Warning: Permanently added '10.128.0.152' (ED25519) to the list of known hosts.
2025/08/18 03:51:56 ignoring optional flag "sandboxArg"="0"
2025/08/18 03:51:58 parsed 1 programs
[  105.172987][ T5807] cgroup: Unknown subsys name 'net'
[  105.311567][ T5807] cgroup: Unknown subsys name 'rlimit'
[  106.799124][ T5807] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  109.426521][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  109.440024][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  109.454810][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  109.464020][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  109.485192][ T5840] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  109.494676][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  110.275275][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.284176][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.417755][ T2906] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.445135][ T2906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.773223][ T5859] chnl_net:caif_netlink_parms(): no params data found
[  111.326294][ T5859] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.336215][ T5859] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.344156][ T5859] bridge_slave_0: entered allmulticast mode
[  111.432565][ T5859] bridge_slave_0: entered promiscuous mode
[  111.599243][ T5859] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.607393][ T5859] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.618385][ T5859] bridge_slave_1: entered allmulticast mode
[  111.627471][ T5859] bridge_slave_1: entered promiscuous mode
[  111.667742][ T5859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  111.711873][ T5859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  111.801516][ T5859] team0: Port device team_slave_0 added
[  111.815614][ T5859] team0: Port device team_slave_1 added
[  112.031546][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_0
[  112.039299][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.072424][ T5859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.118066][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.126392][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  112.155371][ T5859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  112.283669][ T5859] hsr_slave_0: entered promiscuous mode
[  112.291398][ T5859] hsr_slave_1: entered promiscuous mode
[  112.495895][ T5859] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  112.508922][ T5859] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  112.518215][ T5859] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  112.540533][ T5859] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  112.676567][ T5859] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.709121][ T5859] 8021q: adding VLAN 0 to HW filter on device team0
[  112.738610][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.747136][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.762945][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.771294][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.000208][ T5859] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.038400][ T5859] veth0_vlan: entered promiscuous mode
[  113.053673][ T5859] veth1_vlan: entered promiscuous mode
[  113.082131][ T5859] veth0_macvtap: entered promiscuous mode
[  113.092036][ T5859] veth1_macvtap: entered promiscuous mode
[  113.124222][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0
[  113.140618][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1
[  113.152864][ T5859] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  113.166729][ T5859] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  113.176928][ T5859] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  113.187991][ T5859] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/08/18 03:52:07 executed programs: 0
[  113.370804][ T5859] syz-executor (5859) used greatest stack depth: 20680 bytes left
[  113.435100][ T5105] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  113.443884][ T5105] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  113.453731][ T5921] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  113.465619][ T5921] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  113.477339][ T5921] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  113.477879][ T5919] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  113.501813][ T5919] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  113.503181][ T5921] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  113.512435][ T5919] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  113.544242][ T5840] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  113.555092][ T5840] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  113.563744][ T5921] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  