Warning: Permanently added '10.128.0.229' (ED25519) to the list of known hosts. 2023/11/08 19:55:51 ignoring optional flag "sandboxArg"="0" 2023/11/08 19:55:51 parsed 1 programs [ 529.619440][ T5067] cgroup: Unknown subsys name 'net' [ 529.745463][ T5067] cgroup: Unknown subsys name 'rlimit' 2023/11/08 19:55:59 executed programs: 0 [ 537.368159][ T5067] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 537.403261][ T5077] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 537.410337][ T5077] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 537.417413][ T5077] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 537.424637][ T5077] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 537.431818][ T5077] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 537.438849][ T5077] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 537.513939][ T5075] chnl_net:caif_netlink_parms(): no params data found [ 537.547239][ T5075] bridge0: port 1(bridge_slave_0) entered blocking state [ 537.554347][ T5075] bridge0: port 1(bridge_slave_0) entered disabled state [ 537.561465][ T5075] bridge_slave_0: entered allmulticast mode [ 537.567848][ T5075] bridge_slave_0: entered promiscuous mode [ 537.574656][ T5075] bridge0: port 2(bridge_slave_1) entered blocking state [ 537.581755][ T5075] bridge0: port 2(bridge_slave_1) entered disabled state [ 537.588839][ T5075] bridge_slave_1: entered allmulticast mode [ 537.595376][ T5075] bridge_slave_1: entered promiscuous mode [ 537.610949][ T5075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 537.621123][ T5075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 537.639478][ T5075] team0: Port device team_slave_0 added [ 537.646107][ T5075] team0: Port device team_slave_1 added [ 537.660727][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 537.667727][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 537.693649][ T5075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 537.704991][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 537.711929][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 537.737778][ T5075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 537.762391][ T5075] hsr_slave_0: entered promiscuous mode [ 537.768205][ T5075] hsr_slave_1: entered promiscuous mode [ 537.825308][ T5075] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 537.833319][ T5075] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 537.841411][ T5075] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 537.849406][ T5075] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 537.864098][ T5075] bridge0: port 2(bridge_slave_1) entered blocking state [ 537.871166][ T5075] bridge0: port 2(bridge_slave_1) entered forwarding state [ 537.878429][ T5075] bridge0: port 1(bridge_slave_0) entered blocking state [ 537.885481][ T5075] bridge0: port 1(bridge_slave_0) entered forwarding state [ 537.917380][ T5075] 8021q: adding VLAN 0 to HW filter on device bond0 [ 537.929529][ T5085] bridge0: port 1(bridge_slave_0) entered disabled state [ 537.937166][ T5085] bridge0: port 2(bridge_slave_1) entered disabled state [ 537.947308][ T5075] 8021q: adding VLAN 0 to HW filter on device team0 [ 537.956865][ T5085] bridge0: port 1(bridge_slave_0) entered blocking state [ 537.963989][ T5085] bridge0: port 