Warning: Permanently added '10.128.0.63' (ED25519) to the list of known hosts. 2024/05/27 15:44:28 ignoring optional flag "sandboxArg"="0" 2024/05/27 15:44:28 parsed 1 programs 2024/05/27 15:44:28 executed programs: 0 [ 40.005996][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.007774][ T2985] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.009855][ T2985] device bridge_slave_0 entered promiscuous mode [ 40.012018][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.013823][ T2985] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.016134][ T2985] device bridge_slave_1 entered promiscuous mode [ 40.189907][ T2985] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.191891][ T2985] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.193913][ T2985] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.195916][ T2985] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.491139][ T84] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.493414][ T84] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.496576][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.498580][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.542806][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.545491][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.547399][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.549464][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.551708][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.553560][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.555667][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.557908][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.888996][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.934359][ T2985] device veth0_vlan entered promiscuous mode [ 40.937460][ T2985] device veth1_vlan entered promiscuous mode [ 40.943725][ T2985] device veth0_macvtap entered promiscuous mode [ 40.946212][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.948513][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.950634][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.952622][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 40.954790][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 40.957031][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.959274][ T87] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 40.994532][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.996961][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.999286][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.001630][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.235586][ T3164] loop0: detected capacity change from 0 to 1024 [ 41.287080][ T9] ================================================================== [ 41.289275][ T9] BUG: KASAN: slab-out-of-bounds in copy_page_from_iter_atomic+0x95c/0x101c [ 41.291514][ T9] Read of size 2048 at addr ffff0000ca13b800 by task kworker/u4:0/9 [ 41.293617][ T9] [ 41.294199][ T9] CPU: 0 PID: 9 Comm: kworker/u4:0 Not tainted 6.1.92-syzkaller #0 [ 41.296248][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 41.298972][ T9] Workqueue: loop0 loop_workfn [ 41.300235][ T9] Call trace: [ 41.301153][ T9] dump_backtrace+0x1c8/0x1f4 [ 41.302382][ T9] show_stack+0x2c/0x3c [ 41.303432][ T9] dump_stack_lvl+0xc0/0x104 [ 41.304687][ T9] print_report+0x174/0x4c0 [ 41.305891][ T9] kasan_report+0xcc/0x124 [ 41.307056][ T9] kasan_check_range+0x264/0x2a4 [ 41.308273][ T9] memcpy+0x48/0x90 [ 41.309273][ T9] copy_page_from_iter_atomic+0x95c/0x101c [ 41.310788][ T9] generic_perform_write+0x2fc/0x548 [ 41.312163][ T9] __generic_file_write_iter+0x168/0x388 [ 41.313649][ T9] generic_file_write_iter+0xb8/0x2b4 [ 41.315017][ T9] do_iter_write+0x534/0x964 [ 41.316313][ T9] vfs_iter_write+0x88/0xac [ 41.317421][ T9] loop_process_work+0x15a4/0x238c [ 41.318782][ T9] loop_workfn+0x54/0x68 [ 41.319908][ T9] process_one_work+0x698/0xc7c [ 41.321144][ T9] worker_thread+0x860/0xea4 [ 41.322342][ T9] kthread+0x200/0x260 [ 41.323380][ T9] ret_from_fork+0x10/0x20 [ 41.324501][ T9] [ 41.325089][ T9] Allocated by task 3164: [ 41.326179][ T9] kasan_set_track+0x4c/0x80 [ 41.327336][ T9] kasan_save_alloc_info+0x24/0x30 [ 41.328739][ T9] __kasan_kmalloc+0xac/0xc4 [ 41.329931][ T9] __kmalloc+0xc4/0x118 [ 41.330951][ T9] hfsplus_read_wrapper+0x22c/0xcb4 [ 41.332368][ T9] hfsplus_fill_super+0x2f4/0x154c [ 41.333646][ T9] mount_bdev+0x25c/0x33c [ 41.334767][ T9] hfsplus_mount+0x44/0x58 [ 41.335912][ T9] legacy_get_tree+0xd4/0x16c [ 41.337163][ T9] vfs_get_tree+0x90/0x1c0 [ 41.338270][ T9] do_new_mount+0x278/0x8fc [ 41.339452][ T9] path_mount+0x590/0xe3c [ 41.340577][ T9] __arm64_sys_mount+0x45c/0x59c [ 41.341818][ T9] invoke_syscall+0x98/0x2c0 [ 41.342970][ T9] el0_svc_common+0x134/0x24c [ 41.344120][ T9] do_el0_svc+0x64/0x218 [ 41.345187][ T9] el0_svc+0x34/0x100 [ 41.346222][ T9] el0t_64_sync_handler+0x84/0xf0 [ 41.347456][ T9] el0t_64_sync+0x18c/0x190 [ 41.348597][ T9] [ 41.349184][ T9] The buggy address belongs to the object at ffff0000ca13b800 [ 41.349184][ T9] which belongs to the cache kmalloc-512 of size 512 [ 41.352987][ T9] The buggy address is located 0 bytes inside of [ 41.352987][ T9] 512-byte region [ffff0000ca13b800, ffff0000ca13ba00) [ 41.356428][ T9] [ 41.357054][ T9] The buggy address belongs to the physical page: [ 41.358671][ T9] page:000000001ba29d45 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10a138 [ 41.361402][ T9] head:000000001ba29d45 order:2 compound_mapcount:0 compound_pincount:0 [ 41.363615][ T9] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff) [ 41.365751][ T9] raw: 05ffc00000010200 0000000000000000 dead000000000001 ffff0000c0002600 [ 41.367988][ T9] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 41.370240][ T9] page dumped because: kasan: bad access detected [ 41.371904][ T9] [ 41.372428][ T9] Memory state around the buggy address: [ 41.373948][ T9] ffff0000ca13b900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 41.376069][ T9] ffff0000ca13b980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 41.378126][ T9] >ffff0000ca13ba00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 41.380248][ T9] ^ [ 41.381275][ T9] ffff0000ca13ba80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 41.383398][ T9] ffff0000ca13bb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 41.385517][ T9] ================================================================== [ 41.387798][ T9] Disabling lock debugging due to kernel taint [ 41.398627][ T3166] loop0: detected capacity change from 0 to 1024 [ 41.437088][ T3168] loop0: detected capacity change from 0 to 1024 [ 41.494257][ T3170] loop0: detected capacity change from 0 to 1024 [ 41.534377][ T3172] loop0: detected capacity change from 0 to 1024 [ 41.586819][ T3174] loop0: detected capacity change from 0 to 1024 [ 41.636219][ T3176] loop0: detected capacity change from 0 to 1024 [ 41.709248][ T3178] loop0: detected capacity change from 0 to 1024 [ 41.764849][ T3180] loop0: detected capacity change from 0 to 1024 [ 41.815694][ T3182] loop0: detected capacity change from 0 to 1024 [ 41.865627][ T3184] loop0: detected capacity change from 0 to 1024 [ 41.916197][ T3186] loop0: detected capacity change from 0 to 1024 [ 41.975813][ T3188] loop0: detected capacity change from 0 to 1024 [ 42.057006][ T3190] loop0: detected capacity change from 0 to 