850] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  157.830278][ T5832] veth0_vlan: entered promiscuous mode
[  157.871751][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[  157.882009][ T5848] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  157.903343][ T5848] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  157.938851][ T5848] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  157.960175][ T5848] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  158.001693][ T5832] veth1_vlan: entered promiscuous mode
[  158.135178][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[  158.200332][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[  158.222325][ T5832] veth0_macvtap: entered promiscuous mode
[  158.234051][ T5837] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  158.257538][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.260603][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.301810][ T5832] veth1_macvtap: entered promiscuous mode
[  158.327077][ T5837] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  158.341971][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.344937][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.388038][ T5837] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  158.403990][ T5837] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  158.425561][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  158.504953][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  158.529611][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.570208][ T5832] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  158.574083][ T5832] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  158.600715][ T5832] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  158.604679][ T5832] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  158.622676][ T5839] veth0_vlan: entered promiscuous mode
[  158.722319][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[  158.773945][ T5839] veth1_vlan: entered promiscuous mode
[  158.814508][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.860032][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.863268][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  158.883959][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.887246][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  158.973254][ T5839] veth0_macvtap: entered promiscuous mode
[  159.033635][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[  159.071157][ T5839] veth1_macvtap: entered promiscuous mode
[  159.095767][ T5850] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  159.104827][ T5850] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.142275][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.183110][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  159.229958][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.234319][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.259936][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.263170][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.292240][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  159.305142][ T4015] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.323235][ T4015] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.390255][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.432934][ T5839] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  159.447164][ T5839] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  159.450714][ T5839] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  159.454617][ T5839] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  159.514328][   T31] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  159.532254][   T31] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  159.558915][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[  159.591487][ T5848] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.638716][ T5833] veth0_vlan: entered promiscuous mode
[  159.710501][ T1034] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.713786][ T1034] bridge0: port 1(bridge_slave_0) entered forwarding state
2025/05/18 05:01:48 executed programs: 12
[  159.808986][ T1034] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.812166][ T1034] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.853474][ T5833] veth1_vlan: entered promiscuous mode
[  159.953366][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.050154][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.053402][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.309595][ T5833] veth0_macvtap: entered promiscuous mode
[  160.314978][ T5833] veth1_macvtap: entered promiscuous mode
