Warning: Permanently added '10.128.1.134' (ECDSA) to the list of known hosts.
2023/05/30 19:11:47 ignoring optional flag "sandboxArg"="0"
2023/05/30 19:11:47 parsed 1 programs
2023/05/30 19:11:47 executed programs: 0
[   70.776053][ T4387] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   70.784562][ T4387] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   70.793867][ T4387] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   70.803213][ T4387] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   70.811728][ T4387] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   70.903797][ T5331] chnl_net:caif_netlink_parms(): no params data found
[   70.944292][ T5331] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.952339][ T5331] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.960246][ T5331] bridge_slave_0: entered allmulticast mode
[   70.967140][ T5331] bridge_slave_0: entered promiscuous mode
[   70.975461][ T5331] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.987559][ T5331] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.998937][ T5331] bridge_slave_1: entered allmulticast mode
[   71.007172][ T5331] bridge_slave_1: entered promiscuous mode
[   71.028529][ T5331] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.040118][ T5331] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.065059][ T5331] team0: Port device team_slave_0 added
[   71.073853][ T5331] team0: Port device team_slave_1 added
[   71.092796][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_0
[   71.099997][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.126389][ T5331] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.139274][ T5331] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.146340][ T5331] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.172886][ T5331] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.200765][ T5331] hsr_slave_0: entered promiscuous mode
[   71.207097][ T5331] hsr_slave_1: entered promiscuous mode
[   72.167806][ T5331] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   72.180172][ T5331] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   72.193465][ T5331] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   72.205354][ T5331] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   72.276424][ T5331] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.291893][ T4991] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   72.302232][ T4991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   72.314306][ T5331] 8021q: adding VLAN 0 to HW filter on device team0
[   72.328163][ T4991] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   72.337872][ T4991] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   72.348307][ T4991] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.355694][ T4991] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.375810][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   72.386757][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   72.396591][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   72.407313][ T4992] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.414672][ T4992] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.424592][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   72.435220][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   72.457907][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   72.469430][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   72.480712][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   72.490468][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   72.500835][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   72.510681][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   72.523815][ T5331] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   72.536291][ T5331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   72.547664][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   72.557585][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   72.567933][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   72.698809][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   72.706673][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   72.722028][ T5331] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.744554][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   72.755645][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   72.780007][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   72.790595][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   72.801156][ T5331] veth0_vlan: entered promiscuous mode
[   72.810361][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   72.818289][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   72.829590][ T4387] Bluetooth: hci0: command 0x0409 tx timeout
[   72.832756][ T5331] veth1_vlan: entered promiscuous mode
[   72.857674][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   72.866862][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   72.877090][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   72.886799][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   72.903523][ T5331] veth0_macvtap: entered promiscuous mode
