Warning: Permanently added '10.128.1.75' (ED25519) to the list of known hosts.
2025/01/01 04:26:54 ignoring optional flag "sandboxArg"="0"
2025/01/01 04:26:54 ignoring optional flag "type"="gce"
2025/01/01 04:26:55 parsed 1 programs
[  103.303350][ T6232] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  105.974579][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  105.984052][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  105.993733][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.002650][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.010721][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  106.018094][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.241839][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.252804][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.273117][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.281493][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.514789][ T6299] chnl_net:caif_netlink_parms(): no params data found
[  107.559472][ T6299] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.566732][ T6299] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.574022][ T6299] bridge_slave_0: entered allmulticast mode
[  107.581162][ T6299] bridge_slave_0: entered promiscuous mode
[  107.588789][ T6299] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.596436][ T6299] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.603705][ T6299] bridge_slave_1: entered allmulticast mode
[  107.610737][ T6299] bridge_slave_1: entered promiscuous mode
[  107.657368][ T6299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.670384][ T6299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.704476][ T6299] team0: Port device team_slave_0 added
[  107.717661][ T6299] team0: Port device team_slave_1 added
[  107.751146][ T6299] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.758691][ T6299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.785612][ T6299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.797756][ T6299] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.808409][ T6299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.834582][ T6299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.874569][ T6299] hsr_slave_0: entered promiscuous mode
[  107.881112][ T6299] hsr_slave_1: entered promiscuous mode
[  108.351436][ T6299] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  108.361195][ T6299] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.372254][ T6299] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.383728][ T6299] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.462712][ T6299] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.489942][ T6299] 8021q: adding VLAN 0 to HW filter on device team0
[  108.503288][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.510507][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.526828][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.534057][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.581499][ T6299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.731509][ T6299] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.778398][ T6299] veth0_vlan: entered promiscuous mode
[  108.790866][ T6299] veth1_vlan: entered promiscuous mode
[  108.825127][ T6299] veth0_macvtap: entered promiscuous mode
[  108.834732][ T6299] veth1_macvtap: entered promiscuous mode
[  108.858915][ T6299] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.874344][ T6299] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.889224][ T6299] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.900358][ T6299] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.910981][ T6299] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.922467][ T6299] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.070231][   T51] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.147177][   T51] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.235259][   T51] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.327704][   T51] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/01/01 04:27:05 executed programs: 0
[  109.686474][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  109.695967][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  109.705110][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  109.713056][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  109.722744][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  109.731111][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  109.908119][ T6386] chnl_net:caif_netlink_parms(): no params data found
[  109.984847][ T6386] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.993915][ T6386] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.003424][ T6386] bridge_slave_0: entered allmulticast mode
