Warning: Permanently added '10.128.1.124' (ED25519) to the list of known hosts.
2023/12/19 08:34:22 ignoring optional flag "sandboxArg"="0"
2023/12/19 08:34:22 parsed 1 programs
2023/12/19 08:34:24 executed programs: 0
[   81.900999][ T5403] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   81.966753][ T5063] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   81.974699][ T5063] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   81.982784][ T5063] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   81.991262][ T5063] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   81.999126][ T5063] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   82.006776][ T5063] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   82.123251][ T5411] chnl_net:caif_netlink_parms(): no params data found
[   82.175830][ T5411] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.183031][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.190341][ T5411] bridge_slave_0: entered allmulticast mode
[   82.197278][ T5411] bridge_slave_0: entered promiscuous mode
[   82.205305][ T5411] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.212870][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.220182][ T5411] bridge_slave_1: entered allmulticast mode
[   82.226969][ T5411] bridge_slave_1: entered promiscuous mode
[   82.252050][ T5411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.263962][ T5411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.290936][ T5411] team0: Port device team_slave_0 added
[   82.298624][ T5411] team0: Port device team_slave_1 added
[   82.321348][ T5411] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.328364][ T5411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.355569][ T5411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.369750][ T5411] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.370423][   T23] cfg80211: failed to load regulatory.db
[   82.376887][ T5411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.409539][ T5411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   82.450053][ T5411] hsr_slave_0: entered promiscuous mode
[   82.456465][ T5411] hsr_slave_1: entered promiscuous mode
[   83.133492][ T5411] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   83.154213][ T5411] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   83.165556][ T5411] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   83.180158][ T5411] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   83.276386][ T5411] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.303915][ T5411] 8021q: adding VLAN 0 to HW filter on device team0
[   83.324018][ T5070] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.331258][ T5070] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.348566][ T5070] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.355857][ T5070] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.413194][ T5411] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.577165][ T5411] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.636036][ T5411] veth0_vlan: entered promiscuous mode
[   83.654044][ T5411] veth1_vlan: entered promiscuous mode
[   83.697878][ T5411] veth0_macvtap: entered promiscuous mode
[   83.711116][ T5411] veth1_macvtap: entered promiscuous mode
[   83.737128][ T5411] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.756648][ T5411] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.785298][ T5411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.795362][ T5411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.806117][ T5411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.816052][ T5411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.909965][  T779] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.917928][  T779] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.958992][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.968667][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.100934][ T5063] Bluetooth: hci0: command 0x0409 tx timeout
[   84.334388][ T5475] loop0: detected capacity change from 0 to 32768
[   84.351133][ T5475] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (5475)
[   84.384176][ T5475] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   84.396826][ T5475] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   84.405934][ T5475] BTRFS info (device loop0): enabling auto defrag
[   84.413698][ T5475] BTRFS info (device loop0): enabling disk space caching
[   84.430982][ T5475] BTRFS info (device loop0): max_inline at 0
[   84.437053][ T5475] BTRFS info (device loop0): force clearing of disk cache
