Warning: Permanently added '10.128.0.217' (ED25519) to the list of known hosts.
1970/01/01 00:00:58 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:00:58 ignoring optional flag "type"="gce"
1970/01/01 00:00:58 parsed 1 programs
1970/01/01 00:00:58 executed programs: 0
[   59.087968][ T4252] chnl_net:caif_netlink_parms(): no params data found
[   59.122084][ T4252] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.123920][ T4252] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.126751][ T4252] device bridge_slave_0 entered promiscuous mode
[   59.130219][ T4252] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.132059][ T4252] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.135864][ T4252] device bridge_slave_1 entered promiscuous mode
[   59.151314][ T4252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.156011][ T4252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.172913][ T4252] team0: Port device team_slave_0 added
[   59.176335][ T4252] team0: Port device team_slave_1 added
[   59.188799][ T4252] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.190576][ T4252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.198328][ T4252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.202216][ T4252] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.203935][ T4252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.210545][ T4252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.297021][ T4252] device hsr_slave_0 entered promiscuous mode
[   59.345307][ T4252] device hsr_slave_1 entered promiscuous mode
[   59.993891][ T4252] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   60.038740][ T4252] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   60.096846][ T4252] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   60.136879][ T4252] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   60.220440][ T4252] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.230608][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   60.233163][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   60.239443][ T4252] 8021q: adding VLAN 0 to HW filter on device team0
[   60.246931][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   60.249514][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   60.251827][  T434] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.253471][  T434] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.258366][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   60.263293][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   60.266431][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.268489][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.270014][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.276624][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.287159][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.295605][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   60.299125][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   60.301958][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   60.310240][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   60.319316][ T4252] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   60.321600][ T4252] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   60.325796][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   60.328190][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   60.331051][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   60.333965][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   60.337189][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.343064][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   60.410487][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   60.412354][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   60.418966][ T4252] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.433316][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   60.436319][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   60.451127][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   60.453555][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   60.457205][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   60.460001][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   60.462208][ T4252] device veth0_vlan entered promiscuous mode
