Warning: Permanently added '10.128.1.155' (ED25519) to the list of known hosts.
2023/09/09 23:40:46 ignoring optional flag "sandboxArg"="0"
2023/09/09 23:40:46 parsed 1 programs
2023/09/09 23:40:46 executed programs: 0
[   72.009850][ T4436] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.017341][ T4436] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.025086][ T4436] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.033309][ T4436] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   72.040733][ T4436] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   72.156426][ T5380] chnl_net:caif_netlink_parms(): no params data found
[   72.204525][ T5380] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.211731][ T5380] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.219134][ T5380] bridge_slave_0: entered allmulticast mode
[   72.226451][ T5380] bridge_slave_0: entered promiscuous mode
[   72.233640][ T5380] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.241132][ T5380] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.248404][ T5380] bridge_slave_1: entered allmulticast mode
[   72.255514][ T5380] bridge_slave_1: entered promiscuous mode
[   72.275789][ T5380] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.286698][ T5380] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.308573][ T5380] team0: Port device team_slave_0 added
[   72.315796][ T5380] team0: Port device team_slave_1 added
[   72.334370][ T5380] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.341442][ T5380] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.367748][ T5380] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.379775][ T5380] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.386986][ T5380] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.413284][ T5380] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.442520][ T5380] hsr_slave_0: entered promiscuous mode
[   72.448818][ T5380] hsr_slave_1: entered promiscuous mode
[   72.939722][ T5380] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   72.950017][ T5380] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   72.961177][ T5380] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   72.971490][ T5380] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   72.996920][ T5380] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.004184][ T5380] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.011713][ T5380] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.018902][ T5380] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.081952][ T5380] 8021q: adding VLAN 0 to HW filter on device bond0
[   73.099567][ T5043] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.109942][ T5043] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.125356][ T5380] 8021q: adding VLAN 0 to HW filter on device team0
[   73.139645][ T5043] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.146830][ T5043] bridge0: port 1(bridge_slave_0) entered forwarding state
[   73.169342][ T5043] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.176571][ T5043] bridge0: port 2(bridge_slave_1) entered forwarding state
[   73.328735][ T5380] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.369868][ T5380] veth0_vlan: entered promiscuous mode
[   73.383036][ T5380] veth1_vlan: entered promiscuous mode
[   73.414996][ T5380] veth0_macvtap: entered promiscuous mode
[   73.425856][ T5380] veth1_macvtap: entered promiscuous mode
[   73.445160][ T5380] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.462768][ T5380] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.476552][ T5380] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.486359][ T5380] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.497190][ T5380] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.506629][ T5380] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.569600][ T5044] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.582119][ T5044] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.611051][ T5043] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.619912][ T5043] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.720889][ T5449] loop0: detected capacity change from 0 to 8192