[   84.444570][ T5475] BTRFS info (device loop0): turning on sync discard
[   84.452660][ T5475] BTRFS info (device loop0): disk space caching is enabled
[   84.492469][ T5475] BTRFS info (device loop0): enabling ssd optimizations
[   84.504380][ T5475] BTRFS info (device loop0): rebuilding free space tree
[   84.562481][ T5475] BTRFS info (device loop0): disabling free space tree
[   84.570938][ T5475] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   84.585690][ T5475] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   84.635901][ T5475] ==================================================================
[   84.644089][ T5475] BUG: KASAN: slab-out-of-bounds in btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   84.652721][ T5475] Read of size 8 at addr ffff8880239268d8 by task syz-executor.0/5475
[   84.660896][ T5475] 
[   84.663237][ T5475] CPU: 1 PID: 5475 Comm: syz-executor.0 Not tainted 6.7.0-rc5-syzkaller-00200-g3bd7d7488169-dirty #0
[   84.674189][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   84.684361][ T5475] Call Trace:
[   84.687677][ T5475]  <TASK>
[   84.690631][ T5475]  dump_stack_lvl+0x1e7/0x2d0
[   84.695346][ T5475]  ? nf_tcp_handle_invalid+0x650/0x650
[   84.700960][ T5475]  ? panic+0x850/0x850
[   84.705064][ T5475]  ? _printk+0xd5/0x120
[   84.709343][ T5475]  print_report+0x163/0x540
[   84.713879][ T5475]  ? __virt_addr_valid+0x22f/0x2e0
[   84.719197][ T5475]  ? __phys_addr+0xba/0x170
[   84.723737][ T5475]  ? btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   84.729755][ T5475]  kasan_report+0x142/0x170
[   84.734409][ T5475]  ? btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   84.740337][ T5475]  btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   84.746285][ T5475]  ? btrfs_finish_block_group_to_copy+0x480/0x480
[   84.752754][ T5475]  ? btrfs_ioctl_dev_replace+0x2be/0x390
[   84.758424][ T5475]  ? do_raw_spin_lock+0x14e/0x370
[   84.763487][ T5475]  ? __lock_acquire+0x1fd0/0x1fd0
[   84.768645][ T5475]  ? do_raw_spin_unlock+0x13b/0x8b0
[   84.774064][ T5475]  btrfs_ioctl_dev_replace+0x2c9/0x390
[   84.779665][ T5475]  ? btrfs_ioctl_get_supported_features+0x50/0x50
[   84.786209][ T5475]  __se_sys_ioctl+0xf8/0x170
[   84.791136][ T5475]  do_syscall_64+0x45/0x110
[   84.795819][ T5475]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   84.801762][ T5475] RIP: 0033:0x7ff58447cba9
[   84.806233][ T5475] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   84.826229][ T5475] RSP: 002b:00007ff5852580c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   84.834937][ T5475] RAX: ffffffffffffffda RBX: 00007ff58459bf80 RCX: 00007ff58447cba9
[   84.842941][ T5475] RDX: 0000000020000540 RSI: 00000000ca289435 RDI: 0000000000000005
[   84.851045][ T5475] RBP: 00007ff5844c847a R08: 0000000000000000 R09: 0000000000000000
[   84.859140][ T5475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.867136][ T5475] R13: 000000000000000b R14: 00007ff58459bf80 R15: 00007fff749803c8
[   84.875153][ T5475]  </TASK>
[   84.878188][ T5475] 
[   84.880618][ T5475] Allocated by task 5475:
[   84.885114][ T5475]  kasan_set_track+0x4f/0x70
[   84.889739][ T5475]  __kasan_kmalloc+0x98/0xb0
[   84.894439][ T5475]  __kmalloc_node_track_caller+0xb1/0x190
[   84.900183][ T5475]  memdup_user+0x2b/0xc0
[   84.904454][ T5475]  btrfs_ioctl_dev_replace+0xb8/0x390
[   84.909855][ T5475]  __se_sys_ioctl+0xf8/0x170
[   84.914566][ T5475]  do_syscall_64+0x45/0x110
[   84.919108][ T5475]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   84.925121][ T5475] 
[   84.927448][ T5475] The buggy address belongs to the object at ffff8880239268c0
[   84.927448][ T5475]  which belongs to the cache kmalloc-32 of size 32
[   84.941871][ T5475] The buggy address is located 7 bytes to the right of
[   84.941871][ T5475]  allocated 17-byte region [ffff8880239268c0, ffff8880239268d1)
[   84.956482][ T5475] 
[   84.958831][ T5475] The buggy address belongs to the physical page:
[   84.965257][ T5475] page:ffffea00008e4980 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x23926
[   84.975432][ T5475] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[   84.983179][ T5475] page_type: 0xffffffff()
[   84.987571][ T5475] raw: 00fff00000000800 ffff888012c41500 ffffea000099dd40 dead000000000002
[   84.996321][ T5475] raw: 0000000000000000 0000000080400040 00000001ffffffff 0000000000000000
[   85.005182][ T5475] page dumped because: kasan: bad access detected
[   85.011610][ T5475] page_owner tracks the page as allocated
[   85.017345][ T5475] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 11104550106, free_ts 11081252843
