program:
syz_mount_image$ocfs2(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000140)={[{@acl}, {@heartbeat_none}, {@err_ro}, {@coherency_full}, {@coherency_full}, {@localflocks}, {@intr}, {@noacl}]}, 0x1, 0x4435, &(0x7f0000001040)="$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")
syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_WRITE_SSP_MODE={{0x4}}}}, 0x7)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, 0x4a)
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
[ 86.609131][ T10] cfg80211: failed to load regulatory.db
[ 86.759650][ T4665] Bluetooth: hci0: command tx timeout
[ 86.780878][ T5327] loop0: detected capacity change from 0 to 32768
[ 86.789455][ T5327] =======================================================
[ 86.789455][ T5327] WARNING: The mand mount option has been deprecated and
[ 86.789455][ T5327] and is ignored by this kernel. Remove the mand
[ 86.789455][ T5327] option from the mount to silence this warning.
[ 86.789455][ T5327] =======================================================
[ 86.857681][ T5327] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 86.883219][ T5327] ==================================================================
[ 86.886703][ T5327] BUG: KASAN: slab-out-of-bounds in ocfs2_claim_suballoc_bits+0x877/0x2450
[ 86.890576][ T5327] Read of size 4 at addr ffff88804301a0b0 by task syz.0.0/5327
[ 86.893887][ T5327]
[ 86.894986][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 86.895000][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.895007][ T5327] Call Trace:
[ 86.895015][ T5327]
[ 86.895021][ T5327] dump_stack_lvl+0x189/0x250
[ 86.895040][ T5327] ? __kasan_check_byte+0x12/0x40
[ 86.895057][ T5327] ? __pfx_dump_stack_lvl+0x10/0x10
[ 86.895071][ T5327] ? lock_release+0x4b/0x3e0
[ 86.895082][ T5327] ? __virt_addr_valid+0x4a5/0x5c0
[ 86.895097][ T5327] print_report+0xca/0x240
[ 86.895109][ T5327] ? ocfs2_claim_suballoc_bits+0x877/0x2450
[ 86.895120][ T5327] kasan_report+0x118/0x150
[ 86.895135][ T5327] ? ocfs2_claim_suballoc_bits+0x877/0x2450
[ 86.895148][ T5327] ocfs2_claim_suballoc_bits+0x877/0x2450
[ 86.895163][ T5327] ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[ 86.895173][ T5327] ? __pfx_start_this_handle+0x10/0x10
[ 86.895194][ T5327] __ocfs2_claim_clusters+0x303/0x8f0
[ 86.895205][ T5327] ? trace_jbd2_handle_start+0x8a/0x220
[ 86.895221][ T5327] ? __pfx___ocfs2_claim_clusters+0x10/0x10
[ 86.895232][ T5327] ? ocfs2_start_trans+0x495/0x6d0
[ 86.895244][ T5327] ? __pfx_ocfs2_start_trans+0x10/0x10
[ 86.895257][ T5327] ocfs2_reserve_suballoc_bits+0xf1e/0x4640
[ 86.895276][ T5327] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 86.895336][ T5327] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 86.895351][ T5327] ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[ 86.895368][ T5327] ? stack_depot_save_flags+0x41b/0x860
[ 86.895382][ T5327] ? kasan_save_track+0x4f/0x80
[ 86.895394][ T5327] ? kasan_save_track+0x3e/0x80
