Warning: Permanently added '10.128.0.101' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
[ 67.028446][ T5054] loop0: detected capacity change from 0 to 512
[ 67.028925][ T5053] loop1: detected capacity change from 0 to 512
[ 67.043443][ T5059] loop2: detected capacity change from 0 to 512
[ 67.056385][ T5057] loop3: detected capacity change from 0 to 512
[ 67.066196][ T5061] loop5: detected capacity change from 0 to 512
[ 67.074973][ T5060] loop4: detected capacity change from 0 to 512
[ 67.084799][ T5057] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.093923][ T5061] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.094516][ T5059] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.105336][ T5053] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.114099][ T5054] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.126179][ T5057] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.130622][ T5060] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 67.139641][ T5061] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.147173][ T5054] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.163906][ T5053] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.174218][ T5059] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.185304][ T5060] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[ 67.246867][ T5060] EXT4-fs (loop4): 1 truncate cleaned up
[ 67.248477][ T5053] EXT4-fs (loop1): 1 truncate cleaned up
[ 67.253027][ T5060] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.258849][ T5061] EXT4-fs (loop5): 1 truncate cleaned up
[ 67.271822][ T5057] EXT4-fs (loop3): 1 truncate cleaned up
[ 67.278594][ T5059] EXT4-fs (loop2): 1 truncate cleaned up
[ 67.283554][ T5057] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.289245][ T12] Quota error (device loop2): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[ 67.313118][ T5059] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.318907][ T5054] EXT4-fs (loop0): 1 truncate cleaned up
[ 67.331453][ T5053] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.343037][ T5054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.344201][ T5061] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 67.376658][ T12] Quota error (device loop4): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[ 67.409769][ T12] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[ 67.467850][ T11] ==================================================================
[ 67.475956][ T11] BUG: KASAN: use-after-free in ext4_find_extent+0xbc8/0xde0
[ 67.483418][ T11] Read of size 4 at addr ffff888074240210 by task kworker/u4:0/11
[ 67.491236][ T11]
[ 67.493574][ T11] CPU: 0 PID: 11 Comm: kworker/u4:0 Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[ 67.503567][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 67.513637][ T11] Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
[ 67.520442][ T11] Call Trace:
[ 67.523741][ T11]
[ 67.526688][ T11] dump_stack_lvl+0x1e7/0x2d0
[ 67.531401][ T11] ? nf_tcp_handle_invalid+0x650/0x650
[ 67.536894][ T11] ? panic+0x850/0x850
[ 67.540995][ T11] ? _printk+0xd5/0x120
[ 67.545202][ T11] print_report+0x163/0x540
[ 67.549730][ T11] ? bdev_getblk+0x77/0x6d0
[ 67.554261][ T11] ? __virt_addr_valid+0x22f/0x2e0
[ 67.559400][ T11] ? __phys_addr+0xba/0x170
[ 67.563945][ T11] ? ext4_find_extent+0xbc8/0xde0
[ 67.568995][ T11] kasan_report+0x142/0x170
[ 67.573522][ T11] ? ext4_find_extent+0xbc8/0xde0
[ 67.578654][ T11] ext4_find_extent+0xbc8/0xde0
[ 67.583524][ T11] ext4_ext_map_blocks+0x2cb/0x7150
[ 67.588755][ T11] ? rwsem_down_write_slowpath+0x115e/0x13b0
[ 67.594785][ T11] ? ext4_ext_release+0x10/0x10
