Warning: Permanently added '[localhost]:58489' (ED25519) to the list of known hosts. 2025/11/30 22:22:38 parsed 1 programs syzkaller login: [ 54.417667][ T5811] cgroup: Unknown subsys name 'net' [ 54.590900][ T5811] cgroup: Unknown subsys name 'cpuset' [ 54.597600][ T5811] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 56.092023][ T5811] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 58.459778][ T5822] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 59.299339][ T5847] chnl_net:caif_netlink_parms(): no params data found [ 59.356781][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.359363][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.361705][ T5847] bridge_slave_0: entered allmulticast mode [ 59.365629][ T5847] bridge_slave_0: entered promiscuous mode [ 59.370181][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.372504][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.375344][ T5847] bridge_slave_1: entered allmulticast mode [ 59.378075][ T5847] bridge_slave_1: entered promiscuous mode [ 59.400750][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.408366][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.424922][ T5847] team0: Port device team_slave_0 added [ 59.428234][ T5847] team0: Port device team_slave_1 added [ 59.442409][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.445157][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 59.453107][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.458156][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.460475][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 59.470305][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 59.496374][ T5847] hsr_slave_0: entered promiscuous mode [ 59.499012][ T5847] hsr_slave_1: entered promiscuous mode [ 59.600709][ T5847] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 59.607836][ T5847] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 59.613092][ T5847] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 59.618934][ T5847] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 59.640110][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.642382][ T5847] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.645592][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.647836][ T5847] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.682614][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.697050][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.701034][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.710932][ T5847] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.718536][ T35] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.720784][ T35] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.727229][ T35] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.729882][ T35] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.827886][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.853145][ T5847] veth0_vlan: entered promiscuous mode [ 59.861164][ T5847] veth1_vlan: entered promiscuous mode [ 59.877137][ T5847] veth0_macvtap: entered promiscuous mode [ 59.881332][ T5847] veth1_macvtap: entered promiscuous mode [ 59.891065][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 59.899160][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 59.907590][ T5680] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.910878][ T5680] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.915444][ T5680] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 59.918847][ T5680] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.001368][ T5854] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.051929][ T5854] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.108239][ T5854] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.191736][ T5854] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 60.532687][ T5892] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.538735][ T5892] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.541539][ T5892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.544782][ T5892] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.547316][ T5892] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 60.790546][ T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.793193][ T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.816774][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.819939][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/11/30 22:22:47 executed programs: 0 [ 61.684711][ T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.688418][ T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.691277][ T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.695196][ T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.698139][ T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.832339][ T5921] chnl_net:caif_netlink_parms(): no params data found [ 61.878870][ T5921] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.881267][ T5921] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.883591][ T5921] bridge_slave_0: entered