Warning: Permanently added '10.128.1.115' (ED25519) to the list of known hosts. 2025/11/25 11:33:58 parsed 1 programs [ 177.932174][ T5802] cgroup: Unknown subsys name 'net' [ 178.081982][ T5802] cgroup: Unknown subsys name 'cpuset' [ 178.095452][ T5802] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 183.569156][ T5802] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 188.091604][ T5815] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 190.902368][ T5844] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 190.911622][ T5844] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 190.920625][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 190.934663][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 190.945363][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 194.706792][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 194.715085][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 194.770763][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 194.779340][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 195.682941][ T5888] chnl_net:caif_netlink_parms(): no params data found [ 196.047513][ T5888] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.055129][ T5888] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.064587][ T5888] bridge_slave_0: entered allmulticast mode [ 196.073106][ T5888] bridge_slave_0: entered promiscuous mode [ 196.085358][ T5888] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.093118][ T5888] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.100476][ T5888] bridge_slave_1: entered allmulticast mode [ 196.109107][ T5888] bridge_slave_1: entered promiscuous mode [ 196.169505][ T5888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 196.187848][ T5888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 196.249052][ T5888] team0: Port device team_slave_0 added [ 196.262497][ T5888] team0: Port device team_slave_1 added [ 196.319536][ T5888] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 196.326817][ T5888] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 196.354153][ T5888] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 196.368725][ T5888] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.376027][ T5888] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 196.403836][ T5888] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.490571][ T5888] hsr_slave_0: entered promiscuous mode [ 196.500244][ T5888] hsr_slave_1: entered promiscuous mode [ 196.793600][ T5888] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 196.810672][ T5888] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 196.827432][ T5888] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 196.844599][ T5888] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 197.063618][ T5888] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.104213][ T5888] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.127907][ T141] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.135537][ T141] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.163269][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.170828][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.577551][ T5888] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 197.696498][ T5888] veth0_vlan: entered promiscuous mode [ 197.721215][ T5888] veth1_vlan: entered promiscuous mode [ 197.799101][ T5888] veth0_macvtap: entered promiscuous mode [ 197.817238][ T5888] veth1_macvtap: entered promiscuous mode [ 197.859302][ T5888] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 197.895671][ T5888] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 197.924277][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.933453][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.945933][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.955082][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.239632][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/11/25 11:34:33 executed programs: 0 [ 200.008804][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 200.019472][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 200.030154][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 200.041908][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 200.051708][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 200.365251][ T5926] chnl_net:caif_netlink_parms(): no params data found [ 200.583096][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.661790][ T5926] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.669112][ T5926] bridge0: port 1(bridge_slave_0) entered disabled state [ 200.678972][ T5926] bridge_slave_0: entered allmulticast mode [ 200.687416][ T5926] bridge_slave_0: entered promiscuous mode [ 200.699314][ T5926] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.706895][ T5926] bridge0: port 2(bridge_slave_1) entered disabled state [ 200.716045][ T5926] bridge_slave_1: entered allmulticast mode [ 200.724366][ T5926] bridge_slave_1: entered promiscuous mode [ 200.787718][ T5926] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 200.806196][ T5926] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 200.870324][ T5926] team0: Port device team_slave_0 added [ 200.885267][ T5926] team0: Port device team_slave_1 added [ 200.943009][ T5926] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 200.950124][ T5926] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 200.977814][ T5926] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 200.993784][ T5926] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 201.000870][ T5926] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 201.028743][ T5926] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 201.113871][ T5926] hsr_slave_0: entered promiscuous mode [ 201.124302][ T5926] hsr_slave_1: entered promiscuous mode [ 201.132510][ T5926] debugfs: 'hsr0' already exists in 'hsr' [ 201.138438][ T5926] Cannot create hsr debugfs directory [ 201.163885][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.265081][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 201.574988][ T12] bridge_slave_1: left allmulticast mode [ 201.580829][ T12] bridge_slave_1: left promiscuous mode [ 201.587594][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.603875][ T12] bridge_slave_0: left allmulticast mode [ 201.609797][ T12] bridge_slave_0: left promiscuous mode [ 201.616616][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.867031][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 201.883251][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 201.897996][ T12] bond0 (unregistering): Released all slaves [ 202.067129][ T12] hsr_slave_0: left promiscuous mode [ 202.075348][ T12] hsr_slave_1: left promiscuous mode [ 202.083257][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 202.090914][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 202.103092][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 202.110856][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 202.123145][ T5846] Bluetooth: hci0: command tx timeout [ 202.138619][ T12] veth1_macvtap: left promiscuous mode [ 202.144529][ T12] veth0_macvtap: left promiscuous mode [ 202.150387][ T12] veth1_vlan: left promiscuous mode [ 202.157399][ T12] veth0_vlan: left promiscuous mode [ 202.779014][ T12] team0 (unregistering): Port device team_slave_1 removed [ 202.837727][ T12] team0 (unregistering): Port device team_slave_0 removed [ 203.577979][ T5926] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 203.604280][ T5926] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 203.628872][ T5926] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 203.671390][ T5926] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 204.016721][ T5926] 8021q: adding VLAN 0 to HW filter on device bond0 [ 204.066767][ T5926] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.089960][ T4998] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.097507][ T4998] bridge0: port 1(bridge_slave_0) entered forwarding state [ 204.131785][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 204.139253][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 204.195473][ T5846] Bluetooth: hci0: command tx timeout [ 204.653572][ T5926] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 204.762955][ T5926] veth0_vlan: entered promiscuous mode [ 204.788344][ T5926] veth1_vlan: entered promiscuous mode [ 204.865444][ T5926] veth0_macvtap: entered promiscuous mode [ 204.883031][ T5926] veth1_macvtap: entered promiscuous mode [ 204.923559][ T5926] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 204.952659][ T5926] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 204.985470][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 204.995740][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.006050][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.023751][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 206.125091][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 206.133961][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 206.189153][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 206.198017][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/11/25 11:34:39 executed programs: 2 [ 206.271451][ T5846] Bluetooth: hci0: command tx timeout [ 207.034714][ T6011] ===================================================== [ 207.042092][ T6011] BUG: KMSAN: kernel-infoleak-after-free in _copy_to_user+0xcc/0x120 [ 207.050260][ T6011] _copy_to_user+0xcc/0x120 [ 207.058920][ T6011] copy_siginfo_to_user+0x3f/0x140 [ 207.064315][ T6011] x64_setup_rt_frame+0x1392/0x2590 [ 207.069667][ T6011] arch_do_signal_or_restart+0x5db/0xb90 [ 207.076799][ T6011] exit_to_user_mode_loop+0xe7/0x370 [ 207.082371][ T6011] do_syscall_64+0x1e3/0xfa0 [ 207.087059][ T6011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.093181][ T6011] [ 207.095558][ T6011] Uninit was stored to memory at: [ 207.100727][ T6011] __dequeue_signal+0x4d6/0x970 [ 207.105830][ T6011] dequeue_signal+0x1c0/0x840 [ 207.110660][ T6011] get_signal+0xbf6/0x2a20 [ 207.115333][ T6011] arch_do_signal_or_restart+0x53/0xb90 [ 207.121263][ T6011] exit_to_user_mode_loop+0xe7/0x370 [ 207.126680][ T6011] do_syscall_64+0x1e3/0xfa0 [ 207.131542][ T6011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.139422][ T6011] [ 207.142650][ T6011] Uninit was created at: [ 207.147404][ T6011] kmem_cache_free+0x2b0/0x1490 [ 207.152633][ T6011] __sigqueue_free+0x23a/0x270 [ 207.157558][ T6011] __dequeue_signal+0x66b/0x970 [ 207.162672][ T6011] dequeue_signal+0x1c0/0x840 [ 207.167571][ T6011] get_signal+0xbf6/0x2a20 [ 207.172277][ T6011] arch_do_signal_or_restart+0x53/0xb90 [ 207.177971][ T6011] exit_to_user_mode_loop+0xe7/0x370 [ 207.183507][ T6011] do_syscall_64+0x1e3/0xfa0 [ 207.188256][ T6011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.194390][ T6011] [ 207.196798][ T6011] Bytes 12-15 of 48 are uninitialized [ 207.202486][ T6011] Memory access of size 48 starts at ffff888118003de0 [ 207.209331][ T6011] Data copied to user address 00007ffe3e026fb0 [ 207.215667][ T6011] [ 207.218104][ T6011] CPU: 0 UID: 0 PID: 6011 Comm: syz.0.29 Not tainted syzkaller #0 PREEMPT(none) [ 207.227485][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 207.238748][ T6011] ===================================================== [ 207.246552][ T6011] Disabling lock debugging due to kernel taint [ 207.252973][ T6011] Kernel panic - not syncing: kmsan.panic set ... [ 207.259471][ T6011] CPU: 0 UID: 0 PID: 6011 Comm: syz.0.29 Tainted: G B syzkaller #0 PREEMPT(none) [ 207.270377][ T6011] Tainted: [B]=BAD_PAGE [ 207.274562][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 207.284736][ T6011] Call Trace: [ 207.288060][ T6011] [ 207.291028][ T6011] __dump_stack+0x26/0x30 [ 207.295477][ T6011] dump_stack_lvl+0x53/0x270 [ 207.300154][ T6011] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 207.306062][ T6011] dump_stack+0x1e/0x25 [ 207.310306][ T6011] vpanic+0x435/0xd30 [ 207.314409][ T6011] panic+0x15d/0x160 [ 207.318497][ T6011] kmsan_report+0x31c/0x320 [ 207.323096][ T6011] ? copy_fpstate_to_sigframe+0x1171/0x13d0 [ 207.329084][ T6011] ? kmsan_internal_check_memory+0x16c/0x230 [ 207.335178][ T6011] ? kmsan_copy_to_user+0xf1/0x190 [ 207.340365][ T6011] ? _copy_to_user+0xcc/0x120 [ 207.345126][ T6011] ? copy_siginfo_to_user+0x3f/0x140 [ 207.350476][ T6011] ? x64_setup_rt_frame+0x1392/0x2590 [ 207.355935][ T6011] ? arch_do_signal_or_restart+0x5db/0xb90 [ 207.361844][ T6011] ? exit_to_user_mode_loop+0xe7/0x370 [ 207.367385][ T6011] ? do_syscall_64+0x1e3/0xfa0 [ 207.372262][ T6011] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.378463][ T6011] ? stack_depot_save_flags+0x35/0x7b0 [ 207.384180][ T6011] ? kmsan_get_metadata+0xfb/0x160 [ 207.389377][ T6011] ? kmsan_internal_check_memory+0x9c/0x230 [ 207.395619][ T6011] ? copy_fpstate_to_sigframe+0x126f/0x13d0 [ 207.401634][ T6011] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 207.407533][ T6011] ? kmsan_get_metadata+0xfb/0x160 [ 207.412730][ T6011] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 207.418669][ T6011] kmsan_internal_check_memory+0x16c/0x230 [ 207.424638][ T6011] kmsan_copy_to_user+0xf1/0x190 [ 207.429663][ T6011] _copy_to_user+0xcc/0x120 [ 207.434268][ T6011] copy_siginfo_to_user+0x3f/0x140 [ 207.439562][ T6011] x64_setup_rt_frame+0x1392/0x2590 [ 207.444907][ T6011] arch_do_signal_or_restart+0x5db/0xb90 [ 207.450672][ T6011] exit_to_user_mode_loop+0xe7/0x370 [ 207.456062][ T6011] do_syscall_64+0x1e3/0xfa0 [ 207.460757][ T6011] ? irqentry_exit+0x16/0x60 [ 207.465454][ T6011] ? clear_bhb_loop+0x40/0x90 [ 207.470910][ T6011] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 207.477038][ T6011] RIP: 0033:0x7f96c9d8f749 [ 207.481530][ T6011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 207.501332][ T6011] RSP: 002b:00007ffe3e027428 EFLAGS: 00000246 [ 207.507570][ T6011] RAX: 0000000000000000 RBX: 000000000003288f RCX: 00007f96c9d8f749 [ 207.515703][ T6011] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003 [ 207.523734][ T6011] RBP: 00007f96c9fe7da0 R08: 0000000000000001 R09: 000000023e02771f [ 207.531840][ T6011] R10: 0000001b2e520000 R11: 0000000000000246 R12: 00007f96c9fe5fac [ 207.539884][ T6011] R13: 00007f96c9fe5fa0 R14: ffffffffffffffff R15: 00007ffe3e027540 [ 207.547973][ T6011] [ 207.551445][ T6011] Kernel Offset: disabled [ 207.555915][ T6011] Rebooting in 86400 seconds..