[ 10.369735][ T2658] 8021q: adding VLAN 0 to HW filter on device bond0 [ 10.377661][ T2658] eql: remember to turn off Van-Jacobson compression on your slave devices [ 10.403463][ T9] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 10.405414][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.91' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 27.979956][ T3074] loop0: detected capacity change from 0 to 65536 [ 27.986029][ T3074] XFS (loop0): Deprecated V4 format (crc=0) will not be supported after September 2030. [ 27.989093][ T3074] XFS (loop0): Mounting V4 Filesystem [ 27.991805][ T3074] XFS (loop0): totally zeroed log [ 27.994339][ T3074] XFS (loop0): Ending clean mount [ 27.997208][ T3074] XFS (loop0): Quotacheck needed: Please wait. [ 28.004586][ T3074] syz-executor353: attempt to access beyond end of device [ 28.004586][ T3074] loop0: rw=432129, sector=65535, nr_sectors = 64 limit=65536 [ 28.008919][ T50] XFS (loop0): log I/O error -5 [ 28.010305][ T50] XFS (loop0): Filesystem has been shut down due to log error (0x2). [ 28.012461][ T50] XFS (loop0): Please unmount the filesystem and rectify the problem(s). [ 28.016067][ T3074] XFS (loop0): Quotacheck: Unsuccessful (Error -5): Disabling quotas. [ 28.016169][ T50] ------------[ cut here ]------------ [ 28.019747][ T50] ODEBUG: activate active (active state 1) object type: rcu_head hint: 0x0 [ 28.022328][ T50] WARNING: CPU: 0 PID: 50 at lib/debugobjects.c:505 debug_object_activate+0x2c0/0x300 [ 28.024894][ T50] Modules linked in: [ 28.025925][ T50] CPU: 0 PID: 50 Comm: kworker/0:1H Not tainted 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0 executing program [ 28.028729][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 28.031542][ T50] Workqueue: xfs-log/loop0 xlog_ioend_work [ 28.033200][ T50] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 28.035415][ T50] pc : debug_object_activate+0x2c0/0x300 [ 28.037041][ T50] lr : debug_object_activate+0x2c0/0x300 [ 28.038644][ T50] sp : ffff80000f723880 [ 28.039806][ T50] x29: ffff80000f723880 x28: 0000000000000001 x27: 0000000000000000 [ 28.042102][ T50] x26: 0000000000000000 x25: 0000000000000000 x24: ffff0000c6ad9a50 [ 28.044395][ T50] x23: ffff80000c0cec40 x22: ffff0000c79fcc30 x21: ffff80000f143000 [ 28.046654][ T50] x20: ffff80000c0cec40 x19: ffff0000cab5a638 x18: 00000000000000c0 [ 28.048951][ T50] x17: 6820646165685f75 x16: ffff80000dbe6158 x15: ffff0000c106cec0 [ 28.051182][ T50] x14: 0000000000000000 x13: 00000000ffffffff x12: ffff0000c106cec0 [ 28.053434][ T50] x11: ff808000081c4d64 x10: 0000000000000000 x9 : 41d50f7522bc1100 [ 28.055666][ T50] x8 : 41d50f7522bc1100 x7 : ffff80000c091ebc x6 : 0000000000000000 [ 28.057958][ T50] x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 [ 28.060203][ T50] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000048 [ 28.062384][ T50] Call trace: [ 28.063311][ T50] debug_object_activate+0x2c0/0x300 [ 28.064775][ T50] call_rcu+0x40/0x494 [ 28.065922][ T50] xfs_buf_rele+0x654/0x780 [ 28.067173][ T50] xfs_buf_ioend+0x214/0x228 [ 28.068458][ T50] xfs_buf_ioend_fail+0x58/0x68 [ 28.069842][ T50] xfs_buf_item_unpin+0x18c/0x280 [ 28.071255][ T50] xfs_trans_committed_bulk+0x190/0x460 [ 28.072820][ T50] xlog_cil_committed+0xcc/0x340 [ 28.074183][ T50] xlog_cil_process_committed+0x6c/0xa8 [ 28.075743][ T50] xlog_state_shutdown_callbacks+0xac/0x140 [ 28.077454][ T50] xlog_force_shutdown+0x1ac/0x230 [ 28.078922][ T50] xlog_ioend_work+0x68/0xa0 [ 28.080200][ T50] process_one_work+0x2d8/0x504 [ 28.081624][ T50] worker_thread+0x340/0x610 [ 28.082946][ T50] kthread+0x12c/0x158 [ 28.084071][ T50] ret_from_fork+0x10/0x20 [ 28.085276][ T50] irq event stamp: 558 [ 28.086469][ T50] hardirqs last enabled at (557): [] __up_console_sem+0xb0/0xfc [ 28.089066][ T50] hardirqs last disabled at (558): [] el1_dbg+0x24/0x80 [ 28.091377][ T50] softirqs last enabled at (528): [] local_bh_enable+0x10/0x34 [ 28.093976][ T50] softirqs last disabled at (526): [] local_bh_disable+0x10/0x34 [ 28.096578][ T50] ---[ end trace 0000000000000000 ]--- [ 28.098583][ T50] ------------[ cut here ]------------ [ 28.100072][ T50] ODEBUG: active_state active (active state 1) object type: rcu_head hint: 0x0 [ 28.102717][ T50] WARNING: CPU: 0 PID: 50 at lib/debugobjects.c:505 debug_object_active_state+0x1b0/0x1dc [ 28.105397][ T50] Modules linked in: [ 28.106440][ T50] CPU: 0 PID: 50 Comm: kworker/0:1H Tainted: G W 6.1.0-rc8-syzkaller-33330-ga5541c0811a0 #0 [ 28.109579][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 28.112434][ T50] Workqueue: xfs-log/loop0 xlog_ioend_work [ 28.114035][ T50] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 28.116234][ T50] pc : debug_object_active_state+0x1b0/0x1dc [ 28.117851][ T50] lr : debug_object_active_state+0x1b0/0x1dc [ 28.119479][ T50] sp : ffff80000f723880 [ 28.120616][ T50] x29: ffff80000f723880 x28: 0000000000000001 x27: 0000000000000000 [ 28.122825][ T50] x26: 0000000000000000 x25: 0000000000000000 x24: ffff0000c79fcc30 [ 28.125007][ T50] x23: 0000000000000000 x22: 0000000000000001 x21: ffff80000f10e018 [ 28.127231][ T50] x20: ffff80000c0cec40 x19: ffff80000f143000 x18: 00000000000000c0 [ 28.129430][ T50] x17: 65685f756372203a x16: ffff80000dbe6158 x15: ffff0000c106cec0 [ 28.131663][ T50] x14: 0000000000000000 x13: 00000000ffffffff x12: ffff0000c106cec0 [ 28.133841][ T50] x11: ff808000081c4d64 x10: 0000000000000000 x9 : 41d50f7522bc1100 [ 28.136029][ T50] x8 : 41d50f7522bc1100 x7 : ffff80000c091ebc x6 : 0000000000000000 [ 28.138199][ T50] x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 [ 28.140383][ T50] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 000000000000004c [ 28.142628][ T50] Call trace: [ 28.143518][ T50] debug_object_active_state+0x1b0/0x1dc [ 28.145089][ T50] call_rcu+0x58/0x494 [ 28.146233][ T50] xfs_buf_rele+0x654/0x780 [ 28.147421][ T50] xfs_buf_ioend+0x214/0x228 [ 28.148678][ T50] xfs_buf_ioend_fail+0x58/0x68 [ 28.150028][ T50] xfs_buf_item_unpin+0x18c/0x280 [ 28.151426][ T50] xfs_trans_committed_bulk+0x190/0x460 [ 28.152981][ T50] xlog_cil_committed+0xcc/0x340 [ 28.154342][ T50] xlog_cil_process_committed+0x6c/0xa8 [ 28.155867][ T50] xlog_state_shutdown_callbacks+0xac/0x140 [ 28.157541][ T50] xlog_force_shutdown+0x1ac/0x230 [ 28.158956][ T50] xlog_ioend_work+0x68/0xa0 [ 28.160194][ T50] process_one_work+0x2d8/0x504 [ 28.161527][ T50] worker_thread+0x340/0x610 [ 28.162793][ T50] kthread+0x12c/0x158 [ 28.163930][ T50] ret_from_fork+0x10/0x20 [ 28.165139][ T50] irq event stamp: 686 [ 28.166238][ T50] hardirqs last enabled at (685): [] __up_console_sem+0xb0/0xfc [ 28.168796][ T50] hardirqs last disabled at (686): [] el1_dbg+0x24/0x80 [ 28.171121][ T50] softirqs last enabled at (658): [] _stext+0x2e4/0x37c [ 28.173484][ T50] softirqs last disabled at (561): [] ____do_softirq+0x14/0x20 [ 28.175975][ T50] ---[ end trace 0000000000000000 ]--- [ 28.177558][ T50] rcu: call_rcu(): Double-freed CB 00000000d44ae33c->0x0()!!! slab xfs_buf start ffff0000cab5a3c0 pointer offset 632 executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program