Warning: Permanently added '10.128.1.59' (ECDSA) to the list of known hosts. syzkaller login: [ 33.984049] IPVS: ftp: loaded support on port[0] = 21 [ 34.053938] chnl_net:caif_netlink_parms(): no params data found [ 34.155241] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.162028] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.169629] device bridge_slave_0 entered promiscuous mode [ 34.176467] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.182919] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.190081] device bridge_slave_1 entered promiscuous mode [ 34.206347] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 34.214873] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 34.232019] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 34.239142] team0: Port device team_slave_0 added [ 34.244419] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 34.251656] team0: Port device team_slave_1 added [ 34.265633] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.272002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.297204] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.308639] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.314857] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 34.340628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.354316] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 34.361957] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 34.380178] device hsr_slave_0 entered promiscuous mode [ 34.385747] device hsr_slave_1 entered promiscuous mode [ 34.391995] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 34.399277] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 34.456227] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.462637] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.469459] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.475808] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.503607] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 34.510651] 8021q: adding VLAN 0 to HW filter on device bond0 [ 34.518995] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 34.527842] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 34.545662] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.552998] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.563140] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 34.569373] 8021q: adding VLAN 0 to HW filter on device team0 [ 34.577456] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 34.584964] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.591330] bridge0: port 1(bridge_slave_0) entered forwarding state [ 34.600190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 34.607935] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.614257] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.632261] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 34.642088] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 34.653453] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 34.660563] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 34.668307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 34.675738] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 34.683924] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 34.691705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 34.698543] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 34.710695] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 34.718848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 34.725463] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 34.735603] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 34.784847] IPv6: ADDRCONF(NETDEV_UP): veth0_virt_wifi: link is not ready [ 34.794327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 34.821266] IPv6: ADDRCONF(NETDEV_UP): veth0_vlan: link is not ready [ 34.828619] IPv6: ADDRCONF(NETDEV_UP): vlan0: link is not ready [ 34.834977] IPv6: ADDRCONF(NETDEV_UP): vlan1: link is not ready [ 34.844039] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 34.851937] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 34.859111] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 34.868565] device veth0_vlan entered promiscuous mode [ 34.876498] device veth1_vlan entered promiscuous mode [ 34.882819] IPv6: ADDRCONF(NETDEV_UP): macvlan0: link is not ready [ 34.891307] IPv6: ADDRCONF(NETDEV_UP): macvlan1: link is not ready [ 34.901690] IPv6: ADDRCONF(NETDEV_UP): veth0_macvtap: link is not ready [ 34.910595] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 34.918163] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 34.925231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 34.934770] device veth0_macvtap entered promiscuous mode [ 34.941096] IPv6: ADDRCONF(NETDEV_UP): macvtap0: link is not ready [ 34.949247] device veth1_macvtap entered