1(bridge_slave_0) entered forwarding state [ 537.982443][ T5068] bridge0: port 2(bridge_slave_1) entered blocking state [ 537.989507][ T5068] bridge0: port 2(bridge_slave_1) entered forwarding state [ 538.038918][ T5075] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 538.058990][ T5075] veth0_vlan: entered promiscuous mode [ 538.068921][ T5075] veth1_vlan: entered promiscuous mode [ 538.085234][ T5075] veth0_macvtap: entered promiscuous mode [ 538.093217][ T5075] veth1_macvtap: entered promiscuous mode [ 538.104897][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 538.115424][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 538.124655][ T5075] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.133444][ T5075] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.142151][ T5075] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.150837][ T5075] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 538.180708][ T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 538.188882][ T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 538.203180][ T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 538.210999][ T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 538.288944][ T5094] loop0: detected capacity change from 0 to 32768 [ 538.296465][ T5094] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (5094) [ 538.310665][ T5094] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 538.320035][ T5094] BTRFS info (device loop0): force clearing of disk cache [ 538.327327][ T5094] BTRFS info (device loop0): setting nodatasum [ 538.333711][ T5094] BTRFS info (device loop0): allowing degraded mounts [ 538.340506][ T5094] BTRFS info (device loop0): enabling disk space caching [ 538.347569][ T5094] BTRFS info (device loop0): disk space caching is enabled [ 538.361209][ T5094] BTRFS info (device loop0): enabling ssd optimizations [ 538.368188][ T5094] BTRFS info (device loop0): auto enabling async discard [ 538.375712][ T5094] BTRFS info (device loop0): rebuilding free space tree [ 538.384037][ T5094] BTRFS info (device loop0): disabling free space tree [ 538.390926][ T5094] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 538.400619][ T5094] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 538.411971][ T5094] BTRFS info (device loop0): checking UUID tree [ 538.423915][ T5094] ------------[ cut here ]------------ [ 538.429404][ T5094] BTRFS: Transaction aborted (error -17) [ 538.435386][ T5094] WARNING: CPU: 0 PID: 5094 at fs/btrfs/transaction.c:1778 create_pending_snapshot+0xe39/0x1960 [ 538.446006][ T5094] Modules linked in: [ 538.449891][ T5094] CPU: 0 PID: 5094 Comm: syz-executor.0 Not tainted 6.6.0-syzkaller-15365-g305230142ae0 #0 [ 538.459896][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 538.469960][ T5094] RIP: 0010:create_pending_snapshot+0xe39/0x1960 [ 538.476317][ T5094] Code: c7 c6 c0 11 b1 85 e8 c6 f8 10 00 41 be 01 00 00 00 e9 1d fb ff ff e8 06 80 34 ff 44 89 ee 48 c7 c7 90 11 b1 85 e8 b7 ff 1e ff <0f> 0b e9 65 fb ff ff e8 bb 59 ac 02 e8 e6 7f 34 ff 44 89 ef e8 3e [ 538.495962][ T5094] RSP: 0018:ffffc90002887ab0 EFLAGS: 00010286 [ 538.502136][ T5094] RAX: 0000000000000000 RBX: ffff88810f6df0c0 RCX: ffffffff81295fe4 [ 538.510099][ T5094] RDX: ffff888104813300 RSI: ffffffff81295fed RDI: 0000000000000001 [ 538.518069][ T5094] RBP: ffffc90002887bb8 R08: 0000000000000001 R09: 0000000000000000 [ 538.526143][ T5094] R10: 0000000000000001 R11: 205d343930355420 R12: ffff88810c8b4000 [ 538.534152][ T5094] R13: 00000000ffffffef R14: 0000000000000001 R15: ffff88810f6b2070 [ 538.542128][ T5094] FS: 0000555555d51480(0000) GS:ffff88813bc00000(0000) knlGS:0000000000000000 [ 538.551072][ T5094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 538.557647][ T5094] CR2: 0000000020001000 CR3: 000000011aae3000 CR4: 00000000003506f0 [ 538.565618][ T5094] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 538.573603][ T5094] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 538.581581][ T5094] Call Trace: [ 538.584895][ T5094] [ 538.587806][ T5094] ? show_regs+0x8f/0xa0 [ 538.592079][ T5094] ? __warn+0x9e/0x1b0 [ 538.596150][ T5094] ? create_pending_snapshot+0xe39/0x1960 [ 538.601868][ T5094] ? report_bug+0x285/0x310 [ 538.606373][ T5094] ? handle_bug+0x3c/0x70 [ 538.610684][ T5094] ? exc_invalid_op+0x17/0x40 [ 538.615360][ T5094] ? asm_exc_invalid_op+0x1a/0x20 [ 538.620414][ T5094] ? __warn_printk+0x104/0x1a0 [ 538.625270][ T5094] ? __warn_printk+0x10d/0x1a0 [ 538.630043][ T5094] ? create_pending_snapshot+0xe39/0x1960 [ 538.635785][ T5094] create_pending_snapshots+0xc6/0xf0 [ 538.641167][ T5094] btrfs_commit_transaction+0x8c0/0x1610 [ 538.646780][ T5094] ? start_transaction+0x15c/0xed0 [ 538.651892][ T5094] btrfs_mksubvol+0x473/0x780 [ 538.656574][ T5094] btrfs_mksnapshot+0x94/0xc0 [ 538.661273][ T5094] __btrfs_ioctl_snap_create+0x2b0/0x2c0 [ 538.666907][ T5094] btrfs_ioctl_snap_create+0x91/0xc0 [ 538.672195][ T5094] btrfs_ioctl+0x385/0x33e0 [ 538.676701][ T5094] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 538.682594][ T5094] ? do_vfs_ioctl+0x24c/0xe80 [ 538.687275][ T5094] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 538.693696][ T5094] __x64_sys_ioctl+0xf2/0x140 [ 538.698380][ T5094] do_syscall_64+0x3f/0x110 [ 538.702881][ T5094] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 538.708774][ T5094] RIP: 0033:0x7f2a6e47cae9 [ 538.713180][ T5094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 538.732895][ T5094] RSP: 002b:00007ffeda242a98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 538.741330][ T5094] RAX: ffffffffffffffda RBX: 00007f2a6e59bf80 RCX: 00007f2a6e47cae9 [ 538.749294][ T5094] RDX: 0000000020000a80 RSI: 0000000050009401 RDI: 0000000000000004 [ 538.757261][ T5094] RBP: 00007f2a6e4c847a R08: 0000000000000000 R09: 0000000000000000 [ 538.765255][ T5094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 538.773220][ T5094] R13: 00000000000002b7 R14: 00007f2a6e59bf80 R15: 00007f2a6e59bf80 [ 538.781193][ T5094] [ 538.784193][ T5094] ---[ end trace 0000000000000000 ]--- [ 538.789892][ T5094] BTRFS: error (device loop0: state A) in create_pending_snapshot:1778: errno=-17 Object already exists [ 538.801195][ T5094] BTRFS info (device loop0: state EA): forced readonly [ 538.808055][ T5094] BTRFS warning (device loop0: state EA): Skipping commit of aborted transaction. [ 538.817371][ T5094] BTRFS: error (device loop0: state EA) in cleanup_transaction:2057: errno=-17 Object already exists [ 538.828599][ T5094] ------------[ cut here ]------------ [ 538.834162][ T5094] WARNING: CPU: 1 PID: 5094 at