[   60.470968][ T4252] device veth1_vlan entered promiscuous mode
[   60.488619][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   60.490854][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   60.493111][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   60.496665][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   60.501199][ T4252] device veth0_macvtap entered promiscuous mode
[   60.508484][ T4252] device veth1_macvtap entered promiscuous mode
[   60.520137][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.521772][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   60.523930][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   60.528330][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   60.531122][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   60.537023][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.539615][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   60.542423][  T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.548452][ T4252] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.550489][ T4252] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.552349][ T4252] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.554229][ T4252] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.602356][  T305] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.604132][  T305] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.609477][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   60.628103][  T305] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.630140][  T305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.632982][  T434] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   60.731999][ T4349] loop0: detected capacity change from 0 to 8192
[   60.738908][ T4349] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   60.741611][ T4349] REISERFS (device loop0): using ordered data mode
[   60.743291][ T4349] reiserfs: using flush barriers
[   60.747128][ T4349] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   60.751321][ T4349] REISERFS (device loop0): checking transaction log (loop0)
[   60.870095][ T4349] REISERFS (device loop0): Using r5 hash to sort names
[   60.875777][ T4349] REISERFS (device loop0): using 3.5.x disk format
[   60.878028][ T4349] ==================================================================
[   60.879805][ T4349] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x504/0x944
[   60.881497][ T4349] Read of size 18446744073709551584 at addr ffff0000e1f0ffa4 by task syz-executor.0/4349
[   60.883495][ T4349] 
[   60.883955][ T4349] CPU: 1 PID: 4349 Comm: syz-executor.0 Not tainted 5.15.167-syzkaller #0
[   60.885905][ T4349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   60.888172][ T4349] Call trace:
[   60.888868][ T4349]  dump_backtrace+0x0/0x530
[   60.889923][ T4349]  show_stack+0x2c/0x3c
[   60.890844][ T4349]  dump_stack_lvl+0x108/0x170
[   60.891826][ T4349]  print_address_description+0x7c/0x3f0
[   60.893096][ T4349]  kasan_report+0x174/0x1e4
[   60.894302][ T4349]  kasan_check_range+0x274/0x2b4
[   60.895371][ T4349]  memmove+0x90/0xe8
[   60.896257][ T4349]  leaf_paste_entries+0x504/0x944
[   60.897378][ T4349]  balance_leaf+0xa0d4/0xe860
[   60.898389][ T4349]  do_balance+0x27c/0x790
[   60.899348][ T4349]  reiserfs_paste_into_item+0x630/0x744
[   60.900612][ T4349]  reiserfs_add_entry+0x8c0/0xc8c
[   60.901779][ T4349]  reiserfs_mkdir+0x588/0x77c
[   60.902733][ T4349]  reiserfs_xattr_init+0x2b0/0x6dc
[   60.903843][ T4349]  reiserfs_fill_super+0x1b28/0x1e8c
[   60.905089][ T4349]  mount_bdev+0x274/0x370
[   60.906050][ T4349]  get_super_block+0x44/0x58
[   60.907084][ T4349]  legacy_get_tree+0xd4/0x16c
[   60.908180][ T4349]  vfs_get_tree+0x90/0x274
[   60.909239][ T4349]  do_new_mount+0x278/0x8fc
[   60.910229][ T4349]  path_mount+0x594/0x101c
[   60.911273][ T4349]  __arm64_sys_mount+0x510/0x5e0
[   60.912444][ T4349]  invoke_syscall+0x98/0x2b8
[   60.913480][ T4349]  el0_svc_common+0x138/0x258
[   60.914572][ T4349]  do_el0_svc+0x58/0x14c
