Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts. 1970/01/01 00:00:26 parsed 1 programs [ 27.645808][ T6555] cgroup: Unknown subsys name 'net' [ 27.766831][ T6555] cgroup: Unknown subsys name 'cpuset' [ 27.768819][ T6555] cgroup: Unknown subsys name 'rlimit' [ 27.971454][ T6555] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 34.557513][ T6562] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 35.088347][ T6591] chnl_net:caif_netlink_parms(): no params data found [ 35.115986][ T6591] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.116031][ T6591] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.116097][ T6591] bridge_slave_0: entered allmulticast mode [ 35.116537][ T6591] bridge_slave_0: entered promiscuous mode [ 35.117462][ T6591] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.117481][ T6591] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.117525][ T6591] bridge_slave_1: entered allmulticast mode [ 35.117914][ T6591] bridge_slave_1: entered promiscuous mode [ 35.129807][ T6591] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.130762][ T6591] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.144067][ T6591] team0: Port device team_slave_0 added [ 35.145881][ T6591] team0: Port device team_slave_1 added [ 35.152942][ T6591] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 35.152970][ T6591] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 35.152982][ T6591] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 35.153919][ T6591] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 35.153927][ T6591] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 35.153938][ T6591] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 35.171961][ T6591] hsr_slave_0: entered promiscuous mode [ 35.172301][ T6591] hsr_slave_1: entered promiscuous mode [ 35.285219][ T6591] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.288471][ T6591] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.290724][ T6591] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.292646][ T6591] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.302248][ T6591] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.302300][ T6591] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.302469][ T6591] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.302493][ T6591] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.319649][ T6591] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.324145][ T14] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.326820][ T14] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.331372][ T6591] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.333481][ T265] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.333533][ T265] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.343326][ T6591] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.343366][ T6591] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.344975][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.344998][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.390645][ T6591] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.401715][ T6591] veth0_vlan: entered promiscuous mode [ 35.404171][ T6591] veth1_vlan: entered promiscuous mode [ 35.411687][ T6591] veth0_macvtap: entered promiscuous mode [ 35.413270][ T6591] veth1_macvtap: entered promiscuous mode [ 35.418955][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.420068][ T6591] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.423314][ T265] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.429138][ T265] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.429181][ T265] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.429353][ T265] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.669463][ T265] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.719842][ T265] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.765259][ T265] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.831144][ T265] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.841847][ T662] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.841874][ T662] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.850078][ T662] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.850106][ T662] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.040227][ T6641] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.042024][ T6641] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.043454][ T6641] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.045969][ T6641] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.047441][ T6641] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 1970/01/01 00:00:36 executed programs: 0 [ 36.378337][ T6641] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 36.379916][ T6641] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 36.380802][ T6641] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 36.381125][ T6641] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 36.381324][ T6641] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 36.432162][ T6661] chnl_net:caif_netlink_parms(): no params data found [ 36.453090][ T6661] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.453171][ T6661] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.453244][ T6661] bridge_slave_0: entered allmulticast mode [ 36.453740][ T6661] bridge_slave_0: entered promiscuous mode [ 36.455696][ T6661] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.455742][ T6661] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.455795][ T6661] bridge_slave_1: entered allmulticast mode [ 36.456195][ T6661] bridge_slave_1: entered promiscuous mode [ 36.469054][ T6661] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.470038][ T6661] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.477653][ T6661] team0: Port device team_slave_0 added [ 36.478469][ T6661] team0: Port device team_slave_1 added [ 36.486560][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.486580][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 36.486594][ T6661] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.487104][ T6661] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.487111][ T6661] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 36.487123][ T6661] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.507103][ T6661] hsr_slave_0: entered promiscuous mode [ 36.507469][ T6661] hsr_slave_1: entered promiscuous mode [ 36.507670][ T6661] debugfs: 'hsr0' already exists in 'hsr' [ 36.507721][ T6661] Cannot create hsr debugfs directory [ 38.414637][ T6641] Bluetooth: hci0: command tx timeout [ 39.003189][ T265] bridge_slave_1: left allmulticast mode [ 39.003232][ T265] bridge_slave_1: left promiscuous mode [ 39.003527][ T265] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.009559][ T265] bridge_slave_0: left allmulticast mode [ 39.009588][ T265] bridge_slave_0: left promiscuous mode [ 39.009669][ T265] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.148048][ T265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 39.205691][ T265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 39.245209][ T265] bond0 (unregistering): Released all slaves [ 39.330949][ T265] hsr_slave_0: left promiscuous mode [ 39.331309][ T265] hsr_slave_1: left promiscuous mode [ 39.331781][ T265] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 39.331805][ T265] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 39.333148][ T265] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 39.333159][ T265] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 39.341723][ T265] veth1_macvtap: left promiscuous mode [ 39.341787][ T265] veth0_macvtap: left promiscuous mode [ 39.342091][ T265] veth1_vlan: left promiscuous mode [ 39.342139][ T265] veth0_vlan: left promiscuous mode [ 39.459166][ T265] team0 (unregistering): Port device team_slave_1 removed [ 39.467028][ T265] team0 (unregistering): Port device team_slave_0 removed [ 39.674145][ T6661] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 39.679869][ T6661] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 39.682751][ T6661] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 39.686632][ T6661] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 39.708084][ T6661] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.711408][ T6661] 8021q: adding VLAN 0 to HW filter on device team0 [ 39.712957][ T14] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.712977][ T14] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.714234][ T14] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.714250][ T14] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.772200][ T6661] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 39.812405][ T6661] veth0_vlan: entered promiscuous mode [ 39.813983][ T6661] veth1_vlan: entered promiscuous mode [ 39.822403][ T6661] veth0_macvtap: entered promiscuous mode [ 39.823348][ T6661] veth1_macvtap: entered promiscuous mode [ 39.826560][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 39.827462][ T6661] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 39.829395][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.830045][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.830117][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.830144][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.851866][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.851901][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.861034][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.861062][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 40.092003][ T6713] loop0: detected capacity change from 0 to 32768 [ 40.096278][ T6713] ======================================================= [ 40.096278][ T6713] WARNING: The mand mount option has been deprecated and [ 40.096278][ T6713] and is ignored by this kernel. Remove the mand [ 40.096278][ T6713] option from the mount to silence this warning. [ 40.096278][ T6713] ======================================================= [ 40.113955][ T6713] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode. [ 40.119570][ T6661] ================================================================== [ 40.119588][ T6661] BUG: KASAN: slab-use-after-free in __ocfs2_flush_truncate_log+0x684/0xf6c [ 40.119610][ T6661] Read of size 4 at addr ffff0000e1468ac0 by task syz-executor/6661 [ 40.119616][ T6661] [ 40.119621][ T6661] CPU: 0 UID: 0 PID: 6661 Comm: syz-executor Not tainted syzkaller #0 PREEMPT [ 40.119628][ T6661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 