DUID 00:04:a3:03:08:15:93:78:e3:1f:4c:1c:fb:56:e6:f5:4b:05 forked to background, child pid 4669 [ 49.176073][ T4670] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.197673][ T4670] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.39' (ECDSA) to the list of known hosts. syzkaller login: [ 72.460091][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.468585][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.476225][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.484624][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.492406][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.499903][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.565320][ T4999] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4999 'syz-executor421' [ 72.620336][ T4999] loop0: detected capacity change from 0 to 8192 [ 72.654035][ T4999] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 72.667283][ T4999] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 72.676793][ T4999] REISERFS (device loop0): using ordered data mode [ 72.683384][ T4999] reiserfs: using flush barriers [ 72.692514][ T4999] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 72.709125][ T4999] REISERFS (device loop0): checking transaction log (loop0) [ 72.766906][ T4999] REISERFS (device loop0): Using r5 hash to sort names [ 72.778374][ T4999] reiserfs: enabling write barrier flush mode [ 72.795414][ T5000] udevd[5000]: segfault at 60100040048 ip 0000060100040048 sp 00007fff26747488 error 14 in udevd[55b5d62bf000+b000] likely on CPU 1 (core 0, socket 0) [ 72.818342][ T5003] ------------[ cut here ]------------ [ 72.819060][ T5000] Code: Unable to access opcode bytes at 0x6010004001e. [ 72.823831][ T5003] DEBUG_LOCKS_WARN_ON(1) [ 72.823946][ T5003] WARNING: CPU: 0 PID: 5003 at kernel/locking/lockdep.c:232 __lock_acquire+0x192f/0x5f30 [ 72.835824][ T5000] general protection fault, probably for non-canonical address 0xdffffcc020008013: 0000 [#1] PREEMPT SMP KASAN [ 72.844806][ T5003] Modules linked in: [ 72.856600][ T5000] KASAN: probably user-memory-access in range [0x0000060100040098-0x000006010004009f] [ 72.860481][ T5003] CPU: 0 PID: 5003 Comm: udevd Not tainted 6.4.0-rc2-next-20230515-syzkaller #0 [ 72.870002][ T5000] CPU: 1 PID: 5000 Comm: udevd Not tainted 6.4.0-rc2-next-20230515-syzkaller #0 [ 72.879004][ T5003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 72.888030][ T5000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 72.898080][ T5003] RIP: 0010:__lock_acquire+0x192f/0x5f30 [ 72.908135][ T5000] RIP: 0010:locks_remove_posix+0xe7/0x4f0 [ 72.913773][ T5003] Code: 08 84 d2 0f 85 6b 3e 00 00 8b 0d c8 b2 15 0d 85 c9 0f 85 a3 f8 ff ff 48 c7 c6 60 74 4c 8a 48 c7 c7 20 68 4c 8a e8 81 57 e6 ff <0f> 0b e9 89 f8 ff ff c7 44 24 40 fe ff ff ff 41 be 01 00 00 00 c7 [ 72.919483][ T5000] Code: 8b a6 20 02 00 00 4d 85 e4 0f 84 03 02 00 00 e8 0f 9d 82 ff 49 8d 44 24 50 48 ba 00 00 00 00 00 fc ff df 48 89 c1 48 c1 e9 03 <80> 3c 11 00 0f 85 a4 03 00 00 49 8b 54 24 50 48 39 d0 0f 84 d0 01 [ 72.939167][ T5003] RSP: 0018:ffffc9000390fac0 EFLAGS: 00010086 [ 72.958774][ T5000] RSP: 0018:ffffc900038df950 EFLAGS: 00010202 [ 72.964925][ T5003] [ 72.964932][ T5003] RAX: 0000000000000000 RBX: 1ffff92000721f88 RCX: 0000000000000000 [ 72.970977][ T5000] RAX: 0000060100040098 RBX: 1ffff9200071bf2b RCX: 000000c020008013 [ 72.973298][ T5003] RDX: ffff88801377bb80 RSI: ffffffff814bd247 RDI: 0000000000000001 [ 72.981255][ T5000] RDX: dffffc0000000000 RSI: ffffffff820186a1 RDI: ffff888073d308e0 [ 72.989220][ T5003] RBP: ffff88801377bb80 R08: 0000000000000001 R09: 0000000000000000 [ 72.997180][ T5000] RBP: ffff888029a0cc80 R08: 0000000000000003 R09: 0000000000004000 [ 73.005145][ T5003] R10: 0000000000000000 R11: 284e4f5f4e524157 R12: ffff888073d30c58 [ 73.013106][ T5000] R10: 0000000000000000 R11: 0000000000094001 R12: 0000060100040048 [ 73.021073][ T5003] R13: 0000000000000b14 R14: ffff88801377c670 R15: ffff88801377c698 [ 73.029034][ T5000] R13: ffff8880206b3480 R14: ffff888073d306c0 R15: ffff888029a0cca0 [ 73.036992][ T5003] FS: 00007f75968b2c80(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 73.044955][ T5000] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 73.052924][ T5003] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.061840][ T5000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.070766][ T5003] CR2: 00007fff26751008 CR3: 000000001879b000 CR4: 00000000003506f0 [ 73.077347][ T5000] CR2: 0000060100040048 CR3: 000000000c571000 CR4: 00000000003506e0 [ 73.083942][ T5003] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.091920][ T5000] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.099878][ T5003] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.107847][ T5000] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.115834][ T5003] Call Trace: [ 73.115845][ T5003] [ 73.123798][ T5000] Call Trace: [ 73.123808][ T5000] [ 73.132984][ T5003] ? __lock_acquire+0xc17/0x5f30 [ 73.136252][ T5000] ? mt_destroy_walk+0xb0/0x1430 [ 73.139185][ T5003] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 73.142454][ T5000] ? do_lock_file_wait+0x390/0x390 [ 73.145381][ T5003] ? rcu_is_watching+0x12/0xb0 [ 73.150305][ T5000] ? rcu_is_watching+0x12/0xb0 [ 73.155234][ T5003] ? trace_lock_acquire+0x12d/0x180 [ 73.161206][ T5000] ? lock_release+0x4fb/0x670 [ 73.166307][ T5003] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 73.171055][ T5000] ? fsnotify_grab_connector+0x100/0x280 [ 73.175811][ T5003] lock_acquire.part.0+0x11c/0x370 [ 73.180994][ T5000] ? lock_downgrade+0x690/0x690 [ 73.185656][ T5003] ? remove_wait_queue+0x21/0x180 [ 73.191621][ T5000] ? __virt_addr_valid+0x61/0x2e0 [ 73.197239][ T5003] ? lock_sync+0x190/0x190 [ 73.202333][ T5000] ? __phys_addr+0xc8/0x140 [ 73.207233][ T5003] ? rcu_is_watching+0x12/0xb0 [ 73.212244][ T5000] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 73.217267][ T5003] ? trace_lock_acquire+0x12d/0x180 [ 73.221680][ T5000] ? task_work_add+0x18e/0x2c0 [ 73.226202][ T5003] ? remove_wait_queue+0x21/0x180 [ 73.231054][ T5000] ? task_work_func_match+0x40/0x40 [ 73.236937][ T5003] ? lock_acquire+0x32/0xc0 [ 73.242126][ T5000] ? fsnotify_find_mark+0x12a/0x170 [ 73.246877][ T5003] ? remove_wait_queue+0x21/0x180 [ 73.251895][ T5000] ? dnotify_flush+0x79/0x550 [ 73.257079][ T5003] _raw_spin_lock_irqsave+0x3d/0x60 [ 73.261569][ T5000] filp_close+0x11b/0x1a0 [ 73.266752][ T5003] ? remove_wait_queue+0x21/0x180 [ 73.271773][ T5000] put_files_struct+0x1d4/0x350 [ 73.276435][ T5003] remove_wait_queue+0x21/0x180 [ 73.281630][ T5000] exit_files+0x82/0xb0 [ 73.285943][ T5003] ep_remove_wait_queue+0x87/0x1e0 [ 73.290953][ T5000] do_exit+0xad3/0x29f0 [ 73.295790][ T5003] ep_clear_and_put+0x176/0x380 [ 73.300640][ T5000] ? mm_update_next_owner+0x7b0/0x7b0 [ 73.304789][ T5003] ep_eventpoll_release+0x45/0x60 [ 73.309972][ T5000] ? get_signal+0xce3/0x25b0 [ 73.314130][ T5003] __fput+0x27c/0xa90 [ 73.318974][ T5000] do_group_exit+0xd4/0x2a0 [ 73.324418][ T5003] ? ep_clear_and_put+0x380/0x380 [ 73.329431][ T5000] get_signal+0x2315/0x25b0 [ 73.334013][ T5003] task_work_run+0x16f/0x270 [ 73.337985][ T5000] ? exit_signals+0x910/0x910 [ 73.342470][ T5003] ? task_work_cancel+0x30/0x30 [ 73.347484][ T5000] ? force_sig_fault+0xb6/0xf0 [ 73.351979][ T5003] exit_to_user_mode_prepare+0x210/0x240 [ 73.356550][ T5000] ? force_sig+0xe0/0xe0 [ 73.361313][ T5003] syscall_exit_to_user_mode+0x1d/0x50 [ 73.366165][ T5000] arch_do_signal_or_restart+0x79/0x5c0 [ 73.370917][ T5003] do_syscall_64+0x46/0xb0 [ 73.376539][ T5000] ? get_sigframe_size+0x10/0x10 [ 73.380855][ T5003] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 73.386303][ T5000] ? rcu_is_watching+0x12/0xb0 [ 73.391923][ T5003] RIP: 0033:0x7f75965170a8 [ 73.396422][ T5000] exit_to_user_mode_prepare+0x11f/0x240 [ 73.401344][ T5003] Code: 48 8b 05 83 9d 0d 00 64 c7 00 16 00 00 00 83 c8 ff 48 83 c4 20 5b c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 5b 48 8b 15 51 9d 0d 00 f7 d8 64 89 02 48 83 [ 73.407223][ T5000] irqentry_exit_to_user_mode+0x9/0x40 [ 73.411969][ T5003] RSP: 002b:00007fff26750b28 EFLAGS: 00000246 [ 73.416371][ T5000] exc_page_fault+0xc0/0x170 [ 73.421985][ T5003] ORIG_RAX: 0000000000000003 [ 73.421998][ T5003] RAX: 0000000000000000 RBX: 00007f75968b2ae0 RCX: 00007f75965170a8 [ 73.441757][ T5000] asm_exc_page_fault+0x26/0x30 [ 73.447204][ T5003] RDX: 0000000000000080 RSI: 00007fff26750c58 RDI: 0000000000000004 [ 73.453252][ T5000] RIP: 0033:0x60100040048 [ 73.457824][ T5003] RBP: 0000000000000000 R08: 0000000000000007 R09: 8f45ebd50ebdce3c [ 73.462484][ T5000] Code: Unable to access opcode bytes at 0x6010004001e. [ 73.470531][ T5003] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000000 [ 73.475366][ T5000] RSP: 002b:00007fff26747488 EFLAGS: 00010206 [ 73.483331][ T5003] R13: 00007fff26750ba8 R14: 0000000000000001 R15: 000055b5d7e3a910 [ 73.487732][ T5000] [ 73.487739][ T5000] RAX: 0000060100040048 RBX: 00000000ffffffff RCX: 00007f7596516ab9 [ 73.495702][ T5003] [ 73.502635][ T5000] RDX: 00007fff26747494 RSI: 00007f759694bdd8 RDI: 000055b5d7e57960 [ 73.510602][ T5003] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 73.516649][ T5000] RBP: 000055b5d7e57960 R08: 000055b5d7e56b50 R09: 00007f75965f1b20 [ 73.524632][ T5000] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 73.526962][ T5000] R13: 00007f759694bdd8 R14: 0000000000080000 R15: 0000000000000000 [ 73.534946][ T5000] [ 73.537963][ T5000] Modules linked in: [ 73.561518][ T5003] Kernel Offset: disabled [ 73.590389][ T5003] Rebooting in 86400 seconds..