Warning: Permanently added '10.128.1.255' (ED25519) to the list of known hosts.
2025/07/07 15:31:45 ignoring optional flag "sandboxArg"="0"
2025/07/07 15:31:46 parsed 1 programs
syzkaller login: [   80.133392][ T5791] cgroup: Unknown subsys name 'net'
[   80.269325][ T5791] cgroup: Unknown subsys name 'rlimit'
[   82.063897][ T5791] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.732320][ T5819] chnl_net:caif_netlink_parms(): no params data found
[   84.815888][ T5819] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.823796][ T5819] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.831054][ T5819] bridge_slave_0: entered allmulticast mode
[   84.838064][ T5819] bridge_slave_0: entered promiscuous mode
[   84.847546][ T5819] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.854807][ T5819] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.862729][ T5819] bridge_slave_1: entered allmulticast mode
[   84.869646][ T5819] bridge_slave_1: entered promiscuous mode
[   84.904979][ T5819] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.917702][ T5819] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.949329][ T5819] team0: Port device team_slave_0 added
[   84.959611][ T5819] team0: Port device team_slave_1 added
[   84.993659][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.000635][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.026639][ T5819] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.041452][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.048431][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.074781][ T5819] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.124765][ T5819] hsr_slave_0: entered promiscuous mode
[   85.131957][ T5819] hsr_slave_1: entered promiscuous mode
[   85.297743][ T5819] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.317421][ T5819] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.328054][ T5819] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.338932][ T5819] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.383304][ T5819] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.390535][ T5819] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.398514][ T5819] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.405682][ T5819] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.474584][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.504095][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.513336][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.532854][ T5819] 8021q: adding VLAN 0 to HW filter on device team0
[   85.551525][   T76] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.558667][   T76] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.574954][   T76] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.582137][   T76] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.812687][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.863721][ T5819] veth0_vlan: entered promiscuous mode
[   85.876251][ T5819] veth1_vlan: entered promiscuous mode
[   85.919142][ T5819] veth0_macvtap: entered promiscuous mode
[   85.929415][ T5819] veth1_macvtap: entered promiscuous mode
[   85.948389][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.962416][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.975566][ T5819] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.984894][ T5819] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.993950][ T5819] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.003514][ T5819] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.115938][ T5819] syz-executor (5819) used greatest stack depth: 20584 bytes left
[   86.148159][ T1003] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.391364][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.399372][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.434360][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.443426][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.845076][   T55] cfg80211: failed to load regulatory.db
[   88.287630][ T5883] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.296527][ T5883] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.304453][ T5883] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.313096][ T5883] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.321061][ T5883] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   88.328468][ T5883] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   88.721726][ T1003] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/07 15:31:57 executed programs: 0
[   89.039113][ T5103] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.047310][ T5103] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.055097][ T5103] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.063477][ T5103] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.072740][ T5103] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   89.080080][ T5103] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.238500][ T5898] chnl_net:caif_netlink_parms(): no params data found
[   89.307391][ T5898] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.314817][ T5898] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.322342][ T5898] bridge_slave_0: entered allmulticast mode
[   89.329305][ T5898] bridge_slave_0: entered promiscuous mode
[   89.337946][ T5898] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.345322][ T5898] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.353517][ T5898] bridge_slave_1: entered allmulticast mode
[   89.360401][ T5898] bridge_slave_1: entered promiscuous mode
[   89.390382][ T5898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.402821][ T5898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.436652][ T5898] team0: Port device team_slave_0 added
[   89.445117][ T5898] team0: Port device team_slave_1 added
[   89.477223][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.484251][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.510337][ T5898] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.522649][ T5898] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.529596][ T5898] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.555872][ T5898] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.603001][ T5898] hsr_slave_0: entered promiscuous mode
[   89.609940][ T5898] hsr_slave_1: entered promiscuous mode
[   89.616532][ T5898] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.624687][ T5898] Cannot create hsr debugfs directory
[   91.151648][ T5103] Bluetooth: hci0: command tx timeout
[   91.312340][ T1003] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.374976][ T1003] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.379408][ T1003] hsr_slave_0: left promiscuous mode
[   92.399052][ T1003] hsr_slave_1: left promiscuous mode
[   92.414013][ T1003] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.430849][ T1003] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.449659][ T1003] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.459710][ T1003] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.468533][ T1003] bridge_slave_1: left allmulticast mode
[   92.477356][ T1003] bridge_slave_1: left promiscuous mode
