Warning: Permanently added '[localhost]:35347' (ED25519) to the list of known hosts.
2026/02/01 11:29:47 parsed 1 programs
syzkaller login: [   53.313175][ T5817] cgroup: Unknown subsys name 'net'
[   53.415688][ T5817] cgroup: Unknown subsys name 'cpuset'
[   53.420537][ T5817] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   54.872902][ T5817] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   57.311718][ T5835] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   59.009616][ T5877] chnl_net:caif_netlink_parms(): no params data found
[   59.091650][ T5877] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.094912][ T5877] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.099537][ T5877] bridge_slave_0: entered allmulticast mode
[   59.103654][ T5877] bridge_slave_0: entered promiscuous mode
[   59.108933][ T5877] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.111770][ T5877] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.114663][ T5877] bridge_slave_1: entered allmulticast mode
[   59.118431][ T5877] bridge_slave_1: entered promiscuous mode
[   59.146354][ T5877] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.152809][ T5877] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.179960][ T5877] team0: Port device team_slave_0 added
[   59.184887][ T5877] team0: Port device team_slave_1 added
[   59.207875][ T5877] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.210522][ T5877] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.220303][ T5877] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.226930][ T5877] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.229682][ T5877] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   59.239370][ T5877] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.278294][ T5877] hsr_slave_0: entered promiscuous mode
[   59.281484][ T5877] hsr_slave_1: entered promiscuous mode
[   59.436575][ T5877] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   59.447170][ T5877] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   59.453698][ T5877] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   59.459625][ T5877] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   59.488278][ T5877] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.491194][ T5877] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.494284][ T5877] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.496907][ T5877] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.535768][ T5877] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.544955][ T3721] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.548004][ T3721] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.556928][ T5877] 8021q: adding VLAN 0 to HW filter on device team0
[   59.565331][ T3721] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.567760][ T3721] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.574326][ T3721] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.576776][ T3721] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.697866][ T5877] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.724972][ T5877] veth0_vlan: entered promiscuous mode
[   59.729951][ T5877] veth1_vlan: entered promiscuous mode
[   59.746344][ T5877] veth0_macvtap: entered promiscuous mode
[   59.749955][ T5877] veth1_macvtap: entered promiscuous mode
[   59.759270][ T5877] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.767188][ T5877] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.775389][ T5657] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.779214][ T5657] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.783457][ T5657] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.787453][ T5891] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.869245][ T5902] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   59.870626][ T5657] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.872293][ T5902] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   59.877515][ T5902] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   59.880301][ T5902] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   59.884915][ T5902] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   59.941226][ T5657] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.024057][ T5657] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.095844][ T5657] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.326251][ T1192] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.328614][ T1192] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.347762][ T5143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.350135][ T5143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/01 11:29:56 executed programs: 0
