Warning: Permanently added '10.128.1.166' (ED25519) to the list of known hosts. 2023/10/08 14:16:27 ignoring optional flag "sandboxArg"="0" 2023/10/08 14:16:27 parsed 1 programs 2023/10/08 14:16:27 executed programs: 0 [ 42.899170][ T3067] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.900731][ T3067] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.903586][ T3067] device bridge_slave_0 entered promiscuous mode [ 42.905683][ T3067] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.907158][ T3067] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.909369][ T3067] device bridge_slave_1 entered promiscuous mode [ 43.083529][ T3067] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.085152][ T3067] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.086772][ T3067] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.088361][ T3067] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.378211][ T23] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.380232][ T23] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.382851][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.384504][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.427896][ T2514] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.429722][ T2514] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.431331][ T2514] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.433298][ T2514] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.435539][ T2514] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.436949][ T2514] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.438615][ T2514] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.440490][ T2514] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.768586][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 43.813858][ T3067] device veth0_vlan entered promiscuous mode [ 43.816564][ T3067] device veth1_vlan entered promiscuous mode [ 43.822502][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 43.824490][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 43.826217][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 43.828016][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 43.829882][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 43.831772][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 43.834341][ T3067] device veth0_macvtap entered promiscuous mode [ 43.882629][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.884674][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.886664][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 44.142211][ T3245] loop0: detected capacity change from 0 to 1024 [ 44.175541][ T1608] ================================================================== [ 44.177263][ T1608] BUG: KASAN: slab-out-of-bounds in copy_page_from_iter_atomic+0x95c/0x101c [ 44.179119][ T1608] Read of size 2048 at addr ffff0000c885e800 by task kworker/u4:6/1608 [ 44.180959][ T1608] [ 44.181451][ T1608] CPU: 0 PID: 1608 Comm: kworker/u4:6 Not tainted 6.1.56-syzkaller #0 [ 44.183195][ T1608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 44.185483][ T1608] Workqueue: loop0 loop_workfn [ 44.186545][ T1608] Call trace: [ 44.187313][ T1608] dump_backtrace+0x1c8/0x1f4 [ 44.188361][ T1608] show_stack+0x2c/0x3c [ 44.189221][ T1608] dump_stack_lvl+0xc0/0x104 [ 44.190196][ T1608] print_report+0x174/0x4c0 [ 44.191249][ T1608] kasan_report+0xcc/0x124 [ 44.192096][ T1608] kasan_check_range+0x264/0x2a4 [ 44.193237][ T1608] memcpy+0x48/0x90 [ 44.194107][ T1608] copy_page_from_iter_atomic+0x95c/0x101c [ 44.195483][ T1608] generic_perform_write+0x2fc/0x548 [ 44.196667][ T1608] __generic_file_write_iter+0x168/0x388 [ 44.197942][ T1608] generic_file_write_iter+0xb8/0x2b4 [ 44.199103][ T1608] do_iter_write+0x534/0x964 [ 44.200020][ T1608] vfs_iter_write+0x88/0xac [ 44.201294][ T1608] loop_process_work+0x15dc/0x2434 [ 44.202342][ T1608] loop_workfn+0x54/0x68 [ 44.203292][ T1608] process_one_work+0x698/0xc7c [ 44.204433][ T1608] worker_thread+0x860/0xea4 [ 44.205388][ T1608] kthread+0x200/0x260 [ 44.206240][ T1608] ret_from_fork+0x10/0x20 [ 44.207254][ T1608] [ 44.207750][ T1608] Allocated by task 3245: [ 44.208692][ T1608] kasan_set_track+0x4c/0x80 [ 44.209750][ T1608] kasan_save_alloc_info+0x24/0x30 [ 44.210668][ T1608] __kasan_kmalloc+0xac/0xc4 [ 44.211610][ T1608] __kmalloc+0xc4/0x118 [ 44.212568][ T1608] hfsplus_read_wrapper+0x22c/0xcb4 [ 44.213707][ T1608] hfsplus_fill_super+0x2f4/0x154c [ 44.214772][ T1608] mount_bdev+0x25c/0x33c [ 44.215749][ T1608] hfsplus_mount+0x44/0x58 [ 44.216836][ T1608] legacy_get_tree+0xd4/0x16c [ 44.217834][ T1608] vfs_get_tree+0x90/0x1c0 [ 44.218724][ T1608] do_new_mount+0x25c/0x8c4 [ 44.219683][ T1608] path_mount+0x590/0xe3c [ 44.220810][ T1608] __arm64_sys_mount+0x45c/0x59c [ 44.222238][ T1608] invoke_syscall+0x98/0x2c0 [ 44.223299][ T1608] el0_svc_common+0x134/0x24c [ 44.224347][ T1608] do_el0_svc+0x64/0x218 [ 44.225281][ T1608] el0_svc+0x34/0x100 [ 44.226135][ T1608] el0t_64_sync_handler+0x84/0xf0 [ 44.227256][ T1608] el0t_64_sync+0x18c/0x190 [ 44.228337][ T1608] [ 44.228862][ T1608] The buggy address belongs to the object at ffff0000c885e800 [ 44.228862][ T1608] which belongs to the cache kmalloc-512 of size 512 [ 44.232013][ T1608] The buggy address is located 0 bytes inside of [ 44.232013][ T1608] 512-byte region [ffff0000c885e800, ffff0000c885ea00) [ 44.234972][ T1608] [ 44.235414][ T1608] The buggy address belongs to the physical page: [ 44.236819][ T1608] page:00000000a2da0ce9 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10885c [ 44.239123][ T1608] head:00000000a2da0ce9 order:2 compound_mapcount:0 compound_pincount:0 [ 44.240980][ T1608] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 44.242734][ T1608] raw: 05ffc00000010200 0000000000000000 dead000000000001 ffff0000c0002600 [ 44.244544][ T1608] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 44.246471][ T1608] page dumped because: kasan: bad access detected [ 44.247861][ T1608] [ 44.248363][ T1608] Memory state around the buggy address: [ 44.249590][ T1608] ffff0000c885e900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.251349][ T1608] ffff0000c885e980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.253103][ T1608] >ffff0000c885ea00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.254913][ T1608] ^ [ 44.255837][ T1608] ffff0000c885ea80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.257539][ T1608] ffff0000c885eb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 44.259326][ T1608] ================================================================== [ 44.261457][ T1608] Disabling lock debugging due to kernel taint [ 44.272158][ T3247] loop0: detected capacity change from 0 to 1024 [ 44.312074][ T3249] loop0: detected capacity change from 0 to 1024 [ 44.372178][ T3251] loop0: detected capacity change from 0 to 1024 [ 44.423266][ T3253] loop0: detected capacity change from 0 to 1024 [ 44.464293][ T3255] loop0: detected capacity change from 0 to 1024 [ 44.514420][ T3257] loop0: detected capacity change from 0 to 1024 [ 44.564307][ T3259] loop0: detected capacity change from 0 to 1024 [ 44.634541][ T3261] loop0: detected capacity change from 0 to 1024 [ 44.685398][ T3263] loop0: detected capacity change from 0 to 1024 [ 44.765407][ T3265] loop0: detected capacity change from 0 to 1024 [ 44.813760][ T3267] loop0: detected capacity