Warning: Permanently added '10.128.1.53' (ED25519) to the list of known hosts.
2025/06/12 17:14:48 ignoring optional flag "sandboxArg"="0"
2025/06/12 17:14:48 ignoring optional flag "type"="gce"
2025/06/12 17:14:48 parsed 1 programs
2025/06/12 17:14:48 executed programs: 0
[ 80.664304][ T4427] chnl_net:caif_netlink_parms(): no params data found
[ 80.734922][ T4427] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.742168][ T4427] bridge0: port 1(bridge_slave_0) entered disabled state
[ 80.750421][ T4427] device bridge_slave_0 entered promiscuous mode
[ 80.759632][ T4427] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.767110][ T4427] bridge0: port 2(bridge_slave_1) entered disabled state
[ 80.775747][ T4427] device bridge_slave_1 entered promiscuous mode
[ 80.804647][ T4427] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 80.816293][ T4427] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 80.853818][ T4427] team0: Port device team_slave_0 added
[ 80.862465][ T4427] team0: Port device team_slave_1 added
[ 80.887695][ T4427] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 80.894818][ T4427] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.922062][ T4427] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 80.935550][ T4427] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 80.942819][ T4427] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.969033][ T4427] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 81.007745][ T4427] device hsr_slave_0 entered promiscuous mode
[ 81.014709][ T4427] device hsr_slave_1 entered promiscuous mode
[ 81.563750][ T4427] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 81.576754][ T4427] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 81.589170][ T4427] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 81.599731][ T4427] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 81.624471][ T4427] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.631606][ T4427] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 81.639130][ T4427] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.646292][ T4427] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 81.657238][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 81.665477][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 81.721418][ T4427] 8021q: adding VLAN 0 to HW filter on device bond0
[ 81.739770][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 81.748833][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 81.762528][ T4427] 8021q: adding VLAN 0 to HW filter on device team0
[ 81.776065][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 81.785688][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 81.803645][ T416] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.810773][ T416] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 81.862755][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 81.883352][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 81.902804][ T416] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.909922][ T416] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 81.932562][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 81.952479][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 81.963271][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 81.983511][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 82.010534][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 82.038968][ T4427] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 82.050928][ T4427] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 82.073596][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 82.094020][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 82.109372][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 82.122616][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 82.132918][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 82.143775][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 82.157865][ T416] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 82.313194][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 82.320875][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 82.353184][ T4427] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 82.384947][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 82.395901][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 82.436394][ T4427] device veth0_vlan entered promiscuous mode
[ 82.451506][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 82.462618][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 82.475481][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 82.484364][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 82.508400][ T4427] device veth1_vlan entered promiscuous mode
