DUID 00:04:f8:b5:8a:47:ae:09:95:3a:43:2d:d7:42:86:31:94:89
forked to background, child pid 4658
[   38.542158][ T4659] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.553138][ T4659] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   81.586548][    T7] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.117' (ECDSA) to the list of known hosts.
[  348.034951][ T1067] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  348.042917][ T1067] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.063262][ T5017] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  348.075994][ T1067] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
executing program
[  348.083933][ T1067] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  348.092600][ T5017] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  348.114423][ T5020] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5020 'syz-executor335'
[  348.292167][ T5020] loop0: detected capacity change from 0 to 32768
[  348.317615][   T27] audit: type=1804 audit(1685609492.557:2): pid=5020 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor335" name="/root/syzkaller.tvup79/0/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  348.351348][   T27] audit: type=1804 audit(1685609492.557:3): pid=5020 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor335" name="/root/syzkaller.tvup79/0/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  348.387493][ T5021] jfs: Unrecognized mount option "'-%ÌÏðx¹Šó¼Ã½	–Ñ‘ÎòC!×dÙáÚy:bL/õ€ê_¨ïûÕ:Ï°øp¼IÐ[õQPÒ¿;(XÅ2\+V›2ÔNIâFÌAðM.IBÝíZ¤u|òo…kò<³ySºáwJø¤•	" or missing value
executing program
[  348.775012][ T5023] loop0: detected capacity change from 0 to 32768
[  348.792243][   T27] audit: type=1804 audit(1685609493.027:4): pid=5023 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor335" name="/root/syzkaller.tvup79/1/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  348.817875][   T27] audit: type=1804 audit(1685609493.047:5): pid=5023 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor335" name="/root/syzkaller.tvup79/1/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  348.873726][ T5024] jfs: Unrecognized mount option "'-%ÌÏðx¹Šó¼Ã½	–Ñ‘ÎòC!×dÙáÚy:bL/õ€ê_¨ïûÕ:Ï°øp¼IÐ[õQPÒ¿;(XÅ2\+V›2ÔNIâFÌAðM.IBÝíZ¤u|òo…kò<³ySºáwJø¤•	" or missing value
executing program
[  349.250973][ T5026] loop0: detected capacity change from 0 to 32768
[  349.267143][   T27] audit: type=1804 audit(1685609493.507:6): pid=5026 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor335" name="/root/syzkaller.tvup79/2/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  349.292699][   T27] audit: type=1804 audit(1685609493.527:7): pid=5026 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor335" name="/root/syzkaller.tvup79/2/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  349.351194][ T5027] jfs: Unrecognized mount option "'-%ÌÏðx¹Šó¼Ã½	–Ñ‘ÎòC!×dÙáÚy:bL/õ€ê_¨ïûÕ:Ï°øp¼IÐ[õQPÒ¿;(XÅ2\+V›2ÔNIâFÌAðM.IBÝíZ¤u|òo…kò<³ySºáwJø¤•	" or missing value
executing program
[  349.725011][ T5029] loop0: detected capacity change from 0 to 32768
