Warning: Permanently added '10.128.1.231' (ED25519) to the list of known hosts.
2025/07/28 17:48:23 ignoring optional flag "sandboxArg"="0"
2025/07/28 17:48:23 ignoring optional flag "type"="gce"
2025/07/28 17:48:24 parsed 1 programs
2025/07/28 17:48:25 executed programs: 0
[ 102.476939][ T6162] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 102.530182][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 102.538567][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 102.547002][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 102.555934][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 102.564332][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 102.706297][ T6169] chnl_net:caif_netlink_parms(): no params data found
[ 102.784453][ T6169] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.791906][ T6169] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.799884][ T6169] bridge_slave_0: entered allmulticast mode
[ 102.806869][ T6169] bridge_slave_0: entered promiscuous mode
[ 102.815607][ T6169] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.823235][ T6169] bridge0: port 2(bridge_slave_1) entered disabled state
[ 102.830740][ T6169] bridge_slave_1: entered allmulticast mode
[ 102.838153][ T6169] bridge_slave_1: entered promiscuous mode
[ 102.870155][ T6169] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 102.881604][ T6169] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 102.913247][ T6169] team0: Port device team_slave_0 added
[ 102.922327][ T6169] team0: Port device team_slave_1 added
[ 102.951033][ T6169] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 102.958011][ T6169] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 102.984433][ T6169] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 102.996290][ T6169] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 103.003408][ T6169] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 103.029695][ T6169] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 103.071814][ T6169] hsr_slave_0: entered promiscuous mode
[ 103.078131][ T6169] hsr_slave_1: entered promiscuous mode
[ 103.784075][ T6169] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 103.807515][ T6169] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 103.821085][ T6169] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 103.833519][ T6169] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 103.936254][ T6169] 8021q: adding VLAN 0 to HW filter on device bond0
[ 103.962892][ T6169] 8021q: adding VLAN 0 to HW filter on device team0
[ 103.977671][ T1111] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.984927][ T1111] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 104.003870][ T1111] bridge0: port 2(bridge_slave_1) entered blocking state
[ 104.011208][ T1111] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 104.285015][ T6169] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 104.343656][ T6169] veth0_vlan: entered promiscuous mode
[ 104.359660][ T6169] veth1_vlan: entered promiscuous mode
[ 104.397310][ T6169] veth0_macvtap: entered promiscuous mode
[ 104.409043][ T6169] veth1_macvtap: entered promiscuous mode
[ 104.434408][ T6169] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 104.455207][ T6169] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 104.473044][ T6169] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.482654][ T6169] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.493552][ T6169] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.502681][ T6169] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.584938][ T1111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.593330][ T1111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.605174][ T51] Bluetooth: hci0: command tx timeout
[ 104.643359][ T3539] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.653382][ T3539] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.050409][ T6229] loop0: detected capacity change from 0 to 32768
[ 105.133629][ T6229] ==================================================================
[ 105.141748][ T6229] BUG: KASAN: slab-out-of-bounds in jfs_readdir+0x1970/0x3ae0
[ 105.149246][ T6229] Read of size 1 at addr ffff888071963ced by task syz-executor.0/6229
[ 105.157414][ T6229]