113.576322][ T5921] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  113.584540][ T5921] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  113.593234][ T5840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  113.608834][ T5921] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  113.619415][ T5921] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  113.622266][   T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  113.638538][ T5926] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  113.649602][ T5927] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  113.659143][ T5927] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  113.677163][ T5927] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  113.691378][ T5927] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  113.728190][ T5927] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  114.226870][ T5914] chnl_net:caif_netlink_parms(): no params data found
[  114.504188][ T5914] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.511803][ T5914] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.534607][ T5914] bridge_slave_0: entered allmulticast mode
[  114.542031][ T5914] bridge_slave_0: entered promiscuous mode
[  114.551383][ T5914] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.562257][ T5914] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.570126][ T5914] bridge_slave_1: entered allmulticast mode
[  114.577533][ T5914] bridge_slave_1: entered promiscuous mode
[  114.584576][ T5915] chnl_net:caif_netlink_parms(): no params data found
[  114.653638][ T5923] chnl_net:caif_netlink_parms(): no params data found
[  114.672004][ T5922] chnl_net:caif_netlink_parms(): no params data found
[  114.691628][ T5914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  114.706817][ T5914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  114.858648][ T5915] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.866460][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.875260][ T5915] bridge_slave_0: entered allmulticast mode
[  114.882484][ T5915] bridge_slave_0: entered promiscuous mode
[  114.896676][ T5914] team0: Port device team_slave_0 added
[  114.936954][ T5915] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.946026][ T5915] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.953848][ T5915] bridge_slave_1: entered allmulticast mode
[  114.961254][ T5915] bridge_slave_1: entered promiscuous mode
[  114.969933][ T5914] team0: Port device team_slave_1 added
[  115.022985][ T5922] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.031033][ T5922] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.039356][ T5922] bridge_slave_0: entered allmulticast mode
[  115.046914][ T5922] bridge_slave_0: entered promiscuous mode
[  115.084592][ T5915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.097061][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.104905][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.133686][ T5914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.146457][ T5923] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.154148][ T5923] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.162225][ T5923] bridge_slave_0: entered allmulticast mode
[  115.171918][ T5923] bridge_slave_0: entered promiscuous mode
[  115.184549][ T5923] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.192118][ T5923] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.200308][ T5923] bridge_slave_1: entered allmulticast mode
[  115.207827][ T5923] bridge_slave_1: entered promiscuous mode
[  115.215737][ T5922] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.223737][ T5922] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.232249][ T5922] bridge_slave_1: entered allmulticast mode
[  115.240149][ T5922] bridge_slave_1: entered promiscuous mode
[  115.283118][ T5915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.293537][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.302002][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.329937][ T5914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.374837][ T5922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.417216][ T5915] team0: Port device team_slave_0 added
[  115.431825][ T5923] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.448360][ T5922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.489070][ T5922] team0: Port device team_slave_0 added
[  115.498727][ T5915] team0: Port device team_slave_1 added
[  115.507446][ T5923] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.558216][ T5922] team0: Port device team_slave_1 added
[  115.575485][ T5840] Bluetooth: hci0: command tx timeout
[  115.626791][ T5914] hsr_slave_0: entered promiscuous mode
[  115.633366][ T5914] hsr_slave_1: entered promiscuous mode
[  115.641429][ T5914] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  115.653399][ T5914] Cannot create hsr debugfs directory