change from 0 to 1024 [ 44.873816][ T3269] loop0: detected capacity change from 0 to 1024 [ 44.924558][ T3271] loop0: detected capacity change from 0 to 1024 [ 45.004626][ T3273] loop0: detected capacity change from 0 to 1024 [ 45.063737][ T3275] loop0: detected capacity change from 0 to 1024 [ 45.144522][ T3277] loop0: detected capacity change from 0 to 1024 [ 45.213744][ T3279] loop0: detected capacity change from 0 to 1024 [ 45.262852][ T3281] loop0: detected capacity change from 0 to 1024 [ 45.347952][ T3283] loop0: detected capacity change from 0 to 1024 [ 45.413816][ T3285] loop0: detected capacity change from 0 to 1024 [ 45.495259][ T3287] loop0: detected capacity change from 0 to 1024 [ 45.567004][ T3289] loop0: detected capacity change from 0 to 1024 [ 45.614410][ T3291] loop0: detected capacity change from 0 to 1024 [ 45.655456][ T3293] loop0: detected capacity change from 0 to 1024 [ 45.724414][ T3295] loop0: detected capacity change from 0 to 1024 [ 45.770905][ T3297] loop0: detected capacity change from 0 to 1024 [ 45.821454][ T3299] loop0: detected capacity change from 0 to 1024 [ 45.882641][ T3301] loop0: detected capacity change from 0 to 1024 [ 45.946158][ T3303] loop0: detected capacity change from 0 to 1024 [ 45.983054][ T3305] loop0: detected capacity change from 0 to 1024 [ 46.024581][ T3307] loop0: detected capacity change from 0 to 1024 [ 46.064526][ T3309] loop0: detected capacity change from 0 to 1024 [ 46.124533][ T3311] loop0: detected capacity change from 0 to 1024 [ 46.175295][ T3313] loop0: detected capacity change from 0 to 1024 [ 46.254205][ T3315] loop0: detected capacity change from 0 to 1024 [ 46.295151][ T3317] loop0: detected capacity change from 0 to 1024 [ 46.353862][ T3319] loop0: detected capacity change from 0 to 1024 [ 46.404264][ T3321] loop0: detected capacity change from 0 to 1024 [ 46.464623][ T3323] loop0: detected capacity change from 0 to 1024 [ 46.514004][ T3325] loop0: detected capacity change from 0 to 1024 [ 46.563744][ T3327] loop0: detected capacity change from 0 to 1024 [ 46.624753][ T3329] loop0: detected capacity change from 0 to 1024 [ 46.683039][ T3331] loop0: detected capacity change from 0 to 1024 [ 46.745206][ T3333] loop0: detected capacity change from 0 to 1024 [ 46.794931][ T3335] loop0: detected capacity change from 0 to 1024 [ 46.851200][ T3337] loop0: detected capacity change from 0 to 1024 [ 46.903547][ T3339] loop0: detected capacity change from 0 to 1024 [ 46.983772][ T3341] loop0: detected capacity change from 0 to 1024 [ 47.044133][ T3343] loop0: detected capacity change from 0 to 1024 [ 47.094222][ T3345] loop0: detected capacity change from 0 to 1024 [ 47.147052][ T3347] loop0: detected capacity change from 0 to 1024 [ 47.203332][ T3349] loop0: detected capacity change from 0 to 1024 [ 47.284630][ T3351] loop0: detected capacity change from 0 to 1024 [ 47.334703][ T3353] loop0: detected capacity change from 0 to 1024 [ 47.378749][ T3355] loop0: detected capacity change from 0 to 1024 [ 47.432774][ T3357] loop0: detected capacity change from 0 to 1024 [ 47.514270][ T3359] loop0: detected capacity change from 0 to 1024 [ 47.564663][ T3361] loop0: detected capacity change from 0 to 1024 [ 47.604712][ T3363] loop0: detected capacity change from 0 to 1024 [ 47.673485][ T3365] loop0: detected capacity change from 0 to 1024 [ 47.732972][ T3367] loop0: detected capacity change from 0 to 1024 2023/10/08 14:16:32 executed programs: 62 [ 47.802242][ T3369] loop0: detected capacity change from 0 to 1024 [ 47.873840][ T3371] loop0: detected capacity change from 0 to 1024 [ 47.941628][ T3373] loop0: detected capacity change from 0 to 1024 [ 48.011930][ T3375] loop0: detected capacity change from 0 to 1024 [ 48.083940][ T3377] loop0: detected capacity change from 0 to 1024 [ 48.144485][ T3379] loop0: detected capacity change from 0 to 1024 [ 48.193485][ T3381] loop0: detected capacity change from 0 to 1024 [ 48.275230][ T3383] loop0: detected capacity change from 0 to 1024 [ 48.333683][ T3385] loop0: detected capacity change from 0 to 1024 [ 48.413986][ T3387] loop0: detected capacity change from 0 to 1024 [ 48.474544][ T3389] loop0: detected capacity change from 0 to 1024 [ 48.523163][ T3391] loop0: detected capacity change from 0 to 1024 [ 48.574361][ T3393] loop0: detected capacity change from 0 to 1024 [ 48.624212][ T3395] loop0: detected capacity change from 0 to 1024 [ 48.679946][ T3397] loop0: detected capacity change from 0 to 1024 [ 48.734708][ T3399] loop0: detected capacity change from 0 to 1024 [ 48.792567][ T3401] loop0: detected capacity change from 0 to 1024 [ 48.874307][ T3403] loop0: detected capacity change from 0 to 1024 [ 48.924432][ T3405] loop0: detected capacity change from 0 to 1024 [ 48.974270][ T3407] loop0: detected capacity change from 0 to 1024 [ 49.032822][ T3409] loop0: detected capacity change from 0 to 1024 [ 49.112924][ T3411] loop0: detected capacity change from 0 to 1024 [ 49.172072][ T3413] loop0: detected capacity change from 0 to 1024 [ 49.221624][ T3415] loop0: detected capacity change from 0 to 1024 [ 49.263561][ T3417] loop0: detected capacity change from 0 to 1024 [ 49.311226][ T3419] loop0: detected capacity change from 0 to 1024 [ 49.362441][ T3421] loop0: detected capacity change from 0 to 1024 [ 49.421520][ T3423] loop0: detected capacity change from 0 to 1024 [ 49.475214][ T3425] loop0: detected capacity change from 0 to 1024 [ 49.555522][ T3427] loop0: detected capacity change from 0 to 1024 [ 49.601458][ T3429] loop0: detected capacity change from 0 to 1024 [ 49.693128][ T3431] loop0: detected capacity change from 0 to 1024 [ 49.734379][ T3433] loop0: detected capacity change from 0 to 1024 [ 49.804134][ T3435] loop0: detected capacity change from 0 to 1024 [ 49.864992][ T3437] loop0: detected capacity change from 0 to 1024 [ 49.914521][ T3439] loop0: detected capacity change from 0 to 1024 [ 49.984308][ T3441] loop0: detected capacity change from 0 to 1024 [ 50.021833][ T3443] loop0: detected capacity change from 0 to 1024 [ 50.065860][ T3445] loop0: detected capacity change from 0 to 1024 [ 50.094841][ T3447] loop0: detected capacity change from 0 to 1024 [ 50.153421][ T3449] loop0: detected capacity change from 0 to 1024 [ 50.233354][ T3451] loop0: detected capacity change from 0 to 1024 [ 50.281303][ T3453] loop0: detected capacity change from 0 to 1024 [ 50.321944][ T3455] loop0: detected capacity change from 0 to 1024 [ 50.393964][ T3457] loop0: detected capacity change from 0 to 1024 [ 50.451430][ T3459] loop0: detected capacity change from 0 to 1024 [ 50.501940][ T3461] loop0: detected capacity change from 0 to 1024 [ 50.553193][ T3463] loop0: detected capacity change from 0 to 1024 [ 50.602621][ T3465] loop0: detected capacity change from 0 to 1024 [ 50.644618][ T3467] loop0: detected capacity change from 0 to 1024 [ 50.683336][ T3469] loop0: detected capacity change from 0 to 1024 [ 50.754313][ T3471] loop0: detected capacity change from 0 to 1024 [ 50.812230][ T3473] loop0: detected capacity change from 0 to 1024 [ 50.844032][ T3475] loop0: detected capacity change from 0 to 1024 [ 50.893496][ T3477] loop0: detected capacity change from 0 to 1024 [ 50.974512][ T3479] loop0: detected capacity change from 0 to 1024 [ 51.012505][ T3481] loop0: detected capacity change from 0 to 1024 [ 51.083444][ T3483] loop0: detected capacity change from 0 to 1024 [ 51.124730][ T3485] loop0: detected capacity change from 0 to 1024 [ 51.174494][ T3487] loop0: detected capacity change from 0 to 1024 [ 51.243114][ T3489] loop0: detected capacity change from 0 to 1024 [ 51.301959][ T3491] loop0: detected capacity change from 0 to 1024 [ 51.388039][ T3493] loop0: detected capacity change from 0 to 1024 [ 51.436585][ T3495] loop0: detected capacity change from 0 to 1024 [ 51.472652][ T3497] loop0: detected capacity change from 0 to 1024 [ 51.533709][ T3499] loop0: detected capacity change from 0 to 1024 [ 51.594625][ T3501] loop0: detected capacity change from 0 to 1024 [ 51.653721][ T3503] loop0: detected capacity change from 0 to 1024 [ 51.722749][ T3505] loop0: detected capacity change from 0 to 1024 [ 51.793876][ T3507] loop0: detected capacity change from 0 to 1024 [ 51.852085][ T3509] loop0: detected capacity change from 0 to 1024 [ 51.912513][ T3511] loop0: detected capacity change from 0 to 1024 [ 51.984371][ T3513] loop0: detected capacity change from 0 to 1024 [ 52.033740][ T3515] loop0: detected capacity change from 0 to 1024 [ 52.116682][ T3517] loop0: detected capacity change from 0 to 1024 [ 52.151964][ T3519] loop0: detected capacity change from 0 to 1024 [ 52.223721][ T3521] loop0: detected capacity change from 0 to 1024 [ 52.272039][ T3523] loop0: detected capacity change from 0 to 1024 [ 52.321346][ T3525] loop0: detected capacity change from 0 to 1024 [ 52.391968][ T3527] loop0: detected capacity change from 0 to 1024 [ 52.454280][ T3529] loop0: detected capacity change from 0 to 1024 [ 52.523475][ T3531] loop0: detected capacity change from 0 to 1024 [ 52.583314][ T3533] loop0: detected capacity change from 0 to 1024 [ 52.644602][ T3535] loop0: detected capacity change from 0 to 1024 [ 52.694328][ T3537] loop0: detected capacity change from 0 to 1024 [ 52.733635][ T3539] loop0: detected capacity change from 0 to 1024 2023/10/08 14:16:37 executed programs: 148 [ 52.803564][ T3541] loop0: detected capacity change from 0 to 1024 [ 52.885052][ T3543] loop0: detected capacity change from 0 to 1024 [ 52.943091][ T3545] loop0: detected capacity change from 0 to 1024 [ 52.993030][ T3547] loop0: detected capacity change from 0 to 1024 [ 53.051705][ T3549] loop0: detected capacity change from 0 to 1024 [ 53.102751][ T3551] loop0: detected capacity change from 0 to 1024 [ 53.152529][ T3553] loop0: detected capacity change from 0 to 1024 [ 53.202861][ T3555] loop0: detected capacity change from 0 to 1024 [ 53.252644][ T3557] loop0: detected capacity change from 0 to 1024 [ 53.301583][ T3559] loop0: detected capacity change from 0 to 1024 [ 53.352994][ T3561] loop0: detected capacity change from 0 to 1024 [ 53.401430][ T3563] loop0: detected capacity change from 0 to 1024 [ 53.451922][ T3565] loop0: detected capacity change from 0 to 1024 [ 53.515877][ T3567] loop0: detected capacity change from 0 to 1024 [ 53.553754][ T3569] loop0: detected capacity change from 0 to 1024 [ 53.601417][ T3571] loop0: detected capacity change from 0 to 1024 [ 53.651930][ T3573] loop0: detected capacity change from 0 to 1024 [ 53.712860][ T3575] loop0: detected capacity change from 0 to 1024 [ 53.764704][ T3577] loop0: detected capacity change from 0 to 1024 [ 53.813906][ T3579] loop0: detected capacity change from 0 to 1024 [ 53.903491][ T3581] loop0: detected capacity change from 0 to 1024 [ 53.961676][ T3583] loop0: detected capacity change from 0 to 1024 [ 54.011430][ T3585] loop0: detected capacity change from 0 to 1024 [ 54.095210][ T3587] loop0: detected capacity change from 0 to 1024 [ 54.153564][ T3589] loop0: detected capacity change from 0 to 1024