Warning: Permanently added '10.128.0.212' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
syzkaller login: [   43.090728][ T3501] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   43.158995][ T2575] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   43.172147][ T2575] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   43.182219][ T1282] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   43.182225][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   43.182254][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   43.206171][ T2926] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   43.216676][ T3503] syz-executor367 (pid 3503) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   43.274263][ T3503] fscrypt: AES-128-CTS-CBC using implementation "cts-cbc-aes-aesni"
[   43.283358][ T3503] FAULT_INJECTION: forcing a failure.
[   43.283358][ T3503] name failslab, interval 1, probability 0, space 0, times 1
[   43.296101][ T3503] CPU: 0 PID: 3503 Comm: syz-executor367 Not tainted 5.15.143-syzkaller #0
[   43.304680][ T3503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   43.314716][ T3503] Call Trace:
[   43.317973][ T3503]  <TASK>
[   43.320882][ T3503]  dump_stack_lvl+0x1e3/0x2cb
[   43.325548][ T3503]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   43.331155][ T3503]  ? panic+0x84d/0x84d
[   43.335201][ T3503]  ? __might_sleep+0xc0/0xc0
[   43.339763][ T3503]  ? __ext4_new_inode+0x37e8/0x4430
[   43.344935][ T3503]  ? tomoyo_path_perm+0x555/0x6b0
[   43.349936][ T3503]  should_fail+0x38a/0x4c0
[   43.354329][ T3503]  should_failslab+0x5/0x20
[   43.358810][ T3503]  slab_pre_alloc_hook+0x53/0xc0
[   43.363722][ T3503]  __kmalloc+0x6e/0x300
[   43.367855][ T3503]  ? __fscrypt_encrypt_symlink+0x16d/0x430
[   43.373646][ T3503]  __fscrypt_encrypt_symlink+0x16d/0x430
[   43.379261][ T3503]  ? fscrypt_prepare_symlink+0x150/0x150
[   43.384872][ T3503]  ext4_symlink+0x5b2/0xed0
[   43.389363][ T3503]  ? ext4_unlink+0x530/0x530
[   43.393934][ T3503]  ? inode_permission+0xf7/0x450
[   43.398844][ T3503]  ? bpf_lsm_inode_symlink+0x5/0x10
[   43.404033][ T3503]  ? security_inode_symlink+0xaf/0xf0
[   43.409382][ T3503]  vfs_symlink+0x2ad/0x490
[   43.413781][ T3503]  do_symlinkat+0x1fd/0x600
[   43.418260][ T3503]  ? vfs_symlink+0x490/0x490
[   43.422834][ T3503]  ? getname_flags+0x1ec/0x4e0
[   43.427581][ T3503]  ? lockdep_hardirqs_on+0x94/0x130
[   43.432753][ T3503]  __x64_sys_symlink+0x7a/0x90
[   43.437493][ T3503]  do_syscall_64+0x3d/0xb0
[   43.441889][ T3503]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.447764][ T3503] RIP: 0033:0x7ff734690269
[   43.452155][ T3503] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   43.471737][ T3503] RSP: 002b:00007ffee17ee7e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[   43.480124][ T3503] RAX: ffffffffffffffda RBX: 00007ffee17ee7f0 RCX: 00007ff734690269
[   43.488071][ T3503] RDX: 00007ff73468f170 RSI: 0000000020000180 RDI: 0000000020000140
[   43.496016][ T3503] RBP: 0000000000000002 R08: 00007ffee17ee586 R09: 0000000000003432
[   43.503965][ T3503] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000003
[   43.511912][ T3503] R13: 0000000000050012 R14: 00007ffee17ee8ea R15: 000000000000000d
[   43.519879][ T3503]  </TASK>
[   43.523513][ T3503] ==================================================================
[   43.531672][ T3503] BUG: KASAN: use-after-free in jbd2_journal_get_write_access+0x12f/0x140
[   43.540153][ T3503] Read of size 4 at addr ffff888071a53eec by task syz-executor367/3503
[   43.548359][ T3503] 
[   43.550658][ T3503] CPU: 0 PID: 3503 Comm: syz-executor367 Not tainted 5.15.143-syzkaller #0
[   43.559216][ T3503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   43.569260][ T3503] Call Trace:
