Warning: Permanently added '10.128.1.30' (ED25519) to the list of known hosts. 2023/08/02 22:14:04 ignoring optional flag "sandboxArg"="0" 2023/08/02 22:14:04 parsed 1 programs [ 44.351973][ T3517] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 2023/08/02 22:14:04 executed programs: 0 [ 44.500649][ T3525] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.502220][ T3525] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.504059][ T3525] device bridge_slave_0 entered promiscuous mode [ 44.506326][ T3525] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.507859][ T3525] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.510492][ T3525] device bridge_slave_1 entered promiscuous mode [ 44.554571][ T3525] team0: Port device team_slave_0 added [ 44.557063][ T3525] team0: Port device team_slave_1 added [ 44.631572][ T3525] device hsr_slave_0 entered promiscuous mode [ 44.698993][ T3525] device hsr_slave_1 entered promiscuous mode [ 45.512968][ T3525] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.531167][ T3525] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.569923][ T3525] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.599831][ T3525] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 45.751669][ T3525] 8021q: adding VLAN 0 to HW filter on device team0 [ 45.755475][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.757392][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.759554][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 45.761707][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.763685][ T3098] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.765280][ T3098] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.767287][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 45.771386][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 45.773345][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.775289][ T3135] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.776771][ T3135] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.785205][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 45.787307][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 45.790298][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 45.792421][ T3135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 45.796452][ T3525] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 45.798650][ T3525] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 45.802570][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 45.804540][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 45.806354][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.808747][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 45.810934][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.815067][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 46.072246][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 46.074298][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 46.126294][ T3525] device veth0_vlan entered promiscuous mode [ 46.129400][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 46.131352][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 46.133395][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 46.135149][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 46.137576][ T3525] device veth1_vlan entered promiscuous mode [ 46.144472][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 46.146319][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 46.149807][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 46.151886][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 46.154544][ T3525] device veth0_macvtap entered promiscuous mode [ 46.157062][ T3525] device veth1_macvtap entered promiscuous mode [ 46.163790][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 46.165803][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 46.167876][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 46.170261][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 46.173606][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 46.175662][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 