Warning: Permanently added '10.128.0.218' (ED25519) to the list of known hosts. 2025/06/20 02:50:51 ignoring optional flag "sandboxArg"="0" 2025/06/20 02:50:53 parsed 1 programs [ 342.484244][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.492352][ T1291] ieee802154 phy1 wpan1: encryption failed: -22 [ 374.905440][ T6356] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 381.869800][ T6393] chnl_net:caif_netlink_parms(): no params data found [ 382.157712][ T6393] bridge0: port 1(bridge_slave_0) entered blocking state [ 382.165160][ T6393] bridge0: port 1(bridge_slave_0) entered disabled state [ 382.173427][ T6393] bridge_slave_0: entered allmulticast mode [ 382.181819][ T6393] bridge_slave_0: entered promiscuous mode [ 382.194584][ T6393] bridge0: port 2(bridge_slave_1) entered blocking state [ 382.202214][ T6393] bridge0: port 2(bridge_slave_1) entered disabled state [ 382.211688][ T6393] bridge_slave_1: entered allmulticast mode [ 382.220151][ T6393] bridge_slave_1: entered promiscuous mode [ 382.285615][ T6393] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 382.302831][ T6393] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 382.368697][ T6393] team0: Port device team_slave_0 added [ 382.382803][ T6393] team0: Port device team_slave_1 added [ 382.440939][ T6393] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 382.449581][ T6393] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 382.476312][ T6393] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 382.491096][ T6393] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 382.498673][ T6393] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 382.526277][ T6393] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 382.623373][ T6393] hsr_slave_0: entered promiscuous mode [ 382.631885][ T6393] hsr_slave_1: entered promiscuous mode [ 383.501567][ T6393] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 383.525497][ T6393] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 383.551575][ T6393] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 383.575613][ T6393] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 383.923920][ T6393] 8021q: adding VLAN 0 to HW filter on device bond0 [ 383.991581][ T6393] 8021q: adding VLAN 0 to HW filter on device team0 [ 384.022134][ T1829] bridge0: port 1(bridge_slave_0) entered blocking state [ 384.029793][ T1829] bridge0: port 1(bridge_slave_0) entered forwarding state [ 384.066098][ T1829] bridge0: port 2(bridge_slave_1) entered blocking state [ 384.073787][ T1829] bridge0: port 2(bridge_slave_1) entered forwarding state [ 384.661779][ T6393] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 384.825926][ T6393] veth0_vlan: entered promiscuous mode [ 384.869266][ T6393] veth1_vlan: entered promiscuous mode [ 384.992964][ T6393] veth0_macvtap: entered promiscuous mode [ 385.026720][ T6393] veth1_macvtap: entered promiscuous mode [ 385.109366][ T6393] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 385.158435][ T6393] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 385.194591][ T6393] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.204720][ T6393] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.214039][ T6393] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 385.223236][ T6393] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.375093][ T1150] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.543694][ T1150] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.682651][ T1150] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 387.794350][ T1150] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 388.019611][ T1150] bridge_slave_1: left allmulticast mode [ 388.025577][ T1150] bridge_slave_1: left promiscuous mode [ 388.032584][ T1150] bridge0: port 2(bridge_slave_1) entered disabled state [ 388.059039][ T1150] bridge_slave_0: left allmulticast mode [ 388.065160][ T1150] bridge_slave_0: left promiscuous mode [ 388.072349][ T1150] bridge0: port 1(bridge_slave_0) entered disabled state [ 388.508950][ T1150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 388.540255][ T1150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 388.555724][ T1150] bond0 (unregistering): Released all slaves [ 388.868593][ T1150] hsr_slave_0: left promiscuous mode [ 388.908441][ T1150] hsr_slave_1: left promiscuous mode [ 388.916095][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 388.924060][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 388.987715][ T1150] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 388.995620][ T1150] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 389.027767][ T1150] veth1_macvtap: left promiscuous mode [ 389.033677][ T1150] veth0_macvtap: left promiscuous mode [ 389.040174][ T1150] veth1_vlan: left