Warning: Permanently added '10.128.1.156' (ED25519) to the list of known hosts.
executing program
[   59.564906][ T4165] loop0: detected capacity change from 0 to 512
[   59.677586][ T4165] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz-executor317: inode #1: comm syz-executor317: iget: illegal inode #
[   59.693617][ T4165] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor317: error while reading EA inode 1 err=-117
[   59.708065][ T4165] EXT4-fs (loop0): 1 orphan inode deleted
[   59.713803][ T4165] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   59.732688][ T4165] ==================================================================
[   59.740952][ T4165] BUG: KASAN: use-after-free in ext4_insert_dentry+0x366/0x6c0
[   59.748633][ T4165] Write of size 250 at addr ffff88800f458f18 by task syz-executor317/4165
[   59.757130][ T4165] 
[   59.759457][ T4165] CPU: 0 PID: 4165 Comm: syz-executor317 Not tainted 5.15.173-syzkaller #0
[   59.768030][ T4165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.778079][ T4165] Call Trace:
[   59.781353][ T4165]  <TASK>
[   59.784273][ T4165]  dump_stack_lvl+0x1e3/0x2d0
[   59.788956][ T4165]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   59.794584][ T4165]  ? _printk+0xd1/0x120
[   59.798743][ T4165]  ? __wake_up_klogd+0xcc/0x100
[   59.803588][ T4165]  ? panic+0x860/0x860
[   59.807647][ T4165]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   59.813109][ T4165]  print_address_description+0x63/0x3b0
[   59.818659][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   59.823861][ T4165]  kasan_report+0x16b/0x1c0
[   59.828365][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   59.833573][ T4165]  kasan_check_range+0x27e/0x290
[   59.838516][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   59.843714][ T4165]  memcpy+0x3c/0x60
[   59.847520][ T4165]  ext4_insert_dentry+0x366/0x6c0
[   59.852548][ T4165]  add_dirent_to_buf+0x384/0x7d0
[   59.857491][ T4165]  ? ext4_dx_add_entry+0x1620/0x1620
[   59.862781][ T4165]  ? __ext4_handle_dirty_metadata+0x2ef/0x800
[   59.868853][ T4165]  make_indexed_dir+0xf34/0x15a0
[   59.873803][ T4165]  ? add_dirent_to_buf+0x7d0/0x7d0
[   59.878907][ T4165]  ? add_dirent_to_buf+0x54e/0x7d0
[   59.884044][ T4165]  ? ext4_dx_add_entry+0x1620/0x1620
[   59.889414][ T4165]  ? __ext4_read_dirblock+0x522/0x890
[   59.894788][ T4165]  ext4_add_entry+0xde2/0x12b0
[   59.899595][ T4165]  ? ext4_inc_count+0x190/0x190
[   59.904442][ T4165]  ? ext4_init_new_dir+0x7c8/0xa20
[   59.909553][ T4165]  ? ext4_init_dot_dotdot+0x4e0/0x4e0
[   59.914926][ T4165]  ext4_mkdir+0x54f/0xce0
[   59.919253][ T4165]  ? ext4_symlink+0xed0/0xed0
[   59.923922][ T4165]  ? inode_permission+0xf7/0x450
[   59.928853][ T4165]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   59.933876][ T4165]  ? security_inode_mkdir+0xb4/0x100
[   59.939157][ T4165]  vfs_mkdir+0x3b6/0x590
[   59.943405][ T4165]  do_mkdirat+0x260/0x520
[   59.947745][ T4165]  ? vfs_mkdir+0x590/0x590
[   59.952151][ T4165]  ? getname_flags+0x1ec/0x4e0
[   59.956910][ T4165]  __x64_sys_mkdirat+0x85/0x90
[   59.961663][ T4165]  do_syscall_64+0x3b/0xb0
[   59.966067][ T4165]  ? clear_bhb_loop+0x15/0x70
[   59.970765][ T4165]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   59.976654][ T4165] RIP: 0033:0x7fd4a09aa4c9
[   59.981069][ T4165] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   60.000666][ T4165] RSP: 002b:00007ffe9a8a0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   60.009159][ T4165] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd4a09aa4c9
