Warning: Permanently added '10.128.1.125' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
[   66.274910][ T5020] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   66.293661][ T5026] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.301151][ T5026] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.308620][ T5026] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.316661][ T5026] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.324161][ T5026] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   66.331356][ T5026] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.443621][ T5024] chnl_net:caif_netlink_parms(): no params data found
[   66.503389][ T5024] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.510681][ T5024] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.517930][ T5024] bridge_slave_0: entered allmulticast mode
[   66.524781][ T5024] bridge_slave_0: entered promiscuous mode
[   66.532867][ T5024] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.540070][ T5024] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.547497][ T5024] bridge_slave_1: entered allmulticast mode
[   66.555625][ T5024] bridge_slave_1: entered promiscuous mode
[   66.582449][ T5024] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.593846][ T5024] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.622522][ T5024] team0: Port device team_slave_0 added
[   66.630192][ T5024] team0: Port device team_slave_1 added
[   66.654382][ T5024] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.661397][ T5024] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.687685][ T5024] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.699617][ T5024] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.706664][ T5024] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.732862][ T5024] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.771498][ T5024] hsr_slave_0: entered promiscuous mode
[   66.778126][ T5024] hsr_slave_1: entered promiscuous mode
[   66.893792][ T5024] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   66.903765][ T5024] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   66.913968][ T5024] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   66.923936][ T5024] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   66.946820][ T5024] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.953942][ T5024] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.961464][ T5024] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.968652][ T5024] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.023410][ T5024] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.040531][ T4442] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.049159][ T4442] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.062508][ T5024] 8021q: adding VLAN 0 to HW filter on device team0
[   67.074224][  T780] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.081387][  T780] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.098088][   T23] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.105244][   T23] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.159113][ T5024] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.195736][ T5024] veth0_vlan: entered promiscuous mode
[   67.208236][ T5024] veth1_vlan: entered promiscuous mode
[   67.233202][ T5024] veth0_macvtap: entered promiscuous mode
[   67.243447][ T5024] veth1_macvtap: entered promiscuous mode
[   67.261306][ T5024] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.274610][ T5024] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.286125][ T5024] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.294894][ T5024] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.304997][ T5024] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.314425][ T5024] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.365667][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.379515][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.401294][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
