Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
2025/01/07 23:26:45 ignoring optional flag "sandboxArg"="0"
2025/01/07 23:26:45 parsed 1 programs
[ 55.652226][ T28] kauditd_printk_skb: 34 callbacks suppressed
[ 55.652244][ T28] audit: type=1400 audit(1736292406.651:110): avc: denied { unlink } for pid=417 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 55.711178][ T417] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 56.323998][ T431] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.331030][ T431] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.355934][ T431] device bridge_slave_0 entered promiscuous mode
[ 56.372612][ T431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.379646][ T431] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.386907][ T431] device bridge_slave_1 entered promiscuous mode
[ 56.427731][ T28] audit: type=1401 audit(1736292407.421:111): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 56.670608][ T431] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.677645][ T431] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.684752][ T431] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.691803][ T431] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.757679][ T330] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.766048][ T330] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.781979][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 56.789531][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 56.804952][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 56.813510][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.820523][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.828338][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 56.837284][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.844179][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.860995][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 56.869332][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 56.884568][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 56.897534][ T431] device veth0_vlan entered promiscuous mode
[ 56.904375][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 56.912306][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 56.919761][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 56.933933][ T431] device veth1_macvtap entered promiscuous mode
[ 56.940805][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 56.952107][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
2025/01/07 23:26:47 executed programs: 0
[ 56.962391][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 57.237486][ T490] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.244479][ T490] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.251913][ T490] device bridge_slave_0 entered promiscuous mode
[ 57.260206][ T490] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.267154][ T490] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.274516][ T490] device bridge_slave_1 entered promiscuous mode
[ 57.288553][ T492] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.295441][ T492] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.302779][ T492] device bridge_slave_0 entered promiscuous mode
[ 57.309430][ T486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.316351][ T486] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.323647][ T486] device bridge_slave_0 entered promiscuous mode
[ 57.343722][ T492] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.350623][ T492] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.358253][ T492] device bridge_slave_1 entered promiscuous mode
[ 57.367885][ T486] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.374814][ T486] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.382491][ T486] device bridge_slave_1 entered promiscuous mode
[ 57.418327][ T485] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.425238][ T485] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.432795][ T485] device bridge_slave_0 entered promiscuous mode
[ 57.439616][ T485] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.446706][ T485] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.454220][ T485] device bridge_slave_1 entered promiscuous mode
[ 57.570397][ T491] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.577349][ T491] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.584690][ T491] device bridge_slave_0 entered promiscuous mode