[   60.017123][ T4165] RDX: 5be60480b9579340 RSI: 0000000020000940 RDI: 00000000ffffff9c
[   60.025086][ T4165] RBP: 00007fd4a09f5187 R08: 0000000000000000 R09: 0000000000000000
[   60.033134][ T4165] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd4a09f510c
[   60.041115][ T4165] R13: 00007ffe9a8a0f70 R14: 00007fd4a09fafdc R15: 00007fd4a09f504b
[   60.049093][ T4165]  </TASK>
[   60.052098][ T4165] 
[   60.054409][ T4165] The buggy address belongs to the page:
[   60.060027][ T4165] page:ffffea00003d1600 refcount:3 mapcount:0 mapping:ffff88801dbb5af0 index:0x3f pfn:0xf458
[   60.070166][ T4165] memcg:ffff888018154000
[   60.074399][ T4165] aops:def_blk_aops ino:700000
[   60.079173][ T4165] flags: 0xfff0000000202a(referenced|dirty|active|private|node=0|zone=1|lastcpupid=0x7ff)
[   60.089273][ T4165] raw: 00fff0000000202a 0000000000000000 dead000000000122 ffff88801dbb5af0
[   60.097857][ T4165] raw: 000000000000003f ffff888073c40658 00000003ffffffff ffff888018154000
[   60.106424][ T4165] page dumped because: kasan: bad access detected
[   60.112825][ T4165] page_owner tracks the page as allocated
[   60.118525][ T4165] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 4165, ts 59732229357, free_ts 53951548932
[   60.135622][ T4165]  get_page_from_freelist+0x3b78/0x3d40
[   60.141173][ T4165]  __alloc_pages+0x272/0x700
[   60.145779][ T4165]  __page_cache_alloc+0xd4/0x4a0
[   60.150737][ T4165]  pagecache_get_page+0xa91/0x1010
[   60.155855][ T4165]  __getblk_gfp+0x22a/0xaf0
[   60.160599][ T4165]  ext4_getblk+0x259/0x710
[   60.165187][ T4165]  ext4_bread+0x2a/0x170
[   60.169440][ T4165]  ext4_append+0x31f/0x5c0
[   60.173860][ T4165]  make_indexed_dir+0x515/0x15a0
[   60.178791][ T4165]  ext4_add_entry+0xde2/0x12b0
[   60.183550][ T4165]  ext4_mkdir+0x54f/0xce0
[   60.187892][ T4165]  vfs_mkdir+0x3b6/0x590
[   60.192127][ T4165]  do_mkdirat+0x260/0x520
[   60.196443][ T4165]  __x64_sys_mkdirat+0x85/0x90
[   60.201208][ T4165]  do_syscall_64+0x3b/0xb0
[   60.205637][ T4165]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   60.211539][ T4165] page last free stack trace:
[   60.216202][ T4165]  free_unref_page_prepare+0xc34/0xcf0
[   60.221664][ T4165]  free_unref_page_list+0x1f7/0x8e0
[   60.226862][ T4165]  release_pages+0x1bb9/0x1f40
[   60.231655][ T4165]  tlb_finish_mmu+0x177/0x320
[   60.236330][ T4165]  unmap_region+0x304/0x350
[   60.240827][ T4165]  __do_munmap+0x12db/0x1740
[   60.245409][ T4165]  __vm_munmap+0x134/0x230
[   60.249814][ T4165]  __x64_sys_munmap+0x67/0x70
[   60.254596][ T4165]  do_syscall_64+0x3b/0xb0
[   60.259054][ T4165]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   60.265075][ T4165] 
[   60.267398][ T4165] Memory state around the buggy address:
[   60.273032][ T4165]  ffff88800f458f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.281090][ T4165]  ffff88800f458f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   60.289143][ T4165] >ffff88800f459000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.297188][ T4165]                    ^
[   60.301248][ T4165]  ffff88800f459080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.309321][ T4165]  ffff88800f459100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.317368][ T4165] ==================================================================
[   60.325422][ T4165] Disabling lock debugging due to kernel taint
[   60.335703][ T4165] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   60.342918][ T4165] CPU: 1 PID: 4165 Comm: syz-executor317 Tainted: G    B             5.15.173-syzkaller #0
