[ 24.107070][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.154351][ T9] device bridge_slave_0 left promiscuous mode [ 24.156093][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.195111][ T9] device veth0_macvtap left promiscuous mode [ 24.196723][ T9] device veth1_vlan left promiscuous mode [ 24.198130][ T9] device veth0_vlan left promiscuous mode [ 25.061923][ T2767] can: request_module (can-proto-0) failed. [ 25.092314][ T2767] can: request_module (can-proto-0) failed. [ 25.101094][ T2767] can: request_module (can-proto-7) failed. [ 25.110132][ T2767] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.0.82' (ED25519) to the list of known hosts. 2024/04/22 07:31:14 ignoring optional flag "sandboxArg"="0" 2024/04/22 07:31:14 parsed 1 programs 2024/04/22 07:31:14 executed programs: 0 [ 43.226276][ T3065] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.228206][ T3065] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.230290][ T3065] device bridge_slave_0 entered promiscuous mode [ 43.232746][ T3065] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.235154][ T3065] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.237249][ T3065] device bridge_slave_1 entered promiscuous mode [ 43.410971][ T3065] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.412917][ T3065] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.414941][ T3065] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.416752][ T3065] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.709550][ T23] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.711885][ T23] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.714153][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.716252][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.758975][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.761237][ T83] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.763063][ T83] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.765296][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.767555][ T83] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.769374][ T83] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.771286][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.773395][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.105112][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.151760][ T3065] device veth0_vlan entered promiscuous mode [ 44.154591][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.156961][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 44.159101][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 44.162141][ T3065] device veth1_vlan entered promiscuous mode [ 44.168065][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 44.170243][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 44.172510][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.175434][ T3065] device veth0_macvtap entered promiscuous mode [ 44.204235][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 44.224735][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 44.227124][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 44.230167][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 44.232353][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 44.496537][ T3244] loop0: detected capacity change from 0 to 1024 [ 44.548068][ T50] ================================================================== [ 44.550155][ T50] BUG: KASAN: slab-out-of-bounds in copy_page_from_iter_atomic+0x95c/0x101c [ 44.552357][ T50] Read of size 2048 at addr ffff0000d83c9800 by task kworker/u4:2/50 [ 44.554416][ T50] [ 44.554976][ T50] CPU: 1 PID: 50 Comm: kworker/u4:2 Not tainted 6.1.87-syzkaller #0 [ 44.557028][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 44.559632][ T50] Workqueue: loop0 loop_workfn [ 44.560890][ T50] Call trace: [ 44.561699][ T50] dump_backtrace+0x1c8/0x1f4 [ 44.562925][ T50] show_stack+0x2c/0x3c [ 44.564018][ T50] dump_stack_lvl+0xc0/0x104 [ 44.565213][ T50] print_report+0x174/0x4c0 [ 44.566377][ T50] kasan_report+0xcc/0x124 [ 44.567489][ T50] kasan_check_range+0x264/0x2a4 [ 44.568805][ T50] memcpy+0x48/0x90 [ 44.569760][ T50] copy_page_from_iter_atomic+0x95c/0x101c [ 44.571281][ T50] generic_perform_write+0x2fc/0x548 [ 44.572670][ T50] __generic_file_write_iter+0x168/0x388 [ 44.574094][ T50] generic_file_write_iter+0xb8/0x2b4 [ 44.575503][ T50] do_iter_write+0x534/0x964 [ 44.576744][ T50] vfs_iter_write+0x88/0xac [ 44.577905][ T50] loop_process_work+0x15a4/0x238c [ 44.579243][ T50] loop_workfn+0x54/0x68 [ 44.580295][ T50] process_one_work+0x698/0xc7c [ 44.581500][ T50] worker_thread+0x860/0xea4 [ 44.582712][ T50] kthread+0x200/0x260 [ 44.583755][ T50] ret_from_fork+0x10/0x20 [ 44.584904][ T50] [ 44.585482][ T50] Allocated by task 3244: [ 44.586591][ T50] kasan_set_track+0x4c/0x80 [ 44.587800][ T50] kasan_save_alloc_info+0x24/0x30 [ 44.589076][ T50] __kasan_kmalloc+0xac/0xc4 [ 44.590217][ T50] __kmalloc+0xc4/0x118 [ 44.591285][ T50] hfsplus_read_wrapper+0x22c/0xcb4 [ 44.592661][ T50] hfsplus_fill_super+0x2f4/0x154c [ 44.594012][ T50] mount_bdev+0x25c/0x33c [ 44.595174][ T50] hfsplus_mount+0x44/0x58 [ 44.596285][ T50] legacy_get_tree+0xd4/0x16c [ 44.597487][ T50] vfs_get_tree+0x90/0x1c0 [ 44.598651][ T50] do_new_mount+0x278/0x8fc [ 44.599819][ T50] path_mount+0x590/0xe3c [ 44.600946][ T50] __arm64_sys_mount+0x45c/0x59c [ 44.602301][ T50] invoke_syscall+0x98/0x2c0 [ 44.603517][ T50] el0_svc_common+0x134/0x24c [ 44.604721][ T50] do_el0_svc+0x64/0x218 [ 44.605791][ T50] el0_svc+0x34/0x100 [ 44.606830][ T50] el0t_64_sync_handler+0x84/0xf0 [ 44.608120][ T50] el0t_64_sync+0x18c/0x190 [ 44.609286][ T50] [ 44.609870][ T50] The buggy address belongs to the object at ffff0000d83c9800 [ 44.609870][ T50] which belongs to the cache kmalloc-512 of size 512 [ 44.613526][ T50] The buggy address is located 0 bytes inside of [ 44.613526][ T50] 512-byte region [ffff0000d83c9800, ffff0000d83c9a00) [ 44.616915][ T50] [ 44.617492][ T50] The buggy address belongs to the physical page: [ 44.619051][ T50] page:000000001bf94ca0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1183c8 [ 44.621650][ T50] head:000000001bf94ca0 order:2 compound_mapcount:0 compound_pincount:0 [ 44.623820][ T50] flags: 0x5ffe00000010200(slab|head|node=0|zone=2|lastcpupid=0xfff) [ 44.625852][ T50] raw: 05ffe00000010200 fffffc00031b5200 dead000000000002 ffff0000c0002600 [ 44.627967][ T50] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 44.630179][ T50] page dumped because: kasan: bad access detected [ 44.631854][ T50] [ 44.632439][ T50] Memory state around the buggy address: [ 44.633965][ T50] ffff0000d83c9900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.636063][ T50] ffff0000d83c9980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.638156][ T50] >ffff0000d83c9a00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.640253][ T50] ^ [ 44.641284][ T50] ffff0000d83c9a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.643378][ T50] ffff0000d83c9b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.645429][ T50] ================================================================== [ 44.647607][ T50] Disabling lock debugging due to kernel taint [ 44.658155][ T3246] loop0: detected capacity change from 0 to 1024 [ 44.709527][ T3248] loop0: detected capacity change from 0 to 1024 [ 44.757221][ T3250] loop0: detected capacity change from 0 to 1024 [ 44.816979][ T3252] loop0: detected capacity change from 0 to 1024 [ 44.867740][ T3254] loop0: detected capacity change from 0 to 1024 [ 44.907260][ T3256] loop0: detected capacity change from 0 to 1024 [ 44.975217][ T3258] loop0: detected capacity change from 0 to 1024 [ 45.025887][ T3260] loop0: detected capacity change from 0 to 1024 [ 45.067365][ T3262] loop0: detected capacity change from 0 to 1024 [ 45.115987][ T3264] loop0: detected capacity change from 0 to 1024 [ 45.155018][ T3266] loop0: detected capacity change from 0 to 1024 [ 45.236875][ T3268] loop0: detected capacity change from 0 to 1024 [ 45.286198][ T3270] loop0: detected capacity change from 0 to 1024 [ 45.346552][ T3272] loop0: detected capacity change from 0 to 1024 [ 45.387069][ T3274] loop0: detected capacity change from 0 to 1024 [ 45.437288][ T3276] loop0: detected capacity change from 0 to 1024 [ 45.508337][ T3278] loop0: detected capacity change from 0 to 1024 [ 45.547229][ T3280] loop0: detected capacity change from 0 to 1024 [ 45.575882][ T3282] loop0: detected capacity change from 0 to 1024 [ 45.615802][ T3284] loop0: detected capacity change from 0 to 1024 [ 45.656651][ T3286] loop0: detected capacity change from 0 to 1024 [ 45.697688][ T3288] loop0: detected capacity change from 0 to 1024 [ 45.745184][ T3290] loop0: detected capacity change from 0 to 1024 [ 45.804243][ T3292] loop0: detected capacity change from 0 to 1024 [ 45.855122][ T3294] loop0: detected capacity change from 0 to 1024 [ 45.981556][ T3296] loop0: detected capacity change from 0 to 1024 [ 46.044842][ T3298] loop0: detected capacity change from 0 to 1024 [ 46.096234][ T3300] loop0: detected capacity change from 0 to 1024 [ 46.166531][ T3302] loop0: detected capacity change from 0 to 1024 [ 46.226879][ T3304] loop0: detected capacity change from 0 to 1024 [ 46.276644][ T3306] loop0: detected capacity change from 0 to 1024 [ 46.347756][ T3308] loop0: detected capacity change from 0 to 1024 [ 46.386522][ T3310] loop0: detected capacity change from 0 to 1024 [ 46.436988][ T3312] loop0: detected capacity change from 0 to 1024 [ 46.486297][ T3314] loop0: detected capacity change from 0 to 1024 [ 46.567265][ T3316] loop0: detected capacity change from 0 to 1024 [ 46.618982][ T3318] loop0: detected capacity change from 0 to 1024 [ 46.666904][ T3320] loop0: detected capacity change from 0 to 1024 [ 46.727429][ T3322] loop0: detected capacity change from 0 to 1024 [ 46.816853][ T3324] loop0: detected capacity change from 0 to 1024 [ 46.861683][ T3326] loop0: detected capacity change from 0 to 1024 [ 46.920484][ T3328] loop0: detected capacity change from 0 to 1024 [ 46.975221][ T3330] loop0: detected capacity change from 0 to 1024 [ 47.035527][ T3332] loop0: detected capacity change from 0 to 1024 [ 47.076010][ T3334] loop0: detected capacity change from 0 to 1024 [ 47.126743][ T3336] loop0: detected capacity change from 0 to 1024 [ 47.184905][ T3338] loop0: detected capacity change from 0 to 1024 [ 47.225086][ T3340] loop0: detected capacity change from 0 to 1024 [ 47.289444][ T3342] loop0: detected capacity change from 0 to 1024 [ 47.351419][ T3344] loop0: detected capacity change from 0 to 1024 [ 47.388948][ T3346] loop0: detected capacity change from 0 to 1024 [ 47.435083][ T3348] loop0: detected capacity change from 0 to 1024 [ 47.484595][ T3350] loop0: detected capacity change from 0 to 1024 [ 47.525351][ T3352] loop0: detected capacity change from 0 to 1024 [ 47.586806][ T3354] loop0: detected capacity change from 0 to 1024 [ 47.634722][ T3356] loop0: detected capacity change from 0 to 1024 [ 47.685795][ T3358] loop0: detected capacity change from 0 to 1024 [ 47.746654][ T3360] loop0: detected capacity change from 0 to 1024 [ 47.806096][ T3362] loop0: detected capacity change from 0 to 1024 [ 47.857179][ T3364] loop0: detected capacity change from 0 to 1024 [ 47.916932][ T3366] loop0: detected capacity change from 0 to 1024 [ 47.968707][ T3368] loop0: detected capacity change from 0 to 1024 [ 47.999852][ T3370] loop0: detected capacity change from 0 to 1024 2024/04/22 07:31:19 executed programs: 64 [ 48.065979][ T3372] loop0: detected capacity change from 0 to 1024 [ 48.125069][ T3374] loop0: detected capacity