[   60.915570][ T4349]  el0_svc+0x7c/0x1f0
[   60.916561][ T4349]  el0t_64_sync_handler+0x84/0xe4
[   60.917755][ T4349]  el0t_64_sync+0x1a0/0x1a4
[   60.918873][ T4349] 
[   60.919366][ T4349] The buggy address belongs to the page:
[   60.920609][ T4349] page:00000000009eeb0b refcount:2 mapcount:0 mapping:00000000047f6c04 index:0x213 pfn:0x121f0f
[   60.923007][ T4349] memcg:ffff0000cd8f0000
[   60.923942][ T4349] aops:def_blk_aops ino:700000
[   60.924993][ T4349] flags: 0x5ffc00000002032(referenced|lru|active|private|node=0|zone=2|lastcpupid=0x7ff)
[   60.927173][ T4349] raw: 05ffc00000002032 fffffc000387c388 ffff0000cd8fd030 ffff0000c058cf48
[   60.929275][ T4349] raw: 0000000000000213 ffff0000de8a63a0 00000002ffffffff ffff0000cd8f0000
[   60.931084][ T4349] page dumped because: kasan: bad access detected
[   60.932402][ T4349] 
[   60.933000][ T4349] Memory state around the buggy address:
[   60.934191][ T4349]  ffff0000e1f0fe80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.935685][ T4349]  ffff0000e1f0ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.937656][ T4349] >ffff0000e1f0ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.939463][ T4349]                                ^
[   60.940651][ T4349]  ffff0000e1f10000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.942601][ T4349]  ffff0000e1f10080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.944409][ T4349] ==================================================================
[   60.946204][ T4349] Disabling lock debugging due to kernel taint
[   60.949783][ T4349] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376
[   60.954186][ T4349] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   60.957243][ T4349] REISERFS (device loop0): Remounting filesystem read-only
[   60.958879][ T4349] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data
[   60.961873][ T4349] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[   60.965158][ T4349] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376
[   60.969797][ T4349] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   60.971943][ T4349] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error
[   61.074933][    T7] Bluetooth: hci0: command 0x0409 tx timeout
[   61.142768][ T4382] loop0: detected capacity change from 0 to 8192
[   61.146629][ T4382] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   61.148692][ T4382] REISERFS (device loop0): using ordered data mode
[   61.150282][ T4382] reiserfs: using flush barriers
[   61.152225][ T4382] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   61.157892][ T4382] REISERFS (device loop0): checking transaction log (loop0)
[   61.219287][ T4382] REISERFS (device loop0): Using r5 hash to sort names
[   61.220719][ T4382] REISERFS (device loop0): using 3.5.x disk format
[   61.226855][ T4392] Unable to handle kernel paging request at virtual address 0000000100000050
[   61.228866][ T4392] Mem abort info:
[   61.229804][ T4392]   ESR = 0x0000000096000004
[   61.230441][ T4382] Unable to handle kernel write to read-only memory at virtual address ffff0000dc104ff0
[   61.230774][ T4392]   EC = 0x25: DABT (current EL), IL = 32 bits
[   61.232897][ T4382] Mem abort info:
[   61.234241][ T4392]   SET = 0, FnV = 0
[   61.235034][    C0] Unable to handle kernel paging request at virtual address e3ff7c0003322cd6
[   61.235042][    C0] Mem abort info:
[   61.235045][    C0]   ESR = 0x0000000096000004
[   61.235049][    C0]   EC = 0x25: DABT (current EL), IL = 32 bits
[   61.235055][    C0]   SET = 0, FnV = 0
[   61.235059][    C0]   EA = 0, S1PTW = 0
[   61.235064][    C0]   FSC = 0x04: level 0 translation fault
[   61.235068][    C0] Data abort info:
[   61.235077][    C0]   ISV = 0, ISS = 0x00000004
[   61.235081][    C0]   CM = 0, WnR = 0
[   61.235080][    C1] Unable to handle kernel paging request at virtual address f0e78063600001d0
[   61.235086][    C0] [e3ff7c0003322cd6] address between user and kernel address ranges
[   61.235091][    C1] Mem abort info:
[   61.235094][    C1]   ESR = 0x0000000096000004
[   61.235098][    C0] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP
[   61.235099][    C1]   EC = 0x25: DABT (current EL), IL = 32 bits