[   73.730234][ T5449] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   73.744511][ T5449] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   73.755068][ T5449] REISERFS (device loop0): using ordered data mode
[   73.761674][ T5449] reiserfs: using flush barriers
[   73.768603][ T5449] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   73.786750][ T5449] REISERFS (device loop0): checking transaction log (loop0)
[   73.796026][ T5449] REISERFS (device loop0): Using r5 hash to sort names
[   73.803316][ T5449] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   73.819203][ T5449] ==================================================================
[   73.827301][ T5449] BUG: KASAN: use-after-free in reiserfs_release_objectid+0x510/0x770
[   73.835567][ T5449] Read of size 14568 at addr ffff88806ff970d0 by task syz-executor.0/5449
[   73.844170][ T5449] 
[   73.846505][ T5449] CPU: 0 PID: 5449 Comm: syz-executor.0 Not tainted 6.5.0-syzkaller-12921-ga3c57ab79a06 #0
[   73.856516][ T5449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   73.866599][ T5449] Call Trace:
[   73.869900][ T5449]  <TASK>
[   73.872849][ T5449]  dump_stack_lvl+0x1e7/0x2d0
[   73.877638][ T5449]  ? irq_work_queue+0xd1/0x150
[   73.882508][ T5449]  ? nf_tcp_handle_invalid+0x650/0x650
[   73.888172][ T5449]  ? panic+0x770/0x770
[   73.892277][ T5449]  ? _printk+0xd5/0x120
[   73.896585][ T5449]  print_report+0x163/0x540
[   73.901114][ T5449]  ? __virt_addr_valid+0x22f/0x2e0
[   73.906252][ T5449]  ? __phys_addr+0xba/0x170
[   73.910863][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   73.916689][ T5449]  kasan_report+0x175/0x1b0
[   73.921213][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   73.927046][ T5449]  ? journal_mark_dirty+0x22f/0xe40
[   73.932360][ T5449]  kasan_check_range+0x27e/0x290
[   73.937329][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   73.943261][ T5449]  __asan_memmove+0x29/0x70
[   73.947877][ T5449]  reiserfs_release_objectid+0x510/0x770
[   73.953723][ T5449]  remove_save_link+0x357/0x540
[   73.958695][ T5449]  ? add_save_link+0x7c0/0x7c0
[   73.963496][ T5449]  ? journal_end+0x209/0x2c0
[   73.968207][ T5449]  reiserfs_evict_inode+0x362/0x470
[   73.973435][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   73.979013][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   73.984245][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   73.989892][ T5449]  evict+0x2a4/0x620
[   73.993877][ T5449]  delete_one_xattr+0x29b/0x2f0
[   73.998772][ T5449]  reiserfs_for_each_xattr+0x417/0xb40
[   74.004347][ T5449]  ? reiserfs_for_each_xattr+0xb40/0xb40
[   74.010102][ T5449]  ? reiserfs_delete_xattrs+0x90/0x90
[   74.015519][ T5449]  ? reiserfs_xattr_init+0x670/0x670
[   74.020847][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   74.026156][ T5449]  ? rcu_is_watching+0x15/0xb0
[   74.030959][ T5449]  reiserfs_delete_xattrs+0x1f/0x90
[   74.036296][ T5449]  reiserfs_evict_inode+0x210/0x470
[   74.041527][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.047104][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   74.052418][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.057992][ T5449]  evict+0x2a4/0x620
[   74.061915][ T5449]  __dentry_kill+0x436/0x650
[   74.066622][ T5449]  dentry_kill+0xbb/0x290
[   74.071107][ T5449]  dput+0x1f3/0x420
[   74.074952][ T5449]  do_renameat2+0xd85/0x1660
[   74.079664][ T5449]  ? fsnotify_move+0x4f0/0x4f0
[   74.084489][ T5449]  ? __check_object_size+0x4bb/0xa00
[   74.089813][ T5449]  ? getname_flags+0x1f0/0x4e0
[   74.094689][ T5449]  __x64_sys_rename+0x86/0x90
[   74.099390][ T5449]  do_syscall_64+0x41/0xc0
