Warning: Permanently added '10.128.1.43' (ED25519) to the list of known hosts.
2025/07/13 11:09:34 ignoring optional flag "sandboxArg"="0"
2025/07/13 11:09:35 parsed 1 programs
[   92.159051][ T1211] cfg80211: failed to load regulatory.db
[   92.702922][ T5855] cgroup: Unknown subsys name 'net'
[   92.891528][ T5855] cgroup: Unknown subsys name 'cpuset'
[   92.901422][ T5855] cgroup: Unknown subsys name 'rlimit'
[   94.561694][ T5855] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   97.398704][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   97.407018][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   97.415248][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   97.424676][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.432854][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.549650][ T5867] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   98.726016][ T5889] chnl_net:caif_netlink_parms(): no params data found
[   98.835391][ T5889] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.842708][ T5889] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.851492][ T5889] bridge_slave_0: entered allmulticast mode
[   98.859762][ T5889] bridge_slave_0: entered promiscuous mode
[   98.869968][ T5889] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.877138][ T5889] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.884626][ T5889] bridge_slave_1: entered allmulticast mode
[   98.892458][ T5889] bridge_slave_1: entered promiscuous mode
[   98.929623][ T5889] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.942603][ T5889] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.984923][ T5889] team0: Port device team_slave_0 added
[   98.993244][ T5889] team0: Port device team_slave_1 added
[   99.024677][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.031698][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.058417][ T5889] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.071970][ T5889] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.079020][ T5889] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.104961][ T5889] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.152876][ T5889] hsr_slave_0: entered promiscuous mode
[   99.159632][ T5889] hsr_slave_1: entered promiscuous mode
[   99.318302][ T5889] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   99.330821][ T5889] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   99.342517][ T5889] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   99.352689][ T5889] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   99.386373][ T5889] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.393728][ T5889] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.401755][ T5889] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.408907][ T5889] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.466863][ T5889] 8021q: adding VLAN 0 to HW filter on device bond0
[   99.487087][ T1157] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.497802][ T1157] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.515890][ T5889] 8021q: adding VLAN 0 to HW filter on device team0
[   99.530183][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.537297][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   99.553814][ T1157] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.560995][ T1157] bridge0: port 2(bridge_slave_1) entered forwarding state
[   99.760047][ T5889] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.803466][ T5889] veth0_vlan: entered promiscuous mode
[   99.815372][ T5889] veth1_vlan: entered promiscuous mode
[   99.853096][ T5889] veth0_macvtap: entered promiscuous mode
[   99.864262][ T5889] veth1_macvtap: entered promiscuous mode
[   99.883467][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.899146][ T5889] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.914651][ T1157] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.924746][ T1157] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.936769][ T1157] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.958812][ T1157] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.056904][ T5889] syz-executor (5889) used greatest stack depth: 19576 bytes left
[  100.101253][ T3000] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.171517][ T3000] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.244184][ T3000] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.321835][ T3000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.730484][ T4667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.738588][ T4667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.772886][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.782380][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.978501][ T3000] bridge_slave_1: left allmulticast mode
[  102.998063][ T3000] bridge_slave_1: left promiscuous mode
[  103.010276][ T3000] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.023133][ T3000] bridge_slave_0: left allmulticast mode
