Warning: Permanently added '[localhost]:36815' (ED25519) to the list of known hosts.
2025/04/10 05:35:23 ignoring optional flag "sandboxArg"="0"
2025/04/10 05:35:25 parsed 1 programs
[  122.880292][ T5475] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  126.882040][ T5375] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  126.894280][ T5375] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  126.900388][ T5375] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  126.904167][ T5375] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  126.907803][ T5375] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  128.037216][ T5532] chnl_net:caif_netlink_parms(): no params data found
[  128.110241][ T5532] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.113466][ T5532] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.116512][ T5532] bridge_slave_0: entered allmulticast mode
[  128.121779][ T5532] bridge_slave_0: entered promiscuous mode
[  128.126098][ T5532] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.130209][ T5532] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.133281][ T5532] bridge_slave_1: entered allmulticast mode
[  128.137061][ T5532] bridge_slave_1: entered promiscuous mode
[  128.166308][ T5532] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  128.173458][ T5532] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  128.203688][ T5532] team0: Port device team_slave_0 added
[  128.210096][ T5532] team0: Port device team_slave_1 added
[  128.233997][ T5532] batman_adv: batadv0: Adding interface: batadv_slave_0
[  128.236962][ T5532] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.251221][ T5532] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  128.258324][ T5532] batman_adv: batadv0: Adding interface: batadv_slave_1
[  128.261305][ T5532] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.273832][ T5532] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  128.316047][ T5532] hsr_slave_0: entered promiscuous mode
[  128.319387][ T5532] hsr_slave_1: entered promiscuous mode
[  128.443306][ T5532] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.490542][ T5532] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.526230][ T5532] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.563941][ T5532] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.656713][ T5532] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  128.662461][ T5532] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  128.670435][ T5532] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  128.675833][ T5532] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  128.695349][ T5532] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.698262][ T5532] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.701774][ T5532] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.704429][ T5532] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.761039][ T5532] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.773914][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.779036][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.791021][ T5532] 8021q: adding VLAN 0 to HW filter on device team0
[  128.800689][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.803574][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.813223][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.816111][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.984590][ T5532] 8021q: adding VLAN 0 to HW filter on device batadv0
[  129.021974][ T5532] veth0_vlan: entered promiscuous mode
[  129.032177][ T5532] veth1_vlan: entered promiscuous mode
[  129.059405][ T5532] veth0_macvtap: entered promiscuous mode
[  129.066071][ T5532] veth1_macvtap: entered promiscuous mode
[  129.081412][ T5532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  129.085535][ T5532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.092475][ T5532] batman_adv: batadv0: Interface activated: batadv_slave_0
[  129.101483][ T5532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  129.105585][ T5532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  129.112295][ T5532] batman_adv: batadv0: Interface activated: batadv_slave_1