[  110.011952][ T6386] bridge_slave_0: entered promiscuous mode
[  110.032285][ T6386] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.040750][ T6386] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.051801][ T6386] bridge_slave_1: entered allmulticast mode
[  110.060750][ T6386] bridge_slave_1: entered promiscuous mode
[  110.096714][ T6386] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.111358][ T6386] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.150562][ T6386] team0: Port device team_slave_0 added
[  110.160706][ T6386] team0: Port device team_slave_1 added
[  110.192941][ T6386] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.201394][ T6386] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.230528][ T6386] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.243629][ T6386] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.254409][ T6386] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.283290][ T6386] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.331169][ T6386] hsr_slave_0: entered promiscuous mode
[  110.340709][ T6386] hsr_slave_1: entered promiscuous mode
[  110.348153][ T6386] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  110.358066][ T6386] Cannot create hsr debugfs directory
[  111.778374][ T5846] Bluetooth: hci0: command tx timeout
[  112.338761][   T51] bridge_slave_1: left allmulticast mode
[  112.344467][   T51] bridge_slave_1: left promiscuous mode
[  112.357535][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.376779][   T51] bridge_slave_0: left allmulticast mode
[  112.382493][   T51] bridge_slave_0: left promiscuous mode
[  112.391249][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.651009][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.661390][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.671609][   T51] bond0 (unregistering): Released all slaves
[  112.772846][   T51] hsr_slave_0: left promiscuous mode
[  112.782459][   T51] hsr_slave_1: left promiscuous mode
[  112.789254][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.800787][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.809620][   T51] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.820259][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.839023][   T51] veth1_macvtap: left promiscuous mode
[  112.844650][   T51] veth0_macvtap: left promiscuous mode
[  112.852031][   T51] veth1_vlan: left promiscuous mode
[  112.857631][   T51] veth0_vlan: left promiscuous mode
[  113.300894][   T51] team0 (unregistering): Port device team_slave_1 removed
[  113.340258][   T51] team0 (unregistering): Port device team_slave_0 removed
[  113.871074][ T5846] Bluetooth: hci0: command tx timeout
[  114.060403][ T6386] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  114.073762][ T6386] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  114.083725][ T6386] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  114.103734][ T6386] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  114.179053][ T6386] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.261955][ T6386] 8021q: adding VLAN 0 to HW filter on device team0
[  114.287488][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.294701][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.322010][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.329551][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.592427][ T6386] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.639251][ T6386] veth0_vlan: entered promiscuous mode
[  114.654066][ T6386] veth1_vlan: entered promiscuous mode
[  114.684931][ T6386] veth0_macvtap: entered promiscuous mode
[  114.694589][ T6386] veth1_macvtap: entered promiscuous mode
[  114.713288][ T6386] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.730014][ T6386] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.744259][ T6386] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.754203][ T6386] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.763471][ T6386] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.773124][ T6386] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/01/01 04:27:10 executed programs: 2
[  114.846673][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.854558][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.857070][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.874481][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.941849][ T6639] loop0: detected capacity change from 0 to 512
[  114.982474][ T6639] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.046381][ T6639] loop0: detected capacity change from 512 to 511
[  115.098943][ T6386] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 21: comm syz-executor: bad entry in directory: directory entry overrun - offset=1004, inode=0, rec_len=1000, size=1024 fake=0
