Warning: Permanently added '[localhost]:24920' (ED25519) to the list of known hosts.
2025/11/25 00:39:19 parsed 1 programs
syzkaller login: [   62.101999][ T5816] cgroup: Unknown subsys name 'net'
[   62.268448][ T5816] cgroup: Unknown subsys name 'cpuset'
[   62.272555][ T5816] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   64.129666][ T5816] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   66.499599][ T5822] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   66.752406][ T3628] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.754657][ T3628] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.773878][ T3628] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.776570][ T3628] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.555341][ T5199] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.558448][ T5199] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.560840][ T5199] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.563453][ T5199] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.568819][ T5199] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.529354][ T5870] chnl_net:caif_netlink_parms(): no params data found
[   68.588682][ T5870] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.591106][ T5870] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.593231][ T5870] bridge_slave_0: entered allmulticast mode
[   68.595964][ T5870] bridge_slave_0: entered promiscuous mode
[   68.599846][ T5870] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.601898][ T5870] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.603901][ T5870] bridge_slave_1: entered allmulticast mode
[   68.606886][ T5870] bridge_slave_1: entered promiscuous mode
[   68.630360][ T5870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.634719][ T5870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.654596][ T5870] team0: Port device team_slave_0 added
[   68.658861][ T5870] team0: Port device team_slave_1 added
[   68.676658][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.678660][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   68.685915][ T5870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.690458][ T5870] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.692556][ T5870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   68.700750][ T5870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.729475][ T5870] hsr_slave_0: entered promiscuous mode
[   68.731670][ T5870] hsr_slave_1: entered promiscuous mode
[   68.839266][ T5870] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   68.846307][ T5870] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   68.850722][ T5870] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   68.856185][ T5870] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.911546][ T5870] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.924427][ T5870] 8021q: adding VLAN 0 to HW filter on device team0
[   68.931671][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.933818][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.941954][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.944105][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.047561][ T5870] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.073390][ T5870] veth0_vlan: entered promiscuous mode
[   69.080247][ T5870] veth1_vlan: entered promiscuous mode
[   69.098360][ T5870] veth0_macvtap: entered promiscuous mode
[   69.102589][ T5870] veth1_macvtap: entered promiscuous mode
[   69.111965][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.120095][ T5870] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.128155][ T5829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.133326][ T5829] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.136870][ T5829] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.150533][ T5829] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.227066][ T5829] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.253965][ T5829] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.325961][ T5829] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.381463][ T5829] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/11/25 00:39:29 executed programs: 0
[   70.365470][ T5199] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   70.368964][ T5199] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   70.371783][ T5199] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   70.374957][ T5199] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   70.379077][ T5199] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   70.509726][ T5922] chnl_net:caif_netlink_parms(): no params data found
[   70.567288][ T5922] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.569572][ T5922] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.571895][ T5922] bridge_slave_0: entered allmulticast mode
[   70.574665][ T5922] bridge_slave_0: entered promiscuous mode
[   70.579653][ T5922] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.581664][ T5922] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.583943][ T5922] bridge_slave_1: entered allmulticast mode