[  129.120845][ T5532] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  129.124288][ T5532] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  129.130779][ T5532] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  129.134430][ T5532] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.766571][   T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.781654][   T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  130.804087][   T31] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  130.809359][   T31] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/04/10 05:35:38 executed programs: 0
[  131.236943][ T5375] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  131.242703][ T5375] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  131.246197][ T5375] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  131.252704][ T5375] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  131.256475][ T5375] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  131.424497][ T5579] chnl_net:caif_netlink_parms(): no params data found
[  131.493565][ T5579] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.496565][ T5579] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.500600][ T5579] bridge_slave_0: entered allmulticast mode
[  131.504453][ T5579] bridge_slave_0: entered promiscuous mode
[  131.512299][ T5579] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.515298][ T5579] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.519326][ T5579] bridge_slave_1: entered allmulticast mode
[  131.526389][ T5579] bridge_slave_1: entered promiscuous mode
[  131.554747][ T5579] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.563200][ T5579] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.590802][ T5579] team0: Port device team_slave_0 added
[  131.596220][ T5579] team0: Port device team_slave_1 added
[  131.621993][ T5579] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.627039][ T5579] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.641328][ T5579] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.647726][ T5579] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.650592][ T5579] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.663759][ T5579] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.703711][ T5579] hsr_slave_0: entered promiscuous mode
[  131.706882][ T5579] hsr_slave_1: entered promiscuous mode
[  131.710838][ T5579] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  131.713958][ T5579] Cannot create hsr debugfs directory
[  131.825485][ T5579] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.522015][ T5579] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.557251][ T5579] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.601881][ T5579] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.697277][ T5579] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  132.706480][ T5579] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  132.713447][ T5579] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  132.722465][ T5579] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  132.809788][ T5579] 8021q: adding VLAN 0 to HW filter on device bond0
[  132.827083][ T5579] 8021q: adding VLAN 0 to HW filter on device team0
[  132.836000][ T1037] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.839055][ T1037] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.853915][ T1037] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.856737][ T1037] bridge0: port 2(bridge_slave_1) entered forwarding state
[  133.036223][ T5579] 8021q: adding VLAN 0 to HW filter on device batadv0
[  133.074258][ T5579] veth0_vlan: entered promiscuous mode
[  133.090448][ T5579] veth1_vlan: entered promiscuous mode
[  133.122602][ T5579] veth0_macvtap: entered promiscuous mode
[  133.128941][ T5579] veth1_macvtap: entered promiscuous mode
[  133.143061][ T5579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  133.149235][ T5579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.153157][ T5579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  133.157237][ T5579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.166281][ T5579] batman_adv: batadv0: Interface activated: batadv_slave_0
[  133.175617][ T5579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.181791][ T5579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.185773][ T5579] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  133.192579][ T5579] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  133.201869][ T5579] batman_adv: batadv0: Interface activated: batadv_slave_1
