Warning: Permanently added '10.128.0.223' (ED25519) to the list of known hosts. 2025/12/03 14:41:50 parsed 1 programs syzkaller login: [ 78.144718][ T5796] cgroup: Unknown subsys name 'net' [ 78.340082][ T5796] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 80.067416][ T5796] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 84.049496][ T5848] chnl_net:caif_netlink_parms(): no params data found [ 84.133730][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.141335][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.149721][ T5848] bridge_slave_0: entered allmulticast mode [ 84.157578][ T5848] bridge_slave_0: entered promiscuous mode [ 84.167275][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.175401][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.182723][ T5848] bridge_slave_1: entered allmulticast mode [ 84.190314][ T5848] bridge_slave_1: entered promiscuous mode [ 84.223698][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.235962][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.273291][ T5848] team0: Port device team_slave_0 added [ 84.281458][ T5848] team0: Port device team_slave_1 added [ 84.305393][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.314657][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.342761][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.356808][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.364068][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.390911][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.476983][ T5848] hsr_slave_0: entered promiscuous mode [ 84.490081][ T5848] hsr_slave_1: entered promiscuous mode [ 84.617815][ T5848] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.629670][ T5848] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.641141][ T5848] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.664111][ T5848] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.695956][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.703357][ T5848] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.711708][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.719054][ T5848] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.809380][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.827423][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.838275][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.867474][ T5848] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.881593][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.888784][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.905802][ T2990] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.913473][ T2990] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.151565][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.210024][ T5848] veth0_vlan: entered promiscuous mode [ 85.224826][ T5848] veth1_vlan: entered promiscuous mode [ 85.266072][ T5848] veth0_macvtap: entered promiscuous mode [ 85.278889][ T5848] veth1_macvtap: entered promiscuous mode [ 85.311581][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.329307][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.343526][ T5848] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.353562][ T5848] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.363461][ T5848] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.374619][ T5848] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.561324][ T2990] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.799356][ T2935] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.808184][ T2935] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.842121][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.851878][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.968446][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.977898][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.990415][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.998825][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 86.007685][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 86.015802][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.123031][ T27] cfg80211: failed to load regulatory.db 2025/12/03 14:42:02 executed programs: 0 [ 87.765477][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.774043][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.782088][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.794031][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.802304][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.811105][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.954680][ T5908] chnl_net:caif_netlink_parms(): no params data found [ 88.017587][ T5908] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.025530][ T5908] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.033168][ T5908] bridge_slave_0: entered allmulticast mode [ 88.039986][ T5908] bridge_slave_0: entered promiscuous mode [ 88.048193][ T5908] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.055968][ T5908] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.063629][ T5908] bridge_slave_1: entered allmulticast mode [ 88.071018][ T5908] bridge_slave_1: entered promiscuous mode [ 88.101764][ T2990] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.129188][ T5908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 88.141789][ T5908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 88.175800][ T5908] team0: Port device team_slave_0 added [ 88.184033][ T5908] team0: Port device team_slave_1 added [ 88.209367][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 88.217412][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.245493][ T5908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 88.258920][ T5908] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 88.266575][ T5908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 88.293446][ T5908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 88.333395][ T5908] hsr_slave_0: entered promiscuous mode [ 88.340200][ T5908] hsr_slave_1: entered promiscuous mode [ 88.347371][ T5908] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 88.355677][ T5908] Cannot create hsr debugfs directory [ 89.903216][ T51] Bluetooth: hci0: command tx timeout [ 90.637499][ T2990] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.720508][ T2990] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.671509][ T2990] hsr_slave_0: left promiscuous mode [ 91.684350][ T2990] hsr_slave_1: left promiscuous mode [ 91.691619][ T2990] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 91.702673][ T2990] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 91.711669][ T2990] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 91.720685][ T2990] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 91.729613][ T2990] bridge_slave_1: left allmulticast mode [ 91.736263][ T2990] bridge_slave_1: left promiscuous mode [ 91.743262][ T2990] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.757304][ T2990] bridge_slave_0: left allmulticast mode [ 91.763567][ T2990] bridge_slave_0: left promiscuous mode [ 91.769470][ T2990] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.800876][ T2990] veth1_macvtap: left promiscuous mode [ 91.808497][ T2990] veth0_macvtap: left promiscuous mode [ 91.814894][ T2990] veth1_vlan: left promiscuous mode [ 91.820498][ T2990] veth0_vlan: left promiscuous mode [ 91.999313][ T51] Bluetooth: hci0: command tx timeout [ 92.247882][ T2990] team0 (unregistering): Port device team_slave_1 removed [ 92.281613][ T2990] team0 (unregistering): Port device team_slave_0 removed [ 92.319513][ T2990] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 92.356919][ T2990] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 92.711279][ T2990] bond0 (unregistering): Released all slaves [ 92.811664][ T5908] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 92.822411][ T5908] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 92.835366][ T5908] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 92.847439][ T5908] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 92.985739][ T5908] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.012791][ T5908] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.028771][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.036253][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.049423][ T2979] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.056767][ T2979] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.328849][ T5908] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.396071][ T5908] veth0_vlan: entered promiscuous mode [ 93.413154][ T5908] veth1_vlan: entered promiscuous mode [ 93.465995][ T5908] veth0_macvtap: entered promiscuous mode [ 93.475633][ T5908] veth1_macvtap: entered promiscuous mode [ 93.496293][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.511552][ T5908] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.526293][ T5908] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.535736][ T5908] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.545417][ T5908] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.554705][ T5908] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.621609][ T2935] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.633969][ T2935] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/12/03 14:42:08 executed programs: 2 [ 93.678873][ T2953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.687317][ T2953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.747251][ T5956] syz.0.17[5956]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 94.044128][ T5956] loop0: detected capacity change from 0 to 32768 [ 94.052289][ T5956] ======================================================= [ 94.052289][ T5956] WARNING: The mand mount option has been deprecated and [ 94.052289][ T5956] and is ignored by this kernel. Remove the mand [ 94.052289][ T5956] option from the mount to silence this warning. [ 94.052289][ T5956] ======================================================= [ 