Warning: Permanently added '10.128.0.200' (ED25519) to the list of known hosts.
2025/10/30 15:24:19 parsed 1 programs
[ 61.182825][ T4270] cgroup: Unknown subsys name 'net'
[ 61.347951][ T4270] cgroup: Unknown subsys name 'rlimit'
[ 62.640286][ T4270] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 64.164277][ T4285] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 64.172087][ T4285] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 64.180696][ T4285] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 64.189275][ T4285] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 64.197176][ T4285] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 64.205192][ T4285] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 64.555199][ T4297] chnl_net:caif_netlink_parms(): no params data found
[ 64.603517][ T4297] bridge0: port 1(bridge_slave_0) entered blocking state
[ 64.611111][ T4297] bridge0: port 1(bridge_slave_0) entered disabled state
[ 64.619905][ T4297] device bridge_slave_0 entered promiscuous mode
[ 64.629510][ T4297] bridge0: port 2(bridge_slave_1) entered blocking state
[ 64.636822][ T4297] bridge0: port 2(bridge_slave_1) entered disabled state
[ 64.644511][ T4297] device bridge_slave_1 entered promiscuous mode
[ 64.669179][ T4297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 64.680445][ T4297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 64.720287][ T4297] team0: Port device team_slave_0 added
[ 64.731415][ T4297] team0: Port device team_slave_1 added
[ 64.748534][ T4297] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 64.755641][ T4297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 64.781644][ T4297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 64.794259][ T4297] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 64.801227][ T4297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 64.827577][ T4297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 64.894615][ T4297] device hsr_slave_0 entered promiscuous mode
[ 64.905200][ T4297] device hsr_slave_1 entered promiscuous mode
[ 65.003787][ T4297] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 65.014531][ T4297] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 65.023772][ T4297] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 65.033619][ T4297] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 65.056989][ T4297] bridge0: port 2(bridge_slave_1) entered blocking state
[ 65.064205][ T4297] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 65.071992][ T4297] bridge0: port 1(bridge_slave_0) entered blocking state
[ 65.079242][ T4297] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 65.120735][ T4297] 8021q: adding VLAN 0 to HW filter on device bond0
[ 65.141804][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 65.154280][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 65.163851][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 65.171958][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 65.195203][ T4297] 8021q: adding VLAN 0 to HW filter on device team0
[ 65.207548][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 65.216944][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 65.224069][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 65.241850][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 65.250679][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 65.257817][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 65.276490][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 65.284964][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 65.301330][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 65.314402][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 65.326703][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 65.338874][ T4297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 65.486040][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 65.494228][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 65.515774][ T4297] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 65.534184][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 65.543893][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 65.566691][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 65.576292][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 65.586696][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 65.596553][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 65.606356][ T4297] device veth0_vlan entered promiscuous mode
[ 65.627048][ T4297] device veth1_vlan entered promiscuous mode