change from 0 to 1024 [ 48.177541][ T3376] loop0: detected capacity change from 0 to 1024 [ 48.225022][ T3378] loop0: detected capacity change from 0 to 1024 [ 48.275216][ T3380] loop0: detected capacity change from 0 to 1024 [ 48.323947][ T3382] loop0: detected capacity change from 0 to 1024 [ 48.375159][ T3384] loop0: detected capacity change from 0 to 1024 [ 48.434712][ T3386] loop0: detected capacity change from 0 to 1024 [ 48.485633][ T3388] loop0: detected capacity change from 0 to 1024 [ 48.567103][ T3390] loop0: detected capacity change from 0 to 1024 [ 48.608343][ T3392] loop0: detected capacity change from 0 to 1024 [ 48.646796][ T3394] loop0: detected capacity change from 0 to 1024 [ 48.708690][ T3396] loop0: detected capacity change from 0 to 1024 [ 48.754116][ T3398] loop0: detected capacity change from 0 to 1024 [ 48.807138][ T3400] loop0: detected capacity change from 0 to 1024 [ 48.866676][ T3402] loop0: detected capacity change from 0 to 1024 [ 48.906594][ T3404] loop0: detected capacity change from 0 to 1024 [ 48.957076][ T3406] loop0: detected capacity change from 0 to 1024 [ 48.997337][ T3408] loop0: detected capacity change from 0 to 1024 [ 49.066896][ T3410] loop0: detected capacity change from 0 to 1024 [ 49.146475][ T3412] loop0: detected capacity change from 0 to 1024 [ 49.207327][ T3414] loop0: detected capacity change from 0 to 1024 [ 49.254486][ T3416] loop0: detected capacity change from 0 to 1024 [ 49.305116][ T3418] loop0: detected capacity change from 0 to 1024 [ 49.385804][ T3420] loop0: detected capacity change from 0 to 1024 [ 49.415253][ T3422] loop0: detected capacity change from 0 to 1024 [ 49.465529][ T3424] loop0: detected capacity change from 0 to 1024 [ 49.523923][ T3426] loop0: detected capacity change from 0 to 1024 [ 49.585882][ T3428] loop0: detected capacity change from 0 to 1024 [ 49.666531][ T3430] loop0: detected capacity change from 0 to 1024 [ 49.706749][ T3432] loop0: detected capacity change from 0 to 1024 [ 49.757273][ T3434] loop0: detected capacity change from 0 to 1024 [ 49.796014][ T3436] loop0: detected capacity change from 0 to 1024 [ 49.857335][ T3438] loop0: detected capacity change from 0 to 1024 [ 49.909345][ T3440] loop0: detected capacity change from 0 to 1024 [ 49.947843][ T3442] loop0: detected capacity change from 0 to 1024 [ 49.985731][ T3444] loop0: detected capacity change from 0 to 1024 [ 50.050872][ T3446] loop0: detected capacity change from 0 to 1024 [ 50.111656][ T3448] loop0: detected capacity change from 0 to 1024 [ 50.168213][ T3450] loop0: detected capacity change from 0 to 1024 [ 50.216725][ T3452] loop0: detected capacity change from 0 to 1024 [ 50.265378][ T3454] loop0: detected capacity change from 0 to 1024 [ 50.325468][ T3456] loop0: detected capacity change from 0 to 1024 [ 50.425079][ T3458] loop0: detected capacity change from 0 to 1024 [ 50.505777][ T3460] loop0: detected capacity change from 0 to 1024 [ 50.545867][ T3462] loop0: detected capacity change from 0 to 1024 [ 50.617041][ T3464] loop0: detected capacity change from 0 to 1024 [ 50.666593][ T3466] loop0: detected capacity change from 0 to 1024 [ 50.716325][ T3468] loop0: detected capacity change from 0 to 1024 [ 50.766645][ T3470] loop0: detected capacity change from 0 to 1024 [ 50.826096][ T3472] loop0: detected capacity change from 0 to 1024 [ 50.906981][ T3474] loop0: detected capacity change from 0 to 1024 [ 50.956838][ T3476] loop0: detected capacity change from 0 to 1024 [ 51.005344][ T3478] loop0: detected capacity change from 0 to 1024 [ 51.047551][ T3480] loop0: detected capacity change from 0 to 1024 [ 51.104479][ T3482] loop0: detected capacity change from 0 to 1024 [ 51.154744][ T3484] loop0: detected capacity change from 0 to 1024 [ 51.225967][ T3486] loop0: detected capacity change from 0 to 1024 [ 51.285195][ T3488] loop0: detected capacity