[ 105.159760][ T6229] CPU: 0 UID: 0 PID: 6229 Comm: syz-executor.0 Not tainted 6.16.0-syzkaller #0 PREEMPT(full)
[ 105.159780][ T6229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 105.159796][ T6229] Call Trace:
[ 105.159806][ T6229]
[ 105.159814][ T6229] dump_stack_lvl+0x189/0x250
[ 105.159835][ T6229] ? __kasan_check_byte+0x12/0x40
[ 105.159859][ T6229] ? __pfx_dump_stack_lvl+0x10/0x10
[ 105.159876][ T6229] ? lock_release+0x4b/0x3e0
[ 105.159893][ T6229] ? __virt_addr_valid+0x4a5/0x5c0
[ 105.159913][ T6229] print_report+0xca/0x240
[ 105.159936][ T6229] ? jfs_readdir+0x1970/0x3ae0
[ 105.159956][ T6229] kasan_report+0x118/0x150
[ 105.159973][ T6229] ? jfs_readdir+0x1970/0x3ae0
[ 105.159996][ T6229] jfs_readdir+0x1970/0x3ae0
[ 105.160026][ T6229] ? __pfx_jfs_readdir+0x10/0x10
[ 105.160054][ T6229] ? down_write+0x162/0x1f0
[ 105.160078][ T6229] ? __pfx_down_write+0x10/0x10
[ 105.160099][ T6229] ? __pfx_jfs_readdir+0x10/0x10
[ 105.160119][ T6229] wrap_directory_iterator+0x96/0xe0
[ 105.160145][ T6229] iterate_dir+0x5af/0x770
[ 105.160174][ T6229] __se_sys_getdents64+0xe4/0x260
[ 105.160199][ T6229] ? __pfx___se_sys_getdents64+0x10/0x10
[ 105.160222][ T6229] ? __pfx_filldir64+0x10/0x10
[ 105.160237][ T6229] ? rcu_is_watching+0x15/0xb0
[ 105.160256][ T6229] ? do_syscall_64+0xbe/0x3b0
[ 105.160275][ T6229] do_syscall_64+0xfa/0x3b0
[ 105.160292][ T6229] ? lockdep_hardirqs_on+0x9c/0x150
[ 105.160309][ T6229] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.160325][ T6229] ? clear_bhb_loop+0x60/0xb0
[ 105.160342][ T6229] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.160358][ T6229] RIP: 0033:0x7fd047c7dea9
[ 105.160378][ T6229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 105.160391][ T6229] RSP: 002b:00007fd048a370c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 105.160409][ T6229] RAX: ffffffffffffffda RBX: 00007fd047dabf80 RCX: 00007fd047c7dea9
[ 105.160421][ T6229] RDX: 000000000000005d RSI: 00000000200002c0 RDI: 0000000000000005
[ 105.160432][ T6229] RBP: 00007fd047cca4a4 R08: 0000000000000000 R09: 0000000000000000
[ 105.160442][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.160452][ T6229] R13: 000000000000000b R14: 00007fd047dabf80 R15: 00007ffc549bc478
[ 105.160469][ T6229]
[ 105.160474][ T6229]
[ 105.392845][ T6229] The buggy address belongs to the object at ffff888071963750
[ 105.392845][ T6229] which belongs to the cache jfs_ip of size 2232
[ 105.406812][ T6229] The buggy address is located 1437 bytes inside of
[ 105.406812][ T6229] allocated 2232-byte region [ffff888071963750, ffff888071964008)
[ 105.421149][ T6229]
[ 105.423467][ T6229] The buggy address belongs to the physical page:
[ 105.429881][ T6229] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x71960
[ 105.438737][ T6229] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 105.447315][ T6229] memcg:ffff888033e92801
[ 105.451553][ T6229] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 105.459200][ T6229] page_type: f5(slab)
[ 105.463185][ T6229] raw: 00fff00000000040 ffff888146a9f3c0 dead000000000122 0000000000000000
[ 105.471766][ T6229] raw: 0000000000000000 00000000800d000d 00000000f5000000 ffff888033e92801
[ 105.480348][ T6229] head: 00fff00000000040 ffff888146a9f3c0 dead000000000122 0000000000000000
[ 105.489099][ T6229] head: 0000000000000000 00000000800d000d 00000000f5000000 ffff888033e92801
[ 105.497851][ T6229] head: 00fff00000000003 ffffea0001c65801 00000000ffffffff 00000000ffffffff
[ 105.506533][ T6229] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 105.515193][ T6229] page dumped because: kasan: bad access detected
[ 105.521601][ T6229] page_owner tracks the page as allocated
[ 105.527310][ T6229] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6229, tgid 6228 (syz-executor.0), ts 105075522563, free_ts 24623762129
[ 105.550075][ T6229] post_alloc_hook+0x240/0x2a0
[ 105.554853][ T6229] get_page_from_freelist+0x21d5/0x22b0
[ 105.560502][ T6229] __alloc_frozen_pages_noprof+0x181/0x370
[ 105.566305][ T6229] alloc_pages_mpol+0x232/0x4a0
[ 105.571241][ T6229] allocate_slab+0x8a/0x3b0
[ 105.575753][ T6229] ___slab_alloc+0xbfc/0x1480
[ 105.580425][ T6229] kmem_cache_alloc_lru_noprof+0x288/0x3d0
[ 105.586225][ T6229] jfs_alloc_inode+0x28/0x70
[ 105.590837][ T6229] alloc_inode+0x67/0x1b0
[ 105.595199][ T6229] new_inode+0x22/0x170