[ 86.895404][ T5327] ? __kasan_kmalloc+0x93/0xb0
[ 86.895416][ T5327] ? __kmalloc_cache_noprof+0x3d5/0x6f0
[ 86.895428][ T5327] ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[ 86.895442][ T5327] ? ocfs2_extend_dir+0xc76/0x4870
[ 86.895452][ T5327] ? ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[ 86.895463][ T5327] ? ocfs2_mknod+0x819/0x2050
[ 86.895477][ T5327] ? ocfs2_create+0x1a5/0x440
[ 86.895490][ T5327] ? vfs_create+0x24e/0x400
[ 86.895499][ T5327] ? do_mknodat+0x3c6/0x4d0
[ 86.895507][ T5327] ? __x64_sys_mknod+0x8c/0xa0
[ 86.895516][ T5327] ? do_syscall_64+0xfa/0xfa0
[ 86.895529][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.895552][ T5327] ? __kasan_kmalloc+0x93/0xb0
[ 86.895565][ T5327] ? __kmalloc_cache_noprof+0x3d5/0x6f0
[ 86.895580][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 86.895591][ T5327] ocfs2_reserve_new_metadata_blocks+0x403/0x940
[ 86.895602][ T5327] ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[ 86.895612][ T5327] ? down_write+0x162/0x1f0
[ 86.895618][ T5327] ? __pfx_down_write+0x10/0x10
[ 86.895624][ T5327] ocfs2_extend_dir+0xc76/0x4870
[ 86.895636][ T5327] ? __pfx_ocfs2_extend_dir+0x10/0x10
[ 86.895646][ T5327] ? __pfx_ocfs2_journal_access_di+0x10/0x10
[ 86.895654][ T5327] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 86.895662][ T5327] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.895671][ T5327] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 86.895678][ T5327] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 86.895686][ T5327] ? __lock_acquire+0xab9/0xd20
[ 86.895696][ T5327] ? rcu_is_watching+0x15/0xb0
[ 86.895703][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 86.895715][ T5327] ? ocfs2_dx_dir_name_hash+0x229/0xaf0
[ 86.895725][ T5327] ? __asan_memcpy+0x40/0x70
[ 86.895736][ T5327] ? ocfs2_dx_dir_name_hash+0x9ba/0xaf0
[ 86.895749][ T5327] ? __pfx_ocfs2_dx_dir_name_hash+0x10/0x10
[ 86.895762][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 86.895778][ T5327] ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[ 86.895797][ T5327] ? rcu_is_watching+0x15/0xb0
[ 86.895808][ T5327] ? __pfx_ocfs2_prepare_dir_for_insert+0x10/0x10
[ 86.895815][ T5327] ? ocfs2_search_dirblock+0x381/0x850
[ 86.895824][ T5327] ? __pfx_ocfs2_search_dirblock+0x10/0x10
[ 86.895832][ T5327] ? rcu_is_watching+0x15/0xb0
[ 86.895842][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 86.895854][ T5327] ? __brelse+0x59/0xa0
[ 86.895863][ T5327] ? ocfs2_find_entry+0xddb/0x2000
[ 86.895872][ T5327] ? __lock_acquire+0xab9/0xd20
[ 86.895884][ T5327] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 86.895895][ T5327] ? __pfx_ocfs2_read_blocks+0x10/0x10
[ 86.895906][ T5327] ? __lock_acquire+0xab9/0xd20
[ 86.895918][ T5327] ? ocfs2_read_inode_block+0x11d/0x190
[ 86.895927][ T5327] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 86.895937][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 86.895952][ T5327] ? ocfs2_inode_lock_full_nested+0xabe/0x1b40