[  115.656741][ T5840] Bluetooth: hci1: command tx timeout
[  115.682757][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.691167][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.720913][ T5915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.734425][ T5840] Bluetooth: hci2: command tx timeout
[  115.743772][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.752110][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.781846][ T5915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.799020][ T5923] team0: Port device team_slave_0 added
[  115.809215][ T5923] team0: Port device team_slave_1 added
[  115.815715][ T5840] Bluetooth: hci3: command tx timeout
[  115.827432][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.836151][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.865411][ T5922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.880755][ T5922] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.888955][ T5922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.919296][ T5922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.972979][ T2933] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.049359][ T5923] batman_adv: batadv0: Adding interface: batadv_slave_0
[  116.057871][ T5923] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.088712][ T5923] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  116.143827][ T5923] batman_adv: batadv0: Adding interface: batadv_slave_1
[  116.152745][ T5923] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.182159][ T5923] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.228953][ T5922] hsr_slave_0: entered promiscuous mode
[  116.237325][ T5922] hsr_slave_1: entered promiscuous mode
[  116.245924][ T5922] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.253996][ T5922] Cannot create hsr debugfs directory
[  116.292876][ T5915] hsr_slave_0: entered promiscuous mode
[  116.301137][ T5915] hsr_slave_1: entered promiscuous mode
[  116.308273][ T5915] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.317896][ T5915] Cannot create hsr debugfs directory
[  116.399644][ T5923] hsr_slave_0: entered promiscuous mode
[  116.407704][ T5923] hsr_slave_1: entered promiscuous mode
[  116.414731][ T5923] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  116.423604][ T5923] Cannot create hsr debugfs directory
[  116.753931][ T5914] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  116.773344][ T5914] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  116.789028][ T5914] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  116.800165][ T5914] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  116.865193][ T5922] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  116.876526][ T5922] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  116.892661][ T5922] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  116.903329][ T5922] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  116.997250][ T5914] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.038875][ T5914] 8021q: adding VLAN 0 to HW filter on device team0
[  117.056764][ T2906] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.064089][ T2906] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.082772][ T3002] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.090053][ T3002] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.130617][ T5922] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.172380][ T5922] 8021q: adding VLAN 0 to HW filter on device team0
[  117.192109][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.200188][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.220108][ T3002] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.227839][ T3002] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.307778][ T5965] modprobe (5965) used greatest stack depth: 20368 bytes left
[  117.526928][ T5914] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.540967][ T5922] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.613839][ T5914] veth0_vlan: entered promiscuous mode
[  117.629343][ T5922] veth0_vlan: entered promiscuous mode
[  117.651146][ T5922] veth1_vlan: entered promiscuous mode
[  117.658188][ T5840] Bluetooth: hci0: command tx timeout
[  117.676418][ T5914] veth1_vlan: entered promiscuous mode
[  117.718768][ T5922] veth0_macvtap: entered promiscuous mode
[  117.732413][ T5922] veth1_macvtap: entered promiscuous mode
[  117.745017][ T5840] Bluetooth: hci1: command tx timeout
[  117.773425][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.786823][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.800643][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.812695][ T5914] veth0_macvtap: entered promiscuous mode
[  117.819278][ T5840] Bluetooth: hci2: command tx timeout
[  117.829477][ T5914] veth1_macvtap: entered promiscuous mode