[  133.209711][ T5579] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  133.213418][ T5579] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  133.216875][ T5579] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  133.222632][ T5579] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  133.267997][ T4670] Bluetooth: hci0: command tx timeout
[  133.296688][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.311196][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.334735][   T31] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.340132][   T31] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.614712][ T5593] loop0: detected capacity change from 0 to 32768
[  133.629550][   T25] audit: type=1800 audit(1744263340.491:2): pid=5593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16" name="file1" dev="loop0" ino=4 res=0 errno=0
[  133.657870][ T5593] loop0: detected capacity change from 32768 to 32736
[  133.661383][ T5593] 
[  133.662361][ T5593] ======================================================
[  133.665074][ T5593] WARNING: possible circular locking dependency detected
[  133.667951][ T5593] 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 Not tainted
[  133.671872][ T5593] ------------------------------------------------------
[  133.674648][ T5593] syz.0.16/5593 is trying to acquire lock:
[  133.677003][ T5593] ffffffff90467508 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x280/0x580
[  133.681342][ T5593] 
[  133.681342][ T5593] but task is already holding lock:
[  133.684273][ T5593] ffff888034b01de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[  133.688287][ T5593] 
[  133.688287][ T5593] which lock already depends on the new lock.
[  133.688287][ T5593] 
[  133.692445][ T5593] 
[  133.692445][ T5593] the existing dependency chain (in reverse order) is:
[  133.695986][ T5593] 
[  133.695986][ T5593] -> #2 (&q->q_usage_counter(io)#17){++++}-{0:0}:
[  133.699419][ T5593]        lock_acquire+0x116/0x2f0
[  133.701497][ T5593]        blk_alloc_queue+0x542/0x620
[  133.703666][ T5593]        __blk_mq_alloc_disk+0x162/0x380
[  133.705891][ T5593]        loop_add+0x445/0xaf0
[  133.707796][ T5593]        loop_init+0x168/0x220
[  133.709714][ T5593]        do_one_initcall+0x24a/0x940
[  133.711923][ T5593]        do_initcall_level+0x157/0x210
[  133.714092][ T5593]        do_initcalls+0x71/0xd0
[  133.716101][ T5593]        kernel_init_freeable+0x432/0x5d0
[  133.718401][ T5593]        kernel_init+0x1d/0x2b0
[  133.720420][ T5593]        ret_from_fork+0x4b/0x80
[  133.722471][ T5593]        ret_from_fork_asm+0x1a/0x30
[  133.724544][ T5593] 
[  133.724544][ T5593] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  133.727396][ T5593]        lock_acquire+0x116/0x2f0
[  133.729423][ T5593]        fs_reclaim_acquire+0x88/0x130
[  133.731502][ T5593]        kmem_cache_alloc_node_noprof+0x4e/0x3b0
[  133.734013][ T5593]        __alloc_skb+0x1c2/0x480
[  133.736010][ T5593]        alloc_uevent_skb+0x74/0x230
[  133.738084][ T5593]        kobject_uevent_net_broadcast+0x2fd/0x580
[  133.740586][ T5593]        kobject_uevent_env+0x57d/0x8e0
[  133.742806][ T5593]        kobject_synth_uevent+0x4f4/0xaf0
[  133.745003][ T5593]        bus_uevent_store+0x116/0x170
[  133.747366][ T5593]        kernfs_fop_write_iter+0x398/0x510
[  133.749629][ T5593]        vfs_write+0x70f/0xd10
[  133.751685][ T5593]        ksys_write+0x19d/0x2d0
[  133.753575][ T5593]        do_syscall_64+0xf3/0x230
[  133.755622][ T5593]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.758165][ T5593] 
[  133.758165][ T5593] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  133.761274][ T5593]        validate_chain+0xa69/0x24e0
[  133.763395][ T5593]        __lock_acquire+0xad5/0xd80
[  133.765532][ T5593]        lock_acquire+0x116/0x2f0
[  133.767614][ T5593]        __mutex_lock+0x1a5/0x10c0
[  133.769980][ T5593]        kobject_uevent_net_broadcast+0x280/0x580
[  133.772990][ T5593]        kobject_uevent_env+0x57d/0x8e0
[  133.775258][ T5593]        set_capacity_and_notify+0x269/0x2d0
[  133.777752][ T5593]        loop_set_status+0x4a4/0xb20
[  133.779821][ T5593]        lo_ioctl+0xce1/0x2850
[  133.781819][ T5593]        blkdev_ioctl+0x5df/0x710
[  133.783876][ T5593]        __se_sys_ioctl+0xf1/0x160
[  133.785972][ T5593]        do_syscall_64+0xf3/0x230
[  133.787981][ T5593]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.790415][ T5593] 