1024 [ 42.107351][ T3192] loop0: detected capacity change from 0 to 1024 [ 42.154681][ T3194] loop0: detected capacity change from 0 to 1024 [ 42.196157][ T3196] loop0: detected capacity change from 0 to 1024 [ 42.256600][ T3198] loop0: detected capacity change from 0 to 1024 [ 42.326351][ T3200] loop0: detected capacity change from 0 to 1024 [ 42.384381][ T3202] loop0: detected capacity change from 0 to 1024 [ 42.426951][ T3204] loop0: detected capacity change from 0 to 1024 [ 42.484759][ T3206] loop0: detected capacity change from 0 to 1024 [ 42.546243][ T3208] loop0: detected capacity change from 0 to 1024 [ 42.615836][ T3210] loop0: detected capacity change from 0 to 1024 [ 42.682248][ T3212] loop0: detected capacity change from 0 to 1024 [ 42.716426][ T3214] loop0: detected capacity change from 0 to 1024 [ 42.774987][ T3216] loop0: detected capacity change from 0 to 1024 [ 42.814834][ T3218] loop0: detected capacity change from 0 to 1024 [ 42.874615][ T3220] loop0: detected capacity change from 0 to 1024 [ 42.946149][ T3222] loop0: detected capacity change from 0 to 1024 [ 43.004409][ T3224] loop0: detected capacity change from 0 to 1024 [ 43.097398][ T3226] loop0: detected capacity change from 0 to 1024 [ 43.134986][ T3228] loop0: detected capacity change from 0 to 1024 [ 43.195489][ T3230] loop0: detected capacity change from 0 to 1024 [ 43.245396][ T3232] loop0: detected capacity change from 0 to 1024 [ 43.326787][ T3234] loop0: detected capacity change from 0 to 1024 [ 43.385415][ T3236] loop0: detected capacity change from 0 to 1024 [ 43.434647][ T3238] loop0: detected capacity change from 0 to 1024 [ 43.485916][ T3240] loop0: detected capacity change from 0 to 1024 [ 43.545751][ T3242] loop0: detected capacity change from 0 to 1024 [ 43.597264][ T3244] loop0: detected capacity change from 0 to 1024 [ 43.647540][ T3246] loop0: detected capacity change from 0 to 1024 [ 43.696980][ T3248] loop0: detected capacity change from 0 to 1024 [ 43.737090][ T3250] loop0: detected capacity change from 0 to 1024 [ 43.785101][ T3252] loop0: detected capacity change from 0 to 1024 [ 43.826290][ T3254] loop0: detected capacity change from 0 to 1024 [ 43.886792][ T3256] loop0: detected capacity change from 0 to 1024 [ 43.926605][ T3258] loop0: detected capacity change from 0 to 1024 [ 43.988557][ T3260] loop0: detected capacity change from 0 to 1024 [ 44.052730][ T3262] loop0: detected capacity change from 0 to 1024 [ 44.116708][ T3264] loop0: detected capacity change from 0 to 1024 [ 44.165039][ T3266] loop0: detected capacity change from 0 to 1024 [ 44.215420][ T3268] loop0: detected capacity change from 0 to 1024 [ 44.257329][ T3270] loop0: detected capacity change from 0 to 1024 [ 44.314899][ T3272] loop0: detected capacity change from 0 to 1024 [ 44.406299][ T3274] loop0: detected capacity change from 0 to 1024 [ 44.476440][ T3276] loop0: detected capacity change from 0 to 1024 [ 44.525958][ T3278] loop0: detected capacity change from 0 to 1024 [ 44.596018][ T3280] loop0: detected capacity change from 0 to 1024 [ 44.645703][ T3282] loop0: detected capacity change from 0 to 1024 [ 44.695055][ T3284] loop0: detected capacity change from 0 to 1024 [ 44.746840][ T3286] loop0: detected capacity change from 0 to 1024 [ 44.795363][ T3288] loop0: detected capacity change from 0 to 1024 2024/05/27 15:44:33 executed programs: 63 [ 44.866762][ T3290] loop0: detected capacity change from 0 to 1024 [ 44.915340][ T3292] loop0: detected capacity change from 0 to 1024 [ 44.954158][ T3294] loop0: detected capacity change from 0 to 1024 [ 45.004910][ T3296] loop0: detected capacity change from 0 to 1024 [ 45.067125][ T3298] loop0: detected capacity change from 0 to 1024 [ 45.124313][ T3300] loop0: detected capacity change from 0 to 1024 [ 45.194987][ T3302] loop0: detected capacity change from 0 to 1024 [ 45.235886][ T3304] loop0: detected capacity change from 0 to 1024 [ 45.296693][ T3306] loop0: detected capacity change from 0 to 1024 [ 45.345019][ T3308] loop0: detected capacity change from 0 to 1024 [ 45.395534][ T3310] loop0: detected capacity change from 0 to 1024 [ 45.445327][ T3312] loop0: detected capacity change from 0 to 1024 [ 45.495353][ T3314] loop0: detected capacity change from 0 to 1024 [ 45.575419][ T3316] loop0: detected capacity change from 0 to 1024 [ 45.624780][ T3318] loop0: detected capacity change from 0 to 1024 [ 45.695738][ T3320] loop0: detected capacity change from 0 to 1024 [ 45.753847][ T3322] loop0: detected capacity change from 0 to 1024 [ 45.806019][ T3324] loop0: detected capacity change from 0 to 1024 [ 45.869686][ T3326] loop0: detected capacity change from 0 to 1024 [ 45.914383][ T3328] loop0: detected capacity change from 0 to 1024 [ 45.975441][ T3330] loop0: detected capacity change from 0 to 1024 [ 46.026179][ T3332] loop0: detected capacity change from 0 to 1024 [ 46.097424][ T3334] loop0: detected capacity change from 0 to 1024 [ 46.137224][ T3336] loop0: detected capacity change from 0 to 1024 [ 46.186025][ T3338] loop0: detected capacity change from 0 to 1024 [ 46.266619][ T3340] loop0: detected capacity change from 0 to 1024 [ 46.317367][ T3342] loop0: detected capacity change from 0 to 1024 [ 46.377314][ T3344] loop0: detected capacity change from 0 to 1024 [ 46.427067][ T3346] loop0: detected capacity change from 0 to 1024 [ 46.496917][ T3348] loop0: detected capacity change from 0 to 1024 [ 46.545484][ T3350] loop0: detected capacity change from 0 to 1024 [ 46.587805][ T3352] loop0: detected capacity change from 0 to 1024 [ 46.637389][ T3354] loop0: detected capacity change from 0 to 1024 [ 46.732185][ T3356] loop0: detected capacity change from 0 to 1024 [ 46.777244][ T3358] loop0: detected capacity change from 0 to 1024 [ 46.846129][ T3360] loop0: detected capacity change from 0 to 1024 [ 46.915406][ T3362] loop0: detected capacity change from 0 to 1024 [ 47.015739][ T3364] loop0: detected capacity change from 0 to 1024 [ 47.097549][ T3366] loop0: detected capacity change from 0 to 1024 [ 47.135924][ T3368] loop0: detected capacity change from 0 to 1024 [ 47.186863][ T3370] loop0: detected capacity change from 0 to 1024 [ 47.239158][ T3372] loop0: detected capacity change from 0 to 1024 [ 47.286647][ T3374] loop0: detected capacity change from 0 to 1024 [ 47.327770][ T3376] loop0: detected capacity change from 0 to 1024 [ 47.376826][ T3378] loop0: detected capacity change from 0 to 1024 [ 47.416879][ T3380] loop0: detected capacity change from 0 to 1024 [ 47.466701][ T3382] loop0: detected capacity change from 0 to 1024 [ 47.535951][ T3384] loop0: detected capacity change from 0 to 1024 [ 47.597073][ T3386] loop0: detected capacity change from 0 to 1024 [ 47.636730][ T3388] loop0: detected capacity change from 0 to 1024 [ 47.666236][ T3390] loop0: detected capacity change from 0 to 1024 [ 47.714451][ T3392] loop0: detected capacity change from 0 to 1024 [ 47.774610][ T3394] loop0: detected capacity change from 0 to 1024 [ 47.854913][ T3396] loop0: detected capacity change from 0 to 1024 [ 47.937711][ T3398] loop0: detected capacity change from 0 to 1024 [ 47.995133][ T3400] loop0: detected capacity change from 0 to 1024 [ 48.036645][ T3402] loop0: detected capacity change from 0 to 1024 [ 48.086723][ T3404] loop0: detected capacity change from 0 to 1024 [ 48.145152][ T3406] loop0: detected