Warning: Permanently added '10.128.1.26' (ED25519) to the list of known hosts. 1970/01/01 00:01:32 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:32 ignoring optional flag "type"="gce" 1970/01/01 00:01:32 parsed 1 programs [ 92.886810][ T6742] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:01:32 executed programs: 0 [ 92.917117][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 92.919310][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 92.924050][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 92.925104][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 92.925508][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 93.010874][ T6747] chnl_net:caif_netlink_parms(): no params data found [ 93.047989][ T6747] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.048099][ T6747] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.048511][ T6747] bridge_slave_0: entered allmulticast mode [ 93.049340][ T6747] bridge_slave_0: entered promiscuous mode [ 93.051460][ T6747] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.051543][ T6747] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.051639][ T6747] bridge_slave_1: entered allmulticast mode [ 93.052421][ T6747] bridge_slave_1: entered promiscuous mode [ 93.070960][ T6747] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 93.072449][ T6747] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.085736][ T6747] team0: Port device team_slave_0 added [ 93.087555][ T6747] team0: Port device team_slave_1 added [ 93.102097][ T6747] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 93.102142][ T6747] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.102174][ T6747] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 93.103154][ T6747] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 93.103178][ T6747] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.103207][ T6747] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.130448][ T6747] hsr_slave_0: entered promiscuous mode [ 93.130968][ T6747] hsr_slave_1: entered promiscuous mode [ 94.076041][ T6747] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.083869][ T6747] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.087447][ T6747] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 94.091159][ T6747] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 94.134520][ T6747] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.139423][ T6747] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.146191][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.146591][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.153052][ T137] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.153127][ T137] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.257851][ T6747] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 94.283867][ T6747] veth0_vlan: entered promiscuous mode [ 94.288492][ T6747] veth1_vlan: entered promiscuous mode [ 94.301083][ T6747] veth0_macvtap: entered promiscuous mode [ 94.308811][ T6747] veth1_macvtap: entered promiscuous mode [ 94.317007][ T6747] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.328111][ T6747] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.333955][ T6747] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.336792][ T6747] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.339583][ T6747] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.343984][ T6747] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.386767][ T224] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.386829][ T224] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.404703][ T137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.404766][ T137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.485392][ T6849] loop0: detected capacity change from 0 to 1024 [ 94.508448][ T6849] ------------[ cut here ]------------ [ 94.508503][ T6849] WARNING: CPU: 0 PID: 6849 at ./include/linux/mm.h:2206 kmap_local_page+0x370/0x4ec [ 94.512776][ T6849] Modules linked in: [ 94.513796][ T6849] CPU: 0 UID: 0 PID: 6849 Comm: syz-executor.0 Not tainted 6.16.0-rc5-syzkaller-00067-gec4801305969 #0 PREEMPT [ 94.517092][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 94.519954][ T6849] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 94.522129][ T6849] pc : kmap_local_page+0x370/0x4ec [ 94.523598][ T6849] lr : kmap_local_page+0x370/0x4ec [ 94.525041][ T6849] sp : ffff80009f526c60 [ 94.526249][ T6849] x29: ffff80009f526c60 x28: ffff0000e39eb040 x27: 1fffe000197bd351 [ 94.528477][ T6849] x26: ffff80008ef67000 x25: 1ffff00011decfc4 x24: dfff800000000000 [ 94.530742][ T6849] x23: 0000020041000001 x22: 0000000000200000 x21: 0000000000000001 [ 94.533048][ T6849] x20: 0000000000000000 x19: 0000000100000000 x18: 00000000ffffffff [ 94.535340][ T6849] x17: ffff800093364000 x16: ffff80008aefc568 x15: 0000000000000001 [ 94.537581][ T6849] x14: 1fffe0001a160251 x13: 0000000000000000 x12: 0000000000000000 [ 94.539854][ T6849] x11: 000000005fdf9577 x10: 0000000000ff0100 x9 : 0000000000000000 [ 94.542049][ T6849] x8 : ffff0000c7629e80 x7 : ffff8000812aee0c x6 : 0000000000000000 [ 94.544347][ T6849] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 94.546625][ T6849] x2 : 0000000000000008 x1 : 0000000100000000 x0 : 0000000000000000 [ 94.548897][ T6849] Call trace: [ 94.549818][ T6849] kmap_local_page+0x370/0x4ec (P) [ 94.551205][ T6849] hfsplus_bnode_move+0x3d8/0x678 [ 94.552641][ T6849] hfsplus_brec_insert+0x4c0/0xaa8 [ 94.554082][ T6849] hfsplus_create_attr+0x2e8/0x368 [ 94.555556][ T6849] __hfsplus_setxattr+0x910/0x1e88 [ 94.557008][ T6849] hfsplus_initxattrs+0x18c/0x244 [ 94.558489][ T6849] security_inode_init_security+0x6dc/0x7f4 [ 94.560194][ T6849] hfsplus_init_security+0x40/0x54 [ 94.561673][ T6849] hfsplus_fill_super+0x109c/0x1714 [ 94.563096][ T6849] get_tree_bdev_flags+0x360/0x414 [ 94.564575][ T6849] get_tree_bdev+0x2c/0x3c [ 94.565892][ T6849] hfsplus_get_tree+0x28/0x38 [ 94.567226][ T6849] vfs_get_tree+0x90/0x28c [ 94.568444][ T6849] do_new_mount+0x228/0x814 [ 94.569736][ T6849] path_mount+0x5b4/0xde0 [ 94.571024][ T6849] __arm64_sys_mount+0x3e8/0x468 [ 94.572361][ T6849] invoke_syscall+0x98/0x2b8 [ 94.573696][ T6849] el0_svc_common+0x130/0x23c [ 94.575038][ T6849] do_el0_svc+0x48/0x58 [ 94.576241][ T6849] el0_svc+0x58/0x180 [ 94.577353][ T6849] el0t_64_sync_handler+0x84/0x12c [ 94.578835][ T6849] el0t_64_sync+0x198/0x19c [ 94.580182][ T6849] irq event stamp: 2712 [ 94.581388][ T6849] hardirqs last enabled at (2711): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 94.584215][ T6849] hardirqs last disabled at (2712): [] el1_brk64+0x1c/0x48 [ 94.586724][ T6849] softirqs last enabled at (2128): [] handle_softirqs+0xaf8/0xc88 [ 94.589423][ T6849] softirqs last disabled at (2109): [] __do_softirq+0x14/0x20 [ 94.592029][ T6849] ---[ end trace 0000000000000000 ]--- [ 94.597146][ T6849] ================================================================== [ 94.597170][ T6849] BUG: KASAN: out-of-bounds in hfsplus_bnode_move+0x418/0x678 [ 94.597191][ T6849] Read of size 18446744073709551602 at addr ffff80100000104e by task syz-executor.0/6849 [ 94.597208][ T6849] [ 94.597221][ T6849] CPU: 0 UID: 0 PID: 6849 Comm: syz-executor.0 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969 #0 PREEMPT [ 94.597238][ T6849] Tainted: [W]=WARN [ 94.597241][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 94.597248][ T6849] Call trace: [ 94.597252][ T6849] show_stack+0x2c/0x3c (C) [ 94.597265][ T6849] __dump_stack+0x30/0x40 [ 94.597279][ T6849] dump_stack_lvl+0xd8/0x12c [ 94.597292][ T6849] print_address_description+0xa8/0x254 [ 94.597306][ T6849] print_report+0x68/0x84 [ 94.597318][ T6849] kasan_report+0xb0/0x110 [ 94.597329][ T6849] kasan_check_range+0x264/0x2a4 [ 94.597340][ T6849] __asan_memmove+0x3c/0x84 [ 94.597352][ T6849] hfsplus_bnode_move+0x418/0x678 [ 94.597363][ T6849] hfsplus_brec_insert+0x4c0/0xaa8 [ 94.597375][ T6849] hfsplus_create_attr+0x2e8/0x368 [ 94.597387][ T6849] __hfsplus_setxattr+0x910/0x1e88 [ 94.597400][ T6849] hfsplus_initxattrs+0x18c/0x244 [ 94.597412][ T6849] security_inode_init_security+0x6dc/0x7f4 [ 94.597426][ T6849] hfsplus_init_security+0x40/0x54 [ 94.597438][ T6849] hfsplus_fill_super+0x109c/0x1714 [ 94.597452][ T6849] get_tree_bdev_flags+0x360/0x414 [ 94.597464][ T6849] get_tree_bdev+0x2c/0x3c [ 94.597474][ T6849] hfsplus_get_tree+0x28/0x38 [ 94.597488][ T6849] vfs_get_tree+0x90/0x28c [ 94.597498][ T6849] do_new_mount+0x228/0x814 [ 94.597510][ T6849] path_mount+0x5b4/0xde0 [ 94.597520][ T6849] __arm64_sys_mount+0x3e8/0x468 [ 94.597539][ T6849] invoke_syscall+0x98/0x2b8 [ 94.597549][ T6849] el0_svc_common+0x130/0x23c [ 94.597559][ T6849] do_el0_svc+0x48/0x58 [ 94.597569][ T6849] el0_svc+0x58/0x180 [ 94.597580][ T6849] el0t_64_sync_handler+0x84/0x12c [ 94.597591][ T6849] el0t_64_sync+0x198/0x19c [ 94.597603][ T6849] [ 94.597762][ T6849] The buggy address ffff80100000104e belongs to a vmalloc virtual mapping [ 94.597775][ T6849] Memory state around the buggy address: [ 94.597792][ T6849] Unable to handle kernel paging request at virtual address ffff7002000001e0 [ 94.597805][ T6849] KASAN: probably wild-memory-access in range [0xffff801000000f00-0xffff801000000f07] [ 94.597820][ T6849] Mem abort info: [ 94.597829][ T6849] ESR = 0x0000000096000005 [ 94.597839][ T6849] EC = 0x25: DABT (current EL), IL = 32 bits [ 94.597852][ T6849] SET = 0, FnV = 0 [ 94.597863][ T6849] EA = 0, S1PTW = 0 [ 94.597874][ T6849] FSC = 0x05: level 1 translation fault [ 94.597885][ T6849] Data abort info: [ 94.597894][ T6849] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 94.597905][ T6849] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 94.597918][ T6849] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 94.597932][ T6849] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000207145000 [ 94.597946][ T6849] [ffff7002000001e0] pgd=0000000000000000, p4d=000000023ea65003, pud=0000000000000000 [ 94.597974][ T6849] Internal error: Oops: 0000000096000005 [#1] SMP [ 94.682735][ T6849] Modules linked in: [ 94.683837][ T6849] CPU: 0 UID: 0 PID: 6849 Comm: syz-executor.0 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969 #0 PREEMPT [ 94.687559][ T6849] Tainted: [W]=WARN [ 94.688625][ T6849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 94.691521][ T6849] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 94.693758][ T6849] pc : __pi_memcpy_generic+0x24/0x22c [ 94.695248][ T6849] lr : kasan_metadata_fetch_row+0x20/0x2c [ 94.696875][ T6849] sp : ffff80009f526b30 [ 94.698025][ T6849] x29: ffff80009f526b30 x28: ffff0000e39eb040 x27: 1fffe000197bd351 [ 94.700294][ T6849] x26: fffffffffffffff8 x25: ffff801000001040 x24: 00000000fffffff2 [ 94.702488][ T6849] x23: 0000000000000000 x22: ffff801000000f00 x21: ffff000000000000 [ 94.704733][ T6849] x20: ffff801000001000 x19: ffff80100000104e x18: 00000000ffffffff [ 94.706999][ T6849] x17: 0000000000000000 x16: ffff80008ae63d08 x15: 0000000000000001 [ 94.709264][ T6849] x14: 0000000000000001 x13: 0000000000000000 x12: 0000000000000000 [ 94.711443][ T6849] x11: ffff700013ea4d6e x10: 0000000000ff0100 x9 : 18e98759b7669a00 [ 94.713598][ T6849] x8 : dfff800000000000 x7 : 0000000000000000 x6 : 000000000000003a [ 94.715771][ T6849] x5 : ffff80009f526b58 x4 : ffff7002000001f0 x3 : ffff80008aed25fc [ 94.717962][ T6849] x2 : 0000000000000010 x1 : ffff7002000001e0 x0 : ffff80009f526b48 [ 94.720216][ T6849] Call trace: [ 94.721128][ T6849] __pi_memcpy_generic+0x24/0x22c (P) [ 94.722627][ T6849] print_memory_metadata+0x60/0x310 [ 94.724049][ T6849] print_report+0x70/0x84 [ 94.725292][ T6849] kasan_report+0xb0/0x110 [ 94.726521][ T6849] kasan_check_range+0x264/0x2a4 [ 94.727906][ T6849] __asan_memmove+0x3c/0x84 [ 94.729139][ T6849] hfsplus_bnode_move+0x418/0x678 [ 94.730538][ T6849] hfsplus_brec_insert+0x4c0/0xaa8 [ 94.731947][ T6849] hfsplus_create_attr+0x2e8/0x368 [ 94.733368][ T6849] __hfsplus_setxattr+0x910/0x1e88 [ 94.734847][ T6849] hfsplus_initxattrs+0x18c/0x244 [ 94.736191][ T6849] security_inode_init_security+0x6dc/0x7f4 [ 94.737800][ T6849] hfsplus_init_security+0x40/0x54 [ 94.739246][ T6849] hfsplus_fill_super+0x109c/0x1714 [ 94.740747][ T6849] get_tree_bdev_flags+0x360/0x414 [ 94.742224][ T6849] get_tree_bdev+0x2c/0x3c [ 94.743457][ T6849] hfsplus_get_tree+0x28/0x38 [ 94.744763][ T6849] vfs_get_tree+0x90/0x28c [ 94.746023][ T6849] do_new_mount+0x228/0x814 [ 94.747264][ T6849] path_mount+0x5b4/0xde0 [ 94.748489][ T6849] __arm64_sys_mount+0x3e8/0x468 [ 94.749899][ T6849] invoke_syscall+0x98/0x2b8 [ 94.751137][ T6849] el0_svc_common+0x130/0x23c [ 94.752392][ T6849] do_el0_svc+0x48/0x58 [ 94.753547][ T6849] el0_svc+0x58/0x180 [ 94.754652][ T6849] el0t_64_sync_handler+0x84/0x12c [ 94.756082][ T6849] el0t_64_sync+0x198/0x19c [ 94.757323][ T6849] Code: f100805f 540003c8 f100405f 540000c3 (a9401c26) [ 94.759252][ T6849] ---[ end trace 0000000000000000 ]--- [ 95.064554][ T6849] Kernel panic - not syncing: Oops: Fatal exception [ 95.066483][ T6849] SMP: stopping secondary CPUs [ 95.067832][ T6849] Kernel Offset: disabled [ 95.069057][ T6849] CPU features: 0x10000,00040e00,040008a1,04017203 [ 95.070837][ T6849] Memory Limit: none [ 95.360986][ T6849] Rebooting in 86400 seconds..