Warning: Permanently added '10.128.0.40' (ED25519) to the list of known hosts.
2024/12/15 09:00:43 ignoring optional flag "sandboxArg"="0"
2024/12/15 09:00:43 ignoring optional flag "type"="gce"
[   81.562235][ T1108] cfg80211: failed to load regulatory.db
2024/12/15 09:00:44 parsed 1 programs
2024/12/15 09:00:46 executed programs: 0
[   84.132783][ T4451] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   84.287846][ T4473] chnl_net:caif_netlink_parms(): no params data found
[   84.332902][ T4473] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.340116][ T4473] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.348221][ T4473] device bridge_slave_0 entered promiscuous mode
[   84.356643][ T4473] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.363741][ T4473] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.371762][ T4473] device bridge_slave_1 entered promiscuous mode
[   84.393187][ T4473] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.404899][ T4473] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.429131][ T4473] team0: Port device team_slave_0 added
[   84.437351][ T4473] team0: Port device team_slave_1 added
[   84.456780][ T4473] batman_adv: batadv0: Adding interface: batadv_slave_0
[   84.463834][ T4473] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.489880][ T4473] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   84.502689][ T4473] batman_adv: batadv0: Adding interface: batadv_slave_1
[   84.509720][ T4473] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   84.535750][ T4473] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   84.569863][ T4473] device hsr_slave_0 entered promiscuous mode
[   84.576958][ T4473] device hsr_slave_1 entered promiscuous mode
[   85.071985][ T4473] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.084569][ T4473] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.096694][ T4473] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.108383][ T4473] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.132788][ T4473] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.139939][ T4473] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.147367][ T4473] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.154473][ T4473] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.217290][ T4473] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.232056][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   85.245028][  T492] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.252870][  T492] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.263546][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   85.279333][ T4473] 8021q: adding VLAN 0 to HW filter on device team0
[   85.293192][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   85.303038][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   85.314641][  T492] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.321727][  T492] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.346118][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   85.358266][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   85.367058][  T492] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.374231][  T492] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.385615][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   85.396761][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   85.405849][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   85.417697][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   85.438462][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   85.447216][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   85.458426][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   85.469437][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   85.480434][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   85.489670][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   85.499987][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   85.512130][ T4473] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   85.627687][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   85.636045][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   85.650814][ T4473] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.687049][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   85.698379][  T492] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   85.721126][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   85.729944][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   85.739982][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   85.749175][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   85.761605][ T4473] device veth0_vlan entered promiscuous mode
[   85.775469][ T4473] device veth1_vlan entered promiscuous mode
[   85.801171][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   85.812013][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   85.821322][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   85.831682][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   85.842675][ T4473] device veth0_macvtap entered promiscuous mode
[   85.854205][ T4473] device veth1_macvtap entered promiscuous mode