[ 57.591433][ T491] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.598437][ T491] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.605960][ T491] device bridge_slave_1 entered promiscuous mode
[ 57.785472][ T485] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.792354][ T485] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 57.799431][ T485] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.806246][ T485] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 57.822787][ T330] bridge0: port 1(bridge_slave_0) entered disabled state
[ 57.830007][ T330] bridge0: port 2(bridge_slave_1) entered disabled state
[ 57.838199][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 57.845916][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 57.853472][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 57.861699][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 57.869671][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 57.876548][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 57.883916][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 57.907067][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 57.914441][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 57.938477][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 57.946948][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 57.955041][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 57.962005][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 57.970326][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 58.008518][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 58.016597][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 58.024381][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 58.033165][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 58.041734][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.048847][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.056294][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 58.064483][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 58.072614][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.079438][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.086689][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 58.094842][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 58.117218][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.125444][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 58.133503][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 58.141257][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 58.149725][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 58.158111][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.164968][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.172416][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 58.200113][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.208647][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 58.217040][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 58.225337][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.232302][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.239574][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 58.247028][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 58.254510][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 58.262571][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.269399][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.276645][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 58.284649][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.291506][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.298632][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 58.310184][ T486] device veth0_vlan entered promiscuous mode
[ 58.316677][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 58.324520][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.337282][ T492] device veth0_vlan entered promiscuous mode
[ 58.355073][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.363534][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.370897][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.378996][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.386570][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.394114][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 58.411365][ T492] device veth1_macvtap entered promiscuous mode
