./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3786592262

<...>
forked to background, child pid 4648
no interfaces have a carrier
[   40.832513][ T4649] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.856512][ T4649] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.36' (ECDSA) to the list of known hosts.
execve("./syz-executor3786592262", ["./syz-executor3786592262"], 0x7fffc875fb30 /* 10 vars */) = 0
brk(NULL)                               = 0x55555604b000
brk(0x55555604bd00)                     = 0x55555604bd00
arch_prctl(ARCH_SET_FS, 0x55555604b3c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3786592262", 4096) = 28
brk(0x55555606cd00)                     = 0x55555606cd00
brk(0x55555606d000)                     = 0x55555606d000
mprotect(0x7fb0579ab000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
getpid()                                = 5073
openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3
write(3, "10000000000", 11)             = 11
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3
write(3, "20", 2)                       = 2
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
write(3, "100", 3)                      = 3
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3
write(3, "7 4 1 3", 7)                  = 7
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3
write(3, "5073", 4)                     = 4
close(3)                                = 0
chmod("/dev/raw-gadget", 0666)          = 0
socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
sendto(4, [{nlmsg_len=36, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=784, nlmsg_type=nlctrl, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5073}, "\x01\x02\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00\x06\x00\x01\x00\x1d\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x2e\x00\x00\x00\x98\x02\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x05\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x03\x00"...], 4096, 0, NULL, NULL) = 784
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=36, nlmsg_type=nlctrl, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
access("/proc/net", R_OK)               = 0
access("/proc/net/unix", R_OK)          = 0
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0
close(5)                                = 0
sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x06\x00\x0a\x00\xa0\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0
close(5)                                = 0
sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0c\x00\x01\x00\x02\x00\xaa\xaa\xaa\xaa\xaa\xaa"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
sendto(3, [{nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=0, ifi_flags=0, ifi_change=0}, [[{nla_len=11, nla_type=IFLA_IFNAME}, "lowpan0"...], [{nla_len=16, nla_type=IFLA_LINKINFO}, [{nla_len=10, nla_type=IFLA_INFO_KIND}, "lowpan"...]], [{nla_len=8, nla_type=IFLA_LINK}, 11]]], 68, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 68
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0
close(5)                                = 0
sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x06\x00\x0a\x00\xa1\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0
close(5)                                = 0
sendto(3, [{nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=if_nametoindex("wpan1"), ifi_flags=IFF_UP, ifi_change=0x1}, [{nla_len=12, nla_type=IFLA_ADDRESS}, 02:01:aa:aa:aa:aa:aa]], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5073}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
close(3)                                = 0
close(4)                                = 0
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7fb0578f6ac0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fb0578f8930}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7fb0578f6ac0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fb0578f8930}, NULL, 8) = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555604b690) = 5075
./strace-static-x86_64: Process 5075 attached
[pid  5075] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5075] setsid()                    = 1
[pid  5075] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5075] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5075] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5075] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5075] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5075] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5075] unshare(CLONE_NEWNS)        = 0