[ 65.644614][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 65.653088][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 65.661066][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 65.670542][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 65.684580][ T4297] device veth0_macvtap entered promiscuous mode
[ 65.696371][ T4297] device veth1_macvtap entered promiscuous mode
[ 65.715941][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 65.727324][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 65.734874][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 65.745734][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 65.754638][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 65.764085][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 65.773430][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 65.781867][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 65.793977][ T4297] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 65.803191][ T4297] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 65.811888][ T4297] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 65.820891][ T4297] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 65.953084][ T51] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 66.104583][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.116992][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.131871][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 66.142068][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.151354][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.160446][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/10/30 15:24:27 executed programs: 0
[ 67.759592][ T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 67.768674][ T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 67.776746][ T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 67.785735][ T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 67.793677][ T47] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 67.800920][ T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 67.904982][ T4364] chnl_net:caif_netlink_parms(): no params data found
[ 67.945762][ T4364] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.953039][ T4364] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.960740][ T4364] device bridge_slave_0 entered promiscuous mode
[ 67.968779][ T4364] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.976163][ T4364] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.984147][ T4364] device bridge_slave_1 entered promiscuous mode
[ 68.005096][ T4364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 68.016050][ T4364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 68.039087][ T4364] team0: Port device team_slave_0 added
[ 68.046766][ T4364] team0: Port device team_slave_1 added
[ 68.064452][ T4364] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 68.071421][ T4364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.097885][ T4364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 68.109966][ T4364] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 68.117076][ T4364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 68.143587][ T4364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 68.173214][ T4364] device hsr_slave_0 entered promiscuous mode
[ 68.180168][ T4364] device hsr_slave_1 entered promiscuous mode
[ 68.186945][ T4364] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 68.195900][ T4364] Cannot create hsr debugfs directory
[ 68.653597][ T51] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 69.833477][ T4285] Bluetooth: hci0: command 0x0409 tx timeout
[ 70.961226][ T51] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 71.034782][ T51] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 71.277599][ T1274] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.284193][ T1274] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.876307][ T51] device hsr_slave_0 left promiscuous mode
[ 71.893437][ T51] device hsr_slave_1 left promiscuous mode
[ 71.901315][ T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 71.912115][ T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 71.920766][ T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 71.922876][ T4285] Bluetooth: hci0: command 0x041b tx timeout
[ 71.936148][ T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 71.944185][ T51] device bridge_slave_1 left promiscuous mode
[ 71.951613][ T51] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.966363][ T51] device bridge_slave_0 left promiscuous mode
