Warning: Permanently added '10.128.0.41' (ED25519) to the list of known hosts. 2025/08/04 01:39:45 ignoring optional flag "sandboxArg"="0" 2025/08/04 01:39:47 parsed 1 programs syzkaller login: [ 88.805200][ T5791] cgroup: Unknown subsys name 'net' [ 88.969315][ T5791] cgroup: Unknown subsys name 'rlimit' [ 90.775154][ T5791] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 92.311389][ T787] cfg80211: failed to load regulatory.db [ 92.672125][ T5806] chnl_net:caif_netlink_parms(): no params data found [ 92.750715][ T5806] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.759083][ T5806] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.767002][ T5806] bridge_slave_0: entered allmulticast mode [ 92.774244][ T5806] bridge_slave_0: entered promiscuous mode [ 92.785561][ T5806] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.792820][ T5806] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.800289][ T5806] bridge_slave_1: entered allmulticast mode [ 92.807491][ T5806] bridge_slave_1: entered promiscuous mode [ 92.838733][ T5806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.851505][ T5806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.887315][ T5806] team0: Port device team_slave_0 added [ 92.896835][ T5806] team0: Port device team_slave_1 added [ 92.925774][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.932881][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 92.958848][ T5806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.972389][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.979439][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 93.005415][ T5806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 93.051481][ T5806] hsr_slave_0: entered promiscuous mode [ 93.058744][ T5806] hsr_slave_1: entered promiscuous mode [ 93.210913][ T5806] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.223158][ T5806] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.234031][ T5806] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.244824][ T5806] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.279478][ T5806] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.286826][ T5806] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.295225][ T5806] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.302411][ T5806] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.364467][ T5806] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.386974][ T42] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.395772][ T42] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.414780][ T5806] 8021q: adding VLAN 0 to HW filter on device team0 [ 93.430122][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.437397][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 93.452076][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.459485][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 93.657825][ T5806] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.702113][ T5806] veth0_vlan: entered promiscuous mode [ 93.716167][ T5806] veth1_vlan: entered promiscuous mode [ 93.747923][ T5806] veth0_macvtap: entered promiscuous mode [ 93.761261][ T5806] veth1_macvtap: entered promiscuous mode [ 93.780175][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.795148][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.808157][ T5806] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.818133][ T5806] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.829851][ T5806] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.838624][ T5806] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.026122][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.624480][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 94.636148][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 94.644787][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 94.655881][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 94.665019][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 94.672711][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 96.676400][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.689800][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.736040][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.745788][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.048053][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/08/04 01:39:58 executed programs: 0 [ 97.956912][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 97.965663][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 97.974587][ T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 97.984429][ T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 97.994161][ T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 98.002301][ T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 98.176722][ T5902] chnl_net:caif_netlink_parms(): no params data found [ 98.252679][ T5902] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.260659][ T5902] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.268006][ T5902] bridge_slave_0: entered allmulticast mode [ 98.275878][ T5902] bridge_slave_0: entered promiscuous mode [ 98.284582][ T5902] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.292123][ T5902] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.299691][ T5902] bridge_slave_1: entered allmulticast mode [ 98.306762][ T5902] bridge_slave_1: entered promiscuous mode [ 98.340288][ T5902] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.353380][ T5902] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.389968][ T5902] team0: Port device team_slave_0 added [ 98.398540][ T5902] team0: Port device team_slave_1 added [ 98.429212][ T5902] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.436364][ T5902] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.463019][ T5902] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.476001][ T5902] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.483097][ T5902] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 98.509445][ T5902] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.556137][ T5902] hsr_slave_0: entered promiscuous mode [ 98.563241][ T5902] hsr_slave_1: entered promiscuous mode [ 98.570967][ T5902] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 98.578819][ T5902] Cannot create hsr debugfs directory [ 98.933578][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.005488][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.937703][ T5902] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 99.951676][ T5902] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 99.967940][ T5902] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 99.998485][ T12] hsr_slave_0: left promiscuous mode [ 100.005168][ T12] hsr_slave_1: left promiscuous mode [ 100.011977][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 100.019874][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 100.029108][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 100.037251][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 100.045990][ T12] bridge_slave_1: left allmulticast mode [ 100.051872][ T12] bridge_slave_1: left promiscuous mode [ 100.058590][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.070873][ T5102] Bluetooth: hci0: command tx timeout [ 100.080444][ T12] bridge_slave_0: left allmulticast mode [ 100.086166][ T12] bridge_slave_0: left promiscuous mode [ 100.093189][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.123840][ T12] veth1_macvtap: left promiscuous mode [ 100.129997][ T12] veth0_macvtap: left promiscuous mode [ 100.135713][ T12] veth1_vlan: left promiscuous mode [ 100.143305][ T12] veth0_vlan: left promiscuous mode [ 100.604254][ T12] team0 (unregistering): Port device team_slave_1 removed [ 100.642322][ T12] team0 (unregistering): Port device team_slave_0 removed [ 100.678253][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 100.714098][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 101.060345][ T12] bond0 (unregistering): Released all slaves [ 101.126265][ T5902] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 101.235214][ T5902] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.273348][ T5902] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.287107][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.294447][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.315149][ T1138] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.322431][ T1138] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.574268][ T5902] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.663917][ T5902] veth0_vlan: entered promiscuous mode [ 101.687268][ T5902] veth1_vlan: entered promiscuous mode [ 101.728435][ T5902] veth0_macvtap: entered promiscuous mode [ 101.741460][ T5902] veth1_macvtap: entered promiscuous mode [ 101.786297][ T5902] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 101.808571][ T5902] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 101.820786][ T5902] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.830612][ T5902] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.841312][ T5902] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.850321][ T5902] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.993791][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.004054][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.062626][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 102.088103][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 102.150519][ T5102] Bluetooth: hci0: command tx timeout [ 102.152284][ T5949] syz.0.17[5949]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 102.403673][ T5949] loop0: detected capacity change from 0 to 32768 [ 102.426646][ T5949] [ 102.426646][ T5949] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.426646][ T5949] [ 102.447133][ T5949] jfs_rename did not expect dtDelete to return rc = -5 [ 102.456294][ T5949] ERROR: (device loop0): jfs_rename: [ 102.456294][ T5949] [ 102.478689][ T1124] [ 102.478689][ T1124] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.478689][ T1124] [ 102.491759][ T1124] [ 102.491759][ T1124] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.491759][ T1124] [ 102.509860][ T5902] [ 102.509860][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.509860][ T5902] [ 102.550495][ T112] [ 102.550495][ T112] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.550495][ T112] [ 102.565896][ T5902] [ 102.565896][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 102.565896][ T5902] [ 103.029691][ T5950] loop0: detected capacity change from 0 to 32768 [ 103.051940][ T5950] [ 103.051940][ T5950] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.051940][ T5950] [ 103.066764][ T5950] jfs_rename did not expect dtDelete to return rc = -5 [ 103.074521][ T5950] ERROR: (device loop0): jfs_rename: [ 103.074521][ T5950] [ 103.092808][ T3475] [ 103.092808][ T3475] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.092808][ T3475] [ 103.117980][ T3475] [ 103.117980][ T3475] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.117980][ T3475] 2025/08/04 01:40:04 executed programs: 4 [ 103.133701][ T111] [ 103.133701][ T111] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.133701][ T111] [ 103.159449][ T5902] [ 103.159449][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.159449][ T5902] [ 103.182582][ T5902] [ 103.182582][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.182582][ T5902] [ 103.712424][ T5951] loop0: detected capacity change from 0 to 32768 [ 103.757246][ T5951] [ 103.757246][ T5951] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.757246][ T5951] [ 103.785050][ T5951] jfs_rename did not expect dtDelete to return rc = -5 [ 103.799679][ T5951] ERROR: (device loop0): jfs_rename: [ 103.799679][ T5951] [ 103.822921][ T1138] [ 103.822921][ T1138] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.822921][ T1138] [ 103.834079][ T1138] [ 103.834079][ T1138] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.834079][ T1138] [ 103.848459][ T111] [ 103.848459][ T111] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.848459][ T111] [ 103.864627][ T5902] [ 103.864627][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.864627][ T5902] [ 103.881892][ T5902] [ 103.881892][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 103.881892][ T5902] [ 104.239534][ T5102] Bluetooth: hci0: command tx timeout [ 104.293834][ T5952] loop0: detected capacity change from 0 to 32768 [ 104.326008][ T5952] [ 104.326008][ T5952] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 104.326008][ T5952] [ 104.352182][ T5952] jfs_rename did not expect dtDelete to return rc = -5 [ 104.359161][ T5952] ERROR: (device loop0): jfs_rename: [ 104.359161][ T5952] [ 104.407553][ T1138] [ 104.407553][ T1138] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 104.407553][ T1138] [ 104.439423][ T1138] [ 104.439423][ T1138] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 104.439423][ T1138] [ 104.454076][ T5902] [ 104.454076][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 104.454076][ T5902] [ 104.467531][ T5902] [ 104.467531][ T5902] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 104.467531][ T5902] [ 104.501156][ T112] general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN [ 104.513025][ T112] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047] [ 104.521489][ T112] CPU: 1 PID: 112 Comm: jfsCommit Not tainted 6.6.101-syzkaller #0 [ 104.529461][ T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 104.539552][ T112] RIP: 0010:lmLogSync+0x139/0x9c0 [ 104.544612][ T112] Code: 85 b3 fe 4d 8d 7e f0 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 e5 63 dd fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 c9 63 dd fe 49 8b 3f e8 11 85 b3 fe [ 104.564251][ T112] RSP: 0018:ffffc90002cc7c40 EFLAGS: 00010202 [ 104.570341][ T112] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 244bdbfa3bf5e800 [ 104.578344][ T112] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 104.586406][ T112] RBP: ffffc90002cc7d48 R08: 0000000000000004 R09: 0000000000000004 [ 104.594385][ T112] R10: ffffc90002cc7b64 R11: fffff52000598f75 R12: ffff88807afda000 [ 104.602453][ T112] R13: dffffc0000000000 R14: ffff8880771df838 R15: 0000000000000040 [ 104.610438][ T112] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 104.619386][ T112] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.626070][ T112] CR2: 00007f1f27f71fa0 CR3: 0000000078824000 CR4: 00000000003506e0 [ 104.634065][ T112] Call Trace: [ 104.637362][ T112] [ 104.640413][ T112] ? lmWriteRecord+0x1ac0/0x1ac0 [ 104.645383][ T112] ? __rwlock_init+0x150/0x150 [ 104.650171][ T112] jfs_syncpt+0x7b/0x90 [ 104.654337][ T112] txEnd+0x2e5/0x520 [ 104.658335][ T112] jfs_lazycommit+0x5a6/0xa60 [ 104.663021][ T112] ? txFreelock+0x5a0/0x5a0 [ 104.667556][ T112] ? do_task_dead+0xd0/0xd0 [ 104.672081][ T112] ? __kthread_parkme+0x7a/0x1c0 [ 104.677040][ T112] kthread+0x2fa/0x390 [ 104.681115][ T112] ? txFreelock+0x5a0/0x5a0 [ 104.685636][ T112] ? kthread_blkcg+0xd0/0xd0 [ 104.690321][ T112] ret_from_fork+0x48/0x80 [ 104.694756][ T112] ? kthread_blkcg+0xd0/0xd0 [ 104.699355][ T112] ret_from_fork_asm+0x11/0x20 [ 104.704313][ T112] [ 104.707334][ T112] Modules linked in: [ 104.723633][ T112] ---[ end trace 0000000000000000 ]--- [ 104.729298][ T112] RIP: 0010:lmLogSync+0x139/0x9c0 [ 104.734867][ T112] Code: 85 b3 fe 4d 8d 7e f0 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 e5 63 dd fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 c9 63 dd fe 49 8b 3f e8 11 85 b3 fe [ 104.773219][ T112] RSP: 0018:ffffc90002cc7c40 EFLAGS: 00010202 [ 104.781967][ T112] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 244bdbfa3bf5e800 [ 104.791415][ T112] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 104.799695][ T112] RBP: ffffc90002cc7d48 R08: 0000000000000004 R09: 0000000000000004 [ 104.807767][ T112] R10: ffffc90002cc7b64 R11: fffff52000598f75 R12: ffff88807afda000 [ 104.816313][ T112] R13: dffffc0000000000 R14: ffff8880771df838 R15: 0000000000000040 [ 104.824502][ T112] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 104.833546][ T112] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 104.840220][ T112] CR2: 00007fb4cac00000 CR3: 000000002fb90000 CR4: 00000000003506f0 [ 104.848328][ T112] Kernel panic - not syncing: Fatal exception [ 104.854802][ T112] Kernel Offset: disabled [ 104.859132][ T112] Rebooting in 86400 seconds..