Warning: Permanently added '10.128.1.37' (ED25519) to the list of known hosts. 2023/10/03 10:16:28 ignoring optional flag "sandboxArg"="0" 2023/10/03 10:16:29 parsed 1 programs 2023/10/03 10:16:31 executed programs: 0 [ 109.756887][ T5389] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 109.823357][ T5043] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 109.831932][ T5043] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 109.840516][ T5043] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 109.850467][ T5043] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 109.858438][ T5043] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 109.866381][ T5043] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 110.030992][ T5396] chnl_net:caif_netlink_parms(): no params data found [ 110.104873][ T5396] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.112488][ T5396] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.120371][ T5396] bridge_slave_0: entered allmulticast mode [ 110.127520][ T5396] bridge_slave_0: entered promiscuous mode [ 110.137906][ T5396] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.145418][ T5396] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.153069][ T5396] bridge_slave_1: entered allmulticast mode [ 110.160890][ T5396] bridge_slave_1: entered promiscuous mode [ 110.195388][ T5396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 110.207673][ T5396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.246589][ T5396] team0: Port device team_slave_0 added [ 110.256404][ T5396] team0: Port device team_slave_1 added [ 110.287908][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.295194][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.322132][ T5396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.335328][ T5396] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.343611][ T5396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.370503][ T5396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.420060][ T5396] hsr_slave_0: entered promiscuous mode [ 110.426685][ T5396] hsr_slave_1: entered promiscuous mode [ 111.338804][ T5396] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 111.354162][ T5396] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 111.365816][ T5396] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 111.381170][ T5396] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 111.497479][ T5396] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.524553][ T5396] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.541574][ T5051] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.549250][ T5051] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.577581][ T2520] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.584836][ T2520] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.827723][ T5396] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.896138][ T5396] veth0_vlan: entered promiscuous mode [ 111.915568][ T5396] veth1_vlan: entered promiscuous mode [ 111.930525][ T5043] Bluetooth: hci0: command 0x0409 tx timeout [ 111.971151][ T5396] veth0_macvtap: entered promiscuous mode [ 111.984703][ T5396] veth1_macvtap: entered promiscuous mode [ 112.014175][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.036741][ T5396] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.054744][ T5396] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.067695][ T5396] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.078543][ T5396] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.090776][ T5396] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.194270][ T5038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.210733][ T5038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.256744][ T5038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.265673][ T5038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.909744][ T5462] loop0: detected capacity change from 0 to 32768 [ 112.932752][ T5462] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 112.945079][ T5462] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 112.972608][ T5462] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 112.990144][ T5055] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 113.000422][ T5055] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 113.096276][ T5055] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 95ms [ 113.106465][ T5055] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 113.117364][ T5462] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 113.987773][ T5499] loop0: detected capacity change from 0 to 32768 [ 114.001200][ T5499] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 114.011201][ T5043] Bluetooth: hci0: command 0x041b tx timeout [ 114.019900][ T5499] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 114.035475][ T5499] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 114.047198][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 114.055356][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 114.142004][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 86ms [ 114.155311][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 114.162649][ T5499] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 114.971287][ T5536] loop0: detected capacity change from 0 to 32768 [ 114.984380][ T5536] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 114.995441][ T5536] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 115.008734][ T5536] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 115.022693][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 115.031806][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... 2023/10/03 10:16:36 executed programs: 3 [ 115.117507][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 85ms [ 115.126100][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 115.133382][ T5536] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 115.936324][ T5566] loop0: detected capacity change from 0 to 32768 [ 115.948799][ T5566] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 115.960368][ T5566] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 115.975780][ T5566] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 115.988613][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 115.996826][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 116.079303][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 82ms [ 116.087851][ T9] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 116.095647][ T5566] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 116.100975][ T5043] Bluetooth: hci0: command 0x040f tx timeout [ 116.913801][ T5599] loop0: detected capacity change from 0 to 32768 [ 116.927351][ T5599] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 116.937774][ T5599] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 116.953337][ T5599] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 116.965183][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 116.974276][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 117.060249][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 85ms [ 117.070777][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 117.076960][ T5599] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 117.824554][ T5630] loop0: detected capacity change from 0 to 32768 [ 117.837475][ T5630] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 117.849757][ T5630] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 117.865673][ T5630] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 117.876994][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 117.885210][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 117.970118][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 84ms [ 117.983248][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 117.990686][ T5630] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 118.169686][ T5043] Bluetooth: hci0: command 0x0419 tx timeout [ 118.761017][ T5661] loop0: detected capacity change from 0 to 32768 [ 118.777438][ T5661] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 118.790234][ T5661] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 118.805876][ T5661] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 