Warning: Permanently added '10.128.1.143' (ED25519) to the list of known hosts. 2025/06/20 09:59:05 ignoring optional flag "sandboxArg"="0" 2025/06/20 09:59:07 parsed 1 programs [ 414.016405][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 414.023449][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 452.541469][ T6432] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 458.255201][ T6453] chnl_net:caif_netlink_parms(): no params data found [ 458.584440][ T6453] bridge0: port 1(bridge_slave_0) entered blocking state [ 458.592049][ T6453] bridge0: port 1(bridge_slave_0) entered disabled state [ 458.601586][ T6453] bridge_slave_0: entered allmulticast mode [ 458.610062][ T6453] bridge_slave_0: entered promiscuous mode [ 458.623788][ T6453] bridge0: port 2(bridge_slave_1) entered blocking state [ 458.633443][ T6453] bridge0: port 2(bridge_slave_1) entered disabled state [ 458.641116][ T6453] bridge_slave_1: entered allmulticast mode [ 458.649815][ T6453] bridge_slave_1: entered promiscuous mode [ 458.724114][ T6453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 458.742215][ T6453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 458.819831][ T6453] team0: Port device team_slave_0 added [ 458.834097][ T6453] team0: Port device team_slave_1 added [ 458.900750][ T6453] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 458.909552][ T6453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 458.935864][ T6453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 458.951363][ T6453] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 458.958653][ T6453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 458.985003][ T6453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 459.082799][ T6453] hsr_slave_0: entered promiscuous mode [ 459.092182][ T6453] hsr_slave_1: entered promiscuous mode [ 460.101820][ T6453] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 460.126481][ T6453] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 460.151680][ T6453] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 460.178673][ T6453] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 460.539186][ T6453] 8021q: adding VLAN 0 to HW filter on device bond0 [ 460.595727][ T6453] 8021q: adding VLAN 0 to HW filter on device team0 [ 460.624748][ T2915] bridge0: port 1(bridge_slave_0) entered blocking state [ 460.632414][ T2915] bridge0: port 1(bridge_slave_0) entered forwarding state [ 460.671144][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 460.678819][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 461.358945][ T6453] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 461.544676][ T6453] veth0_vlan: entered promiscuous mode [ 461.581744][ T6453] veth1_vlan: entered promiscuous mode [ 461.705362][ T6453] veth0_macvtap: entered promiscuous mode [ 461.728743][ T6453] veth1_macvtap: entered promiscuous mode [ 461.813680][ T6453] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 461.858083][ T6453] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 461.885174][ T6453] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 461.894458][ T6453] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 461.903727][ T6453] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 461.912951][ T6453] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.291648][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.445776][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.580937][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.714728][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 465.167314][ T12] bridge_slave_1: left allmulticast mode [ 465.173224][ T12] bridge_slave_1: left promiscuous mode [ 465.180072][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 465.218235][ T12] bridge_slave_0: left allmulticast mode [ 465.224170][ T12] bridge_slave_0: left promiscuous mode [ 465.231156][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 465.642122][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 465.661560][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 465.680000][ T12] bond0 (unregistering): Released all slaves [ 465.783044][ T3755] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 465.791339][ T3755] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 465.890838][ T2915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 465.899058][ T2915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 465.967941][ T12] hsr_slave_0: left promiscuous mode [ 465.989781][ T12] hsr_slave_1: left promiscuous mode [ 465.998077][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 466.005745][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 466.040029][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 466.047820][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 466.119688][ T12] veth1_macvtap: left promiscuous mode [ 