[  160.435804][ T1035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.476431][ T1035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.565160][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[  160.717125][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[  160.886830][ T5833] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.890636][ T5833] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.941307][ T5833] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.945141][ T5833] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.180567][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[  161.358943][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[  161.591287][ T6045] Bluetooth: MGMT ver 1.23
[  161.757560][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.761005][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  161.770491][ T5850] veth0_vlan: entered promiscuous mode
[  161.853571][ T5850] veth1_vlan: entered promiscuous mode
[  161.891604][ T5837] veth0_vlan: entered promiscuous mode
[  161.999748][ T5837] veth1_vlan: entered promiscuous mode
[  162.102086][ T1033] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  162.105559][ T1033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  162.295459][ T5837] veth0_macvtap: entered promiscuous mode
[  162.355569][ T5850] veth0_macvtap: entered promiscuous mode
[  162.554980][ T5837] veth1_macvtap: entered promiscuous mode
[  162.573590][ T5850] veth1_macvtap: entered promiscuous mode
[  162.754837][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[  162.834518][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[  162.956984][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[  162.974167][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.094065][ T5848] veth0_vlan: entered promiscuous mode
[  163.121410][ T5850] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.165932][ T5850] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.169727][ T5850] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.173480][ T5850] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.255798][ T5837] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.302214][ T5837] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.341922][ T5837] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.345791][ T5837] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.452849][ T5848] veth1_vlan: entered promiscuous mode
[  163.965380][ T5848] veth0_macvtap: entered promiscuous mode
[  164.008331][ T5848] veth1_macvtap: entered promiscuous mode
[  164.202867][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.299602][  T129] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.303070][  T129] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.385406][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.509093][ T5848] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.561820][ T5848] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.582749][ T5848] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.628565][ T5848] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/05/18 05:01:53 executed programs: 94
[  164.897639][  T129] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.901165][  T129] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.048859][  T129] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.052406][  T129] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.283931][ T1034] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.374736][ T1034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.672347][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.730347][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.136051][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.139408][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/05/18 05:01:58 executed programs: 255
2025/05/18 05:02:03 executed programs: 441
2025/05/18 05:02:08 executed programs: 627
2025/05/18 05:02:13 executed programs: 816
2025/05/18 05:02:18 executed programs: 998
2025/05/18 05:02:23 executed programs: 1178
[  199.314481][ T1311] ieee802154 phy0 wpan0: encryption failed: -22
[  199.321003][ T1311] ieee802154 phy1 wpan1: encryption failed: -22
2025/05/18 05:02:28 executed programs: 1367
[  204.522541][ T5365] ==================================================================
[  204.526140][ T5365] BUG: KASAN: slab-use-after-free in mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.530028][ T5365] Read of size 8 at addr ffff888043826318 by task kworker/u5:2/5365
[  204.536004][ T5365] 
[  204.537096][ T5365] CPU: 0 UID: 0 PID: 5365 Comm: kworker/u5:2 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc-dirty #0 PREEMPT(full) 
