Warning: Permanently added '10.128.0.72' (ED25519) to the list of known hosts. 1970/01/01 00:00:59 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:59 ignoring optional flag "type"="gce" 1970/01/01 00:00:59 parsed 1 programs [ 59.992435][ T4300] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS 1970/01/01 00:00:59 executed programs: 0 [ 60.116520][ T4304] chnl_net:caif_netlink_parms(): no params data found [ 60.155241][ T4304] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.156806][ T4304] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.158829][ T4304] device bridge_slave_0 entered promiscuous mode [ 60.161994][ T4304] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.163670][ T4304] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.165773][ T4304] device bridge_slave_1 entered promiscuous mode [ 60.183039][ T4304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.187818][ T4304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.204203][ T4304] team0: Port device team_slave_0 added [ 60.207069][ T4304] team0: Port device team_slave_1 added [ 60.221219][ T4304] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.223027][ T4304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.228280][ T4304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.231765][ T4304] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.234623][ T4304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.239552][ T4304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.304590][ T4304] device hsr_slave_0 entered promiscuous mode [ 60.343227][ T4304] device hsr_slave_1 entered promiscuous mode [ 61.112450][ T4304] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 61.145946][ T4304] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 61.168425][ T4304] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 61.205122][ T4304] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 61.310926][ T4304] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.318635][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 61.320858][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.325460][ T4304] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.333091][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.335692][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.338074][ T1708] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.339644][ T1708] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.341800][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.345069][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.349908][ T1708] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.351513][ T1708] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.364012][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 61.366296][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 61.368725][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 61.371376][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 61.377465][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 61.389064][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.391412][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 61.398271][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 61.400773][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.404559][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.406699][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.408816][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.412349][ T4304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.495021][ T4304] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.497791][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 61.499465][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 61.519891][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 61.522166][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 61.538206][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 61.540349][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 61.543848][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 61.546489][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 61.550819][ T4304] device veth0_vlan entered promiscuous mode [ 61.558599][ T4304] device veth1_vlan entered promiscuous mode [ 61.578716][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 61.580954][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 61.585102][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 61.587791][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 61.592365][ T4304] device veth0_macvtap entered promiscuous mode [ 61.597981][ T4304] device veth1_macvtap entered promiscuous mode [ 61.610421][ T4304] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.611986][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 61.615032][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 61.617025][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 61.619098][ T611] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 61.627607][ T4304] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.629275][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 61.631524][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 61.637557][ T4304] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.639331][ T4304] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.641081][ T4304] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.644966][ T4304] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.690134][ T611] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.691860][ T611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.696861][ T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.715280][ T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.717028][ T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.719465][ T1708] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.999808][ T4416] loop0: detected capacity change from 0 to 32768 [ 62.051810][ T4416] ================================================================== [ 62.053572][ T4416] BUG: KASAN: slab-out-of-bounds in dtSearch+0x131c/0x1f34 [ 62.055100][ T4416] Read of size 1 at addr ffff0000de6bc058 by task syz-executor.0/4416 [ 62.056732][ T4416] [ 62.057189][ T4416] CPU: 1 PID: 4416 Comm: syz-executor.0 Not tainted 