Warning: Permanently added '10.128.0.245' (ED25519) to the list of known hosts.
2023/12/28 17:04:03 ignoring optional flag "sandboxArg"="0"
2023/12/28 17:04:03 parsed 1 programs
2023/12/28 17:04:03 executed programs: 0
[ 79.678727][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 79.686738][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 79.694567][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 79.703072][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 79.711177][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 79.718628][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 79.834758][ T5411] chnl_net:caif_netlink_parms(): no params data found
[ 79.889328][ T5411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.896918][ T5411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 79.904214][ T5411] bridge_slave_0: entered allmulticast mode
[ 79.912000][ T5411] bridge_slave_0: entered promiscuous mode
[ 79.920238][ T5411] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.928012][ T5411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 79.935696][ T5411] bridge_slave_1: entered allmulticast mode
[ 79.942729][ T5411] bridge_slave_1: entered promiscuous mode
[ 79.967625][ T5411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 79.979238][ T5411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 80.007041][ T5411] team0: Port device team_slave_0 added
[ 80.015308][ T5411] team0: Port device team_slave_1 added
[ 80.037528][ T5411] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 80.044613][ T5411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.070598][ T5411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 80.083560][ T5411] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 80.091070][ T5411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.117953][ T5411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 80.153257][ T5411] hsr_slave_0: entered promiscuous mode
[ 80.159447][ T5411] hsr_slave_1: entered promiscuous mode
[ 80.817649][ T5411] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 80.831087][ T5411] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 80.843481][ T5411] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 80.855010][ T5411] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 80.967488][ T5411] 8021q: adding VLAN 0 to HW filter on device bond0
[ 80.995575][ T5411] 8021q: adding VLAN 0 to HW filter on device team0
[ 81.009963][ T4843] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.017485][ T4843] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 81.046067][ T4843] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.053568][ T4843] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 81.096167][ T5411] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 81.264461][ T5411] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 81.319636][ T5411] veth0_vlan: entered promiscuous mode
[ 81.337710][ T5411] veth1_vlan: entered promiscuous mode
[ 81.379248][ T5411] veth0_macvtap: entered promiscuous mode
[ 81.390616][ T5411] veth1_macvtap: entered promiscuous mode
[ 81.418393][ T5411] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 81.436058][ T5411] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 81.450284][ T5411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.461584][ T5411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.473516][ T5411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.483698][ T5411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.570316][ T1032] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 81.593969][ T1032] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 81.631231][ T1032] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 81.639100][ T1032] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 81.752256][ T50] Bluetooth: hci0: command 0x0409 tx timeout