[   92.484669][ T1003] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.499321][ T1003] bridge_slave_0: left allmulticast mode
[   92.506611][ T1003] bridge_slave_0: left promiscuous mode
[   92.515015][ T1003] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.547403][ T1003] veth1_macvtap: left promiscuous mode
[   92.557153][ T1003] veth0_macvtap: left promiscuous mode
[   92.563617][ T1003] veth1_vlan: left promiscuous mode
[   92.569219][ T1003] veth0_vlan: left promiscuous mode
[   92.986849][ T1003] team0 (unregistering): Port device team_slave_1 removed
[   93.017672][ T1003] team0 (unregistering): Port device team_slave_0 removed
[   93.047483][ T1003] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   93.083693][ T1003] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   93.239158][ T5103] Bluetooth: hci0: command tx timeout
[   93.374336][ T1003] bond0 (unregistering): Released all slaves
[   93.475846][ T5898] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.488302][ T5898] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.499362][ T5898] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.511509][ T5898] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.618289][ T5898] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.648696][ T5898] 8021q: adding VLAN 0 to HW filter on device team0
[   93.660524][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.667665][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.684013][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.691255][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.741769][ T5898] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   93.969689][ T5898] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.053660][ T5898] veth0_vlan: entered promiscuous mode
[   94.073394][ T5898] veth1_vlan: entered promiscuous mode
[   94.118543][ T5898] veth0_macvtap: entered promiscuous mode
[   94.130424][ T5898] veth1_macvtap: entered promiscuous mode
[   94.149021][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.164867][ T5898] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.176739][ T5898] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.186891][ T5898] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.195802][ T5898] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.204806][ T5898] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.269407][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.281956][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.308363][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.316454][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.417450][ T5944] comedi comedi3: pcl818: I/O port conflict (0xfffffffffffffffb,16)
[   94.430721][ T5944] general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN
[   94.442508][ T5944] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[   94.450972][ T5944] CPU: 0 PID: 5944 Comm: syz.0.16 Not tainted 6.6.96-syzkaller #0
[   94.458798][ T5944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   94.468853][ T5944] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[   94.474421][ T5944] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 c9 26 e1 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 a8 26 e1 f9 4d 8b 24 24 48 83 c3
[   94.494121][ T5944] RSP: 0018:ffffc90003297a10 EFLAGS: 00010206
[   94.500194][ T5944] RAX: 0000000000000005 RBX: ffff8880249b0d80 RCX: ffff888026653c00
[   94.508170][ T5944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88814c982800
[   94.516147][ T5944] RBP: 0000000000000001 R08: ffff88814c98292f R09: 1ffff11029930525
[   94.524119][ T5944] R10: dffffc0000000000 R11: ffffed1029930526 R12: 0000000000000028
[   94.532104][ T5944] R13: dffffc0000000000 R14: ffff88814c982800 R15: dffffc0000000000
[   94.540109][ T5944] FS:  0000555563aa4500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[   94.549039][ T5944] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   94.555631][ T5944] CR2: 0000001b2c55ffff CR3: 0000000074686000 CR4: 00000000003506f0
[   94.563616][ T5944] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   94.571602][ T5944] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   94.579567][ T5944] Call Trace:
[   94.582844][ T5944]  <TASK>
[   94.585786][ T5944]  pcl818_detach+0x66/0xd0
[   94.590232][ T5944]  comedi_device_detach+0x131/0x6f0
[   94.595437][ T5944]  comedi_device_attach+0x561/0x660
[   94.600647][ T5944]  comedi_unlocked_ioctl+0x68d/0xf00
[   94.605955][ T5944]  ? tomoyo_path_number_perm+0x477/0x590
[   94.611613][ T5944]  ? comedi_poll+0x8c0/0x8c0
[   94.616218][ T5944]  ? handle_mm_fault+0xd1/0x4920
[   94.621187][ T5944]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   94.627184][ T5944]  ? bpf_lsm_file_ioctl+0x9/0x10
[   94.632154][ T5944]  ? security_file_ioctl+0x80/0xa0
[   94.637284][ T5944]  ? comedi_poll+0x8c0/0x8c0
[   94.641877][ T5944]  __se_sys_ioctl+0xfd/0x170
[   94.646560][ T5944]  do_syscall_64+0x55/0xb0
[   94.650989][ T5944]  ? clear_bhb_loop+0x40/0x90
[   94.655674][ T5944]  ? clear_bhb_loop+0x40/0x90
[   94.660360][ T5944]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   94.666272][ T5944] RIP: 0033:0x7f97f798e929
[   94.670698][ T5944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.690329][ T5944] RSP: 002b:00007ffefea133e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   94.698757][ T5944] RAX: ffffffffffffffda RBX: 00007f97f7bb5fa0 RCX: 00007f97f798e929
[   94.706729][ T5944] RDX: 0000200000000140 RSI: 0000000040946400 RDI: 0000000000000003
[   94.714709][ T5944] RBP: 00007f97f7a10b39 R08: 0000000000000000 R09: 0000000000000000
[   94.722685][ T5944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   94.730657][ T5944] R13: 00007f97f7bb5fa0 R14: 00007f97f7bb5fa0 R15: 0000000000000003
[   94.738635][ T5944]  </TASK>
[   94.741652][ T5944] Modules linked in:
[   94.750353][ T5944] ---[ end trace 0000000000000000 ]---
[   94.759280][ T5944] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[   94.765005][ T5944] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 c9 26 e1 f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 a8 26 e1 f9 4d 8b 24 24 48 83 c3
[   94.785046][ T5944] RSP: 0018:ffffc90003297a10 EFLAGS: 00010206
[   94.791183][ T5944] RAX: 0000000000000005 RBX: ffff8880249b0d80 RCX: ffff888026653c00
[   94.799167][ T5944] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88814c982800
[   94.807746][ T5944] RBP: 0000000000000001 R08: ffff88814c98292f R09: 1ffff11029930525
[   94.815781][ T5944] R10: dffffc0000000000 R11: ffffed1029930526 R12: 0000000000000028
[   94.823998][ T5944] R13: dffffc0000000000 R14: ffff88814c982800 R15: dffffc0000000000
[   94.836681][ T5944] FS:  0000555563aa4500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[   94.845702][ T5944] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   94.852410][ T5944] CR2: 0000001b2c55ffff CR3: 0000000074686000 CR4: 00000000003506f0
[   94.860411][ T5944] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   94.869760][ T5944] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   94.877787][ T5944] Kernel panic - not syncing: Fatal exception
[   94.884208][ T5944] Kernel Offset: disabled
[   94.888533][ T5944] Rebooting in 86400 seconds..