[pid  5075] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5075] unshare(CLONE_NEWIPC)       = 0
[pid  5075] unshare(CLONE_NEWCGROUP)    = 0
[pid  5075] unshare(CLONE_NEWUTS)       = 0
[pid  5075] unshare(CLONE_SYSVSEM)      = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "16777216", 8)     = 8
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "536870912", 9)    = 9
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "1024", 4)         = 4
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "8192", 4)         = 4
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "1024", 4)         = 4
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "1024", 4)         = 4
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5075] close(3)                    = 0
[pid  5075] getpid()                    = 1
[pid  5075] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5075] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5075] unshare(CLONE_NEWNET)       = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "0 65535", 7)      = 7
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/dev/net/tun", O_RDWR|O_NONBLOCK) = 3
[pid  5075] dup2(3, 200)                = 200
[pid  5075] close(3)                    = 0
[pid  5075] ioctl(200, TUNSETIFF, 0x7ffdcef997b0) = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/accept_dad", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "0", 1)            = 1
[pid  5075] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/proc/sys/net/ipv6/conf/syz_tun/router_solicitations", O_WRONLY|O_CLOEXEC) = 3
[pid  5075] write(3, "0", 1)            = 1
[pid  5075] close(3)                    = 0
[pid  5075] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
[pid  5075] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5075] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5075] close(4)                    = 0
[pid  5075] sendto(3, [{nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x18\x00\x00\x0b\x00\x00\x00\x08\x00\x02\x00\xac\x14\x14\xaa\x08\x00\x01\x00\xac\x14\x14\xaa"], 40, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 40
[pid  5075] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=40, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5075] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5075] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5075] close(4)                    = 0
[pid  5075] sendto(3, [{nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x78\x00\x00\x0b\x00\x00\x00\x14\x00\x02\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xaa"], 64, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 64
[pid  5075] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=64, nlmsg_type=0x14 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x500, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5075] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5075] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5075] close(4)                    = 0
[pid  5075] sendto(3, [{nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x02\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x08\x00\x01\x00\xac\x14\x14\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 48, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 48
[pid  5075] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=48, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5075] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5075] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5075] close(4)                    = 0
[pid  5075] sendto(3, [{nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}, "\x0a\x00\x00\x00\x0b\x00\x00\x00\x80\x00\x00\x00\x14\x00\x01\x00\xfe\x80\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbb\x0a\x00\x02\x00\xbb\xaa\xaa\xaa\xaa\xaa\x00\x00"], 60, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 60
[pid  5075] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=60, nlmsg_type=0x1c /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|0x600, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5075] socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 4
[pid  5075] ioctl(4, SIOCGIFINDEX, {ifr_name="syz_tun", ifr_ifindex=11}) = 0
