Warning: Permanently added '10.128.0.98' (ED25519) to the list of known hosts.
2023/12/19 04:36:45 ignoring optional flag "sandboxArg"="0"
2023/12/19 04:36:45 parsed 1 programs
[   82.012392][  T923] cfg80211: failed to load regulatory.db
2023/12/19 04:36:47 executed programs: 0
[   83.184597][ T5408] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   83.239138][ T4457] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.247611][ T4457] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.257705][ T4457] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.266180][ T4457] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.273971][ T4457] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   83.281446][ T4457] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.398653][ T5416] chnl_net:caif_netlink_parms(): no params data found
[   83.454350][ T5416] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.462162][ T5416] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.469552][ T5416] bridge_slave_0: entered allmulticast mode
[   83.476560][ T5416] bridge_slave_0: entered promiscuous mode
[   83.485134][ T5416] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.492526][ T5416] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.499850][ T5416] bridge_slave_1: entered allmulticast mode
[   83.506928][ T5416] bridge_slave_1: entered promiscuous mode
[   83.533365][ T5416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.544946][ T5416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.573738][ T5416] team0: Port device team_slave_0 added
[   83.582391][ T5416] team0: Port device team_slave_1 added
[   83.605573][ T5416] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.612695][ T5416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.639504][ T5416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.652381][ T5416] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.659459][ T5416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.686209][ T5416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.721591][ T5416] hsr_slave_0: entered promiscuous mode
[   83.727809][ T5416] hsr_slave_1: entered promiscuous mode
[   84.496952][ T5416] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   84.513564][ T5416] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   84.525600][ T5416] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   84.537628][ T5416] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   84.647548][ T5416] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.673980][ T5416] 8021q: adding VLAN 0 to HW filter on device team0
[   84.689302][ T5072] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.696834][ T5072] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.716292][ T5071] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.723545][ T5071] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.947804][ T5416] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.004497][ T5416] veth0_vlan: entered promiscuous mode
[   85.023869][ T5416] veth1_vlan: entered promiscuous mode
[   85.064541][ T5416] veth0_macvtap: entered promiscuous mode
[   85.076430][ T5416] veth1_macvtap: entered promiscuous mode
[   85.101510][ T5416] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.119763][ T5416] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.136699][ T5416] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.146511][ T5416] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.158727][ T5416] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.169241][ T5416] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.268308][ T2803] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.285930][ T2803] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.322039][ T2803] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.330045][ T2803] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.372303][ T4457] Bluetooth: hci0: command 0x0409 tx timeout