[ 86.895975][ T5327] ? unwind_next_frame+0xa5/0x2390
[ 86.895988][ T5327] ? __kasan_check_byte+0x12/0x40
[ 86.896002][ T5327] ? is_bpf_text_address+0x26/0x2b0
[ 86.896013][ T5327] ? __kasan_check_byte+0x12/0x40
[ 86.896025][ T5327] ? __pfx_ocfs2_inode_lock_full_nested+0x10/0x10
[ 86.896040][ T5327] ? rcu_is_watching+0x15/0xb0
[ 86.896051][ T5327] ? lock_release+0x4b/0x3e0
[ 86.896062][ T5327] ? ocfs2_check_dir_for_entry+0x239/0x3f0
[ 86.896076][ T5327] ? __pfx_ocfs2_check_dir_for_entry+0x10/0x10
[ 86.896089][ T5327] ocfs2_mknod+0x819/0x2050
[ 86.896106][ T5327] ? __pfx_ocfs2_mknod+0x10/0x10
[ 86.896121][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 86.896135][ T5327] ? ocfs2_inode_lock_full_nested+0xabe/0x1b40
[ 86.896155][ T5327] ? __lock_acquire+0xab9/0xd20
[ 86.896167][ T5327] ? __lock_acquire+0xab9/0xd20
[ 86.896174][ T5327] ? do_raw_spin_lock+0x121/0x290
[ 86.896183][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 86.896192][ T5327] ? put_pid+0xe9/0x130
[ 86.896200][ T5327] ocfs2_create+0x1a5/0x440
[ 86.896209][ T5327] ? __pfx_from_kgid+0x10/0x10
[ 86.896215][ T5327] ? apparmor_path_mknod+0x1b1/0x230
[ 86.896224][ T5327] ? __pfx_ocfs2_create+0x10/0x10
[ 86.896232][ T5327] ? HAS_UNMAPPED_ID+0x11a/0x180
[ 86.896242][ T5327] ? inode_permission+0x149/0x470
[ 86.896250][ T5327] ? __pfx_ocfs2_permission+0x10/0x10
[ 86.896258][ T5327] ? bpf_lsm_inode_create+0x9/0x20
[ 86.896267][ T5327] vfs_create+0x24e/0x400
[ 86.896276][ T5327] do_mknodat+0x3c6/0x4d0
[ 86.896283][ T5327] ? __pfx_do_mknodat+0x10/0x10
[ 86.896290][ T5327] ? getname_flags+0x1e5/0x540
[ 86.896302][ T5327] __x64_sys_mknod+0x8c/0xa0
[ 86.896312][ T5327] do_syscall_64+0xfa/0xfa0
[ 86.896326][ T5327] ? lockdep_hardirqs_on+0x9c/0x150
[ 86.896340][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.896349][ T5327] ? clear_bhb_loop+0x60/0xb0
[ 86.896361][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.896371][ T5327] RIP: 0033:0x7f542db8f6c9
[ 86.896383][ T5327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 86.896392][ T5327] RSP: 002b:00007f542ea10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[ 86.896405][ T5327] RAX: ffffffffffffffda RBX: 00007f542dde5fa0 RCX: 00007f542db8f6c9
[ 86.896413][ T5327] RDX: 0000000000000701 RSI: 0000000000000000 RDI: 0000200000000000
[ 86.896421][ T5327] RBP: 00007f542dc11f91 R08: 0000000000000000 R09: 0000000000000000
[ 86.896428][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.896435][ T5327] R13: 00007f542dde6038 R14: 00007f542dde5fa0 R15: 00007ffeff33fc08
[ 86.896447][ T5327]
[ 86.896451][ T5327]
[ 87.189452][ T5327] Allocated by task 5302:
[ 87.191308][ T5327] kasan_save_track+0x3e/0x80
[ 87.193272][ T5327] __kasan_slab_alloc+0x6c/0x80
[ 87.195499][ T5327] kmem_cache_alloc_noprof+0x367/0x6e0
[ 87.198221][ T5327] __kernfs_new_node+0xd7/0x7e0
[ 87.200712][ T5327] kernfs_new_node+0x102/0x210
[ 87.202769][ T5327] __kernfs_create_file+0x4b/0x2e0
[ 87.204969][ T5327] sysfs_add_file_mode_ns+0x238/0x300