[   85.873244][ T4473] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.881430][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   85.891930][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   85.900732][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.910864][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.924047][ T4473] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.933518][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   85.943651][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   85.958186][ T4473] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.967760][ T4473] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.976934][ T4473] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.987157][ T4473] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.070642][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.092154][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.108366][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   86.121189][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.131796][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.143013][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   86.213210][ T4561] loop0: detected capacity change from 0 to 2048
[   86.275861][ T1108] Bluetooth: hci0: command 0x0409 tx timeout
[   86.316728][ T4561] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   86.562817][ T4473] UDF-fs: error (device loop0): udf_read_inode: (ino 1440) failed !bh
[   86.572694][ T4473] UDF-fs: error (device loop0): udf_read_inode: (ino 1440) failed !bh
[   89.130960][ T4473] ==================================================================
[   89.139295][ T4473] BUG: KASAN: use-after-free in crc_itu_t+0x218/0x2a0
[   89.146111][ T4473] Read of size 1 at addr ffff88806e5e3000 by task syz-executor.0/4473
[   89.154270][ T4473] 
[   89.156610][ T4473] CPU: 1 PID: 4473 Comm: syz-executor.0 Not tainted 5.15.174-syzkaller #0
[   89.165120][ T4473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   89.175277][ T4473] Call Trace:
[   89.179092][ T4473]  <TASK>
[   89.182061][ T4473]  dump_stack_lvl+0x1e3/0x2d0
[   89.186758][ T4473]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   89.192394][ T4473]  ? _printk+0xd1/0x120
[   89.196567][ T4473]  ? __wake_up_klogd+0xcc/0x100
[   89.201554][ T4473]  ? panic+0x860/0x860
[   89.205700][ T4473]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   89.211262][ T4473]  print_address_description+0x63/0x3b0
[   89.216827][ T4473]  ? crc_itu_t+0x218/0x2a0
[   89.221252][ T4473]  kasan_report+0x16b/0x1c0
[   89.225757][ T4473]  ? crc_itu_t+0x218/0x2a0
[   89.230176][ T4473]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   89.236428][ T4473]  crc_itu_t+0x218/0x2a0
[   89.240680][ T4473]  udf_sync_fs+0x1ce/0x380
[   89.245158][ T4473]  ? udf_put_super+0x160/0x160
[   89.249927][ T4473]  ? get_nr_dirty_inodes+0x25f/0x2e0
[   89.255217][ T4473]  sync_filesystem+0xe8/0x220
[   89.259900][ T4473]  generic_shutdown_super+0x6b/0x310
[   89.265187][ T4473]  kill_block_super+0x7a/0xe0
[   89.269885][ T4473]  deactivate_locked_super+0xa0/0x110
[   89.275259][ T4473]  cleanup_mnt+0x44e/0x500
[   89.279677][ T4473]  ? lockdep_hardirqs_on+0x94/0x130
[   89.284877][ T4473]  task_work_run+0x129/0x1a0
[   89.289652][ T4473]  do_exit+0x6a3/0x2480
[   89.293815][ T4473]  ? put_task_struct+0x80/0x80
[   89.298579][ T4473]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   89.304564][ T4473]  ? vtime_user_exit+0x2d1/0x400
[   89.309544][ T4473]  do_group_exit+0x144/0x310
[   89.314140][ T4473]  __x64_sys_exit_group+0x3b/0x40
[   89.319165][ T4473]  do_syscall_64+0x3b/0xb0
[   89.323581][ T4473]  ? clear_bhb_loop+0x15/0x70
[   89.328264][ T4473]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   89.334271][ T4473] RIP: 0033:0x7fa9411c5ea9
[   89.338690][ T4473] Code: Unable to access opcode bytes at RIP 0x7fa9411c5e7f.
[   89.346046][ T4473] RSP: 002b:00007ffd2a70a048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   89.354474][ T4473] RAX: ffffffffffffffda RBX: 00007fa9412113de RCX: 00007fa9411c5ea9
[   89.362442][ T4473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.370410][ T4473] RBP: 0000000000000005 R08: 00007ffd2a707de7 R09: 00007ffd2a70b300
[   89.378378][ T4473] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd2a70b300
[   89.386348][ T4473] R13: 00007fa9412113b9 R14: 0000000000015083 R15: 0000000000000006
[   89.394330][ T4473]  </TASK>
[   89.397354][ T4473] 
[   89.399668][ T4473] The buggy address belongs to the page:
[   89.405300][ T4473] page:ffffea0001b978c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6e5e3
[   89.415455][ T4473] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.422571][ T4473] raw: 00fff00000000000 ffffea0001b96888 ffffea0001b97708 0000000000000000
[   89.431150][ T4473] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   89.439724][ T4473] page dumped because: kasan: bad access detected
[   89.446135][ T4473] page_owner tracks the page as freed
[   89.451495][ T4473] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 4569, ts 86350881473, free_ts 86377053229
[   89.466169][ T4473]  get_page_from_freelist+0x3b78/0x3d40