[  117.842500][ T5922] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.855578][ T5922] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.868115][ T5922] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.887049][ T5922] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.897546][ T5840] Bluetooth: hci3: command tx timeout
[  117.904209][ T5922] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.916757][ T5922] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.926843][ T5922] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.960404][ T5914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.972154][ T5914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.983750][ T5914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.995040][ T5914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.011235][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.029969][ T5914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.042222][ T5914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.055279][ T5914] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.067489][ T5914] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.082224][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.095907][ T5914] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.106366][ T5914] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.117347][ T5914] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.127778][ T5914] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.155531][ T2933] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.233615][ T2933] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.308330][ T3002] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.321099][ T3002] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.348048][ T2933] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.412854][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.423142][ T2980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.437674][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.439387][ T2980] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/08/18 03:52:13 executed programs: 8
[  118.502004][ T2906] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.520937][ T2906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.578706][ T5974] syz.2.19[5974]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  119.481465][ T5974] loop2: detected capacity change from 0 to 32768
[  119.570258][ T5974] 
[  119.570258][ T5974]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.570258][ T5974] 
[  119.602462][ T5978] loop0: detected capacity change from 0 to 32768
[  119.662762][ T2948] 
[  119.662762][ T2948]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.662762][ T2948] 
[  119.698216][ T5978] 
[  119.698216][ T5978]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.698216][ T5978] 
[  119.712784][ T2948] 
[  119.712784][ T2948]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.712784][ T2948] 
[  119.737953][ T5840] Bluetooth: hci0: command tx timeout
[  119.738421][ T5922] 
[  119.738421][ T5922]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.738421][ T5922] 
[  119.778152][  T112] 
[  119.778152][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.778152][  T112] 
[  119.814826][ T5840] Bluetooth: hci1: command tx timeout
[  119.835075][ T5922] 
[  119.835075][ T5922]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.835075][ T5922] 
[  119.882570][   T59] 
[  119.882570][   T59]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.882570][   T59] 
[  119.895202][ T5840] Bluetooth: hci2: command tx timeout
[  119.939678][   T59] 
[  119.939678][   T59]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  119.939678][   T59] 
[  119.974429][ T5840] Bluetooth: hci3: command tx timeout
[  120.001861][ T5914] 
[  120.001861][ T5914]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.001861][ T5914] 
[  120.083079][ T5914] 
[  120.083079][ T5914]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.083079][ T5914] 
[  120.112206][  T112] 
[  120.112206][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.112206][  T112] 
[  120.135103][ T5915] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  120.165133][ T5915] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  120.304435][ T5915] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  120.328118][ T5915] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  120.570674][ T5993] loop2: detected capacity change from 0 to 32768
[  120.628293][ T5993] 
[  120.628293][ T5993]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.628293][ T5993] 
[  120.701797][ T5923] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  120.719183][ T2980] 
[  120.719183][ T2980]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.719183][ T2980] 
[  120.756737][ T5923] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  120.766482][ T2980] 