[ 87.207308][ T5327] internal_create_group+0x66d/0x1110
[ 87.209613][ T5327] sysfs_create_groups+0x59/0x120
[ 87.211938][ T5327] netdev_queue_update_kobjects+0x2a6/0x6c0
[ 87.214583][ T5327] netdev_register_kobject+0x258/0x310
[ 87.216863][ T5327] register_netdevice+0x126c/0x1ae0
[ 87.218962][ T5327] ip6gre_newlink_common+0x3dd/0x590
[ 87.221291][ T5327] ip6gre_newlink+0x228/0x360
[ 87.223165][ T5327] rtnl_newlink_create+0x310/0xb00
[ 87.225321][ T5327] rtnl_newlink+0x16e4/0x1c80
[ 87.227299][ T5327] rtnetlink_rcv_msg+0x7cf/0xb70
[ 87.229378][ T5327] netlink_rcv_skb+0x208/0x470
[ 87.231709][ T5327] netlink_unicast+0x82f/0x9e0
[ 87.234229][ T5327] netlink_sendmsg+0x805/0xb30
[ 87.236757][ T5327] __sock_sendmsg+0x21c/0x270
[ 87.238867][ T5327] __sys_sendto+0x3bd/0x520
[ 87.240830][ T5327] __x64_sys_sendto+0xde/0x100
[ 87.242931][ T5327] do_syscall_64+0xfa/0xfa0
[ 87.244904][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.247484][ T5327]
[ 87.248532][ T5327] The buggy address belongs to the object at ffff88804301a000
[ 87.248532][ T5327] which belongs to the cache kernfs_node_cache of size 176
[ 87.254430][ T5327] The buggy address is located 0 bytes to the right of
[ 87.254430][ T5327] allocated 176-byte region [ffff88804301a000, ffff88804301a0b0)
[ 87.260297][ T5327]
[ 87.261362][ T5327] The buggy address belongs to the physical page:
[ 87.263950][ T5327] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4301a
[ 87.267233][ T5327] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 87.269980][ T5327] page_type: f5(slab)
[ 87.271603][ T5327] raw: 04fff00000000000 ffff88803040bdc0 dead000000000122 0000000000000000
[ 87.274998][ T5327] raw: 0000000000000000 0000000000110011 00000000f5000000 0000000000000000
[ 87.278586][ T5327] page dumped because: kasan: bad access detected
[ 87.281367][ T5327] page_owner tracks the page as allocated
[ 87.283831][ T5327] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5302, tgid 5302 (syz-executor), ts 82776628482, free_ts 82650122852
[ 87.292296][ T5327] post_alloc_hook+0x240/0x2a0
[ 87.293998][ T5327] get_page_from_freelist+0x2365/0x2440
[ 87.296337][ T5327] __alloc_frozen_pages_noprof+0x181/0x370
[ 87.298854][ T5327] alloc_pages_mpol+0x232/0x4a0
[ 87.300963][ T5327] allocate_slab+0x96/0x350
[ 87.302960][ T5327] ___slab_alloc+0xf56/0x1990
[ 87.304961][ T5327] __slab_alloc+0x65/0x100
[ 87.306958][ T5327] kmem_cache_alloc_noprof+0x3f9/0x6e0
[ 87.309323][ T5327] __kernfs_new_node+0xd7/0x7e0
[ 87.311458][ T5327] kernfs_new_node+0x102/0x210
[ 87.313509][ T5327] __kernfs_create_file+0x4b/0x2e0
[ 87.315790][ T5327] sysfs_add_file_mode_ns+0x238/0x300
[ 87.318157][ T5327] internal_create_group+0x66d/0x1110
[ 87.320512][ T5327] sysfs_create_groups+0x59/0x120
[ 87.322320][ T5327] netdev_queue_update_kobjects+0x2a6/0x6c0
[ 87.324689][ T5327] netdev_register_kobject+0x258/0x310
[ 87.326899][ T5327] page last free pid 5303 tgid 5303 stack trace:
[ 87.329309][ T5327] __free_frozen_pages+0xbc4/0xd30