[ 71.973846][ T51] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.991978][ T51] device veth1_macvtap left promiscuous mode
[ 71.998673][ T51] device veth0_macvtap left promiscuous mode
[ 72.005040][ T51] device veth1_vlan left promiscuous mode
[ 72.011133][ T51] device veth0_vlan left promiscuous mode
[ 72.291173][ T51] team0 (unregistering): Port device team_slave_1 removed
[ 72.320246][ T51] team0 (unregistering): Port device team_slave_0 removed
[ 72.347170][ T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 72.375958][ T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 72.631459][ T51] bond0 (unregistering): Released all slaves
[ 72.737122][ T4364] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 72.745865][ T4364] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 72.755333][ T4364] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 72.764768][ T4364] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.826226][ T4364] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.838288][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.846829][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.872268][ T4364] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.885874][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.895101][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.903997][ T40] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.911080][ T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.919425][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.931840][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.941875][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.950539][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.957652][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.970388][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.985558][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 73.003356][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 73.013588][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 73.021997][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 73.031554][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 73.050648][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 73.058674][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 73.068599][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 73.077329][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 73.086939][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 73.097896][ T4364] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.310829][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.318892][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.338777][ T4364] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.366762][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.376425][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.406435][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.415015][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.426750][ T4364] device veth0_vlan entered promiscuous mode
[ 73.439516][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.447690][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.460009][ T4364] device veth1_vlan entered promiscuous mode
[ 73.490071][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 73.498578][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 73.506796][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 73.516240][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 73.526214][ T4364] device veth0_macvtap entered promiscuous mode
[ 73.536770][ T4364] device veth1_macvtap entered promiscuous mode
[ 73.550708][ T4364] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 73.559371][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 73.568035][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 73.576320][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 73.584985][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 73.595744][ T4364] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.605968][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 73.614958][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 73.625066][ T4364] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.634691][ T4364] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.643801][ T4364] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.653441][ T4364] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.699984][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.715292][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.725620][ T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.726856][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 73.734841][ T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.752199][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 73.801811][ T4432] loop0: detected capacity change from 0 to 2048