[  115.124176][ T6386] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 10: comm syz-executor: path /0/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=384 fake=0
[  115.156840][ T6386] EXT4-fs error (device loop0): empty_inline_dir:1850: inode #12: block 10: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=60 fake=0
[  115.180921][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.197943][ T6386] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 10: comm syz-executor: path /0/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=384 fake=0
[  115.223174][ T6386] EXT4-fs error (device loop0): empty_inline_dir:1850: inode #12: block 10: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=60 fake=0
[  115.249869][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.267640][ T6386] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 10: comm syz-executor: path /0/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=384 fake=0
[  115.292422][ T6386] EXT4-fs error (device loop0): empty_inline_dir:1850: inode #12: block 10: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=60 fake=0
[  115.315146][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.331180][ T6386] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 10: comm syz-executor: path /0/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=384 fake=0
[  115.355662][ T6386] EXT4-fs error (device loop0): empty_inline_dir:1850: inode #12: block 10: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=60 fake=0
[  115.376915][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.393787][ T6386] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1404: inode #12: block 10: comm syz-executor: path /0/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=0, rec_len=0, size=384 fake=0
[  115.417679][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.434354][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.452021][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.470089][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.492872][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  115.510456][ T6386] EXT4-fs warning (device loop0): empty_inline_dir:1857: bad inline directory (dir #12) - inode 0, rec_len 0, name_len 0inline size 60
[  117.006049][ T6386] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.047259][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.064290][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  117.074438][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  117.083259][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  117.092413][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  117.100600][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  117.108169][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  117.199379][ T6678] chnl_net:caif_netlink_parms(): no params data found
[  117.242184][ T6678] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.249539][ T6678] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.257077][ T6678] bridge_slave_0: entered allmulticast mode
[  117.263784][ T6678] bridge_slave_0: entered promiscuous mode
[  117.271655][ T6678] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.279143][ T6678] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.286527][ T6678] bridge_slave_1: entered allmulticast mode
[  117.293123][ T6678] bridge_slave_1: entered promiscuous mode
[  117.313558][ T6678] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  117.325450][ T6678] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  117.349791][ T6678] team0: Port device team_slave_0 added
[  117.357503][ T6678] team0: Port device team_slave_1 added
[  117.376210][ T6678] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.383231][ T6678] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.409875][ T6678] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.422831][ T6678] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.429960][ T6678] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  117.455931][ T6678] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.486478][ T6678] hsr_slave_0: entered promiscuous mode
[  117.492910][ T6678] hsr_slave_1: entered promiscuous mode
[  118.597961][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.655488][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.737856][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.833091][   T12] bridge_slave_1: left allmulticast mode
[  118.841564][   T12] bridge_slave_1: left promiscuous mode
[  118.856224][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.866269][   T12] bridge_slave_0: left allmulticast mode
[  118.871958][   T12] bridge_slave_0: left promiscuous mode
[  118.877959][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.089612][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.099977][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.110074][   T12] bond0 (unregistering): Released all slaves
