Warning: Permanently added '10.128.1.140' (ECDSA) to the list of known hosts. 1970/01/01 00:00:58 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:58 parsed 1 programs 1970/01/01 00:00:58 executed programs: 0 [ 58.619533][ T5546] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 58.621833][ T5546] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 58.624061][ T5546] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 58.626285][ T5546] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 58.628221][ T5546] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 58.629885][ T5546] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 58.701278][ T6328] chnl_net:caif_netlink_parms(): no params data found [ 58.729029][ T6328] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.730662][ T6328] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.732367][ T6328] bridge_slave_0: entered allmulticast mode [ 58.734303][ T6328] bridge_slave_0: entered promiscuous mode [ 58.736984][ T6328] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.738503][ T6328] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.740074][ T6328] bridge_slave_1: entered allmulticast mode [ 58.741780][ T6328] bridge_slave_1: entered promiscuous mode [ 58.754827][ T6328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.758272][ T6328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.769897][ T6328] team0: Port device team_slave_0 added [ 58.772521][ T6328] team0: Port device team_slave_1 added [ 58.783796][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 58.785314][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.790793][ T6328] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 58.794579][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 58.796116][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 58.801548][ T6328] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 58.864187][ T6328] hsr_slave_0: entered promiscuous mode [ 58.922528][ T6328] hsr_slave_1: entered promiscuous mode [ 59.588465][ T6328] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 59.614771][ T6328] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 59.686730][ T6328] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 59.743646][ T6328] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 59.819907][ T6328] 8021q: adding VLAN 0 to HW filter on device bond0 [ 59.827038][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 59.828937][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 59.835588][ T6328] 8021q: adding VLAN 0 to HW filter on device team0 [ 59.839082][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 59.841306][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 59.845212][ T5556] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.846671][ T5556] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.849677][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.865047][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.867031][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.868941][ T22] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.870676][ T22] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.873254][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.875508][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.877748][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 59.880317][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.883628][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 59.885994][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.888338][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 59.890295][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.892498][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 59.894616][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.897794][ T6328] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.902837][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.991377][ T6328] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.994041][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 59.995603][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 60.005571][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 60.007647][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 60.017536][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 60.019516][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 60.021864][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 60.024816][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 60.028711][ T6328] veth0_vlan: entered promiscuous mode [ 60.034687][ T6328] veth1_vlan: entered promiscuous mode [ 60.044826][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 60.046831][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 60.048831][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 60.050929][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 60.055867][ T6328] veth0_macvtap: entered promiscuous mode [ 60.059785][ T6328] veth1_macvtap: entered promiscuous mode [ 60.068739][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.070349][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 60.072665][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 60.074610][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 60.076648][ T5556] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 60.081282][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.085087][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 60.087262][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 60.089861][ T6328] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.091699][ T6328] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.094122][ T6328] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.096049][ T6328] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.130537][ T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.132344][ T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.134989][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 60.155353][ T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.157085][ T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.159583][ T5993] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 60.531812][ T6415] loop0: detected capacity change from 0 to 32768 [ 60.540862][ T6415] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 60.543748][ T6415] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 60.554113][ T6415] gfs2: fsid=syz:syz.0: journal 0 mapped with 4 extents in 0ms [ 60.557751][ T5993] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 60.559332][ T5993] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 60.624020][ T5993] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 64ms [ 60.627785][ T5993] gfs2: fsid=syz:syz.0: jid=0: Done [ 60.629339][ T6415] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 60.643530][ T5978] Bluetooth: hci0: command 0x0409 tx timeout [ 60.808670][ T6415] gfs2: fsid=syz:syz.0: found 1 quota changes [ 60.926869][ T6328] syz-executor.0: attempt to access beyond end of device [ 60.926869][ T6328] loop0: rw=1, sector=131324, nr_sectors = 4 limit=32768 [ 60.929893][ T6328] gfs2: fsid=syz:syz.0: Error 10 writing to journal, jid=0 [ 60.931924][ T6328] gfs2: fsid=syz:syz.0: fatal: I/O error(s) [ 60.933467][ T6328] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 60.934938][ T6328] BUG: sleeping function called from invalid context at fs/gfs2/glock.c:1336 [ 60.936850][ T6328] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 6328, name: syz-executor.0 [ 60.938966][ T6328] preempt_count: 1, expected: 0 [ 60.940016][ T6328] RCU nest depth: 0, expected: 0 [ 60.941177][ T6328] 4 locks held by syz-executor.0/6328: [ 60.942450][ T6328] #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 [ 60.944524][ T6328] #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 [ 60.946824][ T6328] #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac [ 60.949079][ T6328] #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 [ 60.951186][ T6328] Preemption disabled at: [ 60.951196][ T6328] [] gfs2_flush_revokes+0x50/0x94 [ 60.953540][ T6328] CPU: 0 PID: 6328 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller #0 [ 60.955365][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 60.957434][ T6328] Call trace: [ 60.958150][ T6328] dump_backtrace+0x1b8/0x1e4 [ 60.959137][ T6328] show_stack+0x2c/0x44 [ 60.959976][ T6328] dump_stack_lvl+0xd0/0x124 [ 60.960896][ T6328] dump_stack+0x1c/0x28 [ 60.961780][ T6328] __might_resched+0x374/0x4d0 [ 60.962794][ T6328] __might_sleep+0x90/0xe4 [ 60.963830][ T6328] gfs2_glock_wait+0x60/0x298 [ 60.964846][ T6328] gfs2_glock_nq+0x94c/0x137c [ 60.965873][ T6328] gfs2_freeze_lock+0x78/0xf0 [ 60.966894][ T6328] gfs2_withdraw+0x49c/0x134c [ 60.967942][ T6328] gfs2_ail1_empty+0x734/0x7c4 [ 60.969022][ T6328] gfs2_flush_revokes+0x5c/0x94 [ 60.970013][ T6328] revoke_lo_before_commit+0x3c/0x640 [ 60.971106][ T6328] gfs2_log_flush+0x950/0x21ac [ 60.972171][ T6328] do_sync+0x8e0/0xaf4 [ 60.973023][ T6328] gfs2_quota_sync+0x2e4/0x534 [ 60.973994][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 60.974945][ T6328] sync_filesystem+0xe8/0x218 [ 60.975872][ T6328] generic_shutdown_super+0x70/0x328 [ 60.977028][ T6328] kill_block_super+0x70/0xdc [ 60.977957][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 60.978910][ T6328] deactivate_locked_super+0xac/0x124 [ 60.980123][ T6328] deactivate_super+0xe0/0x100 [ 60.981118][ T6328] cleanup_mnt+0x34c/0x3dc [ 60.982110][ T6328] __cleanup_mnt+0x20/0x30 [ 60.983069][ T6328] task_work_run+0x230/0x2e0 [ 60.983999][ T6328] do_notify_resume+0x2180/0x3c90 [ 60.985035][ T6328] el0_svc+0x90/0x15c [ 60.985818][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 60.986883][ T6328] el0t_64_sync+0x190/0x194 [ 60.988293][ T6328] BUG: scheduling while atomic: syz-executor.0/6328/0x00000002 [ 60.989849][ T6328] 4 locks held by syz-executor.0/6328: [ 60.991041][ T6328] #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 [ 60.993376][ T6328] #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 [ 60.995680][ T6328] #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac [ 60.997944][ T6328] #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 [ 61.000106][ T6328] Modules linked in: [ 61.000927][ T6328] Preemption disabled at: [ 61.000936][ T6328] [] gfs2_flush_revokes+0x50/0x94 [ 61.003185][ T6328] CPU: 0 PID: 6328 Comm: syz-executor.0 Tainted: G W 6.4.0-rc2-syzkaller #0 [ 61.005305][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 61.007400][ T6328] Call trace: [ 61.008122][ T6328] dump_backtrace+0x1b8/0x1e4 [ 61.009101][ T6328] show_stack+0x2c/0x44 [ 61.009890][ T6328] dump_stack_lvl+0xd0/0x124 [ 61.010889][ T6328] dump_stack+0x1c/0x28 [ 61.011732][ T6328] __schedule_bug+0x128/0x1dc [ 61.012731][ T6328] __schedule+0x140c/0x23b8 [ 61.013672][ T6328] schedule+0xc4/0x170 [ 61.014522][ T6328] schedule_timeout+0xb8/0x348 [ 61.015531][ T6328] do_wait_for_common+0x30c/0x468 [ 61.016598][ T6328] wait_for_completion+0x48/0x60 [ 61.017687][ T6328] kthread_stop+0x1b4/0x790 [ 61.018646][ T6328] gfs2_make_fs_ro+0x154/0x5d4 [ 61.019601][ T6328] gfs2_withdraw+0x4dc/0x134c [ 61.020661][ T6328] gfs2_ail1_empty+0x734/0x7c4 [ 61.021710][ T6328] gfs2_flush_revokes+0x5c/0x94 [ 61.022669][ T6328] revoke_lo_before_commit+0x3c/0x640 [ 61.023810][ T6328] gfs2_log_flush+0x950/0x21ac [ 61.024822][ T6328] do_sync+0x8e0/0xaf4 [ 61.025636][ T6328] gfs2_quota_sync+0x2e4/0x534 [ 61.026676][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 61.027629][ T6328] sync_filesystem+0xe8/0x218 [ 61.028557][ T6328] generic_shutdown_super+0x70/0x328 [ 61.029720][ T6328] kill_block_super+0x70/0xdc [ 61.030719][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 61.031667][ T6328] deactivate_locked_super+0xac/0x124 [ 61.032777][ T6328] deactivate_super+0xe0/0x100 [ 61.033770][ T6328] cleanup_mnt+0x34c/0x3dc [ 61.034697][ T6328] __cleanup_mnt+0x20/0x30 [ 61.035638][ T6328] task_work_run+0x230/0x2e0 [ 61.036612][ T6328] do_notify_resume+0x2180/0x3c90 [ 61.037677][ T6328] el0_svc+0x90/0x15c [ 61.038535][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 61.039611][ T6328] el0t_64_sync+0x190/0x194 [ 62.722825][ T5978] Bluetooth: hci0: command 0x041b tx timeout [ 64.484024][ T2152] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.485782][ T2152] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.812139][ T5546] Bluetooth: hci0: command 0x040f tx timeout [ 66.082391][ T6328] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_slot_count" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1475 [ 66.085640][ T6328] CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G W 6.4.0-rc2-syzkaller #0 [ 66.087652][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 66.089797][ T6328] Call trace: [ 66.090500][ T6328] dump_backtrace+0x1b8/0x1e4 [ 66.091504][ T6328] show_stack+0x2c/0x44 [ 66.092373][ T6328] dump_stack_lvl+0xd0/0x124 [ 66.093340][ T6328] dump_stack+0x1c/0x28 [ 66.094192][ T6328] gfs2_assert_warn_i+0x16c/0x278 [ 66.095237][ T6328] gfs2_quota_cleanup+0x488/0x664 [ 66.096354][ T6328] gfs2_make_fs_ro+0x4dc/0x5d4 [ 66.097360][ T6328] gfs2_withdraw+0x4dc/0x134c [ 66.098296][ T6328] gfs2_ail1_empty+0x734/0x7c4 [ 66.099280][ T6328] gfs2_flush_revokes+0x5c/0x94 [ 66.100394][ T6328] revoke_lo_before_commit+0x3c/0x640 [ 66.101515][ T6328] gfs2_log_flush+0x950/0x21ac [ 66.102577][ T6328] do_sync+0x8e0/0xaf4 [ 66.103386][ T6328] gfs2_quota_sync+0x2e4/0x534 [ 66.104433][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 66.105330][ T6328] sync_filesystem+0xe8/0x218 [ 66.106297][ T6328] generic_shutdown_super+0x70/0x328 [ 66.107423][ T6328] kill_block_super+0x70/0xdc [ 66.108480][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 66.109430][ T6328] deactivate_locked_super+0xac/0x124 [ 66.110607][ T6328] deactivate_super+0xe0/0x100 [ 66.111588][ T6328] cleanup_mnt+0x34c/0x3dc [ 66.112523][ T6328] __cleanup_mnt+0x20/0x30 [ 66.113380][ T6328] task_work_run+0x230/0x2e0 [ 66.114383][ T6328] do_notify_resume+0x2180/0x3c90 [ 66.115450][ T6328] el0_svc+0x90/0x15c [ 66.116319][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 66.117413][ T6328] el0t_64_sync+0x190/0x194 [ 66.125266][ T6328] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 66.126984][ T6328] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 66.128794][ T6328] [ 66.129314][ T6328] ============================= [ 66.130338][ T6328] [ BUG: Invalid wait context ] [ 66.131349][ T6328] 6.4.0-rc2-syzkaller #0 Tainted: G W [ 66.132716][ T6328] ----------------------------- [ 66.133729][ T6328] syz-executor.0/6328 is trying to lock: [ 66.135068][ T6328] ffff800018ac6668 (uevent_sock_mutex){+.+.}-{3:3}, at: kobject_uevent_env+0x4d0/0x874 [ 66.137092][ T6328] other info that might help us debug this: [ 66.138262][ T6328] context-{4:4} [ 66.138935][ T6328] 4 locks held by syz-executor.0/6328: [ 66.140149][ T6328] #0: ffff0000d2b420e0 (&type->s_umount_key#49){+.+.}-{3:3}, at: deactivate_super+0xd8/0x100 [ 66.142417][ T6328] #1: ffff0000c7c1cb78 (&sdp->sd_quota_sync_mutex){+.+.}-{3:3}, at: gfs2_quota_sync+0x9c/0x534 [ 66.144553][ T6328] #2: ffff0000c7c1d060 (&sdp->sd_log_flush_lock){++++}-{3:3}, at: gfs2_log_flush+0xb8/0x21ac [ 66.146756][ T6328] #3: ffff0000c7c1ce88 (&sdp->sd_log_lock){+.+.