5.15.171-syzkaller #0 [ 62.058974][ T4416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 62.060842][ T4416] Call trace: [ 62.061563][ T4416] dump_backtrace+0x0/0x530 [ 62.062526][ T4416] show_stack+0x2c/0x3c [ 62.063309][ T4416] dump_stack_lvl+0x108/0x170 [ 62.064255][ T4416] print_address_description+0x7c/0x3f0 [ 62.065337][ T4416] kasan_report+0x174/0x1e4 [ 62.066192][ T4416] __asan_report_load1_noabort+0x44/0x50 [ 62.067336][ T4416] dtSearch+0x131c/0x1f34 [ 62.068182][ T4416] jfs_lookup+0x164/0x39c [ 62.068946][ T4416] __lookup_slow+0x250/0x388 [ 62.069923][ T4416] lookup_slow+0x60/0x84 [ 62.070766][ T4416] walk_component+0x394/0x4cc [ 62.071674][ T4416] link_path_walk+0x5a0/0xc38 [ 62.072610][ T4416] path_lookupat+0x90/0x3d0 [ 62.073423][ T4416] do_o_path+0xa8/0x214 [ 62.074280][ T4416] path_openat+0x216c/0x26cc [ 62.075221][ T4416] do_filp_open+0x1a8/0x3b4 [ 62.076132][ T4416] do_sys_openat2+0x128/0x3e0 [ 62.077075][ T4416] __arm64_sys_openat+0x1f0/0x240 [ 62.078021][ T4416] invoke_syscall+0x98/0x2b8 [ 62.078916][ T4416] el0_svc_common+0x138/0x258 [ 62.079812][ T4416] do_el0_svc+0x58/0x14c [ 62.080554][ T4416] el0_svc+0x7c/0x1f0 [ 62.081287][ T4416] el0t_64_sync_handler+0x84/0xe4 [ 62.082410][ T4416] el0t_64_sync+0x1a0/0x1a4 [ 62.083235][ T4416] [ 62.083705][ T4416] Allocated by task 0: [ 62.084512][ T4416] (stack is not available) [ 62.085368][ T4416] [ 62.085773][ T4416] The buggy address belongs to the object at ffff0000de6bb780 [ 62.085773][ T4416] which belongs to the cache jfs_ip of size 2240 [ 62.088579][ T4416] The buggy address is located 24 bytes to the right of [ 62.088579][ T4416] 2240-byte region [ffff0000de6bb780, ffff0000de6bc040) [ 62.091473][ T4416] The buggy address belongs to the page: [ 62.092602][ T4416] page:000000005592acaf refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11e6b8 [ 62.094697][ T4416] head:000000005592acaf order:3 compound_mapcount:0 compound_pincount:0 [ 62.096279][ T4416] memcg:ffff0000cfb16f01 [ 62.097121][ T4416] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 62.098764][ T4416] raw: 05ffc00000010200 0000000000000000 dead000000000122 ffff0000c6901e00 [ 62.100410][ T4416] raw: 0000000000000000 00000000800d000d 00000001ffffffff ffff0000cfb16f01 [ 62.102032][ T4416] page dumped because: kasan: bad access detected [ 62.103301][ T4416] [ 62.103802][ T4416] Memory state around the buggy address: [ 62.104926][ T4416] ffff0000de6bbf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 62.106564][ T4416] ffff0000de6bbf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 62.108197][ T4416] >ffff0000de6bc000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 62.109784][ T4416] ^ [ 62.111174][ T4416] ffff0000de6bc080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 62.112873][ T4416] ffff0000de6bc100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 62.113284][ T7] Bluetooth: hci0: command 0x0409 tx timeout [ 62.114443][ T4416] ================================================================== [ 62.114463][ T4416] Disabling lock debugging due to kernel taint [ 62.128341][ T4416] ERROR: (device loop0): dtSearch: stack overrun! [ 62.128341][ T4416] [ 62.130318][ T4416] ERROR: (device loop0): remounting filesystem as read-only [ 62.131730][ T4416] btstack dump: [ 62.132361][ T4416] bn = 0, index = 0 [ 62.133440][ T4416] bn = 0, index = 0 [ 62.134237][ T4416] bn = 0, index = 0 [ 62.134936][ T4416] bn = 0, index = 0 [ 62.135670][ T4416] bn = 0, index = 0 [ 62.136535][ T4416] bn = 0, index = 0 [ 62.137309][ T4416] bn = 0, index = 0 [ 62.137932][ T4416] bn = 0, index = 0 [ 62.138710][ T4416] jfs_lookup: dtSearch returned -5 [ 62.145772][ T4304] ------------[ cut here ]------------ [ 62.146880][ T4304] kernel BUG at fs/jfs/inode.c:169! [ 62.147874][ T4304] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 62.149442][ T4304] Modules linked in: [ 62.150345][ T4304] CPU: 0 PID: 4304 Comm: syz-executor.0 Tainted: G B 5.15.171-syzkaller #0 [ 62.152570][ T4304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 62.154718][ T4304] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.156415][ T4304] pc : jfs_evict_inode+0x3b8/0x408 [ 62.157522][ T4304] lr : jfs_evict_inode+0x3b8/0x408 [ 62.158531][ T4304] sp : ffff80001ff676d0 [ 62.159395][ T4304] x29: ffff80001ff676d0 x28: dfff800000000000 x27: 1fffe0001bce608b [ 62.161031][ T4304] x26: 1fffe0001bce60bf x25: 1fffe0001bce60a1 x24: ffff800009894e34 [ 62.162689][ T4304] x23: dfff800000000000 x22: ffff0000de730508 x21: ffff800011f5a500 [ 62.164432][ T4304] x20: ffff0000de7300b8 x19: ffff0000de730430 x18: 0000000000000000 [ 62.166046][ T4304] x17: 0000000000000000 x16: ffff80000824ebd0 x15: 0000000000000406 [ 62.167730][ T4304] x14: ffff0000c21f1b40 x13: 0000000000ff0100 x12: 0000000000000001 [ 62.169297][ T4304] x11: 0000000000000000 x10: 0000000000000000 x9 : ffff0000c21f1b40 [ 62.170885][ T4304] x8 : ffff8000098951ec x7 : 0000000000000000 x6 : ffff8000089eb1e8 [ 62.172564][ T4304] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff80000804605c [ 62.174135][ T4304] x2 : 0000000000000001 x1 : 0000000000000000 x0 : ffff0000de730410 [ 62.175756][ T4304] Call trace: [ 62.176405][ T4304] jfs_evict_inode+0x3b8/0x408 [ 62.177427][ T4304] evict+0x418/0x894 [ 62.178197][ T4304] evict_inodes+0x6dc/0x774 [ 62.179041][ T4304] generic_shutdown_super+0x9c/0x2f0 [ 62.180154][ T4304] kill_block_super+0x70/0xdc [ 62.181142][ T4304] deactivate_locked_super+0xb8/0x13c [ 62.182297][ T4304] deactivate_super+0x108/0x128 [ 62.183309][ T4304] cleanup_mnt+0x3c0/0x474 [ 62.184241][ T4304] __cleanup_mnt+0x20/0x30 [ 62.185244][ T4304] task_work_run+0x130/0x1e4 [ 62.186209][ T4304] do_notify_resume+0x262c/0x32b8 [ 62.187272][ T4304] el0_svc+0xfc/0x1f0 [ 62.188056][ T4304] el0t_64_sync_handler+0x84/0xe4 [ 62.189006][ T4304] el0t_64_sync+0x1a0/0x1a4 [ 62.189809][ T4304] Code: aa1603e1 944ab747 17ffff75 97b0bc45 (d4210000) [ 62.191261][ T4304] ---[ end trace 6bfe90e1722e22a7 ]--- [ 62.583625][ T4304] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 62.585093][ T4304] SMP: stopping secondary CPUs [ 62.586104][ T4304] Kernel Offset: disabled [ 62.586988][ T4304] CPU features: 0x8,000081c1,21302e40 [ 62.588124][ T4304] Memory Limit: none [ 62.923806][ T4304] Rebooting in 86400 seconds..