Warning: Permanently added '10.128.10.38' (ED25519) to the list of known hosts. 2025/06/22 05:15:49 ignoring optional flag "sandboxArg"="0" 2025/06/22 05:15:52 parsed 1 programs [ 342.282000][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.288957][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 384.879355][ T6423] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 393.333144][ T6476] chnl_net:caif_netlink_parms(): no params data found [ 393.684982][ T6476] bridge0: port 1(bridge_slave_0) entered blocking state [ 393.692822][ T6476] bridge0: port 1(bridge_slave_0) entered disabled state [ 393.701940][ T6476] bridge_slave_0: entered allmulticast mode [ 393.710263][ T6476] bridge_slave_0: entered promiscuous mode [ 393.722687][ T6476] bridge0: port 2(bridge_slave_1) entered blocking state [ 393.730293][ T6476] bridge0: port 2(bridge_slave_1) entered disabled state [ 393.739957][ T6476] bridge_slave_1: entered allmulticast mode [ 393.748720][ T6476] bridge_slave_1: entered promiscuous mode [ 393.812317][ T6476] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 393.831020][ T6476] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 393.894711][ T6476] team0: Port device team_slave_0 added [ 393.911530][ T6476] team0: Port device team_slave_1 added [ 393.969743][ T6476] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 393.978241][ T6476] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 394.004954][ T6476] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 394.021067][ T6476] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 394.028354][ T6476] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 394.054649][ T6476] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 394.141566][ T6476] hsr_slave_0: entered promiscuous mode [ 394.151966][ T6476] hsr_slave_1: entered promiscuous mode [ 395.107810][ T6476] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 395.132107][ T6476] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 395.158222][ T6476] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 395.184079][ T6476] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 395.519261][ T6476] 8021q: adding VLAN 0 to HW filter on device bond0 [ 395.580041][ T6476] 8021q: adding VLAN 0 to HW filter on device team0 [ 395.610330][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 395.617947][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 395.649135][ T3941] bridge0: port 2(bridge_slave_1) entered blocking state [ 395.656946][ T3941] bridge0: port 2(bridge_slave_1) entered forwarding state [ 396.272696][ T6476] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 396.452603][ T6476] veth0_vlan: entered promiscuous mode [ 396.489913][ T6476] veth1_vlan: entered promiscuous mode [ 396.606026][ T6476] veth0_macvtap: entered promiscuous mode [ 396.628454][ T6476] veth1_macvtap: entered promiscuous mode [ 396.692911][ T6476] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 396.728394][ T6476] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 396.776711][ T6476] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.785870][ T6476] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.794891][ T6476] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 396.804275][ T6476] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.971482][ T3790] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.091492][ T3790] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.200945][ T3790] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.363950][ T3790] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 399.739389][ T3790] bridge_slave_1: left allmulticast mode [ 399.745488][ T3790] bridge_slave_1: left promiscuous mode [ 399.752101][ T3790] bridge0: port 2(bridge_slave_1) entered disabled state [ 399.795523][ T3790] bridge_slave_0: left allmulticast mode [ 399.801459][ T3790] bridge_slave_0: left promiscuous mode [ 399.808264][ T3790] bridge0: port 1(bridge_slave_0) entered disabled state [ 400.282046][ T3790] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 400.329170][ T3790] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 400.358424][ T3790] bond0 (unregistering): Released all slaves [ 400.543410][ T3790] hsr_slave_0: left promiscuous mode [ 400.572528][ T3790] hsr_slave_1: left promiscuous mode [ 400.580358][ T3790] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 400.588156][ T3790] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 400.627995][ T3790] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 400.635752][ T3790] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 400.664161][ T3790] veth1_macvtap: left promiscuous mode [ 400.671121][ T3790] veth0_macvtap: left promiscuous mode [ 400.678575][ T3790] veth1_vlan: left promiscuous mode [ 400.684152][ T3790] veth0_vlan: left promiscuous mode [ 401.394652][ T3790] team0 (unregistering): Port device team_slave_1 removed [ 