[ 73.823889][ T4432] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 73.837636][ T4432] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 73.849135][ T4432] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 73.859602][ T4432] UDF-fs: Scanning with blocksize 512 failed
[ 73.875281][ T4432] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 73.964389][ T4432] getblk(): invalid block size 1024 requested
[ 73.973841][ T4432] logical block size: 4096
[ 73.978327][ T4432] CPU: 1 PID: 4432 Comm: syz.0.17 Not tainted syzkaller #0
[ 73.985556][ T4432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 73.995645][ T4432] Call Trace:
[ 73.998951][ T4432]
[ 74.001893][ T4432] dump_stack_lvl+0x168/0x22e
[ 74.006620][ T4432] ? write_boundary_block+0xb0/0xb0
[ 74.011876][ T4432] ? show_regs_print_info+0x12/0x12
[ 74.017092][ T4432] ? load_image+0x3b0/0x3b0
[ 74.021720][ T4432] ? security_path_truncate+0xcf/0x120
[ 74.027185][ T4432] ? verify_lock_unused+0x140/0x140
[ 74.032375][ T4432] __getblk_gfp+0x1c3/0xb20
[ 74.036879][ T4432] ? udf_current_aext+0x44e/0xb00
[ 74.041907][ T4432] __bread_gfp+0x26/0x330
[ 74.046231][ T4432] udf_next_aext+0x25b/0x450
[ 74.050929][ T4432] inode_bmap+0x25b/0x670
[ 74.055262][ T4432] udf_setsize+0x537/0x1090
[ 74.059787][ T4432] ? udf_evict_inode+0x3e0/0x3e0
[ 74.064739][ T4432] ? current_time+0x1dd/0x2a0
[ 74.069411][ T4432] ? setattr_prepare+0x1f5/0xd00
[ 74.074350][ T4432] ? atime_needs_update+0x780/0x780
[ 74.079637][ T4432] udf_setattr+0x404/0x560
[ 74.084048][ T4432] ? udf_release_file+0x120/0x120
[ 74.089081][ T4432] notify_change+0xc74/0xf40
[ 74.093694][ T4432] do_truncate+0x197/0x220
[ 74.098107][ T4432] ? put_page_bootmem+0x2c0/0x2c0
[ 74.103128][ T4432] ? bpf_lsm_path_truncate+0x5/0x10
[ 74.108324][ T4432] vfs_truncate+0x262/0x2f0
[ 74.112834][ T4432] do_sys_truncate+0xdc/0x190
[ 74.117500][ T4432] ? break_lease+0xd0/0xd0
[ 74.121905][ T4432] ? lockdep_hardirqs_on+0x94/0x140
[ 74.127103][ T4432] do_syscall_64+0x4c/0xa0
[ 74.131509][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 74.136175][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 74.140842][ T4432] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 74.146724][ T4432] RIP: 0033:0x7fe12e38efc9
[ 74.151143][ T4432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 74.170749][ T4432] RSP: 002b:00007ffd62883da8 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[ 74.179159][ T4432] RAX: ffffffffffffffda RBX: 00007fe12e5e5fa0 RCX: 00007fe12e38efc9
[ 74.187119][ T4432] RDX: 0000000000000000 RSI: 000000404000f000 RDI: 0000200000000080
[ 74.195103][ T4432] RBP: 00007fe12e411f91 R08: 0000000000000000 R09: 0000000000000000
[ 74.203064][ T4432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 74.211031][ T4432] R13: 00007fe12e5e5fa0 R14: 00007fe12e5e5fa0 R15: 0000000000000002
[ 74.219004][ T4432]
[ 74.227099][ T4285] Bluetooth: hci0: command 0x040f tx timeout
[ 74.228851][ T4432] ==================================================================
[ 74.241185][ T4432] BUG: KASAN: slab-out-of-bounds in udf_get_fileshortad+0x152/0x1a0
[ 74.249161][ T4432] Read of size 4 at addr ffff88807706f738 by task syz.0.17/4432
[ 74.256871][ T4432]
[ 74.259183][ T4432] CPU: 0 PID: 4432 Comm: syz.0.17 Not tainted syzkaller #0
[ 74.266366][ T4432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 74.276412][ T4432] Call Trace:
[ 74.279687][ T4432]
[ 74.282606][ T4432] dump_stack_lvl+0x168/0x22e
[ 74.287280][ T4432] ? __lock_acquire+0x7c50/0x7c50
[ 74.292307][ T4432] ? show_regs_print_info+0x12/0x12
[ 74.297507][ T4432] ? load_image+0x3b0/0x3b0
[ 74.302004][ T4432] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 74.307548][ T4432] ? __virt_addr_valid+0x188/0x540
[ 74.312843][ T4432] ? __virt_addr_valid+0x465/0x540
[ 74.317944][ T4432] ? udf_get_fileshortad+0x152/0x1a0
[ 74.323230][ T4432] print_report+0xa8/0x210
[ 74.327634][ T4432] kasan_report+0x10b/0x140
[ 74.332188][ T4432] ? udf_get_fileshortad+0x152/0x1a0
[ 74.337466][ T4432] udf_get_fileshortad+0x152/0x1a0
[ 74.342564][ T4432] udf_current_aext+0x43a/0xb00
[ 74.347429][ T4432] udf_next_aext+0x101/0x450
[ 74.352038][ T4432] udf_setsize+0x9f7/0x1090
[ 74.356632][ T4432] ? udf_evict_inode+0x3e0/0x3e0
[ 74.361615][ T4432] ? current_time+0x1dd/0x2a0
[ 74.366300][ T4432] ? setattr_prepare+0x1f5/0xd00
