[ 46.560233][ T2858] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.571443][ T2858] device veth1_macvtap left promiscuous mode [ 46.577784][ T2858] device veth0_macvtap left promiscuous mode [ 46.583872][ T2858] device veth1_vlan left promiscuous mode [ 46.589896][ T2858] device veth0_vlan left promiscuous mode [ 46.683059][ T2858] team0 (unregistering): Port device team_slave_1 removed [ 46.693497][ T2858] team0 (unregistering): Port device team_slave_0 removed [ 46.706315][ T2858] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 46.718974][ T2858] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 46.754228][ T2858] bond0 (unregistering): Released all slaves Warning: Permanently added '10.128.0.33' (ECDSA) to the list of known hosts. 2023/03/21 01:07:52 ignoring optional flag "sandboxArg"="0" 2023/03/21 01:07:52 parsed 1 programs 2023/03/21 01:07:52 executed programs: 0 [ 61.233135][ T4391] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.240868][ T4391] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.249181][ T4391] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.257269][ T4391] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.264770][ T4391] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.272096][ T4391] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.340109][ T5533] chnl_net:caif_netlink_parms(): no params data found [ 61.368007][ T5533] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.375081][ T5533] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.382804][ T5533] device bridge_slave_0 entered promiscuous mode [ 61.390767][ T5533] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.397872][ T5533] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.405391][ T5533] device bridge_slave_1 entered promiscuous mode [ 61.420591][ T5533] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.431173][ T5533] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.451713][ T5533] team0: Port device team_slave_0 added [ 61.458780][ T5533] team0: Port device team_slave_1 added [ 61.472657][ T5533] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.479739][ T5533] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.505753][ T5533] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.518343][ T5533] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.525376][ T5533] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.551494][ T5533] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.574039][ T5533] device hsr_slave_0 entered promiscuous mode [ 61.580880][ T5533] device hsr_slave_1 entered promiscuous mode [ 62.470553][ T5533] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.480624][ T5533] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.490926][ T5533] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.500143][ T5533] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.553089][ T5533] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.567298][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 62.574998][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 62.588040][ T5533] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.598657][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 62.607811][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 62.616165][ T3264] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.623290][ T3264] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.642971][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 62.651777][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 62.660626][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 62.670014][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.677121][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.685348][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 62.696079][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 62.704859][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 62.721204][ T5533] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.734139][ T5533] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 62.746442][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 62.755778][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 62.765131][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 62.774710][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 62.783277][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 62.792748][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 62.804174][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 62.950191][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 62.958531][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 62.970333][ T5533] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.989242][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 