[ 76.000456][ T23] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.150' (ED25519) to the list of known hosts.
2023/12/09 14:58:46 ignoring optional flag "sandboxArg"="0"
2023/12/09 14:58:46 parsed 1 programs
2023/12/09 14:58:47 executed programs: 0
[ 78.207126][ T5413] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 78.255274][ T4465] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 78.262953][ T4465] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 78.270673][ T4465] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 78.278580][ T4465] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 78.286717][ T4465] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 78.293990][ T4465] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 78.403175][ T5419] chnl_net:caif_netlink_parms(): no params data found
[ 78.454692][ T5419] bridge0: port 1(bridge_slave_0) entered blocking state
[ 78.461846][ T5419] bridge0: port 1(bridge_slave_0) entered disabled state
[ 78.469001][ T5419] bridge_slave_0: entered allmulticast mode
[ 78.475616][ T5419] bridge_slave_0: entered promiscuous mode
[ 78.483223][ T5419] bridge0: port 2(bridge_slave_1) entered blocking state
[ 78.490377][ T5419] bridge0: port 2(bridge_slave_1) entered disabled state
[ 78.497560][ T5419] bridge_slave_1: entered allmulticast mode
[ 78.504492][ T5419] bridge_slave_1: entered promiscuous mode
[ 78.528020][ T5419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 78.540272][ T5419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 78.566775][ T5419] team0: Port device team_slave_0 added
[ 78.574601][ T5419] team0: Port device team_slave_1 added
[ 78.596203][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 78.603271][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 78.629260][ T5419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 78.642550][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 78.649543][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 78.675568][ T5419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 78.710632][ T5419] hsr_slave_0: entered promiscuous mode
[ 78.717140][ T5419] hsr_slave_1: entered promiscuous mode
[ 79.384304][ T5419] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 79.395231][ T5419] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 79.407450][ T5419] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 79.418301][ T5419] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 79.523872][ T5419] 8021q: adding VLAN 0 to HW filter on device bond0
[ 79.551625][ T5419] 8021q: adding VLAN 0 to HW filter on device team0
[ 79.564615][ T23] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.571803][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 79.590924][ T23] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.598067][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 79.794752][ T5419] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 79.846204][ T5419] veth0_vlan: entered promiscuous mode
[ 79.862922][ T5419] veth1_vlan: entered promiscuous mode
[ 79.905681][ T5419] veth0_macvtap: entered promiscuous mode
[ 79.916140][ T5419] veth1_macvtap: entered promiscuous mode
[ 79.940129][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 79.955780][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 79.971606][ T5419] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.982578][ T5419] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 79.993538][ T5419] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.003551][ T5419] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.074819][ T1063] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.090034][ T1063] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.122231][ T1063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.133038][ T1063] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.319550][ T5069] Bluetooth: hci0: command 0x0409 tx timeout