[ 105.599362][ T6229] jfs_fill_super+0x569/0xd90
[ 105.604037][ T6229] get_tree_bdev_flags+0x40e/0x4d0
[ 105.609168][ T6229] vfs_get_tree+0x92/0x2b0
[ 105.613573][ T6229] do_new_mount+0x24a/0xa40
[ 105.618068][ T6229] __se_sys_mount+0x317/0x410
[ 105.622832][ T6229] do_syscall_64+0xfa/0x3b0
[ 105.627363][ T6229] page last free pid 1 tgid 1 stack trace:
[ 105.633163][ T6229] __free_frozen_pages+0xc65/0xe60
[ 105.638270][ T6229] free_contig_range+0x1bd/0x4a0
[ 105.643213][ T6229] destroy_args+0x7e/0x5d0
[ 105.647719][ T6229] debug_vm_pgtable+0x412/0x450
[ 105.652576][ T6229] do_one_initcall+0x233/0x820
[ 105.657459][ T6229] do_initcall_level+0x137/0x1f0
[ 105.662411][ T6229] do_initcalls+0x69/0xd0
[ 105.666793][ T6229] kernel_init_freeable+0x3d9/0x570
[ 105.671992][ T6229] kernel_init+0x1d/0x1d0
[ 105.676322][ T6229] ret_from_fork+0x3fc/0x770
[ 105.680905][ T6229] ret_from_fork_asm+0x1a/0x30
[ 105.685670][ T6229]
[ 105.687986][ T6229] Memory state around the buggy address:
[ 105.693610][ T6229] ffff888071963b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 105.701844][ T6229] ffff888071963c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 105.709991][ T6229] >ffff888071963c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 105.718142][ T6229] ^
[ 105.725692][ T6229] ffff888071963d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 105.733840][ T6229] ffff888071963d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 105.741893][ T6229] ==================================================================
[ 105.805038][ T6229] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 105.812298][ T6229] CPU: 1 UID: 0 PID: 6229 Comm: syz-executor.0 Not tainted 6.16.0-syzkaller #0 PREEMPT(full)
[ 105.822824][ T6229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 105.833160][ T6229] Call Trace:
[ 105.836461][ T6229]
[ 105.839408][ T6229] dump_stack_lvl+0x99/0x250
[ 105.844030][ T6229] ? __asan_memcpy+0x40/0x70
[ 105.848662][ T6229] ? __pfx_dump_stack_lvl+0x10/0x10
[ 105.853894][ T6229] ? __pfx__printk+0x10/0x10
[ 105.858614][ T6229] panic+0x2db/0x790
[ 105.862544][ T6229] ? __pfx_panic+0x10/0x10
[ 105.867005][ T6229] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 105.873023][ T6229] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 105.879387][ T6229] ? print_memory_metadata+0x314/0x400
[ 105.884879][ T6229] ? jfs_readdir+0x1970/0x3ae0
[ 105.889677][ T6229] check_panic_on_warn+0x89/0xb0
[ 105.894832][ T6229] ? jfs_readdir+0x1970/0x3ae0
[ 105.899628][ T6229] end_report+0x78/0x160
[ 105.903893][ T6229] kasan_report+0x129/0x150
[ 105.908806][ T6229] ? jfs_readdir+0x1970/0x3ae0
[ 105.914050][ T6229] jfs_readdir+0x1970/0x3ae0
[ 105.918948][ T6229] ? __pfx_jfs_readdir+0x10/0x10
[ 105.923940][ T6229] ? down_write+0x162/0x1f0
[ 105.928521][ T6229] ? __pfx_down_write+0x10/0x10
[ 105.933492][ T6229] ? __pfx_jfs_readdir+0x10/0x10
[ 105.938458][ T6229] wrap_directory_iterator+0x96/0xe0
[ 105.943953][ T6229] iterate_dir+0x5af/0x770
[ 105.948589][ T6229] __se_sys_getdents64+0xe4/0x260
[ 105.953736][ T6229] ? __pfx___se_sys_getdents64+0x10/0x10
[ 105.959495][ T6229] ? __pfx_filldir64+0x10/0x10
[ 105.964270][ T6229] ? rcu_is_watching+0x15/0xb0
[ 105.969035][ T6229] ? do_syscall_64+0xbe/0x3b0
[ 105.973724][ T6229] do_syscall_64+0xfa/0x3b0
[ 105.978234][ T6229] ? lockdep_hardirqs_on+0x9c/0x150
[ 105.983434][ T6229] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.989508][ T6229] ? clear_bhb_loop+0x60/0xb0
[ 105.994180][ T6229] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.000074][ T6229] RIP: 0033:0x7fd047c7dea9
[ 106.004509][ T6229] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 106.024292][ T6229] RSP: 002b:00007fd048a370c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 106.032729][ T6229] RAX: ffffffffffffffda RBX: 00007fd047dabf80 RCX: 00007fd047c7dea9
[ 106.040707][ T6229] RDX: 000000000000005d RSI: 00000000200002c0 RDI: 0000000000000005
[ 106.048779][ T6229] RBP: 00007fd047cca4a4 R08: 0000000000000000 R09: 0000000000000000
[ 106.056928][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 106.065078][ T6229] R13: 000000000000000b R14: 00007fd047dabf80 R15: 00007ffc549bc478
[ 106.073145][ T6229]
[ 106.076401][ T6229] Kernel Offset: disabled
[ 106.080717][ T6229] Rebooting in 86400 seconds..