Warning: Permanently added '[localhost]:1190' (ED25519) to the list of known hosts. 2026/02/09 04:42:11 parsed 1 programs syzkaller login: [ 64.816502][ T5839] cgroup: Unknown subsys name 'net' [ 64.924823][ T5839] cgroup: Unknown subsys name 'cpuset' [ 64.929093][ T5839] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 66.588615][ T5839] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 69.150698][ T5848] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 70.424415][ T191] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.427430][ T191] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.466247][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.469134][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.575195][ T5913] chnl_net:caif_netlink_parms(): no params data found [ 71.696153][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.699320][ T5913] bridge0: port 1(bridge_slave_0) entered disabled state [ 71.707108][ T5913] bridge_slave_0: entered allmulticast mode [ 71.709974][ T5913] bridge_slave_0: entered promiscuous mode [ 71.718672][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.720989][ T5913] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.723700][ T5913] bridge_slave_1: entered allmulticast mode [ 71.726586][ T5913] bridge_slave_1: entered promiscuous mode [ 71.749800][ T5913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 71.754647][ T5913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 71.775518][ T5913] team0: Port device team_slave_0 added [ 71.779368][ T5913] team0: Port device team_slave_1 added [ 71.796565][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 71.799404][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 71.809491][ T5913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 71.816027][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 71.818547][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 71.828572][ T5913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 71.857063][ T5913] hsr_slave_0: entered promiscuous mode [ 71.860487][ T5913] hsr_slave_1: entered promiscuous mode [ 71.966750][ T5913] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 71.974067][ T5913] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 71.979351][ T5913] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 71.984036][ T5913] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 72.003923][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.006068][ T5913] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.008584][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.010646][ T5913] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.048941][ T5913] 8021q: adding VLAN 0 to HW filter on device bond0 [ 72.058084][ T3899] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.060943][ T3899] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.070162][ T5913] 8021q: adding VLAN 0 to HW filter on device team0 [ 72.077303][ T3899] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.079453][ T3899] bridge0: port 1(bridge_slave_0) entered forwarding state [ 72.086625][ T3899] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.088740][ T3899] bridge0: port 2(bridge_slave_1) entered forwarding state [ 72.230394][ T5913] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.262738][ T5913] veth0_vlan: entered promiscuous mode [ 72.268998][ T5913] veth1_vlan: entered promiscuous mode [ 72.287082][ T5913] veth0_macvtap: entered promiscuous mode [ 72.291789][ T5913] veth1_macvtap: entered promiscuous mode [ 72.304434][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.311100][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.321088][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.327048][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.331140][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.336512][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.459488][ T5223] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.463075][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.464186][ T5223] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.471939][ T5223] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.476125][ T5223] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.478893][ T5223] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.535655][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.616894][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.685050][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2026/02/09 04:42:21 executed programs: 0 [ 72.944343][ T5223] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.947156][ T5223] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.949687][ T5223] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.953872][ T5223] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.956375][ T5223] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.064911][ T5947] chnl_net:caif_netlink_parms(): no