Warning: Permanently added '10.128.1.176' (ECDSA) to the list of known hosts.
[   54.469519][ T3539] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   54.477512][ T3539] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   54.485512][ T3539] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   54.493199][ T3539] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   54.500902][ T3539] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   54.508341][ T3539] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   54.597925][ T3538] chnl_net:caif_netlink_parms(): no params data found
[   54.638340][ T3538] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.645964][ T3538] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.653732][ T3538] device bridge_slave_0 entered promiscuous mode
[   54.662811][ T3538] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.670495][ T3538] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.678321][ T3538] device bridge_slave_1 entered promiscuous mode
[   54.699427][ T3538] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.710321][ T3538] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.731120][ T3538] team0: Port device team_slave_0 added
[   54.738915][ T3538] team0: Port device team_slave_1 added
[   54.757753][ T3538] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.764987][ T3538] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.791522][ T3538] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.804589][ T3538] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.811622][ T3538] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   54.838391][ T3538] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.867273][ T3538] device hsr_slave_0 entered promiscuous mode
[   54.874614][ T3538] device hsr_slave_1 entered promiscuous mode
[   54.960426][ T3538] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   54.970593][ T3538] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   54.979877][ T3538] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   54.989792][ T3538] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.009754][ T3538] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.017115][ T3538] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.025431][ T3538] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.032514][ T3538] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.079041][ T3538] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.090753][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.100728][  T937] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.109855][  T937] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.119728][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   55.132646][ T3538] 8021q: adding VLAN 0 to HW filter on device team0
[   55.142755][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.151520][  T937] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.158751][  T937] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.175174][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.183550][  T937] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.190748][  T937] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.209778][ T3538] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   55.222685][ T3538] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   55.237841][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   55.246978][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   55.256233][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.265606][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.274041][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   55.282691][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   55.302979][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   55.310686][ T3547] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   55.322667][ T3538] 8021q: adding VLAN 0 to HW filter on device batadv0
[   55.339169][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.357120][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.366394][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.375536][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.385995][ T3538] device veth0_vlan entered promiscuous mode
[   55.396488][ T3538] device veth1_vlan entered promiscuous mode
[   55.416277][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   55.425667][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   55.434485][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   55.444687][ T3538] device veth0_macvtap entered promiscuous mode
[   55.453265][ T3538] device veth1_macvtap entered promiscuous mode
[   55.469949][ T3538] batman_adv: batadv0: Interface activated: batadv_slave_0
[   55.477684][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   55.488244][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   55.499454][ T3538] batman_adv: batadv0: Interface activated: batadv_slave_1