[ 74.371342][ T4432] ? atime_needs_update+0x780/0x780
[ 74.376550][ T4432] udf_setattr+0x404/0x560
[ 74.380964][ T4432] ? udf_release_file+0x120/0x120
[ 74.385980][ T4432] notify_change+0xc74/0xf40
[ 74.390565][ T4432] do_truncate+0x197/0x220
[ 74.395158][ T4432] ? put_page_bootmem+0x2c0/0x2c0
[ 74.400191][ T4432] ? bpf_lsm_path_truncate+0x5/0x10
[ 74.405464][ T4432] vfs_truncate+0x262/0x2f0
[ 74.409956][ T4432] do_sys_truncate+0xdc/0x190
[ 74.414623][ T4432] ? break_lease+0xd0/0xd0
[ 74.419022][ T4432] ? lockdep_hardirqs_on+0x94/0x140
[ 74.424211][ T4432] do_syscall_64+0x4c/0xa0
[ 74.428616][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 74.433280][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 74.437946][ T4432] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 74.443829][ T4432] RIP: 0033:0x7fe12e38efc9
[ 74.448321][ T4432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 74.467920][ T4432] RSP: 002b:00007ffd62883da8 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[ 74.476324][ T4432] RAX: ffffffffffffffda RBX: 00007fe12e5e5fa0 RCX: 00007fe12e38efc9
[ 74.484282][ T4432] RDX: 0000000000000000 RSI: 000000404000f000 RDI: 0000200000000080
[ 74.492245][ T4432] RBP: 00007fe12e411f91 R08: 0000000000000000 R09: 0000000000000000
[ 74.500221][ T4432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 74.508265][ T4432] R13: 00007fe12e5e5fa0 R14: 00007fe12e5e5fa0 R15: 0000000000000002
[ 74.516257][ T4432]
[ 74.519264][ T4432]
[ 74.521572][ T4432] Allocated by task 7:
[ 74.525620][ T4432] kasan_set_track+0x4b/0x70
[ 74.530204][ T4432] __kasan_kmalloc+0x8e/0xa0
[ 74.534879][ T4432] __kmalloc_node_track_caller+0xae/0x230
[ 74.540761][ T4432] __alloc_skb+0x22a/0x7e0
[ 74.545170][ T4432] inet6_rt_notify+0xb0/0x240
[ 74.549833][ T4432] fib6_add+0x1d88/0x3cc0
[ 74.554152][ T4432] ip6_ins_rt+0xc5/0x110
[ 74.558382][ T4432] __ipv6_ifa_notify+0x4c1/0xdb0
[ 74.563317][ T4432] addrconf_dad_completed+0x17d/0xcf0
[ 74.568689][ T4432] addrconf_dad_work+0xc3e/0x14d0
[ 74.573723][ T4432] process_one_work+0x898/0x1160
[ 74.578729][ T4432] worker_thread+0xaa2/0x1250
[ 74.583387][ T4432] kthread+0x29d/0x330
[ 74.587511][ T4432] ret_from_fork+0x1f/0x30
[ 74.591943][ T4432]
[ 74.594254][ T4432] Freed by task 7:
[ 74.597954][ T4432] kasan_set_track+0x4b/0x70
[ 74.602536][ T4432] kasan_save_free_info+0x2d/0x50
[ 74.607552][ T4432] ____kasan_slab_free+0x126/0x1e0
[ 74.612649][ T4432] slab_free_freelist_hook+0x131/0x1a0
[ 74.618097][ T4432] __kmem_cache_free+0xb6/0x1f0
[ 74.622944][ T4432] skb_release_data+0x5db/0x7c0
[ 74.627780][ T4432] consume_skb+0xa2/0x100
[ 74.632096][ T4432] netlink_broadcast+0xfd6/0x10d0
[ 74.637107][ T4432] nlmsg_notify+0xe7/0x1a0
[ 74.641510][ T4432] fib6_add+0x1d88/0x3cc0
[ 74.645848][ T4432] ip6_ins_rt+0xc5/0x110
[ 74.650074][ T4432] __ipv6_ifa_notify+0x4c1/0xdb0
[ 74.655024][ T4432] addrconf_dad_completed+0x17d/0xcf0
[ 74.660384][ T4432] addrconf_dad_work+0xc3e/0x14d0
[ 74.666376][ T4432] process_one_work+0x898/0x1160
[ 74.671296][ T4432] worker_thread+0xaa2/0x1250
[ 74.675957][ T4432] kthread+0x29d/0x330
[ 74.680030][ T4432] ret_from_fork+0x1f/0x30
[ 74.684521][ T4432]
[ 74.686829][ T4432] The buggy address belongs to the object at ffff88807706f000
[ 74.686829][ T4432] which belongs to the cache kmalloc-1k of size 1024
[ 74.700864][ T4432] The buggy address is located 824 bytes to the right of
[ 74.700864][ T4432] 1024-byte region [ffff88807706f000, ffff88807706f400)
[ 74.714726][ T4432]
[ 74.717034][ T4432] The buggy address belongs to the physical page:
[ 74.723528][ T4432] page:ffffea0001dc1a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77068
[ 74.733678][ T4432] head:ffffea0001dc1a00 order:3 compound_mapcount:0 compound_pincount:0
[ 74.741985][ T4432] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 74.749974][ T4432] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888017441dc0
[ 74.758547][ T4432] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[ 74.767108][ T4432] page dumped because: kasan: bad access detected
[ 74.773522][ T4432] page_owner tracks the page as allocated
[ 74.779215][ T4432] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4117, tgid 4117 (sshd-session), ts 48668511464, free_ts 48662109353
[ 74.800561][ T4432] post_alloc_hook+0x173/0x1a0
[ 74.805337][ T4432] get_page_from_freelist+0x1a26/0x1ac0
[ 74.810866][ T4432] __alloc_pages+0x1df/0x4e0
[ 74.815538][ T4432] alloc_slab_page+0x5d/0x160
[ 74.820198][ T4432] new_slab+0x87/0x2c0
[ 74.824248][ T4432] ___slab_alloc+0xbc6/0x1230
[ 74.828910][ T4432] __kmem_cache_alloc_node+0x1a0/0x260
