Warning: Permanently added '10.128.0.208' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [ 40.132966][ T3557] loop0: detected capacity change from 0 to 16
[ 40.145275][ T3557] erofs: (device loop0): mounted with root inode @ nid 36.
[ 40.156699][ T47] ==================================================================
[ 40.164791][ T47] BUG: KASAN: vmalloc-out-of-bounds in LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.173937][ T47] Read of size 2 at addr ffffc90000adf000 by task kworker/u5:0/47
[ 40.181727][ T47]
[ 40.184134][ T47] CPU: 1 PID: 47 Comm: kworker/u5:0 Not tainted 5.17.0-syzkaller-13993-g88e6c0207623 #0
[ 40.193826][ T47] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 40.203882][ T47] Workqueue: erofs_unzipd z_erofs_decompressqueue_work
[ 40.210731][ T47] Call Trace:
[ 40.213991][ T47]
[ 40.216900][ T47] dump_stack_lvl+0xcd/0x134
[ 40.221484][ T47] print_address_description.constprop.0.cold+0xf/0x495
[ 40.228422][ T47] ? LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.234567][ T47] kasan_report.cold+0xf4/0x1c6
[ 40.239413][ T47] ? LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.245562][ T47] LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.251535][ T47] z_erofs_lz4_decompress+0xda6/0x14a0
[ 40.256994][ T47] ? z_erofs_fixup_insize+0xb0/0xb0
[ 40.262189][ T47] z_erofs_decompress_pcluster.isra.0+0x1eac/0x3160
[ 40.268780][ T47] ? z_erofs_pcluster_readmore+0xa30/0xa30
[ 40.274586][ T47] ? ret_from_fork+0x1f/0x30
[ 40.279169][ T47] ? kernel_text_address+0xd/0x80
[ 40.284182][ T47] ? create_prof_cpu_mask+0x20/0x20
[ 40.289370][ T47] ? arch_stack_walk+0x7d/0xe0
[ 40.294126][ T47] ? ret_from_fork+0x1f/0x30
[ 40.298705][ T47] ? stack_trace_save+0x8c/0xc0
[ 40.303546][ T47] ? filter_irq_stacks+0x90/0x90
[ 40.308477][ T47] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 40.314708][ T47] ? _find_first_zero_bit+0x94/0xb0
[ 40.319894][ T47] ? add_lock_to_list.constprop.0+0x185/0x370
[ 40.326128][ T47] ? lockdep_unlock+0x11b/0x290
[ 40.331140][ T47] ? __lock_acquire+0x2589/0x56c0
[ 40.336423][ T47] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 40.342398][ T47] ? lock_downgrade+0x6e0/0x6e0
[ 40.348381][ T47] z_erofs_decompressqueue_work+0xe1/0x170
[ 40.354181][ T47] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 40.360323][ T47] ? z_erofs_decompress_pcluster.isra.0+0x3160/0x3160
[ 40.367077][ T47] process_one_work+0x996/0x1610
[ 40.372005][ T47] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 40.377451][ T47] ? try_to_del_timer_sync+0xbf/0x110
[ 40.382899][ T47] worker_thread+0x665/0x1080
[ 40.387574][ T47] ? process_one_work+0x1610/0x1610
[ 40.392758][ T47] kthread+0x2e9/0x3a0
[ 40.396813][ T47] ? kthread_complete_and_exit+0x40/0x40
[ 40.402524][ T47] ret_from_fork+0x1f/0x30
[ 40.406934][ T47]
[ 40.409933][ T47]
[ 40.412243][ T47] The buggy address belongs to the virtual mapping at
[ 40.412243][ T47] [ffffc90000ade000, ffffc90000ae0000) created by:
[ 40.412243][ T47] erofs_pcpubuf_growsize+0x2d5/0x590
[ 40.430634][ T47]
[ 40.433039][ T47] ------------[ cut here ]------------
[ 40.438472][ T47] kernel BUG at mm/vmalloc.c:660!