[ 58.427503][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 58.435752][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 58.444042][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 58.452449][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 58.460555][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.469303][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 58.477303][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 58.485265][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 58.492605][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 58.499998][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 58.508229][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 58.516319][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.523178][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.530361][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 58.538796][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 58.546919][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.553772][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.561124][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 58.573786][ T490] device veth0_vlan entered promiscuous mode
[ 58.589825][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 58.598038][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.606256][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 58.615718][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 58.624194][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 58.632116][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 58.639861][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 58.647952][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 58.659410][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.666895][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.689921][ T490] device veth1_macvtap entered promiscuous mode
[ 58.707623][ T491] device veth0_vlan entered promiscuous mode
[ 58.714333][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 58.722929][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 58.731061][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 58.739046][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 58.747305][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.755599][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 58.763806][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 58.772064][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 58.780056][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 58.788471][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 58.796877][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 58.805254][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 58.813233][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.821285][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.828748][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.837833][ T486] device veth1_macvtap entered promiscuous mode
[ 58.853701][ T485] device veth0_vlan entered promiscuous mode
[ 58.861753][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 58.869399][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 58.877894][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 58.897585][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 58.905092][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 58.912687][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 58.920735][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 58.929325][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 58.937638][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 58.956359][ T491] device veth1_macvtap entered promiscuous mode
[ 58.979504][ T28] audit: type=1400 audit(1736292409.971:112): avc: denied { ioctl } for pid=508 comm="syz.5.20" path="socket:[17938]" dev="sockfs" ino=17938 ioctlcmd=0x48dd scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 59.004506][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 59.013178][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 59.021158][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 59.029843][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 59.038325][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 59.046474][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 59.055355][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 59.063750][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 59.072113][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 59.082155][ T485] device veth1_macvtap entered promiscuous mode