[ 80.451263][ T5485] loop0: detected capacity change from 0 to 32768
[ 80.489215][ T5485] ==================================================================
[ 80.497302][ T5485] BUG: KASAN: slab-use-after-free in dbAllocBits+0x618/0x630
[ 80.504677][ T5485] Read of size 8 at addr ffff8880205eaeb8 by task syz-executor.0/5485
[ 80.512831][ T5485]
[ 80.515157][ T5485] CPU: 1 PID: 5485 Comm: syz-executor.0 Not tainted 6.7.0-rc4-syzkaller-00358-gf2e8a57ee903 #0
[ 80.525572][ T5485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 80.535630][ T5485] Call Trace:
[ 80.538915][ T5485]
[ 80.541944][ T5485] dump_stack_lvl+0xd9/0x1b0
[ 80.546547][ T5485] print_report+0xc4/0x620
[ 80.550981][ T5485] ? __virt_addr_valid+0x5e/0x2d0
[ 80.556016][ T5485] ? __phys_addr+0xc6/0x140
[ 80.560530][ T5485] kasan_report+0xda/0x110
[ 80.564965][ T5485] ? dbAllocBits+0x618/0x630
[ 80.569560][ T5485] ? dbAllocBits+0x618/0x630
[ 80.574158][ T5485] dbAllocBits+0x618/0x630
[ 80.578587][ T5485] dbAllocDmap+0x5c/0x100
[ 80.582921][ T5485] dbAlloc+0x780/0xaa0
[ 80.587011][ T5485] ea_get+0xc0d/0x12c0
[ 80.591095][ T5485] ? ea_release+0x220/0x220
[ 80.595615][ T5485] __jfs_setxattr+0x1ed/0x1060
[ 80.600394][ T5485] ? ea_write+0xd00/0xd00
[ 80.604731][ T5485] ? posix_acl_to_xattr+0x2cb/0x380
[ 80.609937][ T5485] __jfs_set_acl+0x110/0x1a0
[ 80.614542][ T5485] jfs_set_acl+0x252/0x330
[ 80.618967][ T5485] ? jfs_get_acl+0x160/0x160
[ 80.623575][ T5485] ? make_vfsuid+0x108/0x160
[ 80.628176][ T5485] ? __generic_remap_file_range_prep+0xd70/0x1790
[ 80.634598][ T5485] ? lock_sync+0x190/0x190
[ 80.639039][ T5485] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 80.644939][ T5485] ? posix_acl_valid+0x2f2/0x340
[ 80.649881][ T5485] set_posix_acl+0x259/0x320
[ 80.654479][ T5485] vfs_set_acl+0x539/0x900
[ 80.658900][ T5485] do_set_acl+0xda/0x1b0
[ 80.663150][ T5485] do_setxattr+0xeb/0x170
[ 80.667500][ T5485] setxattr+0x159/0x170
[ 80.671669][ T5485] ? do_setxattr+0x170/0x170
[ 80.676296][ T5485] ? mnt_get_write_access+0x20c/0x300
[ 80.681673][ T5485] path_setxattr+0x175/0x1d0
[ 80.686277][ T5485] ? kernel_fpu_begin_mask+0x270/0x270
[ 80.691752][ T5485] ? setxattr+0x170/0x170
[ 80.696092][ T5485] __x64_sys_lsetxattr+0xc1/0x160
[ 80.701130][ T5485] ? syscall_enter_from_user_mode+0x7f/0x120
[ 80.707129][ T5485] do_syscall_64+0x40/0x110
[ 80.711640][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 80.717553][ T5485] RIP: 0033:0x7f4e80a7cb29
[ 80.721965][ T5485] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 80.741577][ T5485] RSP: 002b:00007f4e817420c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 80.749987][ T5485] RAX: ffffffffffffffda RBX: 00007f4e80b9bf80 RCX: 00007f4e80a7cb29
[ 80.757954][ T5485] RDX: 0000000020000180 RSI: 0000000020000040 RDI: 0000000020000000
[ 80.765922][ T5485] RBP: 00007f4e80ac847a R08: 0000000000000000 R09: 0000000000000000
[ 80.773892][ T5485] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000000
[ 80.781862][ T5485] R13: 000000000000000b R14: 00007f4e80b9bf80 R15: 00007ffca8ca4918
[ 80.789840][ T5485]
[ 80.792857][ T5485]
[ 80.795186][ T5485] Allocated by task 5468:
[ 80.799514][ T5485] kasan_save_stack+0x33/0x50
[ 80.804210][ T5485] kasan_set_track+0x25/0x30
[ 80.808816][ T5485] __kasan_slab_alloc+0x81/0x90
[ 80.813684][ T5485] kmem_cache_alloc+0x15d/0x2f0
[ 80.818561][ T5485] getname_flags.part.0+0x50/0x4e0
[ 80.823684][ T5485] getname_flags+0x9c/0xf0
[ 80.828127][ T5485] user_path_at_empty+0x2c/0x60
[ 80.832995][ T5485] user_statfs+0xa3/0x180
