Warning: Permanently added '[localhost]:21119' (ED25519) to the list of known hosts.
executing program
[   69.256502][ T5302] loop0: detected capacity change from 0 to 32768
[   69.264208][ T5302] =======================================================
[   69.264208][ T5302] WARNING: The mand mount option has been deprecated and
[   69.264208][ T5302]          and is ignored by this kernel. Remove the mand
[   69.264208][ T5302]          option from the mount to silence this warning.
[   69.264208][ T5302] =======================================================
[   69.325312][ T5302] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   69.335775][ T5299] ==================================================================
[   69.338583][ T5299] BUG: KASAN: use-after-free in __ocfs2_flush_truncate_log+0x824/0x1240
[   69.341917][ T5299] Read of size 4 at addr ffff88804a142ac0 by task syz-executor176/5299
[   69.345653][ T5299] 
[   69.347861][ T5299] CPU: 0 UID: 0 PID: 5299 Comm: syz-executor176 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   69.351869][ T5299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.356070][ T5299] Call Trace:
[   69.357365][ T5299]  <TASK>
[   69.358587][ T5299]  dump_stack_lvl+0x241/0x360
[   69.360419][ T5299]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.362431][ T5299]  ? __pfx__printk+0x10/0x10
[   69.364140][ T5299]  ? _printk+0xd5/0x120
[   69.365665][ T5299]  ? __virt_addr_valid+0x183/0x530
[   69.367550][ T5299]  ? __virt_addr_valid+0x183/0x530
[   69.369519][ T5299]  print_report+0x169/0x550
[   69.371321][ T5299]  ? __virt_addr_valid+0x183/0x530
[   69.373242][ T5299]  ? __virt_addr_valid+0x183/0x530
[   69.375223][ T5299]  ? __virt_addr_valid+0x45f/0x530
[   69.377195][ T5299]  ? __phys_addr+0xba/0x170
[   69.378956][ T5299]  ? __ocfs2_flush_truncate_log+0x824/0x1240
[   69.381144][ T5299]  kasan_report+0x143/0x180
[   69.382908][ T5299]  ? __ocfs2_flush_truncate_log+0x824/0x1240
[   69.385171][ T5299]  __ocfs2_flush_truncate_log+0x824/0x1240
[   69.387451][ T5299]  ? __pfx___ocfs2_flush_truncate_log+0x10/0x10
[   69.389761][ T5299]  ? __pfx_lock_acquire+0x10/0x10
[   69.391639][ T5299]  ? ocfs2_sync_fs+0xf8/0x390
[   69.393490][ T5299]  ? down_write+0x18c/0x220
[   69.395297][ T5299]  ? __pfx_down_write+0x10/0x10
[   69.397173][ T5299]  ? do_raw_spin_unlock+0x58/0x8b0
[   69.399147][ T5299]  ocfs2_flush_truncate_log+0x4f/0x70
[   69.401154][ T5299]  ocfs2_sync_fs+0x125/0x390
[   69.402875][ T5299]  ? __pfx_ocfs2_sync_fs+0x10/0x10
[   69.404778][ T5299]  ? __dentry_kill+0x4e9/0x630
[   69.406625][ T5299]  ? get_nr_dirty_inodes+0x1b7/0x200
[   69.408685][ T5299]  sync_filesystem+0x1c8/0x230
[   69.410591][ T5299]  generic_shutdown_super+0x72/0x2d0
[   69.412569][ T5299]  kill_block_super+0x44/0x90
[   69.414394][ T5299]  deactivate_locked_super+0xc4/0x130
[   69.416466][ T5299]  cleanup_mnt+0x41f/0x4b0
[   69.418161][ T5299]  ? lockdep_hardirqs_on+0x99/0x150
[   69.420375][ T5299]  task_work_run+0x24f/0x310
[   69.422242][ T5299]  ? __pfx_task_work_run+0x10/0x10
[   69.424136][ T5299]  ? __x64_sys_umount+0x123/0x170
[   69.425985][ T5299]  ? syscall_exit_to_user_mode+0xa3/0x340
[   69.428090][ T5299]  syscall_exit_to_user_mode+0x13f/0x340
[   69.430095][ T5299]  do_syscall_64+0x100/0x230
[   69.431830][ T5299]  ? clear_bhb_loop+0x35/0x90
[   69.433523][ T5299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.435716][ T5299] RIP: 0033:0x7fcc3027d9a7
[   69.437457][ T5299] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[   69.444623][ T5299] RSP: 002b:00007ffe09a23458 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[   69.447805][ T5299] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fcc3027d9a7
[   69.450742][ T5299] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe09a23510
[   69.453725][ T5299] RBP: 00007ffe09a23510 R08: 0000000000000000 R09: 0000000000000000
[   69.456627][ T5299] R10: 00000000ffffffff R11: 0000000000000202 R12: 00007ffe09a24580
[   69.459533][ T5299] R13: 000055559072a7c0 R14: 431bde82d7b634db R15: 00007ffe09a245a0
[   69.462594][ T5299]  </TASK>
[   69.463630][ T5299] 
[   69.464484][ T5299] The buggy address belongs to the physical page:
[   69.466930][ T5299] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a142
[   69.470158][ T5299] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[   69.472896][ T5299] raw: 04fff00000000000 ffffea00012850c8 ffffea000115ce08 0000000000000000
[   69.475902][ T5299] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   69.478907][ T5299] page dumped because: kasan: bad access detected
[   69.481135][ T5299] page_owner info is not present (never set?)