[   60.994981][ T5219] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   60.997856][ T5219] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   61.000370][ T5219] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   61.003927][ T5219] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   61.006460][ T5219] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   61.092860][ T5938] chnl_net:caif_netlink_parms(): no params data found
[   61.138629][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.141094][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.144580][ T5938] bridge_slave_0: entered allmulticast mode
[   61.147759][ T5938] bridge_slave_0: entered promiscuous mode
[   61.155385][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.157703][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.160031][ T5938] bridge_slave_1: entered allmulticast mode
[   61.163349][ T5938] bridge_slave_1: entered promiscuous mode
[   61.179987][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.184453][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.199972][ T5938] team0: Port device team_slave_0 added
[   61.203255][ T5938] team0: Port device team_slave_1 added
[   61.217361][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.219510][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   61.227973][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.233084][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.235179][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   61.245982][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.287217][ T5938] hsr_slave_0: entered promiscuous mode
[   61.289460][ T5938] hsr_slave_1: entered promiscuous mode
[   61.291716][ T5938] debugfs: 'hsr0' already exists in 'hsr'
[   61.293907][ T5938] Cannot create hsr debugfs directory
[   63.072833][ T5902] Bluetooth: hci0: command tx timeout
[   63.078030][ T5657] bridge_slave_1: left allmulticast mode
[   63.080417][ T5657] bridge_slave_1: left promiscuous mode
[   63.083433][ T5657] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.089128][ T5657] bridge_slave_0: left allmulticast mode
[   63.090986][ T5657] bridge_slave_0: left promiscuous mode
[   63.093212][ T5657] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.292538][ T5657] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.298428][ T5657] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.303297][ T5657] bond0 (unregistering): Released all slaves
[   63.385041][ T5657] hsr_slave_0: left promiscuous mode
[   63.391022][ T5657] hsr_slave_1: left promiscuous mode
[   63.398108][ T5657] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.400942][ T5657] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.405927][ T5657] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.408388][ T5657] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.421665][ T5657] veth1_macvtap: left promiscuous mode
[   63.423846][ T5657] veth0_macvtap: left promiscuous mode
[   63.426396][ T5657] veth1_vlan: left promiscuous mode
[   63.428599][ T5657] veth0_vlan: left promiscuous mode
[   63.709605][ T5657] team0 (unregistering): Port device team_slave_1 removed
[   63.727563][ T5657] team0 (unregistering): Port device team_slave_0 removed
[   64.177707][ T5938] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   64.185051][ T5938] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   64.194016][ T5938] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   64.205451][ T5938] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   64.439799][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   64.458982][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   64.467324][ T5143] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.469841][ T5143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   64.480691][ T5143] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.483513][ T5143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   64.695306][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.738201][ T5938] veth0_vlan: entered promiscuous mode
[   64.746794][ T5938] veth1_vlan: entered promiscuous mode
[   64.785530][ T5938] veth0_macvtap: entered promiscuous mode
[   64.795340][ T5938] veth1_macvtap: entered promiscuous mode
[   64.813041][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.823133][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.835080][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.845215][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.848902][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.852451][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.902057][ T5143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.905088][ T5143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.934374][ T5143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.937408][ T5143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.136990][ T5980] loop0: detected capacity change from 0 to 40427
[   65.144618][ T5980] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   65.147193][ T5980] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   65.151582][ T5902] Bluetooth: hci0: command tx timeout