[ 80.837350][ T5485] __do_sys_statfs+0x8a/0x100
[ 80.842031][ T5485] do_syscall_64+0x40/0x110
[ 80.846540][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 80.852439][ T5485]
[ 80.854763][ T5485] Freed by task 5468:
[ 80.858745][ T5485] kasan_save_stack+0x33/0x50
[ 80.863440][ T5485] kasan_set_track+0x25/0x30
[ 80.868036][ T5485] kasan_save_free_info+0x2b/0x40
[ 80.873069][ T5485] ____kasan_slab_free+0x15b/0x1b0
[ 80.878191][ T5485] slab_free_freelist_hook+0x114/0x1e0
[ 80.883654][ T5485] kmem_cache_free+0xf8/0x350
[ 80.888346][ T5485] putname+0x12e/0x170
[ 80.892430][ T5485] user_path_at_empty+0x4c/0x60
[ 80.897302][ T5485] user_statfs+0xa3/0x180
[ 80.901639][ T5485] __do_sys_statfs+0x8a/0x100
[ 80.906335][ T5485] do_syscall_64+0x40/0x110
[ 80.910847][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 80.916751][ T5485]
[ 80.919075][ T5485] The buggy address belongs to the object at ffff8880205ea200
[ 80.919075][ T5485] which belongs to the cache names_cache of size 4096
[ 80.933217][ T5485] The buggy address is located 3256 bytes inside of
[ 80.933217][ T5485] freed 4096-byte region [ffff8880205ea200, ffff8880205eb200)
[ 80.947210][ T5485]
[ 80.949542][ T5485] The buggy address belongs to the physical page:
[ 80.955953][ T5485] page:ffffea0000817a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x205e8
[ 80.966108][ T5485] head:ffffea0000817a00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 80.975043][ T5485] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 80.983455][ T5485] page_type: 0xffffffff()
[ 80.987786][ T5485] raw: 00fff00000000840 ffff888015252780 0000000000000000 dead000000000001
[ 80.996366][ T5485] raw: 0000000000000000 0000000000070007 00000001ffffffff 0000000000000000
[ 81.004945][ T5485] page dumped because: kasan: bad access detected
[ 81.011347][ T5485] page_owner tracks the page as allocated
[ 81.017057][ T5485] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4521, tgid 4521 (udevd), ts 25728365439, free_ts 25717321495
[ 81.037807][ T5485] post_alloc_hook+0x2d0/0x350
[ 81.042598][ T5485] get_page_from_freelist+0xa25/0x36d0
[ 81.048077][ T5485] __alloc_pages+0x22e/0x2420
[ 81.052769][ T5485] alloc_pages_mpol+0x258/0x5f0
[ 81.057624][ T5485] new_slab+0x283/0x3c0
[ 81.061788][ T5485] ___slab_alloc+0x979/0x1500
[ 81.066470][ T5485] __slab_alloc.constprop.0+0x56/0xa0
[ 81.071847][ T5485] kmem_cache_alloc+0x2dc/0x2f0
[ 81.076704][ T5485] getname_flags.part.0+0x50/0x4e0
[ 81.081819][ T5485] getname+0x90/0xe0
[ 81.085720][ T5485] do_sys_openat2+0x100/0x1e0
[ 81.090413][ T5485] __x64_sys_openat+0x175/0x210
[ 81.095276][ T5485] do_syscall_64+0x40/0x110
[ 81.099839][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 81.107050][ T5485] page last free stack trace:
[ 81.111712][ T5485] free_unref_page_prepare+0x4fa/0xaa0
[ 81.117183][ T5485] free_unref_page+0x33/0x3b0
[ 81.121879][ T5485] __unfreeze_partials+0x226/0x240
[ 81.126994][ T5485] qlist_free_all+0x6a/0x170
[ 81.131611][ T5485] kasan_quarantine_reduce+0x18e/0x1d0
[ 81.137072][ T5485] __kasan_slab_alloc+0x65/0x90
[ 81.141930][ T5485] __kmem_cache_alloc_node+0x195/0x310
[ 81.147401][ T5485] __kmalloc+0x49/0x90
[ 81.151478][ T5485] tomoyo_realpath_from_path+0xb9/0x710
[ 81.157028][ T5485] tomoyo_path_perm+0x26f/0x450
[ 81.161879][ T5485] security_inode_getattr+0xf1/0x150
[ 81.167262][ T5485] vfs_fstat+0x4f/0xc0
[ 81.171344][ T5485] vfs_fstatat+0x130/0x140
[ 81.175768][ T5485] __do_sys_newfstatat+0x98/0x110
[ 81.180806][ T5485] do_syscall_64+0x40/0x110
[ 81.185325][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 81.191250][ T5485]
[ 81.193570][ T5485] Memory state around the buggy address:
[ 81.199192][ T5485] ffff8880205ead80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 81.207263][ T5485] ffff8880205eae00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 81.215326][ T5485] >ffff8880205eae80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 81.223381][ T5485] ^
[ 81.229267][ T5485] ffff8880205eaf00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 81.237323][ T5485] ffff8880205eaf80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 81.245384][ T5485] ==================================================================
[ 81.293270][ T5485] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 81.300482][ T5485] CPU: 1 PID: 5485 Comm: syz-executor.0 Not tainted 6.7.0-rc4-syzkaller-00358-gf2e8a57ee903 #0
[ 81.310804][ T5485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 81.320949][ T5485] Call Trace:
[ 81.324248][ T5485]
[ 81.327178][ T5485] dump_stack_lvl+0xd9/0x1b0
[ 81.331792][ T5485] panic+0x6dc/0x790
[ 81.335698][ T5485] ? panic_smp_self_stop+0xa0/0xa0
[ 81.340818][ T5485] ? irqentry_exit+0x3b/0x80
[ 81.345412][ T5485] ? lockdep_hardirqs_on+0x7d/0x110
[ 81.350621][ T5485] ? preempt_schedule_thunk+0x1a/0x30
[ 81.356008][ T5485] ? preempt_schedule_common+0x45/0xc0
[ 81.361486][ T5485] ? check_panic_on_warn+0x1f/0xb0
[ 81.366610][ T5485] check_panic_on_warn+0xab/0xb0
[ 81.371559][ T5485] end_report+0x108/0x150
[ 81.375901][ T5485] kasan_report+0xea/0x110
[ 81.380323][ T5485] ? dbAllocBits+0x618/0x630
[ 81.384914][ T5485] ? dbAllocBits+0x618/0x630
[ 81.389512][ T5485] dbAllocBits+0x618/0x630
[ 81.393933][ T5485] dbAllocDmap+0x5c/0x100
[ 81.398269][ T5485] dbAlloc+0x780/0xaa0
[ 81.402339][ T5485] ea_get+0xc0d/0x12c0
[ 81.406399][ T5485] ? ea_release+0x220/0x220
[ 81.410891][ T5485] __jfs_setxattr+0x1ed/0x1060
[ 81.415643][ T5485] ? ea_write+0xd00/0xd00
[ 81.419959][ T5485] ? posix_acl_to_xattr+0x2cb/0x380
[ 81.425146][ T5485] __jfs_set_acl+0x110/0x1a0
[ 81.429726][ T5485] jfs_set_acl+0x252/0x330
[ 81.434157][ T5485] ? jfs_get_acl+0x160/0x160
[ 81.438752][ T5485] ? make_vfsuid+0x108/0x160
[ 81.443331][ T5485] ? __generic_remap_file_range_prep+0xd70/0x1790
[ 81.449733][ T5485] ? lock_sync+0x190/0x190
[ 81.454153][ T5485] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 81.460654][ T5485] ? posix_acl_valid+0x2f2/0x340
[ 81.465581][ T5485] set_posix_acl+0x259/0x320
[ 81.470159][ T5485] vfs_set_acl+0x539/0x900
[ 81.474565][ T5485] do_set_acl+0xda/0x1b0
[ 81.478794][ T5485] do_setxattr+0xeb/0x170
[ 81.483131][ T5485] setxattr+0x159/0x170
[ 81.487281][ T5485] ? do_setxattr+0x170/0x170
[ 81.491871][ T5485] ? mnt_get_write_access+0x20c/0x300
[ 81.497231][ T5485] path_setxattr+0x175/0x1d0
[ 81.501818][ T5485] ? kernel_fpu_begin_mask+0x270/0x270
[ 81.507278][ T5485] ? setxattr+0x170/0x170
[ 81.511599][ T5485] __x64_sys_lsetxattr+0xc1/0x160
[ 81.516702][ T5485] ? syscall_enter_from_user_mode+0x7f/0x120
[ 81.522693][ T5485] do_syscall_64+0x40/0x110
[ 81.527201][ T5485] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 81.533090][ T5485] RIP: 0033:0x7f4e80a7cb29
[ 81.537489][ T5485] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 81.557079][ T5485] RSP: 002b:00007f4e817420c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 81.565474][ T5485] RAX: ffffffffffffffda RBX: 00007f4e80b9bf80 RCX: 00007f4e80a7cb29
[ 81.573445][ T5485] RDX: 0000000020000180 RSI: 0000000020000040 RDI: 0000000020000000
[ 81.581413][ T5485] RBP: 00007f4e80ac847a R08: 0000000000000000 R09: 0000000000000000
[ 81.589367][ T5485] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000000
[ 81.597324][ T5485] R13: 000000000000000b R14: 00007f4e80b9bf80 R15: 00007ffca8ca4918
[ 81.605289][ T5485]
[ 81.608559][ T5485] Kernel Offset: disabled
[ 81.612857][ T5485] Rebooting in 86400 seconds..