[ 67.599665][ T11] ? __down_write_common+0x161/0x200
[ 67.604981][ T11] ? ext4_es_lookup_extent+0x606/0xa40
[ 67.610468][ T11] ext4_map_blocks+0xa2f/0x1cd0
[ 67.615342][ T11] ? __lock_acquire+0x1345/0x1fd0
[ 67.620392][ T11] ? ext4_issue_zeroout+0x260/0x260
[ 67.625635][ T11] ? ext4_journal_check_start+0x175/0x250
[ 67.631389][ T11] ? __ext4_journal_start_sb+0x26b/0x5b0
[ 67.637044][ T11] ext4_convert_unwritten_extents+0x2f3/0x6c0
[ 67.643123][ T11] ? trace_ext4_fallocate_exit+0x210/0x210
[ 67.648945][ T11] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 67.654867][ T11] ? lockdep_hardirqs_on+0x98/0x140
[ 67.660094][ T11] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 67.666011][ T11] ? _raw_spin_unlock+0x40/0x40
[ 67.670908][ T11] ext4_convert_unwritten_io_end_vec+0x101/0x170
[ 67.677255][ T11] ext4_end_io_rsv_work+0x36c/0x6f0
[ 67.682488][ T11] ? print_irqtrace_events+0x220/0x220
[ 67.687970][ T11] ? ext4_last_io_end_vec+0x70/0x70
[ 67.693195][ T11] ? process_scheduled_works+0x825/0x1420
[ 67.698937][ T11] process_scheduled_works+0x90f/0x1420
[ 67.704522][ T11] ? assign_work+0x3d0/0x3d0
[ 67.709143][ T11] ? assign_work+0x364/0x3d0
[ 67.713755][ T11] worker_thread+0xa5f/0x1000
[ 67.718466][ T11] kthread+0x2d3/0x370
[ 67.722568][ T11] ? pr_cont_work+0x5e0/0x5e0
[ 67.727272][ T11] ? kthread_blkcg+0xd0/0xd0
[ 67.731882][ T11] ret_from_fork+0x48/0x80
[ 67.736316][ T11] ? kthread_blkcg+0xd0/0xd0
[ 67.740918][ T11] ret_from_fork_asm+0x11/0x20
[ 67.745710][ T11]
[ 67.748786][ T11]
[ 67.751111][ T11] The buggy address belongs to the physical page:
[ 67.757526][ T11] page:ffffea0001d09000 refcount:1 mapcount:1 mapping:0000000000000000 index:0x7fe1173d0 pfn:0x74240
[ 67.768386][ T11] memcg:ffff888016262000
[ 67.772628][ T11] anon flags: 0xfff000000a0028(uptodate|lru|mappedtodisk|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[ 67.783406][ T11] page_type: 0xffffffff()
[ 67.787768][ T11] raw: 00fff000000a0008 ffffea0001d08fc8 ffffea0001d09048 ffff888075b49221
[ 67.796381][ T11] raw: 00000000000001ea 0000000000000000 00000001ffffffff ffff888016262000
[ 67.804979][ T11] page dumped because: kasan: bad access detected
[ 67.811400][ T11] page_owner tracks the page as allocated
[ 67.817123][ T11] page last allocated via order 0, migratetype Movable, gfp_mask 0x100cca(GFP_HIGHUSER_MOVABLE), pid 5060, tgid 5060 (syz-executor235), ts 67792474723, free_ts 67791125399
[ 67.834155][ T11] post_alloc_hook+0x1e6/0x210
[ 67.838941][ T11] get_page_from_freelist+0x33ea/0x3570
[ 67.844526][ T11] __alloc_pages+0x255/0x680
[ 67.849169][ T11] alloc_pages_mpol+0x3de/0x640
[ 67.854042][ T11] shmem_alloc_and_add_folio+0x24f/0xde0
[ 67.859722][ T11] shmem_get_folio_gfp+0x7c3/0x1ee0
[ 67.864952][ T11] shmem_write_begin+0x170/0x4c0
[ 67.869916][ T11] generic_perform_write+0x31b/0x630
[ 67.875238][ T11] shmem_file_write_iter+0xfc/0x120
[ 67.880459][ T11] vfs_write+0x792/0xb20
[ 67.884727][ T11] ksys_write+0x1a0/0x2c0
[ 67.889094][ T11] do_syscall_64+0x45/0x110
[ 67.893619][ T11] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 67.899533][ T11] page last free stack trace:
[ 67.904209][ T11] free_unref_page_prepare+0x931/0xa60
[ 67.909687][ T11] free_unref_page_list+0x5a0/0x840
[ 67.914901][ T11] release_pages+0x2117/0x2400
[ 67.919689][ T11] __folio_batch_release+0x84/0x100
[ 67.924925][ T11] shmem_undo_range+0x6aa/0x19d0
[ 67.929883][ T11] shmem_evict_inode+0x29b/0xa60
[ 67.934843][ T11] evict+0x2a4/0x630
[ 67.938764][ T11] __dentry_kill+0x436/0x660
[ 67.943382][ T11] dentry_kill+0xbb/0x290
[ 67.947748][ T11] dput+0x21e/0x470
[ 67.951573][ T11] __fput+0x60b/0xa10
[ 67.955565][ T11] __x64_sys_close+0x7e/0x100