[   61.235108][    C0] Modules linked in:
[   61.235112][    C1]   SET = 0, FnV = 0
[   61.235118][    C1]   EA = 0, S1PTW = 0
[   61.235116][    C0] CPU: 0 PID: 4392 Comm: dhcpcd-run-hook Tainted: G    B             5.15.167-syzkaller #0
[   61.235122][    C1]   FSC = 0x04: level 0 translation fault
[   61.235129][    C1] Data abort info:
[   61.235128][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   61.235131][    C1]   ISV = 0, ISS = 0x00000004
[   61.235136][    C1]   CM = 0, WnR = 0
[   61.235135][    C0] pstate: 004000c5 (nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   61.235141][    C1] [f0e78063600001d0] address between user and kernel address ranges
[   61.235148][    C0] pc : timerqueue_add+0xc0/0x220
[   61.235164][    C0] lr : timerqueue_add+0x11c/0x220
[   61.235178][    C0] sp : ffff800008007bc0
[   61.235182][    C0] x29: ffff800008007be0 x28: 0000000000000010 x27: dfff800000000000
[   61.235198][    C0] x26: 0000000000000000 x25: 1fffe0001991669a x24: dfff800000000000
[   61.235213][    C0] x23: 1fffe0001991669a x22: ffff80001fe87488 x21: 0000000e40667a80
[   61.235228][    C0] x20: 0000000000000000 x19: 1ffff00003fd0e91 x18: 0000000000010002
[   61.235242][    C0] x17: 0000000000010002 x16: ffff800011ac23e0 x15: 0000989680000000
[   61.235258][    C0] x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000001
[   61.235272][    C0] x11: 0000000000010002 x10: 0000000000010002 x9 : ffff0000c8b3d1c0
[   61.235286][    C0] x8 : 03fffc0003322cd6 x7 : 0000000000000000 x6 : ffff80000a9d8f98
[   61.235301][    C0] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff8000083059e0
[   61.235315][    C0] x2 : 0000000000000001 x1 : ffff80001b76b860 x0 : 1fffe000199166b2
[   61.235330][    C0] Call trace:
[   61.235334][    C0]  timerqueue_add+0xc0/0x220
[   61.235343][    C0]  enqueue_hrtimer+0x1a4/0x474
[   61.235353][    C0]  __hrtimer_run_queues+0x588/0xca4
[   61.235362][    C0]  hrtimer_interrupt+0x2c0/0xb64
[   61.235371][    C0]  arch_timer_handler_virt+0x74/0x88
[   61.235382][    C0]  handle_percpu_devid_irq+0x29c/0x7fc
[   61.235392][    C0]  handle_domain_irq+0xec/0x178
[   61.235401][    C0]  gic_handle_irq+0x78/0x1c8
[   61.235409][    C0]  call_on_irq_stack+0x24/0x4c
[   61.235417][    C0]  do_interrupt_handler+0x74/0x94
[   61.235426][    C0]  el1_interrupt+0x30/0x58
[   61.235436][    C0]  el1h_64_irq_handler+0x18/0x24
[   61.235444][    C0]  el1h_64_irq+0x78/0x7c
[   61.235451][    C0]  console_trylock_spinning+0x20c/0x288
[   61.235461][    C0]  vprintk_emit+0x124/0x21c
[   61.235470][    C0]  vprintk_default+0xa0/0xe4
[   61.235479][    C0]  vprintk+0x200/0x2d4
[   61.235486][    C0]  _printk+0xdc/0x128
[   61.235495][    C0]  mem_abort_decode+0x8c/0x1ac
[   61.235505][    C0]  __do_kernel_fault+0x3b0/0x448
[   61.235514][    C0]  do_page_fault+0x140/0xb60
[   61.235523][    C0]  do_translation_fault+0xe8/0x138
[   61.235532][    C0]  do_mem_abort+0x70/0x1d8
[   61.235541][    C0]  el1_abort+0x3c/0x5c
[   61.235548][    C0]  el1h_64_sync_handler+0x60/0xac
[   61.235557][    C0]  el1h_64_sync+0x78/0x7c
[   61.235564][    C0]  locks_remove_posix+0xe0/0x730
[   61.235575][    C0]  filp_close+0xfc/0x160
[   61.235584][    C0]  put_files_struct+0x198/0x334
[   61.235593][    C0]  exit_files+0x7c/0x9c
[   61.235602][    C0]  do_exit+0x624/0x20bc
[   61.235610][    C0]  do_group_exit+0x110/0x268
[   61.235619][    C0]  get_signal+0x634/0x1550
[   61.235628][    C0]  do_notify_resume+0x3d0/0x32b8
[   61.235637][    C0]  el0_svc+0xfc/0x1f0
[   61.235645][    C0]  el0t_64_sync_handler+0x84/0xe4
[   61.235654][    C0]  el0t_64_sync+0x1a0/0x1a4
[   61.235667][    C0] Code: 5280021c f2fbfffb 910062e0 d343fc08 (38786908) 
[   61.235674][    C0] ---[ end trace 0238f77af6bba49b ]---
[   61.592570][    C0] Kernel panic - not syncing: Oops: Fatal exception in interrupt
[   61.592581][    C0] SMP: stopping secondary CPUs
[   62.678665][    C0] SMP: failed to stop secondary CPUs 0-1
[   62.678690][    C0] Kernel Offset: disabled
[   62.678693][    C0] CPU features: 0x8,000081c1,21302e40
[   62.678700][    C0] Memory Limit: none
[   63.108273][    C0] Rebooting in 86400 seconds..