[ 59.099245][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 59.106761][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 59.115159][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 59.123553][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 59.132039][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 59.145609][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 59.153993][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 59.175693][ T334] Bluetooth: hci1: Frame reassembly failed (-84)
[ 59.192709][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 59.200963][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 59.253924][ T10] Bluetooth: hci2: Frame reassembly failed (-84)
[ 59.261277][ T10] Bluetooth: hci3: Frame reassembly failed (-84)
[ 59.266018][ T526] Bluetooth: hci4: Frame reassembly failed (-84)
[ 59.456131][ T8] device bridge_slave_1 left promiscuous mode
[ 59.462148][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 59.469380][ T8] device bridge_slave_0 left promiscuous mode
[ 59.475537][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 59.483691][ T8] device veth1_macvtap left promiscuous mode
[ 59.489728][ T8] device veth0_vlan left promiscuous mode
[ 61.051606][ T509] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[ 61.211588][ T45] Bluetooth: hci1: command 0x1003 tx timeout
[ 61.211632][ T511] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 61.224134][ T514] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 61.238593][ T8] Bluetooth: hci1: Frame reassembly failed (-84)
[ 61.291596][ T510] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 61.292037][ T524] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 61.297545][ T515] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 61.303488][ T524] Bluetooth: hci2: command 0x1003 tx timeout
[ 61.309307][ T45] Bluetooth: hci3: command 0x1003 tx timeout
[ 61.320297][ T520] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 61.326816][ T522] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 61.332858][ T523] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 61.349943][ T528] Bluetooth: hci0: Frame reassembly failed (-84)
[ 61.357250][ T8] Bluetooth: hci2: Frame reassembly failed (-84)
[ 61.363662][ T526] Bluetooth: hci4: Frame reassembly failed (-84)
[ 61.378924][ T8] Bluetooth: hci3: Frame reassembly failed (-84)
2025/01/07 23:26:54 executed programs: 20
[ 63.291661][ T511] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 63.291913][ T524] Bluetooth: hci1: command 0x1003 tx timeout
[ 63.311616][ T528] Bluetooth: hci1: Frame reassembly failed (-84)
[ 63.371786][ T45] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 63.371912][ T527] Bluetooth: hci2: Opcode 0x1003 failed: -110
[ 63.377749][ T45] Bluetooth: hci2: command 0x1003 tx timeout
[ 63.383740][ T525] Bluetooth: hci0: command 0x1003 tx timeout
[ 63.389537][ T510] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 63.401759][ T540] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 63.407814][ T534] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 63.414745][ T538] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 63.420747][ T537] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 63.431794][ T510] ==================================================================
[ 63.439766][ T510] BUG: KASAN: use-after-free in enqueue_timer+0xa6/0x480
[ 63.446900][ T510] Write of size 8 at addr ffff88810f764a00 by task kworker/u5:1/510
[ 63.454827][ T510]
[ 63.456982][ T510] CPU: 1 PID: 510 Comm: kworker/u5:1 Not tainted 6.1.118-syzkaller-1166353-g616d7c64fd84 #0
[ 63.466966][ T510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 63.476860][ T510] Workqueue: hci0 hci_power_on
[ 63.481548][ T510] Call Trace:
[ 63.484682][ T510]
[ 63.487450][ T510] dump_stack_lvl+0x151/0x1b7
[ 63.491961][ T510] ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 63.497260][ T510] ? _printk+0xd1/0x111
[ 63.501251][ T510] ? __virt_addr_valid+0x242/0x2f0
[ 63.506189][ T510] print_report+0x158/0x4e0
[ 63.510531][ T510] ? __virt_addr_valid+0x242/0x2f0
[ 63.515478][ T510] ? kasan_complete_mode_report_info+0x90/0x1b0
[ 63.521639][ T510] ? enqueue_timer+0xa6/0x480
[ 63.526168][ T510] kasan_report+0x13c/0x170
[ 63.530505][ T510] ? enqueue_timer+0xa6/0x480
[ 63.535004][ T510] __asan_report_store8_noabort+0x17/0x20