[pid  5075] close(4)                    = 0
[pid  5075] sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0a\x00\x01\x00\xaa\xaa\xaa\xaa\xaa\xaa\x00\x00"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
[pid  5075] recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=1}, {error=0, msg={nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
[pid  5075] close(3)                    = 0
[pid  5075] mkdir("/dev/binderfs", 0777) = 0
[pid  5075] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5075] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5075] memfd_create("syzkaller", 0) = 3
[pid  5075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb04f4ec000
[pid  5075] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid  5075] munmap(0x7fb04f4ec000, 1048576) = 0
[pid  5075] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5075] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5075] close(3)                    = 0
[pid  5075] mkdir("./file0", 0777)      = 0
syzkaller login: [   67.784056][ T5075] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5075 'syz-executor378'
[   67.809175][ T5075] loop0: detected capacity change from 0 to 2048
[pid  5075] mount("/dev/loop0", "./file0", "ext4", MS_DIRSYNC|MS_NOATIME|MS_LAZYTIME, ",errors=continue") = 0
[pid  5075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5075] chdir("./file0")            = 0
[pid  5075] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5075] close(4)                    = 0
[pid  5075] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 4
[pid  5075] write(4, "\x50\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x07\x00\x00\x00\x26\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 80) = 80
[pid  5075] mount("/dev/loop0", "./bus", NULL, MS_BIND, NULL) = 0
[pid  5075] openat(AT_FDCWD, "./bus", O_RDONLY) = 5
[pid  5075] openat(AT_FDCWD, "./bus", O_RDWR|O_SYNC|O_NOATIME|O_CLOEXEC) = 6
[pid  5075] read(6, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 8224) = 8224
[pid  5075] sendfile(6, 5, NULL, 131071) = 131071
[   67.832141][ T5075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[   67.879859][ T5075] ==================================================================
[   67.887993][ T5075] BUG: KASAN: slab-out-of-bounds in ext4_convert_inline_data_nolock+0x31a/0xd80
[   67.897038][ T5075] Read of size 20 at addr ffff88807645e1a3 by task syz-executor378/5075
[   67.905359][ T5075] 
[   67.907686][ T5075] CPU: 0 PID: 5075 Comm: syz-executor378 Not tainted 6.3.0-rc4-syzkaller-00025-g3a93e40326c8 #0
[   67.918117][ T5075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   67.928283][ T5075] Call Trace:
[   67.932704][ T5075]  <TASK>
[   67.935659][ T5075]  dump_stack_lvl+0x1e7/0x2d0
[   67.940363][ T5075]  ? nf_tcp_handle_invalid+0x650/0x650
[   67.945827][ T5075]  ? panic+0x770/0x770
[   67.949916][ T5075]  ? _printk+0xd5/0x120
[   67.954072][ T5075]  print_report+0x163/0x540
[   67.958578][ T5075]  ? __virt_addr_valid+0x22f/0x2e0
[   67.963696][ T5075]  ? __phys_addr+0xba/0x170
[   67.968206][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   67.974624][ T5075]  kasan_report+0x176/0x1b0
[   67.979134][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   67.985465][ T5075]  kasan_check_range+0x283/0x290
[   67.990402][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   67.996732][ T5075]  __asan_memcpy+0x29/0x70
[   68.001171][ T5075]  ext4_convert_inline_data_nolock+0x31a/0xd80
[   68.007366][ T5075]  ? read_lock_is_recursive+0x20/0x20
[   68.012780][ T5075]  ? __down_write_common+0x161/0x200
[   68.018081][ T5075]  ? ext4_add_dirent_to_inline+0x4f0/0x4f0
[   68.023980][ T5075]  ? ext4_journal_check_start+0x179/0x240
[   68.029725][ T5075]  ? __ext4_journal_start_sb+0x26b/0x5a0
[   68.035395][ T5075]  ext4_convert_inline_data+0x4da/0x620
[   68.040972][ T5075]  ? memalloc_retry_wait+0xb0/0xb0
[   68.046102][ T5075]  ext4_fallocate+0x14d/0x2050
[   68.050881][ T5075]  ? rcu_read_lock_any_held+0xb7/0x160
[   68.056363][ T5075]  ? ptrace_notify+0x278/0x380
[   68.061140][ T5075]  ? memalloc_retry_wait+0xb0/0xb0
[   68.066542][ T5075]  vfs_fallocate+0x54b/0x6b0
[   68.071146][ T5075]  __x64_sys_fallocate+0xbd/0x100
[   68.076184][ T5075]  do_syscall_64+0x41/0xc0
[   68.080619][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.086548][ T5075] RIP: 0033:0x7fb0579425c9