[  120.766482][ T2980]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.766482][ T2980] 
[  120.804767][ T5923] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  120.813264][ T5922] 
[  120.813264][ T5922]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.813264][ T5922] 
[  120.845711][ T5922] 
[  120.845711][ T5922]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  120.845711][ T5922] 
[  120.884784][  T111] ==================================================================
[  120.894668][  T111] BUG: KASAN: slab-use-after-free in __mutex_lock+0x6cb/0xcc0
[  120.903552][  T111] Read of size 8 at addr ffff888079684908 by task jfsCommit/111
[  120.911815][  T111] 
[  120.914341][  T111] CPU: 0 PID: 111 Comm: jfsCommit Not tainted 6.6.102-syzkaller #0
[  120.924025][  T111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  120.934748][  T111] Call Trace:
[  120.938211][  T111]  <TASK>
[  120.941331][  T111]  dump_stack_lvl+0x16c/0x230
[  120.946232][  T111]  ? __lock_acquire+0x7c80/0x7c80
[  120.952436][  T111]  ? show_regs_print_info+0x20/0x20
[  120.958297][  T111]  ? load_image+0x3b0/0x3b0
[  120.963720][  T111]  ? __virt_addr_valid+0x469/0x540
[  120.969197][  T111]  print_report+0xac/0x220
[  120.974721][  T111]  ? __mutex_lock+0x6cb/0xcc0
[  120.980110][  T111]  kasan_report+0x117/0x150
[  120.985341][  T111]  ? __mutex_lock+0x6cb/0xcc0
[  120.990331][  T111]  __mutex_lock+0x6cb/0xcc0
[  120.994947][  T111]  ? __mutex_lock+0x4e8/0xcc0
[  121.000852][  T111]  ? jfs_syncpt+0x25/0x90
[  121.006234][  T111]  ? mutex_lock_nested+0x20/0x20
[  121.011217][  T111]  ? __rwlock_init+0x150/0x150
[  121.016186][  T111]  jfs_syncpt+0x25/0x90
[  121.020447][  T111]  txEnd+0x2e5/0x520
[  121.024523][  T111]  jfs_lazycommit+0x5a6/0xa60
[  121.029584][  T111]  ? txFreelock+0x5a0/0x5a0
[  121.034605][  T111]  ? do_task_dead+0xd0/0xd0
[  121.039646][  T111]  ? __kthread_parkme+0x7a/0x1c0
[  121.044705][  T111]  kthread+0x2fa/0x390
[  121.048763][  T111]  ? txFreelock+0x5a0/0x5a0
[  121.053342][  T111]  ? kthread_blkcg+0xd0/0xd0
[  121.058879][  T111]  ret_from_fork+0x48/0x80
[  121.063553][  T111]  ? kthread_blkcg+0xd0/0xd0
[  121.068666][  T111]  ret_from_fork_asm+0x11/0x20
[  121.073540][  T111]  </TASK>
[  121.076960][  T111] 
[  121.079984][  T111] Allocated by task 5993:
[  121.084585][  T111]  kasan_set_track+0x4e/0x70
[  121.089465][  T111]  __kasan_kmalloc+0x8f/0xa0
[  121.094379][  T111]  lmLogOpen+0x2df/0xfb0
[  121.098715][  T111]  jfs_mount_rw+0xea/0x670
[  121.103208][  T111]  jfs_fill_super+0x592/0xac0
[  121.108279][  T111]  mount_bdev+0x22b/0x2d0
[  121.112772][  T111]  legacy_get_tree+0xea/0x180
[  121.117653][  T111]  vfs_get_tree+0x8c/0x280
[  121.122065][  T111]  do_new_mount+0x24b/0xa40
[  121.127164][  T111]  __se_sys_mount+0x2da/0x3c0
[  121.132196][  T111]  do_syscall_64+0x55/0xb0
[  121.137260][  T111]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  121.143689][  T111] 
[  121.146023][  T111] Freed by task 5922:
[  121.150295][  T111]  kasan_set_track+0x4e/0x70
[  121.155352][  T111]  kasan_save_free_info+0x2e/0x50
[  121.161561][  T111]  ____kasan_slab_free+0x126/0x1e0
[  121.166969][  T111]  slab_free_freelist_hook+0x130/0x1b0
[  121.173899][  T111]  __kmem_cache_free+0xba/0x1f0
[  121.179311][  T111]  lmLogClose+0x297/0x520
[  121.186439][  T111]  jfs_umount+0x2ef/0x3c0
[  121.192181][  T111]  jfs_put_super+0x8c/0x190
[  121.197240][  T111]  generic_shutdown_super+0x134/0x2b0
[  121.202751][  T111]  kill_block_super+0x44/0x90
[  121.207603][  T111]  deactivate_locked_super+0x97/0x100
[  121.213149][  T111]  cleanup_mnt+0x429/0x4c0
[  121.217870][  T111]  task_work_run+0x1ce/0x250
[  121.222933][  T111]  exit_to_user_mode_loop+0xe6/0x110
[  121.228372][  T111]  exit_to_user_mode_prepare+0xb1/0x140
[  121.235068][  T111]  syscall_exit_to_user_mode+0x1a/0x50
[  121.241090][  T111]  do_syscall_64+0x61/0xb0
[  121.245872][  T111]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  121.251959][  T111] 
[  121.254467][  T111] The buggy address belongs to the object at ffff888079684800
[  121.254467][  T111]  which belongs to the cache kmalloc-1k of size 1024
[  121.269584][  T111] The buggy address is located 264 bytes inside of
[  121.269584][  T111]  freed 1024-byte region [ffff888079684800, ffff888079684c00)
[  121.283827][  T111] 
[  121.286327][  T111] The buggy address belongs to the physical page:
[  121.293280][  T111] page:ffffea0001e5a000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79680
[  121.303852][  T111] head:ffffea0001e5a000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  121.313691][  T111] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  121.321938][  T111] page_type: 0xffffffff()
[  121.326364][  T111] raw: 00fff00000000840 ffff888017841dc0 dead000000000122 0000000000000000
