Warning: Permanently added '10.128.0.146' (ED25519) to the list of known hosts. 2025/07/29 19:58:08 ignoring optional flag "sandboxArg"="0" 2025/07/29 19:58:08 ignoring optional flag "type"="gce" 2025/07/29 19:58:08 parsed 1 programs 2025/07/29 19:58:09 executed programs: 0 [ 97.087796][ T6160] cgroup: Unknown subsys name 'net' [ 97.097498][ T6160] cgroup: Unknown subsys name 'cpuset' [ 97.104970][ T6160] cgroup: Unknown subsys name 'rlimit' [ 98.194369][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 98.202751][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 98.210670][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 98.219016][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 98.227449][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 98.341467][ T6165] chnl_net:caif_netlink_parms(): no params data found [ 98.407736][ T6165] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.415185][ T6165] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.422533][ T6165] bridge_slave_0: entered allmulticast mode [ 98.429716][ T6165] bridge_slave_0: entered promiscuous mode [ 98.438058][ T6165] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.445555][ T6165] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.452878][ T6165] bridge_slave_1: entered allmulticast mode [ 98.460574][ T6165] bridge_slave_1: entered promiscuous mode [ 98.491483][ T6165] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.502894][ T6165] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.536213][ T6165] team0: Port device team_slave_0 added [ 98.544881][ T6165] team0: Port device team_slave_1 added [ 98.573462][ T6165] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.580971][ T6165] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.606956][ T6165] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.619028][ T6165] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.626159][ T6165] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.652257][ T6165] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.689709][ T6165] hsr_slave_0: entered promiscuous mode [ 98.696121][ T6165] hsr_slave_1: entered promiscuous mode [ 98.799198][ T6165] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.806397][ T6165] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.814067][ T6165] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.821245][ T6165] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.871151][ T6165] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.887291][ T3516] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.896425][ T3516] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.912117][ T6165] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.925413][ T3516] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.932562][ T3516] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.946045][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.953251][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.017276][ T6165] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.335033][ T6165] veth0_vlan: entered promiscuous mode [ 99.346274][ T6165] veth1_vlan: entered promiscuous mode [ 99.376370][ T6165] veth0_macvtap: entered promiscuous mode [ 99.385470][ T6165] veth1_macvtap: entered promiscuous mode [ 99.405185][ T6165] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.420564][ T6165] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.483421][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.493553][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.517941][ T3016] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 99.526788][ T3016] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 99.622164][ T6194] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 100.270577][ T5160] Bluetooth: hci0: command tx timeout [ 100.488817][ T6198] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 101.346172][ T6201] netlink: 'syz-executor.0': attribute type 1 has an invalid length. 