[   65.162246][ T5980] F2FS-fs (loop0): invalid crc value
[   65.195775][ T5980] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   65.201628][ T5980] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   65.203914][ T5980] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   65.212727][ T5980] /dev/loop0: Can't open blockdev
[   65.214428][ T5980] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000137: 0000 [#1] SMP KASAN PTI
[   65.218045][ T5980] KASAN: null-ptr-deref in range [0x00000000000009b8-0x00000000000009bf]
[   65.220523][ T5980] CPU: 1 UID: 0 PID: 5980 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   65.223242][ T5980] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   65.226274][ T5980] RIP: 0010:ntfs3_kill_sb+0x52/0x1c0
[   65.227870][ T5980] Code: 03 42 80 3c 38 00 74 05 e8 6b 1f 0f ff 49 8b 9e 38 06 00 00 4c 89 f7 e8 bc a2 21 ff 4c 8d b3 b8 09 00 00 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 3f 1f 0f ff 4d 8b 36 4d 85 f6 74
[   65.234286][ T5980] RSP: 0018:ffffc90004087b70 EFLAGS: 00010202
[   65.236344][ T5980] RAX: 0000000000000137 RBX: 0000000000000000 RCX: ffff88810a281d40
[   65.238933][ T5980] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 00000000ffffffff
[   65.241424][ T5980] RBP: ffffc90004087c00 R08: ffff88811696a077 R09: 1ffff11022d2d40e
[   65.243850][ T5980] R10: dffffc0000000000 R11: ffffed1022d2d40f R12: dffffc0000000000
[   65.246172][ T5980] R13: ffff88811696a638 R14: 00000000000009b8 R15: dffffc0000000000
[   65.248526][ T5980] FS:  00005555632f0500(0000) GS:ffff8882a9942000(0000) knlGS:0000000000000000
[   65.251138][ T5980] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.253112][ T5980] CR2: 00007f12cce706c0 CR3: 0000000173c4e000 CR4: 00000000000006f0
[   65.255456][ T5980] Call Trace:
[   65.256483][ T5980]  <TASK>
[   65.257411][ T5980]  deactivate_locked_super+0xbc/0x130
[   65.258964][ T5980]  get_tree_bdev_flags+0x4b4/0x560
[   65.260507][ T5980]  ? __pfx_ntfs_fill_super+0x10/0x10
[   65.262134][ T5980]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[   65.263835][ T5980]  vfs_get_tree+0x92/0x2a0
[   65.265182][ T5980]  do_new_mount+0x329/0xa50
[   65.266561][ T5980]  ? apparmor_capable+0x137/0x1a0
[   65.268061][ T5980]  ? __pfx_do_new_mount+0x10/0x10
[   65.269556][ T5980]  ? ns_capable+0x89/0xe0
[   65.270848][ T5980]  ? kmem_cache_free+0x195/0x610
[   65.272477][ T5980]  __se_sys_mount+0x31d/0x420
[   65.274014][ T5980]  ? __pfx___se_sys_mount+0x10/0x10
[   65.275592][ T5980]  ? do_syscall_64+0xb4/0xf80
[   65.277018][ T5980]  ? __x64_sys_mount+0x20/0xc0
[   65.278406][ T5980]  do_syscall_64+0xf0/0xf80
[   65.279740][ T5980]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.281524][ T5980]  ? exc_page_fault+0xa7/0xf0
[   65.283292][ T5980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.285396][ T5980] RIP: 0033:0x7f12ccf9acb9
[   65.286724][ T5980] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   65.292346][ T5980] RSP: 002b:00007ffeb8b65048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   65.294804][ T5980] RAX: ffffffffffffffda RBX: 00007f12cd215fa0 RCX: 00007f12ccf9acb9
[   65.297127][ T5980] RDX: 00002000000000c0 RSI: 0000200000000180 RDI: 0000200000000100
[   65.299435][ T5980] RBP: 00007f12cd008bf7 R08: 0000000000000000 R09: 0000000000000000
[   65.301860][ T5980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   65.304524][ T5980] R13: 00007f12cd215fac R14: 00007f12cd215fa0 R15: 00007f12cd215fa0
[   65.306848][ T5980]  </TASK>
[   65.307787][ T5980] Modules linked in:
[   65.309441][ T5980] ---[ end trace 0000000000000000 ]---
[   65.312184][ T5980] RIP: 0010:ntfs3_kill_sb+0x52/0x1c0
[   65.313743][ T5980] Code: 03 42 80 3c 38 00 74 05 e8 6b 1f 0f ff 49 8b 9e 38 06 00 00 4c 89 f7 e8 bc a2 21 ff 4c 8d b3 b8 09 00 00 4c 89 f0 48 c1 e8 03 <42> 80 3c 38 00 74 08 4c 89 f7 e8 3f 1f 0f ff 4d 8b 36 4d 85 f6 74
[   65.319697][ T5980] RSP: 0018:ffffc90004087b70 EFLAGS: 00010202
[   65.321923][ T5980] RAX: 0000000000000137 RBX: 0000000000000000 RCX: ffff88810a281d40
[   65.324359][ T5980] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 00000000ffffffff
[   65.326680][ T5980] RBP: ffffc90004087c00 R08: ffff88811696a077 R09: 1ffff11022d2d40e
[   65.329043][ T5980] R10: dffffc0000000000 R11: ffffed1022d2d40f R12: dffffc0000000000
[   65.331452][ T5980] R13: ffff88811696a638 R14: 00000000000009b8 R15: dffffc0000000000
[   65.333903][ T5980] FS:  00005555632f0500(0000) GS:ffff8882a9942000(0000) knlGS:0000000000000000
[   65.336574][ T5980] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.338681][ T5980] CR2: 00007f12cce706c0 CR3: 0000000173c4e000 CR4: 00000000000006f0
[   65.341007][ T5980] Kernel panic - not syncing: Fatal exception
[   65.343468][ T5980] Kernel Offset: disabled
[   65.344747][ T5980] Rebooting in 86400 seconds..