[ 67.960259][ T11] do_syscall_64+0x45/0x110
executing program
[ 67.964784][ T11] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 67.970697][ T11]
[ 67.973029][ T11] Memory state around the buggy address:
[ 67.978661][ T11] ffff888074240100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 67.986731][ T11] ffff888074240180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 67.994810][ T11] >ffff888074240200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 68.002878][ T11] ^
[ 68.007476][ T11] ffff888074240280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
executing program
[ 68.015550][ T11] ffff888074240300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 68.023624][ T11] ==================================================================
executing program
executing program
[ 68.206732][ T11] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 68.213970][ T11] CPU: 0 PID: 11 Comm: kworker/u4:0 Not tainted 6.7.0-rc1-syzkaller-00019-gc42d9eeef8e5 #0
[ 68.223971][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 68.234041][ T11] Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
[ 68.240840][ T11] Call Trace:
[ 68.244131][ T11]
[ 68.247079][ T11] dump_stack_lvl+0x1e7/0x2d0
[ 68.251798][ T11] ? nf_tcp_handle_invalid+0x650/0x650
[ 68.257286][ T11] ? panic+0x850/0x850
[ 68.261393][ T11] ? vscnprintf+0x5d/0x80
[ 68.265780][ T11] panic+0x349/0x850
[ 68.269711][ T11] ? check_panic_on_warn+0x21/0xa0
[ 68.274872][ T11] ? __memcpy_flushcache+0x2b0/0x2b0
[ 68.280208][ T11] ? _raw_spin_unlock_irqrestore+0x12c/0x140
[ 68.286218][ T11] ? _raw_spin_unlock+0x40/0x40
[ 68.291094][ T11] ? print_report+0x4fb/0x540
[ 68.295796][ T11] check_panic_on_warn+0x82/0xa0
[ 68.300753][ T11] ? ext4_find_extent+0xbc8/0xde0
[ 68.305807][ T11] end_report+0x6e/0x140
[ 68.310073][ T11] kasan_report+0x153/0x170
[ 68.314594][ T11] ? ext4_find_extent+0xbc8/0xde0
[ 68.319644][ T11] ext4_find_extent+0xbc8/0xde0
[ 68.324533][ T11] ext4_ext_map_blocks+0x2cb/0x7150
[ 68.329762][ T11] ? rwsem_down_write_slowpath+0x115e/0x13b0
[ 68.335790][ T11] ? ext4_ext_release+0x10/0x10
[ 68.340677][ T11] ? __down_write_common+0x161/0x200
[ 68.345991][ T11] ? ext4_es_lookup_extent+0x606/0xa40
[ 68.351474][ T11] ext4_map_blocks+0xa2f/0x1cd0
[ 68.356348][ T11] ? __lock_acquire+0x1345/0x1fd0
[ 68.361398][ T11] ? ext4_issue_zeroout+0x260/0x260
[ 68.366626][ T11] ? ext4_journal_check_start+0x175/0x250
[ 68.372389][ T11] ? __ext4_journal_start_sb+0x26b/0x5b0
[ 68.378045][ T11] ext4_convert_unwritten_extents+0x2f3/0x6c0
[ 68.384135][ T11] ? trace_ext4_fallocate_exit+0x210/0x210
[ 68.389953][ T11] ? _raw_spin_unlock_irqrestore+0x8f/0x140
[ 68.395868][ T11] ? lockdep_hardirqs_on+0x98/0x140
[ 68.401082][ T11] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 68.406998][ T11] ? _raw_spin_unlock+0x40/0x40
[ 68.411878][ T11] ext4_convert_unwritten_io_end_vec+0x101/0x170
[ 68.418225][ T11] ext4_end_io_rsv_work+0x36c/0x6f0
[ 68.423445][ T11] ? print_irqtrace_events+0x220/0x220
[ 68.428920][ T11] ? ext4_last_io_end_vec+0x70/0x70
[ 68.434155][ T11] ? process_scheduled_works+0x825/0x1420
[ 68.439903][ T11] process_scheduled_works+0x90f/0x1420
[ 68.445501][ T11] ? assign_work+0x3d0/0x3d0
[ 68.450125][ T11] ? assign_work+0x364/0x3d0
executing program
[ 68.454740][ T11] worker_thread+0xa5f/0x1000
[ 68.459469][ T11] kthread+0x2d3/0x370
[ 68.463550][ T11] ? pr_cont_work+0x5e0/0x5e0
[ 68.468245][ T11] ? kthread_blkcg+0xd0/0xd0
[ 68.472861][ T11] ret_from_fork+0x48/0x80
[ 68.477295][ T11] ? kthread_blkcg+0xd0/0xd0
[ 68.481915][ T11] ret_from_fork_asm+0x11/0x20
[ 68.486710][ T11]
[ 68.489821][ T11] Kernel Offset: disabled
[ 68.494137][ T11] Rebooting in 86400 seconds..