[  133.790415][ T5593] other info that might help us debug this:
[  133.790415][ T5593] 
[  133.794503][ T5593] Chain exists of:
[  133.794503][ T5593]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#17
[  133.794503][ T5593] 
[  133.799908][ T5593]  Possible unsafe locking scenario:
[  133.799908][ T5593] 
[  133.802818][ T5593]        CPU0                    CPU1
[  133.805047][ T5593]        ----                    ----
[  133.807195][ T5593]   lock(&q->q_usage_counter(io)#17);
[  133.809405][ T5593]                                lock(fs_reclaim);
[  133.812019][ T5593]                                lock(&q->q_usage_counter(io)#17);
[  133.815115][ T5593]   lock(uevent_sock_mutex);
[  133.816954][ T5593] 
[  133.816954][ T5593]  *** DEADLOCK ***
[  133.816954][ T5593] 
[  133.820026][ T5593] 3 locks held by syz.0.16/5593:
[  133.822075][ T5593]  #0: ffff888033a2a368 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2b/0xb20
[  133.825808][ T5593]  #1: ffff888034b01de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[  133.829925][ T5593]  #2: ffff888034b01e20 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: loop_set_status+0x223/0xb20
[  133.834161][ T5593] 
[  133.834161][ T5593] stack backtrace:
[  133.836549][ T5593] CPU: 0 UID: 0 PID: 5593 Comm: syz.0.16 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  133.836564][ T5593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.836572][ T5593] Call Trace:
[  133.836579][ T5593]  <TASK>
[  133.836584][ T5593]  dump_stack_lvl+0x241/0x360
[  133.836604][ T5593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.836618][ T5593]  ? __pfx__printk+0x10/0x10
[  133.836632][ T5593]  ? print_lock+0x171/0x1a0
[  133.836645][ T5593]  print_circular_bug+0x2e1/0x300
[  133.836660][ T5593]  check_noncircular+0x142/0x160
[  133.836673][ T5593]  validate_chain+0xa69/0x24e0
[  133.836686][ T5593]  ? __pfx_number+0x10/0x10
[  133.836706][ T5593]  __lock_acquire+0xad5/0xd80
[  133.836718][ T5593]  lock_acquire+0x116/0x2f0
[  133.836728][ T5593]  ? kobject_uevent_net_broadcast+0x280/0x580
[  133.836744][ T5593]  ? vsnprintf+0x1156/0x1230
[  133.836758][ T5593]  __mutex_lock+0x1a5/0x10c0
[  133.836770][ T5593]  ? kobject_uevent_net_broadcast+0x280/0x580
[  133.836786][ T5593]  ? __pfx_vsnprintf+0x10/0x10
[  133.836801][ T5593]  ? kobject_uevent_net_broadcast+0x280/0x580
[  133.836815][ T5593]  ? __pfx___mutex_lock+0x10/0x10
[  133.836827][ T5593]  ? add_uevent_var+0x291/0x490
[  133.836841][ T5593]  ? kobject_uevent_env+0x503/0x8e0
[  133.836854][ T5593]  ? __pfx_add_uevent_var+0x10/0x10
[  133.836869][ T5593]  kobject_uevent_net_broadcast+0x280/0x580
[  133.836885][ T5593]  kobject_uevent_env+0x57d/0x8e0
[  133.836907][ T5593]  set_capacity_and_notify+0x269/0x2d0
[  133.836922][ T5593]  ? __pfx_set_capacity_and_notify+0x10/0x10
[  133.836935][ T5593]  ? __asan_memcpy+0x40/0x70
[  133.836947][ T5593]  ? loop_set_status_from_info+0x184/0x240
[  133.836962][ T5593]  loop_set_status+0x4a4/0xb20
[  133.836978][ T5593]  lo_ioctl+0xce1/0x2850
[  133.836992][ T5593]  ? kasan_save_track+0x51/0x80
[  133.837003][ T5593]  ? kasan_save_track+0x3f/0x80
[  133.837013][ T5593]  ? kasan_save_free_info+0x40/0x50
[  133.837022][ T5593]  ? __kasan_slab_free+0x59/0x70
[  133.837034][ T5593]  ? kfree+0x198/0x430
[  133.837047][ T5593]  ? __pfx_lo_ioctl+0x10/0x10
[  133.837057][ T5593]  ? vfs_open+0x3b/0x370
[  133.837071][ T5593]  ? path_openat+0x2caf/0x35d0
[  133.837082][ T5593]  ? do_filp_open+0x284/0x4e0
[  133.837095][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837105][ T5593]  ? xfd_validate_state+0x6e/0x150
[  133.837118][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837128][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837139][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837149][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837160][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837171][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837184][ T5593]  ? is_bpf_text_address+0x26/0x2a0
[  133.837197][ T5593]  ? is_bpf_text_address+0x288/0x2a0
[  133.837209][ T5593]  ? is_bpf_text_address+0x26/0x2a0
[  133.837220][ T5593]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  133.837235][ T5593]  ? kernel_text_address+0xa7/0xe0
[  133.837244][ T5593]  ? __kernel_text_address+0xd/0x40
[  133.837253][ T5593]  ? unwind_get_return_address+0x4d/0x90
