Warning: Permanently added '10.128.10.63' (ECDSA) to the list of known hosts.
2023/01/19 08:45:18 ignoring optional flag "sandboxArg"="0"
2023/01/19 08:45:18 parsed 1 programs
2023/01/19 08:45:18 executed programs: 0
[   55.004686][ T5887] chnl_net:caif_netlink_parms(): no params data found
[   55.030414][ T5887] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.037727][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.045239][ T5887] device bridge_slave_0 entered promiscuous mode
[   55.053551][ T5887] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.060758][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.068971][ T5887] device bridge_slave_1 entered promiscuous mode
[   55.083609][ T5887] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.094481][ T5887] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.112021][ T5887] team0: Port device team_slave_0 added
[   55.118928][ T5887] team0: Port device team_slave_1 added
[   55.130386][ T5887] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.137442][ T5887] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.163441][ T5887] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.174833][ T5887] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.181795][ T5887] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.208193][ T5887] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.230078][ T5887] device hsr_slave_0 entered promiscuous mode
[   55.237171][ T5887] device hsr_slave_1 entered promiscuous mode
[   56.509861][ T5887] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.519840][ T5887] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.529252][ T5887] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.538233][ T5887] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   56.579732][ T5887] 8021q: adding VLAN 0 to HW filter on device bond0
[   56.592082][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   56.600375][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   56.611420][ T5887] 8021q: adding VLAN 0 to HW filter on device team0
[   56.622960][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   56.632736][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   56.642364][ T5481] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.649450][ T5481] bridge0: port 1(bridge_slave_0) entered forwarding state
[   56.665759][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   56.674679][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   56.684368][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   56.693138][ T5481] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.700220][ T5481] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.709193][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   56.718506][ T5481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   56.734731][ T5887] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   56.746094][ T5887] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   56.762625][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   56.772303][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   56.782287][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   56.792147][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   56.801743][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   56.810834][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   56.820644][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   56.830092][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   56.842024][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   56.854054][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   56.921597][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   56.929772][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   56.941141][ T5887] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.957419][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   56.966730][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   56.983423][ T5887] device veth0_vlan entered promiscuous mode
[   56.992121][ T5985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   57.002069][ T5985] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   57.011133][ T5985] Bluetooth: hci0: command 0x0409 tx timeout
[   57.013790][ T5887] device veth1_vlan entered promiscuous mode