[   68.090991][ T5075] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 31 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   68.110627][ T5075] RSP: 002b:00007ffdcef99758 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   68.119066][ T5075] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb0579425c9
[   68.127051][ T5075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   68.135042][ T5075] RBP: 0000000000000003 R08: 0000000000000003 R09: 0000000000000003
[   68.143046][ T5075] R10: 0000000000008000 R11: 0000000000000246 R12: 00007ffdcef99790
[   68.151064][ T5075] R13: 00007ffdcef99788 R14: 00007ffdcef99784 R15: 0000000000000003
[   68.159265][ T5075]  </TASK>
[   68.162297][ T5075] 
[   68.164629][ T5075] Allocated by task 5023:
[   68.169051][ T5075]  kasan_set_track+0x4f/0x70
[   68.173669][ T5075]  __kasan_slab_alloc+0x66/0x70
[   68.178628][ T5075]  slab_post_alloc_hook+0x68/0x3a0
[   68.183846][ T5075]  kmem_cache_alloc+0x11f/0x2e0
[   68.188974][ T5075]  mas_alloc_nodes+0x26e/0x780
[   68.193750][ T5075]  mas_preallocate+0x131/0x350
[   68.198525][ T5075]  __split_vma+0x1e0/0x7f0
[   68.202962][ T5075]  mprotect_fixup+0x5f5/0x920
[   68.207646][ T5075]  do_mprotect_pkey+0x8f8/0xc60
[   68.212520][ T5075]  __x64_sys_mprotect+0x80/0x90
[   68.217551][ T5075]  do_syscall_64+0x41/0xc0
[   68.222005][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.227938][ T5075] 
[   68.230279][ T5075] Freed by task 5023:
[   68.234260][ T5075]  kasan_set_track+0x4f/0x70
[   68.238864][ T5075]  kasan_save_free_info+0x2b/0x40
[   68.243902][ T5075]  ____kasan_slab_free+0xd6/0x120
[   68.248966][ T5075]  kmem_cache_free+0x297/0x520
[   68.253829][ T5075]  mas_destroy+0x1bdc/0x2280
[   68.258433][ T5075]  mas_store_prealloc+0x351/0x460
[   68.263496][ T5075]  vma_complete+0x1ed/0x970
[   68.268019][ T5075]  __split_vma+0x7b9/0x7f0
[   68.272439][ T5075]  mprotect_fixup+0x5f5/0x920
[   68.277146][ T5075]  do_mprotect_pkey+0x8f8/0xc60
[   68.282005][ T5075]  __x64_sys_mprotect+0x80/0x90
[   68.286864][ T5075]  do_syscall_64+0x41/0xc0
[   68.291380][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.297375][ T5075] 
[   68.299697][ T5075] The buggy address belongs to the object at ffff88807645e000
[   68.299697][ T5075]  which belongs to the cache maple_node of size 256
[   68.313665][ T5075] The buggy address is located 163 bytes to the right of
[   68.313665][ T5075]  allocated 256-byte region [ffff88807645e000, ffff88807645e100)
[   68.328335][ T5075] 
[   68.331011][ T5075] The buggy address belongs to the physical page:
[   68.337423][ T5075] page:ffffea0001d91780 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7645e
[   68.347610][ T5075] head:ffffea0001d91780 order:1 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   68.356564][ T5075] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   68.364574][ T5075] raw: 00fff00000010200 ffff8880124cd000 dead000000000122 0000000000000000
[   68.373167][ T5075] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   68.381752][ T5075] page dumped because: kasan: bad access detected
[   68.388171][ T5075] page_owner tracks the page as allocated
[   68.393886][ T5075] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5023, tgid 5023 (rm), ts 57145564531, free_ts 41308598324
[   68.414404][ T5075]  get_page_from_freelist+0x3246/0x33c0
[   68.419984][ T5075]  __alloc_pages+0x255/0x670
[   68.424677][ T5075]  alloc_slab_page+0x6a/0x160
[   68.429365][ T5075]  new_slab+0x84/0x2f0
[   68.433438][ T5075]  ___slab_alloc+0xa85/0x10a0
[   68.438233][ T5075]  kmem_cache_alloc+0x1b9/0x2e0
[   68.443115][ T5075]  mas_alloc_nodes+0x26e/0x780
[   68.447906][ T5075]  mas_preallocate+0x131/0x350
[   68.452701][ T5075]  __split_vma+0x1e0/0x7f0
[   68.457130][ T5075]  mprotect_fixup+0x5f5/0x920
[   68.461819][ T5075]  do_mprotect_pkey+0x8f8/0xc60
[   68.466693][ T5075]  __x64_sys_mprotect+0x80/0x90
[   68.471573][ T5075]  do_syscall_64+0x41/0xc0
[   68.476014][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.481934][ T5075] page last free stack trace:
[   68.486615][ T5075]  free_unref_page_prepare+0xe2f/0xe70
[   68.492086][ T5075]  free_unref_page+0x37/0x3f0
[   68.496773][ T5075]  __unfreeze_partials+0x1b1/0x1f0
[   68.501888][ T5075]  put_cpu_partial+0x116/0x180
[   68.506658][ T5075]  qlist_free_all+0x22/0x60
