Warning: Permanently added '10.128.1.99' (ECDSA) to the list of known hosts. 2023/03/26 09:35:52 ignoring optional flag "sandboxArg"="0" 2023/03/26 09:35:52 parsed 1 programs 2023/03/26 09:35:52 executed programs: 0 [ 60.130158][ T4389] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 60.137702][ T4389] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 60.145354][ T4389] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 60.153393][ T4389] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 60.160906][ T4389] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 60.168421][ T4389] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 60.235431][ T5507] chnl_net:caif_netlink_parms(): no params data found [ 60.262149][ T5507] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.269297][ T5507] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.276937][ T5507] device bridge_slave_0 entered promiscuous mode [ 60.284986][ T5507] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.292052][ T5507] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.299535][ T5507] device bridge_slave_1 entered promiscuous mode [ 60.314718][ T5507] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.325112][ T5507] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.342547][ T5507] team0: Port device team_slave_0 added [ 60.349238][ T5507] team0: Port device team_slave_1 added [ 60.361614][ T5507] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.368674][ T5507] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.394841][ T5507] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.407110][ T5507] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.414092][ T5507] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.440004][ T5507] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.472223][ T5507] device hsr_slave_0 entered promiscuous mode [ 60.479758][ T5507] device hsr_slave_1 entered promiscuous mode [ 60.955835][ T5507] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 60.973470][ T5507] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 60.984899][ T5507] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 60.994423][ T5507] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 61.012774][ T5507] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.019929][ T5507] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.027702][ T5507] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.034952][ T5507] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.075727][ T5507] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.087770][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.097116][ T5078] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.105093][ T5078] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.114283][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 61.127008][ T5507] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.137028][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.146343][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.153529][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.174432][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.183181][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.190245][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.205889][ T5507] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 61.217065][ T5507] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 61.231195][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 61.239651][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.248168][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.259097][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 61.403954][ T5507] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.411548][ T1114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 61.421787][ T1114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 61.438583][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 61.447848][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 61.465679][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 61.475768][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 61.486313][ T5507] device veth0_vlan entered promiscuous mode [ 61.494755][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 61.502293][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 61.513162][ T5507] device veth1_vlan entered promiscuous mode [ 61.530048][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 61.538445][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 61.547258][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 