[   85.702533][ T5483] loop0: detected capacity change from 0 to 32768
[   85.718330][ T5483] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (5483)
[   85.749765][ T5483] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   85.764068][ T5483] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   85.778784][ T5483] BTRFS info (device loop0): enabling auto defrag
[   85.788654][ T5483] BTRFS info (device loop0): enabling disk space caching
[   85.796742][ T5483] BTRFS info (device loop0): max_inline at 0
[   85.803468][ T5483] BTRFS info (device loop0): force clearing of disk cache
[   85.812659][ T5483] BTRFS info (device loop0): turning on sync discard
[   85.819505][ T5483] BTRFS info (device loop0): disk space caching is enabled
[   85.859383][ T5483] BTRFS info (device loop0): enabling ssd optimizations
[   85.874257][ T5483] BTRFS info (device loop0): rebuilding free space tree
[   85.919167][ T5483] BTRFS info (device loop0): disabling free space tree
[   85.926436][ T5483] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   85.940213][ T5483] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   86.034844][ T5483] ==================================================================
[   86.043123][ T5483] BUG: KASAN: slab-out-of-bounds in strlen+0x58/0x70
[   86.050182][ T5483] Read of size 1 at addr ffff88807f73ea28 by task syz-executor.0/5483
[   86.058348][ T5483] 
[   86.060692][ T5483] CPU: 0 PID: 5483 Comm: syz-executor.0 Not tainted 6.7.0-rc5-syzkaller-00200-g3bd7d7488169-dirty #0
[   86.071717][ T5483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   86.082140][ T5483] Call Trace:
[   86.085620][ T5483]  <TASK>
[   86.089100][ T5483]  dump_stack_lvl+0x1e7/0x2d0
[   86.094174][ T5483]  ? nf_tcp_handle_invalid+0x650/0x650
[   86.099758][ T5483]  ? panic+0x850/0x850
[   86.103856][ T5483]  ? _printk+0xd5/0x120
[   86.108591][ T5483]  print_report+0x163/0x540
[   86.113130][ T5483]  ? __virt_addr_valid+0x22f/0x2e0
[   86.118370][ T5483]  ? __phys_addr+0xba/0x170
[   86.122901][ T5483]  ? strlen+0x58/0x70
[   86.126995][ T5483]  kasan_report+0x142/0x170
[   86.131615][ T5483]  ? strlen+0x58/0x70
[   86.135631][ T5483]  strlen+0x58/0x70
[   86.139464][ T5483]  getname_kernel+0x1d/0x2e0
[   86.144181][ T5483]  kern_path+0x1d/0x50
[   86.148359][ T5483]  bdev_open_by_path+0xd1/0x540
[   86.153335][ T5483]  ? blkdev_put+0x770/0x770
[   86.157952][ T5483]  btrfs_dev_replace_by_ioctl+0x41b/0x2010
[   86.163883][ T5483]  ? btrfs_finish_block_group_to_copy+0x480/0x480
[   86.170434][ T5483]  ? btrfs_ioctl_dev_replace+0x2be/0x390
[   86.176247][ T5483]  ? do_raw_spin_lock+0x14e/0x370
[   86.181897][ T5483]  ? __lock_acquire+0x1fd0/0x1fd0
[   86.187566][ T5483]  ? do_raw_spin_unlock+0x13b/0x8b0
[   86.193148][ T5483]  btrfs_ioctl_dev_replace+0x2c9/0x390
[   86.198898][ T5483]  ? btrfs_ioctl_get_supported_features+0x50/0x50
[   86.205429][ T5483]  __se_sys_ioctl+0xf8/0x170
[   86.210137][ T5483]  do_syscall_64+0x45/0x110
[   86.215069][ T5483]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   86.221265][ T5483] RIP: 0033:0x7efc28c7cba9
[   86.225873][ T5483] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   86.245944][ T5483] RSP: 002b:00007efc299370c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.254380][ T5483] RAX: ffffffffffffffda RBX: 00007efc28d9bf80 RCX: 00007efc28c7cba9