[   72.916135][ T5331] veth1_macvtap: entered promiscuous mode
[   72.932341][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.940513][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   72.949476][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   72.958275][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   72.967952][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   72.983521][ T5331] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.991939][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   73.002524][ T4992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   73.015170][ T5331] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.026293][ T5331] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.035858][ T5331] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.046682][ T5331] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.126362][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.138973][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.156777][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   73.180173][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.192350][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.208257][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   73.322856][ T5413] loop0: detected capacity change from 0 to 8192
[   73.341986][ T5413] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   73.356075][ T5413] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   73.366982][ T5413] REISERFS (device loop0): using ordered data mode
[   73.374357][ T5413] reiserfs: using flush barriers
[   73.383683][ T5413] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   73.404347][ T5413] REISERFS (device loop0): checking transaction log (loop0)
[   73.482596][ T5413] REISERFS (device loop0): Using r5 hash to sort names
[   73.669464][ T5429] loop0: detected capacity change from 0 to 8192
[   73.681408][ T5429] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   73.695239][ T5429] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   73.706426][ T5429] REISERFS (device loop0): using ordered data mode
[   73.714246][ T5429] reiserfs: using flush barriers
[   73.721954][ T5429] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   73.740214][ T5429] REISERFS (device loop0): checking transaction log (loop0)
[   73.835145][ T5429] REISERFS (device loop0): Using r5 hash to sort names
[   73.857597][ T5429] ==================================================================
[   73.866074][ T5429] BUG: KASAN: use-after-free in reiserfs_readdir_inode+0x5a4/0x1490
[   73.874240][ T5429] Read of size 8 at addr ffff88807001c000 by task syz-executor.0/5429
[   73.882482][ T5429] 
[   73.885075][ T5429] CPU: 1 PID: 5429 Comm: syz-executor.0 Not tainted 6.4.0-rc4-syzkaller #0
[   73.894219][ T5429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   73.904643][ T5429] Call Trace:
[   73.908072][ T5429]  <TASK>
[   73.911023][ T5429]  dump_stack_lvl+0x167/0x220
[   73.915743][ T5429]  ? nf_tcp_handle_invalid+0x4e0/0x4e0
[   73.921310][ T5429]  ? panic+0x540/0x540
[   73.925408][ T5429]  ? _printk+0xce/0x110
[   73.929680][ T5429]  print_report+0x163/0x540
[   73.934893][ T5429]  ? reiserfs_readdir_inode+0x5a4/0x1490
[   73.940718][ T5429]  kasan_report+0x176/0x1b0
[   73.945419][ T5429]  ? reiserfs_readdir_inode+0x5a4/0x1490
[   73.951589][ T5429]  kasan_check_range+0x283/0x290
[   73.956552][ T5429]  reiserfs_readdir_inode+0x5a4/0x1490
[   73.962311][ T5429]  ? reiserfs_dir_fsync+0xf0/0xf0
[   73.967549][ T5429]  ? __lock_acquire+0x2070/0x2070
[   73.972592][ T5429]  ? iterate_dir+0xae/0x500
[   73.977307][ T5429]  ? down_read_killable+0x1d4/0x350
[   73.982705][ T5429]  ? fsnotify_perm+0x29e/0x450
[   73.987668][ T5429]  ? reiserfs_sync_file+0x200/0x200
[   73.992973][ T5429]  iterate_dir+0x1fe/0x500
[   74.000734][ T5429]  __se_sys_getdents64+0x1b7/0x3f0
[   74.005956][ T5429]  ? __x64_sys_getdents64+0x80/0x80
[   74.011566][ T5429]  ? filldir+0x560/0x560
[   74.016176][ T5429]  ? syscall_enter_from_user_mode+0x32/0x230
[   74.022252][ T5429]  ? lockdep_hardirqs_on+0x98/0x140
[   74.027471][ T5429]  ? syscall_enter_from_user_mode+0x32/0x230
[   74.033909][ T5429]  do_syscall_64+0x41/0xc0
[   74.039128][ T5429]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.045054][ T5429] RIP: 0033:0x7f892908c0f9
[   74.049752][ T5429] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   74.071767][ T5429] RSP: 002b:00007f8929e5f168 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   74.080654][ T5429] RAX: ffffffffffffffda RBX: 00007f89291abf80 RCX: 00007f892908c0f9
[   74.088897][ T5429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   74.097055][ T5429] RBP: 00007f89290e7b39 R08: 0000000000000000 R09: 0000000000000000
[   74.105467][ T5429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.113972][ T5429] R13: 00007ffffbc539cf R14: 00007f8929e5f300 R15: 0000000000022000
[   74.122447][ T5429]  </TASK>
[   74.125606][ T5429] 
[   74.127939][ T5429] The buggy address belongs to the physical page:
[   74.134356][ T5429] page:ffffea0001c00700 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x7001c
[   74.144948][ T5429] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   74.152454][ T5429] page_type: 0xffffffff()
[   74.156886][ T5429] raw: 00fff00000000000 ffffea0001ba9488 ffffea0001c01b48 0000000000000000
[   74.165834][ T5429] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   74.175407][ T5429] page dumped because: kasan: bad access detected
[   74.182434][ T5429] page_owner tracks the page as freed
[   74.188081][ T5429] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 5455, tgid 5455 (dhcpcd-run-hook), ts 74184908778, free_ts 74175817879
[   74.207025][ T5429]  get_page_from_freelist+0x321c/0x33a0
[   74.213216][ T5429]  __alloc_pages+0x255/0x670
[   74.218008][ T5429]  __folio_alloc+0x13/0x30
[   74.222716][ T5429]  vma_alloc_folio+0x308/0x680
[   74.227496][ T5429]  do_wp_page+0x8d1/0x2600
[   74.231923][ T5429]  handle_mm_fault+0x1e84/0x41f0
[   74.237051][ T5429]  exc_page_fault+0x274/0x900
[   74.241750][ T5429]  asm_exc_page_fault+0x26/0x30
[   74.247150][ T5429] page last free stack trace:
[   74.252439][ T5429]  free_unref_page_prepare+0x8fe/0xa10
[   74.258989][ T5429]  free_unref_page_list+0x596/0x830
[   74.264288][ T5429]  release_pages+0x1a0f/0x1bc0
[   74.269163][ T5429]  tlb_flush_mmu+0xe9/0x1e0
[   74.273786][ T5429]  tlb_finish_mmu+0xb6/0x1c0
[   74.278827][ T5429]  exit_mmap+0x351/0x890
[   74.283166][ T5429]  __mmput+0xcb/0x300
[   74.287258][ T5429]  exit_mm+0x1de/0x290
[   74.291378][ T5429]  do_exit+0x4f2/0x1d10
[   74.295542][ T5429]  do_group_exit+0x1b9/0x280
[   74.300211][ T5429]  __x64_sys_exit_group+0x3f/0x40
[   74.306024][ T5429]  do_syscall_64+0x41/0xc0
[   74.310650][ T5429]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.316558][ T5429] 
[   74.319060][ T5429] Memory state around the buggy address:
[   74.324783][ T5429]  ffff88807001bf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.333200][ T5429]  ffff88807001bf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.341703][ T5429] >ffff88807001c000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.349941][ T5429]                    ^
[   74.354206][ T5429]  ffff88807001c080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.362814][ T5429]  ffff88807001c100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.371068][ T5429] ==================================================================
[   74.403217][ T5429] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   74.410537][ T5429] CPU: 1 PID: 5429 Comm: syz-executor.0 Not tainted 6.4.0-rc4-syzkaller #0
[   74.419212][ T5429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   74.429554][ T5429] Call Trace:
[   74.433030][ T5429]  <TASK>
[   74.435988][ T5429]  dump_stack_lvl+0x167/0x220
[   74.440699][ T5429]  ? nf_tcp_handle_invalid+0x4e0/0x4e0
[   74.446263][ T5429]  ? panic+0x540/0x540
[   74.450610][ T5429]  ? preempt_schedule_common+0x83/0xc0
[   74.456260][ T5429]  panic+0x21e/0x540
[   74.460211][ T5429]  ? __memcpy_flushcache+0x1a0/0x1a0
[   74.465686][ T5429]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   74.471793][ T5429]  ? _raw_spin_unlock+0x40/0x40
[   74.476661][ T5429]  check_panic_on_warn+0x58/0x70
[   74.481790][ T5429]  ? reiserfs_readdir_inode+0x5a4/0x1490
[   74.487446][ T5429]  end_report+0x63/0x110
[   74.491695][ T5429]  kasan_report+0x183/0x1b0
[   74.496360][ T5429]  ? reiserfs_readdir_inode+0x5a4/0x1490
[   74.501997][ T5429]  kasan_check_range+0x283/0x290
[   74.507041][ T5429]  reiserfs_readdir_inode+0x5a4/0x1490
[   74.512772][ T5429]  ? reiserfs_dir_fsync+0xf0/0xf0
[   74.518347][ T5429]  ? __lock_acquire+0x2070/0x2070
[   74.523922][ T5429]  ? iterate_dir+0xae/0x500
[   74.528587][ T5429]  ? down_read_killable+0x1d4/0x350
[   74.534082][ T5429]  ? fsnotify_perm+0x29e/0x450
[   74.538927][ T5429]  ? reiserfs_sync_file+0x200/0x200
[   74.544294][ T5429]  iterate_dir+0x1fe/0x500
[   74.548716][ T5429]  __se_sys_getdents64+0x1b7/0x3f0
[   74.553823][ T5429]  ? __x64_sys_getdents64+0x80/0x80
[   74.559089][ T5429]  ? filldir+0x560/0x560
[   74.563654][ T5429]  ? syscall_enter_from_user_mode+0x32/0x230
[   74.569729][ T5429]  ? lockdep_hardirqs_on+0x98/0x140
[   74.574932][ T5429]  ? syscall_enter_from_user_mode+0x32/0x230
[   74.581199][ T5429]  do_syscall_64+0x41/0xc0
[   74.585609][ T5429]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   74.592583][ T5429] RIP: 0033:0x7f892908c0f9
[   74.597078][ T5429] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   74.617099][ T5429] RSP: 002b:00007f8929e5f168 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   74.625838][ T5429] RAX: ffffffffffffffda RBX: 00007f89291abf80 RCX: 00007f892908c0f9
[   74.634395][ T5429] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   74.642429][ T5429] RBP: 00007f89290e7b39 R08: 0000000000000000 R09: 0000000000000000
[   74.650688][ T5429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   74.658768][ T5429] R13: 00007ffffbc539cf R14: 00007f8929e5f300 R15: 0000000000022000
[   74.666932][ T5429]  </TASK>
[   74.670170][ T5429] Kernel Offset: disabled
[   74.674567][ T5429] Rebooting in 86400 seconds..