2025/07/13 11:09:49 executed programs: 0
[  103.030254][ T3000] bridge_slave_0: left promiscuous mode
[  103.036093][ T3000] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.106877][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.119104][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.127296][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.142176][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.151833][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.447463][ T3000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.459981][ T3000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.470545][ T3000] bond0 (unregistering): Released all slaves
[  103.617590][ T3000] hsr_slave_0: left promiscuous mode
[  103.624154][ T3000] hsr_slave_1: left promiscuous mode
[  103.631114][ T3000] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  103.638663][ T3000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  103.647075][ T3000] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.655938][ T3000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  103.674141][ T3000] veth1_macvtap: left promiscuous mode
[  103.679972][ T3000] veth0_macvtap: left promiscuous mode
[  103.685600][ T3000] veth1_vlan: left promiscuous mode
[  103.691314][ T3000] veth0_vlan: left promiscuous mode
[  104.057149][ T3000] team0 (unregistering): Port device team_slave_1 removed
[  104.091278][ T3000] team0 (unregistering): Port device team_slave_0 removed
[  104.555683][ T5961] chnl_net:caif_netlink_parms(): no params data found
[  104.849408][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.856692][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.865355][ T5961] bridge_slave_0: entered allmulticast mode
[  104.874721][ T5961] bridge_slave_0: entered promiscuous mode
[  104.884128][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.891722][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.900348][ T5961] bridge_slave_1: entered allmulticast mode
[  104.908742][ T5961] bridge_slave_1: entered promiscuous mode
[  105.188492][   T51] Bluetooth: hci0: command tx timeout
[  105.392415][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.430802][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.496663][ T5961] team0: Port device team_slave_0 added
[  105.524144][ T5961] team0: Port device team_slave_1 added
[  105.624778][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.632209][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.667998][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.697399][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.704486][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.730512][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.878978][ T5961] hsr_slave_0: entered promiscuous mode
[  105.886200][ T5961] hsr_slave_1: entered promiscuous mode
[  106.753486][ T5961] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.767205][ T5961] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.781183][ T5961] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.797942][ T5961] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.924724][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.950150][ T5961] 8021q: adding VLAN 0 to HW filter on device team0
[  106.964848][ T3000] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.972028][ T3000] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.988475][ T3000] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.995632][ T3000] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.269398][   T51] Bluetooth: hci0: command tx timeout
[  107.305256][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.378485][ T5961] veth0_vlan: entered promiscuous mode
[  107.394812][ T5961] veth1_vlan: entered promiscuous mode
[  107.444093][ T5961] veth0_macvtap: entered promiscuous mode
[  107.457268][ T5961] veth1_macvtap: entered promiscuous mode
[  107.484476][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.504748][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.524799][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.544373][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.572806][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.599844][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.656986][ T4667] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.675687][ T4667] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.713212][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.722272][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.950475][ T6061] 
[  107.950481][ T6062] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000009: 0000 [#1] SMP KASAN PTI
[  107.952863][ T6061] ================================================
[  107.964739][ T6062] KASAN: null-ptr-deref in range [0x0000000000000048-0x000000000000004f]
[  107.971232][ T6061] WARNING: lock held when returning to user space!