promiscuous mode [ 34.957303] IPv6: ADDRCONF(NETDEV_UP): veth0_to_batadv: link is not ready [ 34.965804] IPv6: ADDRCONF(NETDEV_UP): veth1_to_batadv: link is not ready [ 34.975171] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.982740] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 35.001197] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 35.010451] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.017619] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 35.036700] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready executing program [ 35.110297] VFS: Found a Xenix FS (block size = 512) on device loop0 [ 35.118627] sysv_free_block: flc_count > flc_size [ 35.127972] sysv_free_block: flc_count > flc_size [ 35.132819] sysv_free_block: flc_count > flc_size [ 35.138360] sysv_free_block: flc_count > flc_size [ 35.143196] sysv_free_block: flc_count > flc_size [ 35.148973] sysv_free_block: flc_count > flc_size [ 35.153806] sysv_free_block: flc_count > flc_size [ 35.158948] sysv_free_block: flc_count > flc_size [ 35.163787] sysv_free_block: flc_count > flc_size [ 35.169424] sysv_free_block: flc_count > flc_size [ 35.174955] BUG: unable to handle kernel NULL pointer dereference at (null) [ 35.182918] IP: get_block+0x4ab/0x1230 [ 35.186781] PGD a6e15067 P4D a6e15067 PUD 9e63b067 PMD 0 [ 35.192294] Oops: 0002 [#1] PREEMPT SMP KASAN [ 35.196765] Modules linked in: [ 35.199932] CPU: 1 PID: 7992 Comm: syz-executor122 Not tainted 4.14.301-syzkaller #0 [ 35.207780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 35.217113] task: ffff8880b4530280 task.stack: ffff8880b2df0000 [ 35.223144] RIP: 0010:get_block+0x4ab/0x1230 [ 35.227523] RSP: 0018:ffff8880b2df77f8 EFLAGS: 00010246 [ 35.232856] RAX: 0000000000000007 RBX: ffff8880b2df7928 RCX: 0000000000000001 [ 35.240096] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: ffff8880b45302a4 [ 35.247337] RBP: ffff8880b2df79b0 R08: ffffea000238b400 R09: 0000000000000002 [ 35.254581] R10: 0000000000000000 R11: ffff8880b4530280 R12: 0000000000000000 [ 35.261832] R13: dffffc0000000000 R14: ffff88808dfae958 R15: 0000000054445f42 [ 35.269081] FS: 0000555556ab13c0(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 35.277285] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 35.283144] CR2: 0000000000000000 CR3: 00000000a16f4000 CR4: 00000000003406e0 [ 35.290389] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 35.297728] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 35.304979] Call Trace: [ 35.307554] ? block_to_path.isra.0+0x420/0x420 [ 35.312198] ? create_page_buffers+0x14d/0x1c0 [ 35.316756] ? create_empty_buffers+0x282/0x470 [ 35.321399] ? do_raw_spin_unlock+0x164/0x220 [ 35.325869] ? _raw_spin_unlock+0x29/0x40 [ 35.330164] ? create_page_buffers+0xce/0x1c0 [ 35.334638] __block_write_begin_int+0x35c/0x11d0 [ 35.339459] ? block_to_path.isra.0+0x420/0x420 [ 35.344104] ? __breadahead_gfp+0x150/0x150 [ 35.348399] ? wait_for_stable_page+0xe3/0x260 [ 35.352956] ? block_to_path.isra.0+0x420/0x420 [ 35.357682] block_write_begin+0x58/0x270 [ 35.361805] sysv_write_begin+0x35/0xc0 [ 35.365840] generic_perform_write+0x1d5/0x430 [ 35.370395] ? __mnt_drop_write_file+0x5f/0x90 [ 35.374949] ? filemap_page_mkwrite+0x2d0/0x2d0 [ 35.379591] ? current_time+0xb0/0xb0 [ 35.383371] ? lock_acquire+0x170/0x3f0 [ 35.387318] __generic_file_write_iter+0x227/0x590 [ 35.392227] generic_file_write_iter+0x36f/0x650 [ 35.397049] __vfs_write+0x44c/0x630 [ 35.400739] ? kernel_read+0x110/0x110 [ 35.404601] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 35.409675] vfs_write+0x17f/0x4d0 [ 35.413189] SyS_write+0xf2/0x210 [ 35.416614] ? SyS_read+0x210/0x210 [ 35.420216] ? do_syscall_64+0x4c/0x640 [ 35.424165] ? SyS_read+0x210/0x210 [ 35.427761] do_syscall_64+0x1d5/0x640 [ 35.431624] entry_SYSCALL_64_after_hwframe+0x5e/0xd3 [ 35.436799] RIP: 0033:0x7f57ae67aa49 [ 35.440502] RSP: 002b:00007ffeabc23b28 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 35.448188] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f57ae67aa49 [ 35.455428] RDX: 00000000fffffd5e RSI: 000000002000ad00 RDI: 0000000000000004 [ 35.462670] RBP: 00007ffeabc23b80 R08: 00007ffeabc23ba0 R09: 00007ffeabc23ba0 [ 35.469913] R10: 0000000000009e07 R11: 0000000000000246 R12: 0000000000000003 [ 35.477153] R13: 00007ffeabc23b60 R14: 00007ffeabc23b58 R15: 00007ffeabc23ba0 [ 35.484400] Code: 0b 00 00 49 8b bc 24 28 01 00 00 b9 08 00 00 00 e8 fb 98 95 ff 31 d2 be 96 01 00 00 48 c7 c7 a0 63 aa 87 49 89 c4 e8 f5 a6 3b ff 49 0f ba 2c 24 02 0f 82 16 07 00 00 e8 93 c3 57 ff 4d 8d 7c [ 35.503459] RIP: get_block+0x4ab/0x1230 RSP: ffff8880b2df77f8 [ 35.509311] CR2: 0000000000000000 [ 35.512741] ---[ end trace 3d6c673a50a58217 ]--- [ 35.517465] Kernel panic - not syncing: Fatal exception [ 35.522971] Kernel Offset: disabled [ 35.526579] Rebooting in 86400 seconds..