[   74.103828][ T5449]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.109838][ T5449] RIP: 0033:0x7f774867c859
[   74.114275][ T5449] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   74.134209][ T5449] RSP: 002b:00007f774944c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   74.142786][ T5449] RAX: ffffffffffffffda RBX: 00007f774879bf80 RCX: 00007f774867c859
[   74.150867][ T5449] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000020000140
[   74.158862][ T5449] RBP: 00007f77486d8ad0 R08: 0000000000000000 R09: 0000000000000000
[   74.166888][ T5449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.174972][ T5449] R13: 000000000000000b R14: 00007f774879bf80 R15: 00007ffd2d5e2468
[   74.183062][ T5449]  </TASK>
[   74.186096][ T5449] 
[   74.188434][ T5449] The buggy address belongs to the physical page:
[   74.194854][ T5449] page:ffffea0001bfe5c0 refcount:2 mapcount:0 mapping:ffff88801ac541f8 index:0x10 pfn:0x6ff97
[   74.205285][ T5449] memcg:ffff88802240c000
[   74.209570][ T5449] aops:def_blk_aops ino:700000
[   74.214400][ T5449] flags: 0xfff00000008124(referenced|lru|active|private|node=0|zone=1|lastcpupid=0x7ff)
[   74.224134][ T5449] page_type: 0xffffffff()
[   74.228571][ T5449] raw: 00fff00000008124 ffffea0001bfdec8 ffffea0001bfd908 ffff88801ac541f8
[   74.237262][ T5449] raw: 0000000000000010 ffff88807e41aae0 00000002ffffffff ffff88802240c000
[   74.245948][ T5449] page dumped because: kasan: bad access detected
[   74.252414][ T5449] page_owner tracks the page as allocated
[   74.258402][ T5449] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 5449, tgid 5448 (syz-executor.0), ts 73730036748, free_ts 73720343792
[   74.279258][ T5449]  post_alloc_hook+0x1e6/0x210
[   74.284049][ T5449]  get_page_from_freelist+0x31db/0x3360
[   74.289620][ T5449]  __alloc_pages+0x255/0x670
[   74.294230][ T5449]  folio_alloc+0x1e/0x60
[   74.298491][ T5449]  filemap_alloc_folio+0xde/0x500
[   74.303532][ T5449]  __filemap_get_folio+0x431/0xbb0
[   74.308656][ T5449]  __getblk_gfp+0x218/0x630
[   74.313175][ T5449]  __bread_gfp+0x2e/0x380
[   74.317515][ T5449]  read_super_block+0x91/0x800
[   74.322300][ T5449]  reiserfs_fill_super+0x912/0x2620
[   74.327520][ T5449]  mount_bdev+0x237/0x300
[   74.331953][ T5449]  legacy_get_tree+0xef/0x190
[   74.336830][ T5449]  vfs_get_tree+0x8c/0x280
[   74.341261][ T5449]  do_new_mount+0x28f/0xae0
[   74.345781][ T5449]  __se_sys_mount+0x2d9/0x3c0
[   74.350479][ T5449]  do_syscall_64+0x41/0xc0
[   74.354914][ T5449] page last free stack trace:
[   74.359680][ T5449]  free_unref_page_prepare+0x8c3/0x9f0
[   74.365168][ T5449]  free_unref_page_list+0x596/0x830
[   74.370397][ T5449]  release_pages+0x2113/0x23f0
[   74.375186][ T5449]  tlb_flush_mmu+0x34c/0x4e0
[   74.379801][ T5449]  tlb_finish_mmu+0xd4/0x1f0
[   74.384419][ T5449]  unmap_region+0x300/0x350
[   74.388955][ T5449]  do_vmi_align_munmap+0x11c2/0x17f0
[   74.394266][ T5449]  do_vmi_munmap+0x24d/0x2d0
[   74.398968][ T5449]  __vm_munmap+0x230/0x450
[   74.403406][ T5449]  __x64_sys_munmap+0x69/0x80
[   74.408105][ T5449]  do_syscall_64+0x41/0xc0
[   74.412629][ T5449]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.418984][ T5449] 
[   74.421318][ T5449] Memory state around the buggy address:
[   74.427390][ T5449]  ffff88806ff98f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.435649][ T5449]  ffff88806ff98f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.444002][ T5449] >ffff88806ff99000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.452167][ T5449]                    ^
[   74.456260][ T5449]  ffff88806ff99080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.465032][ T5449]  ffff88806ff99100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.473119][ T5449] ==================================================================
[   74.504805][ T5033] Bluetooth: hci0: command 0x0409 tx timeout