[ 81.786183][ T5475] loop0: detected capacity change from 0 to 8192
[ 81.802872][ T5475] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 81.817872][ T5475] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 81.827453][ T5475] REISERFS (device loop0): using ordered data mode
[ 81.836413][ T5475] reiserfs: using flush barriers
[ 81.845664][ T5475] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 81.864477][ T5475] REISERFS (device loop0): checking transaction log (loop0)
[ 81.877220][ T5475] REISERFS (device loop0): Using r5 hash to sort names
[ 81.885863][ T5475] ==================================================================
[ 81.894491][ T5475] BUG: KASAN: use-after-free in strlen+0x58/0x70
[ 81.901147][ T5475] Read of size 1 at addr ffff88806e28c7a3 by task syz-executor.0/5475
[ 81.909311][ T5475]
[ 81.911644][ T5475] CPU: 1 PID: 5475 Comm: syz-executor.0 Not tainted 6.7.0-rc7-syzkaller-gf5837722ffec #0
[ 81.921085][ T8] cfg80211: failed to load regulatory.db
[ 81.921454][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 81.921466][ T5475] Call Trace:
[ 81.940705][ T5475]
[ 81.943648][ T5475] dump_stack_lvl+0x1e7/0x2d0
[ 81.948982][ T5475] ? nf_tcp_handle_invalid+0x650/0x650
[ 81.954561][ T5475] ? panic+0x850/0x850
[ 81.958669][ T5475] ? _printk+0xd5/0x120
[ 81.963042][ T5475] print_report+0x163/0x540
[ 81.967574][ T5475] ? __virt_addr_valid+0x22f/0x2e0
[ 81.972716][ T5475] ? __phys_addr+0xba/0x170
[ 81.977518][ T5475] ? strlen+0x58/0x70
[ 81.981519][ T5475] kasan_report+0x142/0x170
[ 81.986306][ T5475] ? strlen+0x58/0x70
[ 81.990485][ T5475] strlen+0x58/0x70
[ 81.994335][ T5475] reiserfs_find_entry+0x982/0x19b0
[ 82.000176][ T5475] ? reiserfs_get_parent+0x2d0/0x2d0
[ 82.005577][ T5475] ? __d_lookup_rcu+0x3b8/0x4c0
[ 82.010673][ T5475] ? do_raw_spin_unlock+0x13b/0x8b0
[ 82.016871][ T5475] reiserfs_lookup+0x1e2/0x580
[ 82.021668][ T5475] ? reiserfs_init_priv_inode+0x150/0x150
[ 82.027434][ T5475] ? __init_waitqueue_head+0xae/0x150
[ 82.033012][ T5475] __lookup_slow+0x282/0x3e0
[ 82.037626][ T5475] ? lookup_one_len+0x2c0/0x2c0
[ 82.042513][ T5475] lookup_one_len+0x188/0x2c0
[ 82.047224][ T5475] ? lookup_one_common+0x460/0x460
[ 82.052376][ T5475] reiserfs_lookup_privroot+0x89/0x180
[ 82.057904][ T5475] reiserfs_fill_super+0x195b/0x2620
[ 82.063413][ T5475] ? reiserfs_kill_sb+0x150/0x150
[ 82.068664][ T5475] ? __down_write_common+0x161/0x200
[ 82.074080][ T5475] mount_bdev+0x237/0x300
[ 82.078743][ T5475] ? reiserfs_kill_sb+0x150/0x150
[ 82.083899][ T5475] ? get_tree_bdev+0x5b0/0x5b0
[ 82.088687][ T5475] ? vfs_parse_fs_string+0x190/0x230
[ 82.094092][ T5475] ? vfs_parse_fs_param+0x410/0x410
[ 82.099318][ T5475] ? cap_capable+0x1b4/0x240
[ 82.104295][ T5475] legacy_get_tree+0xef/0x190
[ 82.109182][ T5475] ? remove_save_link+0x540/0x540
[ 82.114500][ T5475] vfs_get_tree+0x8c/0x2a0
[ 82.119225][ T5475] do_new_mount+0x28f/0xae0
[ 82.123756][ T5475] ? do_move_mount_old+0x170/0x170
[ 82.128896][ T5475] __se_sys_mount+0x2d9/0x3c0
[ 82.133956][ T5475] ? __x64_sys_mount+0xc0/0xc0
[ 82.138841][ T5475] ? syscall_enter_from_user_mode+0xa4/0x2d0
[ 82.144937][ T5475] ? syscall_enter_from_user_mode+0xa4/0x2d0
[ 82.150944][ T5475] ? __x64_sys_mount+0x20/0xc0