[  133.837266][ T5593]  ? arch_stack_walk+0xff/0x150
[  133.837281][ T5593]  ? stack_trace_save+0x11a/0x1d0
[  133.837296][ T5593]  ? __pfx_stack_trace_save+0x10/0x10
[  133.837310][ T5593]  ? stack_depot_save_flags+0x44/0x940
[  133.837323][ T5593]  ? do_syscall_64+0xf3/0x230
[  133.837336][ T5593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.837347][ T5593]  ? do_vfs_ioctl+0xef8/0x2750
[  133.837366][ T5593]  ? kasan_quarantine_put+0xdc/0x230
[  133.837377][ T5593]  ? lockdep_hardirqs_on+0x9d/0x150
[  133.837391][ T5593]  ? tomoyo_path_number_perm+0x215/0x790
[  133.837405][ T5593]  ? blkdev_common_ioctl+0x1060/0x25a0
[  133.837419][ T5593]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  133.837431][ T5593]  ? tomoyo_path_number_perm+0x215/0x790
[  133.837444][ T5593]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  133.837457][ T5593]  ? do_sys_openat2+0x165/0x1d0
[  133.837472][ T5593]  ? __lock_acquire+0xad5/0xd80
[  133.837484][ T5593]  ? file_to_blk_mode+0xcb/0x140
[  133.837498][ T5593]  ? __pfx_lo_ioctl+0x10/0x10
[  133.837510][ T5593]  blkdev_ioctl+0x5df/0x710
[  133.837522][ T5593]  ? __pfx_blkdev_ioctl+0x10/0x10
[  133.837535][ T5593]  ? __pfx_blkdev_ioctl+0x10/0x10
[  133.837546][ T5593]  __se_sys_ioctl+0xf1/0x160
[  133.837558][ T5593]  do_syscall_64+0xf3/0x230
[  133.837571][ T5593]  ? clear_bhb_loop+0x45/0xa0
[  133.837583][ T5593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.837594][ T5593] RIP: 0033:0x7ff657b8cda9
[  133.837605][ T5593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.837614][ T5593] RSP: 002b:00007ff6579f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  133.837627][ T5593] RAX: ffffffffffffffda RBX: 00007ff657da5fa0 RCX: 00007ff657b8cda9
[  133.837635][ T5593] RDX: 0000000020000100 RSI: 0000000000004c02 RDI: 0000000000000005
[  133.837642][ T5593] RBP: 00007ff657c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  133.837648][ T5593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  133.837654][ T5593] R13: 0000000000000000 R14: 00007ff657da5fa0 R15: 00007fff1b06c028
[  133.837665][ T5593]  </TASK>
[  134.054380][ T5594] ERROR: (device loop0): dbAdjCtl: Corrupt dmapctl page
[  134.054380][ T5594] 
[  134.061401][ T5594] ERROR: (device loop0): remounting filesystem as read-only
[  134.070492][ T5594] ERROR: (device loop0): dbDiscardAG: -EIO
[  134.070492][ T5594] 
[  134.078673][ T5593] ERROR: (device loop0): dbAllocBits: leaf page corrupt
[  134.078673][ T5593] 
[  134.083900][ T5593] ------------[ cut here ]------------
[  134.086210][ T5593] UBSAN: shift-out-of-bounds in fs/jfs/jfs_dmap.c:3019:55
[  134.090259][ T5593] shift exponent 32 is too large for 32-bit type 'u32' (aka 'unsigned int')
[  134.093750][ T5593] CPU: 0 UID: 0 PID: 5593 Comm: syz.0.16 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  134.093766][ T5593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.093773][ T5593] Call Trace:
[  134.093778][ T5593]  <TASK>
[  134.093783][ T5593]  dump_stack_lvl+0x241/0x360
[  134.093802][ T5593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.093817][ T5593]  ? __pfx__printk+0x10/0x10
[  134.093830][ T5593]  ? filemap_get_entry+0x32a/0x3b0
[  134.093843][ T5593]  ? filemap_get_entry+0x125/0x3b0
[  134.093855][ T5593]  __ubsan_handle_shift_out_of_bounds+0x3c8/0x420
[  134.093870][ T5593]  ? lock_metapage+0x3f9/0x4a0
[  134.093887][ T5593]  dbFindBits+0x11a/0x1d0
[  134.093900][ T5593]  dbAllocDmapLev+0x22c/0x4b0
[  134.093932][ T5593]  ? __pfx_dbAllocDmapLev+0x10/0x10
[  134.093944][ T5593]  ? __get_metapage+0x91a/0xdc0
[  134.093957][ T5593]  dbAllocCtl+0x149/0x9b0
[  134.093968][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.093981][ T5593]  ? lock_release+0x4e/0x3e0
[  134.093992][ T5593]  dbAllocAG+0x2a1/0x1130
[  134.094004][ T5593]  ? __phys_addr+0xba/0x170
[  134.094017][ T5593]  ? __kasan_kmalloc_large+0x8c/0xa0
[  134.094031][ T5593]  ? __pfx_dbAllocAG+0x10/0x10
[  134.094041][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.094052][ T5593]  ? trace_kmalloc+0x1f/0xd0
[  134.094066][ T5593]  ? dbDiscardAG+0x234/0xa40
[  134.094076][ T5593]  ? down_read+0x813/0xa50
[  134.094090][ T5593]  dbDiscardAG+0x369/0xa40
[  134.094104][ T5593]  ? __pfx_dbDiscardAG+0x10/0x10
[  134.094115][ T5593]  ? __might_fault+0xaa/0x120
[  134.094130][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.094142][ T5593]  ? __might_fault+0xaa/0x120