capacity change from 0 to 1024 [ 48.225041][ T3408] loop0: detected capacity change from 0 to 1024 [ 48.275312][ T3410] loop0: detected capacity change from 0 to 1024 [ 48.333946][ T3412] loop0: detected capacity change from 0 to 1024 [ 48.385346][ T3414] loop0: detected capacity change from 0 to 1024 [ 48.475813][ T3416] loop0: detected capacity change from 0 to 1024 [ 48.515818][ T3418] loop0: detected capacity change from 0 to 1024 [ 48.565493][ T3420] loop0: detected capacity change from 0 to 1024 [ 48.636006][ T3422] loop0: detected capacity change from 0 to 1024 [ 48.696653][ T3424] loop0: detected capacity change from 0 to 1024 [ 48.747032][ T3426] loop0: detected capacity change from 0 to 1024 [ 48.803943][ T3428] loop0: detected capacity change from 0 to 1024 [ 48.855224][ T3430] loop0: detected capacity change from 0 to 1024 [ 48.905884][ T3432] loop0: detected capacity change from 0 to 1024 [ 48.986901][ T3434] loop0: detected capacity change from 0 to 1024 [ 49.036167][ T3436] loop0: detected capacity change from 0 to 1024 [ 49.096168][ T3438] loop0: detected capacity change from 0 to 1024 [ 49.159980][ T3440] loop0: detected capacity change from 0 to 1024 [ 49.215972][ T3442] loop0: detected capacity change from 0 to 1024 [ 49.257478][ T3444] loop0: detected capacity change from 0 to 1024 [ 49.313778][ T3446] loop0: detected capacity change from 0 to 1024 [ 49.374099][ T3448] loop0: detected capacity change from 0 to 1024 [ 49.435146][ T3450] loop0: detected capacity change from 0 to 1024 [ 49.495796][ T3452] loop0: detected capacity change from 0 to 1024 [ 49.566684][ T3454] loop0: detected capacity change from 0 to 1024 [ 49.617112][ T3456] loop0: detected capacity change from 0 to 1024 [ 49.665473][ T3458] loop0: detected capacity change from 0 to 1024 [ 49.706416][ T3460] loop0: detected capacity change from 0 to 1024 [ 49.807517][ T3462] loop0: detected capacity change from 0 to 1024 [ 49.864467][ T3464] loop0: detected capacity change from 0 to 1024 2024/05/27 15:44:38 executed programs: 151 [ 49.935256][ T3466] loop0: detected capacity change from 0 to 1024 [ 49.986171][ T3468] loop0: detected capacity change from 0 to 1024 [ 50.067181][ T3470] loop0: detected capacity change from 0 to 1024 [ 50.105718][ T3472] loop0: detected capacity change from 0 to 1024 [ 50.155654][ T3474] loop0: detected capacity change from 0 to 1024 [ 50.227167][ T3476] loop0: detected capacity change from 0 to 1024 [ 50.267420][ T3478] loop0: detected capacity change from 0 to 1024 [ 50.356208][ T3480] loop0: detected capacity change from 0 to 1024 [ 50.413715][ T3482] loop0: detected capacity change from 0 to 1024 [ 50.465003][ T3484] loop0: detected capacity change from 0 to 1024 [ 50.526897][ T3486] loop0: detected capacity change from 0 to 1024 [ 50.574680][ T3488] loop0: detected capacity change from 0 to 1024 [ 50.625460][ T3490] loop0: detected capacity change from 0 to 1024 [ 50.717544][ T3492] loop0: detected capacity change from 0 to 1024 [ 50.766773][ T3494] loop0: detected capacity change from 0 to 1024 [ 50.837923][ T3496] loop0: detected capacity change from 0 to 1024 [ 50.887256][ T3498] loop0: detected capacity change from 0 to 1024 [ 50.936960][ T3500] loop0: detected capacity change from 0 to 1024 [ 50.977342][ T3502] loop0: detected capacity change from 0 to 1024 [ 51.004690][ T3504] loop0: detected capacity change from 0 to 1024 [ 51.064939][ T3506] loop0: detected capacity change from 0 to 1024 [ 51.135447][ T3508] loop0: detected capacity change from 0 to 1024 [ 51.195024][ T3510] loop0: detected capacity change from 0 to 1024 [ 51.243833][ T3512] loop0: detected capacity change from 0 to 1024