[  349.741149][   T27] audit: type=1804 audit(1685609493.977:8): pid=5029 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor335" name="/root/syzkaller.tvup79/3/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  349.766501][   T27] audit: type=1804 audit(1685609493.977:9): pid=5029 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor335" name="/root/syzkaller.tvup79/3/bus/bus" dev="loop0" ino=7 res=1 errno=0
[  349.807010][ T5030] jfs: Unrecognized mount option "'-%ÌÏðx¹Šó¼Ã½	–Ñ‘ÎòC!×dÙáÚy:bL/õ€ê_¨ïûÕ:Ï°øp¼IÐ[õQPÒ¿;(XÅ2\+V›2ÔNIâFÌAðM.IBÝíZ¤u|òo…kò<³ySºáwJø¤•	" or missing value
[  349.840234][ T5029] ================================================================================
[  349.849842][ T5029] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_xtree.c:622:9
[  349.857516][ T5029] index 19 is out of range for type 'xad_t[18]' (aka 'struct xad[18]')
[  349.865851][ T5029] CPU: 1 PID: 5029 Comm: syz-executor335 Not tainted 6.4.0-rc4-syzkaller-00051-g48b1320a674e #0
[  349.876290][ T5029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[  349.886397][ T5029] Call Trace:
[  349.889697][ T5029]  <TASK>
[  349.892645][ T5029]  dump_stack_lvl+0x1e7/0x2d0
[  349.897419][ T5029]  ? __get_metapage+0xb2d/0x10e0
[  349.902483][ T5029]  ? nf_tcp_handle_invalid+0x650/0x650
[  349.907959][ T5029]  ? panic+0x770/0x770
[  349.912051][ T5029]  __ubsan_handle_out_of_bounds+0x11c/0x150
[  349.918034][ T5029]  xtInsert+0xf45/0xfa0
[  349.922225][ T5029]  ? xtSearch+0x1ca0/0x1ca0
[  349.926758][ T5029]  ? mark_lock+0x9a/0x340
[  349.931166][ T5029]  ? dquot_drop+0x2a0/0x2a0
[  349.935716][ T5029]  ? rcu_is_watching+0x15/0xb0
[  349.945680][ T5029]  ? __mark_inode_dirty+0x3e7/0xd90
[  349.950935][ T5029]  extAlloc+0xa64/0x1010
[  349.955202][ T5029]  ? jfs_ioc_trim+0x660/0x660
[  349.959899][ T5029]  jfs_get_block+0x41b/0xe60
[  349.964504][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  349.969556][ T5029]  ? _raw_spin_unlock+0x28/0x40
[  349.974724][ T5029]  ? folio_create_buffers+0x132/0x250
[  349.980134][ T5029]  __block_write_begin_int+0x548/0x1a50
[  349.985706][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  349.990650][ T5029]  ? PageUptodate+0x290/0x290
[  349.995329][ T5029]  ? folio_test_hugetlb+0xa0/0x1d0
[  350.000466][ T5029]  ? pagecache_get_page+0xeb/0x220
[  350.005594][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  350.010567][ T5029]  block_write_begin+0x9c/0x1f0
[  350.015418][ T5029]  ? jfs_write_begin+0x1a/0x70
[  350.020211][ T5029]  jfs_write_begin+0x31/0x70
[  350.024834][ T5029]  generic_perform_write+0x300/0x5e0
[  350.030137][ T5029]  ? generic_file_direct_write+0x460/0x460
[  350.035946][ T5029]  ? generic_file_direct_write+0x40f/0x460
[  350.041850][ T5029]  __generic_file_write_iter+0x29b/0x400
[  350.047498][ T5029]  generic_file_write_iter+0xaf/0x310
[  350.052895][ T5029]  do_iter_write+0x7b1/0xcb0
[  350.057509][ T5029]  ? vfs_iter_write+0xa0/0xa0
[  350.062211][ T5029]  ? vfs_iter_write+0x6d/0xa0
[  350.066906][ T5029]  iter_file_splice_write+0x843/0xfe0
[  350.072313][ T5029]  ? splice_from_pipe+0x230/0x230
[  350.077369][ T5029]  ? direct_splice_read+0xa10/0xa10
[  350.082583][ T5029]  ? splice_from_pipe+0x230/0x230
[  350.087617][ T5029]  direct_splice_actor+0xe7/0x1c0
[  350.092643][ T5029]  splice_direct_to_actor+0x4c4/0xbd0
[  350.098054][ T5029]  ? do_splice_direct+0x3d0/0x3d0