40.119632][ T6661] Call trace: [ 40.119634][ T6661] show_stack+0x2c/0x3c (C) [ 40.119642][ T6661] __dump_stack+0x30/0x40 [ 40.119648][ T6661] dump_stack_lvl+0xd8/0x12c [ 40.119653][ T6661] print_address_description+0xa8/0x238 [ 40.119662][ T6661] print_report+0x68/0x84 [ 40.119668][ T6661] kasan_report+0xb0/0x110 [ 40.119675][ T6661] __asan_report_load4_noabort+0x20/0x2c [ 40.119682][ T6661] __ocfs2_flush_truncate_log+0x684/0xf6c [ 40.119688][ T6661] ocfs2_flush_truncate_log+0x4c/0x6c [ 40.119694][ T6661] ocfs2_sync_fs+0xf8/0x2a4 [ 40.119702][ T6661] sync_filesystem+0x1a0/0x218 [ 40.119711][ T6661] generic_shutdown_super+0x70/0x2b8 [ 40.119719][ T6661] kill_block_super+0x44/0x90 [ 40.119725][ T6661] deactivate_locked_super+0xc4/0x12c [ 40.119731][ T6661] deactivate_super+0xe0/0x100 [ 40.119736][ T6661] cleanup_mnt+0x31c/0x3ac [ 40.119743][ T6661] __cleanup_mnt+0x20/0x30 [ 40.119749][ T6661] task_work_run+0x1dc/0x260 [ 40.119756][ T6661] exit_to_user_mode_loop+0xfc/0x178 [ 40.119763][ T6661] el0_svc+0x170/0x254 [ 40.119771][ T6661] el0t_64_sync_handler+0x84/0x12c [ 40.119776][ T6661] el0t_64_sync+0x198/0x19c [ 40.119782][ T6661] [ 40.119784][ T6661] Allocated by task 6553: [ 40.119787][ T6661] kasan_save_track+0x40/0x78 [ 40.119791][ T6661] kasan_save_alloc_info+0x44/0x54 [ 40.119796][ T6661] __kasan_slab_alloc+0x70/0x88 [ 40.119800][ T6661] kmem_cache_alloc_noprof+0x338/0x648 [ 40.119804][ T6661] __send_signal_locked+0x1e8/0xc5c [ 40.119811][ T6661] send_signal_locked+0xac/0x854 [ 40.119816][ T6661] do_send_specific+0x19c/0x2cc [ 40.119821][ T6661] __arm64_sys_tgkill+0x12c/0x188 [ 40.119825][ T6661] invoke_syscall+0x98/0x254 [ 40.119830][ T6661] el0_svc_common+0x130/0x23c [ 40.119833][ T6661] do_el0_svc+0x48/0x58 [ 40.119837][ T6661] el0_svc+0x5c/0x254 [ 40.119841][ T6661] el0t_64_sync_handler+0x84/0x12c [ 40.119845][ T6661] el0t_64_sync+0x198/0x19c [ 40.119849][ T6661] [ 40.119850][ T6661] Freed by task 6550: [ 40.119852][ T6661] kasan_save_track+0x40/0x78 [ 40.119856][ T6661] __kasan_save_free_info+0x58/0x70 [ 40.119861][ T6661] __kasan_slab_free+0x74/0xa4 [ 40.119865][ T6661] kmem_cache_free+0x18c/0x6dc [ 40.119868][ T6661] __dequeue_signal+0x3b8/0x4bc [ 40.119874][ T6661] dequeue_signal+0x110/0x308 [ 40.119879][ T6661] get_signal+0x41c/0x12f8 [ 40.119883][ T6661] arch_do_signal_or_restart+0x1c0/0x4414 [ 40.119887][ T6661] exit_to_user_mode_loop+0x7c/0x178 [ 40.119892][ T6661] el0_svc+0x170/0x254 [ 40.119896][ T6661] el0t_64_sync_handler+0x84/0x12c [ 40.119901][ T6661] el0t_64_sync+0x198/0x19c [ 40.119904][ T6661] [ 40.119906][ T6661] The buggy address belongs to the object at ffff0000e1468a80 [ 40.119906][ T6661] which belongs to the cache sigqueue of size 80 [ 40.119910][ T6661] The buggy address is located 64 bytes inside of [ 40.119910][ T6661] freed 80-byte region [ffff0000e1468a80, ffff0000e1468ad0) [ 40.119915][ T6661] [ 40.119917][ T6661] The buggy address belongs to the physical page: [ 40.119920][ T6661] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x121468 [ 40.119925][ T6661] flags: 0x5ffc00000000000(node=0|zone=2|lastcpupid=0x7ff) [ 40.119931][ T6661] page_type: f5(slab) [ 40.119936][ T6661] raw: 05ffc00000000000 ffff0000c18b9500 dead000000000122 0000000000000000 [ 40.119940][ T6661] raw: 0000000000000000 0000000000240024 00000000f5000000 0000000000000000 [ 40.119943][ T6661] page dumped because: kasan: bad access detected [ 40.119945][ T6661] [ 40.119946][ T6661] Memory state around the buggy address: [ 40.119949][ T6661] ffff0000e1468980: fc fc fc fc fa fb fb fb fb fb fb fb fb fb fc fc [ 40.119952][ T6661] ffff0000e1468a00: fc fc fa fb fb fb fb fb fb fb fb fb fc fc fc fc [ 40.119955][ T6661] >ffff0000e1468a80: fa fb fb fb fb fb fb fb fb fb fc fc fc fc fa fb [ 40.119957][ T6661] ^ [ 40.119960][ T6661] ffff0000e1468b00: fb fb fb fb fb fb fb fb fc fc fc fc fa fb fb fb [ 40.119963][ T6661] ffff0000e1468b80: fb fb fb fb fb fb fc fc fc fc fa fb fb fb fb fb [ 40.119965][ T6661] ================================================================== [ 40.127470][ T6661] Disabling lock debugging due to kernel taint [ 40.127640][ T6661] (syz-executor,6661,1):ocfs2_read_blocks:239 ERROR: status = -12 [ 40.127651][ T6661] (syz-executor,6661,1):_ocfs2_free_suballoc_bits:2579 ERROR: status = -12 [ 40.127658][ T6661] (syz-executor,6661,1):_ocfs2_free_clusters:2676 ERROR: status = -12 [ 40.127668][ T6661] (syz-executor,6661,1):ocfs2_replay_truncate_records:5984 ERROR: status = -12 [ 40.127675][ T6661] (syz-executor,6661,1):__ocfs2_flush_truncate_log:6065 ERROR: status = -12 [ 40.127682][ T6661] (syz-executor,6661,1):ocfs2_sync_fs:408 ERROR: status = -12 [ 40.168402][ T6661] (syz-executor,6661,1):ocfs2_read_blocks:239 ERROR: status = -12 [ 40.168417][ T6661] (syz-executor,6661,1):_ocfs2_free_suballoc_bits:2579 ERROR: status = -12 [ 40.168426][ T6661] (syz-executor,6661,1):_ocfs2_free_clusters:2676 ERROR: status = -12 [ 40.168440][ T6661] (syz-executor,6661,1):ocfs2_replay_truncate_records:5984 ERROR: status = -12 [ 40.168447][ T6661] (syz-executor,6661,1):__ocfs2_flush_truncate_log:6065 ERROR: status = -12 [ 40.168454][ T6661] (syz-executor,6661,1):ocfs2_truncate_log_shutdown:6345 ERROR: status = -12 [ 40.176138][ T6661] ocfs2: Unmounting device (7,0) on (node local)