[   57.023755][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   57.032458][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   57.041424][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   57.060471][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   57.068854][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   57.079561][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   57.089713][ T5887] device veth0_macvtap entered promiscuous mode
[   57.102543][ T5887] device veth1_macvtap entered promiscuous mode
[   57.116725][ T5887] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.124044][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   57.133683][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   57.142274][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   57.152035][ T3157] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   57.163256][ T5887] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.173469][ T5985] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   57.182286][ T5985] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   57.194252][ T5887] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   57.203279][ T5887] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   57.214557][ T5887] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   57.223571][ T5887] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   57.270383][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.287384][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.293957][ T4473] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   57.298190][ T5985] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   57.310882][ T4473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   57.321417][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   57.401603][ T6029] loop0: detected capacity change from 0 to 4096
[   57.427205][ T6029] ntfs3: loop0: Different NTFS' sector size and media sector size
[   57.455125][ T6029] ==================================================================
[   57.463423][ T6029] BUG: KASAN: slab-out-of-bounds in memcmp+0xa6/0xb0
[   57.470092][ T6029] Read of size 1 at addr ffff88802015fe20 by task syz-executor.0/6029
[   57.478236][ T6029] 
[   57.480552][ T6029] CPU: 0 PID: 6029 Comm: syz-executor.0 Not tainted 5.14.0-rc5-syzkaller #0
[   57.489219][ T6029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[   57.499279][ T6029] Call Trace:
[   57.502560][ T6029]  dump_stack_lvl+0x57/0x7d
[   57.507058][ T6029]  print_address_description.constprop.0.cold+0x6c/0x309
[   57.514083][ T6029]  ? memcmp+0xa6/0xb0
[   57.518061][ T6029]  ? memcmp+0xa6/0xb0
[   57.522034][ T6029]  kasan_report.cold+0x83/0xdf
[   57.526793][ T6029]  ? _raw_spin_unlock_irqrestore+0x30/0x70
[   57.532601][ T6029]  ? memcmp+0xa6/0xb0
[   57.536584][ T6029]  memcmp+0xa6/0xb0
[   57.540389][ T6029]  mi_find_attr+0xf0/0x1e0
[   57.544803][ T6029]  ni_find_attr+0x241/0x590
[   57.549301][ T6029]  ? ni_load_mi+0xe0/0xe0
[   57.553621][ T6029]  ? __init_rwsem+0x129/0x1a0
[   57.558300][ T6029]  ntfs_objid_init+0xaf/0x1f0
[   57.562976][ T6029]  ? ntfs_reparse_init+0x1f0/0x1f0
[   57.568089][ T6029]  ntfs_fill_super+0x2c1c/0x3550
[   57.573040][ T6029]  ? put_ntfs+0x330/0x330
[   57.577363][ T6029]  ? vsprintf+0x10/0x10
[   57.581519][ T6029]  ? sget+0x3d6/0x4d0
[   57.585498][ T6029]  mount_bdev+0x2cb/0x3b0
[   57.589818][ T6029]  ? put_ntfs+0x330/0x330
[   57.594149][ T6029]  ? ntfs_statfs+0x360/0x360
[   57.598727][ T6029]  legacy_get_tree+0xfa/0x1f0
[   57.603392][ T6029]  vfs_get_tree+0x7f/0x2c0
[   57.607799][ T6029]  path_mount+0x7f3/0x1a40
[   57.612212][ T6029]  ? strncpy_from_user+0x68/0x2d0
[   57.617229][ T6029]  ? finish_automount+0x900/0x900
[   57.622248][ T6029]  ? getname_flags.part.0+0x89/0x440
[   57.627532][ T6029]  __x64_sys_mount+0x1f5/0x260
[   57.632286][ T6029]  ? copy_mnt_ns+0xd20/0xd20
[   57.636870][ T6029]  ? syscall_enter_from_user_mode+0x21/0x70
[   57.642764][ T6029]  do_syscall_64+0x35/0x80
[   57.647181][ T6029]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   57.653071][ T6029] RIP: 0033:0x7f73dc54960a
[   57.657484][ T6029] Code: 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   57.677095][ T6029] RSP: 002b:00007f73db8b9f88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   57.685512][ T6029] RAX: ffffffffffffffda RBX: 000000000001f36b RCX: 00007f73dc54960a