allmulticast mode [ 61.889512][ T5921] bridge_slave_0: entered promiscuous mode [ 61.893150][ T5921] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.895680][ T5921] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.898150][ T5921] bridge_slave_1: entered allmulticast mode [ 61.901100][ T5921] bridge_slave_1: entered promiscuous mode [ 61.918535][ T5921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.924398][ T5921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.940623][ T5921] team0: Port device team_slave_0 added [ 61.944412][ T5921] team0: Port device team_slave_1 added [ 61.960097][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.962312][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 61.970911][ T5921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.976329][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.978433][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 61.987894][ T5921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.020438][ T5921] hsr_slave_0: entered promiscuous mode [ 62.022882][ T5921] hsr_slave_1: entered promiscuous mode [ 62.025159][ T5921] debugfs: 'hsr0' already exists in 'hsr' [ 62.027739][ T5921] Cannot create hsr debugfs directory [ 63.147728][ T5854] bridge_slave_1: left allmulticast mode [ 63.150138][ T5854] bridge_slave_1: left promiscuous mode [ 63.153019][ T5854] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.161636][ T5854] bridge_slave_0: left allmulticast mode [ 63.164848][ T5854] bridge_slave_0: left promiscuous mode [ 63.167157][ T5854] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.320901][ T5854] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 63.327157][ T5854] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 63.331959][ T5854] bond0 (unregistering): Released all slaves [ 63.411071][ T5854] hsr_slave_0: left promiscuous mode [ 63.413175][ T5854] hsr_slave_1: left promiscuous mode [ 63.415777][ T5854] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 63.418046][ T5854] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 63.424087][ T5854] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 63.429196][ T5854] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 63.443504][ T5854] veth1_macvtap: left promiscuous mode [ 63.447441][ T5854] veth0_macvtap: left promiscuous mode [ 63.449802][ T5854] veth1_vlan: left promiscuous mode [ 63.452070][ T5854] veth0_vlan: left promiscuous mode [ 63.714616][ T5892] Bluetooth: hci0: command tx timeout [ 63.723147][ T5854] team0 (unregistering): Port device team_slave_1 removed [ 63.738797][ T5854] team0 (unregistering): Port device team_slave_0 removed [ 64.120722][ T5921] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 64.135506][ T5921] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 64.143390][ T5921] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 64.148403][ T5921] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 64.206822][ T5921] 8021q: adding VLAN 0 to HW filter on device bond0 [ 64.218285][ T5921] 8021q: adding VLAN 0 to HW filter on device team0 [ 64.223485][ T951] bridge0: port 1(bridge_slave_0) entered blocking state [ 64.225762][ T951] bridge0: port 1(bridge_slave_0) entered forwarding state [ 64.235374][ T951] bridge0: port 2(bridge_slave_1) entered blocking state [ 64.237589][ T951] bridge0: port 2(bridge_slave_1) entered forwarding state [ 64.258481][ T5921] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 64.261659][ T5921] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 64.566386][ T5921] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 64.692113][ T5921] veth0_vlan: entered promiscuous mode [ 64.700726][ T5921] veth1_vlan: entered promiscuous mode [ 64.724818][ T5921] veth0_macvtap: entered promiscuous mode [ 64.731416][ T5921] veth1_macvtap: entered promiscuous mode [ 64.775886][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 64.785242][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 64.793360][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.797948][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.802187][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.806996][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 64.905358][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.908452][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.938276][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 64.941311][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 64.989230][ T5958] netlink: 'syz.0.17': attribute type 9 has an invalid length. [ 64.999377][ T5958] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN PTI [ 65.002899][ T5958] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 65.005341][ T5958] CPU: 1 UID: 0 PID: 5958 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) [ 65.008091][ T5958] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 65.011152][ T5958] RIP: 0010:cake_destroy+0x9f/0x100 [ 65.012740][ T5958] Code: 81 c3 98 02 00 00 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 bf 0f c8 f8 48 8b 1b 4c 8d 73 34 