[   68.511173][ T5075]  kasan_quarantine_reduce+0x14b/0x160
[   68.516656][ T5075]  __kasan_slab_alloc+0x23/0x70
[   68.521515][ T5075]  slab_post_alloc_hook+0x68/0x3a0
[   68.526636][ T5075]  kmem_cache_alloc+0x11f/0x2e0
[   68.531499][ T5075]  vm_area_alloc+0x24/0xe0
[   68.535923][ T5075]  mmap_region+0xbfb/0x20c0
[   68.540431][ T5075]  do_mmap+0x8c9/0xf70
[   68.544589][ T5075]  vm_mmap_pgoff+0x1ce/0x2e0
[   68.549185][ T5075]  ksys_mmap_pgoff+0x4f9/0x6d0
[   68.553953][ T5075]  do_syscall_64+0x41/0xc0
[   68.558384][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.564305][ T5075] 
[   68.566628][ T5075] Memory state around the buggy address:
[   68.572255][ T5075]  ffff88807645e080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   68.580316][ T5075]  ffff88807645e100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   68.588643][ T5075] >ffff88807645e180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   68.596729][ T5075]                                ^
[   68.601847][ T5075]  ffff88807645e200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   68.609920][ T5075]  ffff88807645e280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   68.617983][ T5075] ==================================================================
[   68.626515][ T5075] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   68.633735][ T5075] CPU: 1 PID: 5075 Comm: syz-executor378 Not tainted 6.3.0-rc4-syzkaller-00025-g3a93e40326c8 #0
[   68.644178][ T5075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   68.654243][ T5075] Call Trace:
[   68.657524][ T5075]  <TASK>
[   68.660453][ T5075]  dump_stack_lvl+0x1e7/0x2d0
[   68.665160][ T5075]  ? nf_tcp_handle_invalid+0x650/0x650
[   68.670642][ T5075]  ? panic+0x770/0x770
[   68.674724][ T5075]  ? vscnprintf+0x5d/0x80
[   68.679073][ T5075]  panic+0x31c/0x770
[   68.682974][ T5075]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   68.689140][ T5075]  ? check_panic_on_warn+0x21/0xa0
[   68.694302][ T5075]  ? memcpy_page_flushcache+0x100/0x100
[   68.699861][ T5075]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   68.705931][ T5075]  ? _raw_spin_unlock+0x40/0x40
[   68.710809][ T5075]  check_panic_on_warn+0x82/0xa0
[   68.715760][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   68.722104][ T5075]  end_report+0x63/0x110
[   68.726355][ T5075]  kasan_report+0x183/0x1b0
[   68.730863][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   68.737201][ T5075]  kasan_check_range+0x283/0x290
[   68.742153][ T5075]  ? ext4_convert_inline_data_nolock+0x31a/0xd80
[   68.748520][ T5075]  __asan_memcpy+0x29/0x70
[   68.752953][ T5075]  ext4_convert_inline_data_nolock+0x31a/0xd80
[   68.759133][ T5075]  ? read_lock_is_recursive+0x20/0x20
[   68.764505][ T5075]  ? __down_write_common+0x161/0x200
[   68.769799][ T5075]  ? ext4_add_dirent_to_inline+0x4f0/0x4f0
[   68.775614][ T5075]  ? ext4_journal_check_start+0x179/0x240
[   68.781337][ T5075]  ? __ext4_journal_start_sb+0x26b/0x5a0
[   68.786972][ T5075]  ext4_convert_inline_data+0x4da/0x620
[   68.792549][ T5075]  ? memalloc_retry_wait+0xb0/0xb0
[   68.797693][ T5075]  ext4_fallocate+0x14d/0x2050
[   68.802466][ T5075]  ? rcu_read_lock_any_held+0xb7/0x160
[   68.807940][ T5075]  ? ptrace_notify+0x278/0x380
[   68.812715][ T5075]  ? memalloc_retry_wait+0xb0/0xb0
[   68.817840][ T5075]  vfs_fallocate+0x54b/0x6b0
[   68.822451][ T5075]  __x64_sys_fallocate+0xbd/0x100
[   68.827502][ T5075]  do_syscall_64+0x41/0xc0
[   68.831959][ T5075]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   68.837868][ T5075] RIP: 0033:0x7fb0579425c9
[   68.842281][ T5075] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 31 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   68.861935][ T5075] RSP: 002b:00007ffdcef99758 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   68.870359][ T5075] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb0579425c9
[   68.878531][ T5075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   68.886517][ T5075] RBP: 0000000000000003 R08: 0000000000000003 R09: 0000000000000003
[   68.894491][ T5075] R10: 0000000000008000 R11: 0000000000000246 R12: 00007ffdcef99790
[   68.902468][ T5075] R13: 00007ffdcef99788 R14: 00007ffdcef99784 R15: 0000000000000003
[   68.910539][ T5075]  </TASK>
[   68.913896][ T5075] Kernel Offset: disabled
[   68.918237][ T5075] Rebooting in 86400 seconds..