61.555960][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 61.566176][ T5507] device veth0_macvtap entered promiscuous mode [ 61.576820][ T5507] device veth1_macvtap entered promiscuous mode [ 61.590752][ T5507] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 61.599419][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 61.608008][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 61.616277][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 61.624878][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 61.635915][ T5507] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 61.644947][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 61.653872][ T892] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 61.663877][ T5507] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.672578][ T5507] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.683659][ T5507] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.692447][ T5507] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.746391][ T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.763997][ T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.772477][ T5078] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 61.789883][ T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 61.798320][ T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 61.807383][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 62.094368][ T5577] loop0: detected capacity change from 0 to 32768 [ 62.109353][ T5577] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 62.118359][ T5577] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 62.134794][ T5577] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 62.145528][ T5078] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 62.152416][ T5078] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 62.182708][ T5078] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 30ms [ 62.192202][ T5078] gfs2: fsid=syz:syz.0: jid=0: Done [ 62.198148][ T5577] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 62.213354][ T4389] Bluetooth: hci0: command 0x0409 tx timeout [ 62.326558][ T5577] gfs2: fsid=syz:syz.0: found 1 quota changes, i_ino:2078 [ 62.374292][ T5507] buf->di_height: 768 [ 62.378423][ T5507] buf->di_depth: 0 [ 62.382197][ T5507] inode->i_size: 176 [ 62.386598][ T5507] lblock:0, height:9, sb_bsize: 4096, heightsize:0,pos:0,size:176 [ 62.396497][ T5507] lblock:0, height:10, sb_bsize: 4096, heightsize:0,pos:0,size:176 [ 62.404709][ T5507] ================================================================================ [ 62.415174][ T5507] UBSAN: array-index-out-of-bounds in fs/gfs2/bmap.c:899:64 [ 62.422468][ T5507] index 11 is out of range for type 'u64 [11]' [ 62.429764][ T5507] CPU: 1 PID: 5507 Comm: syz-executor.0 Not tainted 6.2.0-rc1-syzkaller-dirty #0 [ 62.438885][ T5507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 62.448944][ T5507] Call Trace: [ 62.452228][ T5507] [ 62.455163][ T5507] dump_stack_lvl+0xd1/0x138 [ 62.459774][ T5507] ubsan_epilogue+0xa/0x31 [ 62.464262][ T5507] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 62.470431][ T5507] __gfs2_iomap_get+0x1654/0x1a60 [ 62.475495][ T5507] ? __gfs2_iomap_alloc+0x1e00/0x1e00 [ 62.480891][ T5507] gfs2_iomap_get+0xb1/0x1e0 [ 62.485498][ T5507] ? gfs2_iomap_begin+0x1750/0x1750 [ 62.490972][ T5507] ? preempt_schedule_thunk+0x1a/0x20 [ 62.496363][ T5507] gfs2_block_map+0x232/0xc20 [ 62.501043][ T5507] ? gfs2_iomap_alloc+0x270/0x270 [ 62.506073][ T5507] ? __wait_on_freeing_inode+0x140/0x140 [ 62.511704][ T5507] ? gfs2_inode_refresh+0xb1/0x1070 [ 62.516963][ T5507] gfs2_write_alloc_required+0x3f1/0x510 [ 62.522603][ T5507] ? gfs2_map_journal_extents+0x7e0/0x7e0 [ 62.528416][ T5507] ? from_kgid+0x8b/0xd0 [ 62.532657][ T5507] ? from_kuid_munged+0x130/0x130 [ 62.537684][ T5507] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 62.543581][ T5507] ? from_kqid+0xf6/0x1d0 [ 62.547902][ T5507] ? qid_valid+0x130/0x130 [ 62.552315][ T5507] do_sync+0x707/0xcf0 [ 62.556393][ T5507] ? gfs2_qa_put+0x160/0x160 [ 62.560986][ T5507] ? gfs2_quota_sync+0x3f5/0x660 [ 62.565926][ T5507] ? gfs2_quota_sync+0x2e6/0x660 [ 62.570860][ T5507] ? rwlock_bug.part.0+0x90/0x90 [ 62.575801][ T5507] gfs2_quota_sync+0x2e6/0x660 [ 62.580573][ T5507] gfs2_sync_fs+0x44/0xb0 [ 62.584902][ T5507] ? rgrp_unlock_local+0x20/0x20 [ 62.589834][ T5507] sync_filesystem.part.0+0x75/0x1d0 [ 62.595118][ T5507] sync_filesystem+0x8f/0xc0 [ 62.599701][ T5507] generic_shutdown_super+0x74/0x410 [ 62.604986][ T5507] kill_block_super+0x9b/0xf0 [ 62.609665][ T5507] gfs2_kill_sb+0x108/0x170 [ 