[ 87.331215][ T5327] __slab_free+0x2e7/0x390
[ 87.333051][ T5327] qlist_free_all+0x97/0x140
[ 87.334949][ T5327] kasan_quarantine_reduce+0x148/0x160
[ 87.337349][ T5327] __kasan_slab_alloc+0x22/0x80
[ 87.339505][ T5327] kmem_cache_alloc_noprof+0x367/0x6e0
[ 87.342006][ T5327] skb_clone+0x212/0x3a0
[ 87.343796][ T5327] hci_event_packet+0x1a6/0x1200
[ 87.345642][ T5327] hci_rx_work+0x46a/0xe80
[ 87.347377][ T5327] process_scheduled_works+0xae1/0x17b0
[ 87.349529][ T5327] worker_thread+0x8a0/0xda0
[ 87.351489][ T5327] kthread+0x711/0x8a0
[ 87.353126][ T5327] ret_from_fork+0x4bc/0x870
[ 87.355225][ T5327] ret_from_fork_asm+0x1a/0x30
[ 87.357342][ T5327]
[ 87.358378][ T5327] Memory state around the buggy address:
[ 87.360765][ T5327] ffff888043019f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 87.364259][ T5327] ffff88804301a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 87.367555][ T5327] >ffff88804301a080: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00
[ 87.370720][ T5327] ^
[ 87.373155][ T5327] ffff88804301a100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 87.376555][ T5327] ffff88804301a180: 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 00
[ 87.379894][ T5327] ==================================================================
[ 87.409843][ T5327] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 87.412542][ T5327] CPU: 0 UID: 0 PID: 5327 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 87.416015][ T5327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.420234][ T5327] Call Trace:
[ 87.421613][ T5327]
[ 87.422888][ T5327] dump_stack_lvl+0x99/0x250
[ 87.424757][ T5327] ? __asan_memcpy+0x40/0x70
[ 87.426687][ T5327] ? __pfx_dump_stack_lvl+0x10/0x10
[ 87.428802][ T5327] ? __pfx__printk+0x10/0x10
[ 87.430628][ T5327] vpanic+0x237/0x6d0
[ 87.432202][ T5327] ? __pfx_vpanic+0x10/0x10
[ 87.434189][ T5327] ? preempt_schedule+0xae/0xc0
[ 87.436241][ T5327] ? __pfx_preempt_schedule+0x10/0x10
[ 87.438214][ T5327] panic+0xb9/0xc0
[ 87.439827][ T5327] ? __pfx_panic+0x10/0x10
[ 87.441787][ T5327] ? _raw_spin_unlock_irqrestore+0xfd/0x110
[ 87.444373][ T5327] ? ocfs2_claim_suballoc_bits+0x877/0x2450
[ 87.446471][ T5327] check_panic_on_warn+0x89/0xb0
[ 87.448281][ T5327] ? ocfs2_claim_suballoc_bits+0x877/0x2450
[ 87.450290][ T5327] end_report+0x78/0x160
[ 87.451891][ T5327] kasan_report+0x129/0x150
[ 87.453710][ T5327] ? ocfs2_claim_suballoc_bits+0x877/0x2450
[ 87.456255][ T5327] ocfs2_claim_suballoc_bits+0x877/0x2450
[ 87.458701][ T5327] ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[ 87.461252][ T5327] ? __pfx_start_this_handle+0x10/0x10
[ 87.463497][ T5327] __ocfs2_claim_clusters+0x303/0x8f0
[ 87.465595][ T5327] ? trace_jbd2_handle_start+0x8a/0x220
[ 87.467746][ T5327] ? __pfx___ocfs2_claim_clusters+0x10/0x10
[ 87.469882][ T5327] ? ocfs2_start_trans+0x495/0x6d0
[ 87.471847][ T5327] ? __pfx_ocfs2_start_trans+0x10/0x10
[ 87.473938][ T5327] ocfs2_reserve_suballoc_bits+0xf1e/0x4640