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 35 41 0f b6 2e 31 ff 89 ee e8 eb 4e 62 f8 [ 65.018488][ T5958] RSP: 0018:ffffc90003247298 EFLAGS: 00010207 [ 65.020334][ T5958] RAX: 0000000000000006 RBX: 0000000000000000 RCX: 13d577b5b867bd00 [ 65.022701][ T5958] RDX: 0000000000000000 RSI: ffffffff8bbf08c0 RDI: ffffffff8bbf0880 [ 65.025100][ T5958] RBP: ffffc90003247410 R08: ffffc9000324727f R09: 0000000000000000 [ 65.027487][ T5958] R10: ffffc90003247260 R11: fffff52000648e50 R12: ffffffff895db710 [ 65.029890][ T5958] R13: 00000000ffffffde R14: 0000000000000034 R15: dffffc0000000000 [ 65.032230][ T5958] FS: 000055555e5bf500(0000) GS:ffff8882a9f31000(0000) knlGS:0000000000000000 [ 65.034865][ T5958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.036777][ T5958] CR2: 000055555e5bf808 CR3: 00000001bb50a000 CR4: 00000000000006f0 [ 65.039199][ T5958] Call Trace: [ 65.040245][ T5958] [ 65.041154][ T5958] qdisc_create+0xaa3/0xea0 [ 65.042540][ T5958] tc_modify_qdisc+0x1547/0x2020 [ 65.044055][ T5958] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.045655][ T5958] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 65.047275][ T5958] rtnetlink_rcv_msg+0x77c/0xb70 [ 65.048782][ T5958] ? rtnetlink_rcv_msg+0x1ab/0xb70 [ 65.050356][ T5958] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.052010][ T5958] ? ref_tracker_free+0x63a/0x7d0 [ 65.053533][ T5958] ? __asan_memcpy+0x40/0x70 [ 65.054938][ T5958] ? __pfx_ref_tracker_free+0x10/0x10 [ 65.056567][ T5958] ? __skb_clone+0x63/0x7a0 [ 65.057952][ T5958] netlink_rcv_skb+0x208/0x470 [ 65.059438][ T5958] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 65.061089][ T5958] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 65.062677][ T5958] ? netlink_deliver_tap+0x2e/0x1b0 [ 65.064269][ T5958] netlink_unicast+0x82f/0x9e0 [ 65.065735][ T5958] ? __pfx_netlink_unicast+0x10/0x10 [ 65.067345][ T5958] ? netlink_sendmsg+0x642/0xb30 [ 65.068857][ T5958] ? skb_put+0x11b/0x210 [ 65.070172][ T5958] netlink_sendmsg+0x805/0xb30 [ 65.071637][ T5958] ? __pfx_netlink_sendmsg+0x10/0x10 [ 65.073252][ T5958] ? aa_sock_msg_perm+0xf1/0x1d0 [ 65.074977][ T5958] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 65.076699][ T5958] ? __pfx_netlink_sendmsg+0x10/0x10 [ 65.078642][ T5958] __sock_sendmsg+0x21c/0x270 [ 65.080434][ T5958] ____sys_sendmsg+0x505/0x830 [ 65.082150][ T5958] ? __pfx_____sys_sendmsg+0x10/0x10 [ 65.084251][ T5958] ? import_iovec+0x74/0xa0 [ 65.086090][ T5958] ___sys_sendmsg+0x21f/0x2a0 [ 65.087989][ T5958] ? __pfx____sys_sendmsg+0x10/0x10 [ 65.090106][ T5958] ? futex_hash_put+0x4b/0x60 [ 65.092007][ T5958] ? futex_wake+0x4b2/0x560 [ 65.093781][ T5958] ? put_user_ifreq+0x7b/0xd0 [ 65.095694][ T5958] __x64_sys_sendmsg+0x19b/0x260 [ 65.097624][ T5958] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 65.099757][ T5958] ? do_syscall_64+0xbe/0xfa0 [ 65.101531][ T5958] do_syscall_64+0xfa/0xfa0 [ 65.103214][ T5958] ? lockdep_hardirqs_on+0x9c/0x150 [ 65.105159][ T5958] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.107511][ T5958] ? exc_page_fault+0xab/0x100 [ 65.109361][ T5958] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 65.111565][ T5958] RIP: 0033:0x7ff769b8f7c9 [ 65.112894][ T5958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 65.119595][ T5958] RSP: 002b:00007ffd59035098 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 65.122643][ T5958] RAX: ffffffffffffffda RBX: 00007ff769de5fa0 RCX: 00007ff769b8f7c9 [ 65.125558][ T5958] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 65.128540][ T5958] RBP: 00007ff769bf297f R08: 0000000000000000 R09: 0000000000000000 [ 65.131519][ T5958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 65.134510][ T5958] R13: 00007ff769de5fa0 R14: 00007ff769de5fa0 R15: 0000000000000003 [ 65.137501][ T5958] [ 65.138680][ T5958] Modules linked in: [ 65.140896][ T5958] ---[ end trace 0000000000000000 ]--- [ 65.145572][ T5958] RIP: 0010:cake_destroy+0x9f/0x100 [ 65.147531][ T5958] Code: 81 c3 98 02 00 00 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 bf 0f c8 f8 48 8b 1b 4c 8d 73 34 4c 89 f0 48 c1 e8 03 <42> 0f b6 04 38 84 c0 75 35 41 0f b6 2e 31 ff 89 ee e8 eb 4e 62 f8 [ 65.155209][ T5958] RSP: 0018:ffffc90003247298 EFLAGS: 00010207 [ 65.157437][ T5958] RAX: 0000000000000006 RBX: 0000000000000000 RCX: 13d577b5b867bd00 [ 65.160436][ T5958] RDX: 0000000000000000 RSI: ffffffff8bbf08c0 RDI: ffffffff8bbf0880 [ 65.163438][ T5958] RBP: ffffc90003247410 R08: ffffc9000324727f R09: 0000000000000000 [ 65.166585][ T5958] R10: ffffc90003247260 R11: fffff52000648e50 R12: ffffffff895db710 [ 65.169544][ T5958] R13: 00000000ffffffde R14: 0000000000000034 R15: dffffc0000000000 [ 65.172561][ T5958] FS: 000055555e5bf500(0000) GS:ffff8882a9f31000(0000) knlGS:0000000000000000 [ 65.176028][ T5958] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 65.178313][ T5958] CR2: 000055555e5bf808 CR3: 00000001bb50a000 CR4: 00000000000006f0 [ 65.180917][ T5958] Kernel panic - not syncing: Fatal exception [ 65.183542][ T5958] Kernel Offset: disabled [ 65.184913][ T5958] Rebooting in 86400 seconds..