[   85.035000][ T5475]  post_alloc_hook+0x1e6/0x210
[   85.039803][ T5475]  get_page_from_freelist+0x33ea/0x3570
[   85.045377][ T5475]  __alloc_pages+0x255/0x680
[   85.049993][ T5475]  alloc_pages_mpol+0x3de/0x640
[   85.054869][ T5475]  alloc_slab_page+0x6a/0x170
[   85.059566][ T5475]  new_slab+0x84/0x2f0
[   85.063752][ T5475]  ___slab_alloc+0xc8a/0x1330
[   85.068455][ T5475]  __kmem_cache_alloc_node+0x21d/0x300
[   85.074031][ T5475]  __kmalloc_node_track_caller+0xa0/0x190
[   85.079773][ T5475]  kvasprintf+0xdf/0x190
[   85.084035][ T5475]  __kthread_create_on_node+0x1a9/0x3c0
[   85.089606][ T5475]  kthread_create_on_node+0xde/0x120
[   85.094919][ T5475]  vivid_probe+0x5422/0x6fa0
[   85.099542][ T5475]  platform_probe+0x135/0x1b0
[   85.104242][ T5475]  really_probe+0x294/0xc30
[   85.108769][ T5475]  __driver_probe_device+0x1a2/0x3d0
[   85.114089][ T5475] page last free stack trace:
[   85.118778][ T5475]  free_unref_page_prepare+0x931/0xa60
[   85.124614][ T5475]  free_unref_page+0x37/0x3f0
[   85.129322][ T5475]  __mmdrop+0xb8/0x3d0
[   85.133419][ T5475]  free_bprm+0x144/0x330
[   85.137779][ T5475]  kernel_execve+0x8f7/0xa20
[   85.142410][ T5475]  call_usermodehelper_exec_async+0x233/0x370
[   85.148508][ T5475]  ret_from_fork+0x48/0x80
[   85.152985][ T5475]  ret_from_fork_asm+0x11/0x20
[   85.157789][ T5475] 
[   85.160121][ T5475] Memory state around the buggy address:
[   85.165940][ T5475]  ffff888023926780: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[   85.174035][ T5475]  ffff888023926800: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   85.182205][ T5475] >ffff888023926880: fb fb fb fb fc fc fc fc 00 00 01 fc fc fc fc fc
[   85.190376][ T5475]                                                     ^
[   85.197433][ T5475]  ffff888023926900: 00 00 03 fc fc fc fc fc 00 00 00 fc fc fc fc fc
[   85.205528][ T5475]  ffff888023926980: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   85.214231][ T5475] ==================================================================
[   85.247347][ T5475] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   85.254653][ T5475] CPU: 1 PID: 5475 Comm: syz-executor.0 Not tainted 6.7.0-rc5-syzkaller-00200-g3bd7d7488169-dirty #0
[   85.265706][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[   85.276148][ T5475] Call Trace:
[   85.279472][ T5475]  <TASK>
[   85.282428][ T5475]  dump_stack_lvl+0x1e7/0x2d0
[   85.287485][ T5475]  ? nf_tcp_handle_invalid+0x650/0x650
[   85.293076][ T5475]  ? panic+0x850/0x850
[   85.297249][ T5475]  ? vscnprintf+0x5d/0x80
[   85.301627][ T5475]  panic+0x349/0x850
[   85.305550][ T5475]  ? check_panic_on_warn+0x21/0xa0
[   85.310777][ T5475]  ? __memcpy_flushcache+0x2b0/0x2b0
[   85.316097][ T5475]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   85.322132][ T5475]  ? _raw_spin_unlock+0x40/0x40
[   85.327009][ T5475]  ? print_report+0x4fb/0x540
[   85.331725][ T5475]  check_panic_on_warn+0x82/0xa0
[   85.336875][ T5475]  ? btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   85.342803][ T5475]  end_report+0x6e/0x140
[   85.347076][ T5475]  kasan_report+0x153/0x170
[   85.351617][ T5475]  ? btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   85.359447][ T5475]  btrfs_dev_replace_by_ioctl+0xb6/0x2010
[   85.365469][ T5475]  ? btrfs_finish_block_group_to_copy+0x480/0x480
[   85.372175][ T5475]  ? btrfs_ioctl_dev_replace+0x2be/0x390
[   85.377814][ T5475]  ? do_raw_spin_lock+0x14e/0x370
[   85.383015][ T5475]  ? __lock_acquire+0x1fd0/0x1fd0
[   85.388182][ T5475]  ? do_raw_spin_unlock+0x13b/0x8b0
[   85.393561][ T5475]  btrfs_ioctl_dev_replace+0x2c9/0x390
[   85.399260][ T5475]  ? btrfs_ioctl_get_supported_features+0x50/0x50
[   85.405666][ T5475]  __se_sys_ioctl+0xf8/0x170
[   85.410265][ T5475]  do_syscall_64+0x45/0x110
[   85.414925][ T5475]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   85.420825][ T5475] RIP: 0033:0x7ff58447cba9
[   85.425250][ T5475] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   85.444981][ T5475] RSP: 002b:00007ff5852580c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   85.453401][ T5475] RAX: ffffffffffffffda RBX: 00007ff58459bf80 RCX: 00007ff58447cba9
[   85.461490][ T5475] RDX: 0000000020000540 RSI: 00000000ca289435 RDI: 0000000000000005
[   85.469565][ T5475] RBP: 00007ff5844c847a R08: 0000000000000000 R09: 0000000000000000
[   85.477719][ T5475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.485719][ T5475] R13: 000000000000000b R14: 00007ff58459bf80 R15: 00007fff749803c8
[   85.493800][ T5475]  </TASK>
[   85.497148][ T5475] Kernel Offset: disabled
[   85.501638][ T5475] Rebooting in 86400 seconds..