[   74.529189][ T5449] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   74.537736][ T5449] CPU: 0 PID: 5449 Comm: syz-executor.0 Not tainted 6.5.0-syzkaller-12921-ga3c57ab79a06 #0
[   74.547836][ T5449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[   74.558559][ T5449] Call Trace:
[   74.561858][ T5449]  <TASK>
[   74.564808][ T5449]  dump_stack_lvl+0x1e7/0x2d0
[   74.569509][ T5449]  ? nf_tcp_handle_invalid+0x650/0x650
[   74.575083][ T5449]  ? panic+0x770/0x770
[   74.579355][ T5449]  ? preempt_schedule_common+0x83/0xc0
[   74.584940][ T5449]  ? vscnprintf+0x5d/0x80
[   74.589294][ T5449]  panic+0x30f/0x770
[   74.593227][ T5449]  ? check_panic_on_warn+0x21/0xa0
[   74.598366][ T5449]  ? __memcpy_flushcache+0x2b0/0x2b0
[   74.603688][ T5449]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   74.609688][ T5449]  ? _raw_spin_unlock+0x40/0x40
[   74.614563][ T5449]  ? print_report+0x4fb/0x540
[   74.619264][ T5449]  check_panic_on_warn+0x82/0xa0
[   74.624230][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   74.630058][ T5449]  end_report+0x6e/0x130
[   74.634327][ T5449]  kasan_report+0x186/0x1b0
[   74.638943][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   74.644981][ T5449]  ? journal_mark_dirty+0x22f/0xe40
[   74.650390][ T5449]  kasan_check_range+0x27e/0x290
[   74.655629][ T5449]  ? reiserfs_release_objectid+0x510/0x770
[   74.661550][ T5449]  __asan_memmove+0x29/0x70
[   74.666181][ T5449]  reiserfs_release_objectid+0x510/0x770
[   74.672022][ T5449]  remove_save_link+0x357/0x540
[   74.676995][ T5449]  ? add_save_link+0x7c0/0x7c0
[   74.681794][ T5449]  ? journal_end+0x209/0x2c0
[   74.686588][ T5449]  reiserfs_evict_inode+0x362/0x470
[   74.691993][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.697685][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   74.702916][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.708666][ T5449]  evict+0x2a4/0x620
[   74.712673][ T5449]  delete_one_xattr+0x29b/0x2f0
[   74.717635][ T5449]  reiserfs_for_each_xattr+0x417/0xb40
[   74.723216][ T5449]  ? reiserfs_for_each_xattr+0xb40/0xb40
[   74.729771][ T5449]  ? reiserfs_delete_xattrs+0x90/0x90
[   74.735444][ T5449]  ? reiserfs_xattr_init+0x670/0x670
[   74.740786][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   74.746105][ T5449]  ? rcu_is_watching+0x15/0xb0
[   74.751075][ T5449]  reiserfs_delete_xattrs+0x1f/0x90
[   74.756421][ T5449]  reiserfs_evict_inode+0x210/0x470
[   74.761832][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.767681][ T5449]  ? do_raw_spin_unlock+0x13b/0x8b0
[   74.773350][ T5449]  ? entry_points_to_object+0x6f0/0x6f0
[   74.779401][ T5449]  evict+0x2a4/0x620
[   74.783330][ T5449]  __dentry_kill+0x436/0x650
[   74.787976][ T5449]  dentry_kill+0xbb/0x290
[   74.792434][ T5449]  dput+0x1f3/0x420
[   74.796269][ T5449]  do_renameat2+0xd85/0x1660
[   74.801072][ T5449]  ? fsnotify_move+0x4f0/0x4f0
[   74.806560][ T5449]  ? __check_object_size+0x4bb/0xa00
[   74.811973][ T5449]  ? getname_flags+0x1f0/0x4e0
[   74.816859][ T5449]  __x64_sys_rename+0x86/0x90
[   74.821562][ T5449]  do_syscall_64+0x41/0xc0
[   74.826006][ T5449]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.832021][ T5449] RIP: 0033:0x7f774867c859
[   74.836541][ T5449] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   74.856255][ T5449] RSP: 002b:00007f774944c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[   74.864704][ T5449] RAX: ffffffffffffffda RBX: 00007f774879bf80 RCX: 00007f774867c859
[   74.872702][ T5449] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000020000140
[   74.880743][ T5449] RBP: 00007f77486d8ad0 R08: 0000000000000000 R09: 0000000000000000
[   74.888739][ T5449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.896918][ T5449] R13: 000000000000000b R14: 00007f774879bf80 R15: 00007ffd2d5e2468
[   74.904921][ T5449]  </TASK>
[   74.908180][ T5449] Kernel Offset: disabled
[   74.912498][ T5449] Rebooting in 86400 seconds..