[  350.103084][ T5029]  ? pipe_to_sendpage+0x350/0x350
[  350.108133][ T5029]  ? fsnotify_perm+0x67/0x590
[  350.112901][ T5029]  ? bpf_lsm_file_permission+0x9/0x10
[  350.118318][ T5029]  do_splice_direct+0x283/0x3d0
[  350.123266][ T5029]  ? splice_direct_to_actor+0xbd0/0xbd0
[  350.128821][ T5029]  ? rcu_read_lock_any_held+0xb7/0x160
[  350.134304][ T5029]  do_sendfile+0x620/0xff0
[  350.138754][ T5029]  ? do_pwritev+0x360/0x360
[  350.143265][ T5029]  ? restore_fpregs_from_fpstate+0x100/0x250
[  350.149285][ T5029]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[  350.155286][ T5029]  __se_sys_sendfile64+0x17c/0x1e0
[  350.160420][ T5029]  ? __x64_sys_sendfile64+0xb0/0xb0
[  350.165630][ T5029]  ? syscall_enter_from_user_mode+0x32/0x230
[  350.171685][ T5029]  ? lockdep_hardirqs_on+0x98/0x140
[  350.176902][ T5029]  ? syscall_enter_from_user_mode+0x32/0x230
[  350.182895][ T5029]  do_syscall_64+0x41/0xc0
[  350.187324][ T5029]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  350.193285][ T5029] RIP: 0033:0x7f781e533019
[  350.197705][ T5029] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  350.217400][ T5029] RSP: 002b:00007f781e4da2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  350.225822][ T5029] RAX: ffffffffffffffda RBX: 00007f781e5be7e0 RCX: 00007f781e533019
[  350.233802][ T5029] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000009
[  350.241968][ T5029] RBP: 00007f781e58b0bc R08: 0000000000000000 R09: 0000000000000000
[  350.249943][ T5029] R10: 0001000000201004 R11: 0000000000000246 R12: 00007f781e58a098
[  350.257917][ T5029] R13: 00007f781e58af90 R14: cd3db08b6c4ec6a0 R15: 00007f781e5be7e8
[  350.265907][ T5029]  </TASK>
[  350.269200][ T5029] ================================================================================
[  350.278775][ T5029] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  350.285997][ T5029] CPU: 1 PID: 5029 Comm: syz-executor335 Not tainted 6.4.0-rc4-syzkaller-00051-g48b1320a674e #0
[  350.296425][ T5029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[  350.306484][ T5029] Call Trace:
[  350.309773][ T5029]  <TASK>
[  350.312706][ T5029]  dump_stack_lvl+0x1e7/0x2d0
[  350.317406][ T5029]  ? nf_tcp_handle_invalid+0x650/0x650
[  350.322881][ T5029]  ? panic+0x770/0x770
[  350.326973][ T5029]  ? vscnprintf+0x5d/0x80
[  350.331340][ T5029]  panic+0x30f/0x770
[  350.335248][ T5029]  ? check_panic_on_warn+0x21/0xa0
[  350.340386][ T5029]  ? __memcpy_flushcache+0x2b0/0x2b0
[  350.345681][ T5029]  ? dump_stack_lvl+0x253/0x2d0
[  350.350562][ T5029]  check_panic_on_warn+0x82/0xa0
[  350.355507][ T5029]  __ubsan_handle_out_of_bounds+0x13c/0x150
[  350.361407][ T5029]  xtInsert+0xf45/0xfa0
[  350.365577][ T5029]  ? xtSearch+0x1ca0/0x1ca0
[  350.370098][ T5029]  ? mark_lock+0x9a/0x340
[  350.374458][ T5029]  ? dquot_drop+0x2a0/0x2a0
[  350.378981][ T5029]  ? rcu_is_watching+0x15/0xb0
[  350.383748][ T5029]  ? __mark_inode_dirty+0x3e7/0xd90
[  350.388969][ T5029]  extAlloc+0xa64/0x1010
[  350.393238][ T5029]  ? jfs_ioc_trim+0x660/0x660
[  350.397941][ T5029]  jfs_get_block+0x41b/0xe60
[  350.402549][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  350.407504][ T5029]  ? _raw_spin_unlock+0x28/0x40
