[ 52.327686][ T54] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.354083][ T54] device veth1_macvtap left promiscuous mode [ 52.360604][ T54] device veth0_macvtap left promiscuous mode [ 52.368178][ T54] device veth1_vlan left promiscuous mode [ 52.374609][ T54] device veth0_vlan left promiscuous mode [ 52.639294][ T54] team0 (unregistering): Port device team_slave_1 removed [ 52.654454][ T54] team0 (unregistering): Port device team_slave_0 removed [ 52.668193][ T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 52.684275][ T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 52.740682][ T54] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.1.77' (ECDSA) to the list of known hosts. [ 69.408743][ T4071] ------------[ cut here ]------------ [ 69.415572][ T4071] kernel BUG at drivers/vhost/vhost.c:2338! [ 69.422661][ T4071] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 69.428737][ T4071] CPU: 0 PID: 4071 Comm: vhost-4070 Not tainted 5.17.0-rc4-syzkaller-00054-gf71077a4d84b-dirty #0 [ 69.439321][ T4071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.449450][ T4071] RIP: 0010:vhost_get_vq_desc+0x1dc5/0x2350 [ 69.455341][ T4071] Code: 00 00 00 48 c7 c6 20 2c 9d 8a 48 c7 c7 98 a6 8e 8d 48 89 ca 48 c1 e1 04 48 01 d9 e8 25 59 28 fd e9 74 ff ff ff e8 cb c7 a1 fa <0f> 0b e8 c4 c7 a1 fa 48 8b 54 24 18 48 b8 00 00 00 00 00 fc ff df [ 69.474947][ T4071] RSP: 0018:ffffc900028bfb78 EFLAGS: 00010293 [ 69.481024][ T4071] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 69.488989][ T4071] RDX: ffff88801cbd1d00 RSI: ffffffff86d71655 RDI: 0000000000000003 [ 69.496949][ T4071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 69.504915][ T4071] R10: ffffffff86d7072d R11: 0000000000000000 R12: 0000000000000000 [ 69.512874][ T4071] R13: 0000000000000000 R14: ffff88806ffc4bb0 R15: dffffc0000000000 [ 69.520834][ T4071] FS: 0000000000000000(0000) GS:ffff8880b9c00000(0000) knlGS:0000000000000000 [ 69.529847][ T4071] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.536415][ T4071] CR2: 0000000000000002 CR3: 000000001d077000 CR4: 00000000003506f0 [ 69.544373][ T4071] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.552371][ T4071] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.560325][ T4071] Call Trace: [ 69.563585][ T4071] [ 69.566502][ T4071] ? mark_held_locks+0x9f/0xe0 [ 69.571258][ T4071] ? vhost_add_used_and_signal+0x1a0/0x1a0 [ 69.577064][ T4071] ? kasan_quarantine_put+0xf5/0x210 [ 69.582425][ T4071] ? slab_free_freelist_hook+0x8b/0x1c0 [ 69.588051][ T4071] ? vhost_vsock_handle_tx_kick+0x7db/0xa20 [ 69.593940][ T4071] ? kfree+0xd0/0x390 [ 69.597908][ T4071] vhost_vsock_handle_tx_kick+0x277/0xa20 [ 69.603618][ T4071] ? vhost_vsock_dev_release+0x4b0/0x4b0 [ 69.609245][ T4071] ? rwlock_bug.part.0+0x90/0x90 [ 69.614258][ T4071] ? lockdep_hardirqs_on+0x79/0x100 [ 69.619443][ T4071] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 69.625238][ T4071] vhost_worker+0x2e9/0x3e0 [ 69.629740][ T4071] ? vhost_dev_init+0x810/0x810 [ 69.634582][ T4071] kthread+0x2e9/0x3a0 [ 69.638644][ T4071] ? kthread_complete_and_exit+0x40/0x40 [ 69.644281][ T4071] ret_from_fork+0x1f/0x30 [ 69.648696][ T4071] [ 69.651717][ T4071] Modules linked in: [ 69.656043][ T4071] ---[ end trace 0000000000000000 ]--- [ 69.661550][ T4071] RIP: 0010:vhost_get_vq_desc+0x1dc5/0x2350 [ 69.667881][ T4071] Code: 00 00 00 48 c7 c6 20 2c 9d 8a 48 c7 c7 98 a6 8e 8d 48 89 ca 48 c1 e1 04 48 01 d9 e8 25 59 28 fd e9 74 ff ff ff e8 cb c7 a1 fa <0f> 0b e8 c4 c7 a1 fa 48 8b 54 24 18 48 b8 00 00 00 00 00 fc ff df [ 69.687613][ T4071] RSP: 0018:ffffc900028bfb78 EFLAGS: 00010293 [ 69.693736][ T4071] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 69.701750][ T4071] RDX: ffff88801cbd1d00 RSI: ffffffff86d71655 RDI: 0000000000000003 [ 69.709888][ T4071] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000001 [ 69.717942][ T4071] R10: ffffffff86d7072d R11: 0000000000000000 R12: 0000000000000000 [ 69.726054][ T4071] R13: 0000000000000000 R14: ffff88806ffc4bb0 R15: dffffc0000000000 [ 69.734039][ T4071] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000 [ 69.742995][ T4071] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.749682][ T4071] CR2: 00007fc7293991d0 CR3: 000000001d077000 CR4: 00000000003506e0 [ 69.758807][ T4071] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.766809][ T4071] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.774935][ T4071] Kernel panic - not syncing: Fatal exception [ 69.781168][ T4071] Kernel Offset: disabled [ 69.785566][ T4071] Rebooting in 86400 seconds..