466.125489][ T12] veth0_macvtap: left promiscuous mode [ 466.133294][ T12] veth1_vlan: left promiscuous mode [ 466.138969][ T12] veth0_vlan: left promiscuous mode [ 466.966738][ T12] team0 (unregistering): Port device team_slave_1 removed [ 467.010830][ T12] team0 (unregistering): Port device team_slave_0 removed [ 471.979771][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 471.993167][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 472.003943][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 472.019385][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 472.038361][ T5835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 475.462967][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.470412][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 2025/06/20 10:00:43 executed programs: 0 [ 478.169830][ T5093] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 478.183764][ T5093] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 478.195125][ T5093] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 478.209596][ T5093] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 478.221146][ T5093] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 478.739410][ T6724] chnl_net:caif_netlink_parms(): no params data found [ 479.198471][ T6724] bridge0: port 1(bridge_slave_0) entered blocking state [ 479.206035][ T6724] bridge0: port 1(bridge_slave_0) entered disabled state [ 479.213786][ T6724] bridge_slave_0: entered allmulticast mode [ 479.223059][ T6724] bridge_slave_0: entered promiscuous mode [ 479.243981][ T6724] bridge0: port 2(bridge_slave_1) entered blocking state [ 479.251781][ T6724] bridge0: port 2(bridge_slave_1) entered disabled state [ 479.259581][ T6724] bridge_slave_1: entered allmulticast mode [ 479.268989][ T6724] bridge_slave_1: entered promiscuous mode [ 479.372838][ T6724] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 479.395746][ T6724] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 479.495810][ T6724] team0: Port device team_slave_0 added [ 479.514303][ T6724] team0: Port device team_slave_1 added [ 479.615412][ T6724] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 479.622744][ T6724] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 479.649269][ T6724] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 479.667804][ T6724] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 479.675015][ T6724] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 479.703865][ T6724] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 479.837788][ T6724] hsr_slave_0: entered promiscuous mode [ 479.847898][ T6724] hsr_slave_1: entered promiscuous mode [ 480.318207][ T5093] Bluetooth: hci0: command tx timeout [ 480.650876][ T6724] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 480.673881][ T6724] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 480.697444][ T6724] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 480.724133][ T6724] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 481.105850][ T6724] 8021q: adding VLAN 0 to HW filter on device bond0 [ 481.166437][ T6724] 8021q: adding VLAN 0 to HW filter on device team0 [ 481.204387][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 481.212042][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 481.260057][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 481.267778][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 481.985829][ T6724] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 482.157395][ T6724] veth0_vlan: entered promiscuous mode [ 482.207230][ T6724] veth1_vlan: entered promiscuous mode [ 482.324272][ T6724] veth0_macvtap: entered promiscuous mode [ 482.367099][ T6724] veth1_macvtap: entered promiscuous mode [ 482.403301][ T5093] Bluetooth: hci0: command tx timeout [ 482.453208][ T6724] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 482.498708][ T6724] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 482.521094][ T6724] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.532695][ T6724] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.542125][ T6724] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 482.551279][ T6724] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 484.478572][ T5093] Bluetooth: hci0: command tx timeout [ 484.833468][ T2915] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 484.842149][ T2915] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 484.941526][ T3755] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 484.949747][ T3755] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/20 10:00:50 executed programs: 2 [ 485.143600][ T6832] ===================================================== [ 485.151557][ T6832] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120 [ 485.159110][ T6832] _copy_to_user+0xcc/0x120 [ 485.165628][ T6832] vmci_host_unlocked_ioctl+0x1d05/0x5260 [ 485.172387][ T6832] __se_sys_ioctl+0x23c/0x400 [ 485.177476][ T6832] __x64_sys_ioctl+0x97/0xe0 [ 485.182334][ T6832] x64_sys_call+0x1ebe/0x3db0 [ 485.187428][ T6832] do_syscall_64+0xd9/0x210 [ 485.192163][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.198527][ T6832] [ 485.200964][ T6832] Uninit was stored to memory at: [ 485.206321][ T6832] kmemdup_noprof+0xb0/0x100 [ 485.211362][ T6832] vmci_datagram_dispatch+0x4eb/0x1560 [ 485.217238][ T6832] vmci_ctx_put+0x88e/0x15d0 [ 485.222046][ T6832] vmci_ctx_destroy+0x15d/0x250 [ 485.227283][ T6832] vmci_host_unlocked_ioctl+0x45be/0x5260 [ 485.233222][ T6832] __se_sys_ioctl+0x23c/0x400 [ 485.238279][ T6832] __x64_sys_ioctl+0x97/0xe0 [ 485.243174][ T6832] x64_sys_call+0x1ebe/0x3db0 [ 485.248423][ T6832] do_syscall_64+0xd9/0x210 [ 485.253142][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.259824][ T6832] [ 485.262287][ T6832] Local variable ev.i.i created at: [ 485.269485][ T6832] vmci_ctx_put+0x76b/0x15d0 [ 485.274317][ T6832] vmci_ctx_destroy+0x15d/0x250 [ 485.280147][ T6832] [ 485.282607][ T6832] Bytes 28-31 of 40 are uninitialized [ 485.288325][ T6832] Memory access of size 40 starts at ffff888013c866c0 [ 485.295250][ T6832] Data copied to user address 000000000000a4bf [ 485.301700][ T6832] [ 485.304205][ T6832] CPU: 1 UID: 0 PID: 6832 Comm: syz.0.16 Not tainted 6.16.0-rc2-syzkaller-00231-g75f5f23f8787-dirty #0 PREEMPT(undef) [ 485.317043][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 485.327448][ T6832] ===================================================== [ 485.334554][ T6832] Disabling lock debugging due to kernel taint [ 485.341048][ T6832] Kernel panic - not syncing: kmsan.panic set ... [ 485.347673][ T6832] CPU: 1 UID: 0 PID: 6832 Comm: syz.0.16 Tainted: G B 6.16.0-rc2-syzkaller-00231-g75f5f23f8787-dirty #0 PREEMPT(undef) [ 485.361946][ T6832] Tainted: [B]=BAD_PAGE [ 485.366244][ T6832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 485.376498][ T6832] Call Trace: [ 485.379930][ T6832] [ 485.383002][ T6832] __dump_stack+0x26/0x30 [ 485.387584][ T6832] dump_stack_lvl+0x53/0x270 [ 485.392439][ T6832] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 485.398512][ T6832] dump_stack+0x1e/0x25 [ 485.402918][ T6832] panic+0x4bd/0xd50 [ 485.407110][ T6832] kmsan_report+0x31c/0x320 [ 485.411866][ T6832] ? kmsan_internal_check_memory+0x16c/0x230 [ 485.418080][ T6832] ? kmsan_copy_to_user+0xf1/0x190 [ 485.423426][ T6832] ? _copy_to_user+0xcc/0x120 [ 485.428329][ T6832] ? vmci_host_unlocked_ioctl+0x1d05/0x5260 [ 485.434457][ T6832] ? __se_sys_ioctl+0x23c/0x400 [ 485.439579][ T6832] ? __x64_sys_ioctl+0x97/0xe0 [ 485.444581][ T6832] ? x64_sys_call+0x1ebe/0x3db0 [ 485.449702][ T6832] ? do_syscall_64+0xd9/0x210 [ 485.454609][ T6832] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.460932][ T6832] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 485.467293][ T6832] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 485.473385][ T6832] ? stack_depot_save_flags+0x60f/0x7b0 [ 485.479232][ T6832] ? kmsan_get_metadata+0xfb/0x160 [ 485.484640][ T6832] ? kmsan_get_metadata+0xfb/0x160 [ 485.490022][ T6832] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 485.496635][ T6832] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 485.502947][ T6832] ? kmsan_get_metadata+0xfb/0x160 [ 485.508361][ T6832] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 485.514511][ T6832] kmsan_internal_check_memory+0x16c/0x230 [ 485.520626][ T6832] kmsan_copy_to_user+0xf1/0x190 [ 485.525841][ T6832] _copy_to_user+0xcc/0x120 [ 485.530589][ T6832] vmci_host_unlocked_ioctl+0x1d05/0x5260 [ 485.536767][ T6832] ? kmsan_get_metadata+0xfb/0x160 [ 485.542171][ T6832] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 485.548496][ T6832] __se_sys_ioctl+0x23c/0x400 [ 485.553455][ T6832] __x64_sys_ioctl+0x97/0xe0 [ 485.558302][ T6832] x64_sys_call+0x1ebe/0x3db0 [ 485.563236][ T6832] do_syscall_64+0xd9/0x210 [ 485.567963][ T6832] ? irqentry_exit+0x16/0x60 [ 485.572768][ T6832] ? clear_bhb_loop+0x40/0x90 [ 485.577663][ T6832] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.583811][ T6832] RIP: 0033:0x7f0f32d8e929 [ 485.588431][ T6832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.608364][ T6832] RSP: 002b:00007f0f33b6c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 485.617013][ T6832] RAX: ffffffffffffffda RBX: 00007f0f32fb5fa0 RCX: 00007f0f32d8e929 [ 485.625189][ T6832] RDX: 0000200000000200 RSI: 00000000000007ac RDI: 0000000000000003 [ 485.633342][ T6832] RBP: 00007f0f32e10b39 R08: 0000000000000000 R09: 0000000000000000 [ 485.641516][ T6832] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 485.649677][ T6832] R13: 0000000000000000 R14: 00007f0f32fb5fa0 R15: 00007ffc25a45238 [ 485.657865][ T6832] [ 485.661393][ T6832] Kernel Offset: disabled [ 485.665841][ T6832] Rebooting in 86400 seconds..