[   57.693489][ T6029] RDX: 000000002001f340 RSI: 000000002001f380 RDI: 00007f73db8b9fe0
[   57.701464][ T6029] RBP: 00007f73db8ba020 R08: 00007f73db8ba020 R09: 0000000000000000
[   57.709440][ T6029] R10: 0000000000000000 R11: 0000000000000246 R12: 000000002001f340
[   57.717419][ T6029] R13: 000000002001f380 R14: 00007f73db8b9fe0 R15: 0000000020000000
[   57.725441][ T6029] 
[   57.727764][ T6029] Allocated by task 250:
[   57.731997][ T6029]  kasan_save_stack+0x1b/0x40
[   57.736670][ T6029]  __kasan_kmalloc+0x9b/0xd0
[   57.741254][ T6029]  sbitmap_queue_init_node+0x19c/0x3f0
[   57.746708][ T6029]  blk_mq_init_bitmaps+0x57/0x130
[   57.751728][ T6029]  blk_mq_init_tags+0x163/0x240
[   57.756667][ T6029]  blk_mq_alloc_rq_map+0x39/0x180
[   57.761685][ T6029]  blk_mq_init_sched+0x208/0x1080
[   57.766706][ T6029]  elevator_init_mq+0x2e4/0x3c0
[   57.771553][ T6029]  __device_add_disk+0x4a2/0xb70
[   57.776485][ T6029]  sd_probe+0xa0e/0xf10
[   57.780650][ T6029]  really_probe+0x1b9/0xb70
[   57.785155][ T6029]  __driver_probe_device+0x2a6/0x460
[   57.790433][ T6029]  driver_probe_device+0x44/0x110
[   57.795456][ T6029]  __device_attach_driver+0x185/0x250
[   57.800824][ T6029]  bus_for_each_drv+0x11e/0x1a0
[   57.805670][ T6029]  __device_attach_async_helper+0x191/0x230
[   57.811563][ T6029]  async_run_entry_fn+0x8e/0x4f0
[   57.816494][ T6029]  process_one_work+0x84c/0x13d0
[   57.821430][ T6029]  worker_thread+0x598/0x1040
[   57.826107][ T6029]  kthread+0x38b/0x460
[   57.830173][ T6029]  ret_from_fork+0x1f/0x30
[   57.834584][ T6029] 
[   57.836899][ T6029] The buggy address belongs to the object at ffff88802015f800
[   57.836899][ T6029]  which belongs to the cache kmalloc-1k of size 1024
[   57.850950][ T6029] The buggy address is located 544 bytes to the right of
[   57.850950][ T6029]  1024-byte region [ffff88802015f800, ffff88802015fc00)
[   57.864830][ T6029] The buggy address belongs to the page:
[   57.870460][ T6029] page:ffffea0000805600 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802015a800 pfn:0x20158
[   57.881916][ T6029] head:ffffea0000805600 order:3 compound_mapcount:0 compound_pincount:0
[   57.890331][ T6029] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   57.898313][ T6029] raw: 00fff00000010200 ffffea00009aa008 ffffea0000573208 ffff888010841dc0
[   57.906896][ T6029] raw: ffff88802015a800 000000000010000a 00000001ffffffff 0000000000000000
[   57.915481][ T6029] page dumped because: kasan: bad access detected
[   57.921891][ T6029] page_owner tracks the page as allocated
[   57.927610][ T6029] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 9, ts 5478008587, free_ts 0
[   57.943934][ T6029]  get_page_from_freelist+0xa72/0x2f80
[   57.949394][ T6029]  __alloc_pages+0x1b2/0x500
[   57.953983][ T6029]  allocate_slab+0x96/0x4b0
[   57.958476][ T6029]  ___slab_alloc+0x4ba/0x820
[   57.963061][ T6029]  __slab_alloc.constprop.0+0xa7/0xf0
[   57.968424][ T6029]  __kmalloc_node+0x2df/0x380
[   57.973093][ T6029]  blk_alloc_flush_queue+0xf7/0x2d0
[   57.978287][ T6029]  blk_mq_realloc_hw_ctxs+0xd22/0x15d0
[   57.983745][ T6029]  blk_mq_init_allocated_queue+0x2df/0x1580
[   57.989634][ T6029]  blk_mq_init_queue+0x66/0xb0
[   57.994398][ T6029]  scsi_alloc_sdev+0x7e9/0xca0
[   57.999155][ T6029]  scsi_probe_and_add_lun+0x18a6/0x2d30
[   58.004693][ T6029]  __scsi_scan_target+0x1ab/0xad0
[   58.009708][ T6029]  scsi_scan_channel+0xdf/0x160
[   58.014545][ T6029]  scsi_scan_host_selected+0x1ef/0x2a0
[   58.019994][ T6029]  do_scan_async+0x3a/0x450
[   58.024485][ T6029] page_owner free stack trace missing
[   58.029842][ T6029] 
[   58.032159][ T6029] Memory state around the buggy address:
[   58.037779][ T6029]  ffff88802015fd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.045839][ T6029]  ffff88802015fd80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.053897][ T6029] >ffff88802015fe00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.061956][ T6029]                                ^
[   58.067058][ T6029]  ffff88802015fe80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.075111][ T6029]  ffff88802015ff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   58.083161][ T6029] ==================================================================
[   58.091215][ T6029] Disabling lock debugging due to kernel taint
[   58.103109][ T6029] Kernel panic - not syncing: panic_on_warn set ...