[   70.588169][ T5922] bridge_slave_1: entered promiscuous mode
[   70.613931][ T5922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.618655][ T5922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.641202][ T5922] team0: Port device team_slave_0 added
[   70.644478][ T5922] team0: Port device team_slave_1 added
[   70.663951][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.666492][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   70.673703][ T5922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.677821][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.680189][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   70.687857][ T5922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.724052][ T5922] hsr_slave_0: entered promiscuous mode
[   70.726666][ T5922] hsr_slave_1: entered promiscuous mode
[   70.728753][ T5922] debugfs: 'hsr0' already exists in 'hsr'
[   70.730460][ T5922] Cannot create hsr debugfs directory
[   71.549952][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   71.552478][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   72.298386][ T5829] bridge_slave_1: left allmulticast mode
[   72.300522][ T5829] bridge_slave_1: left promiscuous mode
[   72.303183][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.309437][ T5829] bridge_slave_0: left allmulticast mode
[   72.311138][ T5829] bridge_slave_0: left promiscuous mode
[   72.313081][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.425720][ T5199] Bluetooth: hci0: command tx timeout
[   72.536464][ T5829] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   72.541177][ T5829] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   72.545963][ T5829] bond0 (unregistering): Released all slaves
[   72.646361][ T5829] hsr_slave_0: left promiscuous mode
[   72.655187][ T5829] hsr_slave_1: left promiscuous mode
[   72.657587][ T5829] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   72.660120][ T5829] batman_adv: batadv0: Removing interface: batadv_slave_0
[   72.666290][ T5829] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   72.668477][ T5829] batman_adv: batadv0: Removing interface: batadv_slave_1
[   72.678488][ T5829] veth1_macvtap: left promiscuous mode
[   72.680198][ T5829] veth0_macvtap: left promiscuous mode
[   72.681852][ T5829] veth1_vlan: left promiscuous mode
[   72.683607][ T5829] veth0_vlan: left promiscuous mode
[   72.909346][ T5829] team0 (unregistering): Port device team_slave_1 removed
[   72.924693][ T5829] team0 (unregistering): Port device team_slave_0 removed
[   73.346242][ T5922] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   73.351148][ T5922] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   73.357448][ T5922] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   73.361950][ T5922] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   73.409738][ T5922] 8021q: adding VLAN 0 to HW filter on device bond0
[   73.422151][ T5922] 8021q: adding VLAN 0 to HW filter on device team0
[   73.433016][ T3628] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.435150][ T3628] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.442120][ T3628] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.444248][ T3628] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.698116][ T5922] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.748885][ T5922] veth0_vlan: entered promiscuous mode
[   73.754866][ T5922] veth1_vlan: entered promiscuous mode
[   73.773956][ T5922] veth0_macvtap: entered promiscuous mode
[   73.779528][ T5922] veth1_macvtap: entered promiscuous mode
[   73.790758][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.799935][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.809698][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.812134][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.814515][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.818291][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.890204][ T3628] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.892501][ T3628] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.911704][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.913986][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.951088][ T5959] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17'.
[   73.958771][ T5959] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN PTI
[   73.962263][ T5959] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]
[   73.964665][ T5959] CPU: 1 UID: 0 PID: 5959 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   73.967425][ T5959] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   73.970434][ T5959] RIP: 0010:netem_quirk_chk+0x37/0x660
[   73.972268][ T5959] Code: 53 48 83 ec 30 48 89 54 24 08 49 89 f7 48 89 fd 49 be 00 00 00 00 00 fc ff df e8 e4 68 67 f8 49 83 c7 14 4c 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 0f 85 a0 05 00 00 41 8b 37 31 ff 89 74 24 04
[   73.978256][ T5959] RSP: 0018:ffffc90003737260 EFLAGS: 00010203
[   73.980300][ T5959] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: ffff888113168000