fs/btrfs/transaction.c:150 btrfs_put_transaction+0x201/0x210 [ 538.844268][ T5094] Modules linked in: [ 538.848150][ T5094] CPU: 1 PID: 5094 Comm: syz-executor.0 Tainted: G W 6.6.0-syzkaller-15365-g305230142ae0 #0 [ 538.859597][ T5094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 538.869682][ T5094] RIP: 0010:btrfs_put_transaction+0x201/0x210 [ 538.875834][ T5094] Code: 09 ff ff ff e8 10 a8 34 ff 0f 0b e9 41 fe ff ff e8 04 a8 34 ff 0f 0b eb 8b e8 fb a7 34 ff 0f 0b e9 b4 fe ff ff e8 ef a7 34 ff <0f> 0b e9 bd fe ff ff 0f 1f 84 00 00 00 00 00 41 56 41 55 41 54 55 [ 538.895469][ T5094] RSP: 0018:ffffc90002887bd8 EFLAGS: 00010293 [ 538.901560][ T5094] RAX: 0000000000000000 RBX: 0000000000000001 RCX: ffffffff820a3577 [ 538.909525][ T5094] RDX: ffff888104813300 RSI: ffffffff820a3731 RDI: 0000000000000005 [ 538.917524][ T5094] RBP: ffff88810bc1b400 R08: 0000000000000005 R09: 0000000000000001 [ 538.925500][ T5094] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88810bc1b410 [ 538.933574][ T5094] R13: ffff88811a426000 R14: 0000000000000000 R15: 0000000000000001 [ 538.941575][ T5094] FS: 0000555555d51480(0000) GS:ffff88813bd00000(0000) knlGS:0000000000000000 [ 538.950501][ T5094] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 538.957086][ T5094] CR2: 000055c7d243f088 CR3: 000000011aae3000 CR4: 00000000003506f0 [ 538.965070][ T5094] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 538.973050][ T5094] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 538.981029][ T5094] Call Trace: [ 538.984300][ T5094] [ 538.987212][ T5094] ? show_regs+0x8f/0xa0 [ 538.991462][ T5094] ? __warn+0x9e/0x1b0 [ 538.995526][ T5094] ? btrfs_put_transaction+0x201/0x210 [ 539.000963][ T5094] ? report_bug+0x285/0x310 [ 539.005482][ T5094] ? handle_bug+0x3c/0x70 [ 539.009794][ T5094] ? exc_invalid_op+0x17/0x40 [ 539.014475][ T5094] ? asm_exc_invalid_op+0x1a/0x20 [ 539.019504][ T5094] ? btrfs_put_transaction+0x47/0x210 [ 539.024901][ T5094] ? btrfs_put_transaction+0x201/0x210 [ 539.030363][ T5094] ? btrfs_put_transaction+0x201/0x210 [ 539.035919][ T5094] ? btrfs_put_transaction+0x201/0x210 [ 539.041424][ T5094] btrfs_commit_transaction+0x501/0x1610 [ 539.047065][ T5094] btrfs_mksubvol+0x473/0x780 [ 539.051764][ T5094] btrfs_mksnapshot+0x94/0xc0 [ 539.056447][ T5094] __btrfs_ioctl_snap_create+0x2b0/0x2c0 [ 539.062088][ T5094] btrfs_ioctl_snap_create+0x91/0xc0 [ 539.067375][ T5094] btrfs_ioctl+0x385/0x33e0 [ 539.071897][ T5094] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 539.077793][ T5094] ? do_vfs_ioctl+0x24c/0xe80 [ 539.082516][ T5094] ? btrfs_ioctl_get_supported_features+0x40/0x40 [ 539.088932][ T5094] __x64_sys_ioctl+0xf2/0x140 [ 539.093617][ T5094] do_syscall_64+0x3f/0x110 [ 539.098119][ T5094] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 539.104012][ T5094] RIP: 0033:0x7f2a6e47cae9 [ 539.108417][ T5094] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 539.128039][ T5094] RSP: 002b:00007ffeda242a98 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 539.136471][ T5094] RAX: ffffffffffffffda RBX: 00007f2a6e59bf80 RCX: 00007f2a6e47cae9 [ 539.144545][ T5094] RDX: 0000000020000a80 RSI: 0000000050009401 RDI: 0000000000000004 [ 539.152550][ T5094] RBP: 00007f2a6e4c847a R08: 0000000000000000 R09: 0000000000000000 [ 539.160516][ T5094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 539.168497][ T5094] R13: 00000000000002b7 R14: 00007f2a6e59bf80 R15: 00007f2a6e59bf80 [ 539.176478][ T5094] [ 539.179515][ T5094] ---[ end trace 0000000000000000 ]--- [ 539.189006][ T5075] BTRFS warning (device loop0: state EA): qgroup 0/5 has unreleased space, type 1 rsv 32768 [ 539.199122][ T5075] BTRFS error (device loop0: state EA): qgroup reserved space leaked [ 539.461021][ T4445] Bluetooth: hci0: command 0x0409 tx timeout [ 541.531045][ T4445] Bluetooth: hci0: command 0x041b tx timeout [ 543.611236][ T4445] Bluetooth: hci0: command 0x040f tx timeout [ 544.962387][ T5114] kmemleak: 15 new suspected memory leaks (see /sys/kernel/debug/kmemleak) [ 545.691006][ T4445] Bluetooth: hci0: command 0x0419 tx timeout BUG: memory leak unreferenced object 0xffff88810f6c6140 (size 64): comm "syz-executor.0", pid 5094, jiffies 4294991088 (age 8.480s) hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 62 6c 0f 81 88 ff ff .........bl..... 40 62 6c 0f 81 88 ff ff 00 20 52 00 00 00 00 00 @bl...... R..... backtrace: [] __kmem_cache_alloc_node+0x2dd/0x3f0 [] kmalloc_trace+0x25/0x90 [] btrfs_add_delayed_tree_ref+0x550/0x5b0 [] btrfs_alloc_tree_block+0x65b/0x7c0 [] btrfs_force_cow_block+0x1be/0xb30 [] btrfs_cow_block+0x128/0x3b0 [] btrfs_search_slot+0xa49/0x1770 [] btrfs_insert_empty_items+0x43/0xc0 [] btrfs_create_new_inode+0x354/0xfe0 [] btrfs_create_common+0xf7/0x190 [] btrfs_create+0x72/0x90 [] path_openat+0x17df/0x1d60 [] do_filp_open+0xd1/0x1c0 [] do_sys_openat2+0xf4/0x150 [] __x64_sys_openat+0xaf/0x100 [] do_syscall_64+0x3f/0x110 BUG: memory leak unreferenced object 0xffff88810f65eac0 (size 32): comm "syz-executor.0", pid 5094, jiffies 4294991089 (age 8.470s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 c8 ea 65 0f 81 88 ff ff ..........e..... c8 ea 65 0f 81 88 ff ff 00 00 00 00 00 00 00 00 ..e............. backtrace: [] __kmem_cache_alloc_node+0x2dd/0x3f0 [] kmalloc_trace+0x25/0x90 [] ulist_alloc+0x40/0xc0 [] btrfs_find_all_roots_safe+0x163/0x1c0 [] btrfs_find_all_roots+0x8b/0xd0 [] btrfs_qgroup_trace_extent_post+0xce/0x1c0 [] btrfs_add_delayed_tree_ref+0x41e/0x5b0 [] btrfs_alloc_tree_block+0x65b/0x7c0 [] btrfs_force_cow_block+0x1be/0xb30 [] btrfs_cow_block+0x128/0x3b0 [] btrfs_search_slot+0xa49/0x1770 [] btrfs_insert_empty_items+0x43/0xc0 [] btrfs_create_new_inode+0x354/0xfe0 [] btrfs_create_common+0xf7/0x190 [] btrfs_create+0x72/0x90 [] path_openat+0x17df/0x1d60 BUG: memory leak unreferenced object 0xffff88810f6c6180 (size 64): comm "syz-executor.0", pid 5094, jiffies 4294991089 (age 8.470s) hex dump (first 32 bytes): 40 62 6c 0f 81 88 ff ff 00 00 00 00 00 00 00 00 @bl............. 00 00 00 00 00 00 00 00 00 30 50 00 00 00 00 00 .........0P..... backtrace: [] __kmem_cache_alloc_node+0x2dd/0x3f0 [] kmalloc_trace+0x25/0x90 [] btrfs_add_delayed_tree_ref+0x550/0x5b0 [] btrfs_free_tree_block+0x131/0x450 [] btrfs_force_cow_block+0x6d8/0xb30 [] btrfs_cow_block+0x128/0x3b0 [] btrfs_search_slot+0xa49/0x1770 [] btrfs_insert_empty_items+0x43/0xc0 [] btrfs_create_new_inode+0x354/0xfe0 [] btrfs_create_common+0xf7/0x190 [] btrfs_create+0x72/0x90 [] path_openat+0x17df/0x1d60 [] do_filp_open+0xd1/0x1c0 [] do_sys_openat2+0xf4/0x150 [] __x64_sys_openat+0xaf/0x100 [] do_syscall_64+0x3f/0x110