Warning: Permanently added '[localhost]:38938' (ED25519) to the list of known hosts. 2025/07/24 15:41:42 ignoring optional flag "sandboxArg"="0" 2025/07/24 15:41:43 parsed 1 programs syzkaller login: [ 52.625071][ T5829] cgroup: Unknown subsys name 'net' [ 52.774939][ T5829] cgroup: Unknown subsys name 'cpuset' [ 52.782246][ T5829] cgroup: Unknown subsys name 'rlimit' [ 54.542366][ T5829] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 57.115041][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 57.746178][ T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 57.749090][ T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 57.752230][ T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 57.755368][ T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 57.758125][ T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 57.778893][ T5856] chnl_net:caif_netlink_parms(): no params data found [ 58.072266][ T5856] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.076113][ T5856] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.079103][ T5856] bridge_slave_0: entered allmulticast mode [ 58.084171][ T5856] bridge_slave_0: entered promiscuous mode [ 58.098201][ T5856] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.101890][ T5856] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.104818][ T5856] bridge_slave_1: entered allmulticast mode [ 58.108270][ T5856] bridge_slave_1: entered promiscuous mode [ 58.276007][ T5856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.316577][ T5856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.350793][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.361105][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.419552][ T5856] team0: Port device team_slave_0 added [ 58.430212][ T5856] team0: Port device team_slave_1 added [ 58.500465][ T29] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.503045][ T29] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.510767][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.512948][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.521303][ T5856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.543364][ T5856] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.545558][ T5856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.554870][ T5856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.690481][ T5856] hsr_slave_0: entered promiscuous mode [ 58.694212][ T5856] hsr_slave_1: entered promiscuous mode [ 59.191372][ T5856] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 59.212571][ T5856] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 59.236414][ T5856] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 59.279581][ T5856] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 59.639566][ T5856] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.772093][ T5856] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.793439][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.796150][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.833385][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.835810][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.936184][ T5856] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 60.155196][ T5856] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.200951][ T5856] veth0_vlan: entered promiscuous mode [ 60.207038][ T5856] veth1_vlan: entered promiscuous mode [ 60.225152][ T5856] veth0_macvtap: entered promiscuous mode [ 60.229647][ T5856] veth1_macvtap: entered promiscuous mode [ 60.243380][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.255151][ T5856] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.268684][ T5878] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.272515][ T5878] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.279476][ T5878] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.287766][ T5878] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 2025/07/24 15:41:52 executed programs: 0 [ 60.416332][ T5219] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.423168][ T5219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.426643][ T5219] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.452571][ T5941] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.455288][ T5941] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 60.461207][ T5866] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 60.461671][ T5856] syz-executor (5856) used greatest stack depth: 20664 bytes left [ 60.463687][ T5866] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 60.469493][ T5866] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 60.474582][ T5866] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 60.478092][ T5945] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 60.480565][ T5866] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 60.484317][ T5866] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 60.486541][ T5945] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 60.492765][ T5866] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 60.495986][ T5866] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 60.737265][ T5936] chnl_net:caif_netlink_parms(): no params data found [ 60.795815][ T5903] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.889250][ T5942] chnl_net:caif_netlink_parms(): no params data found [ 60.964248][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.966572][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.968890][ T5936] bridge_slave_0: entered allmulticast mode [ 60.972237][ T5936] bridge_slave_0: entered promiscuous mode [ 60.975692][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.977942][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.982784][ T5936] bridge_slave_1: entered allmulticast mode [ 60.986733][ T5936] bridge_slave_1: entered promiscuous mode [ 61.070964][ T5939] chnl_net:caif_netlink_parms(): no params data found [ 61.086297][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.091118][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.093623][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.095972][ T5942] bridge_slave_0: entered allmulticast mode [ 61.098766][ T5942] bridge_slave_0: entered promiscuous mode [ 61.112159][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.115896][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.118094][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.120658][ T5942] bridge_slave_1: entered allmulticast mode [ 61.124027][ T5942] bridge_slave_1: entered promiscuous mode [ 61.233091][ T5936] team0: Port device team_slave_0 added [ 61.239074][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.247111][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.268497][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.271959][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.275017][ T5939] bridge_slave_0: entered allmulticast mode [ 61.279138][ T5939] bridge_slave_0: entered promiscuous mode [ 61.287483][ T5936] team0: Port device team_slave_1 added [ 61.320486][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.323482][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.326404][ T5939] bridge_slave_1: entered allmulticast mode [ 61.330974][ T5939] bridge_slave_1: entered promiscuous mode [ 61.396701][ T5942] team0: Port device team_slave_0 added [ 61.401456][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.407922][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.412550][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.415352][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.427955][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.435061][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.438083][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.449547][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.456328][ T5942] team0: Port device team_slave_1 added [ 61.484074][ T5939] team0: Port device team_slave_0 added [ 61.498505][ T5939] team0: Port device team_slave_1 added [ 61.537540][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.539770][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.551047][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.584194][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.586888][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.596643][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.608364][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.611540][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.621639][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.634521][ T5936] hsr_slave_0: entered promiscuous mode [ 61.638006][ T5936] hsr_slave_1: entered promiscuous mode [ 61.641677][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.644963][ T5936] Cannot create hsr debugfs directory [ 61.652560][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.655192][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.665973][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.736427][ T5942] hsr_slave_0: entered promiscuous mode [ 61.739643][ T5942] hsr_slave_1: entered promiscuous mode [ 61.743353][ T5942] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.746328][ T5942] Cannot create hsr debugfs directory [ 61.875712][ T5939] hsr_slave_0: entered promiscuous mode [ 61.878345][ T5939] hsr_slave_1: entered promiscuous mode [ 61.883083][ T5939] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 61.886046][ T5939] Cannot create hsr debugfs directory [ 61.911121][ T5903] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.158317][ T5936] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.175267][ T5936] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.191251][ T5936] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.205519][ T5936] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.261563][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.277347][ T5936] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.283218][ T3584] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.285379][ T3584] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.296856][ T3584] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.299080][ T3584] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.437420][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.477920][ T5903] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 62.501806][ T5944] Bluetooth: hci0: command tx timeout [ 62.506437][ T5936] veth0_vlan: entered promiscuous mode [ 62.514095][ T5936] veth1_vlan: entered promiscuous mode [ 62.533886][ T5936] veth0_macvtap: entered promiscuous mode [ 62.538525][ T5936] veth1_macvtap: entered promiscuous mode [ 62.553126][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.559688][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.569380][ T5878] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.572553][ T5965] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.575397][ T5965] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.578397][ T5965] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.581568][ T5944] Bluetooth: hci1: command tx timeout [ 62.590436][ T5944] Bluetooth: hci2: command tx timeout [ 62.642595][ T3584] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.645997][ T3584] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.675470][ T29] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.678821][ T29] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.787897][ T5982] syz.0.16 uses obsolete (PF_INET,SOCK_PACKET) [ 63.044284][ T5991] Oops: general protection fault, probably for non-canonical address 0xdffffc000000001c: 0000 [#1] SMP KASAN PTI [ 63.048400][ T5991] KASAN: null-ptr-deref in range [0x00000000000000e0-0x00000000000000e7] [ 63.052061][ T5991] CPU: 0 UID: 0 PID: 5991 Comm: syz.0.19 Not tainted 6.16.0-rc6-syzkaller-01646-g56613001dfc9-dirty #0 PREEMPT(full) [ 63.057263][ T5991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 63.061423][ T5991] RIP: 0010:icmpv6_route_lookup+0x1ad/0x590 [ 63.063794][ T5991] Code: a4 01 00 00 49 89 c7 e8 b1 54 94 f7 4c 89 f8 49 89 df e9 3f 02 00 00 4c 8b 74 24 60 4d 8d ae e0 00 00 00 4c 89 e8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 0f 85 41 03 00 00 45 8b 6d 00 44 89 ee 81 e6 [ 63.071178][ T5991] RSP: 0018:ffffc90002b4ec00 EFLAGS: 00010202 [ 63.073625][ T5991] RAX: 000000000000001c RBX: ffffc90002b4eee0 RCX: 0000000000000000 [ 63.076812][ T5991] RDX: ffff8880206c3980 RSI: 0000000000000000 