[   73.982990][ T5959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881139f3000
[   73.985585][ T5959] RBP: ffff8881139f3000 R08: ffff888113168000 R09: 0000000000000002
[   73.987755][ T5959] R10: 00000000fffffff1 R11: ffffffff89589ab0 R12: ffff8881166a0000
[   73.989902][ T5959] R13: ffffffff89589ab0 R14: dffffc0000000000 R15: 0000000000000014
[   73.992122][ T5959] FS:  0000555559c83500(0000) GS:ffff8882a9f35000(0000) knlGS:0000000000000000
[   73.994650][ T5959] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   73.996537][ T5959] CR2: 0000200000000100 CR3: 000000010a1b0000 CR4: 00000000000006f0
[   73.998776][ T5959] Call Trace:
[   73.999719][ T5959]  <TASK>
[   74.000542][ T5959]  ? __pfx_netem_quirk_chk+0x10/0x10
[   74.002082][ T5959]  qdisc_create+0x73f/0xf10
[   74.003453][ T5959]  tc_modify_qdisc+0x1582/0x2140
[   74.004901][ T5959]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   74.006754][ T5959]  ? __pfx_tc_modify_qdisc+0x10/0x10
[   74.008481][ T5959]  rtnetlink_rcv_msg+0x77c/0xb70
[   74.010128][ T5959]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[   74.011817][ T5959]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   74.013574][ T5959]  ? ref_tracker_free+0x63a/0x7d0
[   74.015226][ T5959]  ? __asan_memcpy+0x40/0x70
[   74.016751][ T5959]  ? __pfx_ref_tracker_free+0x10/0x10
[   74.018499][ T5959]  ? __skb_clone+0x63/0x7a0
[   74.020012][ T5959]  netlink_rcv_skb+0x208/0x470
[   74.021587][ T5959]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   74.023373][ T5959]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   74.025111][ T5959]  ? netlink_deliver_tap+0x2e/0x1b0
[   74.026763][ T5959]  netlink_unicast+0x82f/0x9e0
[   74.028237][ T5959]  ? __pfx_netlink_unicast+0x10/0x10
[   74.029932][ T5959]  ? netlink_sendmsg+0x642/0xb30
[   74.031465][ T5959]  ? skb_put+0x11b/0x210
[   74.032832][ T5959]  netlink_sendmsg+0x805/0xb30
[   74.034395][ T5959]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.036079][ T5959]  ? aa_sock_msg_perm+0xf1/0x1d0
[   74.037514][ T5959]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   74.039044][ T5959]  ? __pfx_netlink_sendmsg+0x10/0x10
[   74.040570][ T5959]  __sock_sendmsg+0x21c/0x270
[   74.041931][ T5959]  ____sys_sendmsg+0x505/0x830
[   74.043319][ T5959]  ? __pfx_____sys_sendmsg+0x10/0x10
[   74.044857][ T5959]  ? import_iovec+0x74/0xa0
[   74.046152][ T5959]  ___sys_sendmsg+0x21f/0x2a0
[   74.047506][ T5959]  ? __pfx____sys_sendmsg+0x10/0x10
[   74.048964][ T5959]  ? futex_hash_put+0x4b/0x60
[   74.050308][ T5959]  ? futex_wake+0x4b2/0x560
[   74.051716][ T5959]  ? put_user_ifreq+0x7b/0xd0
[   74.053045][ T5959]  __x64_sys_sendmsg+0x19b/0x260
[   74.054465][ T5959]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   74.056122][ T5959]  ? do_syscall_64+0xbe/0xfa0
[   74.057448][ T5959]  do_syscall_64+0xfa/0xfa0
[   74.058780][ T5959]  ? lockdep_hardirqs_on+0x9c/0x150
[   74.060276][ T5959]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.062168][ T5959]  ? exc_page_fault+0xab/0x100
[   74.063548][ T5959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.065233][ T5959] RIP: 0033:0x7fe6bff8f749
[   74.066618][ T5959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.073402][ T5959] RSP: 002b:00007fff10f91288 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   74.076471][ T5959] RAX: ffffffffffffffda RBX: 00007fe6c01e5fa0 RCX: 00007fe6bff8f749
[   74.079343][ T5959] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[   74.082231][ T5959] RBP: 00007fe6c0013f91 R08: 0000000000000000 R09: 0000000000000000
[   74.085132][ T5959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.087948][ T5959] R13: 00007fe6c01e5fa0 R14: 00007fe6c01e5fa0 R15: 0000000000000003
[   74.090872][ T5959]  </TASK>
[   74.092022][ T5959] Modules linked in:
[   74.093818][ T5959] ---[ end trace 0000000000000000 ]---
[   74.097585][ T5959] RIP: 0010:netem_quirk_chk+0x37/0x660
[   74.099775][ T5959] Code: 53 48 83 ec 30 48 89 54 24 08 49 89 f7 48 89 fd 49 be 00 00 00 00 00 fc ff df e8 e4 68 67 f8 49 83 c7 14 4c 89 f8 48 c1 e8 03 <42> 0f b6 04 30 84 c0 0f 85 a0 05 00 00 41 8b 37 31 ff 89 74 24 04
[   74.107329][ T5959] RSP: 0018:ffffc90003737260 EFLAGS: 00010203
[   74.109542][ T5959] RAX: 0000000000000002 RBX: dffffc0000000000 RCX: ffff888113168000
[   74.112447][ T5959] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881139f3000
[   74.115497][ T5959] RBP: ffff8881139f3000 R08: ffff888113168000 R09: 0000000000000002
[   74.118458][ T5959] R10: 00000000fffffff1 R11: ffffffff89589ab0 R12: ffff8881166a0000
[   74.121410][ T5959] R13: ffffffff89589ab0 R14: dffffc0000000000 R15: 0000000000000014
[   74.124145][ T5959] FS:  0000555559c83500(0000) GS:ffff8882a9f35000(0000) knlGS:0000000000000000
[   74.126920][ T5959] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   74.128819][ T5959] CR2: 0000200000000100 CR3: 000000010a1b0000 CR4: 00000000000006f0
[   74.131250][ T5959] Kernel panic - not syncing: Fatal exception
[   74.134002][ T5959] Kernel Offset: disabled
[   74.135567][ T5959] Rebooting in 86400 seconds..