[  204.537109][ T5365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  204.537117][ T5365] Workqueue: hci0 hci_cmd_sync_work
[  204.537136][ T5365] Call Trace:
[  204.537143][ T5365]  <TASK>
[  204.537148][ T5365]  dump_stack_lvl+0x189/0x250
[  204.537163][ T5365]  ? __virt_addr_valid+0x18c/0x540
[  204.537175][ T5365]  ? rcu_is_watching+0x15/0xb0
[  204.537183][ T5365]  ? __kasan_check_byte+0x12/0x40
[  204.537235][ T5365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.537253][ T5365]  ? rcu_is_watching+0x15/0xb0
[  204.537263][ T5365]  ? lock_release+0x4b/0x3e0
[  204.537278][ T5365]  ? __virt_addr_valid+0x18c/0x540
[  204.537290][ T5365]  ? __virt_addr_valid+0x469/0x540
[  204.537303][ T5365]  print_report+0xb4/0x290
[  204.537318][ T5365]  ? mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.537328][ T5365]  kasan_report+0x118/0x150
[  204.537341][ T5365]  ? mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.537354][ T5365]  mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.537367][ T5365]  ? __pfx_mgmt_remove_adv_monitor_complete+0x10/0x10
[  204.537378][ T5365]  ? hci_sock_get_channel+0xd/0x50
[  204.537389][ T5365]  ? mgmt_pending_find+0x116/0x130
[  204.537400][ T5365]  ? __pfx_mgmt_remove_adv_monitor_complete+0x10/0x10
[  204.537412][ T5365]  hci_cmd_sync_work+0x261/0x3a0
[  204.537427][ T5365]  ? process_scheduled_works+0x9ec/0x17a0
[  204.537438][ T5365]  process_scheduled_works+0xadb/0x17a0
[  204.537454][ T5365]  ? __pfx_process_scheduled_works+0x10/0x10
[  204.537471][ T5365]  worker_thread+0x8a0/0xda0
[  204.537485][ T5365]  kthread+0x70e/0x8a0
[  204.537497][ T5365]  ? __pfx_worker_thread+0x10/0x10
[  204.537506][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.537516][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.537526][ T5365]  ? _raw_spin_unlock_irq+0x23/0x50
[  204.537536][ T5365]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.537549][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.537561][ T5365]  ret_from_fork+0x4b/0x80
[  204.537572][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.537583][ T5365]  ret_from_fork_asm+0x1a/0x30
[  204.537597][ T5365]  </TASK>
[  204.537601][ T5365] 
[  204.630430][ T5365] Allocated by task 9194:
[  204.632331][ T5365]  kasan_save_track+0x3e/0x80
[  204.634423][ T5365]  __kasan_kmalloc+0x93/0xb0
[  204.636469][ T5365]  __kmalloc_cache_noprof+0x230/0x3d0
[  204.638827][ T5365]  mgmt_pending_new+0x65/0x240
[  204.640992][ T5365]  mgmt_pending_add+0x34/0x120
[  204.643115][ T5365]  remove_adv_monitor+0x103/0x1b0
[  204.645378][ T5365]  hci_mgmt_cmd+0x9c6/0xef0
[  204.647370][ T5365]  hci_sock_sendmsg+0x6ca/0xee0
[  204.649550][ T5365]  __sock_sendmsg+0x219/0x270
[  204.651658][ T5365]  sock_write_iter+0x258/0x330
[  204.653820][ T5365]  vfs_write+0x548/0xa90
[  204.655707][ T5365]  ksys_write+0x145/0x250
[  204.657636][ T5365]  do_syscall_64+0xf6/0x210
[  204.659566][ T5365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.662160][ T5365] 
[  204.663256][ T5365] Freed by task 9198:
[  204.665085][ T5365]  kasan_save_track+0x3e/0x80
[  204.667177][ T5365]  kasan_save_free_info+0x46/0x50
[  204.669390][ T5365]  __kasan_slab_free+0x62/0x70
[  204.671521][ T5365]  kfree+0x193/0x440
[  204.673332][ T5365]  mgmt_pending_foreach+0xc9/0x120
[  204.675700][ T5365]  mgmt_index_removed+0x10d/0x2f0
[  204.677946][ T5365]  hci_sock_bind+0xbf7/0x1010
[  204.680085][ T5365]  __sys_bind+0x2c3/0x3e0
[  204.681935][ T5365]  __x64_sys_bind+0x7a/0x90
[  204.683956][ T5365]  do_syscall_64+0xf6/0x210
[  204.686466][ T5365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.689122][ T5365] 
[  204.690195][ T5365] The buggy address belongs to the object at ffff888043826300
[  204.690195][ T5365]  which belongs to the cache kmalloc-96 of size 96
[  204.696135][ T5365] The buggy address is located 24 bytes inside of
[  204.696135][ T5365]  freed 96-byte region [ffff888043826300, ffff888043826360)
[  204.701914][ T5365] 
[  204.702990][ T5365] The buggy address belongs to the physical page:
[  204.705909][ T5365] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x43826
[  204.709729][ T5365] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  204.712856][ T5365] page_type: f5(slab)
[  204.714751][ T5365] raw: 04fff00000000000 ffff88801a041280 ffffea0000447dc0 dead000000000002
[  204.718479][ T5365] raw: 0000000000000000 0000000000200020 00000000f5000000 0000000000000000
[  204.722182][ T5365] page dumped because: kasan: bad access detected
[  204.725006][ T5365] page_owner tracks the page as allocated
[  204.727503][ T5365] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 4015, tgid 4015 (kworker/u4:10), ts 162423232319, free_ts 162406246108
