[ 76.710780][ T27] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.137' (ED25519) to the list of known hosts. 2023/11/25 18:23:25 ignoring optional flag "sandboxArg"="0" 2023/11/25 18:23:25 parsed 1 programs 2023/11/25 18:23:25 executed programs: 0 [ 80.924122][ T4455] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.932138][ T4455] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.939651][ T4455] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.948173][ T4455] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.956289][ T4455] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.964252][ T4455] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 81.077634][ T5410] chnl_net:caif_netlink_parms(): no params data found [ 81.129380][ T5410] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.136595][ T5410] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.143769][ T5410] bridge_slave_0: entered allmulticast mode [ 81.150592][ T5410] bridge_slave_0: entered promiscuous mode [ 81.158269][ T5410] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.166122][ T5410] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.173404][ T5410] bridge_slave_1: entered allmulticast mode [ 81.180176][ T5410] bridge_slave_1: entered promiscuous mode [ 81.205218][ T5410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.216937][ T5410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.244463][ T5410] team0: Port device team_slave_0 added [ 81.252707][ T5410] team0: Port device team_slave_1 added [ 81.280503][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.288698][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.314818][ T5410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 81.327682][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.334695][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.360754][ T5410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.396356][ T5410] hsr_slave_0: entered promiscuous mode [ 81.402798][ T5410] hsr_slave_1: entered promiscuous mode [ 81.986173][ T5410] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.998252][ T5410] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 82.009728][ T5410] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 82.020146][ T5410] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.050947][ T5410] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.058160][ T5410] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.065940][ T5410] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.073356][ T5410] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.088298][ T23] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.099497][ T23] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.185705][ T5410] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.209610][ T5410] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.223069][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.230241][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.261152][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.268341][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.457245][ T5410] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.513544][ T5410] veth0_vlan: entered promiscuous mode [ 82.527301][ T5410] veth1_vlan: entered promiscuous mode [ 82.566769][ T5410] veth0_macvtap: entered promiscuous mode [ 82.581067][ T5410] veth1_macvtap: entered promiscuous mode [ 82.606277][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.624076][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.639060][ T5410] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.650400][ T5410] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.660669][ T5410] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.670423][ T5410] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.761799][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.769749][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.818404][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.828865][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.924195][ T5475] loop0: detected capacity change from 0 to 2048 [ 82.962535][ T5475] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.021994][ T4455] Bluetooth: hci0: command 0x0409 tx timeout [ 83.036816][ T28] audit: type=1804 audit(1700936607.492:2): pid=5475 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/0/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.075211][ T5475] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 83.091697][ T28] audit: type=1804 audit(1700936607.492:3): pid=5475 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/0/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.126151][ T5475] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 83.139436][ T28] audit: type=1804 audit(1700936607.492:4): pid=5475 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/0/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.163579][ T5475] EXT4-fs (loop0): This should