params data found [ 73.117744][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.119906][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.122442][ T5947] bridge_slave_0: entered allmulticast mode [ 73.124933][ T5947] bridge_slave_0: entered promiscuous mode [ 73.132027][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.134455][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.136518][ T5947] bridge_slave_1: entered allmulticast mode [ 73.139000][ T5947] bridge_slave_1: entered promiscuous mode [ 73.155508][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.159738][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.177565][ T5947] team0: Port device team_slave_0 added [ 73.182015][ T5947] team0: Port device team_slave_1 added [ 73.198043][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.200111][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.208234][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.212982][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.214927][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 73.222429][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 73.252832][ T5947] hsr_slave_0: entered promiscuous mode [ 73.257026][ T5947] hsr_slave_1: entered promiscuous mode [ 73.259442][ T5947] debugfs: 'hsr0' already exists in 'hsr' [ 73.261159][ T5947] Cannot create hsr debugfs directory [ 75.022046][ T5223] Bluetooth: hci0: command tx timeout [ 75.472401][ T13] bridge_slave_1: left allmulticast mode [ 75.474675][ T13] bridge_slave_1: left promiscuous mode [ 75.477506][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 75.492081][ T13] bridge_slave_0: left allmulticast mode [ 75.493902][ T13] bridge_slave_0: left promiscuous mode [ 75.495936][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 75.685508][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 75.692051][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 75.696840][ T13] bond0 (unregistering): Released all slaves [ 75.798159][ T13] hsr_slave_0: left promiscuous mode [ 75.802654][ T13] hsr_slave_1: left promiscuous mode [ 75.804721][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 75.806908][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 75.809770][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 75.812611][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 75.823372][ T13] veth1_macvtap: left promiscuous mode [ 75.825110][ T13] veth0_macvtap: left promiscuous mode [ 75.827088][ T13] veth1_vlan: left promiscuous mode [ 75.828663][ T13] veth0_vlan: left promiscuous mode [ 76.096172][ T13] team0 (unregistering): Port device team_slave_1 removed [ 76.115973][ T13] team0 (unregistering): Port device team_slave_0 removed [ 76.520236][ T5947] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 76.526885][ T5947] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 76.532663][ T5947] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 76.537190][ T5947] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 76.598836][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.618126][ T5947] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.625810][ T1370] ieee802154 phy0 wpan0: encryption failed: -22 [ 76.627754][ T1370] ieee802154 phy1 wpan1: encryption failed: -22 [ 76.633929][ T191] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.636019][ T191] bridge0: port 1(bridge_slave_0) entered forwarding state [ 76.644304][ T191] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.646835][ T191] bridge0: port 2(bridge_slave_1) entered forwarding state [ 76.840645][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 76.873497][ T5947] veth0_vlan: entered promiscuous mode [ 76.878755][ T5947] veth1_vlan: entered promiscuous mode [ 76.895930][ T5947] veth0_macvtap: entered promiscuous mode [ 76.900037][ T5947] veth1_macvtap: entered promiscuous mode [ 76.912272][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.920307][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.929500][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.932858][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.936799][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.940454][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.987523][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.990354][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.013060][ T4523] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.015549][ T4523] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.045934][ T5985] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] SMP KASAN PTI [ 77.049930][ T5985] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] [ 77.052906][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) [ 77.056064][ T5985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 77.059694][ T5985] RIP: 0010:wg_xmit+0x355/0xf70 [ 77.061522][ T5985] Code: 00 fc ff df 80 3c 08 00 