401.436065][ T3790] team0 (unregistering): Port device team_slave_0 removed [ 403.744195][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.751232][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 403.915536][ T4309] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 403.923726][ T4309] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 404.011126][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 404.019624][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 405.154481][ T5898] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 405.177196][ T5898] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 405.186753][ T5898] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 405.202037][ T5898] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 405.213615][ T5898] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 2025/06/22 05:17:15 executed programs: 0 [ 407.563667][ T5088] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 407.577830][ T5088] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 407.587694][ T5088] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 407.602577][ T5088] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 407.617482][ T5088] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 408.149162][ T6681] chnl_net:caif_netlink_parms(): no params data found [ 408.573904][ T6681] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.581665][ T6681] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.590595][ T6681] bridge_slave_0: entered allmulticast mode [ 408.598762][ T6681] bridge_slave_0: entered promiscuous mode [ 408.612111][ T6681] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.619808][ T6681] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.627543][ T6681] bridge_slave_1: entered allmulticast mode [ 408.639439][ T6681] bridge_slave_1: entered promiscuous mode [ 408.736330][ T6681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 408.757762][ T6681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 408.846792][ T6681] team0: Port device team_slave_0 added [ 408.868833][ T6681] team0: Port device team_slave_1 added [ 408.949423][ T6681] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 408.958696][ T6681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 408.985328][ T6681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 409.003093][ T6681] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 409.012477][ T6681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 409.039208][ T6681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 409.174395][ T6681] hsr_slave_0: entered promiscuous mode [ 409.184122][ T6681] hsr_slave_1: entered promiscuous mode [ 409.706409][ T5088] Bluetooth: hci0: command tx timeout [ 409.901270][ T6681] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 409.923798][ T6681] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 409.945675][ T6681] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 409.968047][ T6681] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 410.300904][ T6681] 8021q: adding VLAN 0 to HW filter on device bond0 [ 410.362906][ T6681] 8021q: adding VLAN 0 to HW filter on device team0 [ 410.395664][ T4309] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.403239][ T4309] bridge0: port 1(bridge_slave_0) entered forwarding state [ 410.438868][ T4309] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.446507][ T4309] bridge0: port 2(bridge_slave_1) entered forwarding state [ 411.103973][ T6681] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 411.273086][ T6681] veth0_vlan: entered promiscuous mode [ 411.305733][ T6681] veth1_vlan: entered promiscuous mode [ 411.422050][ T6681] veth0_macvtap: entered promiscuous mode [ 411.464530][ T6681] veth1_macvtap: entered promiscuous mode [ 411.530874][ T6681] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 411.567213][ T6681] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 411.597786][ T6681] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.607901][ T6681] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.617191][ T6681] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.626406][ T6681] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 411.791004][ T5088] Bluetooth: hci0: command tx timeout [ 413.618040][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.626539][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 413.716188][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 413.724357][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/22 05:17:21 executed programs: 2 [ 413.866850][ T5088] Bluetooth: hci0: command tx timeout [ 413.944481][ T6789] ===================================================== [ 413.952169][ T6789] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120 [ 413.960082][ T6789] _copy_to_user+0xcc/0x120 [ 413.964776][ T6789] vmci_host_unlocked_ioctl+0x1e74/0x51f0 [ 413.970858][ T6789] __se_sys_ioctl+0x239/0x400 [ 413.975920][ T6789] __x64_sys_ioctl+0x97/0xe0 [ 413.980731][ T6789] x64_sys_call+0x1ebe/0x3db0 [ 413.985791][ T6789] do_syscall_64+0xd9/0x210 [ 413.990486][ T6789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 413.996862][ T6789] [ 413.999299][ T6789] Uninit was stored to memory at: [ 414.004620][ T6789] kmemdup_noprof+0xb0/0x100 [ 414.009589][ T6789] vmci_datagram_dispatch+0x4eb/0x1560 [ 414.015472][ T6789] vmci_ctx_put+0x88e/0x15d0 [ 414.020271][ T6789] vmci_ctx_destroy+0x15d/0x250 [ 414.026394][ T6789] vmci_host_unlocked_ioctl+0x4579/0x51f0 [ 414.032329][ T6789] __se_sys_ioctl+0x239/0x400 [ 414.037423][ T6789] __x64_sys_ioctl+0x97/0xe0 [ 414.042234][ T6789] x64_sys_call+0x1ebe/0x3db0 [ 414.047617][ T6789] do_syscall_64+0xd9/0x210 [ 414.052320][ T6789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.058644][ T6789] [ 414.061089][ T6789] Local variable ev.i.i created at: [ 414.066648][ T6789] vmci_ctx_put+0x76b/0x15d0 [ 414.071455][ T6789] vmci_ctx_destroy+0x15d/0x250 [ 414.076673][ T6789] [ 414.079103][ T6789] Bytes 28-31 of 40 are uninitialized [ 414.084610][ T6789] Memory access of size 40 starts at ffff8880470d5780 [ 414.091805][ T6789] Data copied to user address 000000000000a4bf [ 414.098248][ T6789] [ 414.100735][ T6789] CPU: 1 UID: 0 PID: 6789 Comm: syz.0.16 Not tainted 6.16.0-rc2-syzkaller-00318-g739a6c93cc75-dirty #0 PREEMPT(undef) [ 414.113592][ T6789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 414.124358][ T6789] ===================================================== [ 414.131735][ T6789] Disabling lock debugging due to kernel taint [ 414.138208][ T6789] Kernel panic - not syncing: kmsan.panic set ... [ 414.144897][ T6789] CPU: 1 UID: 0 PID: 6789 Comm: syz.0.16 Tainted: G B 6.16.0-rc2-syzkaller-00318-g739a6c93cc75-dirty #0 PREEMPT(undef) [ 414.159231][ T6789] Tainted: [B]=BAD_PAGE [ 414.163519][ T6789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 414.173758][ T6789] Call Trace: [ 414.177170][ T6789] [ 414.180219][ T6789] __dump_stack+0x26/0x30 [ 414.184768][ T6789] dump_stack_lvl+0x53/0x270 [ 414.189563][ T6789] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 414.195612][ T6789] dump_stack+0x1e/0x25 [ 414.199957][ T6789] panic+0x4bd/0xd50 [ 414.204100][ T6789] kmsan_report+0x31c/0x320 [ 414.208840][ T6789] ? kmsan_internal_check_memory+0x16c/0x230 [ 414.215144][ T6789] ? kmsan_copy_to_user+0xf1/0x190 [ 414.220573][ T6789] ? _copy_to_user+0xcc/0x120 [ 414.225437][ T6789] ? vmci_host_unlocked_ioctl+0x1e74/0x51f0 [ 414.231524][ T6789] ? __se_sys_ioctl+0x239/0x400 [ 414.236585][ T6789] ? __x64_sys_ioctl+0x97/0xe0 [ 414.241582][ T6789] ? x64_sys_call+0x1ebe/0x3db0 [ 414.246664][ T6789] ? do_syscall_64+0xd9/0x210 [ 414.251541][ T6789] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.257898][ T6789] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 414.264643][ T6789] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 414.270961][ T6789] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 414.277012][ T6789] ? stack_depot_save_flags+0x60f/0x7b0 [ 414.282782][ T6789] ? kmsan_get_metadata+0xfb/0x160 [ 414.288231][ T6789] ? kmsan_get_metadata+0xfb/0x160 [ 414.293601][ T6789] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 414.300169][ T6789] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 414.306479][ T6789] ? kmsan_get_metadata+0xfb/0x160 [ 414.311865][ T6789] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 414.317937][ T6789] kmsan_internal_check_memory+0x16c/0x230 [ 414.323996][ T6789] kmsan_copy_to_user+0xf1/0x190 [ 414.329179][ T6789] _copy_to_user+0xcc/0x120 [ 414.333913][ T6789] vmci_host_unlocked_ioctl+0x1e74/0x51f0 [ 414.339882][ T6789] ? kmsan_get_metadata+0xfb/0x160 [ 414.345269][ T6789] ? __pfx_vmci_host_unlocked_ioctl+0x10/0x10 [ 414.351559][ T6789] __se_sys_ioctl+0x239/0x400 [ 414.356479][ T6789] __x64_sys_ioctl+0x97/0xe0 [ 414.361310][ T6789] x64_sys_call+0x1ebe/0x3db0 [ 414.366239][ T6789] do_syscall_64+0xd9/0x210 [ 414.370943][ T6789] ? irqentry_exit+0x16/0x60 [ 414.375700][ T6789] ? clear_bhb_loop+0x40/0x90 [ 414.380573][ T6789] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 414.386734][ T6789] RIP: 0033:0x7fdb2cf8e929 [ 414.391386][ T6789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 414.411268][ T6789] RSP: 002b:00007fdb2dea0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 414.419881][ T6789] RAX: ffffffffffffffda RBX: 00007fdb2d1b5fa0 RCX: 00007fdb2cf8e929 [ 414.427999][ T6789] RDX: 0000200000000200 RSI: 00000000000007ac RDI: 0000000000000003 [ 414.436105][ T6789] RBP: 00007fdb2d010b39 R08: 0000000000000000 R09: 0000000000000000 [ 414.444217][ T6789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 414.452426][ T6789] R13: 0000000000000000 R14: 00007fdb2d1b5fa0 R15: 00007ffdbd7551c8 [ 414.460573][ T6789] [ 414.464006][ T6789] Kernel Offset: disabled [ 414.468593][ T6789] Rebooting in 86400 seconds..