[  350.412363][ T5029]  ? folio_create_buffers+0x132/0x250
[  350.417744][ T5029]  __block_write_begin_int+0x548/0x1a50
[  350.423315][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  350.428259][ T5029]  ? PageUptodate+0x290/0x290
[  350.432962][ T5029]  ? folio_test_hugetlb+0xa0/0x1d0
[  350.438106][ T5029]  ? pagecache_get_page+0xeb/0x220
[  350.443229][ T5029]  ? jfs_dirty_inode+0x240/0x240
[  350.448170][ T5029]  block_write_begin+0x9c/0x1f0
[  350.453026][ T5029]  ? jfs_write_begin+0x1a/0x70
[  350.457797][ T5029]  jfs_write_begin+0x31/0x70
[  350.462396][ T5029]  generic_perform_write+0x300/0x5e0
[  350.467699][ T5029]  ? generic_file_direct_write+0x460/0x460
[  350.473537][ T5029]  ? generic_file_direct_write+0x40f/0x460
[  350.479413][ T5029]  __generic_file_write_iter+0x29b/0x400
[  350.485111][ T5029]  generic_file_write_iter+0xaf/0x310
[  350.490512][ T5029]  do_iter_write+0x7b1/0xcb0
[  350.495140][ T5029]  ? vfs_iter_write+0xa0/0xa0
[  350.499855][ T5029]  ? vfs_iter_write+0x6d/0xa0
[  350.504544][ T5029]  iter_file_splice_write+0x843/0xfe0
[  350.509940][ T5029]  ? splice_from_pipe+0x230/0x230
[  350.514972][ T5029]  ? direct_splice_read+0xa10/0xa10
[  350.520178][ T5029]  ? splice_from_pipe+0x230/0x230
[  350.525232][ T5029]  direct_splice_actor+0xe7/0x1c0
[  350.530263][ T5029]  splice_direct_to_actor+0x4c4/0xbd0
[  350.535745][ T5029]  ? do_splice_direct+0x3d0/0x3d0
[  350.540786][ T5029]  ? pipe_to_sendpage+0x350/0x350
[  350.545822][ T5029]  ? fsnotify_perm+0x67/0x590
[  350.550514][ T5029]  ? bpf_lsm_file_permission+0x9/0x10
[  350.555898][ T5029]  do_splice_direct+0x283/0x3d0
[  350.560764][ T5029]  ? splice_direct_to_actor+0xbd0/0xbd0
[  350.566320][ T5029]  ? rcu_read_lock_any_held+0xb7/0x160
[  350.571846][ T5029]  do_sendfile+0x620/0xff0
[  350.576307][ T5029]  ? do_pwritev+0x360/0x360
[  350.580910][ T5029]  ? restore_fpregs_from_fpstate+0x100/0x250
[  350.586903][ T5029]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[  350.592900][ T5029]  __se_sys_sendfile64+0x17c/0x1e0
[  350.598023][ T5029]  ? __x64_sys_sendfile64+0xb0/0xb0
[  350.603261][ T5029]  ? syscall_enter_from_user_mode+0x32/0x230
[  350.609287][ T5029]  ? lockdep_hardirqs_on+0x98/0x140
[  350.614593][ T5029]  ? syscall_enter_from_user_mode+0x32/0x230
[  350.620593][ T5029]  do_syscall_64+0x41/0xc0
[  350.625055][ T5029]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  350.630976][ T5029] RIP: 0033:0x7f781e533019
[  350.635402][ T5029] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 d1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  350.655012][ T5029] RSP: 002b:00007f781e4da2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  350.663436][ T5029] RAX: ffffffffffffffda RBX: 00007f781e5be7e0 RCX: 00007f781e533019
[  350.671415][ T5029] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000009
[  350.679429][ T5029] RBP: 00007f781e58b0bc R08: 0000000000000000 R09: 0000000000000000
[  350.687504][ T5029] R10: 0001000000201004 R11: 0000000000000246 R12: 00007f781e58a098
[  350.695491][ T5029] R13: 00007f781e58af90 R14: cd3db08b6c4ec6a0 R15: 00007f781e5be7e8
[  350.703483][ T5029]  </TASK>
[  350.706717][ T5029] Kernel Offset: disabled
[  350.711131][ T5029] Rebooting in 86400 seconds..