[   67.409616][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.422398][ T5024] syz-executor260[5024]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   67.445591][ T5024] loop0: detected capacity change from 0 to 2048
[   67.457125][ T5024] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   67.595304][ T5024] ==================================================================
[   67.603447][ T5024] BUG: KASAN: use-after-free in udf_close_lvid+0x6a8/0x9a0
[   67.610685][ T5024] Write of size 1 at addr ffff8880b2446068 by task syz-executor260/5024
[   67.619018][ T5024] 
[   67.621354][ T5024] CPU: 0 PID: 5024 Comm: syz-executor260 Not tainted 6.6.0-rc1-syzkaller-00115-g9fdfb15a3dbf #0
[   67.631781][ T5024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   67.641852][ T5024] Call Trace:
[   67.645137][ T5024]  <TASK>
[   67.648074][ T5024]  dump_stack_lvl+0x1e7/0x2d0
[   67.652765][ T5024]  ? irq_work_queue+0xca/0x150
[   67.657540][ T5024]  ? nf_tcp_handle_invalid+0x650/0x650
[   67.663005][ T5024]  ? panic+0x770/0x770
[   67.667075][ T5024]  ? _printk+0xd5/0x120
[   67.671237][ T5024]  print_report+0x163/0x540
[   67.675749][ T5024]  ? __virt_addr_valid+0x22f/0x2e0
[   67.680873][ T5024]  ? __phys_addr+0xba/0x170
[   67.685404][ T5024]  ? udf_close_lvid+0x6a8/0x9a0
[   67.690266][ T5024]  kasan_report+0x175/0x1b0
[   67.694792][ T5024]  ? udf_close_lvid+0x6a8/0x9a0
[   67.699665][ T5024]  udf_close_lvid+0x6a8/0x9a0
[   67.704356][ T5024]  ? udf_open_lvid+0x5b0/0x5b0
[   67.709128][ T5024]  ? iput+0x37e/0x8f0
[   67.713199][ T5024]  ? clear_inode+0x150/0x150
[   67.717795][ T5024]  ? module_put+0x136/0x2a0
[   67.722310][ T5024]  udf_put_super+0xcd/0x160
[   67.726823][ T5024]  ? udf_free_in_core_inode+0x30/0x30
[   67.732228][ T5024]  generic_shutdown_super+0x13a/0x2c0
[   67.737605][ T5024]  kill_block_super+0x41/0x70
[   67.742297][ T5024]  deactivate_locked_super+0xa4/0x110
[   67.747682][ T5024]  cleanup_mnt+0x426/0x4c0
[   67.752134][ T5024]  task_work_run+0x24a/0x300
[   67.756736][ T5024]  ? rcu_is_watching+0x15/0xb0
[   67.761509][ T5024]  ? task_work_cancel+0x2b0/0x2b0
[   67.766635][ T5024]  ? kmem_cache_free+0x292/0x500
[   67.771583][ T5024]  ? do_exit+0x68a/0x2290
[   67.775941][ T5024]  do_exit+0x68f/0x2290
[   67.780129][ T5024]  ? __rwlock_init+0x150/0x150
[   67.784897][ T5024]  ? put_task_struct+0xc0/0xc0
[   67.789676][ T5024]  ? _raw_spin_lock_irq+0xdf/0x120
[   67.794808][ T5024]  ? print_irqtrace_events+0x220/0x220
[   67.800299][ T5024]  ? rcu_is_watching+0x15/0xb0
[   67.805070][ T5024]  do_group_exit+0x206/0x2c0
[   67.809691][ T5024]  __x64_sys_exit_group+0x3f/0x40
[   67.814753][ T5024]  do_syscall_64+0x41/0xc0
[   67.819204][ T5024]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   67.825106][ T5024] RIP: 0033:0x7fba760598b9
[   67.829525][ T5024] Code: Unable to access opcode bytes at 0x7fba7605988f.
[   67.836542][ T5024] RSP: 002b:00007ffcf1ea95f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   67.844968][ T5024] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fba760598b9
[   67.852946][ T5024] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   67.860919][ T5024] RBP: 00007fba760f23b0 R08: ffffffffffffffb0 R09: 0000000000000000
[   67.869154][ T5024] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fba760f23b0
[   67.877130][ T5024] R13: 0000000000000000 R14: 00007fba760f51e0 R15: 00007fba7601c5a0
[   67.885112][ T5024]  </TASK>
[   67.888134][ T5024] 
[   67.890455][ T5024] The buggy address belongs to the physical page:
[   67.896865][ T5024] page:ffffea0002c91180 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xb2446
[   67.907019][ T5024] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   67.914133][ T5024] page_type: 0xffffffff()
[   67.918467][ T5024] raw: 00fff00000000000 ffffea0002c91188 ffffea0002c91188 0000000000000000
[   67.927071][ T5024] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   67.935656][ T5024] page dumped because: kasan: bad access detected
[   67.942095][ T5024] page_owner info is not present (never set?)