[  204.735838][ T5365]  post_alloc_hook+0x1d8/0x230
[  204.738040][ T5365]  get_page_from_freelist+0x21ce/0x22b0
[  204.740460][ T5365]  __alloc_frozen_pages_noprof+0x181/0x370
[  204.743016][ T5365]  alloc_pages_mpol+0x232/0x4a0
[  204.745205][ T5365]  allocate_slab+0x8a/0x3b0
[  204.747235][ T5365]  ___slab_alloc+0xbfc/0x1480
[  204.749364][ T5365]  __kmalloc_cache_noprof+0x296/0x3d0
[  204.751716][ T5365]  dst_cow_metrics_generic+0x56/0x1c0
[  204.754075][ T5365]  icmp6_dst_alloc+0x261/0x420
[  204.756275][ T5365]  ndisc_send_skb+0x41f/0x1400
[  204.758434][ T5365]  addrconf_dad_completed+0x7ae/0xd60
[  204.760781][ T5365]  addrconf_dad_work+0xc36/0x14b0
[  204.763061][ T5365]  process_scheduled_works+0xadb/0x17a0
[  204.765551][ T5365]  worker_thread+0x8a0/0xda0
[  204.767612][ T5365]  kthread+0x70e/0x8a0
[  204.769421][ T5365]  ret_from_fork+0x4b/0x80
[  204.771379][ T5365] page last free pid 5850 tgid 5850 stack trace:
[  204.774165][ T5365]  __free_frozen_pages+0xb0e/0xcd0
[  204.776508][ T5365]  rcu_core+0xca8/0x1710
[  204.778423][ T5365]  handle_softirqs+0x286/0x870
[  204.780571][ T5365]  __irq_exit_rcu+0xca/0x1f0
[  204.782663][ T5365]  irq_exit_rcu+0x9/0x30
[  204.784570][ T5365]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  204.787081][ T5365]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  204.789756][ T5365] 
[  204.790859][ T5365] Memory state around the buggy address:
[  204.793372][ T5365]  ffff888043826200: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc
[  204.796946][ T5365]  ffff888043826280: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc
[  204.800430][ T5365] >ffff888043826300: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  204.803974][ T5365]                             ^
[  204.806196][ T5365]  ffff888043826380: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  204.809720][ T5365]  ffff888043826400: 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc
[  204.813261][ T5365] ==================================================================
[  204.854527][ T5365] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  204.857838][ T5365] CPU: 0 UID: 0 PID: 5365 Comm: kworker/u5:2 Not tainted 6.15.0-rc6-syzkaller-00346-g5723cc3450bc-dirty #0 PREEMPT(full) 
[  204.863395][ T5365] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  204.868194][ T5365] Workqueue: hci0 hci_cmd_sync_work
[  204.870608][ T5365] Call Trace:
[  204.871917][ T5365]  <TASK>
[  204.873069][ T5365]  dump_stack_lvl+0x99/0x250
[  204.875062][ T5365]  ? __asan_memcpy+0x40/0x70
[  204.877134][ T5365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.879459][ T5365]  ? __pfx__printk+0x10/0x10
[  204.881524][ T5365]  panic+0x2db/0x790
[  204.883288][ T5365]  ? __pfx_panic+0x10/0x10
[  204.885374][ T5365]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  204.888022][ T5365]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  204.890826][ T5365]  ? print_memory_metadata+0x314/0x400
[  204.893355][ T5365]  ? mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.896195][ T5365]  check_panic_on_warn+0x89/0xb0
[  204.898437][ T5365]  ? mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.901279][ T5365]  end_report+0x78/0x160
[  204.903171][ T5365]  kasan_report+0x129/0x150
[  204.905229][ T5365]  ? mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.908049][ T5365]  mgmt_remove_adv_monitor_complete+0xe5/0x540
[  204.910804][ T5365]  ? __pfx_mgmt_remove_adv_monitor_complete+0x10/0x10
[  204.913802][ T5365]  ? hci_sock_get_channel+0xd/0x50
[  204.916094][ T5365]  ? mgmt_pending_find+0x116/0x130
[  204.918403][ T5365]  ? __pfx_mgmt_remove_adv_monitor_complete+0x10/0x10
[  204.921354][ T5365]  hci_cmd_sync_work+0x261/0x3a0
[  204.923571][ T5365]  ? process_scheduled_works+0x9ec/0x17a0
[  204.926144][ T5365]  process_scheduled_works+0xadb/0x17a0
[  204.928629][ T5365]  ? __pfx_process_scheduled_works+0x10/0x10
[  204.931290][ T5365]  worker_thread+0x8a0/0xda0
[  204.933408][ T5365]  kthread+0x70e/0x8a0
[  204.935260][ T5365]  ? __pfx_worker_thread+0x10/0x10
[  204.937578][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.939679][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.941656][ T5365]  ? _raw_spin_unlock_irq+0x23/0x50
[  204.944010][ T5365]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.946425][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.948499][ T5365]  ret_from_fork+0x4b/0x80
[  204.950512][ T5365]  ? __pfx_kthread+0x10/0x10
[  204.952598][ T5365]  ret_from_fork_asm+0x1a/0x30
[  204.954799][ T5365]  </TASK>
[  204.956579][ T5365] Kernel Offset: disabled
[  204.958565][ T5365] Rebooting in 86400 seconds..