[   60.352882][ T4165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   60.362926][ T4165] Call Trace:
[   60.366214][ T4165]  <TASK>
[   60.369132][ T4165]  dump_stack_lvl+0x1e3/0x2d0
[   60.373806][ T4165]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[   60.379429][ T4165]  ? panic+0x860/0x860
[   60.383489][ T4165]  ? preempt_schedule_common+0xa6/0xd0
[   60.388950][ T4165]  ? preempt_schedule+0xd9/0xe0
[   60.394063][ T4165]  panic+0x318/0x860
[   60.397964][ T4165]  ? check_panic_on_warn+0x1d/0xa0
[   60.403077][ T4165]  ? fb_is_primary_device+0xd0/0xd0
[   60.408284][ T4165]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   60.414277][ T4165]  ? _raw_spin_unlock+0x40/0x40
[   60.419117][ T4165]  ? print_memory_metadata+0xe2/0x140
[   60.424496][ T4165]  check_panic_on_warn+0x7e/0xa0
[   60.429455][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   60.434778][ T4165]  end_report+0x6d/0xf0
[   60.438941][ T4165]  kasan_report+0x18e/0x1c0
[   60.443445][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   60.448663][ T4165]  kasan_check_range+0x27e/0x290
[   60.453595][ T4165]  ? ext4_insert_dentry+0x366/0x6c0
[   60.459052][ T4165]  memcpy+0x3c/0x60
[   60.462856][ T4165]  ext4_insert_dentry+0x366/0x6c0
[   60.467886][ T4165]  add_dirent_to_buf+0x384/0x7d0
[   60.472849][ T4165]  ? ext4_dx_add_entry+0x1620/0x1620
[   60.478126][ T4165]  ? __ext4_handle_dirty_metadata+0x2ef/0x800
[   60.484192][ T4165]  make_indexed_dir+0xf34/0x15a0
[   60.489127][ T4165]  ? add_dirent_to_buf+0x7d0/0x7d0
[   60.494227][ T4165]  ? add_dirent_to_buf+0x54e/0x7d0
[   60.499331][ T4165]  ? ext4_dx_add_entry+0x1620/0x1620
[   60.504605][ T4165]  ? __ext4_read_dirblock+0x522/0x890
[   60.509983][ T4165]  ext4_add_entry+0xde2/0x12b0
[   60.514741][ T4165]  ? ext4_inc_count+0x190/0x190
[   60.519677][ T4165]  ? ext4_init_new_dir+0x7c8/0xa20
[   60.524788][ T4165]  ? ext4_init_dot_dotdot+0x4e0/0x4e0
[   60.530150][ T4165]  ext4_mkdir+0x54f/0xce0
[   60.534473][ T4165]  ? ext4_symlink+0xed0/0xed0
[   60.539146][ T4165]  ? inode_permission+0xf7/0x450
[   60.544074][ T4165]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   60.549086][ T4165]  ? security_inode_mkdir+0xb4/0x100
[   60.554361][ T4165]  vfs_mkdir+0x3b6/0x590
[   60.558592][ T4165]  do_mkdirat+0x260/0x520
[   60.562908][ T4165]  ? vfs_mkdir+0x590/0x590
[   60.567316][ T4165]  ? getname_flags+0x1ec/0x4e0
[   60.572073][ T4165]  __x64_sys_mkdirat+0x85/0x90
[   60.576829][ T4165]  do_syscall_64+0x3b/0xb0
[   60.581235][ T4165]  ? clear_bhb_loop+0x15/0x70
[   60.585903][ T4165]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   60.591787][ T4165] RIP: 0033:0x7fd4a09aa4c9
[   60.596192][ T4165] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 01 1a 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   60.615785][ T4165] RSP: 002b:00007ffe9a8a0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   60.624187][ T4165] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd4a09aa4c9
[   60.632159][ T4165] RDX: 5be60480b9579340 RSI: 0000000020000940 RDI: 00000000ffffff9c
[   60.640123][ T4165] RBP: 00007fd4a09f5187 R08: 0000000000000000 R09: 0000000000000000
[   60.648084][ T4165] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd4a09f510c
[   60.656041][ T4165] R13: 00007ffe9a8a0f70 R14: 00007fd4a09fafdc R15: 00007fd4a09f504b
[   60.664007][ T4165]  </TASK>
[   60.667320][ T4165] Kernel Offset: disabled
[   60.671650][ T4165] Rebooting in 86400 seconds..