62.999981][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.018425][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.027007][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.035354][ T5533] device veth0_vlan entered promiscuous mode [ 63.045011][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.052697][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.064126][ T5533] device veth1_vlan entered promiscuous mode [ 63.084393][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 63.092798][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 63.102129][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 63.110847][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 63.121628][ T5533] device veth0_macvtap entered promiscuous mode [ 63.133190][ T5533] device veth1_macvtap entered promiscuous mode [ 63.148867][ T5533] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.156130][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 63.165594][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 63.173656][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 63.183868][ T3264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 63.195675][ T5533] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.205728][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 63.214884][ T5081] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 63.226196][ T5533] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.236419][ T5533] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.247025][ T5533] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.255731][ T5533] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.287205][ T5068] Bluetooth: hci0: command 0x0409 tx timeout [ 63.310544][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.323749][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.341601][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 63.351828][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.360380][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.370133][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 63.656137][ T5615] loop0: detected capacity change from 0 to 32768 [ 63.672027][ T5615] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 63.681498][ T5615] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 63.696328][ T5615] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 63.706576][ T5081] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 63.713630][ T5081] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 63.760405][ T5081] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 46ms [ 63.769104][ T5081] gfs2: fsid=syz:syz.0: jid=0: Done [ 63.774922][ T5615] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 63.899296][ T5615] gfs2: fsid=syz:syz.0: found 1 quota changes [ 63.941233][ T5533] buf->di_height: 768 [ 63.945362][ T5533] buf->di_depth: 0 [ 63.950471][ T5533] inode->i_size: 176 [ 63.954408][ T5533] ================================================================================ [ 63.964507][ T5533] UBSAN: array-index-out-of-bounds in fs/gfs2/bmap.c:898:64 [ 63.972923][ T5533] index 11 is out of range for type 'u64 [11]' [ 63.979798][ T5533] CPU: 0 PID: 5533 Comm: syz-executor.0 Not tainted 6.2.0-rc1-syzkaller-dirty #0 [ 63.988921][ T5533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 63.998984][ T5533] Call Trace: [ 64.002268][ T5533] [ 64.005206][ T5533] dump_stack_lvl+0xd1/0x138 [ 64.009816][ T5533] ubsan_epilogue+0xa/0x31 [ 64.014238][ T5533] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 64.020406][ T5533] __gfs2_iomap_get+0x152f/0x1920 [ 64.025465][ T5533] ? __gfs2_iomap_alloc+0x1e00/0x1e00 [ 64.030859][ T5533] ? prb_read_valid+0x79/0xa0 [ 64.035550][ T5533] ? prb_final_commit+0xb0/0xb0 [ 64.040416][ T5533] gfs2_iomap_get+0xb1/0x1e0 [ 64.045111][ T5533] ? gfs2_iomap_begin+0x1750/0x1750 [ 64.050335][ T5533] ? console_unlock+0x19e/0x1f0 [ 64.055211][ T5533] gfs2_block_map+0x232/0xc20 [ 64.059907][ T5533] ? gfs2_iomap_alloc+0x270/0x270 [ 64.064963][ T5533] ? __wait_on_freeing_inode+0x140/0x140 [ 64.070622][ T5533] ? gfs2_inode_refresh+0xb1/0x1070 [ 64.075847][ T5533] gfs2_write_alloc_required+0x3f1/0x510 [ 64.081508][ T5533] ? gfs2_map_journal_extents+0x7e0/0x7e0 [ 64.087253][ T5533] ? from_kgid+0x8b/0xd0 [ 64.091511][ T5533] ? from_kuid_munged+0x130/0x130 [ 64.096552][ T5533] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 64.102552][ T5533] ? from_kqid+0xf6/0x1d0 [ 64.106891][ T5533] ? qid_valid+0x130/0x130 [ 64.111322][ T5533] do_sync+0x707/0xcf0 [ 64.115421][ T5533] ? gfs2_qa_put+0x160/0x160 [ 64.120032][ T5533] ? gfs2_quota_sync+0x3f5/0x660 [ 64.124985][ T5533] ? gfs2_quota_sync+0x2e6/0x660 [ 64.129935][ T5533] ? rwlock_bug.part.0+0x90/0x90 [ 64.134984][ T5533] gfs2_quota_sync+0x2e6/0x660 [ 64.139849][ T5533] gfs2_sync_fs+0x44/0xb0 [ 64.144296][ T5533] ? rgrp_unlock_local+0x20/0x20 [ 64.149337][ T5533] sync_filesystem.part.0+0x75/0x1d0 [ 64.154636][ T5533] sync_filesystem+0x8f/0xc0 [ 64.159237][ T5533] generic_shutdown_super+0x74/0x410 [ 64.164542][ T5533] kill_block_super+0x9b/0xf0 [ 64.169236][ T5533] gfs2_kill_sb+0x108/0x170 [ 64.173754][ T5533] deactivate_locked_super+0x98/0x160 [ 64.179147][ T5533] deactivate_super+0xb1/0xd0 [ 64.183844][ T5533] cleanup_mnt+0x2ae/0x3d0 [ 64.188277][ T5533] task_work_run+0x16f/0x270 [ 64.192881][ T5533] ? task_work_cancel+0x30/0x30 [ 64.197760][ T5533] exit_to_user_mode_prepare+0x23c/0x250 [ 64.203403][ T5533] syscall_exit_to_user_mode+0x1d/0x50 [ 64.208958][ T5533] do_syscall_64+0x46/0xb0 [ 64.213389][ T5533] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 64.219315][ T5533] RIP: 0033:0x7fd4e3e8d567 [ 64.223738][ T5533] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.243355][ T5533] RSP: 002b:00007fffa68bc618 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 64.251781][ T5533] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd4e3e8d567 [ 64.259761][ T5533] RDX: 00007fffa68bc6e9 RSI: 000000000000000a RDI: 00007fffa68bc6e0 [ 64.267739][ T5533] RBP: 00007fffa68bc6e0 R08: 00000000ffffffff R09: 00007fffa68bc4b0 [ 64.275725][ T5533] R10: 0000555555c188b3 R11: 0000000000000246 R12: 00007fd4e3ee6b24 [ 64.283710][ T5533] R13: 00007fffa68bd7a0 R14: 0000555555c18810 R15: 00007fffa68bd7e0 [ 64.291703][ T5533] [ 64.300674][ T5533] ================================================================================ [ 64.311342][ T5533] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 64.318538][ T5533] CPU: 0 PID: 5533 Comm: syz-executor.0 Not tainted 6.2.0-rc1-syzkaller-dirty #0 [ 64.327656][ T5533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 64.337721][ T5533] Call Trace: [ 64.341000][ T5533] [ 64.343938][ T5533] dump_stack_lvl+0xd1/0x138 [ 64.348553][ T5533] panic+0x2cc/0x626 [ 64.352468][ T5533] ? panic_print_sys_info.part.0+0x110/0x110 [ 64.358469][ T5533] ? record_print_text.cold+0x16/0x16 [ 64.363869][ T5533] check_panic_on_warn.cold+0x19/0x35 [ 64.369257][ T5533] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 64.375428][ T5533] __gfs2_iomap_get+0x152f/0x1920 [ 64.380487][ T5533] ? __gfs2_iomap_alloc+0x1e00/0x1e00 [ 64.385880][ T5533] ? prb_read_valid+0x79/0xa0 [ 64.390571][ T5533] ? prb_final_commit+0xb0/0xb0 [ 64.395434][ T5533] gfs2_iomap_get+0xb1/0x1e0 [ 64.400037][ T5533] ? gfs2_iomap_begin+0x1750/0x1750 [ 64.405237][ T5533] ? console_unlock+0x19e/0x1f0 [ 64.410104][ T5533] gfs2_block_map+0x232/0xc20 [ 64.414800][ T5533] ? gfs2_iomap_alloc+0x270/0x270 [ 64.419846][ T5533] ? __wait_on_freeing_inode+0x140/0x140 [ 64.425487][ T5533] ? gfs2_inode_refresh+0xb1/0x1070 [ 64.430693][ T5533] gfs2_write_alloc_required+0x3f1/0x510 [ 64.436342][ T5533] ? gfs2_map_journal_extents+0x7e0/0x7e0 [ 64.442078][ T5533] ? from_kgid+0x8b/0xd0 [ 64.446336][ T5533] ? from_kuid_munged+0x130/0x130 [ 64.451369][ T5533] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 64.457283][ T5533] ? from_kqid+0xf6/0x1d0 [ 64.461617][ T5533] ? qid_valid+0x130/0x130 [ 64.466042][ T5533] do_sync+0x707/0xcf0 [ 64.470132][ T5533] ? gfs2_qa_put+0x160/0x160 [ 64.474735][ T5533] ? gfs2_quota_sync+0x3f5/0x660 [ 64.479685][ T5533] ? gfs2_quota_sync+0x2e6/0x660 [ 64.484627][ T5533] ? rwlock_bug.part.0+0x90/0x90 [ 64.489573][ T5533] gfs2_quota_sync+0x2e6/0x660 [ 64.494352][ T5533] gfs2_sync_fs+0x44/0xb0 [ 64.498692][ T5533] ? rgrp_unlock_local+0x20/0x20 [ 64.503637][ T5533] sync_filesystem.part.0+0x75/0x1d0 [ 64.508931][ T5533] sync_filesystem+0x8f/0xc0 [ 64.513539][ T5533] generic_shutdown_super+0x74/0x410 [ 64.518935][ T5533] kill_block_super+0x9b/0xf0 [ 64.523623][ T5533] gfs2_kill_sb+0x108/0x170 [ 64.528131][ T5533] deactivate_locked_super+0x98/0x160 [ 64.533522][ T5533] deactivate_super+0xb1/0xd0 [ 64.538199][ T5533] cleanup_mnt+0x2ae/0x3d0 [ 64.542619][ T5533] task_work_run+0x16f/0x270 [ 64.547211][ T5533] ? task_work_cancel+0x30/0x30 [ 64.552072][ T5533] exit_to_user_mode_prepare+0x23c/0x250 [ 64.557712][ T5533] syscall_exit_to_user_mode+0x1d/0x50 [ 64.563174][ T5533] do_syscall_64+0x46/0xb0 [ 64.567595][ T5533] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 64.573501][ T5533] RIP: 0033:0x7fd4e3e8d567 [ 64.577920][ T5533] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 64.597533][ T5533] RSP: 002b:00007fffa68bc618 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 64.605950][ T5533] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd4e3e8d567 [ 64.613914][ T5533] RDX: 00007fffa68bc6e9 RSI: 000000000000000a RDI: 00007fffa68bc6e0 [ 64.621877][ T5533] RBP: 00007fffa68bc6e0 R08: 00000000ffffffff R09: 00007fffa68bc4b0 [ 64.629840][ T5533] R10: 0000555555c188b3 R11: 0000000000000246 R12: 00007fd4e3ee6b24 [ 64.637808][ T5533] R13: 00007fffa68bd7a0 R14: 0000555555c18810 R15: 00007fffa68bd7e0 [ 64.645786][ T5533] [ 64.648873][ T5533] Kernel Offset: disabled [ 64.653294][ T5533] Rebooting in 86400 seconds..