[  138.161189][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  138.165568][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '[localhost]:54570' (ED25519) to the list of known hosts.
2025/06/17 02:51:54 ignoring optional flag "sandboxArg"="0"
2025/06/17 02:51:56 parsed 1 programs
[  146.342797][ T5611] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  152.646666][ T4674] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  152.653838][ T4674] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  152.659664][ T4674] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  152.665777][ T4674] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  152.670494][ T4674] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  153.076942][ T1042] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.088412][ T1042] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.113449][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.117142][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.544078][ T5683] chnl_net:caif_netlink_parms(): no params data found
[  154.613730][ T5683] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.617041][ T5683] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.620938][ T5683] bridge_slave_0: entered allmulticast mode
[  154.625745][ T5683] bridge_slave_0: entered promiscuous mode
[  154.632162][ T5683] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.636047][ T5683] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.640621][ T5683] bridge_slave_1: entered allmulticast mode
[  154.644848][ T5683] bridge_slave_1: entered promiscuous mode
[  154.672683][ T5683] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.680650][ T5683] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.708629][ T5683] team0: Port device team_slave_0 added
[  154.713604][ T5683] team0: Port device team_slave_1 added
[  154.736466][ T5683] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.740032][ T5683] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.753479][ T5683] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.760628][ T5683] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.763714][ T5683] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.777369][ T5683] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.816618][ T5683] hsr_slave_0: entered promiscuous mode
[  154.821071][ T5683] hsr_slave_1: entered promiscuous mode
[  155.560096][ T5683] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  155.576513][ T5683] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  155.604190][ T5683] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  155.621386][ T5683] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  155.782072][ T5683] 8021q: adding VLAN 0 to HW filter on device bond0
[  155.821971][ T5683] 8021q: adding VLAN 0 to HW filter on device team0
[  155.849345][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  155.852647][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  155.867193][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  155.870526][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  156.311566][ T5683] 8021q: adding VLAN 0 to HW filter on device batadv0
[  156.391393][ T5683] veth0_vlan: entered promiscuous mode
[  156.420919][ T5683] veth1_vlan: entered promiscuous mode
[  156.480695][ T5683] veth0_macvtap: entered promiscuous mode
[  156.491431][ T5683] veth1_macvtap: entered promiscuous mode
[  156.533074][ T5683] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.555420][ T5683] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.575776][ T5683] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.588334][ T5683] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.592240][ T5683] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.596210][ T5683] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.953476][ T1038] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.070073][ T1038] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.141734][ T1038] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.271178][ T1038] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/06/17 02:52:13 executed programs: 0
[  158.072739][   T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  158.077276][   T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  158.085214][   T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  158.090288][   T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  158.095864][   T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  158.621064][ T5744] chnl_net:caif_netlink_parms(): no params data found
[  158.876458][ T5744] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.898758][ T5744] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.902441][ T5744] bridge_slave_0: entered allmulticast mode
[  158.930526][ T5744] bridge_slave_0: entered promiscuous mode
[  158.983726][ T5744] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.990127][ T5744] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.993478][ T5744] bridge_slave_1: entered allmulticast mode
[  159.018970][ T5744] bridge_slave_1: entered promiscuous mode
[  159.143281][ T5744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.183525][ T5744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.231747][ T1038] bridge_slave_1: left allmulticast mode
[  159.234521][ T1038] bridge_slave_1: left promiscuous mode
[  159.237589][ T1038] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.282102][ T1038] bridge_slave_0: left allmulticast mode
[  159.284834][ T1038] bridge_slave_0: left promiscuous mode
[  159.300259][ T1038] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.912171][ T1038] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  159.931036][ T1038] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.941182][ T1038] bond0 (unregistering): Released all slaves
[  159.989249][ T5744] team0: Port device team_slave_0 added
[  159.994608][ T5744] team0: Port device team_slave_1 added
[  160.065233][ T1038] hsr_slave_0: left promiscuous mode
[  160.071210][ T1038] hsr_slave_1: left promiscuous mode
[  160.081183][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.084581][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.099407][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.103110][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.134462][ T1038] veth1_macvtap: left promiscuous mode
[  160.137238][ T1038] veth0_macvtap: left promiscuous mode
[  160.156108][ T1038] veth1_vlan: left promiscuous mode
[  160.160776][ T4674] Bluetooth: hci0: command tx timeout
[  160.169494][ T1038] veth0_vlan: left promiscuous mode
[  160.882153][ T1038] team0 (unregistering): Port device team_slave_1 removed
[  160.931347][ T1038] team0 (unregistering): Port device team_slave_0 removed