not happen!! Data will be lost [ 83.163579][ T5475] [ 83.174852][ T5475] EXT4-fs (loop0): Total free blocks count 0 [ 83.180933][ T28] audit: type=1804 audit(1700936607.492:5): pid=5475 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/0/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.205353][ T5475] EXT4-fs (loop0): Free/Dirty block details [ 83.218158][ T5475] EXT4-fs (loop0): free_blocks=2415919104 [ 83.229935][ T5475] EXT4-fs (loop0): dirty_blocks=16 [ 83.235357][ T5475] EXT4-fs (loop0): Block reservation details [ 83.242862][ T5475] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 83.263686][ T48] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 83.386674][ T5495] loop0: detected capacity change from 0 to 2048 [ 83.433269][ T5495] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.476475][ T28] audit: type=1804 audit(1700936607.932:6): pid=5495 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/1/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.512343][ T28] audit: type=1804 audit(1700936607.962:7): pid=5495 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/1/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.539612][ T28] audit: type=1804 audit(1700936607.962:8): pid=5495 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/1/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.545127][ T5495] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 83.564723][ T28] audit: type=1804 audit(1700936607.962:9): pid=5495 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/1/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.607572][ T5495] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 83.620205][ T5495] EXT4-fs (loop0): This should not happen!! Data will be lost [ 83.620205][ T5495] [ 83.630356][ T5495] EXT4-fs (loop0): Total free blocks count 0 [ 83.636809][ T5495] EXT4-fs (loop0): Free/Dirty block details [ 83.643651][ T5495] EXT4-fs (loop0): free_blocks=2415919104 [ 83.649420][ T5495] EXT4-fs (loop0): dirty_blocks=16 [ 83.655022][ T5495] EXT4-fs (loop0): Block reservation details [ 83.661053][ T5495] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 83.678361][ T3270] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 83.783650][ T5512] loop0: detected capacity change from 0 to 2048 [ 83.826471][ T5512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.856225][ T28] audit: type=1804 audit(1700936608.312:10): pid=5512 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/2/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.883377][ T28] audit: type=1804 audit(1700936608.312:11): pid=5512 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2937015814/syzkaller.3agdGt/2/file0/bus" dev="loop0" ino=18 res=1 errno=0 [ 83.915110][ T5519] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 83.934852][ T5512] ------------[ cut here ]------------ [ 83.940541][ T5512] kernel BUG at fs/ext4/ext4_jbd2.c:53! [ 83.946770][ T5512] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 83.952868][ T5512] CPU: 0 PID: 5512 Comm: syz-executor.0 Not tainted 6.7.0-rc2-syzkaller-00206-gb46ae77f6787 #0 [ 83.963195][ T5512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 83.973246][ T5512] RIP: 0010:__ext4_journal_stop+0x190/0x1a0 [ 83.979145][ T5512] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 11 ff ff ff e8 4b f0 ad ff e9 07 ff ff ff e8 c1 e8 51 ff 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 66 0f 1f 00 55 41 [ 83.998744][ T5512] RSP: 0018:ffffc90004ccf180 EFLAGS: 00010293 [ 84.004825][ T5512] RAX: ffffffff823c90bf RBX: 0000000000000000 RCX: ffff88802828d940 [ 84.012828][ T5512] RDX: 0000000000000000 RSI: 0000000000000329 RDI: ffffffff8d140d5b [ 84.020881][ T5512] RBP: 0000000000000329 R08: ffffffff82424e7c R09: 1ffffffff1e0187d [ 84.028841][ T5512] R10: dffffc0000000000 R11: fffffbfff1e0187e R12: ffff888070298d00 [ 84.036904][ T5512] R13: 0000000000000024 R14: 1ffff1100e0531a0 R15: ffffffff8d140d5b [ 84.045319][ T5512] FS: 00007f04bf8776c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 84.054248][ T5512] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 84.060826][ T5512] CR2: 0000559739b1a950 CR3: 0000000072a35000 CR4: 00000000003506f0 [ 84.068799][ T5512] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 84.076797][ T5512] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 84.084759][ T5512] Call Trace: [ 84.088470][ T5512] [ 84.091401][ T5512] ? __die_body+0x8b/0xe0 [ 84.095725][ T5512] ? die+0xa1/0xd0 [ 84.099435][ T5512] ? do_trap+0x153/0x380 [ 84.103677][ T5512] ? __ext4_journal_stop+0x190/0x1a0 [ 84.108963][ T5512] ? do_error_trap+0x1dc/0x2c0 [ 84.113722][ T5512] ? __ext4_journal_stop+0x190/0x1a0 [ 84.119008][ T5512] ? do_int3+0x50/0x50 [ 84.123068][ T5512] ? report_bug+0x3e4/0x500 [ 84.127565][ T5512] ? handle_invalid_op+0x34/0x40 [ 84.132494][ T5512] ? __ext4_journal_stop+0x190/0x1a0 [ 84.137774][ T5512] ? exc_invalid_op+0x34/0x50 [ 84.142442][ T5512] ? asm_exc_invalid_op+0x1a/0x20 [ 84.147491][ T5512] ? ext4_write_inline_data_end+0xa2c/0x1020 [ 84.153463][ T5512] ? __ext4_journal_stop+0x18f/0x1a0 [ 84.158754][ T5512] ? __ext4_journal_stop+0x190/0x1a0 [ 84.164034][ T5512] ? ext4_write_inline_data_end+0xa66/0x1020 [ 84.170006][ T5512] ext4_write_inline_data_end+0xa83/0x1020 [ 84.175808][ T5512] ? folio_put+0xc0/0xc0 [ 84.180057][ T5512] ? ext4_da_write_end+0x287/0x1020 [ 84.185250][ T5512] ? ext4_da_write_begin+0xa50/0xa50 [ 84.190523][ T5512] generic_perform_write+0x419/0x630 [ 84.195807][ T5512] ? generic_file_direct_write+0x3f0/0x3f0 [ 84.201608][ T5512] ? ext4_write_checks+0x256/0x2c0 [ 84.206710][ T5512] ext4_buffered_write_iter+0xc6/0x350 [ 84.212165][ T5512] ext4_file_write_iter+0x1dc/0x19b0 [ 84.217455][ T5512] ? __stack_depot_save+0x20/0x650 [ 84.222561][ T5512] ? kasan_set_track+0x61/0x70 [ 84.227321][ T5512] ? kasan_set_track+0x4f/0x70 [ 84.232158][ T5512] ? __kasan_kmalloc+0x98/0xb0 [ 84.236926][ T5512] ? __kmalloc+0xb3/0x1a0 [ 84.241243][ T5512] ? iter_file_splice_write+0x2a9/0x1010 [ 84.246862][ T5512] ? direct_splice_actor+0xea/0x1c0 [ 84.252046][ T5512] ? ext4_file_read_iter+0x670/0x670 [ 84.257337][ T5512] ? do_syscall_64+0x45/0x110 [ 84.262007][ T5512] ? entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 84.268086][ T5512] do_iter_readv_writev+0x330/0x4a0 [ 84.273282][ T5512] ? generic_file_rw_checks+0x260/0x260 [ 84.278823][ T5512] ? fsnotify_perm+0x67/0x5a0 [ 84.283488][ T5512] ? bpf_lsm_file_permission+0x9/0x10 [ 84.288854][ T5512] do_iter_write+0x1f6/0x8d0 [ 84.293438][ T5512] ? vfs_iter_write+0x70/0xa0 [ 84.298114][ T5512] iter_file_splice_write+0x86d/0x1010 [ 84.303570][ T5512] ? splice_from_pipe+0x240/0x240 [ 84.308583][ T5512] ? __asan_memset+0x23/0x40 [ 84.313172][ T5512] ? splice_from_pipe+0x240/0x240 [ 84.318185][ T5512] direct_splice_actor+0xea/0x1c0 [ 84.323198][ T5512] splice_direct_to_actor+0x376/0x9e0 [ 84.328567][ T5512] ? direct_file_splice_eof+0xb0/0xb0 [ 84.333925][ T5512] ? warn_unsupported+0xc0/0xc0 [ 84.338764][ T5512] ? fsnotify_perm+0x67/0x5a0 [ 84.343428][ T5512] ? bpf_lsm_file_permission+0x9/0x10 [ 84.348810][ T5512] do_splice_direct+0x2ac/0x3f0 [ 84.353665][ T5512] ? splice_direct_to_actor+0x9e0/0x9e0 [ 84.359196][ T5512] ? rcu_read_lock_any_held+0xb7/0x160 [ 84.364645][ T5512] ? do_splice_direct+0x3f0/0x3f0 [ 84.369668][ T5512] do_sendfile+0x62c/0x1000 [ 84.374188][ T5512] ? rcu_is_watching+0x15/0xb0 [ 84.378968][ T5512] ? do_pwritev+0x360/0x360 [ 84.383498][ T5512] ? restore_fpregs_from_fpstate+0x100/0x250 [ 84.389569][ T5512] ? lockdep_hardirqs_on_prepare+0x43c/0x780 [ 84.395547][ T5512] __se_sys_sendfile64+0x17c/0x1e0 [ 84.400666][ T5512] ? __x64_sys_sendfile64+0xb0/0xb0 [ 84.405864][ T5512] ? syscall_enter_from_user_mode+0xa4/0x2d0 [ 84.411927][ T5512] ? syscall_enter_from_user_mode+0xa4/0x2d0 [ 84.417908][ T5512] do_syscall_64+0x45/0x110 [ 84.422401][ T5512] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 84.428285][ T5512] RIP: 0033:0x7f04bea7c959 [ 84.432696][ T5512] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 84.452289][ T5512] RSP: 002b:00007f04bf8770c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 84.460690][ T5512] RAX: ffffffffffffffda RBX: 00007f04beb9bf80 RCX: 00007f04bea7c959 [ 84.468655][ T5512] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 84.476613][ T5512] RBP: 00007f04bead8c88 R08: 0000000000000000 R09: 0000000000000000 [ 84.484576][ T5512] R10: 0000000080000041 R11: 0000000000000246 R12: 0000000000000000 [ 84.492535][ T5512] R13: 000000000000000b R14: 00007f04beb9bf80 R15: 00007ffdc81de578 [ 84.500502][ T5512] [ 84.503510][ T5512] Modules linked in: [ 84.525054][ T5512] ---[ end trace 0000000000000000 ]--- [ 84.531920][ T5512] RIP: 0010:__ext4_journal_stop+0x190/0x1a0 [ 84.538252][ T5512] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 11 ff ff ff e8 4b f0 ad ff e9 07 ff ff ff e8 c1 e8 51 ff 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 66 0f 1f 00 55 41 [ 84.559202][ T5512] RSP: 0018:ffffc90004ccf180 EFLAGS: 00010293 [ 84.565753][ T5512] RAX: ffffffff823c90bf RBX: 0000000000000000 RCX: ffff88802828d940 [ 84.574005][ T5512] RDX: 0000000000000000 RSI: 0000000000000329 RDI: ffffffff8d140d5b [ 84.583060][ T5512] RBP: 0000000000000329 R08: ffffffff82424e7c R09: 1ffffffff1e0187d [ 84.591511][ T5512] R10: dffffc0000000000 R11: fffffbfff1e0187e R12: ffff888070298d00 [ 84.599966][ T5512] R13: 0000000000000024 R14: 1ffff1100e0531a0 R15: ffffffff8d140d5b [ 84.608344][ T5512] FS: 00007f04bf8776c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 84.618225][ T5512] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 84.625777][ T5512] CR2: 00005578e23c60c8 CR3: 0000000072a35000 CR4: 00000000003506f0 [ 84.634301][ T5512] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 84.642851][ T5512] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 84.650956][ T5512] Kernel panic - not syncing: Fatal exception [ 84.657249][ T5512] Kernel Offset: disabled [ 84.661569][ T5512] Rebooting in 86400 seconds..