[ 82.542274][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 82.551131][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 82.559957][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 82.568965][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 82.581203][ T4427] device veth0_macvtap entered promiscuous mode
[ 82.592434][ T21] Bluetooth: hci0: command 0x0409 tx timeout
[ 82.601353][ T4427] device veth1_macvtap entered promiscuous mode
[ 82.623004][ T4427] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 82.630942][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 82.642255][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 82.650732][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 82.661440][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 82.676499][ T4427] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 82.685806][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 82.696984][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 82.708541][ T4427] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.718863][ T4427] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.728308][ T4427] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.737824][ T4427] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 82.806604][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 82.820033][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 82.839799][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 82.857929][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 82.869113][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 82.880459][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 82.953173][ T4523] loop0: detected capacity change from 0 to 2048
[ 82.975936][ T4523] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 83.317756][ T4427] ==================================================================
[ 83.326401][ T4427] BUG: KASAN: use-after-free in crc_itu_t+0x1ad/0x280
[ 83.333326][ T4427] Read of size 1 at addr ffff88806e087000 by task syz-executor.0/4427
[ 83.341612][ T4427]
[ 83.343979][ T4427] CPU: 1 PID: 4427 Comm: syz-executor.0 Not tainted 5.15.185-syzkaller #0
[ 83.352632][ T4427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 83.362853][ T4427] Call Trace:
[ 83.366163][ T4427]
[ 83.369199][ T4427] dump_stack_lvl+0x168/0x230
[ 83.373921][ T4427] ? show_regs_print_info+0x20/0x20
[ 83.379301][ T4427] ? load_image+0x3b0/0x3b0
[ 83.384010][ T4427] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 83.389420][ T4427] print_address_description+0x60/0x2d0
[ 83.395011][ T4427] ? crc_itu_t+0x1ad/0x280
[ 83.399548][ T4427] kasan_report+0xdf/0x130
[ 83.403991][ T4427] ? crc_itu_t+0x1ad/0x280
[ 83.408609][ T4427] crc_itu_t+0x1ad/0x280
[ 83.412884][ T4427] udf_close_lvid+0x543/0x990
[ 83.417609][ T4427] ? udf_open_lvid+0x5a0/0x5a0
[ 83.422478][ T4427] ? iput+0x333/0x8a0
[ 83.426533][ T4427] ? clear_inode+0x150/0x150
[ 83.431135][ T4427] udf_put_super+0xc8/0x160
[ 83.435766][ T4427] ? udf_free_in_core_inode+0x20/0x20
[ 83.441143][ T4427] generic_shutdown_super+0x130/0x300
[ 83.446531][ T4427] kill_block_super+0x7c/0xe0
[ 83.451742][ T4427] deactivate_locked_super+0x93/0xf0
[ 83.457055][ T4427] cleanup_mnt+0x418/0x4d0
[ 83.461579][ T4427] ? lockdep_hardirqs_on+0x94/0x140
[ 83.466789][ T4427] task_work_run+0x125/0x1a0
[ 83.471388][ T4427] exit_to_user_mode_loop+0x10f/0x130
[ 83.476769][ T4427] exit_to_user_mode_prepare+0xb1/0x140
[ 83.482323][ T4427] syscall_exit_to_user_mode+0x16/0x40
[ 83.488057][ T4427] do_syscall_64+0x58/0xa0
[ 83.492507][ T4427] ? clear_bhb_loop+0x30/0x80
[ 83.497325][ T4427] ? clear_bhb_loop+0x30/0x80
[ 83.502199][ T4427] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.508254][ T4427] RIP: 0033:0x7f1e48b9dc87
[ 83.512689][ T4427] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 83.532657][ T4427] RSP: 002b:00007ffd6677a338 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 83.541113][ T4427] RAX: 0000000000000000 RBX: 00007f1e48bf7c5a RCX: 00007f1e48b9dc87
[ 83.549223][ T4427] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffd6677a3f0
[ 83.557333][ T4427] RBP: 00007ffd6677a3f0 R08: 0000000000000000 R09: 0000000000000000
[ 83.565760][ T4427] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd6677b4b0
[ 83.573929][ T4427] R13: 00007f1e48bf7c5a R14: 00000000000143c4 R15: 0000000000000006
[ 83.581945][ T4427]
[ 83.584968][ T4427]
[ 83.587501][ T4427] The buggy address belongs to the page:
[ 83.593143][ T4427] page:ffffea0001b821c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6e087
[ 83.603304][ T4427] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 83.610536][ T4427] raw: 00fff00000000000 ffffea0001b82008 ffffea0001b839c8 0000000000000000