[   69.483272][ T5299] 
[   69.484144][ T5299] Memory state around the buggy address:
[   69.486218][ T5299]  ffff88804a142980: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.489137][ T5299]  ffff88804a142a00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.492024][ T5299] >ffff88804a142a80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.494942][ T5299]                                            ^
[   69.497180][ T5299]  ffff88804a142b00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.500120][ T5299]  ffff88804a142b80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.503083][ T5299] ==================================================================
[   69.508174][ T5299] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   69.510816][ T5299] CPU: 0 UID: 0 PID: 5299 Comm: syz-executor176 Not tainted 6.13.0-rc3-syzkaller-00209-g499551201b5f #0
[   69.515031][ T5299] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.518903][ T5299] Call Trace:
[   69.520139][ T5299]  <TASK>
[   69.521242][ T5299]  dump_stack_lvl+0x241/0x360
[   69.522998][ T5299]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.525032][ T5299]  ? __pfx__printk+0x10/0x10
[   69.526790][ T5299]  ? preempt_schedule+0xe1/0xf0
[   69.528608][ T5299]  ? vscnprintf+0x5d/0x90
[   69.530305][ T5299]  panic+0x349/0x880
[   69.531830][ T5299]  ? check_panic_on_warn+0x21/0xb0
[   69.533733][ T5299]  ? __pfx_panic+0x10/0x10
[   69.535352][ T5299]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   69.537639][ T5299]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   69.539934][ T5299]  ? print_report+0x502/0x550
[   69.541688][ T5299]  check_panic_on_warn+0x86/0xb0
[   69.543544][ T5299]  ? __ocfs2_flush_truncate_log+0x824/0x1240
[   69.545860][ T5299]  end_report+0x77/0x160
[   69.547499][ T5299]  kasan_report+0x154/0x180
[   69.549131][ T5299]  ? __ocfs2_flush_truncate_log+0x824/0x1240
[   69.551360][ T5299]  __ocfs2_flush_truncate_log+0x824/0x1240
[   69.553523][ T5299]  ? __pfx___ocfs2_flush_truncate_log+0x10/0x10
[   69.555780][ T5299]  ? __pfx_lock_acquire+0x10/0x10
[   69.557808][ T5299]  ? ocfs2_sync_fs+0xf8/0x390
[   69.559641][ T5299]  ? down_write+0x18c/0x220
[   69.561377][ T5299]  ? __pfx_down_write+0x10/0x10
[   69.563230][ T5299]  ? do_raw_spin_unlock+0x58/0x8b0
[   69.565101][ T5299]  ocfs2_flush_truncate_log+0x4f/0x70
[   69.567123][ T5299]  ocfs2_sync_fs+0x125/0x390
[   69.568853][ T5299]  ? __pfx_ocfs2_sync_fs+0x10/0x10
[   69.570808][ T5299]  ? __dentry_kill+0x4e9/0x630
[   69.572624][ T5299]  ? get_nr_dirty_inodes+0x1b7/0x200
[   69.574621][ T5299]  sync_filesystem+0x1c8/0x230
[   69.576436][ T5299]  generic_shutdown_super+0x72/0x2d0
[   69.578410][ T5299]  kill_block_super+0x44/0x90
[   69.580224][ T5299]  deactivate_locked_super+0xc4/0x130
[   69.582292][ T5299]  cleanup_mnt+0x41f/0x4b0
[   69.583920][ T5299]  ? lockdep_hardirqs_on+0x99/0x150
[   69.585856][ T5299]  task_work_run+0x24f/0x310
[   69.587563][ T5299]  ? __pfx_task_work_run+0x10/0x10
[   69.589467][ T5299]  ? __x64_sys_umount+0x123/0x170
[   69.591405][ T5299]  ? syscall_exit_to_user_mode+0xa3/0x340
[   69.593443][ T5299]  syscall_exit_to_user_mode+0x13f/0x340
[   69.595693][ T5299]  do_syscall_64+0x100/0x230
[   69.597737][ T5299]  ? clear_bhb_loop+0x35/0x90
[   69.600067][ T5299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.602716][ T5299] RIP: 0033:0x7fcc3027d9a7
[   69.604353][ T5299] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8
[   69.611244][ T5299] RSP: 002b:00007ffe09a23458 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[   69.614223][ T5299] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fcc3027d9a7
[   69.617036][ T5299] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe09a23510
[   69.619987][ T5299] RBP: 00007ffe09a23510 R08: 0000000000000000 R09: 0000000000000000
[   69.622815][ T5299] R10: 00000000ffffffff R11: 0000000000000202 R12: 00007ffe09a24580
[   69.625496][ T5299] R13: 000055559072a7c0 R14: 431bde82d7b634db R15: 00007ffe09a245a0
[   69.628364][ T5299]  </TASK>
[   69.629737][ T5299] Kernel Offset: disabled
[   69.631411][ T5299] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:37:49  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000035 RBX=ffffffff9a6f1820 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000d14f1b0
R8 =ffffffff855027eb R9 =1ffff11003db3046 R10=dffffc0000000000 R11=ffffffff855027a0
R12=dffffc0000000000 R13=ffffffff9a3ebf72 R14=0000000000000035 R15=00000000000003f8
RIP=ffffffff8550281e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555590729480 ffffffff 00c00000
GS =0000 ffff88801fc00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe09a22ca8 CR3=0000000042eec000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001004401 Opmask01=0000000000000001 Opmask02=00000000fff7ffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe09a23460 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffff0f0e0d0c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 303636396f736900 72656c6c616b7a79 7300756c6c25706f 6f6c2f7665642f00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1513131c4a564c00 57404949444e5f5c 560050494900554a 4a490a5340410a00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000