[   86.262460][ T5483] RDX: 0000000020000540 RSI: 00000000ca289435 RDI: 0000000000000005
[   86.270453][ T5483] RBP: 00007efc28cc847a R08: 0000000000000000 R09: 0000000000000000
[   86.278449][ T5483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.286440][ T5483] R13: 000000000000000b R14: 00007efc28d9bf80 R15: 00007ffd45118af8
[   86.294698][ T5483]  </TASK>
[   86.297816][ T5483] 
[   86.300234][ T5483] Allocated by task 5483:
[   86.304588][ T5483]  kasan_set_track+0x4f/0x70
[   86.309738][ T5483]  __kasan_kmalloc+0x98/0xb0
[   86.314723][ T5483]  __kmalloc_node_track_caller+0xb1/0x190
[   86.321161][ T5483]  memdup_user+0x2b/0xc0
[   86.325902][ T5483]  btrfs_ioctl_dev_replace+0xb8/0x390
[   86.331770][ T5483]  __se_sys_ioctl+0xf8/0x170
[   86.336732][ T5483]  do_syscall_64+0x45/0x110
[   86.341349][ T5483]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   86.347457][ T5483] 
[   86.349888][ T5483] The buggy address belongs to the object at ffff88807f73e000
[   86.349888][ T5483]  which belongs to the cache kmalloc-4k of size 4096
[   86.364167][ T5483] The buggy address is located 0 bytes to the right of
[   86.364167][ T5483]  allocated 2600-byte region [ffff88807f73e000, ffff88807f73ea28)
[   86.379027][ T5483] 
[   86.381366][ T5483] The buggy address belongs to the physical page:
[   86.387971][ T5483] page:ffffea0001fdce00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7f738
[   86.398321][ T5483] head:ffffea0001fdce00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   86.407379][ T5483] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   86.415812][ T5483] page_type: 0xffffffff()
[   86.420178][ T5483] raw: 00fff00000000840 ffff888012c42140 dead000000000122 0000000000000000
[   86.428897][ T5483] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
[   86.437993][ T5483] page dumped because: kasan: bad access detected
[   86.445220][ T5483] page_owner tracks the page as allocated
[   86.451384][ T5483] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5519, tgid 5519 (sed), ts 85994199611, free_ts 85914192085
[   86.472953][ T5483]  post_alloc_hook+0x1e6/0x210
[   86.478525][ T5483]  get_page_from_freelist+0x33ea/0x3570
[   86.484185][ T5483]  __alloc_pages+0x255/0x680
[   86.488854][ T5483]  alloc_pages_mpol+0x3de/0x640
[   86.493941][ T5483]  alloc_slab_page+0x6a/0x170
[   86.498643][ T5483]  new_slab+0x84/0x2f0
[   86.502739][ T5483]  ___slab_alloc+0xc8a/0x1330
[   86.507448][ T5483]  __kmem_cache_alloc_node+0x21d/0x300
[   86.512957][ T5483]  __kmalloc+0xa2/0x1a0
[   86.517131][ T5483]  tomoyo_realpath_from_path+0xcf/0x5e0
[   86.522726][ T5483]  tomoyo_path_perm+0x2b7/0x730
[   86.527601][ T5483]  security_inode_getattr+0xd3/0x120
[   86.532906][ T5483]  vfs_getattr+0x46/0x430
[   86.537275][ T5483]  vfs_fstatat+0xd6/0x190
[   86.541634][ T5483]  __x64_sys_newfstatat+0x117/0x190
[   86.546870][ T5483]  do_syscall_64+0x45/0x110
[   86.551501][ T5483] page last free stack trace:
[   86.556471][ T5483]  free_unref_page_prepare+0x931/0xa60
[   86.562322][ T5483]  free_unref_page+0x37/0x3f0
[   86.567037][ T5483]  __unfreeze_partials+0x1e0/0x220
[   86.572167][ T5483]  put_cpu_partial+0x17b/0x250
[   86.577033][ T5483]  __slab_free+0x2b6/0x390
[   86.581656][ T5483]  qlist_free_all+0x75/0xe0
[   86.586535][ T5483]  kasan_quarantine_reduce+0x14b/0x160
[   86.592239][ T5483]  __kasan_slab_alloc+0x23/0x70
[   86.597288][ T5483]  slab_post_alloc_hook+0x6c/0x3c0
[   86.602439][ T5483]  __kmem_cache_alloc_node+0x1d0/0x300
[   86.607931][ T5483]  __kmalloc+0xa2/0x1a0
[   86.612112][ T5483]  tomoyo_realpath_from_path+0xcf/0x5e0