74 08 4c 89 ff e8 83 84 d9 fb 4d 8b 3f 49 83 c7 20 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ff e8 5d 84 d9 fb 4d 8b 3f 49 81 ff e0 38 [ 77.068628][ T5985] RSP: 0018:ffffc90003cc7060 EFLAGS: 00010202 [ 77.070900][ T5985] RAX: 0000000000000004 RBX: ffffc90003cc7ba0 RCX: dffffc0000000000 [ 77.073802][ T5985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 77.076724][ T5985] RBP: ffffc90003cc7190 R08: ffffffff8fced577 R09: 1ffffffff1f9daae [ 77.079496][ T5985] R10: dffffc0000000000 R11: fffffbfff1f9daaf R12: ffffc90003cc70c0 [ 77.081974][ T5985] R13: 1ffff1102ebe283b R14: ffff888175f14180 R15: 0000000000000020 [ 77.084534][ T5985] FS: 00005555734f8500(0000) GS:ffff88818e327000(0000) knlGS:0000000000000000 [ 77.087492][ T5985] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.089664][ T5985] CR2: 0000001b30663fff CR3: 00000001704ae000 CR4: 00000000000006f0 [ 77.092327][ T5985] Call Trace: [ 77.093491][ T5985] [ 77.094473][ T5985] ? __pfx_wg_xmit+0x10/0x10 [ 77.095992][ T5985] dev_hard_start_xmit+0x2cd/0x7f0 [ 77.097747][ T5985] __dev_queue_xmit+0x14dd/0x32a0 [ 77.099468][ T5985] ? __dev_queue_xmit+0x2a7/0x32a0 [ 77.101327][ T5985] ? __pfx___dev_queue_xmit+0x10/0x10 [ 77.103342][ T5985] ? rcu_is_watching+0x15/0xb0 [ 77.105032][ T5985] ? trace_kmem_cache_alloc+0x1f/0xb0 [ 77.106774][ T5985] ? kmem_cache_alloc_node_noprof+0x473/0x6f0 [ 77.108840][ T5985] ? skb_release_data+0x2b6/0x7c0 [ 77.110554][ T5985] ? pskb_expand_head+0xb44/0x1160 [ 77.112224][ T5985] __bpf_tx_skb+0x18e/0x260 [ 77.113848][ T5985] bpf_clone_redirect+0x313/0x4b0 [ 77.115511][ T5985] ? bpf_test_run+0x1d1/0x830 [ 77.117171][ T5985] bpf_prog_bd919e7baf24f63c+0x5f/0x68 [ 77.119036][ T5985] ? do_raw_spin_lock+0x12b/0x2f0 [ 77.120846][ T5985] ? lock_acquire+0x106/0x330 [ 77.122627][ T5985] ? ktime_get+0x45/0x200 [ 77.124256][ T5985] ? seqcount_lockdep_reader_access+0xa9/0x100 [ 77.126575][ T5985] ? kvm_clock_get_cycles+0x47/0x60 [ 77.128547][ T5985] ? ktime_get+0x1d2/0x200 [ 77.130049][ T5985] bpf_test_run+0x354/0x830 [ 77.131663][ T5985] ? __pfx_bpf_test_run+0x10/0x10 [ 77.133471][ T5985] ? bpf_prog_test_run_skb+0x12cf/0x1e00 [ 77.135447][ T5985] bpf_prog_test_run_skb+0x13b4/0x1e00 [ 77.137326][ T5985] ? __lock_acquire+0x6b5/0x2cf0 [ 77.139076][ T5985] ? futex_hash+0x40/0x2d0 [ 77.140700][ T5985] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 77.142838][ T5985] ? __pfx_dst_discard+0x10/0x10 [ 77.144666][ T5985] ? __pfx_dst_discard_out+0x10/0x10 [ 77.146618][ T5985] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 77.148759][ T5985] bpf_prog_test_run+0x2c7/0x340 [ 77.150320][ T5985] __sys_bpf+0x643/0x950 [ 77.151850][ T5985] ? __pfx___sys_bpf+0x10/0x10 [ 77.153568][ T5985] ? __pfx___se_sys_futex+0x10/0x10 [ 77.155416][ T5985] __x64_sys_bpf+0x7c/0x90 [ 77.156978][ T5985] do_syscall_64+0xe2/0xf80 [ 77.158563][ T5985] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.160738][ T5985] ? trace_irq_disable+0x37/0x100 [ 77.162598][ T5985] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.164772][ T5985] RIP: 0033:0x7fc57899acb9 [ 77.166467][ T5985] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 77.173013][ T5985] RSP: 002b:00007ffd806bfbf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 77.175799][ T5985] RAX: ffffffffffffffda RBX: 00007fc578c15fa0 RCX: 00007fc57899acb9 [ 77.178447][ T5985] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a [ 77.181102][ T5985] RBP: 00007fc578a08bf7 R08: 0000000000000000 R09: 0000000000000000 [ 77.183701][ T5985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 77.186404][ T5985] R13: 00007fc578c15fac R14: 00007fc578c15fa0 R15: 00007fc578c15fa0 [ 77.188991][ T5985] [ 77.190126][ T5985] Modules linked in: [ 77.191766][ T5985] ---[ end trace 0000000000000000 ]--- [ 77.193655][ T5985] RIP: 0010:wg_xmit+0x355/0xf70 [ 77.195441][ T5985] Code: 00 fc ff df 80 3c 08 00 74 08 4c 89 ff e8 83 84 d9 fb 4d 8b 3f 49 83 c7 20 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 ff e8 5d 84 d9 fb 4d 8b 3f 49 81 ff e0 38 [ 77.201886][ T5985] RSP: 0018:ffffc90003cc7060 EFLAGS: 00010202 [ 77.203933][ T5985] RAX: 0000000000000004 RBX: ffffc90003cc7ba0 RCX: dffffc0000000000 [ 77.206631][ T5985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 77.209233][ T5985] RBP: ffffc90003cc7190 R08: ffffffff8fced577 R09: 1ffffffff1f9daae [ 77.212130][ T5985] R10: dffffc0000000000 R11: fffffbfff1f9daaf R12: ffffc90003cc70c0 [ 77.214800][ T5985] R13: 1ffff1102ebe283b R14: ffff888175f14180 R15: 0000000000000020 [ 77.217549][ T5985] FS: 00005555734f8500(0000) GS:ffff88818e327000(0000) knlGS:0000000000000000 [ 77.220724][ T5985] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.223242][ T5985] CR2: 0000001b30663fff CR3: 00000001704ae000 CR4: 00000000000006f0 [ 77.226251][ T5985] Kernel panic - not syncing: Fatal exception in interrupt [ 77.229306][ T5985] Kernel Offset: disabled [ 77.230723][ T5985] Rebooting in 86400 seconds..