2025/07/29 19:58:14 executed programs: 3 [ 102.201646][ T6205] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 102.359502][ T5160] Bluetooth: hci0: command tx timeout [ 103.055279][ T6209] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 103.909178][ T6213] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 104.429788][ T5160] Bluetooth: hci0: command tx timeout [ 104.763090][ T6217] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 105.640239][ T6220] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 106.485036][ T6224] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 106.519835][ T5160] Bluetooth: hci0: command tx timeout 2025/07/29 19:58:19 executed programs: 9 [ 107.339056][ T6227] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 108.193202][ T6230] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 109.048146][ T6234] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 109.902338][ T6237] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 110.763323][ T6240] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 111.624437][ T6244] netlink: 'syz-executor.0': attribute type 1 has an invalid length. 2025/07/29 19:58:24 executed programs: 15 [ 112.475111][ T6249] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 113.330088][ T6256] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 114.188959][ T6263] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 115.043164][ T6267] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 115.901432][ T6270] netlink: 'syz-executor.0': attribute type 1 has an invalid length. [ 115.923175][ T6270] bond1: entered promiscuous mode [ 115.929193][ T6270] 8021q: adding VLAN 0 to HW filter on device bond1 [ 115.944833][ T6270] 8021q: adding VLAN 0 to HW filter on device bond1 [ 115.951972][ T6270] bond1: (slave gre1): The slave device specified does not support setting the MAC address [ 115.962019][ T6270] bond1: (slave gre1): Setting fail_over_mac to active for active-backup mode [ 115.973453][ T6270] bond1: (slave gre1): making interface the new active one [ 115.981012][ T6270] gre1: entered promiscuous mode [ 115.986951][ T6270] bond1: (slave gre1): Enslaving as an active interface with an up link [ 115.989666][ T6272] skbuff: skb_under_panic: text:ffffffff8a056a27 len:-1824001812 put:-1824001812 head:ffff8880778ec9c0 data:ffff887fe446d994 tail:0xc0 end:0x180 dev: [ 116.001920][ T59] skbuff: skb_under_panic: text:ffffffff8a056a27 len:-1824001736 put:-1824001812 head:ffff8880344c1000 data:ffff887fa1041fd4 tail:0x10c end:0x6c0 dev:bond1 [ 116.028340][ T6272] ------------[ cut here ]------------ [ 116.028342][ T59] ------------[ cut here ]------------ [ 116.028355][ T59] kernel BUG at net/core/skbuff.c:211! [ 116.033917][ T6272] kernel BUG at net/core/skbuff.c:211! [ 116.045536][ T6272] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI [ 116.057013][ T6272] CPU: 1 UID: 0 PID: 6272 Comm: syz-executor.0 Not tainted 6.16.0-syzkaller-g22c5696e3fe0 #0 PREEMPT(full) [ 116.068646][ T6272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 116.078853][ T6272] RIP: 0010:skb_panic+0x157/0x160 [ 116.084177][ T6272] Code: c7 a0 fd 90 8c 48 8b 74 24 08 48 8b 54 24 10 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 55 41 57 41 56 e8 6e 18 f5 ff 48 83 c4 20 90 <0f> 0b cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 116.103784][ T6272] RSP: 0018:ffffc90004cef5c0 EFLAGS: 00010286 [ 116.109966][ T6272] RAX: 0000000000000099 RBX: dffffc0000000000 RCX: 7cb02004b5da2700 [ 116.118110][ T6272] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 116.126257][ T6272] RBP: 0000000000000180 R08: ffffc90004cef2c7 R09: 1ffff9200099de58 [ 116.134396][ T6272] R10: dffffc0000000000 R11: fffff5200099de59 R12: ffff8880762b9650 [ 116.142358][ T6272] R13: ffff8880778ec9c0 R14: ffff887fe446d994 R15: 00000000000000c0 [ 116.150678][ T6272] FS: 00007fa82cc5f6c0(0000) GS:ffff888125d87000(0000) knlGS:0000000000000000 [ 116.159722][ T6272] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.166338][ T6272] CR2: 00007fa82cc5fd58 CR3: 0000000032348000 CR4: 00000000003526f0 [ 116.174317][ T6272] Call Trace: [ 116.177685][ T6272] [ 116.180927][ T6272] ? ipgre_header+0x67/0x290 [ 116.186231][ T6272] ? ipgre_header+0x67/0x290 [ 116.190833][ T6272] skb_push+0xc3/0xe0 [ 116.194856][ T6272] ipgre_header+0x67/0x290 [ 116.199317][ T6272] packet_sendmsg+0x35b3/0x5060 [ 116.204165][ T6272] ? __aa_labelset_update_subtree+0x120/0x11b0 [ 116.210330][ T6272] ? __pfx___might_resched+0x10/0x10 [ 116.215963][ T6272] ? trace_sched_exit_tp+0x38/0x120 [ 116.221271][ T6272] ? __schedule+0x171b/0x4cf0 [ 116.225948][ T6272] ? __pfx_packet_sendmsg+0x10/0x10 [ 116.231131][ T6272] ? aa_sk_perm+0x81e/0x950 [ 116.235619][ T6272] ? tomoyo_socket_sendmsg_permission+0x1e1/0x300 [ 116.242113][ T6272] ? aa_sock_msg_perm+0x94/0x160 [ 116.247035][ T6272] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 116.252587][ T6272] ? __pfx_packet_sendmsg+0x10/0x10 [ 116.257865][ T6272] __sock_sendmsg+0x219/0x270 [ 116.262616][ T6272] ____sys_sendmsg+0x505/0x830 [ 116.267453][ T6272] ? __pfx_____sys_sendmsg+0x10/0x10 [ 116.272720][ T6272] ? import_iovec+0x74/0xa0 [ 116.277223][ T6272] ___sys_sendmsg+0x21f/0x2a0 [ 116.281895][ T6272] ? __pfx____sys_sendmsg+0x10/0x10 [ 116.287168][ T6272] ? __fget_files+0x2a/0x420 [ 116.291739][ T6272] ? __fget_files+0x3a0/0x420 [ 116.296425][ T6272] __x64_sys_sendmsg+0x19b/0x260 [ 116.301342][ T6272] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 116.306797][ T6272] ? rcu_is_watching+0x15/0xb0 [ 116.311569][ T6272] ? do_syscall_64+0xbe/0x3b0 [ 116.316233][ T6272] do_syscall_64+0xfa/0x3b0 [ 116.320721][ T6272] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.326767][ T6272] ? __switch_to_asm+0x39/0x70 [ 116.331514][ T6272] ? clear_bhb_loop+0x60/0xb0 [ 116.336188][ T6272] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.342088][ T6272] RIP: 0033:0x7fa82ba798e9 [ 116.346514][ T6272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 116.366106][ T6272] RSP: 002b:00007fa82cc5f0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 116.374506][ T6272] RAX: ffffffffffffffda RBX: 00007fa82bb8c100 RCX: 00007fa82ba798e9 [ 116.382468][ T6272] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000004 [ 116.390443][ T6272] RBP: 00007fa82bad50d4 R08: 0000000000000000 R09: 0000000000000000 [ 116.398409][ T6272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.406381][ T6272] R13: 000000000000006e R14: 00007fa82bb8c100 R15: 00007ffd1f92f818 [ 116.414600][ T6272] [ 116.417623][ T6272] Modules linked in: [ 116.421587][ T59] Oops: invalid opcode: 0000 [#2] SMP KASAN PTI [ 116.421879][ T6272] ---[ end trace 0000000000000000 ]--- [ 116.427832][ T59] CPU: 0 UID: 0 PID: 59 Comm: kworker/u8:4 Tainted: G D 6.16.0-syzkaller-g22c5696e3fe0 #0 PREEMPT(full) [ 116.446204][ T59] Tainted: [D]=DIE [ 116.449967][ T59] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 116.460136][ T59] Workqueue: bond1 bond_resend_igmp_join_requests_delayed [ 116.467514][ T59] RIP: 0010:skb_panic+0x157/0x160 [ 116.472539][ T59] Code: c7 a0 fd 90 8c 48 8b 74 24 08 48 8b 54 24 10 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 55 41 57 41 56 e8 6e 18 f5 ff 48 83 c4 20 90 <0f> 0b cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 116.492504][ T59] RSP: 0018:ffffc9000210f358 EFLAGS: 00010282 [ 116.498667][ T59] RAX: 0000000000000099 RBX: dffffc0000000000 RCX: 41cb314d4a547e00 [ 116.506629][ T59] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 116.514688][ T59] RBP: 00000000000006c0 R08: ffffc9000210f067 R09: 1ffff92000421e0c [ 116.522650][ T59] R10: dffffc0000000000 R11: fffff52000421e0d R12: ffff8880759c8510 [ 116.530611][ T59] R13: ffff8880344c1000 R14: ffff887fa1041fd4 R15: 000000000000010c [ 116.538598][ T59] FS: 0000000000000000(0000) GS:ffff888125c87000(0000) knlGS:0000000000000000 [ 116.547607][ T59] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.554266][ T59] CR2: 0000000000000000 CR3: 00000000769ea000 CR4: 00000000003526f0 [ 116.562590][ T59] Call Trace: [ 116.565865][ T59] [ 116.568837][ T59] ? ipgre_header+0x67/0x290 [ 116.573423][ T59] ? ipgre_header+0x67/0x290 [ 116.578003][ T59] skb_push+0xc3/0xe0 [ 116.582151][ T59] ipgre_header+0x67/0x290 [ 116.586666][ T59] ? __pfx_ipgre_header+0x10/0x10 [ 116.591721][ T59] neigh_connected_output+0x283/0x460 [ 116.597209][ T59] ip6_finish_output2+0x11fe/0x16a0 [ 116.602575][ T59] ? ip6_finish_output2+0x701/0x16a0 [ 116.607937][ T59] ? ip6_mtu+0x7d/0x3f0 [ 116.612092][ T59] ? __pfx_ip6_finish_output2+0x10/0x10 [ 116.617641][ T59] ? ip6_mtu+0x7d/0x3f0 [ 116.621794][ T59] ? ip6_mtu+0x321/0x3f0 [ 116.626030][ T59] ? ip6_finish_output+0x2ef/0x4e0 [ 116.631139][ T59] NF_HOOK+0x9e/0x380 [ 116.635109][ T59] ? NF_HOOK+0x101/0x380 [ 116.639543][ T59] ? __pfx_NF_HOOK+0x10/0x10 [ 116.644130][ T59] ? __pfx_dst_output+0x10/0x10 [ 116.648968][ T59] ? icmp6_dst_alloc+0x3a5/0x420 [ 116.653904][ T59] ? icmp6_dst_alloc+0x3a5/0x420 [ 116.658836][ T59] mld_sendpack+0x800/0xd80 [ 116.663418][ T59] ? __asan_memcpy+0x40/0x70 [ 116.668180][ T59] ? mld_sendpack+0x1de/0xd80 [ 116.672842][ T59] ? __pfx_mld_sendpack+0x10/0x10 [ 116.677862][ T59] ? mld_send_report+0x7d/0x2f0 [ 116.682704][ T59] ipv6_mc_netdev_event+0x1e4/0x600 [ 116.687908][ T59] notifier_call_chain+0x1b6/0x3e0 [ 116.693010][ T59] call_netdevice_notifiers+0x88/0xc0 [ 116.698374][ T59] ? __pfx_call_netdevice_notifiers+0x10/0x10 [ 116.704448][ T59] ? process_scheduled_works+0x9ef/0x17b0 [ 116.710179][ T59] bond_resend_igmp_join_requests_delayed+0x61/0x170 [ 116.716951][ T59] ? process_scheduled_works+0x9ef/0x17b0 [ 116.722678][ T59] process_scheduled_works+0xade/0x17b0 [ 116.728226][ T59] ? __pfx_process_scheduled_works+0x10/0x10 [ 116.734207][ T59] worker_thread+0x8a0/0xda0 [ 116.738791][ T59] kthread+0x711/0x8a0 [ 116.742861][ T59] ? __pfx_worker_thread+0x10/0x10 [ 116.747959][ T59] ? __pfx_kthread+0x10/0x10 [ 116.752543][ T59] ? _raw_spin_unlock_irq+0x23/0x50 [ 116.757833][ T59] ? lockdep_hardirqs_on+0x9c/0x150 [ 116.763022][ T59] ? __pfx_kthread+0x10/0x10 [ 116.767623][ T59] ret_from_fork+0x3fc/0x770 [ 116.772232][ T59] ? __pfx_ret_from_fork+0x10/0x10 [ 116.777346][ T59] ? __switch_to_asm+0x39/0x70 [ 116.782108][ T59] ? __switch_to_asm+0x33/0x70 [ 116.786963][ T59] ? __pfx_kthread+0x10/0x10 [ 116.791732][ T59] ret_from_fork_asm+0x1a/0x30 [ 116.796845][ T59] [ 116.799950][ T59] Modules linked in: [ 116.804362][ T59] ---[ end trace 0000000000000000 ]--- [ 116.815986][ T6272] RIP: 0010:skb_panic+0x157/0x160 [ 116.819399][ T59] RIP: 0010:skb_panic+0x157/0x160 [ 116.821277][ T6272] Code: c7 a0 fd 90 8c 48 8b 74 24 08 48 8b 54 24 10 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 55 41 57 41 56 e8 6e 18 f5 ff 48 83 c4 20 90 <0f> 0b cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 116.826198][ T59] Code: c7 a0 fd 90 8c 48 8b 74 24 08 48 8b 54 24 10 8b 0c 24 44 8b 44 24 04 4d 89 e9 50 55 41 57 41 56 e8 6e 18 f5 ff 48 83 c4 20 90 <0f> 0b cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 116.826216][ T59] RSP: 0018:ffffc90004cef5c0 EFLAGS: 00010286 [ 116.846954][ T6272] RSP: 0018:ffffc90004cef5c0 EFLAGS: 00010286 [ 116.866418][ T59] RAX: 0000000000000099 RBX: dffffc0000000000 RCX: 7cb02004b5da2700 [ 116.873511][ T6272] [ 116.878790][ T59] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 116.878806][ T59] RBP: 0000000000000180 R08: ffffc90004cef2c7 R09: 1ffff9200099de58 [ 116.887373][ T6272] RAX: 0000000000000099 RBX: dffffc0000000000 RCX: 7cb02004b5da2700 [ 116.889667][ T59] R10: dffffc0000000000 R11: fffff5200099de59 R12: ffff8880762b9650 [ 116.897814][ T6272] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 116.905791][ T59] R13: ffff8880778ec9c0 R14: ffff887fe446d994 R15: 00000000000000c0 [ 116.930113][ T6272] RBP: 0000000000000180 R08: ffffc90004cef2c7 R09: 1ffff9200099de58 [ 116.939104][ T59] FS: 0000000000000000(0000) GS:ffff888125d87000(0000) knlGS:0000000000000000 [ 116.955583][ T59] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.962261][ T6272] R10: dffffc0000000000 R11: fffff5200099de59 R12: ffff8880762b9650 [ 116.962283][ T6272] R13: ffff8880778ec9c0 R14: ffff887fe446d994 R15: 00000000000000c0 [ 116.970609][ T59] CR2: 00007fa82cc5fd58 CR3: 0000000032348000 CR4: 00000000003526f0 [ 116.986584][ T6272] FS: 00007fa82cc5f6c0(0000) GS:ffff888125c87000(0000) knlGS:0000000000000000 [ 116.986605][ T59] Kernel panic - not syncing: Fatal exception [ 116.995849][ T59] Kernel Offset: disabled