[ 63.540646][ T510] enqueue_timer+0xa6/0x480
[ 63.545043][ T510] __mod_timer+0x8d3/0xcf0
[ 63.549251][ T510] ? mod_timer_pending+0x30/0x30
[ 63.554042][ T510] ? insert_work+0x283/0x310
[ 63.558441][ T510] ? __kasan_check_write+0x14/0x20
[ 63.563395][ T510] ? _raw_spin_lock_irqsave+0xf9/0x210
[ 63.568681][ T510] schedule_timeout+0x187/0x380
[ 63.573367][ T510] ? console_conditional_schedule+0x10/0x10
[ 63.579094][ T510] ? queue_work_on+0x135/0x170
[ 63.583692][ T510] ? update_process_times+0x1b0/0x1b0
[ 63.588910][ T510] ? prepare_to_wait_event+0x3e6/0x420
[ 63.594223][ T510] __hci_cmd_sync_sk+0x2ad/0xf70
[ 63.598975][ T510] ? eir_get_service_data+0x2e0/0x2e0
[ 63.604179][ T510] ? wake_bit_function+0x230/0x230
[ 63.609150][ T510] ? __kasan_check_read+0x11/0x20
[ 63.613986][ T510] hci_dev_open_sync+0x1314/0x30a0
[ 63.618931][ T510] ? hci_reset_sync+0x100/0x100
[ 63.623616][ T510] ? __switch_to+0x62c/0x1190
[ 63.628129][ T510] ? __kasan_check_write+0x14/0x20
[ 63.633077][ T510] ? mutex_lock+0xb1/0x1e0
[ 63.637341][ T510] ? bit_wait_io_timeout+0x120/0x120
[ 63.642450][ T510] ? kthread_data+0x53/0xc0
[ 63.646797][ T510] hci_power_on+0x1a7/0x5e0
[ 63.651133][ T510] ? hci_tx_work+0x3790/0x3790
[ 63.655730][ T510] ? __schedule+0xcbd/0x1560
[ 63.660162][ T510] process_one_work+0x73d/0xcb0
[ 63.664846][ T510] worker_thread+0xa60/0x1260
[ 63.669361][ T510] kthread+0x26d/0x300
[ 63.673312][ T510] ? worker_clr_flags+0x1a0/0x1a0
[ 63.678138][ T510] ? kthread_blkcg+0xd0/0xd0
[ 63.682581][ T510] ret_from_fork+0x1f/0x30
[ 63.686805][ T510]
[ 63.689667][ T510]
[ 63.691837][ T510] Allocated by task 534:
[ 63.695919][ T510] kasan_set_track+0x4b/0x70
[ 63.700433][ T510] kasan_save_alloc_info+0x1f/0x30
[ 63.705413][ T510] __kasan_kmalloc+0x9c/0xb0
[ 63.709801][ T510] __kmalloc+0xb4/0x1e0
[ 63.713797][ T510] hci_alloc_dev_priv+0x27/0x1c00
[ 63.718658][ T510] hci_uart_tty_ioctl+0x401/0xa70
[ 63.723603][ T510] tty_ioctl+0x903/0xc50
[ 63.727768][ T510] __se_sys_ioctl+0x114/0x190
[ 63.732282][ T510] __x64_sys_ioctl+0x7b/0x90
[ 63.736858][ T510] x64_sys_call+0x98/0x9a0
[ 63.741104][ T510] do_syscall_64+0x3b/0xb0
[ 63.745441][ T510] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 63.751175][ T510]
[ 63.753343][ T510] Freed by task 537:
[ 63.757077][ T510] kasan_set_track+0x4b/0x70
[ 63.761509][ T510] kasan_save_free_info+0x2b/0x40
[ 63.766366][ T510] ____kasan_slab_free+0x131/0x180
[ 63.771317][ T510] __kasan_slab_free+0x11/0x20
[ 63.776002][ T510] __kmem_cache_free+0x21d/0x410
[ 63.780776][ T510] kfree+0x7a/0xf0
[ 63.784332][ T510] hci_release_dev+0x14d3/0x1640
[ 63.789107][ T510] bt_host_release+0x83/0xa0
[ 63.793531][ T510] device_release+0x95/0x1c0
[ 63.798043][ T510] kobject_put+0x178/0x260
[ 63.802299][ T510] put_device+0x1f/0x30
[ 63.806288][ T510] hci_dev_cmd+0x2be/0x9b0
[ 63.810541][ T510] hci_sock_ioctl+0x415/0x7f0
[ 63.815057][ T510] sock_do_ioctl+0x152/0x450
[ 63.819484][ T510] sock_ioctl+0x455/0x740
[ 63.823652][ T510] __se_sys_ioctl+0x114/0x190
[ 63.828266][ T510] __x64_sys_ioctl+0x7b/0x90
[ 63.832677][ T510] x64_sys_call+0x98/0x9a0
[ 63.836940][ T510] do_syscall_64+0x3b/0xb0
[ 63.841180][ T510] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 63.847170][ T510]
[ 63.849343][ T510] Last potentially related work creation:
[ 63.854899][ T510] kasan_save_stack+0x3b/0x60
[ 63.859407][ T510] __kasan_record_aux_stack+0xb4/0xc0
[ 63.864707][ T510] kasan_record_aux_stack_noalloc+0xb/0x10
[ 63.870442][ T510] insert_work+0x56/0x310
[ 63.874613][ T510] __queue_work+0x9b6/0xd70
[ 63.878942][ T510] queue_work_on+0x105/0x170
[ 63.883370][ T510] __hci_cmd_sync_sk+0xc2a/0xf70
[ 63.888253][ T510] hci_cmd_sync_status+0x52/0x130
[ 63.893089][ T510] hci_dev_cmd+0x39e/0x9b0
[ 63.897430][ T510] hci_sock_ioctl+0x415/0x7f0
[ 63.901947][ T510] sock_do_ioctl+0x152/0x450
[ 63.906364][ T510] sock_ioctl+0x455/0x740
[ 63.910618][ T510] __se_sys_ioctl+0x114/0x190
[ 63.915219][ T510] __x64_sys_ioctl+0x7b/0x90
[ 63.919647][ T510] x64_sys_call+0x98/0x9a0
[ 63.923921][ T510] do_syscall_64+0x3b/0xb0
[ 63.928150][ T510] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 63.933880][ T510]
[ 63.936047][ T510] Second to last potentially related work creation:
[ 63.942479][ T510] kasan_save_stack+0x3b/0x60
[ 63.946983][ T510] __kasan_record_aux_stack+0xb4/0xc0
[ 63.952191][ T510] kasan_record_aux_stack_noalloc+0xb/0x10
[ 63.957928][ T510] insert_work+0x56/0x310
[ 63.962096][ T510] __queue_work+0x9b6/0xd70