118.817738][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 118.825929][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 118.908089][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 82ms [ 118.921046][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 118.927241][ T5661] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 119.677280][ T5692] loop0: detected capacity change from 0 to 32768 [ 119.694687][ T5692] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 119.706424][ T5692] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 119.723670][ T5692] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 119.736121][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 119.744435][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 119.829719][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 85ms [ 119.843529][ T27] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 119.849858][ T5692] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 120.648705][ T5723] loop0: detected capacity change from 0 to 32768 [ 120.662071][ T5723] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 120.678022][ T5723] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 120.694402][ T5723] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 120.706202][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 120.714779][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... 2023/10/03 10:16:42 executed programs: 9 [ 120.798329][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 83ms [ 120.812618][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 120.818712][ T5723] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 121.585070][ T5754] loop0: detected capacity change from 0 to 32768 [ 121.599985][ T5754] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 121.618258][ T5754] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 121.634130][ T5754] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 121.644515][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 121.654247][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 121.726415][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 72ms [ 121.734939][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 121.741038][ T5754] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 122.505444][ T5784] loop0: detected capacity change from 0 to 32768 [ 122.517544][ T5784] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 122.527601][ T5784] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 122.541158][ T5784] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 122.552107][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 122.559854][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 122.616610][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 56ms [ 122.625001][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 122.632654][ T5784] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 123.121364][ T5800] loop0: detected capacity change from 0 to 32768 [ 123.132175][ T5800] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 123.141993][ T5800] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 123.154123][ T5800] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 123.164196][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 123.172093][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 123.222347][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 50ms [ 123.230968][ T8] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 123.237210][ T5800] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 123.718065][ T5804] loop0: detected capacity change from 0 to 32768 [ 123.728542][ T5804] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 123.738814][ T5804] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 123.751986][ T5804] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 123.762529][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 123.770841][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 123.826061][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 55ms [ 123.835270][ T5038] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 123.843984][ T5804] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 124.363734][ T5808] loop0: detected capacity change from 0 to 32768 [ 124.375511][ T5808] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 124.386657][ T5808] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 124.401416][ T5808] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 124.412297][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 124.421270][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 124.474845][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 53ms [ 124.485394][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 124.492571][ T5808] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 125.004039][ T5812] loop0: detected capacity change from 0 to 32768 [ 125.015091][ T5812] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 125.025050][ T5812] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 125.038114][ T5812] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 125.049962][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 125.057842][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 125.107790][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 49ms [ 125.116589][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 125.122954][ T5812] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 125.229274][ C1] ================================================================== [ 125.237502][ C1] BUG: KASAN: slab-use-after-free in gfs2_qd_dealloc+0x8a/0x100 [ 125.245198][ C1] Read of size 4 at addr ffff888017710a78 by task udevd/5381 [ 125.253047][ C1] [ 125.255391][ C1] CPU: 1 PID: 5381 Comm: udevd Not tainted 6.6.0-rc3-syzkaller-dirty #0 [ 125.263760][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 125.273937][ C1] Call Trace: [ 125.277254][ C1] [ 125.280135][ C1] dump_stack_lvl+0x1e7/0x2d0 [ 125.284873][ C1] ? nf_tcp_handle_invalid+0x650/0x650 [ 125.290367][ C1] ? panic+0x770/0x770 [ 125.294563][ C1] ? _printk+0xd5/0x120 [ 125.298756][ C1] print_report+0x163/0x540 [ 125.303314][ C1] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 125.309504][ C1] ? __virt_addr_valid+0x22f/0x2e0 [ 125.314664][ C1] ? __phys_addr+0xba/0x170 [ 125.319211][ C1] ? gfs2_qd_dealloc+0x8a/0x100 [ 125.324193][ C1] kasan_report+0x175/0x1b0 [ 125.328849][ C1] ? gfs2_qd_dealloc+0x8a/0x100 [ 125.333747][ C1] kasan_check_range+0x27e/0x290 [ 125.338745][ C1] gfs2_qd_dealloc+0x8a/0x100 [ 125.343487][ C1] ? gfs2_qd_dispose+0x5d0/0x5d0 [ 125.348494][ C1] ? rcu_core+0xa61/0x1790 [ 125.353060][ C1] rcu_core+0xacf/0x1790 [ 125.357455][ C1] ? rcu_cpu_kthread_park+0x90/0x90 [ 125.362785][ C1] ? __asan_memset+0x23/0x40 [ 125.367870][ C1] ? __run_timers+0x7d6/0x860 [ 125.372774][ C1] ? detach_timer+0x2f0/0x2f0 [ 125.377499][ C1] __do_softirq+0x2ab/0x908 [ 125.382074][ C1] ? __irq_exit_rcu+0xf1/0x1b0 [ 125.387171][ C1] ? __lock_text_end+0xc/0xc [ 125.391815][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 125.397238][ C1] __irq_exit_rcu+0xf1/0x1b0 [ 125.401882][ C1] ? irq_exit_rcu+0x20/0x20 [ 125.406439][ C1] irq_exit_rcu+0x9/0x20 [ 125.410913][ C1] sysvec_apic_timer_interrupt+0x95/0xb0 [ 125.416597][ C1] [ 125.419592][ C1] [ 125.423084][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 125.429308][ C1] RIP: 0010:filter_irq_stacks+0x2e/0xa0 [ 125.435091][ C1] Code: 55 41 57 41 56 41 55 41 54 53 85 f6 74 72 49 89 fe 41 89 f4 45 31 ff 48 c7 c5 90 01 e0 8a 49 c7 c5 40 f5 d7 8a 48 89 fb eb 0c <49> ff c7 48 83 c3 08 4d 39 fc 74 4f 48 89 d8 48 c1 e8 03 48 b9 00 [ 125.455375][ C1] RSP: 0018:ffffc90004fbf9d0 EFLAGS: 00000283 [ 125.461501][ C1] RAX: ffffffff81769937 RBX: ffffc90004fbfa70 RCX: dffffc0000000000 [ 125.469529][ C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: ffffc90004fbfa60 [ 125.477634][ C1] RBP: ffffffff8ae00190 R08: ffffffff81349cfc R09: 1ffffffff1d34f1d [ 125.485742][ C1] R10: dffffc0000000000 R11: fffffbfff1d34f1e R12: 0000000000000009 [ 125.493845][ C1] R13: ffffffff8ad7f540 R14: ffffc90004fbfa60 R15: 0000000000000002 [ 125.501973][ C1] ? __lock_text_end+0xc/0xc [ 