94.090270][ T51] Bluetooth: hci0: command tx timeout [ 94.163003][ T5956] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 94.215459][ T5908] VFS: Lookup of '.' in ocfs2 loop0 would have caused loop [ 94.233041][ T5908] VFS: Lookup of '.' in ocfs2 loop0 would have caused loop [ 96.715540][ T5908] ocfs2: Unmounting device (7,0) on (node local) [ 96.716856][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.723130][ T5908] VFS: Busy inodes after unmount of loop0 (ocfs2) [ 96.739435][ T5908] ------------[ cut here ]------------ [ 96.752160][ T5908] kernel BUG at fs/super.c:697! [ 96.758800][ T5908] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 96.765002][ T5908] CPU: 1 PID: 5908 Comm: syz-executor Not tainted syzkaller #0 [ 96.772696][ T5908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 96.782871][ T5908] RIP: 0010:generic_shutdown_super+0x2ad/0x2b0 [ 96.789144][ T5908] Code: e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 4c 75 f0 ff 49 8b 16 48 81 c3 60 06 00 00 48 c7 c7 a0 9f b7 8a 48 89 de e8 e3 41 77 08 <0f> 0b 90 66 0f 1f 00 55 41 57 41 56 53 48 89 fb 49 bf 00 00 00 00 [ 96.809228][ T5908] RSP: 0018:ffffc900032c7bc0 EFLAGS: 00010246 [ 96.815494][ T5908] RAX: 000000000000002f RBX: ffff88802cd0c660 RCX: ba1bb83aefba4600 [ 96.823572][ T5908] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 96.831753][ T5908] RBP: 1ffff110059a18f2 R08: ffffc900032c78c7 R09: 1ffff92000658f18 [ 96.840102][ T5908] R10: dffffc0000000000 R11: fffff52000658f19 R12: 0000000000000000 [ 96.848075][ T5908] R13: dffffc0000000000 R14: ffffffff8d232180 R15: ffff88802cd0c790 [ 96.856389][ T5908] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 96.865418][ T5908] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 96.872038][ T5908] CR2: 00007ffeec8d0ff8 CR3: 000000000cb30000 CR4: 00000000003506e0 [ 96.880288][ T5908] Call Trace: [ 96.883792][ T5908] [ 96.886737][ T5908] kill_block_super+0x44/0x90 [ 96.891921][ T5908] deactivate_locked_super+0x97/0x100 [ 96.897332][ T5908] cleanup_mnt+0x429/0x4c0 [ 96.901945][ T5908] task_work_run+0x1ce/0x250 [ 96.906554][ T5908] ? task_work_cancel+0x240/0x240 [ 96.911851][ T5908] ? do_exit+0x906/0x23c0 [ 96.916206][ T5908] ? kmem_cache_free+0xf8/0x280 [ 96.921068][ T5908] do_exit+0x90b/0x23c0 [ 96.925500][ T5908] ? put_task_struct+0xc0/0xc0 [ 96.930274][ T5908] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 96.936358][ T5908] ? lock_chain_count+0x20/0x20 [ 96.941483][ T5908] ? _raw_spin_lock_irq+0xaf/0xe0 [ 96.947064][ T5908] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 96.953232][ T5908] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 96.959589][ T5908] ? _raw_spin_unlock_irq+0x23/0x50 [ 96.965061][ T5908] ? lockdep_hardirqs_on+0x98/0x150 [ 96.970497][ T5908] do_group_exit+0x21b/0x2d0 [ 96.975369][ T5908] __x64_sys_exit_group+0x3f/0x40 [ 96.980632][ T5908] do_syscall_64+0x55/0xb0 [ 96.985322][ T5908] ? clear_bhb_loop+0x40/0x90 [ 96.990111][ T5908] ? clear_bhb_loop+0x40/0x90 [ 96.994798][ T5908] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 97.000885][ T5908] RIP: 0033:0x7ff9e598f749 [ 97.005482][ T5908] Code: Unable to access opcode bytes at 0x7ff9e598f71f. [ 97.012590][ T5908] RSP: 002b:00007ffe3ef89fc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 97.021290][ T5908] RAX: ffffffffffffffda RBX: 00007ff9e5a13da2 RCX: 00007ff9e598f749 [ 97.029567][ T5908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 97.037898][ T5908] RBP: 0000000000000028 R08: 00007ffe3ef87d66 R09: 00007ffe3ef8b280 [ 97.046054][ T5908] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe3ef8b280 [ 97.054070][ T5908] R13: 00007ff9e5a13d7d R14: 0000000000016fc7 R15: 00007ffe3ef8c350 [ 97.062360][ T5908] [ 97.065563][ T5908] Modules linked in: [ 97.074737][ T5908] ---[ end trace 0000000000000000 ]--- [ 97.080610][ T5908] RIP: 0010:generic_shutdown_super+0x2ad/0x2b0 [ 97.087153][ T5908] Code: e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 4c 75 f0 ff 49 8b 16 48 81 c3 60 06 00 00 48 c7 c7 a0 9f b7 8a 48 89 de e8 e3 41 77 08 <0f> 0b 90 66 0f 1f 00 55 41 57 41 56 53 48 89 fb 49 bf 00 00 00 00 [ 97.108161][ T5908] RSP: 0018:ffffc900032c7bc0 EFLAGS: 00010246 [ 97.115039][ T5908] RAX: 000000000000002f RBX: ffff88802cd0c660 RCX: ba1bb83aefba4600 [ 97.123277][ T5908] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 97.131607][ T5908] RBP: 1ffff110059a18f2 R08: ffffc900032c78c7 R09: 1ffff92000658f18 [ 97.139639][ T5908] R10: dffffc0000000000 R11: fffff52000658f19 R12: 0000000000000000 [ 97.147911][ T5908] R13: dffffc0000000000 R14: ffffffff8d232180 R15: ffff88802cd0c790 [ 97.155947][ T5908] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 97.165245][ T5908] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 97.171930][ T5908] CR2: 00007ffeec8d0ff8 CR3: 0000000019aea000 CR4: 00000000003506e0 [ 97.180071][ T5908] Kernel panic - not syncing: Fatal exception [ 97.186541][ T5908] Kernel Offset: disabled [ 97.190966][ T5908] Rebooting in 86400 seconds..