[   86.617690][ T5483]  tomoyo_path_perm+0x2b7/0x730
[   86.622668][ T5483]  security_inode_getattr+0xd3/0x120
[   86.628079][ T5483]  vfs_getattr+0x46/0x430
[   86.632787][ T5483]  vfs_fstatat+0xd6/0x190
[   86.637177][ T5483] 
[   86.639615][ T5483] Memory state around the buggy address:
[   86.645435][ T5483]  ffff88807f73e900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   86.653960][ T5483]  ffff88807f73e980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   86.662092][ T5483] >ffff88807f73ea00: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
[   86.670174][ T5483]                                   ^
[   86.675838][ T5483]  ffff88807f73ea80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.684167][ T5483]  ffff88807f73eb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.692330][ T5483] ==================================================================
[   86.714923][ T5483] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   86.722333][ T5483] CPU: 0 PID: 5483 Comm: syz-executor.0 Not tainted 6.7.0-rc5-syzkaller-00200-g3bd7d7488169-dirty #0
[   86.733203][ T5483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   86.743465][ T5483] Call Trace:
[   86.746758][ T5483]  <TASK>
[   86.749704][ T5483]  dump_stack_lvl+0x1e7/0x2d0
[   86.754420][ T5483]  ? nf_tcp_handle_invalid+0x650/0x650
[   86.759998][ T5483]  ? panic+0x850/0x850
[   86.764110][ T5483]  ? vscnprintf+0x5d/0x80
[   86.768826][ T5483]  panic+0x349/0x850
[   86.772836][ T5483]  ? check_panic_on_warn+0x21/0xa0
[   86.779016][ T5483]  ? __memcpy_flushcache+0x2b0/0x2b0
[   86.784508][ T5483]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   86.790861][ T5483]  ? _raw_spin_unlock+0x40/0x40
[   86.795969][ T5483]  ? print_report+0x4fb/0x540
[   86.805250][ T5483]  check_panic_on_warn+0x82/0xa0
[   86.811113][ T5483]  ? strlen+0x58/0x70
[   86.815182][ T5483]  end_report+0x6e/0x140
[   86.819842][ T5483]  kasan_report+0x153/0x170
[   86.824449][ T5483]  ? strlen+0x58/0x70
[   86.828480][ T5483]  strlen+0x58/0x70
[   86.832305][ T5483]  getname_kernel+0x1d/0x2e0
[   86.837187][ T5483]  kern_path+0x1d/0x50
[   86.841265][ T5483]  bdev_open_by_path+0xd1/0x540
[   86.846332][ T5483]  ? blkdev_put+0x770/0x770
[   86.850850][ T5483]  btrfs_dev_replace_by_ioctl+0x41b/0x2010
[   86.856665][ T5483]  ? btrfs_finish_block_group_to_copy+0x480/0x480
[   86.863114][ T5483]  ? btrfs_ioctl_dev_replace+0x2be/0x390
[   86.868850][ T5483]  ? do_raw_spin_lock+0x14e/0x370
[   86.873982][ T5483]  ? __lock_acquire+0x1fd0/0x1fd0
[   86.879097][ T5483]  ? do_raw_spin_unlock+0x13b/0x8b0
[   86.884663][ T5483]  btrfs_ioctl_dev_replace+0x2c9/0x390
[   86.890553][ T5483]  ? btrfs_ioctl_get_supported_features+0x50/0x50
[   86.896967][ T5483]  __se_sys_ioctl+0xf8/0x170
[   86.901569][ T5483]  do_syscall_64+0x45/0x110
[   86.906089][ T5483]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   86.912138][ T5483] RIP: 0033:0x7efc28c7cba9
[   86.916741][ T5483] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   86.936615][ T5483] RSP: 002b:00007efc299370c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.945202][ T5483] RAX: ffffffffffffffda RBX: 00007efc28d9bf80 RCX: 00007efc28c7cba9
[   86.953348][ T5483] RDX: 0000000020000540 RSI: 00000000ca289435 RDI: 0000000000000005
[   86.961315][ T5483] RBP: 00007efc28cc847a R08: 0000000000000000 R09: 0000000000000000
[   86.970254][ T5483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.978775][ T5483] R13: 000000000000000b R14: 00007efc28d9bf80 R15: 00007ffd45118af8
[   86.988229][ T5483]  </TASK>
[   86.991420][ T5483] Kernel Offset: disabled
[   86.996009][ T5483] Rebooting in 86400 seconds..