[   55.508691][  T937] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   55.520105][ T3538] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.530252][ T3538] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.539306][ T3538] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.548651][ T3538] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.603466][  T102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.621027][  T102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.631504][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   55.640405][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
executing program
[   55.640644][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   55.663497][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   55.687388][ T3538] loop0: detected capacity change from 0 to 2048
[   55.699630][ T3538] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   55.841526][ T3538] ==================================================================
[   55.849642][ T3538] BUG: KASAN: use-after-free in udf_close_lvid+0x6a4/0x9a0
[   55.856939][ T3538] Write of size 1 at addr ffff88815feb3068 by task syz-executor260/3538
[   55.865337][ T3538] 
[   55.867644][ T3538] CPU: 0 PID: 3538 Comm: syz-executor260 Not tainted 6.1.30-syzkaller #0
[   55.876035][ T3538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   55.886084][ T3538] Call Trace:
[   55.889365][ T3538]  <TASK>
[   55.892293][ T3538]  dump_stack_lvl+0x1e3/0x2cb
[   55.896971][ T3538]  ? irq_work_queue+0xc6/0x150
[   55.901737][ T3538]  ? nf_tcp_handle_invalid+0x642/0x642
[   55.907187][ T3538]  ? panic+0x75d/0x75d
[   55.911243][ T3538]  ? _printk+0xd1/0x111
[   55.915386][ T3538]  ? _raw_spin_lock_irqsave+0xac/0x120
[   55.920927][ T3538]  print_report+0x15f/0x4f0
[   55.925526][ T3538]  ? hook_sb_delete+0x728/0xb30
[   55.930499][ T3538]  ? __virt_addr_valid+0x22b/0x2e0
[   55.935626][ T3538]  ? __phys_addr+0xb6/0x170
[   55.940219][ T3538]  ? udf_close_lvid+0x6a4/0x9a0
[   55.945071][ T3538]  kasan_report+0x136/0x160
[   55.949628][ T3538]  ? udf_close_lvid+0x6a4/0x9a0
[   55.954584][ T3538]  udf_close_lvid+0x6a4/0x9a0
[   55.959269][ T3538]  ? udf_open_lvid+0x5a0/0x5a0
[   55.964029][ T3538]  ? iput+0x3f7/0x980
[   55.968009][ T3538]  ? clear_inode+0x150/0x150
[   55.972590][ T3538]  ? module_put+0x15a/0x350
[   55.977083][ T3538]  udf_put_super+0xc9/0x160
[   55.981575][ T3538]  ? udf_free_in_core_inode+0x20/0x20
[   55.986935][ T3538]  generic_shutdown_super+0x130/0x340
[   55.992298][ T3538]  kill_block_super+0x7a/0xe0
[   55.996975][ T3538]  deactivate_locked_super+0xa0/0x110
[   56.002334][ T3538]  cleanup_mnt+0x490/0x520
[   56.006743][ T3538]  ? lockdep_hardirqs_on+0x94/0x130
[   56.012018][ T3538]  task_work_run+0x246/0x300
[   56.016597][ T3538]  ? kasan_quarantine_put+0xd4/0x220
[   56.021870][ T3538]  ? task_work_cancel+0x2b0/0x2b0
[   56.026890][ T3538]  ? kmem_cache_free+0x292/0x510
[   56.031813][ T3538]  ? do_exit+0x6f6/0x2300
[   56.036219][ T3538]  do_exit+0x6fb/0x2300
[   56.040387][ T3538]  ? do_group_exit+0x1f2/0x2b0
[   56.045166][ T3538]  ? put_task_struct+0x80/0x80
[   56.050025][ T3538]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   56.056039][ T3538]  ? print_irqtrace_events+0x210/0x210
[   56.061489][ T3538]  ? _raw_spin_unlock_irq+0x1f/0x40
[   56.066701][ T3538]  ? lockdep_hardirqs_on+0x94/0x130
[   56.071916][ T3538]  do_group_exit+0x202/0x2b0
[   56.076522][ T3538]  __x64_sys_exit_group+0x3b/0x40
[   56.081548][ T3538]  do_syscall_64+0x3d/0xb0
[   56.085991][ T3538]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.091902][ T3538] RIP: 0033:0x7f6819054c29
[   56.096302][ T3538] Code: Unable to access opcode bytes at 0x7f6819054bff.
[   56.103299][ T3538] RSP: 002b:00007ffd7e321b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   56.111701][ T3538] RAX: ffffffffffffffda RBX: 00007f68190f0470 RCX: 00007f6819054c29
[   56.120181][ T3538] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   56.128137][ T3538] RBP: 0000000000000001 R08: ffffffffffffffb8 R09: 0000000000000031
[   56.137831][ T3538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f68190f0470
[   56.145836][ T3538] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   56.153798][ T3538]  </TASK>
[   56.156809][ T3538] 
[   56.159121][ T3538] The buggy address belongs to the physical page:
[   56.165517][ T3538] page:ffffea00057facc0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x15feb3
[   56.175736][ T3538] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[   56.182919][ T3538] raw: 057ff00000000000 ffffea00057facc8 ffffea00057facc8 0000000000000000
[   56.191485][ T3538] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   56.200054][ T3538] page dumped because: kasan: bad access detected
[   56.206451][ T3538] page_owner info is not present (never set?)