promiscuous mode [ 389.045735][ T1150] veth0_vlan: left promiscuous mode [ 389.701582][ T1150] team0 (unregistering): Port device team_slave_1 removed [ 389.810021][ T1150] team0 (unregistering): Port device team_slave_0 removed [ 390.528628][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 390.541646][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 390.551049][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 390.566299][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 390.577727][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 393.235605][ T4179] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 393.244016][ T4179] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 393.298953][ T1826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 393.307325][ T1826] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/20 02:52:13 executed programs: 0 [ 396.700888][ T5092] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 396.710433][ T5092] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 396.720290][ T5092] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 396.734265][ T5092] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 396.749339][ T5092] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 397.244011][ T6626] chnl_net:caif_netlink_parms(): no params data found [ 397.672004][ T6626] bridge0: port 1(bridge_slave_0) entered blocking state [ 397.680088][ T6626] bridge0: port 1(bridge_slave_0) entered disabled state [ 397.688318][ T6626] bridge_slave_0: entered allmulticast mode [ 397.697871][ T6626] bridge_slave_0: entered promiscuous mode [ 397.718004][ T6626] bridge0: port 2(bridge_slave_1) entered blocking state [ 397.725590][ T6626] bridge0: port 2(bridge_slave_1) entered disabled state [ 397.733508][ T6626] bridge_slave_1: entered allmulticast mode [ 397.742857][ T6626] bridge_slave_1: entered promiscuous mode [ 397.834852][ T6626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 397.861865][ T6626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 397.947930][ T6626] team0: Port device team_slave_0 added [ 397.963996][ T6626] team0: Port device team_slave_1 added [ 398.045589][ T6626] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 398.054035][ T6626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.081689][ T6626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 398.100176][ T6626] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 398.108064][ T6626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 398.135069][ T6626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 398.281256][ T6626] hsr_slave_0: entered promiscuous mode [ 398.291433][ T6626] hsr_slave_1: entered promiscuous mode [ 398.789417][ T5092] Bluetooth: hci0: command tx timeout [ 399.011694][ T6626] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 399.033262][ T6626] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 399.057678][ T6626] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 399.079691][ T6626] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 399.404869][ T6626] 8021q: adding VLAN 0 to HW filter on device bond0 [ 399.458768][ T6626] 8021q: adding VLAN 0 to HW filter on device team0 [ 399.488989][ T1829] bridge0: port 1(bridge_slave_0) entered blocking state [ 399.496515][ T1829] bridge0: port 1(bridge_slave_0) entered forwarding state [ 399.532126][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state [ 399.539817][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 399.693227][ T6626] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 400.177237][ T6626] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 400.343450][ T6626] veth0_vlan: entered promiscuous mode [ 400.383246][ T6626] veth1_vlan: entered promiscuous mode [ 400.518998][ T6626] veth0_macvtap: entered promiscuous mode [ 400.546983][ T6626] veth1_macvtap: entered promiscuous mode [ 400.619649][ T6626] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 400.660140][ T6626] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 400.693658][ T6626] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.703214][ T6626] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.713987][ T6626] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.723192][ T6626] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 400.867685][ T5092] Bluetooth: hci0: command tx timeout [ 402.510729][ T1150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.519008][ T1150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 402.607390][ T4179] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 402.615633][ T4179] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/20 02:52:19 executed programs: 2 [ 402.824659][ T6732] ===================================================== [ 402.832306][ T6732] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120 [ 402.840340][ T6732] _copy_to_user+0xcc/0x120 [ 402.845052][ T6732] vmci_host_unlocked_ioctl+0x1e7e/0x5200 [ 402.851384][ T6732] __se_sys_ioctl+0x23c/0x400 [ 402.856267][ T6732] __x64_sys_ioctl+0x97/0xe0 [ 402.861277][ T6732] x64_sys_call+0x1ebe/0x3db0 [ 402.866244][ T6732] do_syscall_64+0xd9/0x210 [ 402.872045][ T6732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.878357][ T6732] [ 402.880934][ T6732] Uninit was stored to memory at: [ 402.886483][ T6732] kmemdup_noprof+0xb0/0x100 [ 402.891420][ T6732] vmci_datagram_dispatch+0x4eb/0x1560 [ 402.897414][ T6732] vmci_ctx_put+0x88e/0x15d0 [ 402.902259][ T6732] vmci_ctx_destroy+0x15d/0x250 [ 402.907648][ T6732] vmci_host_unlocked_ioctl+0x4592/0x5200 [ 402.913582][ T6732] __se_sys_ioctl+0x23c/0x400 [ 402.918626][ T6732] __x64_sys_ioctl+0x97/0xe0 [ 402.923429][ T6732] x64_sys_call+0x1ebe/0x3db0 [ 402.928485][ T6732] do_syscall_64+0xd9/0x210 [ 402.933173][ T6732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 402.939600][ T6732] [ 402.942123][ T6732] Local variable ev.i.i created at: [ 402.947750][ T6732] vmci_ctx_put+0x76b/0x15d0 [ 402.952551][ T6732] vmci_ctx_destroy+0x15d/0x250 [ 402.957781][ T6732] [ 402.960202][ T6732] Bytes 28-31 of 40 are uninitialized [ 402.965699][ T6732] Memory access of size 40 starts at ffff888116238bc0 [ 402.972892][ T6732] Data copied to user address 000000000000a4bf [ 402.979323][ T6732] [ 402.981796][ T6732] CPU: 1 UID: 0 PID: 6732 Comm: syz.0.16 Not tainted 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b-dirty #0 PREEMPT(undef) [ 402.994691][ T6732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 403.005414][ T6732] ===================================================== [ 403.012323][ T5092] Bluetooth: hci0: command tx timeout [ 403.012572][ T6732] Disabling lock debugging due to kernel taint [ 403.024342][ T6732] Kernel panic - not syncing: kmsan.panic set ... [ 403.030938][ T6732] CPU: 1 UID: 0 PID: 6732 Comm: syz.0.16 Tainted: G B 6.16.0-rc2-syzkaller-00162-g41687a5c6f8b-dirty #0 PREEMPT(undef) [ 403.045156][ T6732] Tainted: [B]=BAD_PAGE [ 403.049514][ T6732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 403.059920][ T6732] Call Trace: [ 403.063428][ T6732] [ 403.066475][ T6732] __dump_stack+0x26/0x30 [ 403.071092][ T6732] dump_stack_lvl+0x53/0x270 [ 403.075897][ T6732] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 403.081949][ T6732] dump_stack+0x1e/0x25 [ 403.086307][ T6732] panic+0x4bd/0xd50 [ 403.090541][ T6732] kmsan_report+0x31c/0x320 [ 403.095344][ T6732] ? kmsan_internal_check_memory+0x16c/0x230 [ 403.101703][ T6732] ? kmsan_copy_to_user+0xf1/0x190 [ 403.107037][ T6732] ? _copy_to_user+0xcc/0x120 [ 403.111917][ T6732] ? vmci_host_unlocked_ioctl+0x1e7e/0x5200 [ 403.118022][ T6732] ? __se_sys_ioctl+0x23c/0x400 [ 403.123165][ T6732] ? __x64_sys_ioctl+0x97/0xe0 [ 403.128139][ T6732] ? x64_sys_call+0x1ebe/0x3db0 [ 403.133213][ T6732] ? do_syscall_64+0xd9/0x210 [ 403.138175][ T6732] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.144453][ T6732] ? slab_update_freelist+0x217/0x300 [ 403.150092][ T6732] ? __slab_free+0x367/0x9e0 [ 403.155025][ T6732] ? kmsan_get_metadata+0xfb/0x160 [ 403.160376][ T6732] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 403.166443][ T6732] kmsan_internal_check_memory+0x16c/0x230 [ 403.172503][ T6732] kmsan_copy_to_user+0xf1/0x190 [ 403.177680][ T6732] _copy_to_user+0xcc/0x120 [ 403.182500][ T6732] vmci_host_unlocked_ioctl+0x1e7e/0x5200 [ 403.188832][ T6732] ? kmsan_get_metadata+0xfb/0x160 [ 403.194226][ T6732] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 403.200526][ T6732] __se_sys_ioctl+0x23c/0x400 [ 403.205459][ T6732] __x64_sys_ioctl+0x97/0xe0 [ 403.210395][ T6732] x64_sys_call+0x1ebe/0x3db0 [ 403.215336][ T6732] do_syscall_64+0xd9/0x210 [ 403.220067][ T6732] ? irqentry_exit+0x16/0x60 [ 403.224857][ T6732] ? clear_bhb_loop+0x40/0x90 [ 403.229774][ T6732] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 403.235901][ T6732] RIP: 0033:0x7f49ed78e929 [ 403.240494][ T6732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 403.260613][ T6732] RSP: 002b:00007f49ec9fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 403.269311][ T6732] RAX: ffffffffffffffda RBX: 00007f49ed9b5fa0 RCX: 00007f49ed78e929 [ 403.277473][ T6732] RDX: 0000200000000200 RSI: 00000000000007ac RDI: 0000000000000003 [ 403.285719][ T6732] RBP: 00007f49ed810b39 R08: 0000000000000000 R09: 0000000000000000 [ 403.293980][ T6732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 403.302125][ T6732] R13: 0000000000000000 R14: 00007f49ed9b5fa0 R15: 00007ffd2d8eb708 [ 403.310586][ T6732] [ 403.313925][ T6732] Kernel Offset: disabled [ 403.318348][ T6732] Rebooting in 86400 seconds..