[  134.094156][ T5593]  jfs_ioc_trim+0x45c/0x6b0
[  134.094172][ T5593]  jfs_ioctl+0x2e5/0x400
[  134.094185][ T5593]  ? __pfx_jfs_ioctl+0x10/0x10
[  134.094197][ T5593]  ? __pfx_jfs_ioctl+0x10/0x10
[  134.094209][ T5593]  __se_sys_ioctl+0xf1/0x160
[  134.094221][ T5593]  do_syscall_64+0xf3/0x230
[  134.094233][ T5593]  ? clear_bhb_loop+0x45/0xa0
[  134.094245][ T5593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.094255][ T5593] RIP: 0033:0x7ff657b8cda9
[  134.094265][ T5593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.094273][ T5593] RSP: 002b:00007ff6579f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.094286][ T5593] RAX: ffffffffffffffda RBX: 00007ff657da5fa0 RCX: 00007ff657b8cda9
[  134.094292][ T5593] RDX: 00000000200000c0 RSI: 00000000c0185879 RDI: 0000000000000004
[  134.094299][ T5593] RBP: 00007ff657c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  134.094305][ T5593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.094311][ T5593] R13: 0000000000000000 R14: 00007ff657da5fa0 R15: 00007fff1b06c028
[  134.094321][ T5593]  </TASK>
[  134.094410][ T5593] ---[ end trace ]---
[  134.214917][ T5593] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  134.217867][ T5593] CPU: 0 UID: 0 PID: 5593 Comm: syz.0.16 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  134.222507][ T5593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  134.226818][ T5593] Call Trace:
[  134.228176][ T5593]  <TASK>
[  134.229358][ T5593]  dump_stack_lvl+0x241/0x360
[  134.231198][ T5593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.233218][ T5593]  ? __pfx__printk+0x10/0x10
[  134.235068][ T5593]  ? vscnprintf+0x5d/0x90
[  134.236758][ T5593]  panic+0x349/0x880
[  134.238229][ T5593]  ? check_panic_on_warn+0x21/0xb0
[  134.240261][ T5593]  ? __pfx_panic+0x10/0x10
[  134.242090][ T5593]  ? _printk+0xd5/0x120
[  134.243773][ T5593]  ? __pfx__printk+0x10/0x10
[  134.245621][ T5593]  ? filemap_get_entry+0x32a/0x3b0
[  134.247691][ T5593]  check_panic_on_warn+0x86/0xb0
[  134.249586][ T5593]  __ubsan_handle_shift_out_of_bounds+0x3e7/0x420
[  134.252202][ T5593]  ? lock_metapage+0x3f9/0x4a0
[  134.254041][ T5593]  dbFindBits+0x11a/0x1d0
[  134.255804][ T5593]  dbAllocDmapLev+0x22c/0x4b0
[  134.257814][ T5593]  ? __pfx_dbAllocDmapLev+0x10/0x10
[  134.259798][ T5593]  ? __get_metapage+0x91a/0xdc0
[  134.261680][ T5593]  dbAllocCtl+0x149/0x9b0
[  134.263429][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.265372][ T5593]  ? lock_release+0x4e/0x3e0
[  134.267304][ T5593]  dbAllocAG+0x2a1/0x1130
[  134.269080][ T5593]  ? __phys_addr+0xba/0x170
[  134.270874][ T5593]  ? __kasan_kmalloc_large+0x8c/0xa0
[  134.272980][ T5593]  ? __pfx_dbAllocAG+0x10/0x10
[  134.274909][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.276851][ T5593]  ? trace_kmalloc+0x1f/0xd0
[  134.278766][ T5593]  ? dbDiscardAG+0x234/0xa40
[  134.280962][ T5593]  ? down_read+0x813/0xa50
[  134.283096][ T5593]  dbDiscardAG+0x369/0xa40
[  134.284928][ T5593]  ? __pfx_dbDiscardAG+0x10/0x10
[  134.286926][ T5593]  ? __might_fault+0xaa/0x120
[  134.288809][ T5593]  ? rcu_is_watching+0x15/0xb0
[  134.290780][ T5593]  ? __might_fault+0xaa/0x120
[  134.292781][ T5593]  jfs_ioc_trim+0x45c/0x6b0
[  134.294635][ T5593]  jfs_ioctl+0x2e5/0x400
[  134.296496][ T5593]  ? __pfx_jfs_ioctl+0x10/0x10
[  134.298487][ T5593]  ? __pfx_jfs_ioctl+0x10/0x10
[  134.300412][ T5593]  __se_sys_ioctl+0xf1/0x160
[  134.302322][ T5593]  do_syscall_64+0xf3/0x230
[  134.304178][ T5593]  ? clear_bhb_loop+0x45/0xa0
[  134.306125][ T5593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.308442][ T5593] RIP: 0033:0x7ff657b8cda9
[  134.310129][ T5593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.319124][ T5593] RSP: 002b:00007ff6579f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  134.322425][ T5593] RAX: ffffffffffffffda RBX: 00007ff657da5fa0 RCX: 00007ff657b8cda9
[  134.325551][ T5593] RDX: 00000000200000c0 RSI: 00000000c0185879 RDI: 0000000000000004
[  134.328688][ T5593] RBP: 00007ff657c0e2a0 R08: 0000000000000000 R09: 0000000000000000
[  134.331717][ T5593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  134.334584][ T5593] R13: 0000000000000000 R14: 00007ff657da5fa0 R15: 00007fff1b06c028
[  134.337715][ T5593]  </TASK>
[  134.339278][ T5593] Kernel Offset: disabled
[  134.341020][ T5593] Rebooting in 86400 seconds..