[ 63.966700][ T510] queue_work_on+0x105/0x170
[ 63.971187][ T510] __hci_cmd_sync_sk+0xc2a/0xf70
[ 63.975958][ T510] hci_cmd_sync_status+0x52/0x130
[ 63.980820][ T510] hci_dev_cmd+0x39e/0x9b0
[ 63.985087][ T510] hci_sock_ioctl+0x415/0x7f0
[ 63.989600][ T510] sock_do_ioctl+0x152/0x450
[ 63.994040][ T510] sock_ioctl+0x455/0x740
[ 63.998178][ T510] __se_sys_ioctl+0x114/0x190
[ 64.002692][ T510] __x64_sys_ioctl+0x7b/0x90
[ 64.007119][ T510] x64_sys_call+0x98/0x9a0
[ 64.011369][ T510] do_syscall_64+0x3b/0xb0
[ 64.015628][ T510] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 64.021356][ T510]
[ 64.023529][ T510] The buggy address belongs to the object at ffff88810f764000
[ 64.023529][ T510] which belongs to the cache kmalloc-8k of size 8192
[ 64.037510][ T510] The buggy address is located 2560 bytes inside of
[ 64.037510][ T510] 8192-byte region [ffff88810f764000, ffff88810f766000)
[ 64.050784][ T510]
[ 64.052954][ T510] The buggy address belongs to the physical page:
[ 64.059208][ T510] page:ffffea00043dd800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10f760
[ 64.069379][ T510] head:ffffea00043dd800 order:3 compound_mapcount:0 compound_pincount:0
[ 64.077537][ T510] flags: 0x4000000000010200(slab|head|zone=1)
[ 64.083440][ T510] raw: 4000000000010200 ffffea0004353000 dead000000000003 ffff888100043500
[ 64.091938][ T510] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[ 64.100445][ T510] page dumped because: kasan: bad access detected
[ 64.106701][ T510] page_owner tracks the page as allocated
[ 64.112327][ T510] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 91, tgid 91 (klogd), ts 4053341698, free_ts 0
[ 64.129610][ T510] post_alloc_hook+0x213/0x220
[ 64.134204][ T510] prep_new_page+0x1b/0x110
[ 64.138628][ T510] get_page_from_freelist+0x2f41/0x2fc0
[ 64.144022][ T510] __alloc_pages+0x234/0x610
[ 64.148433][ T510] alloc_slab_page+0x6c/0xf0
[ 64.152859][ T510] new_slab+0x90/0x3e0
[ 64.156790][ T510] ___slab_alloc+0x6f9/0xb80
[ 64.161285][ T510] __slab_alloc+0x5d/0xa0
[ 64.165448][ T510] __kmem_cache_alloc_node+0x207/0x2a0
[ 64.170741][ T510] kmalloc_trace+0x2a/0xa0
[ 64.175013][ T510] audit_log_d_path+0xb9/0x170
[ 64.179598][ T510] common_lsm_audit+0x3bf/0x1940
[ 64.184366][ T510] slow_avc_audit+0x26c/0x3c0
[ 64.188884][ T510] avc_has_perm+0x1f5/0x260
[ 64.193227][ T510] file_has_perm+0x508/0x6c0
[ 64.198274][ T510] match_file+0xde/0x140
[ 64.202343][ T510] page_owner free stack trace missing
[ 64.207551][ T510]
[ 64.209718][ T510] Memory state around the buggy address:
[ 64.215189][ T510] ffff88810f764900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.223219][ T510] ffff88810f764980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.231082][ T510] >ffff88810f764a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.239017][ T510] ^
[ 64.242878][ T510] ffff88810f764a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.251331][ T510] ffff88810f764b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 64.259210][ T510] ==================================================================
[ 64.267109][ T510] Disabling lock debugging due to kernel taint
[ 64.278291][ T515] Bluetooth: hci3: Opcode 0x1003 failed: -110
[ 64.296749][ T330] Bluetooth: hci0: Frame reassembly failed (-84)
[ 64.303060][ T8] Bluetooth: hci4: Frame reassembly failed (-84)
[ 64.309739][ T528] Bluetooth: hci2: Frame reassembly failed (-84)
[ 64.320312][ T526] Bluetooth: hci3: Frame reassembly failed (-84)
[ 65.371661][ T511] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 65.451589][ T510] Bluetooth: hci0: Opcode 0x1003 failed: -110
[ 65.451624][ C1] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[ 65.469033][ C1] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 65.477290][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B 6.1.118-syzkaller-1166353-g616d7c64fd84 #0
[ 65.488437][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 65.498574][ C1] RIP: 0010:__queue_work+0x4f1/0xd70
[ 65.503691][ C1] Code: 39 03 0f 84 40 01 00 00 e8 fc 6b 2a 00 4c 89 e7 e8 e4 d3 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 10 e0 71 00 49 8b 3e e8 98 cc d6
[ 65.523134][ C1] RSP: 0018:ffffc900001b0c78 EFLAGS: 00010046
[ 65.529033][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff8881003aa880
[ 65.536947][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[ 65.544754][ C1] RBP: ffffc900001b0d00 R08: ffffffff814b186b R09: 0000000000000007