[   58.109712][ T6029] CPU: 0 PID: 6029 Comm: syz-executor.0 Tainted: G    B             5.14.0-rc5-syzkaller #0
[   58.119766][ T6029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[   58.129814][ T6029] Call Trace:
[   58.133090][ T6029]  dump_stack_lvl+0x57/0x7d
[   58.137576][ T6029]  panic+0x256/0x4eb
[   58.141458][ T6029]  ? __warn_printk+0xee/0xee
[   58.146033][ T6029]  ? preempt_schedule_common+0x59/0xc0
[   58.151477][ T6029]  ? memcmp+0xa6/0xb0
[   58.155440][ T6029]  ? preempt_schedule_thunk+0x16/0x18
[   58.160798][ T6029]  ? memcmp+0xa6/0xb0
[   58.164765][ T6029]  ? memcmp+0xa6/0xb0
[   58.168733][ T6029]  end_report.cold+0x5a/0x5a
[   58.173309][ T6029]  kasan_report.cold+0x71/0xdf
[   58.178060][ T6029]  ? _raw_spin_unlock_irqrestore+0x30/0x70
[   58.183853][ T6029]  ? memcmp+0xa6/0xb0
[   58.187820][ T6029]  memcmp+0xa6/0xb0
[   58.191601][ T6029]  mi_find_attr+0xf0/0x1e0
[   58.195989][ T6029]  ni_find_attr+0x241/0x590
[   58.200458][ T6029]  ? ni_load_mi+0xe0/0xe0
[   58.204752][ T6029]  ? __init_rwsem+0x129/0x1a0
[   58.209399][ T6029]  ntfs_objid_init+0xaf/0x1f0
[   58.214045][ T6029]  ? ntfs_reparse_init+0x1f0/0x1f0
[   58.219121][ T6029]  ntfs_fill_super+0x2c1c/0x3550
[   58.224026][ T6029]  ? put_ntfs+0x330/0x330
[   58.228321][ T6029]  ? vsprintf+0x10/0x10
[   58.232464][ T6029]  ? sget+0x3d6/0x4d0
[   58.236412][ T6029]  mount_bdev+0x2cb/0x3b0
[   58.240704][ T6029]  ? put_ntfs+0x330/0x330
[   58.244999][ T6029]  ? ntfs_statfs+0x360/0x360
[   58.249674][ T6029]  legacy_get_tree+0xfa/0x1f0
[   58.254318][ T6029]  vfs_get_tree+0x7f/0x2c0
[   58.258721][ T6029]  path_mount+0x7f3/0x1a40
[   58.263131][ T6029]  ? strncpy_from_user+0x68/0x2d0
[   58.268135][ T6029]  ? finish_automount+0x900/0x900
[   58.273216][ T6029]  ? getname_flags.part.0+0x89/0x440
[   58.278467][ T6029]  __x64_sys_mount+0x1f5/0x260
[   58.283196][ T6029]  ? copy_mnt_ns+0xd20/0xd20
[   58.287750][ T6029]  ? syscall_enter_from_user_mode+0x21/0x70
[   58.293609][ T6029]  do_syscall_64+0x35/0x80
[   58.297995][ T6029]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   58.303854][ T6029] RIP: 0033:0x7f73dc54960a
[   58.308238][ T6029] Code: 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   58.328009][ T6029] RSP: 002b:00007f73db8b9f88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   58.336419][ T6029] RAX: ffffffffffffffda RBX: 000000000001f36b RCX: 00007f73dc54960a
[   58.344362][ T6029] RDX: 000000002001f340 RSI: 000000002001f380 RDI: 00007f73db8b9fe0
[   58.352305][ T6029] RBP: 00007f73db8ba020 R08: 00007f73db8ba020 R09: 0000000000000000
[   58.360260][ T6029] R10: 0000000000000000 R11: 0000000000000246 R12: 000000002001f340
[   58.368212][ T6029] R13: 000000002001f380 R14: 00007f73db8b9fe0 R15: 0000000020000000
[   58.376561][ T6029] Kernel Offset: disabled
[   58.380874][ T6029] Rebooting in 86400 seconds..