[  161.315367][ T5744] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.322353][ T5744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.348789][ T5744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.358603][ T5744] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.361680][ T5744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.375013][ T5744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.499042][ T5744] hsr_slave_0: entered promiscuous mode
[  161.506609][ T5744] hsr_slave_1: entered promiscuous mode
[  162.177941][ T5744] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  162.201895][ T5744] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  162.221444][ T5744] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  162.238927][ T4674] Bluetooth: hci0: command tx timeout
[  162.244978][ T5744] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  162.400067][ T5744] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.432592][ T5744] 8021q: adding VLAN 0 to HW filter on device team0
[  162.459561][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.463761][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.493232][ T1042] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.497124][ T1042] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.900223][ T5744] 8021q: adding VLAN 0 to HW filter on device batadv0
[  162.966620][ T5744] veth0_vlan: entered promiscuous mode
[  163.013008][ T5744] veth1_vlan: entered promiscuous mode
[  163.084127][ T5744] veth0_macvtap: entered promiscuous mode
[  163.113216][ T5744] veth1_macvtap: entered promiscuous mode
[  163.160548][ T5744] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.195453][ T5744] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.222855][ T5744] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.226910][ T5744] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.248620][ T5744] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.252634][ T5744] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.386322][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.412654][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.469394][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.473844][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/06/17 02:52:19 executed programs: 2
[  163.629886][   T13] ------------[ cut here ]------------
[  163.633090][ T5822] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.640170][   T13] UBSAN: array-index-out-of-bounds in net/mac80211/mlme.c:7224:41
[  163.645332][   T13] index 3 is out of range for type 'u8[0]' (aka 'unsigned char[0]')
[  163.664221][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u4:1 Not tainted 6.16.0-rc2-syzkaller-g9afe652958c3-dirty #0 PREEMPT(full) 
[  163.664246][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.664256][   T13] Workqueue: events_unbound cfg80211_wiphy_work
[  163.664412][   T13] Call Trace:
[  163.664419][   T13]  <TASK>
[  163.664424][   T13]  dump_stack_lvl+0x189/0x250
[  163.664450][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.664472][   T13]  ? __pfx__printk+0x10/0x10
[  163.664498][   T13]  ubsan_epilogue+0xa/0x40
[  163.664515][   T13]  __ubsan_handle_out_of_bounds+0xe9/0xf0
[  163.664583][   T13]  ? ieee80211_get_bssid+0xb8/0x200
[  163.664601][   T13]  ieee80211_rx_mgmt_beacon+0x21ff/0x2c10
[  163.664621][   T13]  ? __lock_acquire+0xab9/0xd20
[  163.664649][   T13]  ? __pfx_ieee80211_rx_mgmt_beacon+0x10/0x10
[  163.664661][   T13]  ? __lock_acquire+0xab9/0xd20
[  163.664708][   T13]  ieee80211_iface_work+0x49c/0xfe0
[  163.664741][   T13]  cfg80211_wiphy_work+0x2df/0x460
[  163.664758][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  163.664782][   T13]  process_scheduled_works+0xae1/0x17b0
[  163.664826][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  163.664862][   T13]  worker_thread+0x8a0/0xda0
[  163.664898][   T13]  kthread+0x70e/0x8a0
[  163.664917][   T13]  ? __pfx_worker_thread+0x10/0x10
[  163.664938][   T13]  ? __pfx_kthread+0x10/0x10
[  163.664955][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  163.665012][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.665029][   T13]  ? __pfx_kthread+0x10/0x10
[  163.665046][   T13]  ret_from_fork+0x3f9/0x770
[  163.665069][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  163.665095][   T13]  ? __pfx_kthread+0x10/0x10
[  163.665112][   T13]  ret_from_fork_asm+0x1a/0x30
[  163.665141][   T13]  </TASK>
[  163.665147][   T13] ---[ end trace ]---
[  163.831680][   T13] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  163.835168][   T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u4:1 Not tainted 6.16.0-rc2-syzkaller-g9afe652958c3-dirty #0 PREEMPT(full) 
[  163.840417][   T13] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  163.845144][   T13] Workqueue: events_unbound cfg80211_wiphy_work
[  163.848036][   T13] Call Trace:
[  163.849567][   T13]  <TASK>
[  163.850891][   T13]  dump_stack_lvl+0x99/0x250
[  163.853002][   T13]  ? __asan_memcpy+0x40/0x70
[  163.855305][   T13]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.857787][   T13]  ? __pfx__printk+0x10/0x10
[  163.859888][   T13]  panic+0x2db/0x790
[  163.861698][   T13]  ? __pfx_panic+0x10/0x10
[  163.863706][   T13]  ? _printk+0xcf/0x120
[  163.866837][   T13]  ? __pfx__printk+0x10/0x10
[  163.868865][   T13]  check_panic_on_warn+0x89/0xb0
[  163.871073][   T13]  __ubsan_handle_out_of_bounds+0xe9/0xf0
[  163.874029][   T13]  ? ieee80211_get_bssid+0xb8/0x200
[  163.876757][   T13]  ieee80211_rx_mgmt_beacon+0x21ff/0x2c10
[  163.879841][   T13]  ? __lock_acquire+0xab9/0xd20
[  163.882134][   T13]  ? __pfx_ieee80211_rx_mgmt_beacon+0x10/0x10
[  163.884872][   T13]  ? __lock_acquire+0xab9/0xd20
[  163.887067][   T13]  ieee80211_iface_work+0x49c/0xfe0
[  163.889901][   T13]  cfg80211_wiphy_work+0x2df/0x460
[  163.892739][   T13]  ? process_scheduled_works+0x9ef/0x17b0
[  163.895759][   T13]  process_scheduled_works+0xae1/0x17b0
[  163.898116][   T13]  ? __pfx_process_scheduled_works+0x10/0x10
[  163.900830][   T13]  worker_thread+0x8a0/0xda0
[  163.902944][   T13]  kthread+0x70e/0x8a0
[  163.904815][   T13]  ? __pfx_worker_thread+0x10/0x10
[  163.907957][   T13]  ? __pfx_kthread+0x10/0x10
[  163.910433][   T13]  ? _raw_spin_unlock_irq+0x23/0x50
[  163.912871][   T13]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.915250][   T13]  ? __pfx_kthread+0x10/0x10
[  163.917336][   T13]  ret_from_fork+0x3f9/0x770
[  163.919682][   T13]  ? __pfx_ret_from_fork+0x10/0x10
[  163.922383][   T13]  ? __pfx_kthread+0x10/0x10
[  163.924676][   T13]  ret_from_fork_asm+0x1a/0x30
[  163.926788][   T13]  </TASK>
[  163.928442][   T13] Kernel Offset: disabled
[  163.930539][   T13] Rebooting in 86400 seconds..