62.614173][ T5507] deactivate_locked_super+0x98/0x160 [ 62.619549][ T5507] deactivate_super+0xb1/0xd0 [ 62.624291][ T5507] cleanup_mnt+0x2ae/0x3d0 [ 62.628729][ T5507] task_work_run+0x16f/0x270 [ 62.633327][ T5507] ? task_work_cancel+0x30/0x30 [ 62.638180][ T5507] exit_to_user_mode_prepare+0x23c/0x250 [ 62.643806][ T5507] syscall_exit_to_user_mode+0x1d/0x50 [ 62.649345][ T5507] do_syscall_64+0x46/0xb0 [ 62.653757][ T5507] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 62.659650][ T5507] RIP: 0033:0x7fd54948d567 [ 62.664058][ T5507] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.683848][ T5507] RSP: 002b:00007ffdb28e5a18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 62.692257][ T5507] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd54948d567 [ 62.700219][ T5507] RDX: 00007ffdb28e5ae9 RSI: 000000000000000a RDI: 00007ffdb28e5ae0 [ 62.708185][ T5507] RBP: 00007ffdb28e5ae0 R08: 00000000ffffffff R09: 00007ffdb28e58b0 [ 62.716150][ T5507] R10: 00005555555e98b3 R11: 0000000000000246 R12: 00007fd5494e6b24 [ 62.724126][ T5507] R13: 00007ffdb28e6ba0 R14: 00005555555e9810 R15: 00007ffdb28e6be0 [ 62.732102][ T5507] [ 62.741416][ T5507] ================================================================================ [ 62.750823][ T5507] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 62.758022][ T5507] CPU: 1 PID: 5507 Comm: syz-executor.0 Not tainted 6.2.0-rc1-syzkaller-dirty #0 [ 62.767228][ T5507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 62.777286][ T5507] Call Trace: [ 62.780567][ T5507] [ 62.783505][ T5507] dump_stack_lvl+0xd1/0x138 [ 62.788201][ T5507] panic+0x2cc/0x626 [ 62.792116][ T5507] ? panic_print_sys_info.part.0+0x110/0x110 [ 62.798119][ T5507] ? record_print_text.cold+0x16/0x16 [ 62.803513][ T5507] check_panic_on_warn.cold+0x19/0x35 [ 62.808912][ T5507] __ubsan_handle_out_of_bounds.cold+0x62/0x6c [ 62.815087][ T5507] __gfs2_iomap_get+0x1654/0x1a60 [ 62.820142][ T5507] ? __gfs2_iomap_alloc+0x1e00/0x1e00 [ 62.825542][ T5507] gfs2_iomap_get+0xb1/0x1e0 [ 62.830149][ T5507] ? gfs2_iomap_begin+0x1750/0x1750 [ 62.835362][ T5507] ? preempt_schedule_thunk+0x1a/0x20 [ 62.840769][ T5507] gfs2_block_map+0x232/0xc20 [ 62.845558][ T5507] ? gfs2_iomap_alloc+0x270/0x270 [ 62.850611][ T5507] ? __wait_on_freeing_inode+0x140/0x140 [ 62.856263][ T5507] ? gfs2_inode_refresh+0xb1/0x1070 [ 62.861480][ T5507] gfs2_write_alloc_required+0x3f1/0x510 [ 62.867138][ T5507] ? gfs2_map_journal_extents+0x7e0/0x7e0 [ 62.872882][ T5507] ? from_kgid+0x8b/0xd0 [ 62.877145][ T5507] ? from_kuid_munged+0x130/0x130 [ 62.882192][ T5507] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 62.888105][ T5507] ? from_kqid+0xf6/0x1d0 [ 62.892443][ T5507] ? qid_valid+0x130/0x130 [ 62.896874][ T5507] do_sync+0x707/0xcf0 [ 62.900964][ T5507] ? gfs2_qa_put+0x160/0x160 [ 62.905574][ T5507] ? gfs2_quota_sync+0x3f5/0x660 [ 62.910536][ T5507] ? gfs2_quota_sync+0x2e6/0x660 [ 62.915489][ T5507] ? rwlock_bug.part.0+0x90/0x90 [ 62.920446][ T5507] gfs2_quota_sync+0x2e6/0x660 [ 62.925241][ T5507] gfs2_sync_fs+0x44/0xb0 [ 62.929587][ T5507] ? rgrp_unlock_local+0x20/0x20 [ 62.934550][ T5507] sync_filesystem.part.0+0x75/0x1d0 [ 62.939864][ T5507] sync_filesystem+0x8f/0xc0 [ 62.944471][ T5507] generic_shutdown_super+0x74/0x410 [ 62.949772][ T5507] kill_block_super+0x9b/0xf0 [ 62.954573][ T5507] gfs2_kill_sb+0x108/0x170 [ 62.959097][ T5507] deactivate_locked_super+0x98/0x160 [ 62.964491][ T5507] deactivate_super+0xb1/0xd0 [ 62.969188][ T5507] cleanup_mnt+0x2ae/0x3d0 [ 62.973624][ T5507] task_work_run+0x16f/0x270 [ 62.978235][ T5507] ? task_work_cancel+0x30/0x30 [ 62.983109][ T5507] exit_to_user_mode_prepare+0x23c/0x250 [ 62.988755][ T5507] syscall_exit_to_user_mode+0x1d/0x50 [ 62.994227][ T5507] do_syscall_64+0x46/0xb0 [ 62.998664][ T5507] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 63.004577][ T5507] RIP: 0033:0x7fd54948d567 [ 63.008999][ T5507] Code: ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 63.028619][ T5507] RSP: 002b:00007ffdb28e5a18 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 63.037049][ T5507] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd54948d567 [ 63.045030][ T5507] RDX: 00007ffdb28e5ae9 RSI: 000000000000000a RDI: 00007ffdb28e5ae0 [ 63.053014][ T5507] RBP: 00007ffdb28e5ae0 R08: 00000000ffffffff R09: 00007ffdb28e58b0 [ 63.060995][ T5507] R10: 00005555555e98b3 R11: 0000000000000246 R12: 00007fd5494e6b24 [ 63.069148][ T5507] R13: 00007ffdb28e6ba0 R14: 00005555555e9810 R15: 00007ffdb28e6be0 [ 63.077141][ T5507] [ 63.081036][ T5507] Kernel Offset: disabled [ 63.085486][ T5507] Rebooting in 86400 seconds..