[ 74.834356][ T4432] __kmalloc_node_track_caller+0x9e/0x230
[ 74.840065][ T4432] __alloc_skb+0x22a/0x7e0
[ 74.844476][ T4432] tcp_stream_alloc_skb+0x3e/0x330
[ 74.849574][ T4432] tcp_sendmsg_locked+0xd1c/0x3f10
[ 74.854673][ T4432] tcp_sendmsg+0x2b/0x40
[ 74.858900][ T4432] sock_write_iter+0x2b5/0x3a0
[ 74.863651][ T4432] vfs_write+0x44c/0x960
[ 74.867878][ T4432] ksys_write+0x143/0x240
[ 74.872193][ T4432] do_syscall_64+0x4c/0xa0
[ 74.876593][ T4432] page last free stack trace:
[ 74.881244][ T4432] free_unref_page_prepare+0x8b4/0x9a0
[ 74.886781][ T4432] free_unref_page+0x2e/0x3f0
[ 74.891459][ T4432] skb_release_data+0x499/0x7c0
[ 74.896294][ T4432] skb_attempt_defer_free+0x107/0x410
[ 74.901740][ T4432] tcp_recvmsg_locked+0x1190/0x22f0
[ 74.906919][ T4432] tcp_recvmsg+0x212/0x810
[ 74.911403][ T4432] inet_recvmsg+0x12c/0x1e0
[ 74.915889][ T4432] sock_read_iter+0x2bf/0x370
[ 74.920550][ T4432] vfs_read+0x434/0x920
[ 74.924698][ T4432] ksys_read+0x143/0x240
[ 74.928926][ T4432] do_syscall_64+0x4c/0xa0
[ 74.933328][ T4432] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 74.939206][ T4432]
[ 74.941511][ T4432] Memory state around the buggy address:
[ 74.947124][ T4432] ffff88807706f600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.955166][ T4432] ffff88807706f680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.963209][ T4432] >ffff88807706f700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.971253][ T4432] ^
[ 74.977125][ T4432] ffff88807706f780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.985185][ T4432] ffff88807706f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 74.993226][ T4432] ==================================================================
[ 75.020195][ T4432] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 75.027438][ T4432] CPU: 0 PID: 4432 Comm: syz.0.17 Not tainted syzkaller #0
[ 75.034636][ T4432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 75.044715][ T4432] Call Trace:
[ 75.047985][ T4432]
[ 75.050896][ T4432] dump_stack_lvl+0x168/0x22e
[ 75.055563][ T4432] ? memcpy+0x3c/0x60
[ 75.059533][ T4432] ? show_regs_print_info+0x12/0x12
[ 75.065147][ T4432] ? load_image+0x3b0/0x3b0
[ 75.069644][ T4432] panic+0x2c9/0x710
[ 75.073527][ T4432] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 75.079663][ T4432] ? bpf_jit_dump+0xd0/0xd0
[ 75.084183][ T4432] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 75.090088][ T4432] ? _raw_spin_unlock+0x40/0x40
[ 75.094949][ T4432] check_panic_on_warn+0x80/0xa0
[ 75.099874][ T4432] ? udf_get_fileshortad+0x152/0x1a0
[ 75.105146][ T4432] end_report+0x66/0x110
[ 75.109377][ T4432] kasan_report+0x118/0x140
[ 75.113883][ T4432] ? udf_get_fileshortad+0x152/0x1a0
[ 75.119168][ T4432] udf_get_fileshortad+0x152/0x1a0
[ 75.124263][ T4432] udf_current_aext+0x43a/0xb00
[ 75.129125][ T4432] udf_next_aext+0x101/0x450
[ 75.133702][ T4432] udf_setsize+0x9f7/0x1090
[ 75.138222][ T4432] ? udf_evict_inode+0x3e0/0x3e0
[ 75.143240][ T4432] ? current_time+0x1dd/0x2a0
[ 75.147920][ T4432] ? setattr_prepare+0x1f5/0xd00
[ 75.152849][ T4432] ? atime_needs_update+0x780/0x780
[ 75.158042][ T4432] udf_setattr+0x404/0x560
[ 75.162492][ T4432] ? udf_release_file+0x120/0x120
[ 75.167514][ T4432] notify_change+0xc74/0xf40
[ 75.172108][ T4432] do_truncate+0x197/0x220
[ 75.176523][ T4432] ? put_page_bootmem+0x2c0/0x2c0
[ 75.181553][ T4432] ? bpf_lsm_path_truncate+0x5/0x10
[ 75.186757][ T4432] vfs_truncate+0x262/0x2f0
[ 75.191253][ T4432] do_sys_truncate+0xdc/0x190
[ 75.195967][ T4432] ? break_lease+0xd0/0xd0
[ 75.200363][ T4432] ? lockdep_hardirqs_on+0x94/0x140
[ 75.205628][ T4432] do_syscall_64+0x4c/0xa0
[ 75.210028][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 75.214685][ T4432] ? clear_bhb_loop+0x60/0xb0
[ 75.219339][ T4432] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 75.225216][ T4432] RIP: 0033:0x7fe12e38efc9
[ 75.229618][ T4432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.249393][ T4432] RSP: 002b:00007ffd62883da8 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[ 75.257792][ T4432] RAX: ffffffffffffffda RBX: 00007fe12e5e5fa0 RCX: 00007fe12e38efc9
[ 75.265768][ T4432] RDX: 0000000000000000 RSI: 000000404000f000 RDI: 0000200000000080
[ 75.273735][ T4432] RBP: 00007fe12e411f91 R08: 0000000000000000 R09: 0000000000000000
[ 75.281707][ T4432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 75.289670][ T4432] R13: 00007fe12e5e5fa0 R14: 00007fe12e5e5fa0 R15: 0000000000000002
[ 75.297636][ T4432]
[ 75.300894][ T4432] Kernel Offset: disabled
[ 75.305215][ T4432] Rebooting in 86400 seconds..