}-{2:2}, at: gfs2_flush_revokes+0x50/0x94 [ 66.148779][ T6328] stack backtrace: [ 66.149519][ T6328] CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G W 6.4.0-rc2-syzkaller #0 [ 66.151749][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 66.153902][ T6328] Call trace: [ 66.154610][ T6328] dump_backtrace+0x1b8/0x1e4 [ 66.155644][ T6328] show_stack+0x2c/0x44 [ 66.156493][ T6328] dump_stack_lvl+0xd0/0x124 [ 66.157459][ T6328] dump_stack+0x1c/0x28 [ 66.158316][ T6328] __lock_acquire+0x1ba4/0x75f0 [ 66.159323][ T6328] lock_acquire+0x23c/0x71c [ 66.160368][ T6328] __mutex_lock_common+0x190/0x21a0 [ 66.161567][ T6328] mutex_lock_nested+0x2c/0x38 [ 66.162573][ T6328] kobject_uevent_env+0x4d0/0x874 [ 66.163715][ T6328] kobject_uevent+0x2c/0x3c [ 66.164701][ T6328] gfs2_withdraw+0xe1c/0x134c [ 66.165694][ T6328] gfs2_ail1_empty+0x734/0x7c4 [ 66.166691][ T6328] gfs2_flush_revokes+0x5c/0x94 [ 66.167695][ T6328] revoke_lo_before_commit+0x3c/0x640 [ 66.168887][ T6328] gfs2_log_flush+0x950/0x21ac [ 66.169847][ T6328] do_sync+0x8e0/0xaf4 [ 66.170660][ T6328] gfs2_quota_sync+0x2e4/0x534 [ 66.171717][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 66.172678][ T6328] sync_filesystem+0xe8/0x218 [ 66.173686][ T6328] generic_shutdown_super+0x70/0x328 [ 66.174810][ T6328] kill_block_super+0x70/0xdc [ 66.175844][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 66.176764][ T6328] deactivate_locked_super+0xac/0x124 [ 66.177935][ T6328] deactivate_super+0xe0/0x100 [ 66.178959][ T6328] cleanup_mnt+0x34c/0x3dc [ 66.179883][ T6328] __cleanup_mnt+0x20/0x30 [ 66.180788][ T6328] task_work_run+0x230/0x2e0 [ 66.181769][ T6328] do_notify_resume+0x2180/0x3c90 [ 66.182760][ T6328] el0_svc+0x90/0x15c [ 66.183572][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 66.184569][ T6328] el0t_64_sync+0x190/0x194 [ 66.186008][ T6328] gfs2: fsid=syz:syz.0: File system withdrawn [ 66.187303][ T6328] CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G W 6.4.0-rc2-syzkaller #0 [ 66.189364][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 66.191526][ T6328] Call trace: [ 66.192201][ T6328] dump_backtrace+0x1b8/0x1e4 [ 66.193216][ T6328] show_stack+0x2c/0x44 [ 66.194156][ T6328] dump_stack_lvl+0xd0/0x124 [ 66.195121][ T6328] dump_stack+0x1c/0x28 [ 66.195966][ T6328] gfs2_withdraw+0xf08/0x134c [ 66.196933][ T6328] gfs2_ail1_empty+0x734/0x7c4 [ 66.197933][ T6328] gfs2_flush_revokes+0x5c/0x94 [ 66.199024][ T6328] revoke_lo_before_commit+0x3c/0x640 [ 66.200221][ T6328] gfs2_log_flush+0x950/0x21ac [ 66.201264][ T6328] do_sync+0x8e0/0xaf4 [ 66.202165][ T6328] gfs2_quota_sync+0x2e4/0x534 [ 66.203207][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 66.204142][ T6328] sync_filesystem+0xe8/0x218 [ 66.205111][ T6328] generic_shutdown_super+0x70/0x328 [ 66.206189][ T6328] kill_block_super+0x70/0xdc [ 66.207145][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 66.208065][ T6328] deactivate_locked_super+0xac/0x124 [ 66.209222][ T6328] deactivate_super+0xe0/0x100 [ 66.210312][ T6328] cleanup_mnt+0x34c/0x3dc [ 66.211183][ T6328] __cleanup_mnt+0x20/0x30 [ 66.212124][ T6328] task_work_run+0x230/0x2e0 [ 66.213122][ T6328] do_notify_resume+0x2180/0x3c90 [ 66.214201][ T6328] el0_svc+0x90/0x15c [ 66.215032][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 66.216147][ T6328] el0t_64_sync+0x190/0x194 [ 66.217198][ T6328] ================================================================== [ 66.218885][ T6328] BUG: KASAN: user-memory-access in slot_put+0xdc/0x1f4 [ 66.220413][ T6328] Write of size 8 at addr 0000000000001998 by task syz-executor.0/6328 [ 66.222199][ T6328] [ 66.222677][ T6328] CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G W 6.4.0-rc2-syzkaller #0 [ 66.224814][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 66.227018][ T6328] Call trace: [ 66.227663][ T6328] dump_backtrace+0x1b8/0x1e4 [ 66.228681][ T6328] show_stack+0x2c/0x44 [ 66.229576][ T6328] dump_stack_lvl+0xd0/0x124 [ 66.230618][ T6328] print_report+0xe4/0x514 [ 66.231588][ T6328] kasan_report+0xd4/0x130 [ 66.232495][ T6328] kasan_check_range+0x264/0x2a4 [ 66.233517][ T6328] __kasan_check_write+0x20/0x30 [ 66.234531][ T6328] slot_put+0xdc/0x1f4 [ 66.235428][ T6328] qd_unlock+0x160/0x2b8 [ 66.236303][ T6328] gfs2_quota_sync+0x3c0/0x534 [ 66.237299][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 66.238289][ T6328] sync_filesystem+0xe8/0x218 [ 66.239328][ T6328] generic_shutdown_super+0x70/0x328 [ 66.240447][ T6328] kill_block_super+0x70/0xdc [ 66.241382][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 66.242360][ T6328] deactivate_locked_super+0xac/0x124 [ 66.243502][ T6328] deactivate_super+0xe0/0x100 [ 66.244491][ T6328] cleanup_mnt+0x34c/0x3dc [ 66.245397][ T6328] __cleanup_mnt+0x20/0x30 [ 66.246302][ T6328] task_work_run+0x230/0x2e0 [ 66.247319][ T6328] do_notify_resume+0x2180/0x3c90 [ 66.248327][ T6328] el0_svc+0x90/0x15c [ 66.249222][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 66.250240][ T6328] el0t_64_sync+0x190/0x194 [ 66.251127][ T6328] ================================================================== [ 66.252779][ T6328] Unable to handle kernel paging request at virtual address 0000000000001998 [ 66.254571][ T6328] Mem abort info: [ 66.255382][ T6328] ESR = 0x0000000096000005 [ 66.256345][ T6328] EC = 0x25: DABT (current EL), IL = 32 bits [ 66.257658][ T6328] SET = 0, FnV = 0 [ 66.258521][ T6328] EA = 0, S1PTW = 0 [ 66.259426][ T6328] FSC = 0x05: level 1 translation fault [ 66.260677][ T6328] Data abort info: [ 66.261430][ T6328] ISV = 0, ISS = 0x00000005 [ 66.262458][ T6328] CM = 0, WnR = 0 [ 66.263202][ T6328] user pgtable: 4k pages, 48-bit VAs, pgdp=000000011eb29000 [ 66.264708][ T6328] [0000000000001998] pgd=0800000108238003, p4d=0800000108238003, pud=0000000000000000 [ 66.266781][ T6328] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP [ 66.268273][ T6328] Modules linked in: [ 66.269080][ T6328] CPU: 1 PID: 6328 Comm: syz-executor.0 Tainted: G B W 6.4.0-rc2-syzkaller #0 [ 66.271170][ T6328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 66.273444][ T6328] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 66.275077][ T6328] pc : slot_put+0xf4/0x1f4 [ 66.276028][ T6328] lr : slot_put+0xf0/0x1f4 [ 66.276964][ T6328] sp : ffff80001e8d7640 [ 66.277794][ T6328] x29: ffff80001e8d7640 x28: 0000000000000001 x27: ffff0000e99bd0f0 [ 66.279531][ T6328] x26: 0000000000000002 x25: 0000000000000333 x24: dfff800000000000 [ 66.281290][ T6328] x23: 0000000000000000 x22: 1fffe0001d337a15 x21: 0000000000000004 [ 66.283007][ T6328] x20: ffff0000e99bd0a8 x19: ffff0000c7c1cc00 x18: 1fffe00036848fbe [ 66.284604][ T6328] x17: 3d3d3d3d3d3d3d3d x16: ffff80000826a1c0 x15: 0000000000000003 [ 66.286249][ T6328] x14: 0000000000000000 x13: 0000000000000001 x12: 0000000000000001 [ 66.287994][ T6328] x11: 0000000000000001 x10: 0000000000000000 x9 : 0000000000000000 [ 66.289717][ T6328] x8 : 0000000000001998 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.291327][ T6328] x5 : ffff80001e8d6e78 x4 : ffff800015f8e880 x3 : ffff8000081b79c8 [ 66.292996][ T6328] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 0000000000000000 [ 66.294748][ T6328] Call trace: [ 66.295403][ T6328] slot_put+0xf4/0x1f4 [ 66.296279][ T6328] qd_unlock+0x160/0x2b8 [ 66.297174][ T6328] gfs2_quota_sync+0x3c0/0x534 [ 66.298244][ T6328] gfs2_sync_fs+0x4c/0xc4 [ 66.299175][ T6328] sync_filesystem+0xe8/0x218 [ 66.300117][ T6328] generic_shutdown_super+0x70/0x328 [ 66.301324][ T6328] kill_block_super+0x70/0xdc [ 66.302361][ T6328] gfs2_kill_sb+0x2cc/0x330 [ 66.303344][ T6328] deactivate_locked_super+0xac/0x124 [ 66.304490][ T6328] deactivate_super+0xe0/0x100 [ 66.305475][ T6328] cleanup_mnt+0x34c/0x3dc [ 66.306427][ T6328] __cleanup_mnt+0x20/0x30 [ 66.307362][ T6328] task_work_run+0x230/0x2e0 [ 66.308239][ T6328] do_notify_resume+0x2180/0x3c90 [ 66.309326][ T6328] el0_svc+0x90/0x15c [ 66.310091][ T6328] el0t_64_sync_handler+0x84/0xf0 [ 66.311148][ T6328] el0t_64_sync+0x190/0x194 [ 66.312118][ T6328] Code: d346ff39 d503201f 978435d5 8b190ee8 (f8f51108) [ 66.313632][ T6328] ---[ end trace 0000000000000000 ]--- [ 66.672455][ T6328] Kernel panic - not syncing: Oops: Fatal exception [ 66.673900][ T6328] SMP: stopping secondary CPUs [ 66.674895][ T6328] Kernel Offset: disabled [ 66.675799][ T6328] CPU features: 0x000000,40e00804,64017203 [ 66.677018][ T6328] Memory Limit: none [ 67.034426][ T6328] Rebooting in 86400 seconds..