Warning: Permanently added '[localhost]:31485' (ED25519) to the list of known hosts. 2025/11/26 02:06:32 parsed 1 programs syzkaller login: [ 53.719442][ T5818] cgroup: Unknown subsys name 'net' [ 53.827739][ T5818] cgroup: Unknown subsys name 'cpuset' [ 53.834719][ T5818] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 55.289684][ T5818] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 57.573706][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 58.608643][ T5198] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 58.611991][ T5198] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 58.615655][ T5198] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 58.618815][ T5198] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 58.621634][ T5198] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 59.682761][ T5883] chnl_net:caif_netlink_parms(): no params data found [ 59.756291][ T5883] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.759997][ T5883] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.763081][ T5883] bridge_slave_0: entered allmulticast mode [ 59.767571][ T5883] bridge_slave_0: entered promiscuous mode [ 59.779419][ T5883] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.782439][ T5883] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.786525][ T5883] bridge_slave_1: entered allmulticast mode [ 59.790398][ T5883] bridge_slave_1: entered promiscuous mode [ 59.821927][ T5883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.830393][ T5883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.858192][ T5883] team0: Port device team_slave_0 added [ 59.862184][ T5883] team0: Port device team_slave_1 added [ 59.878692][ T5883] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.880866][ T5883] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 59.888769][ T5883] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.893820][ T5883] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.895924][ T5883] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 59.905840][ T5883] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.952481][ T5883] hsr_slave_0: entered promiscuous mode [ 59.956070][ T5883] hsr_slave_1: entered promiscuous mode [ 60.060705][ T5883] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 60.067041][ T5883] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 60.071479][ T5883] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 60.076585][ T5883] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 60.098101][ T5883] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.100399][ T5883] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.103077][ T5883] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.105352][ T5883] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.136506][ T5883] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.146772][ T27] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.150059][ T27] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.159076][ T5883] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.168975][ T27] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.172050][ T27] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.179860][ T27] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.182198][ T27] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.289208][ T5883] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.311883][ T5883] veth0_vlan: entered promiscuous mode [ 60.317746][ T5883] veth1_vlan: entered promiscuous mode [ 60.332891][ T5883] veth0_macvtap: entered promiscuous mode [ 60.339658][ T5883] veth1_macvtap: entered promiscuous mode [ 60.348648][ T5883] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.359585][ T5883] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.367477][ T5890] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.371390][ T5890] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.377915][ T5890] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.380618][ T5890] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.467366][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.545309][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.588839][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.647602][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.661024][ T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.665889][ T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.687535][ T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.690342][ T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/11/26 02:06:41 executed programs: 0 [ 61.245918][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.249671][ T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.253052][ T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.259646][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.262548][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.407114][ T5924] chnl_net:caif_netlink_parms(): no params data found [ 61.481425][ T5924] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.484821][ T5924] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.487493][ T5924] bridge_slave_0: entered allmulticast mode [ 61.491193][ T5924] bridge_slave_0: entered promiscuous mode [ 61.496958][ T5924] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.499986][ T5924] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.504141][ T5924] bridge_slave_1: entered allmulticast mode [ 61.507501][ T5924] bridge_slave_1: entered promiscuous mode [ 61.540330][ T5924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.547052][ T5924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.580830][ T5924] team0: Port device team_slave_0 added [ 61.587264][ T5924] team0: Port device team_slave_1 added [ 61.618166][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.620968][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 61.631441][ T5924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.638898][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.641629][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 61.652259][ T5924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.702297][ T5924] hsr_slave_0: entered promiscuous mode [ 61.705285][ T5924] hsr_slave_1: entered promiscuous mode [ 61.707515][ T5924] debugfs: 'hsr0' already exists in 'hsr' [ 61.709843][ T5924] Cannot create hsr debugfs directory [ 63.334130][ T55] Bluetooth: hci0: command tx timeout [ 64.021102][ T13] bridge_slave_1: left allmulticast mode [ 64.023787][ T13] bridge_slave_1: left promiscuous mode [ 64.026884][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 64.045209][ T13] bridge_slave_0: left allmulticast mode [ 64.047489][ T13] bridge_slave_0: left promiscuous mode [ 64.049914][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.251208][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 64.256595][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 64.260272][ T13] bond0 (unregistering): Released all slaves [ 64.344165][ T13] hsr_slave_0: left promiscuous mode [ 64.346465][ T13] hsr_slave_1: left promiscuous mode [ 64.351492][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 64.356277][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 64.359484][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 64.361705][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 64.373771][ T13] veth1_macvtap: left promiscuous mode [ 64.375751][ T13] veth0_macvtap: left promiscuous mode [ 64.377610][ T13] veth1_vlan: left promiscuous mode [ 64.381992][ T13] veth0_vlan: left promiscuous mode [ 64.623823][ T13] team0 (unregistering): Port device team_slave_1 removed [ 64.645953][ T13] team0 (unregistering): Port device team_slave_0 removed [ 65.074014][ T5924] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 65.078483][ T5924] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 65.090284][ T5924] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 65.097179][ T5924] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 65.154275][ T5924] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.171341][ T5924] 8021q: adding VLAN 0 to HW filter on device team0 [ 65.280751][ T1095] bridge0: port 1(bridge_slave_0) entered blocking state [ 65.283048][ T1095] bridge0: port 1(bridge_slave_0) entered forwarding state [ 65.286976][ T1095] bridge0: port 2(bridge_slave_1) entered blocking state [ 65.289497][ T1095] bridge0: port 2(bridge_slave_1) entered forwarding state [ 65.414479][ T55] Bluetooth: hci0: command tx timeout [ 65.486501][ T5924] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 65.511736][ T5924] veth0_vlan: entered promiscuous mode [ 65.518328][ T5924] veth1_vlan: entered promiscuous mode [ 65.549362][ T5924] veth0_macvtap: entered promiscuous mode [ 65.553463][ T5924] veth1_macvtap: entered promiscuous mode [ 65.562510][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 65.571411][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 65.581494][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.588641][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.591354][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.598469][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 65.641618][ T1095] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.646760][ T1095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.661651][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 65.664997][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 65.694751][ T5961] netlink: 28 bytes leftover after parsing attributes in process `syz.0.17'. [ 65.698425][ T5961] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 65.702979][ T5961] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 65.706299][ T5961] CPU: 1 UID: 0 PID: 5961 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) [ 65.709845][ T5961] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 65.713829][ T5961] RIP: 0010:netem_quirk_chk+0x8a/0x740 [ 65.715976][ T5961] Code: 7c 24 60 49 c1 ef 03 43 c7 04 27 f1 f1 f1 f1 43 c7 44 27 13 f3 f3 f3 f3 43 c6 44 27 17 f3 e8 8d 68 67 f8 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 32 06 00 00 0f b7 03 83 c0 fc 44 0f b7 [ 65.723435][ T5961] RSP: 0018:ffffc900032c7140 EFLAGS: 00010246 [ 65.725840][ T5961] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88810ff73a00 [ 65.728997][ T5961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881b82ce000 [ 65.732075][ T5961] RBP: ffffc900032c72b8 R08: ffff88810ff73a00 R09: 0000000000000002 [ 65.735237][ T5961] R10: 00000000fffffff1 R11: ffffffff89589ab0 R12: dffffc0000000000 [ 65.738418][ T5961] R13: ffffffff89589ab0 R14: ffffffff8f7d9580 R15: 1ffff92000658e34 [ 65.740927][ T5961] FS: 000055558efa7500(0000) GS:ffff8882a9f35000(0000) knlGS:0000000000000000 [ 65.743623][ T5961] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.745642][ T5961] CR2: 0000200000000100 CR3: 0000000114760000 CR4: 00000000000006f0 [ 65.748037][ T5961] Call Trace: [ 65.749087][ T5961] [ 65.749996][ T5961] ? qdisc_alloc+0x68c/0x900 [ 65.751462][ T5961] ? qdisc_create+0x128/0xf10 [ 65.752868][ T5961] ? tc_modify_qdisc+0x1582/0x2140 [ 65.754403][ T5961] ? rtnetlink_rcv_msg+0x77c/0xb70 [ 65.755979][ T5961] ? netlink_unicast+0x82f/0x9e0 [ 65.757503][ T5961] ? netlink_sendmsg+0x805/0xb30 [ 65.759019][ T5961] ? ____sys_sendmsg+0x505/0x830 [ 65.760531][ T5961] ? ___sys_sendmsg+0x21f/0x2a0 [ 65.761980][ T5961] ? __x64_sys_sendmsg+0x19b/0x260 [ 65.763543][ T5961] ? do_syscall_64+0xfa/0xfa0 [ 65.764976][ T5961] ? __pfx_netem_quirk_chk+0x10/0x10 [ 65.766594][ T5961] ? is_dynamic_key+0xd6/0x1c0 [ 65.768036][ T5961] ? __raw_spin_lock_init+0x45/0x100 [ 65.769692][ T5961] ? qdisc_alloc+0x6a4/0x900 [ 65.771275][ T5961] ? __pfx_netem_quirk_chk+0x10/0x10 [ 65.773063][ T5961] qdisc_create+0x73f/0xf10 [ 65.774599][ T5961] tc_modify_qdisc+0x1582/0x2140 [ 65.776112][ T5961] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.777757][ T5961] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.779836][ T5961] rtnetlink_rcv_msg+0x77c/0xb70 [ 65.781621][ T5961] ? rtnetlink_rcv_msg+0x1ab/0xb70 [ 65.783370][ T5961] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.785055][ T5961] ? ref_tracker_free+0x63a/0x7d0 [ 65.786699][ T5961] ? __asan_memcpy+0x40/0x70 [ 65.788244][ T5961] ? __pfx_ref_tracker_free+0x10/0x10 [ 65.789881][ T5961] ? __skb_clone+0x63/0x7a0 [ 65.791258][ T5961] netlink_rcv_skb+0x208/0x470 [ 65.792716][ T5961] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.794366][ T5961] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 65.796099][ T5961] ? netlink_deliver_tap+0x2e/0x1b0 [ 65.797846][ T5961] netlink_unicast+0x82f/0x9e0 [ 65.799427][ T5961] ? __pfx_netlink_unicast+0x10/0x10 [ 65.801151][ T5961] ? netlink_sendmsg+0x642/0xb30 [ 65.802898][ T5961] ? skb_put+0x11b/0x210 [ 65.804441][ T5961] netlink_sendmsg+0x805/0xb30 [ 65.805992][ T5961] ? __pfx_netlink_sendmsg+0x10/0x10 [ 65.807817][ T5961] ? aa_sock_msg_perm+0xf1/0x1d0 [ 65.809446][ T5961] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 65.811076][ T5961] ? __pfx_netlink_sendmsg+0x10/0x10 [ 65.812679][ T5961] __sock_sendmsg+0x21c/0x270 [ 65.814103][ T5961] ____sys_sendmsg+0x505/0x830 [ 65.815565][ T5961] ? __pfx_____sys_sendmsg+0x10/0x10 [ 65.817166][ T5961] ? import_iovec+0x74/0xa0 [ 65.818542][ T5961] ___sys_sendmsg+0x21f/0x2a0 [ 65.819956][ T5961] ? __pfx____sys_sendmsg+0x10/0x10 [ 65.821535][ T5961] ? futex_hash_put+0x4b/0x60 [ 65.823012][ T5961] ? futex_wake+0x4b2/0x560 [ 65.824426][ T5961] ? put_user_ifreq+0x7b/0xd0 [ 65.825901][ T5961] __x64_sys_sendmsg+0x19b/0x260 [ 65.827400][ T5961] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 65.829046][ T5961] ? do_syscall_64+0xbe/0xfa0 [ 65.830454][ T5961] do_syscall_64+0xfa/0xfa0 [ 65.831863][ T5961] ? lockdep_hardirqs_on+0x9c/0x150 [ 65.833471][ T5961] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.835363][ T5961] ? exc_page_fault+0xab/0x100 [ 65.836883][ T5961] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.838773][ T5961] RIP: 0033:0x7f1beb98f749 [ 65.840122][ T5961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 65.846159][ T5961] RSP: 002b:00007ffd1afcc778 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 65.849420][ T5961] RAX: ffffffffffffffda RBX: 00007f1bebbe5fa0 RCX: 00007f1beb98f749 [ 65.852558][ T5961] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 65.855691][ T5961] RBP: 00007f1beba13f91 R08: 0000000000000000 R09: 0000000000000000 [ 65.858842][ T5961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 65.861995][ T5961] R13: 00007f1bebbe5fa0 R14: 00007f1bebbe5fa0 R15: 0000000000000003 [ 65.865104][ T5961] [ 65.866332][ T5961] Modules linked in: [ 65.868279][ T5961] ---[ end trace 0000000000000000 ]--- [ 65.871602][ T5961] RIP: 0010:netem_quirk_chk+0x8a/0x740 [ 65.874564][ T5961] Code: 7c 24 60 49 c1 ef 03 43 c7 04 27 f1 f1 f1 f1 43 c7 44 27 13 f3 f3 f3 f3 43 c6 44 27 17 f3 e8 8d 68 67 f8 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 32 06 00 00 0f b7 03 83 c0 fc 44 0f b7 [ 65.881973][ T5961] RSP: 0018:ffffc900032c7140 EFLAGS: 00010246 [ 65.884734][ T5961] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88810ff73a00 [ 65.887765][ T5961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881b82ce000 [ 65.890919][ T5961] RBP: ffffc900032c72b8 R08: ffff88810ff73a00 R09: 0000000000000002 [ 65.894190][ T5961] R10: 00000000fffffff1 R11: ffffffff89589ab0 R12: dffffc0000000000 [ 65.897509][ T5961] R13: ffffffff89589ab0 R14: ffffffff8f7d9580 R15: 1ffff92000658e34 [ 65.900072][ T5961] FS: 000055558efa7500(0000) GS:ffff8882a9f35000(0000) knlGS:0000000000000000 [ 65.902919][ T5961] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.905337][ T5961] CR2: 0000200000000100 CR3: 0000000114760000 CR4: 00000000000006f0 [ 65.908294][ T5961] Kernel panic - not syncing: Fatal exception [ 65.911150][ T5961] Kernel Offset: disabled [ 65.912604][ T5961] Rebooting in 86400 seconds..