[  119.147059][   T53] Bluetooth: hci0: command tx timeout
[  119.385521][   T12] hsr_slave_0: left promiscuous mode
[  119.391756][   T12] hsr_slave_1: left promiscuous mode
[  119.401356][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.410814][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.426124][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.433592][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.460006][   T12] veth1_macvtap: left promiscuous mode
[  119.465768][   T12] veth0_macvtap: left promiscuous mode
[  119.471419][   T12] veth1_vlan: left promiscuous mode
[  119.479831][   T12] veth0_vlan: left promiscuous mode
[  119.768667][   T12] team0 (unregistering): Port device team_slave_1 removed
[  119.799176][   T12] team0 (unregistering): Port device team_slave_0 removed
[  120.123606][ T6678] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  120.140562][ T6678] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  120.154129][ T6678] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  120.164484][ T6678] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  120.280393][ T6678] 8021q: adding VLAN 0 to HW filter on device bond0
[  120.309259][ T6678] 8021q: adding VLAN 0 to HW filter on device team0
[  120.320997][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.328209][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.361633][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.369017][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.564156][ T6678] 8021q: adding VLAN 0 to HW filter on device batadv0
[  120.596480][ T6678] veth0_vlan: entered promiscuous mode
[  120.607214][ T6678] veth1_vlan: entered promiscuous mode
[  120.629642][ T6678] veth0_macvtap: entered promiscuous mode
[  120.639090][ T6678] veth1_macvtap: entered promiscuous mode
[  120.655299][ T6678] batman_adv: batadv0: Interface activated: batadv_slave_0
[  120.667524][ T6678] batman_adv: batadv0: Interface activated: batadv_slave_1
[  120.678556][ T6678] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.687440][ T6678] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.696744][ T6678] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.706930][ T6678] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/01/01 04:27:16 executed programs: 5
[  120.754722][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.767305][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.786887][   T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.796376][   T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.856291][ T6719] loop0: detected capacity change from 0 to 512
[  120.870917][ T6719] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.935956][ T6719] loop0: detected capacity change from 512 to 511
[  120.952591][ T6678] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 21: comm syz-executor: bad entry in directory: directory entry overrun - offset=1004, inode=0, rec_len=1000, size=1024 fake=0
[  120.976462][ T6678] ==================================================================
[  120.984730][ T6678] BUG: KASAN: use-after-free in ext4_inlinedir_to_tree+0x577/0x11d0
[  120.992725][ T6678] Read of size 324 at addr ffff8880759cbc05 by task syz-executor/6678
[  121.000902][ T6678] 
[  121.003270][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz-executor Not tainted 6.13.0-rc5-syzkaller-00004-gccb98ccef0e5 #0
[  121.014373][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  121.024738][ T6678] Call Trace:
[  121.028031][ T6678]  <TASK>
[  121.031097][ T6678]  dump_stack_lvl+0x241/0x360
[  121.035821][ T6678]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.041223][ T6678]  ? __pfx__printk+0x10/0x10
[  121.045934][ T6678]  ? _printk+0xd5/0x120
[  121.050182][ T6678]  ? __virt_addr_valid+0x183/0x530
[  121.055301][ T6678]  ? __virt_addr_valid+0x183/0x530
[  121.060599][ T6678]  print_report+0x169/0x550
[  121.065185][ T6678]  ? __virt_addr_valid+0x183/0x530
[  121.070552][ T6678]  ? __virt_addr_valid+0x183/0x530
[  121.075749][ T6678]  ? __virt_addr_valid+0x45f/0x530
[  121.080857][ T6678]  ? __phys_addr+0xba/0x170
[  121.085360][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.091079][ T6678]  kasan_report+0x143/0x180
[  121.095579][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.101649][ T6678]  kasan_check_range+0x282/0x290
[  121.106760][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.112473][ T6678]  __asan_memcpy+0x29/0x70
[  121.116973][ T6678]  ext4_inlinedir_to_tree+0x577/0x11d0
[  121.122510][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.127531][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.132694][ T6678]  ? __pfx_ext4_inlinedir_to_tree+0x10/0x10
[  121.139110][ T6678]  ? validate_chain+0x11e/0x5920