RDI: 0000000000000000 [ 63.079956][ T5991] RBP: ffffc90002b4ed70 R08: ffff88802a9ef3c3 R09: 1ffff1100553de78 [ 63.083112][ T5991] R10: dffffc0000000000 R11: ffffed100553de79 R12: ffff88810de0f800 [ 63.086272][ T5991] R13: 00000000000000e0 R14: 0000000000000000 R15: dffffc0000000000 [ 63.089407][ T5991] FS: 00007faf43ec86c0(0000) GS:ffff8880b8615000(0000) knlGS:0000000000000000 [ 63.092970][ T5991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.095550][ T5991] CR2: 0000200000034000 CR3: 0000000028440000 CR4: 00000000000006f0 [ 63.098705][ T5991] Call Trace: [ 63.100108][ T5991] [ 63.101301][ T5991] ? __pfx_icmpv6_route_lookup+0x10/0x10 [ 63.103527][ T5991] ? icmpv6_xrlim_allow+0x521/0x630 [ 63.105621][ T5991] ? ipcm6_init_sk+0x18b/0x470 [ 63.107534][ T5991] icmp6_send+0x1001/0x1940 [ 63.109379][ T5991] ? pskb_expand_head+0x382/0x1150 [ 63.111442][ T5991] ? __pskb_pull_tail+0x10a/0x15b0 [ 63.113481][ T5991] ? icmp6_send+0x1e9/0x1940 [ 63.115355][ T5991] ? __pfx_icmp6_send+0x10/0x10 [ 63.117148][ T5991] ? kasan_quarantine_put+0xdd/0x220 [ 63.119025][ T5991] ? lockdep_hardirqs_on+0x9c/0x150 [ 63.121051][ T5991] ? pskb_expand_head+0x382/0x1150 [ 63.123081][ T5991] ? kmem_cache_free+0x18f/0x400 [ 63.124999][ T5991] icmpv6_param_prob_reason+0x32/0x50 [ 63.127159][ T5991] ip6_parse_tlv+0x19fc/0x1e60 [ 63.129088][ T5991] ipv6_destopt_rcv+0x597/0xbc0 [ 63.131026][ T5991] ? __pfx_ipv6_destopt_rcv+0x10/0x10 [ 63.133091][ T5991] ip6_protocol_deliver_rcu+0xe0b/0x15c0 [ 63.135239][ T5991] ip6_input_finish+0x191/0x370 [ 63.137143][ T5991] NF_HOOK+0x30c/0x3a0 [ 63.138784][ T5991] ? __pfx_ip6_input_finish+0x10/0x10 [ 63.140878][ T5991] ? NF_HOOK+0x9a/0x3a0 [ 63.142493][ T5991] ? __pfx_NF_HOOK+0x10/0x10 [ 63.144323][ T5991] ? __pfx_ip6_input_finish+0x10/0x10 [ 63.146407][ T5991] ip6_input+0x16a/0x270 [ 63.148136][ T5991] ? ip6_input+0x23/0x270 [ 63.149871][ T5991] ip6_mc_input+0x5c8/0xaf0 [ 63.151647][ T5991] ? __pfx_ip6_mc_input+0x10/0x10 [ 63.153643][ T5991] ? skb_dst+0x71/0xd0 [ 63.155255][ T5991] ? ip6_rcv_finish+0x29e/0x2e0 [ 63.157217][ T5991] NF_HOOK+0x30c/0x3a0 [ 63.158883][ T5991] ? skb_orphan+0x4f/0xd0 [ 63.160612][ T5991] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 63.162693][ T5991] ? NF_HOOK+0x9a/0x3a0 [ 63.164385][ T5991] ? __pfx_NF_HOOK+0x10/0x10 [ 63.166284][ T5991] ? __pfx_ip6_rcv_finish+0x10/0x10 [ 63.168358][ T5991] __netif_receive_skb+0xd3/0x380 [ 63.170399][ T5991] ? netif_receive_skb+0x115/0x790 [ 63.172468][ T5991] netif_receive_skb+0x1cb/0x790 [ 63.174438][ T5991] ? __pfx___local_bh_disable_ip+0x10/0x10 [ 63.176754][ T5991] ? __pfx_netif_receive_skb+0x10/0x10 [ 63.178954][ T5991] ? skb_partial_csum_set+0x107/0x360 [ 63.181117][ T5991] ? tun_rx_batched+0x160/0x730 [ 63.183074][ T5991] tun_rx_batched+0x1b9/0x730 [ 63.184969][ T5991] ? __lock_acquire+0xab9/0xd20 [ 63.186923][ T5991] ? __pfx_tun_rx_batched+0x10/0x10 [ 63.189019][ T5991] ? tun_get_user+0x266c/0x3e20 [ 63.190975][ T5991] tun_get_user+0x2aa2/0x3e20 [ 63.192857][ T5991] ? tun_get_user+0x266c/0x3e20 [ 63.194831][ T5991] ? __pfx_tun_get_user+0x10/0x10 [ 63.196875][ T5991] ? aa_file_perm+0x3e7/0xed0 [ 63.198649][ T5991] ? __pfx_preempt_schedule+0x10/0x10 [ 63.200838][ T5991] ? ref_tracker_alloc+0x318/0x460 [ 63.202915][ T5991] ? __lock_acquire+0xab9/0xd20 [ 63.204890][ T5991] ? __pfx_ref_tracker_alloc+0x10/0x10 [ 63.207078][ T5991] ? tun_get+0x1c/0x2f0 [ 63.208684][ T5991] ? tun_get+0x1c/0x2f0 [ 63.210344][ T5991] ? tun_get+0x1c/0x2f0 [ 63.211994][ T5991] tun_chr_write_iter+0x113/0x200 [ 63.213953][ T5991] vfs_write+0x54b/0xa90 [ 63.215574][ T5991] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 63.217692][ T5991] ? __pfx_vfs_write+0x10/0x10 [ 63.219502][ T5991] ? __fget_files+0x2a/0x420 [ 63.221295][ T5991] ksys_write+0x145/0x250 [ 63.223012][ T5991] ? __pfx_ksys_write+0x10/0x10 [ 63.224975][ T5991] ? rcu_is_watching+0x15/0xb0 [ 63.226909][ T5991] ? do_syscall_64+0xbe/0x3b0 [ 63.228796][ T5991] do_syscall_64+0xfa/0x3b0 [ 63.230585][ T5991] ? lockdep_hardirqs_on+0x9c/0x150 [ 63.232569][ T5991] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 63.234880][ T5991] ? exc_page_fault+0x9f/0xf0 [ 63.236741][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 63.239059][ T5991] RIP: 0033:0x7faf42f8e9a9 [ 63.240807][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 63.248111][ T5991] RSP: 002b:00007faf43ec8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 63.251467][ T5991] RAX: ffffffffffffffda RBX: 00007faf431b5fa0 RCX: 00007faf42f8e9a9 [ 63.254502][ T5991] RDX: 0000000000000ffe RSI: 00002000000000c0 RDI: 0000000000000003 [ 63.257678][ T5991] RBP: 00007faf43010d69 R08: 0000000000000000 R09: 0000000000000000 [ 63.260831][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 63.263902][ T5991] R13: 0000000000000000 R14: 00007faf431b5fa0 R15: 00007ffeead38248 [ 63.266955][ T5991] [ 63.268236][ T5991] Modules linked in: [ 63.270008][ T5991] ---[ end trace 0000000000000000 ]--- [ 63.272195][ T5991] RIP: 0010:icmpv6_route_lookup+0x1ad/0x590 [ 63.274576][ T5991] Code: a4 01 00 00 49 89 c7 e8 b1 54 94 f7 4c 89 f8 49 89 df e9 3f 02 00 00 4c 8b 74 24 60 4d 8d ae e0 00 00 00 4c 89 e8 48 c1 e8 03 <42> 0f b6 04 38 84 c0 0f 85 41 03 00 00 45 8b 6d 00 44 89 ee 81 e6 [ 63.282303][ T5991] RSP: 0018:ffffc90002b4ec00 EFLAGS: 00010202 [ 63.284792][ T5991] RAX: 000000000000001c RBX: ffffc90002b4eee0 RCX: 0000000000000000 [ 63.287964][ T5991] RDX: ffff8880206c3980 RSI: 0000000000000000 RDI: 0000000000000000 [ 63.291229][ T5991] RBP: ffffc90002b4ed70 R08: ffff88802a9ef3c3 R09: 1ffff1100553de78 [ 63.294363][ T5991] R10: dffffc0000000000 R11: ffffed100553de79 R12: ffff88810de0f800 [ 63.297458][ T5991] R13: 00000000000000e0 R14: 0000000000000000 R15: dffffc0000000000 [ 63.300627][ T5991] FS: 00007faf43ec86c0(0000) GS:ffff8880b8615000(0000) knlGS:0000000000000000 [ 63.304044][ T5991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 63.306646][ T5991] CR2: 0000200000034000 CR3: 0000000028440000 CR4: 00000000000006f0 [ 63.309767][ T5991] Kernel panic - not syncing: Fatal exception in interrupt [ 63.313319][ T5991] Kernel Offset: disabled [ 63.315092][ T5991] Rebooting in 86400 seconds.. VM DIAGNOSIS: 15:41:55 Registers: info registers vcpu 0 CPU#0 RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8 RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90002b4e430 R8 =ffff888021258237 R9 =1ffff1100424b046 R10=dffffc0000000000 R11=ffffffff85463620 R12=dffffc0000000000 R13=ffffffff99aff8cb R14=ffffffff99e044c0 R15=0000000000000000 RIP=ffffffff8546369c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007faf43ec86c0 ffffffff 00c00000 GS =0000 ffff8880b8615000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000200000034000 CR3=0000000028440000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000 XMM02=00007faf43186478 00007faf43186450 XMM03=00007faf43186488 00007faf43186480 XMM04=00007faf43ced100 00007faf43186440 XMM05=00007faf43186458 00007faf431864a0 XMM06=00007faf43186498 00007faf43186490 XMM07=00007faf43186488 00007faf43186480 XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007faf43011ec1 XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000 info registers vcpu 1 CPU#1 RAX=ffffffff81b4c020 RBX=ffff88813663b1c0 RCX=ffff8881071ad640 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc90006ee7800 RSP=ffffc90006ee7698 R8 =ffffffff8fa22cf7 R9 =1ffffffff1f4459e R10=dffffc0000000000 R11=fffffbfff1f4459f R12=1ffff11009608385 R13=dffffc0000000000 R14=0000000000000000 R15=ffff88804b041c28 RIP=ffffffff81c02a58 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff8881a3c15000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff82232ac8 CR3=000000000df38000 CR4=000006f0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000000000 0000000000000000 XMM01=ffffffffffffffff ffffffffffffffff XMM02=ffffffffffffffff ffffffffffffffff XMM03=ffffffffffffff00 ffffffffffffffff XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 0000000000000000 XMM06=0000000000000000 000000524f525245 XMM07=0000000000000000 0000000000000000 XMM08=0000000000000000 00524f5252450040 XMM09=0000000000000000 00007faf43011ec1 XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000 XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000 XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000