Warning: Permanently added '10.128.1.19' (ECDSA) to the list of known hosts. syzkaller login: [ 51.598555][ T5065] chnl_net:caif_netlink_parms(): no params data found [ 51.640314][ T5065] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.649757][ T5065] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.658031][ T5065] device bridge_slave_0 entered promiscuous mode [ 51.666855][ T5065] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.674431][ T5065] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.682172][ T5065] device bridge_slave_1 entered promiscuous mode [ 51.704055][ T5065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.715550][ T5065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.737860][ T5065] team0: Port device team_slave_0 added [ 51.745531][ T5065] team0: Port device team_slave_1 added [ 51.764226][ T5065] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 51.771289][ T5065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.798410][ T5065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 51.810904][ T5065] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 51.818070][ T5065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.843982][ T5065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 51.873533][ T5065] device hsr_slave_0 entered promiscuous mode [ 51.880437][ T5065] device hsr_slave_1 entered promiscuous mode [ 51.962231][ T5065] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 51.972430][ T5065] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 51.981634][ T5065] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 51.992194][ T5065] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 52.014267][ T5065] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.021421][ T5065] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.029435][ T5065] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.036581][ T5065] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.080785][ T5065] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.094461][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 52.106123][ T5072] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.116155][ T5072] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.124802][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 52.138581][ T5065] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.149602][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 52.158578][ T5072] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.165726][ T5072] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.185360][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 52.193710][ T5072] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.200878][ T5072] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.218936][ T5065] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 52.231814][ T5065] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 52.245343][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 52.253356][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 52.262520][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 52.273186][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 52.290947][ T5065] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.301974][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 52.310002][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 52.328686][ T5072] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 52.347948][ T5065] device veth0_vlan entered promiscuous mode [ 52.356211][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 52.367011][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 52.375541][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 52.388434][ T5065] device veth1_vlan entered promiscuous mode [ 52.406691][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 52.417012][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 52.425799][ T2498] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 52.436626][ T5065] device veth0_macvtap entered promiscuous mode [ 52.447316][ T5065] device veth1_macvtap entered promiscuous mode [ 52.463764][ T5065] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 52.471726][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 52.481815][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 52.493285][ T5065] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 52.501231][ T5074] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready executing program [ 52.514170][ T5065] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.523008][ T5065] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.532876][ T5065] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.542589][ T5065] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 52.582705][ T5065] loop0: detected capacity change from 0 to 1024 [ 52.593403][ T5065] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 96: 0x73 != 0x9b [ 52.605185][ T5065] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 52.617543][ T5065] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 52.643339][ T27] audit: type=1800 audit(1672681384.881:2): pid=5065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor308" name="bus" dev="loop0" ino=861 res=0 errno=0 [ 52.713394][ T5065] BUG: unable to handle page fault for address: ffffed101a485f22 [ 52.721150][ T5065] #PF: supervisor read access in kernel mode [ 52.727112][ T5065] #PF: error_code(0x0000) - not-present page [ 52.733070][ T5065] PGD 23ffee067 P4D 23ffee067 PUD 13fff5067 PMD 0 [ 52.739561][ T5065] Oops: 0000 [#1] PREEMPT SMP KASAN [ 52.744772][ T5065] CPU: 0 PID: 5065 Comm: syz-executor308 Not tainted 6.2.0-rc2-syzkaller #0 [ 52.753512][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 52.763633][ T5065] RIP: 0010:udf_close_lvid+0x146/0x970 [ 52.769104][ T5065] Code: dc 49 83 c4 50 0f 84 ed 00 00 00 49 8d bf c0 00 00 00 48 89 7c 24 40 31 f6 e8 d6 11 b7 07 49 8d 7c 24 18 48 89 f8 48 c1 e8 03 <42> 8a 04 28 84 c0 0f 85 17 05 00 00 4c 89 7c 24 18 4c 89 74 24 48 [ 52.788695][ T5065] RSP: 0018:ffffc90003cafa80 EFLAGS: 00010a06 [ 52.794751][ T5065] RAX: 1ffff1101a485f22 RBX: ffff888074824000 RCX: 0000000000000001 [ 52.802703][ T5065] RDX: 0000000000000000 RSI: ffffffff8aedcd40 RDI: ffff8880d242f910 [ 52.810659][ T5065] RBP: ffffc90003cafb78 R08: dffffc0000000000 R09: fffffbfff1d2cd7e [ 52.818619][ T5065] R10: fffffbfff1d2cd7e R11: 1ffffffff1d2cd7d R12: ffff8880d242f8f8 [ 52.826577][ T5065] R13: dffffc0000000000 R14: 1ffff92000795f5c R15: ffff888077654800 [ 52.834533][ T5065] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 52.843455][ T5065] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.850022][ T5065] CR2: ffffed101a485f22 CR3: 000000000d08e000 CR4: 00000000003506f0 [ 52.858421][ T5065] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 52.866381][ T5065] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 52.874336][ T5065] Call Trace: [ 52.877598][ T5065] [ 52.880518][ T5065] ? udf_open_lvid+0x590/0x590 [ 52.885275][ T5065] ? iput+0x18e/0x760 [ 52.889241][ T5065] ? clear_inode+0x150/0x150 [ 52.893820][ T5065] udf_put_super+0xc9/0x160 [ 52.898310][ T5065] ? udf_free_in_core_inode+0x20/0x20 [ 52.903682][ T5065] generic_shutdown_super+0x130/0x310 [ 52.909064][ T5065] kill_block_super+0x79/0xd0 [ 52.913733][ T5065] deactivate_locked_super+0xa7/0xf0 [ 52.919032][ T5065] cleanup_mnt+0x494/0x520 [ 52.923441][ T5065] ? lockdep_hardirqs_on+0x8d/0x130 [ 52.928620][ T5065] task_work_run+0x243/0x300 [ 52.933198][ T5065] ? task_work_cancel+0x290/0x290 [ 52.938208][ T5065] ? do_exit+0x63f/0x2150 [ 52.942524][ T5065] do_exit+0x644/0x2150 [ 52.946674][ T5065] ? mm_update_next_owner+0x6d0/0x6d0 [ 52.952116][ T5065] ? print_irqtrace_events+0x220/0x220 [ 52.957563][ T5065] ? _raw_spin_unlock_irq+0x1f/0x40 [ 52.962760][ T5065] ? lockdep_hardirqs_on+0x8d/0x130 [ 52.967960][ T5065] do_group_exit+0x1fd/0x2b0 [ 52.972540][ T5065] __x64_sys_exit_group+0x3b/0x40 [ 52.977546][ T5065] do_syscall_64+0x3d/0xb0 [ 52.981947][ T5065] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.987826][ T5065] RIP: 0033:0x7fcc18e63799 [ 52.992220][ T5065] Code: Unable to access opcode bytes at 0x7fcc18e6376f. [ 52.999216][ T5065] RSP: 002b:00007ffc45351c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 53.007609][ T5065] RAX: ffffffffffffffda RBX: 00007fcc18ed4410 RCX: 00007fcc18e63799 [ 53.015568][ T5065] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 53.023524][ T5065] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000001 [ 53.031479][ T5065] R10: 000080001d00c0d0 R11: 0000000000000246 R12: 00007fcc18ed4410 [ 53.039438][ T5065] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 53.047395][ T5065] [ 53.050395][ T5065] Modules linked in: [ 53.054274][ T5065] CR2: ffffed101a485f22 [ 53.058416][ T5065] ---[ end trace 0000000000000000 ]--- [ 53.063852][ T5065] RIP: 0010:udf_close_lvid+0x146/0x970 [ 53.069313][ T5065] Code: dc 49 83 c4 50 0f 84 ed 00 00 00 49 8d bf c0 00 00 00 48 89 7c 24 40 31 f6 e8 d6 11 b7 07 49 8d 7c 24 18 48 89 f8 48 c1 e8 03 <42> 8a 04 28 84 c0 0f 85 17 05 00 00 4c 89 7c 24 18 4c 89 74 24 48 [ 53.088901][ T5065] RSP: 0018:ffffc90003cafa80 EFLAGS: 00010a06 [ 53.094949][ T5065] RAX: 1ffff1101a485f22 RBX: ffff888074824000 RCX: 0000000000000001 [ 53.103013][ T5065] RDX: 0000000000000000 RSI: ffffffff8aedcd40 RDI: ffff8880d242f910 [ 53.110963][ T5065] RBP: ffffc90003cafb78 R08: dffffc0000000000 R09: fffffbfff1d2cd7e [ 53.118917][ T5065] R10: fffffbfff1d2cd7e R11: 1ffffffff1d2cd7d R12: ffff8880d242f8f8 [ 53.126874][ T5065] R13: dffffc0000000000 R14: 1ffff92000795f5c R15: ffff888077654800 [ 53.134828][ T5065] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 53.143757][ T5065] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.150326][ T5065] CR2: ffffed101a485f22 CR3: 000000000d08e000 CR4: 00000000003506f0 [ 53.158283][ T5065] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.166264][ T5065] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.174254][ T5065] Kernel panic - not syncing: Fatal exception [ 53.180484][ T5065] Kernel Offset: disabled [ 53.184800][ T5065] Rebooting in 86400 seconds..