[ 83.619404][ T4427] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 83.627993][ T4427] page dumped because: kasan: bad access detected
[ 83.634414][ T4427] page_owner tracks the page as freed
[ 83.639863][ T4427] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 4535, ts 83279279835, free_ts 83307721482
[ 83.654521][ T4427] get_page_from_freelist+0x1b77/0x1c60
[ 83.660114][ T4427] __alloc_pages+0x1e1/0x470
[ 83.664707][ T4427] alloc_pages_vma+0x393/0x7c0
[ 83.669569][ T4427] wp_page_copy+0x235/0x1fd0
[ 83.674190][ T4427] handle_mm_fault+0x1eca/0x43c0
[ 83.679134][ T4427] do_user_addr_fault+0x489/0xc80
[ 83.684302][ T4427] exc_page_fault+0x60/0x100
[ 83.688920][ T4427] asm_exc_page_fault+0x22/0x30
[ 83.693893][ T4427] page last free stack trace:
[ 83.698582][ T4427] free_unref_page_prepare+0x637/0x6c0
[ 83.704312][ T4427] free_unref_page_list+0x122/0x7e0
[ 83.709516][ T4427] release_pages+0x184b/0x1bb0
[ 83.714398][ T4427] tlb_finish_mmu+0x164/0x2e0
[ 83.719079][ T4427] exit_mmap+0x3a6/0x5f0
[ 83.723424][ T4427] __mmput+0x115/0x3b0
[ 83.727522][ T4427] exit_mm+0x567/0x6c0
[ 83.731602][ T4427] do_exit+0x599/0x20a0
[ 83.735786][ T4427] do_group_exit+0x12e/0x300
[ 83.740391][ T4427] __x64_sys_exit_group+0x3b/0x40
[ 83.745433][ T4427] do_syscall_64+0x4c/0xa0
[ 83.749857][ T4427] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 83.755761][ T4427]
[ 83.758090][ T4427] Memory state around the buggy address:
[ 83.763720][ T4427] ffff88806e086f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 83.771875][ T4427] ffff88806e086f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 83.779995][ T4427] >ffff88806e087000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 83.788473][ T4427] ^
[ 83.792570][ T4427] ffff88806e087080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 83.800768][ T4427] ffff88806e087100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 83.808931][ T4427] ==================================================================
[ 83.817090][ T4427] Disabling lock debugging due to kernel taint
[ 83.846963][ T4427] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 83.854559][ T4427] CPU: 1 PID: 4427 Comm: syz-executor.0 Tainted: G B 5.15.185-syzkaller #0
[ 83.864477][ T4427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 83.874665][ T4427] Call Trace:
[ 83.877950][ T4427]
[ 83.880882][ T4427] dump_stack_lvl+0x168/0x230
[ 83.885563][ T4427] ? show_regs_print_info+0x20/0x20
[ 83.891111][ T4427] ? load_image+0x3b0/0x3b0
[ 83.895639][ T4427] panic+0x2c9/0x7f0
[ 83.899564][ T4427] ? bpf_jit_dump+0xd0/0xd0
[ 83.904089][ T4427] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 83.909997][ T4427] ? _raw_spin_unlock+0x40/0x40
[ 83.914856][ T4427] ? crc_itu_t+0x1ad/0x280
[ 83.919304][ T4427] check_panic_on_warn+0x80/0xa0
[ 83.924247][ T4427] ? crc_itu_t+0x1ad/0x280
[ 83.928686][ T4427] end_report+0x6d/0xf0
[ 83.932845][ T4427] kasan_report+0x102/0x130
[ 83.937357][ T4427] ? crc_itu_t+0x1ad/0x280
[ 83.941876][ T4427] crc_itu_t+0x1ad/0x280
[ 83.946155][ T4427] udf_close_lvid+0x543/0x990
[ 83.951366][ T4427] ? udf_open_lvid+0x5a0/0x5a0
[ 83.956234][ T4427] ? iput+0x333/0x8a0
[ 83.960236][ T4427] ? clear_inode+0x150/0x150
[ 83.964832][ T4427] udf_put_super+0xc8/0x160
[ 83.969540][ T4427] ? udf_free_in_core_inode+0x20/0x20
[ 83.975137][ T4427] generic_shutdown_super+0x130/0x300
[ 83.980534][ T4427] kill_block_super+0x7c/0xe0
[ 83.985230][ T4427] deactivate_locked_super+0x93/0xf0
[ 83.990523][ T4427] cleanup_mnt+0x418/0x4d0
[ 83.994973][ T4427] ? lockdep_hardirqs_on+0x94/0x140
[ 84.000199][ T4427] task_work_run+0x125/0x1a0
[ 84.004944][ T4427] exit_to_user_mode_loop+0x10f/0x130
[ 84.010472][ T4427] exit_to_user_mode_prepare+0xb1/0x140
[ 84.016027][ T4427] syscall_exit_to_user_mode+0x16/0x40
[ 84.021711][ T4427] do_syscall_64+0x58/0xa0
[ 84.026159][ T4427] ? clear_bhb_loop+0x30/0x80
[ 84.030866][ T4427] ? clear_bhb_loop+0x30/0x80
[ 84.035645][ T4427] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 84.041557][ T4427] RIP: 0033:0x7f1e48b9dc87
[ 84.045986][ T4427] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 84.065753][ T4427] RSP: 002b:00007ffd6677a338 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 84.074203][ T4427] RAX: 0000000000000000 RBX: 00007f1e48bf7c5a RCX: 00007f1e48b9dc87
[ 84.082403][ T4427] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffd6677a3f0
[ 84.090407][ T4427] RBP: 00007ffd6677a3f0 R08: 0000000000000000 R09: 0000000000000000
[ 84.098489][ T4427] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd6677b4b0
[ 84.106948][ T4427] R13: 00007f1e48bf7c5a R14: 00000000000143c4 R15: 0000000000000006
[ 84.115120][ T4427]
[ 84.118428][ T4427] Kernel Offset: disabled
[ 84.122763][ T4427] Rebooting in 86400 seconds..