[   67.948162][ T5024] 
[   67.950486][ T5024] Memory state around the buggy address:
[   67.956139][ T5024]  ffff8880b2445f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   67.964302][ T5024]  ffff8880b2445f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   67.972363][ T5024] >ffff8880b2446000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   67.980419][ T5024]                                                           ^
[   67.987905][ T5024]  ffff8880b2446080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   67.995967][ T5024]  ffff8880b2446100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   68.004030][ T5024] ==================================================================
[   68.026730][ T5024] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   68.033974][ T5024] CPU: 1 PID: 5024 Comm: syz-executor260 Not tainted 6.6.0-rc1-syzkaller-00115-g9fdfb15a3dbf #0
[   68.044393][ T5024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   68.054471][ T5024] Call Trace:
[   68.057760][ T5024]  <TASK>
[   68.060695][ T5024]  dump_stack_lvl+0x1e7/0x2d0
[   68.065387][ T5024]  ? nf_tcp_handle_invalid+0x650/0x650
[   68.071028][ T5024]  ? panic+0x770/0x770
[   68.075102][ T5024]  ? preempt_schedule_common+0x83/0xc0
[   68.080575][ T5024]  ? vscnprintf+0x5d/0x80
[   68.084910][ T5024]  panic+0x30f/0x770
[   68.088811][ T5024]  ? check_panic_on_warn+0x21/0xa0
[   68.093935][ T5024]  ? __memcpy_flushcache+0x2b0/0x2b0
[   68.099227][ T5024]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   68.105230][ T5024]  ? _raw_spin_unlock+0x40/0x40
[   68.110087][ T5024]  ? print_report+0x4fb/0x540
[   68.114772][ T5024]  check_panic_on_warn+0x82/0xa0
[   68.119718][ T5024]  ? udf_close_lvid+0x6a8/0x9a0
[   68.124576][ T5024]  end_report+0x6e/0x130
[   68.128822][ T5024]  kasan_report+0x186/0x1b0
[   68.133370][ T5024]  ? udf_close_lvid+0x6a8/0x9a0
[   68.138257][ T5024]  udf_close_lvid+0x6a8/0x9a0
[   68.142976][ T5024]  ? udf_open_lvid+0x5b0/0x5b0
[   68.147752][ T5024]  ? iput+0x37e/0x8f0
[   68.151745][ T5024]  ? clear_inode+0x150/0x150
[   68.156341][ T5024]  ? module_put+0x136/0x2a0
[   68.160853][ T5024]  udf_put_super+0xcd/0x160
[   68.165382][ T5024]  ? udf_free_in_core_inode+0x30/0x30
[   68.170789][ T5024]  generic_shutdown_super+0x13a/0x2c0
[   68.176185][ T5024]  kill_block_super+0x41/0x70
[   68.180877][ T5024]  deactivate_locked_super+0xa4/0x110
[   68.186273][ T5024]  cleanup_mnt+0x426/0x4c0
[   68.190716][ T5024]  task_work_run+0x24a/0x300
[   68.195330][ T5024]  ? rcu_is_watching+0x15/0xb0
[   68.200099][ T5024]  ? task_work_cancel+0x2b0/0x2b0
[   68.205137][ T5024]  ? kmem_cache_free+0x292/0x500
[   68.210083][ T5024]  ? do_exit+0x68a/0x2290
[   68.214518][ T5024]  do_exit+0x68f/0x2290
[   68.218690][ T5024]  ? __rwlock_init+0x150/0x150
[   68.223463][ T5024]  ? put_task_struct+0xc0/0xc0
[   68.228251][ T5024]  ? _raw_spin_lock_irq+0xdf/0x120
[   68.233401][ T5024]  ? print_irqtrace_events+0x220/0x220
[   68.238922][ T5024]  ? rcu_is_watching+0x15/0xb0
[   68.243704][ T5024]  do_group_exit+0x206/0x2c0
[   68.248318][ T5024]  __x64_sys_exit_group+0x3f/0x40
[   68.253403][ T5024]  do_syscall_64+0x41/0xc0
[   68.257845][ T5024]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.263777][ T5024] RIP: 0033:0x7fba760598b9
[   68.268206][ T5024] Code: Unable to access opcode bytes at 0x7fba7605988f.
[   68.275227][ T5024] RSP: 002b:00007ffcf1ea95f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   68.283657][ T5024] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fba760598b9
[   68.291662][ T5024] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   68.299635][ T5024] RBP: 00007fba760f23b0 R08: ffffffffffffffb0 R09: 0000000000000000
[   68.307628][ T5024] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fba760f23b0
[   68.315626][ T5024] R13: 0000000000000000 R14: 00007fba760f51e0 R15: 00007fba7601c5a0
[   68.323612][ T5024]  </TASK>
[   68.326971][ T5024] Kernel Offset: disabled
[   68.331416][ T5024] Rebooting in 86400 seconds..