Warning: Permanently added '10.128.10.63' (ED25519) to the list of known hosts. 2025/06/06 15:27:39 ignoring optional flag "sandboxArg"="0" 2025/06/06 15:27:40 parsed 1 programs [ 419.356226][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 419.364452][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 480.801863][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 480.809552][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 493.117674][ T6276] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 498.443739][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 498.455251][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 498.466137][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 498.484766][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 498.497569][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 499.418650][ T6319] chnl_net:caif_netlink_parms(): no params data found [ 499.799795][ T6319] bridge0: port 1(bridge_slave_0) entered blocking state [ 499.818382][ T6319] bridge0: port 1(bridge_slave_0) entered disabled state [ 499.830311][ T6319] bridge_slave_0: entered allmulticast mode [ 499.843676][ T6319] bridge_slave_0: entered promiscuous mode [ 499.863289][ T6319] bridge0: port 2(bridge_slave_1) entered blocking state [ 499.873482][ T6319] bridge0: port 2(bridge_slave_1) entered disabled state [ 499.886236][ T6319] bridge_slave_1: entered allmulticast mode [ 499.897284][ T6319] bridge_slave_1: entered promiscuous mode [ 499.985986][ T6319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 500.012463][ T6319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 500.123571][ T6319] team0: Port device team_slave_0 added [ 500.141655][ T6319] team0: Port device team_slave_1 added [ 500.225365][ T6319] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 500.233702][ T6319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 500.266614][ T6319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 500.285200][ T6319] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 500.294825][ T6319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 500.329106][ T6319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 500.456789][ T6319] hsr_slave_0: entered promiscuous mode [ 500.469314][ T6319] hsr_slave_1: entered promiscuous mode [ 501.643370][ T6319] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 501.684449][ T6319] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 501.740287][ T6319] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 501.783538][ T6319] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 502.221180][ T6319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 502.293749][ T6319] 8021q: adding VLAN 0 to HW filter on device team0 [ 502.327834][ T4880] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.337359][ T4880] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.380001][ T4880] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.388545][ T4880] bridge0: port 2(bridge_slave_1) entered forwarding state [ 503.205665][ T6319] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 503.412884][ T6319] veth0_vlan: entered promiscuous mode [ 503.461411][ T6319] veth1_vlan: entered promiscuous mode [ 503.616582][ T6319] veth0_macvtap: entered promiscuous mode [ 503.645667][ T6319] veth1_macvtap: entered promiscuous mode [ 503.737695][ T6319] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 503.800687][ T6319] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 503.841126][ T6319] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.851762][ T6319] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.862109][ T6319] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 503.872394][ T6319] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 506.748812][ T4456] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 506.904383][ T4456] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 507.025295][ T4456] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 507.159181][ T4456] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 507.405596][ T4456] bridge_slave_1: left allmulticast mode [ 507.412470][ T4456] bridge_slave_1: left promiscuous mode [ 507.422281][ T4456] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.569338][ T4456] bridge_slave_0: left allmulticast mode [ 507.575520][ T4456] bridge_slave_0: left promiscuous mode [ 507.589129][ T4456] bridge0: port 1(bridge_slave_0) entered disabled state [ 508.148407][ T4456] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 508.171876][ T4456] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 508.197207][ T4456] bond0 (unregistering): Released all slaves [ 508.572320][ T4456] hsr_slave_0: left promiscuous mode [ 508.606626][ T4456] hsr_slave_1: left promiscuous mode [ 508.619496][ T4456] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 508.628863][ T4456] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 508.659855][ T4456] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 508.668054][ T4456] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 508.699309][ T4456] veth1_macvtap: left promiscuous mode [ 508.705805][ T4456] veth0_macvtap: left promiscuous mode [ 508.714374][ T4456] veth1_vlan: left promiscuous mode [ 508.721297][ T4456] veth0_vlan: left promiscuous mode [ 509.591478][ T4456] team0 (unregistering): Port device team_slave_1 removed [ 509.656076][ T4456] team0 (unregistering): Port device team_slave_0 removed [ 512.691976][ T751] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 512.701078][ T751] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 512.829062][ T751] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 512.838871][ T751] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/06 15:29:22 executed programs: 0 [ 517.538251][ T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 517.551555][ T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 517.564979][ T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 517.645955][ T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 517.683693][ T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 518.592082][ T6524] chnl_net:caif_netlink_parms(): no params data found [ 519.144880][ T6524] bridge0: port 1(bridge_slave_0) entered blocking state [ 519.154124][ T6524] bridge0: port 1(bridge_slave_0) entered disabled state [ 519.163572][ T6524] bridge_slave_0: entered allmulticast mode [ 519.174159][ T6524] bridge_slave_0: entered promiscuous mode [ 519.191256][ T6524] bridge0: port 2(bridge_slave_1) entered blocking state [ 519.200952][ T6524] bridge0: port 2(bridge_slave_1) entered disabled state [ 519.210192][ T6524] bridge_slave_1: entered allmulticast mode [ 519.220963][ T6524] bridge_slave_1: entered promiscuous mode [ 519.335956][ T6524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 519.360755][ T6524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 519.479830][ T6524] team0: Port device team_slave_0 added [ 519.502279][ T6524] team0: Port device team_slave_1 added [ 519.605759][ T6524] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 519.615654][ T6524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 519.647320][ T6524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 519.672894][ T6524] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 519.683610][ T6524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 519.713809][ T6524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 519.819288][ T5099] Bluetooth: hci0: command tx timeout [ 519.870859][ T6524] hsr_slave_0: entered promiscuous mode [ 519.882640][ T6524] hsr_slave_1: entered promiscuous mode [ 520.781783][ T6524] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 520.807389][ T6524] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 520.832769][ T6524] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 520.862265][ T6524] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 521.282996][ T6524] 8021q: adding VLAN 0 to HW filter on device bond0 [ 521.359213][ T6524] 8021q: adding VLAN 0 to HW filter on device team0 [ 521.392589][ T4456] bridge0: port 1(bridge_slave_0) entered blocking state [ 521.401599][ T4456] bridge0: port 1(bridge_slave_0) entered forwarding state [ 521.445256][ T4456] bridge0: port 2(bridge_slave_1) entered blocking state [ 521.453605][ T4456] bridge0: port 2(bridge_slave_1) entered forwarding state [ 521.899039][ T5099] Bluetooth: hci0: command tx timeout [ 522.302261][ T6524] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 522.512968][ T6524] veth0_vlan: entered promiscuous mode [ 522.580436][ T6524] veth1_vlan: entered promiscuous mode [ 522.762495][ T6524] veth0_macvtap: entered promiscuous mode [ 522.813588][ T6524] veth1_macvtap: entered promiscuous mode [ 522.901697][ T6524] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 522.970568][ T6524] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 523.013811][ T6524] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 523.027315][ T6524] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 523.037401][ T6524] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 523.047543][ T6524] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 523.989011][ T5099] Bluetooth: hci0: command tx timeout [ 525.618556][ T4081] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 525.627651][ T4081] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 525.732707][ T6434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 525.742048][ T6434] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/06/06 15:29:31 executed programs: 2 [ 525.969147][ T6635] ===================================================== [ 525.977290][ T6635] BUG: KMSAN: use-after-free in bpf_prog_run_generic_xdp+0x1a74/0x1ff0 [ 525.986481][ T6635] bpf_prog_run_generic_xdp+0x1a74/0x1ff0 [ 525.993014][ T6635] do_xdp_generic+0xd52/0x1690 [ 525.998554][ T6635] tun_get_user+0x447a/0x6b40 [ 526.003939][ T6635] tun_chr_write_iter+0x3e9/0x5c0 [ 526.009614][ T6635] vfs_write+0xb4b/0x1580 [ 526.014667][ T6635] __x64_sys_write+0x1fb/0x4d0 [ 526.020324][ T6635] x64_sys_call+0x38c3/0x3db0 [ 526.025743][ T6635] do_syscall_64+0xd9/0x210 [ 526.031424][ T6635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.038370][ T6635] [ 526.041027][ T6635] Uninit was created at: [ 526.045839][ T6635] kfree+0x252/0xec0 [ 526.050349][ T6635] tomoyo_realpath_from_path+0x952/0x9f0 [ 526.056753][ T6635] tomoyo_path_number_perm+0x1d0/0x7d0 [ 526.063397][ T6635] tomoyo_file_ioctl+0x3d/0x50 [ 526.069049][ T6635] security_file_ioctl+0x141/0x590 [ 526.074562][ T6635] __se_sys_ioctl+0xbb/0x400 [ 526.078099][ T5099] Bluetooth: hci0: command tx timeout [ 526.079810][ T6635] __x64_sys_ioctl+0x97/0xe0 [ 526.091221][ T6635] x64_sys_call+0x1ebe/0x3db0 [ 526.097698][ T6635] do_syscall_64+0xd9/0x210 [ 526.103423][ T6635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.109970][ T6635] [ 526.112586][ T6635] CPU: 0 UID: 0 PID: 6635 Comm: syz.0.15 Not tainted 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(undef) [ 526.125917][ T6635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 526.137142][ T6635] ===================================================== [ 526.144615][ T6635] Disabling lock debugging due to kernel taint [ 526.151588][ T6635] Kernel panic - not syncing: kmsan.panic set ... [ 526.159461][ T6635] CPU: 0 UID: 0 PID: 6635 Comm: syz.0.15 Tainted: G B 6.15.0-syzkaller-12426-ge271ed52b344 #0 PREEMPT(undef) [ 526.174210][ T6635] Tainted: [B]=BAD_PAGE [ 526.178744][ T6635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 526.189882][ T6635] Call Trace: [ 526.193849][ T6635] [ 526.197164][ T6635] __dump_stack+0x26/0x30 [ 526.202113][ T6635] dump_stack_lvl+0x53/0x270 [ 526.207465][ T6635] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 526.213995][ T6635] dump_stack+0x1e/0x25 [ 526.218938][ T6635] panic+0x4bd/0xd50 [ 526.223455][ T6635] kmsan_report+0x31c/0x320 [ 526.228629][ T6635] ? __msan_warning+0x1b/0x30 [ 526.234292][ T6635] ? bpf_prog_run_generic_xdp+0x1a74/0x1ff0 [ 526.240825][ T6635] ? do_xdp_generic+0xd52/0x1690 [ 526.246225][ T6635] ? tun_get_user+0x447a/0x6b40 [ 526.251853][ T6635] ? tun_chr_write_iter+0x3e9/0x5c0 [ 526.257600][ T6635] ? vfs_write+0xb4b/0x1580 [ 526.262938][ T6635] ? __x64_sys_write+0x1fb/0x4d0 [ 526.268872][ T6635] ? x64_sys_call+0x38c3/0x3db0 [ 526.274380][ T6635] ? do_syscall_64+0xd9/0x210 [ 526.279512][ T6635] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.286629][ T6635] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 526.293256][ T6635] ? ___bpf_prog_run+0xea65/0xeba0 [ 526.298972][ T6635] ? __bpf_prog_run32+0xc2/0xf0 [ 526.304670][ T6635] ? kmsan_get_metadata+0xfb/0x160 [ 526.310726][ T6635] __msan_warning+0x1b/0x30 [ 526.315706][ T6635] bpf_prog_run_generic_xdp+0x1a74/0x1ff0 [ 526.322867][ T6635] do_xdp_generic+0xd52/0x1690 [ 526.328285][ T6635] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 526.335962][ T6635] ? tun_get_user+0x43f5/0x6b40 [ 526.342072][ T6635] tun_get_user+0x447a/0x6b40 [ 526.347558][ T6635] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 526.354200][ T6635] ? stack_depot_save_flags+0x60f/0x7b0 [ 526.360389][ T6635] ? kmsan_get_metadata+0xfb/0x160 [ 526.366630][ T6635] ? kmsan_get_metadata+0xfb/0x160 [ 526.372629][ T6635] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 526.381440][ T6635] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 526.388313][ T6635] tun_chr_write_iter+0x3e9/0x5c0 [ 526.395031][ T6635] vfs_write+0xb4b/0x1580 [ 526.401594][ T6635] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 526.408525][ T6635] __x64_sys_write+0x1fb/0x4d0 [ 526.414393][ T6635] x64_sys_call+0x38c3/0x3db0 [ 526.420577][ T6635] do_syscall_64+0xd9/0x210 [ 526.426596][ T6635] ? irqentry_exit+0x16/0x60 [ 526.432338][ T6635] ? clear_bhb_loop+0x40/0x90 [ 526.437923][ T6635] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 526.445267][ T6635] RIP: 0033:0x7f54c697d1ff [ 526.450420][ T6635] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48 [ 526.492914][ T6635] RSP: 002b:00007f54c778f000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 526.504541][ T6635] RAX: ffffffffffffffda RBX: 00007f54c6b35f80 RCX: 00007f54c697d1ff [ 526.513966][ T6635] RDX: 000000000000fdef RSI: 0000000020000280 RDI: 00000000000000c8 [ 526.524008][ T6635] RBP: 00007f54c69f139e R08: 0000000000000000 R09: 0000000000000000 [ 526.536661][ T6635] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000 [ 526.546270][ T6635] R13: 0000000000000000 R14: 00007f54c6b35f80 R15: 00007ffd6c669798 [ 526.556310][ T6635] [ 526.560365][ T6635] Kernel Offset: disabled [ 526.564972][ T6635] Rebooting in 86400 seconds..