[  107.971253][ T6061] 6.16.0-rc5-next-20250711-syzkaller #0 Not tainted
[  107.979782][ T6062] CPU: 0 UID: 0 PID: 6062 Comm: syz.0.19 Not tainted 6.16.0-rc5-next-20250711-syzkaller #0 PREEMPT(full) 
[  107.986527][ T6061] ------------------------------------------------
[  107.993105][ T6062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  108.004371][ T6061] syz.0.19/6061 is leaving the kernel with locks still held!
[  108.010871][ T6062] RIP: 0010:mas_start+0x10c/0x560
[  108.020922][ T6061] 1 lock held by syz.0.19/6061:
[  108.028363][ T6062] Code: 85 4e 02 00 00 c6 43 3c 00 48 8b 44 24 30 80 3c 28 00 74 08 48 89 df e8 f2 1b b3 f6 4c 8b 33 49 83 c6 48 4c 89 f0 48 c1 e8 03 <80> 3c 28 00 74 08 4c 89 f7 e8 d6 1b b3 f6 4d 8b 26 e8 fe ec 08 00
[  108.033549][ T6061]  #0: ffff888077d68e48
[  108.038390][ T6062] RSP: 0018:ffffc90003367a08 EFLAGS: 00010206
[  108.057987][ T6061]  (vm_lock
[  108.062133][ T6062] 
[  108.062142][ T6062] RAX: 0000000000000009 RBX: ffff8880762e8d18 RCX: 1ffff1100ec5d1aa
[  108.068193][ T6061] ){++++}-{0:0}
[  108.071298][ T6062] RDX: 1ffff1100ec5d1aa RSI: 0000000000000001 RDI: ffff8880762e8d40
[  108.073626][ T6061] , at: lock_next_vma+0x146/0xdc0
[  108.081685][ T6062] RBP: dffffc0000000000 R08: ffff88801dfd1e00 R09: 0000000000000006
[  108.106116][ T6062] R10: 0000000000000007 R11: 0000000000000000 R12: 0000200001000000
[  108.114124][ T6062] R13: ffff8880762e8d30 R14: 0000000000000048 R15: ffff8880762e8d50
[  108.122144][ T6062] FS:  00007ff7b5a9d6c0(0000) GS:ffff888125bc6000(0000) knlGS:0000000000000000
[  108.131109][ T6062] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.137810][ T6062] CR2: 00007ff7b5a9cf98 CR3: 000000007604c000 CR4: 00000000003526f0
[  108.145820][ T6062] Call Trace:
[  108.149126][ T6062]  <TASK>
[  108.152093][ T6062]  mas_find+0x8aa/0xd30
[  108.156283][ T6062]  lock_next_vma+0x101/0xdc0
[  108.160910][ T6062]  ? query_matching_vma+0x141/0x5c0
[  108.166156][ T6062]  ? __pfx_lock_next_vma+0x10/0x10
[  108.171389][ T6062]  ? query_matching_vma+0x2f7/0x5c0
[  108.176632][ T6062]  ? unlock_vma+0x134/0x180
[  108.181176][ T6062]  ? query_matching_vma+0x141/0x5c0
[  108.186415][ T6062]  query_matching_vma+0x319/0x5c0
[  108.191493][ T6062]  procfs_procmap_ioctl+0x3f9/0xd50
[  108.196750][ T6062]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  108.202520][ T6062]  ? __fget_files+0x2a/0x420
[  108.207151][ T6062]  ? __fget_files+0x2a/0x420
[  108.211783][ T6062]  ? __fget_files+0x3a0/0x420
[  108.216499][ T6062]  ? __fget_files+0x2a/0x420
[  108.221126][ T6062]  ? bpf_lsm_file_ioctl+0x9/0x20
[  108.226160][ T6062]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[  108.231926][ T6062]  __se_sys_ioctl+0xf9/0x170
[  108.236720][ T6062]  do_syscall_64+0xfa/0x3b0
[  108.241262][ T6062]  ? lockdep_hardirqs_on+0x9c/0x150
[  108.246497][ T6062]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.252593][ T6062]  ? clear_bhb_loop+0x60/0xb0
[  108.257387][ T6062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.263310][ T6062] RIP: 0033:0x7ff7b4b8e929
[  108.267771][ T6062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.287406][ T6062] RSP: 002b:00007ff7b5a9d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  108.295867][ T6062] RAX: ffffffffffffffda RBX: 00007ff7b4db6080 RCX: 00007ff7b4b8e929
[  108.303869][ T6062] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000003
[  108.311873][ T6062] RBP: 00007ff7b4c10b39 R08: 0000000000000000 R09: 0000000000000000
[  108.319873][ T6062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.327877][ T6062] R13: 0000000000000001 R14: 00007ff7b4db6080 R15: 00007ffde30986a8
[  108.335885][ T6062]  </TASK>
[  108.338936][ T6062] Modules linked in:
[  108.343571][ T6062] ---[ end trace 0000000000000000 ]---
[  108.352990][ T6062] RIP: 0010:mas_start+0x10c/0x560
[  108.358616][ T6062] Code: 85 4e 02 00 00 c6 43 3c 00 48 8b 44 24 30 80 3c 28 00 74 08 48 89 df e8 f2 1b b3 f6 4c 8b 33 49 83 c6 48 4c 89 f0 48 c1 e8 03 <80> 3c 28 00 74 08 4c 89 f7 e8 d6 1b b3 f6 4d 8b 26 e8 fe ec 08 00
[  108.378828][ T6062] RSP: 0018:ffffc90003367a08 EFLAGS: 00010206
[  108.384941][ T6062] RAX: 0000000000000009 RBX: ffff8880762e8d18 RCX: 1ffff1100ec5d1aa
[  108.393524][ T6062] RDX: 1ffff1100ec5d1aa RSI: 0000000000000001 RDI: ffff8880762e8d40
[  108.401922][ T6062] RBP: dffffc0000000000 R08: ffff88801dfd1e00 R09: 0000000000000006
[  108.410593][ T6062] R10: 0000000000000007 R11: 0000000000000000 R12: 0000200001000000
[  108.418919][ T6062] R13: ffff8880762e8d30 R14: 0000000000000048 R15: ffff8880762e8d50
[  108.426988][ T6062] FS:  00007ff7b5a9d6c0(0000) GS:ffff888125bc6000(0000) knlGS:0000000000000000
[  108.436751][ T6062] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  108.443745][ T6062] CR2: 00007ff7b5a9cf98 CR3: 000000007604c000 CR4: 00000000003526f0
[  108.452291][ T6062] Kernel panic - not syncing: Fatal exception
[  108.458731][ T6062] Kernel Offset: disabled
[  108.463057][ T6062] Rebooting in 86400 seconds..