[ 82.155818][ T5475] do_syscall_64+0x45/0x110
[ 82.160355][ T5475] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 82.166274][ T5475] RIP: 0033:0x7f8628a7e05a
[ 82.170743][ T5475] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 82.191578][ T5475] RSP: 002b:00007f8629767ee8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 82.200148][ T5475] RAX: ffffffffffffffda RBX: 00007f8629767f80 RCX: 00007f8628a7e05a
[ 82.208397][ T5475] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 00007f8629767f40
[ 82.216389][ T5475] RBP: 00000000200000c0 R08: 00007f8629767f80 R09: 0000000000008001
[ 82.224391][ T5475] R10: 0000000000008001 R11: 0000000000000246 R12: 0000000020000040
[ 82.232404][ T5475] R13: 00007f8629767f40 R14: 0000000000001122 R15: 0000000020000080
[ 82.240490][ T5475]
[ 82.243527][ T5475]
[ 82.245871][ T5475] The buggy address belongs to the physical page:
[ 82.252288][ T5475] page:ffffea0001b8a300 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6e28c
[ 82.262460][ T5475] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 82.269756][ T5475] page_type: 0xffffffff()
[ 82.274106][ T5475] raw: 00fff00000000000 ffffea0001b8a348 ffff8880b9942270 0000000000000000
[ 82.282792][ T5475] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 82.291510][ T5475] page dumped because: kasan: bad access detected
[ 82.297932][ T5475] page_owner tracks the page as freed
[ 82.303399][ T5475] page last allocated via order 9, migratetype Movable, gfp_mask 0x3d24ca(GFP_TRANSHUGE|__GFP_NORETRY|__GFP_THISNODE), pid 5054, tgid 5047 (syz-fuzzer), ts 57365955046, free_ts 59244240549
[ 82.322091][ T5475] post_alloc_hook+0x1e6/0x210
[ 82.327056][ T5475] get_page_from_freelist+0x33ea/0x3570
[ 82.332812][ T5475] __alloc_pages+0x255/0x680
[ 82.337522][ T5475] alloc_pages_mpol+0x35e/0x640
[ 82.342567][ T5475] vma_alloc_folio+0xf3/0x3f0
[ 82.347278][ T5475] do_huge_pmd_anonymous_page+0x319/0x1a10
[ 82.353372][ T5475] handle_mm_fault+0x16ca/0x6680
[ 82.358343][ T5475] exc_page_fault+0x456/0x870
[ 82.363476][ T5475] asm_exc_page_fault+0x26/0x30
[ 82.368532][ T5475] page last free stack trace:
[ 82.373221][ T5475] free_unref_page_prepare+0x931/0xa60
[ 82.378717][ T5475] free_unref_page+0x37/0x3f0
[ 82.383416][ T5475] release_pages+0x642/0x2400
[ 82.388202][ T5475] tlb_flush_mmu+0x34c/0x4e0
[ 82.392821][ T5475] tlb_finish_mmu+0xd4/0x1f0
[ 82.397431][ T5475] exit_mmap+0x4d3/0xc60
[ 82.401794][ T5475] __mmput+0x115/0x3c0
[ 82.406003][ T5475] exit_mm+0x21f/0x300
[ 82.410185][ T5475] do_exit+0x9af/0x2740
[ 82.414368][ T5475] do_group_exit+0x206/0x2c0
[ 82.418992][ T5475] get_signal+0x1769/0x1840
[ 82.423606][ T5475] arch_do_signal_or_restart+0x96/0x860
[ 82.429375][ T5475] exit_to_user_mode_loop+0x6a/0x100
[ 82.434956][ T5475] exit_to_user_mode_prepare+0xb1/0x150
[ 82.440715][ T5475] syscall_exit_to_user_mode+0x69/0x2a0
[ 82.446400][ T5475] do_syscall_64+0x52/0x110
[ 82.450937][ T5475]
[ 82.453268][ T5475] Memory state around the buggy address:
[ 82.459088][ T5475] ffff88806e28c680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 82.467339][ T5475] ffff88806e28c700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 82.475422][ T5475] >ffff88806e28c780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 82.483499][ T5475] ^
[ 82.488884][ T5475] ffff88806e28c800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 82.496963][ T5475] ffff88806e28c880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 82.505038][ T5475] ==================================================================