[  121.144057][ T6678]  ? __pfx_validate_chain+0x10/0x10
[  121.149249][ T6678]  ? page_ext_put+0x97/0xc0
[  121.153751][ T6678]  ext4_htree_fill_tree+0x5d5/0x1400
[  121.159124][ T6678]  ? __pfx_lock_release+0x10/0x10
[  121.164149][ T6678]  ? __pfx_register_lock_class+0x10/0x10
[  121.169864][ T6678]  ? __pfx_ext4_htree_fill_tree+0x10/0x10
[  121.175585][ T6678]  ? mark_lock+0x9a/0x360
[  121.179929][ T6678]  ext4_readdir+0x3051/0x3a60
[  121.184687][ T6678]  ? __pfx___might_resched+0x10/0x10
[  121.190069][ T6678]  ? __pfx___mutex_trylock_common+0x10/0x10
[  121.195958][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.201063][ T6678]  ? rcu_is_watching+0x15/0xb0
[  121.205820][ T6678]  ? down_read_killable+0xaaa/0xd30
[  121.211028][ T6678]  ? __pfx_ext4_readdir+0x10/0x10
[  121.216242][ T6678]  ? reacquire_held_locks+0x3eb/0x690
[  121.221708][ T6678]  ? iterate_dir+0x20c/0x800
[  121.226415][ T6678]  ? fdget_pos+0x254/0x320
[  121.231091][ T6678]  ? __pfx_down_read_killable+0x10/0x10
[  121.236714][ T6678]  ? __pfx___mutex_lock+0x10/0x10
[  121.241735][ T6678]  ? __pfx_reacquire_held_locks+0x10/0x10
[  121.247453][ T6678]  iterate_dir+0x571/0x800
[  121.251962][ T6678]  __se_sys_getdents64+0x1e2/0x4b0
[  121.257073][ T6678]  ? __pfx___se_sys_getdents64+0x10/0x10
[  121.262696][ T6678]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  121.268669][ T6678]  ? __pfx_filldir64+0x10/0x10
[  121.273515][ T6678]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.279866][ T6678]  ? exc_page_fault+0x590/0x8b0
[  121.284738][ T6678]  ? do_syscall_64+0xb6/0x230
[  121.289412][ T6678]  do_syscall_64+0xf3/0x230
[  121.293924][ T6678]  ? clear_bhb_loop+0x35/0x90
[  121.298656][ T6678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.304593][ T6678] RIP: 0033:0x7ff3edfac013
[  121.309119][ T6678] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 43 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  121.328900][ T6678] RSP: 002b:00007ffed8c7f518 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  121.337401][ T6678] RAX: ffffffffffffffda RBX: 00005555866ef640 RCX: 00007ff3edfac013
[  121.345372][ T6678] RDX: 0000000000008000 RSI: 00005555866ef640 RDI: 0000000000000006
[  121.353529][ T6678] RBP: 00005555866ef614 R08: 0000000000000000 R09: 0000000000000000
[  121.361519][ T6678] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  121.369499][ T6678] R13: 0000000000000016 R14: 00005555866ef610 R15: 00007ffed8c828b0
[  121.377495][ T6678]  </TASK>
[  121.380513][ T6678] 
[  121.383015][ T6678] The buggy address belongs to the physical page:
[  121.389422][ T6678] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2d4 pfn:0x759cb
[  121.398351][ T6678] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  121.405504][ T6678] raw: 00fff00000000000 dead000000000100 dead000000000122 0000000000000000
[  121.414089][ T6678] raw: 00000000000002d4 0000000000000000 00000000ffffffff 0000000000000000
[  121.422856][ T6678] page dumped because: kasan: bad access detected
[  121.429266][ T6678] page_owner tracks the page as freed
[  121.434630][ T6678] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 6367, tgid 6367 (syz-executor), ts 109256196706, free_ts 109628708399
[  121.452776][ T6678]  post_alloc_hook+0x1f3/0x230
[  121.457564][ T6678]  get_page_from_freelist+0x3651/0x37a0
[  121.463104][ T6678]  __alloc_pages_noprof+0x292/0x710
[  121.468303][ T6678]  alloc_pages_mpol_noprof+0x3e8/0x680
[  121.473762][ T6678]  vma_alloc_folio_noprof+0x12e/0x230
[  121.479304][ T6678]  folio_prealloc+0x2e/0x170
[  121.483905][ T6678]  handle_pte_fault+0xc65/0x5ed0
[  121.488854][ T6678]  handle_mm_fault+0x1053/0x1ad0
[  121.493898][ T6678]  exc_page_fault+0x459/0x8b0
[  121.498663][ T6678]  asm_exc_page_fault+0x26/0x30
[  121.503610][ T6678] page last free pid 6373 tgid 6373 stack trace:
[  121.509955][ T6678]  free_unref_folios+0xe23/0x1890
[  121.514971][ T6678]  folios_put_refs+0x76c/0x860
[  121.519921][ T6678]  free_pages_and_swap_cache+0x2ea/0x690
[  121.525672][ T6678]  tlb_flush_mmu+0x3a3/0x680
[  121.530273][ T6678]  tlb_finish_mmu+0xd4/0x200
[  121.534961][ T6678]  exit_mmap+0x496/0xc20
[  121.539222][ T6678]  __mmput+0x115/0x3b0
[  121.543470][ T6678]  exit_mm+0x220/0x310
[  121.547620][ T6678]  do_exit+0x9ad/0x28e0
[  121.551791][ T6678]  do_group_exit+0x207/0x2c0
[  121.556638][ T6678]  get_signal+0x16b2/0x1750
[  121.561396][ T6678]  arch_do_signal_or_restart+0x96/0x860
[  121.566939][ T6678]  syscall_exit_to_user_mode+0xce/0x340
[  121.572488][ T6678]  do_syscall_64+0x100/0x230
[  121.577075][ T6678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.582970][ T6678] 
[  121.585293][ T6678] Memory state around the buggy address:
[  121.591082][ T6678]  ffff8880759cbb00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  121.599323][ T6678]  ffff8880759cbb80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  121.607370][ T6678] >ffff8880759cbc00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  121.615417][ T6678]                    ^
[  121.619470][ T6678]  ffff8880759cbc80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  121.627695][ T6678]  ffff8880759cbd00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  121.635741][ T6678] ==================================================================
[  121.646189][   T53] Bluetooth: hci0: command tx timeout
[  121.655024][ T6678] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  121.662333][ T6678] CPU: 0 UID: 0 PID: 6678 Comm: syz-executor Not tainted 6.13.0-rc5-syzkaller-00004-gccb98ccef0e5 #0
[  121.673281][ T6678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  121.683418][ T6678] Call Trace:
[  121.686698][ T6678]  <TASK>
[  121.689625][ T6678]  dump_stack_lvl+0x241/0x360
[  121.694299][ T6678]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.699497][ T6678]  ? __pfx__printk+0x10/0x10
[  121.704078][ T6678]  ? preempt_schedule+0xe1/0xf0
[  121.709017][ T6678]  ? vscnprintf+0x5d/0x90
[  121.713334][ T6678]  panic+0x349/0x880
[  121.717235][ T6678]  ? check_panic_on_warn+0x21/0xb0
[  121.722455][ T6678]  ? __pfx_panic+0x10/0x10
[  121.726868][ T6678]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  121.732928][ T6678]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  121.739242][ T6678]  ? print_report+0x502/0x550
[  121.744004][ T6678]  check_panic_on_warn+0x86/0xb0
[  121.748945][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.754567][ T6678]  end_report+0x77/0x160
[  121.758800][ T6678]  kasan_report+0x154/0x180
[  121.763293][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.768920][ T6678]  kasan_check_range+0x282/0x290
[  121.773849][ T6678]  ? ext4_inlinedir_to_tree+0x577/0x11d0
[  121.779561][ T6678]  __asan_memcpy+0x29/0x70
[  121.784062][ T6678]  ext4_inlinedir_to_tree+0x577/0x11d0
[  121.789613][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.794898][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.800002][ T6678]  ? __pfx_ext4_inlinedir_to_tree+0x10/0x10
[  121.806155][ T6678]  ? validate_chain+0x11e/0x5920
[  121.811092][ T6678]  ? __pfx_validate_chain+0x10/0x10
[  121.816289][ T6678]  ? page_ext_put+0x97/0xc0
[  121.820794][ T6678]  ext4_htree_fill_tree+0x5d5/0x1400
[  121.826072][ T6678]  ? __pfx_lock_release+0x10/0x10
[  121.831096][ T6678]  ? __pfx_register_lock_class+0x10/0x10
[  121.836828][ T6678]  ? __pfx_ext4_htree_fill_tree+0x10/0x10
[  121.842549][ T6678]  ? mark_lock+0x9a/0x360
[  121.846877][ T6678]  ext4_readdir+0x3051/0x3a60
[  121.851637][ T6678]  ? __pfx___might_resched+0x10/0x10
[  121.857104][ T6678]  ? __pfx___mutex_trylock_common+0x10/0x10
[  121.862992][ T6678]  ? __lock_acquire+0x1397/0x2100
[  121.868008][ T6678]  ? rcu_is_watching+0x15/0xb0
[  121.872778][ T6678]  ? down_read_killable+0xaaa/0xd30
[  121.877969][ T6678]  ? __pfx_ext4_readdir+0x10/0x10
[  121.883247][ T6678]  ? reacquire_held_locks+0x3eb/0x690
[  121.888853][ T6678]  ? iterate_dir+0x20c/0x800
[  121.893520][ T6678]  ? fdget_pos+0x254/0x320
[  121.897961][ T6678]  ? __pfx_down_read_killable+0x10/0x10
[  121.903498][ T6678]  ? __pfx___mutex_lock+0x10/0x10
[  121.908522][ T6678]  ? __pfx_reacquire_held_locks+0x10/0x10
[  121.914415][ T6678]  iterate_dir+0x571/0x800
[  121.918826][ T6678]  __se_sys_getdents64+0x1e2/0x4b0
[  121.923935][ T6678]  ? __pfx___se_sys_getdents64+0x10/0x10
[  121.929740][ T6678]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  121.935731][ T6678]  ? __pfx_filldir64+0x10/0x10
[  121.940584][ T6678]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.946912][ T6678]  ? exc_page_fault+0x590/0x8b0
[  121.951754][ T6678]  ? do_syscall_64+0xb6/0x230
[  121.956426][ T6678]  do_syscall_64+0xf3/0x230
[  121.961010][ T6678]  ? clear_bhb_loop+0x35/0x90
[  121.965688][ T6678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.971583][ T6678] RIP: 0033:0x7ff3edfac013
[  121.975991][ T6678] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 43 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  121.995679][ T6678] RSP: 002b:00007ffed8c7f518 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  122.004264][ T6678] RAX: ffffffffffffffda RBX: 00005555866ef640 RCX: 00007ff3edfac013
[  122.012407][ T6678] RDX: 0000000000008000 RSI: 00005555866ef640 RDI: 0000000000000006
[  122.020488][ T6678] RBP: 00005555866ef614 R08: 0000000000000000 R09: 0000000000000000
[  122.028451][ T6678] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  122.036433][ T6678] R13: 0000000000000016 R14: 00005555866ef610 R15: 00007ffed8c828b0
[  122.044433][ T6678]  </TASK>
[  122.047597][ T6678] Kernel Offset: disabled
[  122.051938][ T6678] Rebooting in 86400 seconds..