[  121.335285][  T111] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  121.344601][  T111] page dumped because: kasan: bad access detected
[  121.351254][  T111] page_owner tracks the page as allocated
[  121.357361][  T111] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 3002, tgid 3002 (kworker/u4:11), ts 120450881431, free_ts 120355436329
[  121.380379][  T111]  post_alloc_hook+0x1cd/0x210
[  121.385759][  T111]  get_page_from_freelist+0x195c/0x19f0
[  121.391313][  T111]  __alloc_pages+0x1e3/0x460
[  121.396552][  T111]  alloc_slab_page+0x5d/0x170
[  121.402012][  T111]  new_slab+0x87/0x2e0
[  121.406266][  T111]  ___slab_alloc+0xc6d/0x12f0
[  121.411138][  T111]  __kmem_cache_alloc_node+0x1a2/0x260
[  121.416916][  T111]  __kmalloc+0xa4/0x240
[  121.421514][  T111]  ieee802_11_parse_elems_full+0xb9/0x2080
[  121.427900][  T111]  ieee80211_inform_bss+0x107/0x1060
[  121.433499][  T111]  rdev_inform_bss+0x106/0x410
[  121.438582][  T111]  cfg80211_inform_bss_frame_data+0xb33/0x12b0
[  121.445008][  T111]  ieee80211_bss_info_update+0x70b/0x930
[  121.450752][  T111]  ieee80211_ibss_rx_queued_mgmt+0x17c9/0x2ac0
[  121.457085][  T111]  ieee80211_iface_work+0x717/0xc70
[  121.462539][  T111]  cfg80211_wiphy_work+0x225/0x260
[  121.467769][  T111] page last free stack trace:
[  121.472440][  T111]  free_unref_page_prepare+0x7ce/0x8e0
[  121.478529][  T111]  free_unref_page+0x32/0x2e0
[  121.484103][  T111]  __unfreeze_partials+0x1cf/0x210
[  121.489671][  T111]  put_cpu_partial+0x17c/0x250
[  121.494708][  T111]  __slab_free+0x31d/0x410
[  121.499247][  T111]  qlist_free_all+0x75/0xe0
[  121.504024][  T111]  kasan_quarantine_reduce+0x143/0x160
[  121.509672][  T111]  __kasan_slab_alloc+0x22/0x80
[  121.514571][  T111]  slab_post_alloc_hook+0x6e/0x4d0
[  121.519778][  T111]  kmem_cache_alloc_node+0x150/0x330
[  121.525246][  T111]  __alloc_skb+0x108/0x2c0
[  121.529938][  T111]  devlink_port_notify+0x7e/0x230
[  121.535155][  T111]  __devlink_port_type_set+0x525/0x6b0
[  121.540910][  T111]  devlink_port_netdevice_event+0x2a9/0x4f0
[  121.546989][  T111]  notifier_call_chain+0x197/0x390
[  121.552559][  T111]  dev_change_name+0x5d4/0x8a0
[  121.557372][  T111] 
[  121.559809][  T111] Memory state around the buggy address:
[  121.565440][  T111]  ffff888079684800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  121.573506][  T111]  ffff888079684880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  121.581716][  T111] >ffff888079684900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  121.590041][  T111]                       ^
[  121.594369][  T111]  ffff888079684980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  121.602571][  T111]  ffff888079684a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  121.610627][  T111] ==================================================================
[  121.622236][  T111] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  121.629984][  T111] CPU: 0 PID: 111 Comm: jfsCommit Not tainted 6.6.102-syzkaller #0
[  121.638230][  T111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  121.648725][  T111] Call Trace:
[  121.652024][  T111]  <TASK>
[  121.655140][  T111]  dump_stack_lvl+0x16c/0x230
[  121.660016][  T111]  ? show_regs_print_info+0x20/0x20
[  121.666322][  T111]  ? load_image+0x3b0/0x3b0
[  121.670861][  T111]  panic+0x2c0/0x710
[  121.674803][  T111]  ? bpf_jit_dump+0xd0/0xd0
[  121.679380][  T111]  ? _raw_spin_unlock_irqrestore+0xa9/0x110
[  121.685322][  T111]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  121.691773][  T111]  ? _raw_spin_unlock+0x40/0x40
[  121.696648][  T111]  ? print_memory_metadata+0x314/0x400
[  121.702212][  T111]  ? __mutex_lock+0x6cb/0xcc0
[  121.706995][  T111]  check_panic_on_warn+0x84/0xa0
[  121.712120][  T111]  ? __mutex_lock+0x6cb/0xcc0
[  121.717057][  T111]  end_report+0x6f/0x140
[  121.721489][  T111]  kasan_report+0x128/0x150
[  121.726371][  T111]  ? __mutex_lock+0x6cb/0xcc0
[  121.731064][  T111]  __mutex_lock+0x6cb/0xcc0
[  121.735776][  T111]  ? __mutex_lock+0x4e8/0xcc0
[  121.740796][  T111]  ? jfs_syncpt+0x25/0x90
[  121.745393][  T111]  ? mutex_lock_nested+0x20/0x20
[  121.750480][  T111]  ? __rwlock_init+0x150/0x150
[  121.755422][  T111]  jfs_syncpt+0x25/0x90
[  121.759765][  T111]  txEnd+0x2e5/0x520
[  121.763847][  T111]  jfs_lazycommit+0x5a6/0xa60
[  121.768770][  T111]  ? txFreelock+0x5a0/0x5a0
[  121.773641][  T111]  ? do_task_dead+0xd0/0xd0
[  121.778815][  T111]  ? __kthread_parkme+0x7a/0x1c0
[  121.784736][  T111]  kthread+0x2fa/0x390
[  121.788993][  T111]  ? txFreelock+0x5a0/0x5a0
[  121.793607][  T111]  ? kthread_blkcg+0xd0/0xd0
[  121.798663][  T111]  ret_from_fork+0x48/0x80
[  121.803533][  T111]  ? kthread_blkcg+0xd0/0xd0
[  121.808916][  T111]  ret_from_fork_asm+0x11/0x20
[  121.813872][  T111]  </TASK>
[  121.818773][  T111] Kernel Offset: disabled
[  121.823553][  T111] Rebooting in 86400 seconds..