[ 65.552568][ C1] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88810f7649c8
[ 65.560525][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f7649e0
[ 65.568311][ C1] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 65.577071][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 65.583495][ C1] CR2: 0000000020000480 CR3: 000000011cc88000 CR4: 00000000003506a0
[ 65.591310][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 65.599295][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 65.607110][ C1] Call Trace:
[ 65.610228][ C1]
[ 65.613017][ C1] ? __die_body+0x62/0xb0
[ 65.617261][ C1] ? die_addr+0x9f/0xd0
[ 65.621259][ C1] ? exc_general_protection+0x317/0x4c0
[ 65.626852][ C1] ? asm_exc_general_protection+0x27/0x30
[ 65.632373][ C1] ? __queue_work+0x28b/0xd70
[ 65.636886][ C1] ? __queue_work+0x4f1/0xd70
[ 65.641407][ C1] ? __queue_work+0x29c/0xd70
[ 65.645949][ C1] delayed_work_timer_fn+0x61/0x80
[ 65.650860][ C1] ? queue_work_node+0x1d0/0x1d0
[ 65.655638][ C1] call_timer_fn+0x3b/0x2d0
[ 65.659996][ C1] ? queue_work_node+0x1d0/0x1d0
[ 65.664784][ C1] __run_timers+0x756/0xa10
[ 65.669117][ C1] ? calc_index+0x270/0x270
[ 65.673517][ C1] ? sched_clock+0x9/0x10
[ 65.677685][ C1] ? sched_clock_cpu+0x71/0x2b0
[ 65.682365][ C1] run_timer_softirq+0x69/0xf0
[ 65.686967][ C1] handle_softirqs+0x1db/0x650
[ 65.691566][ C1] ? irqtime_account_irq+0xdc/0x260
[ 65.696612][ C1] __irq_exit_rcu+0x52/0xf0
[ 65.701023][ C1] irq_exit_rcu+0x9/0x10
[ 65.705113][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 65.710577][ C1]
[ 65.713347][ C1]
[ 65.716129][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 65.721939][ C1] RIP: 0010:acpi_idle_enter+0x416/0x760
[ 65.727321][ C1] Code: 89 de 48 83 e6 08 31 ff e8 07 bc 53 fc 48 83 e3 08 0f 85 b1 00 00 00 0f 1f 44 00 00 e8 b3 b7 53 fc 0f 00 2d 1c 8f ce 00 fb f4 e9 e3 00 00 00 49 83 c7 04 4c 89 f8 48 c1 e8 03 42 0f b6 04 30
[ 65.746767][ C1] RSP: 0018:ffffc90000147c50 EFLAGS: 000002d3
[ 65.752757][ C1] RAX: ffffffff8521cefd RBX: 0000000000000000 RCX: ffff8881003aa880
[ 65.760754][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 65.768566][ C1] RBP: ffffc90000147c90 R08: ffffffff8521cee9 R09: ffffed1020075511
[ 65.776374][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001
[ 65.784389][ C1] R13: ffff888109ee5804 R14: dffffc0000000000 R15: ffff888109b44864
[ 65.792297][ C1] ? acpi_idle_enter+0x3f9/0x760
[ 65.797066][ C1] ? acpi_idle_enter+0x40d/0x760
[ 65.801836][ C1] ? intel_idle_xstate+0xa0/0xa0
[ 65.806618][ C1] cpuidle_enter_state+0x5eb/0x17f0
[ 65.811647][ C1] ? cpuidle_enter_s2idle+0x600/0x600
[ 65.816960][ C1] ? menu_enable_device+0x380/0x380
[ 65.821995][ C1] ? __sched_text_start+0x8/0x8
[ 65.826689][ C1] cpuidle_enter+0x5f/0xa0
[ 65.831090][ C1] do_idle+0x3d1/0x580
[ 65.834982][ C1] ? irqentry_exit+0x37/0x40
[ 65.839431][ C1] ? idle_inject_timer_fn+0x60/0x60
[ 65.844451][ C1] ? schedule_idle+0x5b/0x90
[ 65.848875][ C1] ? do_idle+0x572/0x580
[ 65.852951][ C1] cpu_startup_entry+0x44/0x60
[ 65.857553][ C1] start_secondary+0xe3/0xf0
[ 65.861978][ C1] secondary_startup_64_no_verify+0xce/0xdb
[ 65.867707][ C1]
[ 65.870574][ C1] Modules linked in:
[ 65.874306][ C1] ---[ end trace 0000000000000000 ]---
[ 65.879597][ C1] RIP: 0010:__queue_work+0x4f1/0xd70
[ 65.884716][ C1] Code: 39 03 0f 84 40 01 00 00 e8 fc 6b 2a 00 4c 89 e7 e8 e4 d3 d6 03 49 bd 00 00 00 00 00 fc ff df 4c 8b 65 d0 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 10 e0 71 00 49 8b 3e e8 98 cc d6
[ 65.904181][ C1] RSP: 0018:ffffc900001b0c78 EFLAGS: 00010046
[ 65.910059][ C1] RAX: 0000000000000000 RBX: 000000007fffffff RCX: ffff8881003aa880
[ 65.917981][ C1] RDX: 0000000000000100 RSI: 000000007fffffff RDI: 000000007fffffff
[ 65.925885][ C1] RBP: ffffc900001b0d00 R08: ffffffff814b186b R09: 0000000000000007
[ 65.933949][ C1] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff88810f7649c8
[ 65.941792][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88810f7649e0
[ 65.949568][ C1] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 65.958337][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 65.964853][ C1] CR2: 0000000020000480 CR3: 000000011cc88000 CR4: 00000000003506a0
[ 65.972676][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 65.980475][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 65.988291][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 65.995622][ C1] Kernel Offset: disabled
[ 65.999751][ C1] Rebooting in 86400 seconds..