[ 87.476175][ T5327] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 87.478477][ T5327] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 87.481083][ T5327] ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[ 87.483643][ T5327] ? stack_depot_save_flags+0x41b/0x860
[ 87.485872][ T5327] ? kasan_save_track+0x4f/0x80
[ 87.487955][ T5327] ? kasan_save_track+0x3e/0x80
[ 87.489958][ T5327] ? __kasan_kmalloc+0x93/0xb0
[ 87.491624][ T5327] ? __kmalloc_cache_noprof+0x3d5/0x6f0
[ 87.493634][ T5327] ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[ 87.496685][ T5327] ? ocfs2_extend_dir+0xc76/0x4870
[ 87.498772][ T5327] ? ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[ 87.501550][ T5327] ? ocfs2_mknod+0x819/0x2050
[ 87.503572][ T5327] ? ocfs2_create+0x1a5/0x440
[ 87.505591][ T5327] ? vfs_create+0x24e/0x400
[ 87.507562][ T5327] ? do_mknodat+0x3c6/0x4d0
[ 87.509509][ T5327] ? __x64_sys_mknod+0x8c/0xa0
[ 87.511604][ T5327] ? do_syscall_64+0xfa/0xfa0
[ 87.513634][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.516248][ T5327] ? __kasan_kmalloc+0x93/0xb0
[ 87.518302][ T5327] ? __kmalloc_cache_noprof+0x3d5/0x6f0
[ 87.520630][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 87.522894][ T5327] ocfs2_reserve_new_metadata_blocks+0x403/0x940
[ 87.525675][ T5327] ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[ 87.528246][ T5327] ? down_write+0x162/0x1f0
[ 87.530103][ T5327] ? __pfx_down_write+0x10/0x10
[ 87.532008][ T5327] ocfs2_extend_dir+0xc76/0x4870
[ 87.534179][ T5327] ? __pfx_ocfs2_extend_dir+0x10/0x10
[ 87.536510][ T5327] ? __pfx_ocfs2_journal_access_di+0x10/0x10
[ 87.539065][ T5327] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 87.541407][ T5327] ? lockdep_hardirqs_on+0x9c/0x150
[ 87.543479][ T5327] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 87.545951][ T5327] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 87.548642][ T5327] ? __lock_acquire+0xab9/0xd20
[ 87.550790][ T5327] ? rcu_is_watching+0x15/0xb0
[ 87.552994][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 87.555486][ T5327] ? ocfs2_dx_dir_name_hash+0x229/0xaf0
[ 87.558012][ T5327] ? __asan_memcpy+0x40/0x70
[ 87.560022][ T5327] ? ocfs2_dx_dir_name_hash+0x9ba/0xaf0
[ 87.562287][ T5327] ? __pfx_ocfs2_dx_dir_name_hash+0x10/0x10
[ 87.564777][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 87.567186][ T5327] ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[ 87.569797][ T5327] ? rcu_is_watching+0x15/0xb0
[ 87.571981][ T5327] ? __pfx_ocfs2_prepare_dir_for_insert+0x10/0x10
[ 87.574874][ T5327] ? ocfs2_search_dirblock+0x381/0x850
[ 87.577425][ T5327] ? __pfx_ocfs2_search_dirblock+0x10/0x10
[ 87.580053][ T5327] ? rcu_is_watching+0x15/0xb0
[ 87.582254][ T5327] ? ocfs2_buffer_cached+0x42a/0x8d0
[ 87.584561][ T5327] ? __brelse+0x59/0xa0
[ 87.586525][ T5327] ? ocfs2_find_entry+0xddb/0x2000
[ 87.588758][ T5327] ? __lock_acquire+0xab9/0xd20
[ 87.590991][ T5327] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 87.593608][ T5327] ? __pfx_ocfs2_read_blocks+0x10/0x10
