Warning: Permanently added '10.128.10.20' (ED25519) to the list of known hosts. executing program [ 53.877569][ T5030] syz-executor814[5030]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 53.904504][ T5030] loop0: detected capacity change from 0 to 2048 [ 53.922778][ T5030] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.941241][ T28] audit: type=1804 audit(1697503844.275:2): pid=5030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor814" name="/root/syzkaller.695xSj/0/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 53.965141][ T28] audit: type=1804 audit(1697503844.285:3): pid=5030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor814" name="/root/syzkaller.695xSj/0/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 54.010513][ T28] audit: type=1804 audit(1697503844.345:4): pid=5035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor814" name="/root/syzkaller.695xSj/0/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 54.035692][ T5035] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 54.065081][ T5030] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 54.077462][ T5030] EXT4-fs (loop0): This should not happen!! Data will be lost [ 54.077462][ T5030] [ 54.087347][ T5030] EXT4-fs (loop0): Total free blocks count 0 [ 54.093388][ T5030] EXT4-fs (loop0): Free/Dirty block details [ 54.099399][ T5030] EXT4-fs (loop0): free_blocks=2415919104 [ 54.105153][ T5030] EXT4-fs (loop0): dirty_blocks=16 [ 54.110592][ T5030] EXT4-fs (loop0): Block reservation details [ 54.116664][ T5030] EXT4-fs (loop0): i_reserved_data_blocks=1 executing program [ 54.130218][ T5028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.189133][ T5037] loop0: detected capacity change from 0 to 2048 [ 54.200715][ T5037] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.217013][ T28] audit: type=1804 audit(1697503844.555:5): pid=5037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor814" name="/root/syzkaller.695xSj/1/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 54.240061][ T28] audit: type=1804 audit(1697503844.555:6): pid=5037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor814" name="/root/syzkaller.695xSj/1/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 54.292270][ T28] audit: type=1804 audit(1697503844.625:7): pid=5040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor814" name="/root/syzkaller.695xSj/1/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 54.316093][ T5040] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 54.332228][ T5037] ------------[ cut here ]------------ [ 54.337913][ T5037] kernel BUG at fs/ext4/inline.c:235! [ 54.343482][ T5037] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 54.349533][ T5037] CPU: 0 PID: 5037 Comm: syz-executor814 Not tainted 6.6.0-rc6-syzkaller #0 [ 54.358186][ T5037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 54.368302][ T5037] RIP: 0010:ext4_write_inline_data+0x375/0x460 [ 54.374491][ T5037] Code: e9 d0 3c 55 ff e8 cb 3c 55 ff 45 8d 64 2c c4 b8 3c 00 00 00 29 e8 4c 63 e8 e9 ba fe ff ff e8 b2 3c 55 ff 0f 0b e8 ab 3c 55 ff <0f> 0b e8 b4 f4 aa ff e9 cc fd ff ff 4c 89 ff e8 a7 f4 aa ff e9 67 [ 