[ 40.443656][ T47] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 40.449880][ T47] CPU: 1 PID: 47 Comm: kworker/u5:0 Not tainted 5.17.0-syzkaller-13993-g88e6c0207623 #0
[ 40.459584][ T47] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 40.469741][ T47] Workqueue: erofs_unzipd z_erofs_decompressqueue_work
[ 40.476586][ T47] RIP: 0010:vmalloc_to_page+0x46e/0x4f0
[ 40.482125][ T47] Code: c1 ff 4d 31 fc 4d 21 f4 49 c1 ec 0c 4c 01 e3 49 bc 00 00 00 00 00 ea ff ff 48 c1 e3 06 49 01 dc e9 35 ff ff ff e8 92 75 c1 ff <0f> 0b e8 8b 75 c1 ff 0f 0b 45 31 e4 e9 1f ff ff ff e8 7c 75 c1 ff
[ 40.501734][ T47] RSP: 0018:ffffc90000b87518 EFLAGS: 00010093
[ 40.507807][ T47] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 40.515761][ T47] RDX: ffff888016aed700 RSI: ffffffff81b7278e RDI: 0000000000000003
[ 40.523724][ T47] RBP: ffffffff8ba8e000 R08: 00001ffffffffffe R09: 0000000000000000
[ 40.531683][ T47] R10: ffffffff81b723a6 R11: 0000000000000000 R12: 0000370000000000
[ 40.539640][ T47] R13: 0000000000000000 R14: ffff888016aed700 R15: 0000000000000282
[ 40.547594][ T47] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[ 40.556511][ T47] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.563081][ T47] CR2: 000055b8c13ad008 CR3: 0000000023ff0000 CR4: 0000000000350ee0
[ 40.571038][ T47] Call Trace:
[ 40.574301][ T47]
[ 40.577216][ T47] print_address_description.constprop.0.cold+0x2fc/0x495
[ 40.584324][ T47] ? LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.590585][ T47] kasan_report.cold+0xf4/0x1c6
[ 40.595429][ T47] ? LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.601573][ T47] LZ4_decompress_safe_partial+0x102a/0x11a0
[ 40.607568][ T47] z_erofs_lz4_decompress+0xda6/0x14a0
[ 40.613055][ T47] ? z_erofs_fixup_insize+0xb0/0xb0
[ 40.618265][ T47] z_erofs_decompress_pcluster.isra.0+0x1eac/0x3160
[ 40.624856][ T47] ? z_erofs_pcluster_readmore+0xa30/0xa30
[ 40.630654][ T47] ? ret_from_fork+0x1f/0x30
[ 40.635236][ T47] ? kernel_text_address+0xd/0x80
[ 40.640270][ T47] ? create_prof_cpu_mask+0x20/0x20
[ 40.645457][ T47] ? arch_stack_walk+0x7d/0xe0
[ 40.650210][ T47] ? ret_from_fork+0x1f/0x30
[ 40.654790][ T47] ? stack_trace_save+0x8c/0xc0
[ 40.659630][ T47] ? filter_irq_stacks+0x90/0x90
[ 40.664561][ T47] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 40.670796][ T47] ? _find_first_zero_bit+0x94/0xb0
[ 40.676078][ T47] ? add_lock_to_list.constprop.0+0x185/0x370
[ 40.682156][ T47] ? lockdep_unlock+0x11b/0x290
[ 40.686990][ T47] ? __lock_acquire+0x2589/0x56c0
[ 40.692004][ T47] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 40.697975][ T47] ? lock_downgrade+0x6e0/0x6e0
[ 40.702821][ T47] z_erofs_decompressqueue_work+0xe1/0x170
[ 40.708621][ T47] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 40.714691][ T47] ? z_erofs_decompress_pcluster.isra.0+0x3160/0x3160
[ 40.721448][ T47] process_one_work+0x996/0x1610
[ 40.726373][ T47] ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 40.731728][ T47] ? try_to_del_timer_sync+0xbf/0x110
[ 40.737107][ T47] worker_thread+0x665/0x1080
[ 40.742209][ T47] ? process_one_work+0x1610/0x1610
[ 40.747570][ T47] kthread+0x2e9/0x3a0
[ 40.751652][ T47] ? kthread_complete_and_exit+0x40/0x40
[ 40.757364][ T47] ret_from_fork+0x1f/0x30
[ 40.761773][ T47]
[ 40.764774][ T47] Modules linked in:
[ 40.768656][ T47] ---[ end trace 0000000000000000 ]---
[ 40.774089][ T47] RIP: 0010:vmalloc_to_page+0x46e/0x4f0
[ 40.779631][ T47] Code: c1 ff 4d 31 fc 4d 21 f4 49 c1 ec 0c 4c 01 e3 49 bc 00 00 00 00 00 ea ff ff 48 c1 e3 06 49 01 dc e9 35 ff ff ff e8 92 75 c1 ff <0f> 0b e8 8b 75 c1 ff 0f 0b 45 31 e4 e9 1f ff ff ff e8 7c 75 c1 ff
[ 40.799506][ T47] RSP: 0018:ffffc90000b87518 EFLAGS: 00010093
[ 40.805560][ T47] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 40.813514][ T47] RDX: ffff888016aed700 RSI: ffffffff81b7278e RDI: 0000000000000003
[ 40.821469][ T47] RBP: ffffffff8ba8e000 R08: 00001ffffffffffe R09: 0000000000000000
[ 40.829683][ T47] R10: ffffffff81b723a6 R11: 0000000000000000 R12: 0000370000000000
[ 40.837638][ T47] R13: 0000000000000000 R14: ffff888016aed700 R15: 0000000000000282
[ 40.845698][ T47] FS: 0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
[ 40.854615][ T47] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.861187][ T47] CR2: 000055b8c13ad008 CR3: 0000000023ff0000 CR4: 0000000000350ee0
[ 40.869147][ T47] Kernel panic - not syncing: Fatal exception
[ 40.875854][ T47] Kernel Offset: disabled
[ 40.880159][ T47] Rebooting in 86400 seconds..