125.506614][ C1] ? xen_error_entry+0x50/0x50 [ 125.511412][ C1] ? arch_stack_walk+0x12c/0x1a0 [ 125.516382][ C1] ? call_rcu+0x167/0xa70 [ 125.520761][ C1] __stack_depot_save+0x20/0x650 [ 125.525902][ C1] ? put_cred+0xa0/0xa0 [ 125.530105][ C1] kasan_save_stack+0x4f/0x60 [ 125.534910][ C1] ? kasan_save_stack+0x3f/0x60 [ 125.539796][ C1] ? __kasan_record_aux_stack+0xad/0xc0 [ 125.545378][ C1] ? call_rcu+0x167/0xa70 [ 125.549745][ C1] ? task_work_run+0x24a/0x300 [ 125.554562][ C1] ? exit_to_user_mode_loop+0xde/0x100 [ 125.560145][ C1] ? exit_to_user_mode_prepare+0xb1/0x140 [ 125.565924][ C1] ? syscall_exit_to_user_mode+0x64/0x280 [ 125.571692][ C1] ? do_syscall_64+0x4d/0xc0 [ 125.576584][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.582721][ C1] ? put_cred+0xa0/0xa0 [ 125.587199][ C1] ? __phys_addr+0xba/0x170 [ 125.591848][ C1] __kasan_record_aux_stack+0xad/0xc0 [ 125.597283][ C1] call_rcu+0x167/0xa70 [ 125.601494][ C1] ? __fput+0x641/0x910 [ 125.605702][ C1] ? rcu_force_quiescent_state+0x230/0x230 [ 125.611565][ C1] ? __fput+0x6ce/0x910 [ 125.615773][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 125.621036][ C1] task_work_run+0x24a/0x300 [ 125.625705][ C1] ? task_work_cancel+0x2b0/0x2b0 [ 125.630790][ C1] ? __x64_sys_openat+0x247/0x290 [ 125.635968][ C1] ? exit_to_user_mode_loop+0x39/0x100 [ 125.641498][ C1] exit_to_user_mode_loop+0xde/0x100 [ 125.646929][ C1] exit_to_user_mode_prepare+0xb1/0x140 [ 125.652639][ C1] syscall_exit_to_user_mode+0x64/0x280 [ 125.658262][ C1] do_syscall_64+0x4d/0xc0 [ 125.662808][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.668758][ C1] RIP: 0033:0x7fc63c716ab9 [ 125.673478][ C1] Code: 00 00 00 44 8b 54 24 58 48 89 44 24 30 48 8d 44 24 40 48 89 44 24 38 64 8b 04 25 18 00 00 00 85 c0 75 21 b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 40 a3 0d 00 f7 d8 64 89 02 48 83 [ 125.693248][ C1] RSP: 002b:00007fff180f8ea0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 125.701805][ C1] RAX: fffffffffffffffe RBX: 00007fff180fb000 RCX: 00007fc63c716ab9 [ 125.709953][ C1] RDX: 0000000000080000 RSI: 00007fc63cc7fdd8 RDI: 000000000000000b [ 125.717964][ C1] RBP: 000055726b104950 R08: 000055726b100b10 R09: 00007fc63c7f1b20 [ 125.725985][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b [ 125.734004][ C1] R13: 00007fc63cc7fdd8 R14: 0000000000080000 R15: 0000000000000001 [ 125.742033][ C1] [ 125.745105][ C1] [ 125.749012][ C1] Allocated by task 5812: [ 125.753381][ C1] kasan_set_track+0x4f/0x70 [ 125.758119][ C1] __kasan_kmalloc+0x98/0xb0 [ 125.762943][ C1] gfs2_fill_super+0x136/0x26c0 [ 125.767923][ C1] get_tree_bdev+0x416/0x5b0 [ 125.772831][ C1] gfs2_get_tree+0x54/0x210 [ 125.777378][ C1] vfs_get_tree+0x8c/0x280 [ 125.781839][ C1] do_new_mount+0x28f/0xae0 [ 125.786657][ C1] __se_sys_mount+0x2d9/0x3c0 [ 125.791548][ C1] do_syscall_64+0x41/0xc0 [ 125.796001][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.801929][ C1] [ 125.804269][ C1] Freed by task 5396: [ 125.808263][ C1] kasan_set_track+0x4f/0x70 [ 125.812893][ C1] kasan_save_free_info+0x28/0x40 [ 125.817981][ C1] ____kasan_slab_free+0xd6/0x120 [ 125.823068][ C1] __kmem_cache_free+0x25f/0x3b0 [ 125.823835][ T5816] loop0: detected capacity change from 0 to 32768 [ 125.828018][ C1] generic_shutdown_super+0x13a/0x2c0 [ 125.828057][ C1] kill_block_super+0x41/0x70 [ 125.840963][ T5816] gfs2: fsid=„½%b­i’~N-SS“: Trying to join cluster "lock_nolock", "„½%b­i’~N-SS“" [ 125.844521][ C1] deactivate_locked_super+0xa4/0x110 [ 125.854340][ T5816] gfs2: fsid=„½%b­i’~N-SS“: Now mounting FS (format 1801)... [ 125.859694][ C1] cleanup_mnt+0x426/0x4c0 [ 125.859726][ C1] task_work_run+0x24a/0x300 [ 125.859752][ C1] exit_to_user_mode_loop+0xde/0x100 [ 125.859781][ C1] exit_to_user_mode_prepare+0xb1/0x140 [ 125.873425][ T5816] gfs2: fsid=„½%b­i’~N-SS“.0: journal 0 mapped with 18 extents in 0ms [ 125.876757][ C1] syscall_exit_to_user_mode+0x64/0x280 [ 125.876797][ C1] do_syscall_64+0x4d/0xc0 [ 125.884283][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0, already locked for use [ 125.887644][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.887679][ C1] [ 125.887686][ C1] The buggy address belongs to the object at ffff888017710000 [ 125.887686][ C1] which belongs to the cache kmalloc-8k of size 8192 [ 125.896278][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Looking at journal... [ 125.901632][ C1] The buggy address is located 2680 bytes inside of [ 125.901632][ C1] freed 8192-byte region [ffff888017710000, ffff888017712000) [ 125.901658][ C1] [ 125.901664][ C1] The buggy address belongs to the physical page: [ 125.901677][ C1] page:ffffea00005dc400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x17710 [ 125.901700][ C1] head:ffffea00005dc400 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 125.901718][ C1] anon flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 125.901738][ C1] page_type: 0xffffffff() [ 125.978088][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Journal head lookup took 81ms [ 125.986224][ C1] raw: 00fff00000000840 ffff888012842280 ffffea0001ef9200 dead000000000005 [ 125.986244][ C1] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000 [ 125.986254][ C1] page dumped because: kasan: bad access detected 2023/10/03 10:16:47 executed programs: 16 [ 125.986265][ C1] page_owner tracks the page as allocated [ 125.986272][ C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 8586024694, free_ts 0 [ 125.986308][ C1] post_alloc_hook+0x1e6/0x210 [ 125.995312][ T5053] gfs2: fsid=„½%b­i’~N-SS“.0: jid=0: Done [ 125.999156][ C1] get_page_from_freelist+0x31db/0x3360 [ 125.999199][ C1] __alloc_pages+0x255/0x670 [ 125.999223][ C1] alloc_page_interleave+0x22/0x1d0 [ 126.007709][ T5816] gfs2: fsid=„½%b­i’~N-SS“.0: first mount done, others may mount [ 126.016128][ C1] alloc_slab_page+0x6a/0x160 [ 126.016158][ C1] new_slab+0x84/0x2f0 [ 126.016176][ C1] ___slab_alloc+0xc85/0x1310 [ 126.016199][ C1] __kmem_cache_alloc_node+0x1af/0x270 [ 126.016217][ C1] __kmalloc+0xa8/0x230 [ 126.016239][ C1] acpi_ut_initialize_buffer+0x1d1/0x2b0 [ 126.016262][ C1] acpi_rs_create_pci_routing_table+0x116/0xa50 [ 126.127704][ C1] acpi_rs_get_prt_method_data+0xe8/0x140 [ 126.133441][ C1] acpi_pci_irq_find_prt_entry+0x16e/0xde0 [ 126.139268][ C1] acpi_pci_irq_lookup+0xb0/0x7a0 [ 126.145452][ C1] acpi_pci_irq_enable+0x23a/0x9a0 [ 126.150655][ C1] do_pci_enable_device+0x212/0x490 [ 126.155882][ C1] page_owner free stack trace missing [ 126.161336][ C1] [ 126.163660][ C1] Memory state around the buggy address: [ 126.169385][ C1] ffff888017710900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 126.177473][ C1] ffff888017710980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 126.185554][ C1] >ffff888017710a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 126.193626][ C1] ^ [ 126.201888][ C1] ffff888017710a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 126.209960][ C1] ffff888017710b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 126.218229][ C1] ================================================================== [ 126.226604][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 126.233838][ C1] CPU: 1 PID: 5381 Comm: udevd Not tainted 6.6.0-rc3-syzkaller-dirty #0 [ 126.242195][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 126.252299][ C1] Call Trace: [ 126.255601][ C1] [ 126.258708][ C1] dump_stack_lvl+0x1e7/0x2d0 [ 126.263506][ C1] ? nf_tcp_handle_invalid+0x650/0x650 [ 126.268979][ C1] ? panic+0x770/0x770 [ 126.273061][ C1] ? vscnprintf+0x5d/0x80 [ 126.277416][ C1] panic+0x30f/0x770 [ 126.281422][ C1] ? check_panic_on_warn+0x21/0xa0 [ 126.286718][ C1] ? __memcpy_flushcache+0x2b0/0x2b0 [ 126.292011][ C1] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 126.298155][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 126.304055][ C1] ? _raw_spin_unlock+0x40/0x40 [ 126.308911][ C1] ? print_report+0x4fb/0x540 [ 126.313686][ C1] check_panic_on_warn+0x82/0xa0 [ 126.318626][ C1] ? gfs2_qd_dealloc+0x8a/0x100 [ 126.323492][ C1] end_report+0x6e/0x130 [ 126.327737][ C1] kasan_report+0x186/0x1b0 [ 126.332243][ C1] ? gfs2_qd_dealloc+0x8a/0x100 [ 126.337103][ C1] kasan_check_range+0x27e/0x290 [ 126.342047][ C1] gfs2_qd_dealloc+0x8a/0x100 [ 126.346832][ C1] ? gfs2_qd_dispose+0x5d0/0x5d0 [ 126.351866][ C1] ? rcu_core+0xa61/0x1790 [ 126.356280][ C1] rcu_core+0xacf/0x1790 [ 126.360527][ C1] ? rcu_cpu_kthread_park+0x90/0x90 [ 126.365829][ C1] ? __asan_memset+0x23/0x40 [ 126.370440][ C1] ? __run_timers+0x7d6/0x860 [ 126.375122][ C1] ? detach_timer+0x2f0/0x2f0 [ 126.379803][ C1] __do_softirq+0x2ab/0x908 [ 126.384315][ C1] ? __irq_exit_rcu+0xf1/0x1b0 [ 126.389144][ C1] ? __lock_text_end+0xc/0xc [ 126.393786][ C1] ? irqtime_account_irq+0xd4/0x1e0 [ 126.398985][ C1] __irq_exit_rcu+0xf1/0x1b0 [ 126.403676][ C1] ? irq_exit_rcu+0x20/0x20 [ 126.408208][ C1] irq_exit_rcu+0x9/0x20 [ 126.412545][ C1] sysvec_apic_timer_interrupt+0x95/0xb0 [ 126.418285][ C1] [ 126.421340][ C1] [ 126.424291][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 126.430405][ C1] RIP: 0010:filter_irq_stacks+0x2e/0xa0 [ 126.435995][ C1] Code: 55 41 57 41 56 41 55 41 54 53 85 f6 74 72 49 89 fe 41 89 f4 45 31 ff 48 c7 c5 90 01 e0 8a 49 c7 c5 40 f5 d7 8a 48 89 fb eb 0c <49> ff c7 48 83 c3 08 4d 39 fc 74 4f 48 89 d8 48 c1 e8 03 48 b9 00 [ 126.456438][ C1] RSP: 0018:ffffc90004fbf9d0 EFLAGS: 00000283 [ 126.462534][ C1] RAX: ffffffff81769937 RBX: ffffc90004fbfa70 RCX: dffffc0000000000 [ 126.470629][ C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: ffffc90004fbfa60 [ 126.479248][ C1] RBP: ffffffff8ae00190 R08: ffffffff81349cfc R09: 1ffffffff1d34f1d [ 126.487267][ C1] R10: dffffc0000000000 R11: fffffbfff1d34f1e R12: 0000000000000009 [ 126.495257][ C1] R13: ffffffff8ad7f540 R14: ffffc90004fbfa60 R15: 0000000000000002 [ 126.503550][ C1] ? __lock_text_end+0xc/0xc [ 126.508157][ C1] ? xen_error_entry+0x50/0x50 [ 126.512928][ C1] ? arch_stack_walk+0x12c/0x1a0 [ 126.517968][ C1] ? call_rcu+0x167/0xa70 [ 126.522319][ C1] __stack_depot_save+0x20/0x650 [ 126.527813][ C1] ? put_cred+0xa0/0xa0 [ 126.532005][ C1] kasan_save_stack+0x4f/0x60 [ 126.536710][ C1] ? kasan_save_stack+0x3f/0x60 [ 126.541669][ C1] ? __kasan_record_aux_stack+0xad/0xc0 [ 126.547269][ C1] ? call_rcu+0x167/0xa70 [ 126.551667][ C1] ? task_work_run+0x24a/0x300 [ 126.556549][ C1] ? exit_to_user_mode_loop+0xde/0x100 [ 126.562029][ C1] ? exit_to_user_mode_prepare+0xb1/0x140 [ 126.567791][ C1] ? syscall_exit_to_user_mode+0x64/0x280 [ 126.573537][ C1] ? do_syscall_64+0x4d/0xc0 [ 126.578167][ C1] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.584458][ C1] ? put_cred+0xa0/0xa0 [ 126.588801][ C1] ? __phys_addr+0xba/0x170 [ 126.593406][ C1] __kasan_record_aux_stack+0xad/0xc0 [ 126.598809][ C1] call_rcu+0x167/0xa70 [ 126.603033][ C1] ? __fput+0x641/0x910 [ 126.607202][ C1] ? rcu_force_quiescent_state+0x230/0x230 [ 126.613125][ C1] ? __fput+0x6ce/0x910 [ 126.617326][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 126.622582][ C1] task_work_run+0x24a/0x300 [ 126.627214][ C1] ? task_work_cancel+0x2b0/0x2b0 [ 126.632261][ C1] ? __x64_sys_openat+0x247/0x290 [ 126.637338][ C1] ? exit_to_user_mode_loop+0x39/0x100 [ 126.642822][ C1] exit_to_user_mode_loop+0xde/0x100 [ 126.648156][ C1] exit_to_user_mode_prepare+0xb1/0x140 [ 126.653877][ C1] syscall_exit_to_user_mode+0x64/0x280 [ 126.659554][ C1] do_syscall_64+0x4d/0xc0 [ 126.663978][ C1] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.670051][ C1] RIP: 0033:0x7fc63c716ab9 [ 126.674487][ C1] Code: 00 00 00 44 8b 54 24 58 48 89 44 24 30 48 8d 44 24 40 48 89 44 24 38 64 8b 04 25 18 00 00 00 85 c0 75 21 b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 40 a3 0d 00 f7 d8 64 89 02 48 83 [ 126.694286][ C1] RSP: 002b:00007fff180f8ea0 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 126.702709][ C1] RAX: fffffffffffffffe RBX: 00007fff180fb000 RCX: 00007fc63c716ab9 [ 126.710784][ C1] RDX: 0000000000080000 RSI: 00007fc63cc7fdd8 RDI: 000000000000000b [ 126.718790][ C1] RBP: 000055726b104950 R08: 000055726b100b10 R09: 00007fc63c7f1b20 [ 126.726875][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000000b [ 126.734868][ C1] R13: 00007fc63cc7fdd8 R14: 0000000000080000 R15: 0000000000000001 [ 126.742879][ C1] [ 126.746066][ C1] Kernel Offset: disabled [ 126.750508][ C1] Rebooting in 86400 seconds..