[ 64.063008][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 64.081931][ T12] veth1_macvtap: left promiscuous mode [ 64.089206][ T12] veth0_macvtap: left promiscuous mode [ 64.094840][ T12] veth1_vlan: left promiscuous mode [ 64.100882][ T12] veth0_vlan: left promiscuous mode [ 64.348366][ T12] team0 (unregistering): Port device team_slave_1 removed [ 64.362181][ T12] team0 (unregistering): Port device team_slave_0 removed [ 64.374184][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 64.388915][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 64.445015][ T12] bond0 (unregistering): Released all slaves [ 81.873242][ T7] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts. 2023/05/22 15:01:51 ignoring optional flag "sandboxArg"="0" 2023/05/22 15:01:51 parsed 1 programs 2023/05/22 15:01:51 executed programs: 0 [ 82.976587][ T4409] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.985113][ T4409] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.993230][ T4409] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 83.001652][ T4409] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 83.010131][ T4409] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 83.017645][ T4409] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 83.121340][ T5356] chnl_net:caif_netlink_parms(): no params data found [ 83.162986][ T5356] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.170656][ T5356] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.178180][ T5356] bridge_slave_0: entered allmulticast mode [ 83.184792][ T5356] bridge_slave_0: entered promiscuous mode [ 83.192804][ T5356] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.200235][ T5356] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.207644][ T5356] bridge_slave_1: entered allmulticast mode [ 83.214223][ T5356] bridge_slave_1: entered promiscuous mode [ 83.234683][ T5356] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.245845][ T5356] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.269913][ T5356] team0: Port device team_slave_0 added [ 83.278578][ T5356] team0: Port device team_slave_1 added [ 83.297457][ T5356] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.304448][ T5356] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.330632][ T5356] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.343913][ T5356] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.351094][ T5356] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.377975][ T5356] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.407535][ T5356] hsr_slave_0: entered promiscuous mode [ 83.413686][ T5356] hsr_slave_1: entered promiscuous mode [ 83.983711][ T5356] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 83.996878][ T5356] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.007610][ T5356] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.020118][ T5356] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.047486][ T5356] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.054659][ T5356] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.062255][ T5356] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.069459][ T5356] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.109377][ T901] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.119344][ T901] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.156296][ T5356] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.174289][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 84.184574][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 84.199376][ T5356] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.213095][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 84.223127][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 84.233322][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.240614][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.257506][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 84.266402][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 84.277126][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.284512][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.294309][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 84.316908][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 84.326333][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 84.337513][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 84.346392][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 84.357364][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 84.376173][ T5356] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 84.388843][ T5356] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.403406][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 84.413448][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 84.422451][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 84.434483][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 84.445216][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 84.461764][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 84.626180][ T5356] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.634476][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 84.643589][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 84.667000][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 84.675917][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 84.699135][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 84.709199][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 84.719427][ T5356] veth0_vlan: entered promiscuous mode [ 84.727040][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 84.735755][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 84.748334][ T5356] veth1_vlan: entered promiscuous mode [ 84.774585][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 84.784113][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 84.793252][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 84.803154][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 84.814581][ T5356] veth0_macvtap: entered promiscuous mode [ 84.827461][ T5356] veth1_macvtap: entered promiscuous mode [ 84.845317][ T5356] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.854530][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 84.863751][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 84.873123][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 84.882380][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 84.894886][ T5356] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.905837][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.915579][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.927661][ T5356] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.938990][ T5356] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.948985][ T5356] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.958534][ T5356] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.030327][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.051392][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.065921][ T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.074290][ T4409] Bluetooth: hci0: command 0x0409 tx timeout [ 85.082682][ T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.091811][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.101027][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 85.169379][ T5422] loop0: detected capacity change from 0 to 512 [ 85.182163][ T5422] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 85.210270][ T5422] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.223282][ T5422] ext4 filesystem being mounted at /root/syzkaller-testdir2040047031/syzkaller.DbSRf8/0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.279756][ T5421] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3806: comm syz-executor.0: Allocating blocks 44-48 which overlap fs metadata [ 85.298429][ T5421] EXT4-fs error (device loop0): ext4_xattr_block_set:2242: inode #12: comm syz-executor.0: bad block 0 [ 85.314986][ T5421] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3806: comm syz-executor.0: Allocating blocks 44-48 which overlap fs metadata [ 85.331029][ T5421] EXT4-fs error (device loop0): ext4_xattr_block_set:2242: inode #12: comm syz-executor.0: bad block 0 [ 85.344006][ T5421] EXT4-fs error (device loop0): ext4_lookup:1853: inode #12: comm syz-executor.0: deleted inode referenced: 13 [ 85.386273][ T5356] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.472663][ T5435] loop0: detected capacity change from 0 to 512 [ 85.481005][ T5435] ext4: Unknown parameter 'jqfmZ!c12nuid32' [ 85.555446][ T5440] loop0: detected capacity change from 0 to 512 [ 85.563867][ T5440] ext4: Unknown parameter 'jqfmZ!c12nuid32' [ 85.680780][ T5447] loop0: detected capacity change from 0 to 512 [ 85.688768][ T5447] ext4: Unknown parameter 'jqfmZ!c12nuid32' [ 85.803008][ T5454] loop0: detected capacity change from 0 to 512 [ 85.812008][ T5454] ext4: Unknown parameter 'jqfmZ!c12nuid32' [ 85.894957][ T5462] loop0: detected capacity change from 0 to 512 [ 85.905686][ T5462] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 85.922620][ T5462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.935744][ T5462] ext4 filesystem being mounted at /root/syzkaller-testdir2040047031/syzkaller.DbSRf8/5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.985327][ T5461] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3806: comm syz-executor.0: Allocating blocks 44-48 which overlap fs metadata [ 86.003457][ T5461] EXT4-fs error (device loop0): ext4_xattr_block_set:2242: inode #12: comm syz-executor.0: bad block 0 [ 86.018304][ T5461] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3806: comm syz-executor.0: Allocating blocks 44-48 which overlap fs metadata [ 86.034114][ T5461] EXT4-fs error (device loop0): ext4_xattr_block_set:2242: inode #12: comm syz-executor.0: bad block 0 [ 86.048588][ T5461] EXT4-fs error (device loop0): ext4_lookup:1853: inode #12: comm syz-executor.0: deleted inode referenced: 13 [ 86.081838][ T5356] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.152953][ T5474] loop0: detected capacity change from 0 to 512 [ 86.162486][ T5474] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 86.181988][ T5474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.200335][ T5474] ext4 filesystem being mounted at /root/syzkaller-testdir2040047031/syzkaller.DbSRf8/6/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.232464][ T5473] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3806: comm syz-executor.0: Allocating blocks 44-48 which overlap fs metadata [ 86.248008][ T5473] EXT4-fs error (device loop0): ext4_xattr_block_set:2242: inode #12: comm syz-executor.0: bad block 0 [ 86.264819][ T5473] EXT4-fs error (device loop0): ext4_lookup:1851: inode #13: comm syz-executor.0: inode unexpectedly has EA_INODE flag [ 86.320279][ T5356] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.376344][ T5356] VFS: Busy inodes after unmount of loop0 (ext4) [ 86.377341][ T5356] ------------[ cut here ]------------ [ 86.389436][ T5356] kernel BUG at fs/super.c:502! [ 86.394698][ T5356] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 86.400818][ T5356] CPU: 1 PID: 5356 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller-00002-g6dc4aa72ed47 #0 [ 86.411308][ T5356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 [ 86.421382][ T5356] RIP: 0010:generic_shutdown_super+0x3bb/0x480 [ 86.427742][ T5356] Code: 6b 28 48 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c4 00 00 00 48 8b 55 00 48 8d b3 a8 06 00 00 48 c7 c7 20 ca 5b 8a e8 d5 99 81 ff <0f> 0b e8 3e 7d f0 ff e9 6a fc ff ff e8 34 7d f0 ff e9 f1 fd ff ff [ 86.447557][ T5356] RSP: 0018:ffffc90005167d90 EFLAGS: 00010282 [ 86.453731][ T5356] RAX: 000000000000002e RBX: ffff88802c0ca000 RCX: 0000000000000000 [ 86.461733][ T5356] RDX: 0000000000000000 RSI: ffffffff8168b8fc RDI: 0000000000000005 [ 86.469729][ T5356] RBP: ffffffff8ca214a0 R08: 0000000000000005 R09: 0000000000000000 [ 86.477723][ T5356] R10: 0000000080000000 R11: 0000000000000001 R12: ffff88802c0ca7d8 [ 86.485723][ T5356] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888029c719c0 [ 86.493716][ T5356] FS: 000055555557b400(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 86.502673][ T5356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.509285][ T5356] CR2: 00007f6ece980440 CR3: 0000000021a7f000 CR4: 00000000003506e0 [ 86.517379][ T5356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.525374][ T5356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 86.533366][ T5356] Call Trace: [ 86.536747][ T5356] [ 86.539781][ T5356] kill_block_super+0xa1/0x100 [ 86.544585][ T5356] deactivate_locked_super+0x98/0x160 [ 86.549995][ T5356] deactivate_super+0xb1/0xd0 [ 86.554705][ T5356] cleanup_mnt+0x2ae/0x3d0 [ 86.559150][ T5356] task_work_run+0x16f/0x270 [ 86.563769][ T5356] ? task_work_cancel+0x30/0x30 [ 86.568646][ T5356] ? __x64_sys_umount+0x118/0x190 [ 86.573711][ T5356] exit_to_user_mode_prepare+0x210/0x240 [ 86.579385][ T5356] syscall_exit_to_user_mode+0x1d/0x50 [ 86.584969][ T5356] do_syscall_64+0x46/0xb0 [ 86.589597][ T5356] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 86.595537][ T5356] RIP: 0033:0x7f566348d5d7 [ 86.599977][ T5356] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 86.620044][ T5356] RSP: 002b:00007ffd8a348f88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 86.628572][ T5356] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f566348d5d7 [ 86.636571][ T5356] RDX: 00007ffd8a349059 RSI: 000000000000000a RDI: 00007ffd8a349050 [ 86.644564][ T5356] RBP: 00007ffd8a349050 R08: 00000000ffffffff R09: 00007ffd8a348e20 [ 86.652646][ T5356] R10: 000055555557c893 R11: 0000000000000246 R12: 00007f56634e6cdc [ 86.660641][ T5356] R13: 00007ffd8a34a110 R14: 000055555557c810 R15: 00007ffd8a34a150 [ 86.668738][ T5356] [ 86.671769][ T5356] Modules linked in: [ 86.677013][ T5356] ---[ end trace 0000000000000000 ]--- [ 86.682595][ T5356] RIP: 0010:generic_shutdown_super+0x3bb/0x480 [ 86.690033][ T5356] Code: 6b 28 48 89 ea 48 c1 ea 03 80 3c 02 00 0f 85 c4 00 00 00 48 8b 55 00 48 8d b3 a8 06 00 00 48 c7 c7 20 ca 5b 8a e8 d5 99 81 ff <0f> 0b e8 3e 7d f0 ff e9 6a fc ff ff e8 34 7d f0 ff e9 f1 fd ff ff [ 86.710761][ T5356] RSP: 0018:ffffc90005167d90 EFLAGS: 00010282 [ 86.716923][ T5356] RAX: 000000000000002e RBX: ffff88802c0ca000 RCX: 0000000000000000 [ 86.725404][ T5356] RDX: 0000000000000000 RSI: ffffffff8168b8fc RDI: 0000000000000005 [ 86.734067][ T5356] RBP: ffffffff8ca214a0 R08: 0000000000000005 R09: 0000000000000000 [ 86.742607][ T5356] R10: 0000000080000000 R11: 0000000000000001 R12: ffff88802c0ca7d8 [ 86.751355][ T5356] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888029c719c0 [ 86.759635][ T5356] FS: 000055555557b400(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 86.769409][ T5356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.776204][ T5356] CR2: 00007f6ece980440 CR3: 0000000021a7f000 CR4: 00000000003506e0 [ 86.784498][ T5356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.793242][ T5356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 86.801902][ T5356] Kernel panic - not syncing: Fatal exception [ 86.808426][ T5356] Kernel Offset: disabled [ 86.812747][ T5356] Rebooting in 86400 seconds..