54.394171][ T5037] RSP: 0018:ffffc90003b1f3a8 EFLAGS: 00010293 [ 54.400241][ T5037] RAX: 0000000000000000 RBX: ffff8880797fb4b0 RCX: 0000000000000000 [ 54.408205][ T5037] RDX: ffff888078c31dc0 RSI: ffffffff82328d95 RDI: 0000000000000006 [ 54.416162][ T5037] RBP: 0000000000000080 R08: 0000000000000006 R09: 0000000000000081 [ 54.424119][ T5037] R10: 0000000000000080 R11: ffffffff81dd6061 R12: 0000000000000001 [ 54.432087][ T5037] R13: 0000000000000081 R14: ffffc90003b1f450 R15: ffff8880797fba6a [ 54.440043][ T5037] FS: 00007f1841e396c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 54.448958][ T5037] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.455541][ T5037] CR2: 00007f1839a29000 CR3: 00000000752cd000 CR4: 0000000000350ef0 [ 54.463497][ T5037] Call Trace: [ 54.466760][ T5037] [ 54.469676][ T5037] ? show_regs+0x8f/0xa0 [ 54.473905][ T5037] ? die+0x36/0xa0 [ 54.477610][ T5037] ? do_trap+0x22b/0x420 [ 54.481839][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.487378][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.492918][ T5037] ? do_error_trap+0xf4/0x230 [ 54.497583][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.503387][ T5037] ? handle_invalid_op+0x34/0x40 [ 54.508360][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.513902][ T5037] ? exc_invalid_op+0x2d/0x40 [ 54.518582][ T5037] ? asm_exc_invalid_op+0x1a/0x20 [ 54.523599][ T5037] ? __kasan_slab_alloc+0x81/0x90 [ 54.529488][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.535029][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.540574][ T5037] ? ext4_write_inline_data+0x375/0x460 [ 54.546111][ T5037] ? ext4_dax_writepages+0xb50/0xb50 [ 54.551389][ T5037] ext4_write_inline_data_end+0x279/0xc10 [ 54.557100][ T5037] ? ext4_try_to_write_inline_data+0x1340/0x1340 [ 54.563421][ T5037] ? ext4_da_write_begin+0x228/0x8c0 [ 54.568698][ T5037] ? csum_and_copy_from_iter+0x1530/0x1530 [ 54.574506][ T5037] ext4_da_write_end+0x691/0x1170 [ 54.579531][ T5037] generic_perform_write+0x32f/0x600 [ 54.584809][ T5037] ? folio_add_wait_queue+0x1c0/0x1c0 [ 54.590171][ T5037] ? down_write+0x14f/0x200 [ 54.594974][ T5037] ext4_buffered_write_iter+0x11f/0x3c0 [ 54.601166][ T5037] ext4_file_write_iter+0x7f7/0x1860 [ 54.607066][ T5037] ? aa_file_perm+0x594/0x11c0 [ 54.611840][ T5037] ? kasan_save_stack+0x43/0x50 [ 54.616691][ T5037] ? kasan_save_stack+0x33/0x50 [ 54.621532][ T5037] ? kasan_set_track+0x25/0x30 [ 54.626292][ T5037] ? ext4_buffered_write_iter+0x3c0/0x3c0 [ 54.632005][ T5037] ? do_splice_direct+0x1af/0x280 [ 54.637019][ T5037] ? do_sendfile+0xb88/0x1390 [ 54.641685][ T5037] ? __x64_sys_sendfile64+0x1d6/0x220 [ 54.647044][ T5037] ? do_syscall_64+0x38/0xb0 [ 54.651639][ T5037] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.657700][ T5037] do_iter_readv_writev+0x21e/0x3c0 [ 54.664022][ T5037] ? generic_copy_file_range+0x1d0/0x1d0 [ 54.669650][ T5037] ? bpf_lsm_file_permission+0x9/0x10 [ 54.675632][ T5037] ? security_file_permission+0x94/0x100 [ 54.681262][ T5037] do_iter_write+0x17f/0x830 [ 54.685852][ T5037] vfs_iter_write+0x7a/0xb0 [ 54.690347][ T5037] iter_file_splice_write+0x698/0xbf0 [ 54.695711][ T5037] ? splice_from_pipe_next+0x5d0/0x5d0 [ 54.701183][ T5037] ? ext4_file_splice_read+0x107/0x150 [ 54.706653][ T5037] ? splice_from_pipe_next+0x5d0/0x5d0 [ 54.712192][ T5037] direct_splice_actor+0x118/0x180 [ 54.721245][ T5037] splice_direct_to_actor+0x347/0xa30 [ 54.727059][ T5037] ? folio_flags.constprop.0+0x150/0x150 [ 54.732694][ T5037] ? vfs_splice_read+0x3b0/0x3b0 [ 54.737624][ T5037] ? bpf_lsm_file_permission+0x9/0x10 [ 54.743134][ T5037] ? security_file_permission+0x94/0x100 [ 54.749551][ T5037] do_splice_direct+0x1af/0x280 [ 54.754396][ T5037] ? splice_direct_to_actor+0xa30/0xa30 [ 54.760285][ T5037] ? propagate_umount+0x1af0/0x1af0 [ 54.765474][ T5037] do_sendfile+0xb88/0x1390 [ 54.769979][ T5037] ? vfs_iocb_iter_write+0x4c0/0x4c0 [ 54.775280][ T5037] ? xfd_validate_state+0x5d/0x180 [ 54.780391][ T5037] ? restore_fpregs_from_fpstate+0xc1/0x1d0 [ 54.786395][ T5037] __x64_sys_sendfile64+0x1d6/0x220 [ 54.791587][ T5037] ? ksys_write+0x1a7/0x250 [ 54.796081][ T5037] ? __ia32_sys_sendfile+0x220/0x220 [ 54.801358][ T5037] ? syscall_enter_from_user_mode+0x26/0x80 [ 54.807331][ T5037] do_syscall_64+0x38/0xb0 [ 54.811737][ T5037] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.817620][ T5037] RIP: 0033:0x7f1841e7cbd9 [ 54.822016][ T5037] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 54.841961][ T5037] RSP: 002b:00007f1841e39218 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 54.850388][ T5037] RAX: ffffffffffffffda RBX: 00007f1841f056c8 RCX: 00007f1841e7cbd9 [ 54.858521][ T5037] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000006 [ 54.866589][ T5037] RBP: 00007f1841f056c0 R08: 0000000000000000 R09: 0000000000000000 [ 54.875157][ T5037] R10: 000000000001ffff R11: 0000000000000246 R12: 00007f1841ed182c [ 54.883114][ T5037] R13: 00007f1841ed10c0 R14: 00000000200007c0 R15: 8088e3ad122bc192 [ 54.891082][ T5037] [ 54.894084][ T5037] Modules linked in: [ 54.898183][ T5037] ---[ end trace 0000000000000000 ]--- [ 54.904068][ T5037] RIP: 0010:ext4_write_inline_data+0x375/0x460 [ 54.910329][ T5037] Code: e9 d0 3c 55 ff e8 cb 3c 55 ff 45 8d 64 2c c4 b8 3c 00 00 00 29 e8 4c 63 e8 e9 ba fe ff ff e8 b2 3c 55 ff 0f 0b e8 ab 3c 55 ff <0f> 0b e8 b4 f4 aa ff e9 cc fd ff ff 4c 89 ff e8 a7 f4 aa ff e9 67 [ 54.930036][ T5037] RSP: 0018:ffffc90003b1f3a8 EFLAGS: 00010293 [ 54.936109][ T5037] RAX: 0000000000000000 RBX: ffff8880797fb4b0 RCX: 0000000000000000 [ 54.944677][ T5037] RDX: ffff888078c31dc0 RSI: ffffffff82328d95 RDI: 0000000000000006 [ 54.953199][ T5037] RBP: 0000000000000080 R08: 0000000000000006 R09: 0000000000000081 [ 54.961198][ T5037] R10: 0000000000000080 R11: ffffffff81dd6061 R12: 0000000000000001 [ 54.969300][ T5037] R13: 0000000000000081 R14: ffffc90003b1f450 R15: ffff8880797fba6a [ 54.977725][ T5037] FS: 00007f1841e396c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 54.986878][ T5037] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.993517][ T5037] CR2: 00007f1839a29000 CR3: 00000000752cd000 CR4: 0000000000350ef0 [ 55.001619][ T5037] Kernel panic - not syncing: Fatal exception [ 55.008335][ T5037] Kernel Offset: disabled [ 55.012662][ T5037] Rebooting in 86400 seconds..