[ 87.595972][ T5327] ? __lock_acquire+0xab9/0xd20
[ 87.598130][ T5327] ? ocfs2_read_inode_block+0x11d/0x190
[ 87.600612][ T5327] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 87.603256][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 87.605504][ T5327] ? ocfs2_inode_lock_full_nested+0xabe/0x1b40
[ 87.608252][ T5327] ? unwind_next_frame+0xa5/0x2390
[ 87.610567][ T5327] ? __kasan_check_byte+0x12/0x40
[ 87.612861][ T5327] ? is_bpf_text_address+0x26/0x2b0
[ 87.615230][ T5327] ? __kasan_check_byte+0x12/0x40
[ 87.617498][ T5327] ? __pfx_ocfs2_inode_lock_full_nested+0x10/0x10
[ 87.620386][ T5327] ? rcu_is_watching+0x15/0xb0
[ 87.622544][ T5327] ? lock_release+0x4b/0x3e0
[ 87.624632][ T5327] ? ocfs2_check_dir_for_entry+0x239/0x3f0
[ 87.627271][ T5327] ? __pfx_ocfs2_check_dir_for_entry+0x10/0x10
[ 87.629977][ T5327] ocfs2_mknod+0x819/0x2050
[ 87.632046][ T5327] ? __pfx_ocfs2_mknod+0x10/0x10
[ 87.634290][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 87.636611][ T5327] ? ocfs2_inode_lock_full_nested+0xabe/0x1b40
[ 87.639232][ T5327] ? __lock_acquire+0xab9/0xd20
[ 87.641163][ T5327] ? __lock_acquire+0xab9/0xd20
[ 87.643154][ T5327] ? do_raw_spin_lock+0x121/0x290
[ 87.645154][ T5327] ? do_raw_spin_unlock+0x4d/0x240
[ 87.647308][ T5327] ? put_pid+0xe9/0x130
[ 87.649106][ T5327] ocfs2_create+0x1a5/0x440
[ 87.651093][ T5327] ? __pfx_from_kgid+0x10/0x10
[ 87.653236][ T5327] ? apparmor_path_mknod+0x1b1/0x230
[ 87.655683][ T5327] ? __pfx_ocfs2_create+0x10/0x10
[ 87.657939][ T5327] ? HAS_UNMAPPED_ID+0x11a/0x180
[ 87.660153][ T5327] ? inode_permission+0x149/0x470
[ 87.662420][ T5327] ? __pfx_ocfs2_permission+0x10/0x10
[ 87.664795][ T5327] ? bpf_lsm_inode_create+0x9/0x20
[ 87.666877][ T5327] vfs_create+0x24e/0x400
[ 87.668658][ T5327] do_mknodat+0x3c6/0x4d0
[ 87.670417][ T5327] ? __pfx_do_mknodat+0x10/0x10
[ 87.672337][ T5327] ? getname_flags+0x1e5/0x540
[ 87.674310][ T5327] __x64_sys_mknod+0x8c/0xa0
[ 87.676217][ T5327] do_syscall_64+0xfa/0xfa0
[ 87.678009][ T5327] ? lockdep_hardirqs_on+0x9c/0x150
[ 87.680154][ T5327] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.682684][ T5327] ? clear_bhb_loop+0x60/0xb0
[ 87.684683][ T5327] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.687278][ T5327] RIP: 0033:0x7f542db8f6c9
[ 87.689168][ T5327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 87.697497][ T5327] RSP: 002b:00007f542ea10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[ 87.701120][ T5327] RAX: ffffffffffffffda RBX: 00007f542dde5fa0 RCX: 00007f542db8f6c9
[ 87.704529][ T5327] RDX: 0000000000000701 RSI: 0000000000000000 RDI: 0000200000000000
[ 87.708012][ T5327] RBP: 00007f542dc11f91 R08: 0000000000000000 R09: 0000000000000000
[ 87.711451][ T5327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 87.714607][ T5327] R13: 00007f542dde6038 R14: 00007f542dde5fa0 R15: 00007ffeff33fc08
[ 87.717791][ T5327]
[ 87.719429][ T5327] Kernel Offset: disabled
[ 87.721141][ T5327] Rebooting in 86400 seconds..