[   89.471717][ T4473]  __alloc_pages+0x272/0x700
[   89.476303][ T4473]  alloc_pages_vma+0x39a/0x800
[   89.481502][ T4473]  handle_mm_fault+0x2597/0x5960
[   89.486459][ T4473]  exc_page_fault+0x271/0x700
[   89.491135][ T4473]  asm_exc_page_fault+0x22/0x30
[   89.495987][ T4473]  clear_user+0xe0/0x150
[   89.500246][ T4473]  load_elf_interp+0xcdf/0xe20
[   89.505011][ T4473]  load_elf_binary+0x1b7a/0x2750
[   89.509943][ T4473]  bprm_execve+0x8fd/0x17c0
[   89.514444][ T4473]  do_execveat_common+0x583/0x720
[   89.519466][ T4473]  __x64_sys_execve+0x8e/0xa0
[   89.524154][ T4473]  do_syscall_64+0x3b/0xb0
[   89.528566][ T4473]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   89.534459][ T4473] page last free stack trace:
[   89.539124][ T4473]  free_unref_page_prepare+0xc34/0xcf0
[   89.544753][ T4473]  free_unref_page_list+0x1f7/0x8e0
[   89.549998][ T4473]  release_pages+0x1bb9/0x1f40
[   89.554777][ T4473]  tlb_finish_mmu+0x177/0x320
[   89.559459][ T4473]  exit_mmap+0x3cd/0x620
[   89.563789][ T4473]  __mmput+0x112/0x3b0
[   89.567865][ T4473]  exit_mm+0x688/0x7f0
[   89.572140][ T4473]  do_exit+0x626/0x2480
[   89.576299][ T4473]  do_group_exit+0x144/0x310
[   89.580889][ T4473]  __x64_sys_exit_group+0x3b/0x40
[   89.585934][ T4473]  do_syscall_64+0x3b/0xb0
[   89.590350][ T4473]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   89.596244][ T4473] 
[   89.598585][ T4473] Memory state around the buggy address:
[   89.604206][ T4473]  ffff88806e5e2f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   89.612275][ T4473]  ffff88806e5e2f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   89.620432][ T4473] >ffff88806e5e3000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   89.628495][ T4473]                    ^
[   89.632558][ T4473]  ffff88806e5e3080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   89.640618][ T4473]  ffff88806e5e3100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   89.648686][ T4473] ==================================================================
[   89.656750][ T4473] Disabling lock debugging due to kernel taint
[   89.668810][ T4473] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   89.676026][ T4473] CPU: 0 PID: 4473 Comm: syz-executor.0 Tainted: G    B             5.15.174-syzkaller #0
[   89.685920][ T4473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   89.695974][ T4473] Call Trace:
[   89.699247][ T4473]  <TASK>
[   89.702519][ T4473]  dump_stack_lvl+0x1e3/0x2d0
[   89.707287][ T4473]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   89.712913][ T4473]  ? panic+0x860/0x860
[   89.717064][ T4473]  ? preempt_schedule_common+0xa6/0xd0
[   89.722521][ T4473]  ? preempt_schedule+0xd9/0xe0
[   89.727519][ T4473]  panic+0x318/0x860
[   89.731437][ T4473]  ? check_panic_on_warn+0x1d/0xa0
[   89.736569][ T4473]  ? fb_is_primary_device+0xd0/0xd0
[   89.741771][ T4473]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   89.747839][ T4473]  ? _raw_spin_unlock+0x40/0x40
[   89.752689][ T4473]  ? print_memory_metadata+0xe2/0x140
[   89.758063][ T4473]  check_panic_on_warn+0x7e/0xa0
[   89.763000][ T4473]  ? crc_itu_t+0x218/0x2a0
[   89.767514][ T4473]  end_report+0x6d/0xf0
[   89.771666][ T4473]  kasan_report+0x18e/0x1c0
[   89.776164][ T4473]  ? crc_itu_t+0x218/0x2a0
[   89.780598][ T4473]  ? pvclock_gtod_unregister_notifier+0x50/0x50
[   89.786855][ T4473]  crc_itu_t+0x218/0x2a0
[   89.791111][ T4473]  udf_sync_fs+0x1ce/0x380
[   89.795531][ T4473]  ? udf_put_super+0x160/0x160
[   89.800468][ T4473]  ? get_nr_dirty_inodes+0x25f/0x2e0
[   89.805748][ T4473]  sync_filesystem+0xe8/0x220
[   89.810602][ T4473]  generic_shutdown_super+0x6b/0x310
[   89.816111][ T4473]  kill_block_super+0x7a/0xe0
[   89.820811][ T4473]  deactivate_locked_super+0xa0/0x110
[   89.826385][ T4473]  cleanup_mnt+0x44e/0x500
[   89.830811][ T4473]  ? lockdep_hardirqs_on+0x94/0x130
[   89.836101][ T4473]  task_work_run+0x129/0x1a0
[   89.840698][ T4473]  do_exit+0x6a3/0x2480
[   89.844856][ T4473]  ? put_task_struct+0x80/0x80
[   89.849625][ T4473]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[   89.855604][ T4473]  ? vtime_user_exit+0x2d1/0x400
[   89.860567][ T4473]  do_group_exit+0x144/0x310
[   89.865162][ T4473]  __x64_sys_exit_group+0x3b/0x40
[   89.870182][ T4473]  do_syscall_64+0x3b/0xb0
[   89.874591][ T4473]  ? clear_bhb_loop+0x15/0x70
[   89.879370][ T4473]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   89.885377][ T4473] RIP: 0033:0x7fa9411c5ea9
[   89.889788][ T4473] Code: Unable to access opcode bytes at RIP 0x7fa9411c5e7f.
[   89.897316][ T4473] RSP: 002b:00007ffd2a70a048 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   89.905722][ T4473] RAX: ffffffffffffffda RBX: 00007fa9412113de RCX: 00007fa9411c5ea9
[   89.913688][ T4473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   89.921926][ T4473] RBP: 0000000000000005 R08: 00007ffd2a707de7 R09: 00007ffd2a70b300
[   89.930167][ T4473] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd2a70b300
[   89.938141][ T4473] R13: 00007fa9412113b9 R14: 0000000000015083 R15: 0000000000000006
[   89.946116][ T4473]  </TASK>
[   89.949405][ T4473] Kernel Offset: disabled
[   89.953753][ T4473] Rebooting in 86400 seconds..