[ 82.542844][ T5475] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 82.550432][ T5475] CPU: 1 PID: 5475 Comm: syz-executor.0 Not tainted 6.7.0-rc7-syzkaller-gf5837722ffec #0
[ 82.560268][ T5475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 82.570571][ T5475] Call Trace:
[ 82.574312][ T5475]
[ 82.577266][ T5475] dump_stack_lvl+0x1e7/0x2d0
[ 82.581986][ T5475] ? nf_tcp_handle_invalid+0x650/0x650
[ 82.587676][ T5475] ? panic+0x850/0x850
[ 82.591845][ T5475] ? lockdep_hardirqs_on_prepare+0x43c/0x780
[ 82.597826][ T5475] ? vscnprintf+0x5d/0x80
[ 82.602235][ T5475] panic+0x349/0x850
[ 82.606142][ T5475] ? check_panic_on_warn+0x21/0xa0
[ 82.611240][ T5475] ? __memcpy_flushcache+0x2b0/0x2b0
[ 82.616525][ T5475] ? _raw_spin_unlock_irqrestore+0x12c/0x140
[ 82.622492][ T5475] ? _raw_spin_unlock+0x40/0x40
[ 82.627332][ T5475] check_panic_on_warn+0x82/0xa0
[ 82.632447][ T5475] ? strlen+0x58/0x70
[ 82.636413][ T5475] end_report+0x6e/0x140
[ 82.640674][ T5475] kasan_report+0x153/0x170
[ 82.645175][ T5475] ? strlen+0x58/0x70
[ 82.649147][ T5475] strlen+0x58/0x70
[ 82.652938][ T5475] reiserfs_find_entry+0x982/0x19b0
[ 82.658214][ T5475] ? reiserfs_get_parent+0x2d0/0x2d0
[ 82.663483][ T5475] ? __d_lookup_rcu+0x3b8/0x4c0
[ 82.668326][ T5475] ? do_raw_spin_unlock+0x13b/0x8b0
[ 82.673616][ T5475] reiserfs_lookup+0x1e2/0x580
[ 82.678383][ T5475] ? reiserfs_init_priv_inode+0x150/0x150
[ 82.684107][ T5475] ? __init_waitqueue_head+0xae/0x150
[ 82.689553][ T5475] __lookup_slow+0x282/0x3e0
[ 82.694235][ T5475] ? lookup_one_len+0x2c0/0x2c0
[ 82.699159][ T5475] lookup_one_len+0x188/0x2c0
[ 82.704085][ T5475] ? lookup_one_common+0x460/0x460
[ 82.709192][ T5475] reiserfs_lookup_privroot+0x89/0x180
[ 82.714647][ T5475] reiserfs_fill_super+0x195b/0x2620
[ 82.719928][ T5475] ? reiserfs_kill_sb+0x150/0x150
[ 82.724950][ T5475] ? __down_write_common+0x161/0x200
[ 82.730308][ T5475] mount_bdev+0x237/0x300
[ 82.734802][ T5475] ? reiserfs_kill_sb+0x150/0x150
[ 82.739823][ T5475] ? get_tree_bdev+0x5b0/0x5b0
[ 82.744597][ T5475] ? vfs_parse_fs_string+0x190/0x230
[ 82.749869][ T5475] ? vfs_parse_fs_param+0x410/0x410
[ 82.755062][ T5475] ? cap_capable+0x1b4/0x240
[ 82.759643][ T5475] legacy_get_tree+0xef/0x190
[ 82.764505][ T5475] ? remove_save_link+0x540/0x540
[ 82.769694][ T5475] vfs_get_tree+0x8c/0x2a0
[ 82.774516][ T5475] do_new_mount+0x28f/0xae0
[ 82.779017][ T5475] ? do_move_mount_old+0x170/0x170
[ 82.784212][ T5475] __se_sys_mount+0x2d9/0x3c0
[ 82.788882][ T5475] ? __x64_sys_mount+0xc0/0xc0
[ 82.794641][ T5475] ? syscall_enter_from_user_mode+0xa4/0x2d0
[ 82.800900][ T5475] ? syscall_enter_from_user_mode+0xa4/0x2d0
[ 82.807073][ T5475] ? __x64_sys_mount+0x20/0xc0
[ 82.811851][ T5475] do_syscall_64+0x45/0x110
[ 82.816442][ T5475] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 82.822770][ T5475] RIP: 0033:0x7f8628a7e05a
[ 82.827376][ T5475] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 82.847179][ T5475] RSP: 002b:00007f8629767ee8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 82.856052][ T5475] RAX: ffffffffffffffda RBX: 00007f8629767f80 RCX: 00007f8628a7e05a
[ 82.864197][ T5475] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 00007f8629767f40
[ 82.872163][ T5475] RBP: 00000000200000c0 R08: 00007f8629767f80 R09: 0000000000008001
[ 82.880206][ T5475] R10: 0000000000008001 R11: 0000000000000246 R12: 0000000020000040
[ 82.888375][ T5475] R13: 00007f8629767f40 R14: 0000000000001122 R15: 0000000020000080
[ 82.896659][ T5475]
[ 82.900034][ T5475] Kernel Offset: disabled
[ 82.904719][ T5475] Rebooting in 86400 seconds..