change from 0 to 1024 [ 51.326686][ T3490] loop0: detected capacity change from 0 to 1024 [ 51.355340][ T3492] loop0: detected capacity change from 0 to 1024 [ 51.426882][ T3494] loop0: detected capacity change from 0 to 1024 [ 51.475994][ T3496] loop0: detected capacity change from 0 to 1024 [ 51.525235][ T3498] loop0: detected capacity change from 0 to 1024 [ 51.574336][ T3500] loop0: detected capacity change from 0 to 1024 [ 51.625084][ T3502] loop0: detected capacity change from 0 to 1024 [ 51.673946][ T3504] loop0: detected capacity change from 0 to 1024 [ 51.724117][ T3506] loop0: detected capacity change from 0 to 1024 [ 51.784819][ T3508] loop0: detected capacity change from 0 to 1024 [ 51.844061][ T3510] loop0: detected capacity change from 0 to 1024 [ 51.895280][ T3512] loop0: detected capacity change from 0 to 1024 [ 51.945461][ T3514] loop0: detected capacity change from 0 to 1024 [ 51.994477][ T3516] loop0: detected capacity change from 0 to 1024 [ 52.064734][ T3518] loop0: detected capacity change from 0 to 1024 [ 52.123619][ T3520] loop0: detected capacity change from 0 to 1024 [ 52.174399][ T3522] loop0: detected capacity change from 0 to 1024 [ 52.249122][ T3524] loop0: detected capacity change from 0 to 1024 [ 52.297282][ T3526] loop0: detected capacity change from 0 to 1024 [ 52.374235][ T3528] loop0: detected capacity change from 0 to 1024 [ 52.444964][ T3530] loop0: detected capacity change from 0 to 1024 [ 52.525589][ T3532] loop0: detected capacity change from 0 to 1024 [ 52.584945][ T3534] loop0: detected capacity change from 0 to 1024 [ 52.635356][ T3536] loop0: detected capacity change from 0 to 1024 [ 52.717880][ T3538] loop0: detected capacity change from 0 to 1024 [ 52.757056][ T3540] loop0: detected capacity change from 0 to 1024 [ 52.815925][ T3542] loop0: detected capacity change from 0 to 1024 [ 52.877101][ T3544] loop0: detected capacity change from 0 to 1024 [ 52.930362][ T3546] loop0: detected capacity change from 0 to 1024 [ 52.985536][ T3548] loop0: detected capacity change from 0 to 1024 [ 53.043996][ T3550] loop0: detected capacity change from 0 to 1024 2024/04/22 07:31:24 executed programs: 154 [ 53.095135][ T3552] loop0: detected capacity change from 0 to 1024 [ 53.165180][ T3554] loop0: detected capacity change from 0 to 1024 [ 53.215201][ T3556] loop0: detected capacity change from 0 to 1024 [ 53.294454][ T3558] loop0: detected capacity change from 0 to 1024 [ 53.376125][ T3560] loop0: detected capacity change from 0 to 1024 [ 53.437086][ T3562] loop0: detected capacity change from 0 to 1024 [ 53.487429][ T3564] loop0: detected capacity change from 0 to 1024 [ 53.543633][ T3566] loop0: detected capacity change from 0 to 1024 [ 53.594012][ T3568] loop0: detected capacity change from 0 to 1024 [ 53.654379][ T3570] loop0: detected capacity change from 0 to 1024 [ 53.705538][ T3572] loop0: detected capacity change from 0 to 1024 [ 53.746989][ T3574] loop0: detected capacity change from 0 to 1024 [ 53.776570][ T3576] loop0: detected capacity change from 0 to 1024 [ 53.837339][ T3578] loop0: detected capacity change from 0 to 1024 [ 53.906258][ T3580] loop0: detected capacity change from 0 to 1024 [ 53.985493][ T3582] loop0: detected capacity change from 0 to 1024 [ 54.044710][ T3584] loop0: detected capacity change from 0 to 1024 [ 54.105761][ T3586] loop0: detected capacity change from 0 to 1024 [ 54.175766][ T3588] loop0: detected capacity change from 0 to 1024 [ 54.236125][ T3590] loop0: detected capacity change from 0 to 1024 [ 54.284085][ T3592] loop0: detected capacity change from 0 to 1024 [ 54.335037][ T3594] loop0: detected capacity change from 0 to 1024 [ 54.395018][ T3596] loop0: detected capacity change from 0 to 1024 [ 54.435774][ T3598] loop0: detected capacity change from 0 to 1024 [ 54.515606][ T3600] loop0: detected capacity change from 0 to 1024