46.432133][ T1389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.433859][ T1389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.435575][ T2872] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 46.443462][ T1389] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 46.445264][ T1389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 46.446899][ T3098] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 46.594818][ T3858] loop0: detected capacity change from 0 to 32768 [ 46.596684][ T3858] ======================================================= [ 46.596684][ T3858] WARNING: The mand mount option has been deprecated and [ 46.596684][ T3858] and is ignored by this kernel. Remove the mand [ 46.596684][ T3858] option from the mount to silence this warning. [ 46.596684][ T3858] ======================================================= [ 46.617888][ T3858] FAULT_INJECTION: forcing a failure. [ 46.617888][ T3858] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 46.621151][ T3858] CPU: 0 PID: 3858 Comm: syz-executor.0 Not tainted 6.1.42-syzkaller #0 [ 46.623050][ T3858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 46.625180][ T3858] Call trace: [ 46.625900][ T3858] dump_backtrace+0x1c8/0x1f4 [ 46.626933][ T3858] show_stack+0x2c/0x3c [ 46.627779][ T3858] dump_stack_lvl+0xc0/0x104 [ 46.628801][ T3858] dump_stack+0x1c/0x4c [ 46.629668][ T3858] should_fail_ex+0x408/0x5d4 [ 46.630731][ T3858] should_fail_alloc_page+0x68/0x7c [ 46.631800][ T3858] prepare_alloc_pages+0x198/0x538 [ 46.632932][ T3858] __alloc_pages+0x16c/0x458 [ 46.633954][ T3858] alloc_pages+0x50c/0x690 [ 46.634900][ T3858] folio_alloc+0x28/0x6c [ 46.635850][ T3858] filemap_alloc_folio+0xc4/0x458 [ 46.636979][ T3858] do_read_cache_folio+0x208/0x544 [ 46.638110][ T3858] read_cache_page+0x6c/0x180 [ 46.639148][ T3858] __get_metapage+0x240/0xe1c [ 46.640277][ T3858] diMount+0x58/0x5cc [ 46.641133][ T3858] jfs_mount_rw+0x250/0x57c [ 46.642148][ T3858] jfs_remount+0x328/0x594 [ 46.643062][ T3858] legacy_reconfigure+0xfc/0x114 [ 46.644199][ T3858] reconfigure_super+0x324/0x6dc [ 46.645284][ T3858] path_mount+0xc4c/0xe38 [ 46.646211][ T3858] __arm64_sys_mount+0x45c/0x59c [ 46.647282][ T3858] invoke_syscall+0x98/0x2c0 [ 46.648318][ T3858] el0_svc_common+0x134/0x24c [ 46.649337][ T3858] do_el0_svc+0x64/0x218 [ 46.650238][ T3858] el0_svc+0x34/0x100 [ 46.651107][ T3858] el0t_64_sync_handler+0x84/0xf0 [ 46.652216][ T3858] el0t_64_sync+0x18c/0x190 [ 46.655022][ T3858] read_mapping_page failed! [ 46.655980][ T3858] jfs_mount_rw: diMount failed! [ 46.660485][ T3525] ================================================================== [ 46.662160][ T3525] BUG: KASAN: double-free in kfree+0x88/0xb8 [ 46.663474][ T3525] Free of addr ffff0000d34b0000 by task syz-executor.0/3525 [ 46.665080][ T3525] [ 46.665544][ T3525] CPU: 0 PID: 3525 Comm: syz-executor.0 Not tainted 6.1.42-syzkaller #0 [ 46.667286][ T3525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 46.669518][ T3525] Call trace: [ 46.670245][ T3525] dump_backtrace+0x1c8/0x1f4 [ 46.671225][ T3525] show_stack+0x2c/0x3c [ 46.672158][ T3525] dump_stack_lvl+0xc0/0x104 [ 46.673116][ T3525] print_report+0x174/0x4c0 [ 46.674103][ T3525] kasan_report_invalid_free+0xc0/0x110 [ 46.675395][ T3525] ____kasan_slab_free+0x170/0x1c0 [ 46.676505][ T3525] __kasan_slab_free+0x18/0x28 [ 46.677560][ T3525] __kmem_cache_free+0x2ac/0x470 [ 46.678662][ T3525] kfree+0x88/0xb8 [ 46.679441][ T3525] diUnmount+0xf4/0x10c [ 46.680379][ T3525] jfs_umount+0x110/0x338 [ 46.681316][ T3525] jfs_put_super+0x90/0x188 [ 46.682318][ T3525] generic_shutdown_super+0x130/0x328 [ 46.683457][ T3525] kill_block_super+0x70/0xbc [ 46.684533][ T3525] deactivate_locked_super+0xac/0x124 [ 46.685701][ T3525] deactivate_super+0xf0/0x110 [ 46.686671][ T3525] cleanup_mnt+0x2cc/0x348 [ 46.687611][ T3525] __cleanup_mnt+0x20/0x30 [ 46.688676][ T3525] task_work_run+0x230/0x2bc [ 46.689664][ T3525] do_notify_resume+0x1f54/0x317c [ 46.690728][ T3525] el0_svc+0x60/0x100 [ 46.691605][ T3525] el0t_64_sync_handler+0x84/0xf0 [ 46.692734][ T3525] el0t_64_sync+0x18c/0x190 [ 46.693761][ T3525] [ 46.694276][ T3525] Allocated by task 3525: [ 46.695295][ T3525] kasan_set_track+0x4c/0x80 [ 46.696284][ T3525] kasan_save_alloc_info+0x24/0x30 [ 46.697422][ T3525] __kasan_kmalloc+0xac/0xc4 [ 46.698357][ T3525] __kmalloc+0xc4/0x118 [ 46.699246][ T3525] tomoyo_realpath_from_path+0xc8/0x4cc [ 46.700525][ T3525] tomoyo_path_perm+0x214/0x790 [ 46.701645][ T3525] tomoyo_sb_umount+0xd4/0x118 [ 46.702744][ T3525] security_sb_umount+0x78/0xb4 [ 46.703847][ T3525] path_umount+0x2e8/0xd34 [ 46.704771][ T3525] __arm64_sys_umount+0x130/0x17c [ 46.705863][ T3525] invoke_syscall+0x98/0x2c0 [ 46.706928][ T3525] el0_svc_common+0x134/0x24c [ 46.707883][ T3525] do_el0_svc+0x64/0x218 [ 46.708807][ T3525] el0_svc+0x34/0x100 [ 46.709737][ T3525] el0t_64_sync_handler+0x84/0xf0 [ 46.710855][ T3525] el0t_64_sync+0x18c/0x190 [ 46.711819][ T3525] [ 46.712398][ T3525] Freed by task 3525: [ 46.713257][ T3525] kasan_set_track+0x4c/0x80 [ 46.714257][ T3525] kasan_save_free_info+0x38/0x5c [ 46.715334][ T3525] ____kasan_slab_free+0x144/0x1c0 [ 46.716378][ T3525] __kasan_slab_free+0x18/0x28 [ 46.717496][ T3525] __kmem_cache_free+0x2ac/0x470 [ 46.718636][ T3525] kfree+0x88/0xb8 [ 46.719446][ T3525] tomoyo_realpath_from_path+0x484/0x4cc [ 46.720601][ T3525] tomoyo_path_perm+0x214/0x790 [ 46.721640][ T3525] tomoyo_sb_umount+0xd4/0x118 [ 46.722659][ T3525] security_sb_umount+0x78/0xb4 [ 46.723609][ T3525] path_umount+0x2e8/0xd34 [ 46.724573][ T3525] __arm64_sys_umount+0x130/0x17c [ 46.725671][ T3525] invoke_syscall+0x98/0x2c0 [ 46.726692][ T3525] el0_svc_common+0x134/0x24c [ 46.727630][ T3525] do_el0_svc+0x64/0x218 [ 46.728531][ T3525] el0_svc+0x34/0x100 [ 46.729393][ T3525] el0t_64_sync_handler+0x84/0xf0 [ 46.730464][ T3525] el0t_64_sync+0x18c/0x190 [ 46.731391][ T3525] [ 46.731913][ T3525] The buggy address belongs to the object at ffff0000d34b0000 [ 46.731913][ T3525] which belongs to the cache kmalloc-4k of size 4096 [ 46.734982][ T3525] The buggy address is located 0 bytes inside of [ 46.734982][ T3525] 4096-byte region [ffff0000d34b0000, ffff0000d34b1000) [ 46.737953][ T3525] [ 46.738441][ T3525] The buggy address belongs to the physical page: [ 46.739835][ T3525] page:000000008735691a refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1134b0 [ 46.742077][ T3525] head:000000008735691a order:3 compound_mapcount:0 compound_pincount:0 [ 46.743934][ T3525] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 46.745650][ T3525] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c0002a80 [ 46.747560][ T3525] raw: 0000000000000000 0000000080040004 00000001ffffffff 0000000000000000 [ 46.749529][ T3525] page dumped because: kasan: bad access detected [ 46.750689][ T3525] [ 46.751108][ T3525] Memory state around the buggy address: [ 46.752064][ T3525] ffff0000d34aff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 46.753414][ T3525] ffff0000d34aff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 46.754794][ T3525] >ffff0000d34b0000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.756517][ T3525] ^ [ 46.757389][ T3525] ffff0000d34b0080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.759117][ T3525] ffff0000d34b0100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.760977][ T3525] ================================================================== [ 46.765336][ T3525] Disabling lock debugging due to kernel taint [ 46.857974][ T3904] loop0: detected capacity change from 0 to 32768 [ 46.861274][ T3904] FAULT_INJECTION: forcing a failure. [ 46.861274][ T3904] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 46.864184][ T3904] CPU: 0 PID: 3904 Comm: syz-executor.0 Tainted: G B 6.1.42-syzkaller #0 [ 46.866413][ T3904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 46.868492][ T3904] Call trace: [ 46.869218][ T3904] dump_backtrace+0x1c8/0x1f4 [ 46.870240][ T3904] show_stack+0x2c/0x3c [ 46.871144][ T3904] dump_stack_lvl+0xc0/0x104 [ 46.872169][ T3904] dump_stack+0x1c/0x4c [ 46.873075][ T3904] should_fail_ex+0x408/0x5d4 [ 46.874135][ T3904] should_fail_alloc_page+0x68/0x7c [ 46.875264][ T3904] prepare_alloc_pages+0x198/0x538 [ 46.876338][ T3904] __alloc_pages+0x16c/0x458 [ 46.877388][ T3904] alloc_pages+0x50c/0x690 [ 46.878345][ T3904] folio_alloc+0x28/0x6c [ 46.879210][ T3904] filemap_alloc_folio+0xc4/0x458 [ 46.880394][ T3904] do_read_cache_folio+0x208/0x544 [ 46.881598][ T3904] read_cache_page+0x6c/0x180 [ 46.882695][ T3904] __get_metapage+0x240/0xe1c [ 46.883703][ T3904] diMount+0x58/0x5cc [ 46.884576][ T3904] jfs_mount_rw+0x250/0x57c [ 46.885596][ T3904] jfs_remount+0x328/0x594 [ 46.886555][ T3904] legacy_reconfigure+0xfc/0x114 [ 46.887737][ T3904] reconfigure_super+0x324/0x6dc [ 46.888900][ T3904] path_mount+0xc4c/0xe38 [ 46.889860][ T3904] __arm64_sys_mount+0x45c/0x59c [ 46.890922][ T3904] invoke_syscall+0x98/0x2c0 [ 46.891946][ T3904] el0_svc_common+0x134/0x24c [ 46.892968][ T3904] do_el0_svc+0x64/0x218 [ 46.893981][ T3904] el0_svc+0x34/0x100 [ 46.894914][ T3904] el0t_64_sync_handler+0x84/0xf0 [ 46.896057][ T3904] el0t_64_sync+0x18c/0x190 [ 46.898572][ T3904] read_mapping_page failed! [ 46.899769][ T3904] jfs_mount_rw: diMount failed! [ 46.902831][ T3525] object pointer: 0x0000000092fd8d18 [ 46.904006][ T3525] page:00000000e0c243d5 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x113110 [ 46.906322][ T3525] flags: 0x5ffc00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 46.907926][ T3525] raw: 05ffc00000000000 fffffc00034d6008 ffff0001b50ef620 0000000000000000 [ 46.909989][ T3525] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000 [ 46.911821][ T3525] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0) [ 46.913569][ T3525] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 46.915204][ T3525] Modules linked in: [ 46.916039][ T3525] CPU: 0 PID: 3525 Comm: syz-executor.0 Tainted: G B 6.1.42-syzkaller #0 [ 46.918222][ T3525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 46.920463][ T3525] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.922138][ T3525] pc : __free_pages+0x138/0x1a8 [ 46.923188][ T3525] lr : __free_pages+0x138/0x1a8 [ 46.924258][ T3525] sp : ffff800017e87780 [ 46.925202][ T3525] x29: ffff800017e87780 x28: ffff0000cddb0200 x27: dfff800000000000 [ 46.927066][ T3525] x26: 1fffe00019bb6045 x25: dfff800000000000 x24: ffff0000cddb0220 [ 46.928897][ T3525] x23: dfff800000000000 x22: 05ffc00000000000 x21: fffffc00034c4434 [ 46.930655][ T3525] x20: 0000000000000000 x19: fffffc00034c4400 x18: ffff8000116dcbb0 [ 46.932456][ T3525] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000 [ 46.934305][ T3525] x14: 0000000000000000 x13: f304f204f1f1f1f1 x12: 0000000000000001 [ 46.936105][ T3525] x11: ff808000086767ac x10: 0000000000000000 x9 : ffff8000086767ac [ 46.937886][ T3525] x8 : ffff0000ccd40000 x7 : 0000000000000000 x6 : ffff80000f1d06f0 [ 46.939748][ T3525] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff8000084263bc [ 46.941521][ T3525] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 000000000000003e [ 46.943370][ T3525] Call trace: [ 46.944056][ T3525] __free_pages+0x138/0x1a8 [ 46.945000][ T3525] free_large_kmalloc+0xb0/0x108 [ 46.946089][ T3525] kfree+0xa4/0xb8 [ 46.946885][ T3525] diUnmount+0xf4/0x10c [ 46.947843][ T3525] jfs_umount+0x110/0x338 [ 46.948731][ T3525] jfs_put_super+0x90/0x188 [ 46.949771][ T3525] generic_shutdown_super+0x130/0x328 [ 46.950882][ T3525] kill_block_super+0x70/0xbc [ 46.951866][ T3525] deactivate_locked_super+0xac/0x124 [ 46.953051][ T3525] deactivate_super+0xf0/0x110 [ 46.954050][ T3525] cleanup_mnt+0x2cc/0x348 [ 46.955072][ T3525] __cleanup_mnt+0x20/0x30 [ 46.956043][ T3525] task_work_run+0x230/0x2bc [ 46.957036][ T3525] do_notify_resume+0x1f54/0x317c [ 46.958123][ T3525] el0_svc+0x60/0x100 [ 46.959031][ T3525] el0t_64_sync_handler+0x84/0xf0 [ 46.960074][ T3525] el0t_64_sync+0x18c/0x190 [ 46.961039][ T3525] Code: d0035e01 91260021 aa1303e0 97fe1960 (d4210000) [ 46.962554][ T3525] ---[ end trace 0000000000000000 ]--- [ 47.217901][ T3525] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 47.219384][ T3525] SMP: stopping secondary CPUs [ 47.220420][ T3525] Kernel Offset: disabled [ 47.221410][ T3525] CPU features: 0x00000,02070084,26017203 [ 47.222679][ T3525] Memory Limit: none [ 47.454543][ T3525] Rebooting in 86400 seconds..