[   56.212490][ T3538] 
[   56.214799][ T3538] Memory state around the buggy address:
[   56.220412][ T3538]  ffff88815feb2f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   56.228716][ T3538]  ffff88815feb2f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   56.236762][ T3538] >ffff88815feb3000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   56.244893][ T3538]                                                           ^
[   56.252325][ T3538]  ffff88815feb3080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   56.260365][ T3538]  ffff88815feb3100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   56.268405][ T3538] ==================================================================
[   56.288761][ T3538] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   56.296071][ T3538] CPU: 1 PID: 3538 Comm: syz-executor260 Not tainted 6.1.30-syzkaller #0
[   56.304661][ T3538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   56.314719][ T3538] Call Trace:
[   56.317987][ T3538]  <TASK>
[   56.320905][ T3538]  dump_stack_lvl+0x1e3/0x2cb
[   56.326035][ T3538]  ? nf_tcp_handle_invalid+0x642/0x642
[   56.331501][ T3538]  ? panic+0x75d/0x75d
[   56.335566][ T3538]  ? preempt_schedule_common+0xa6/0xd0
[   56.341029][ T3538]  ? vscnprintf+0x59/0x80
[   56.345442][ T3538]  panic+0x318/0x75d
[   56.349359][ T3538]  ? check_panic_on_warn+0x1d/0xa0
[   56.354730][ T3538]  ? memcpy_page_flushcache+0xfc/0xfc
[   56.360094][ T3538]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   56.366060][ T3538]  ? _raw_spin_unlock+0x40/0x40
[   56.370894][ T3538]  ? print_report+0x4a3/0x4f0
[   56.375572][ T3538]  check_panic_on_warn+0x7e/0xa0
[   56.380514][ T3538]  ? udf_close_lvid+0x6a4/0x9a0
[   56.385451][ T3538]  end_report+0x66/0x110
[   56.389793][ T3538]  kasan_report+0x143/0x160
[   56.394373][ T3538]  ? udf_close_lvid+0x6a4/0x9a0
[   56.399230][ T3538]  udf_close_lvid+0x6a4/0x9a0
[   56.403899][ T3538]  ? udf_open_lvid+0x5a0/0x5a0
[   56.408648][ T3538]  ? iput+0x3f7/0x980
[   56.412704][ T3538]  ? clear_inode+0x150/0x150
[   56.417281][ T3538]  ? module_put+0x15a/0x350
[   56.421776][ T3538]  udf_put_super+0xc9/0x160
[   56.426267][ T3538]  ? udf_free_in_core_inode+0x20/0x20
[   56.431895][ T3538]  generic_shutdown_super+0x130/0x340
[   56.437253][ T3538]  kill_block_super+0x7a/0xe0
[   56.441995][ T3538]  deactivate_locked_super+0xa0/0x110
[   56.447353][ T3538]  cleanup_mnt+0x490/0x520
[   56.451760][ T3538]  ? lockdep_hardirqs_on+0x94/0x130
[   56.456956][ T3538]  task_work_run+0x246/0x300
[   56.461536][ T3538]  ? kasan_quarantine_put+0xd4/0x220
[   56.466807][ T3538]  ? task_work_cancel+0x2b0/0x2b0
[   56.471816][ T3538]  ? kmem_cache_free+0x292/0x510
[   56.476740][ T3538]  ? do_exit+0x6f6/0x2300
[   56.481059][ T3538]  do_exit+0x6fb/0x2300
[   56.485208][ T3538]  ? do_group_exit+0x1f2/0x2b0
[   56.489961][ T3538]  ? put_task_struct+0x80/0x80
[   56.494885][ T3538]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   56.501460][ T3538]  ? print_irqtrace_events+0x210/0x210
[   56.506914][ T3538]  ? _raw_spin_unlock_irq+0x1f/0x40
[   56.512184][ T3538]  ? lockdep_hardirqs_on+0x94/0x130
[   56.517400][ T3538]  do_group_exit+0x202/0x2b0
[   56.522000][ T3538]  __x64_sys_exit_group+0x3b/0x40
[   56.527195][ T3538]  do_syscall_64+0x3d/0xb0
[   56.531629][ T3538]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.537524][ T3538] RIP: 0033:0x7f6819054c29
[   56.542044][ T3538] Code: Unable to access opcode bytes at 0x7f6819054bff.
[   56.549048][ T3538] RSP: 002b:00007ffd7e321b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   56.557455][ T3538] RAX: ffffffffffffffda RBX: 00007f68190f0470 RCX: 00007f6819054c29
[   56.565478][ T3538] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001
[   56.573441][ T3538] RBP: 0000000000000001 R08: ffffffffffffffb8 R09: 0000000000000031
[   56.581399][ T3538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f68190f0470
[   56.589359][ T3538] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[   56.597413][ T3538]  </TASK>
[   56.600755][ T3538] Kernel Offset: disabled
[   56.605154][ T3538] Rebooting in 86400 seconds..