[   43.572519][ T3503]  <TASK>
[   43.575438][ T3503]  dump_stack_lvl+0x1e3/0x2cb
[   43.580114][ T3503]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   43.585722][ T3503]  ? _printk+0xd1/0x111
[   43.589852][ T3503]  ? __wake_up_klogd+0xcc/0x100
[   43.594678][ T3503]  ? panic+0x84d/0x84d
[   43.598717][ T3503]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   43.604149][ T3503]  print_address_description+0x63/0x3b0
[   43.609675][ T3503]  ? jbd2_journal_get_write_access+0x12f/0x140
[   43.615800][ T3503]  kasan_report+0x16b/0x1c0
[   43.620277][ T3503]  ? jbd2_journal_get_write_access+0x12f/0x140
[   43.626406][ T3503]  jbd2_journal_get_write_access+0x12f/0x140
[   43.632361][ T3503]  __ext4_journal_get_write_access+0x257/0x6b0
[   43.638497][ T3503]  ? __ext4_journal_ensure_credits+0x460/0x460
[   43.644628][ T3503]  ext4_reserve_inode_write+0x2bd/0x3d0
[   43.650148][ T3503]  ? __might_sleep+0xc0/0xc0
[   43.654715][ T3503]  ? ext4_mark_iloc_dirty+0x43b0/0x43b0
[   43.660233][ T3503]  ? jbd2_journal_stop+0x8d9/0xd70
[   43.665316][ T3503]  ? rcu_is_watching+0x11/0xa0
[   43.670059][ T3503]  __ext4_mark_inode_dirty+0x1d6/0x860
[   43.675492][ T3503]  ? jbd2_journal_stop+0x8d9/0xd70
[   43.680583][ T3503]  ? ext4_blocks_for_truncate+0x270/0x270
[   43.686275][ T3503]  ? __fscrypt_encrypt_symlink+0x2f2/0x430
[   43.692054][ T3503]  ? jbd2_journal_start_reserved+0x300/0x300
[   43.698009][ T3503]  ? fscrypt_prepare_symlink+0x150/0x150
[   43.703617][ T3503]  ext4_symlink+0xa2f/0xed0
[   43.708102][ T3503]  ? ext4_unlink+0x530/0x530
[   43.712669][ T3503]  ? inode_permission+0xf7/0x450
[   43.717580][ T3503]  ? bpf_lsm_inode_symlink+0x5/0x10
[   43.722747][ T3503]  ? security_inode_symlink+0xaf/0xf0
[   43.728095][ T3503]  vfs_symlink+0x2ad/0x490
[   43.732490][ T3503]  do_symlinkat+0x1fd/0x600
[   43.736972][ T3503]  ? vfs_symlink+0x490/0x490
[   43.741538][ T3503]  ? getname_flags+0x1ec/0x4e0
[   43.746272][ T3503]  ? lockdep_hardirqs_on+0x94/0x130
[   43.751446][ T3503]  __x64_sys_symlink+0x7a/0x90
[   43.756184][ T3503]  do_syscall_64+0x3d/0xb0
[   43.760577][ T3503]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.766442][ T3503] RIP: 0033:0x7ff734690269
[   43.770829][ T3503] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   43.790410][ T3503] RSP: 002b:00007ffee17ee7e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[   43.798799][ T3503] RAX: ffffffffffffffda RBX: 00007ffee17ee7f0 RCX: 00007ff734690269
[   43.806746][ T3503] RDX: 00007ff73468f170 RSI: 0000000020000180 RDI: 0000000020000140
[   43.814691][ T3503] RBP: 0000000000000002 R08: 00007ffee17ee586 R09: 0000000000003432
[   43.822636][ T3503] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000003
[   43.830581][ T3503] R13: 0000000000050012 R14: 00007ffee17ee8ea R15: 000000000000000d
[   43.838536][ T3503]  </TASK>
[   43.841529][ T3503] 
[   43.843830][ T3503] Allocated by task 3503:
[   43.848126][ T3503]  __kasan_slab_alloc+0x8e/0xc0
[   43.852954][ T3503]  slab_post_alloc_hook+0x53/0x380
[   43.858035][ T3503]  kmem_cache_alloc+0xf3/0x280
[   43.862767][ T3503]  jbd2__journal_start+0x144/0x5c0
[   43.867850][ T3503]  __ext4_journal_start_sb+0x175/0x370
[   43.873279][ T3503]  __ext4_new_inode+0x138b/0x4430
[   43.878272][ T3503]  ext4_symlink+0x4c3/0xed0
[   43.882750][ T3503]  vfs_symlink+0x2ad/0x490
[   43.887145][ T3503]  do_symlinkat+0x1fd/0x600
[   43.891624][ T3503]  __x64_sys_symlink+0x7a/0x90
[   43.896365][ T3503]  do_syscall_64+0x3d/0xb0
[   43.900754][ T3503]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.906619][ T3503] 
[   43.908917][ T3503] Freed by task 3503:
[   43.912863][ T3503]  kasan_set_track+0x4b/0x80
[   43.917428][ T3503]  kasan_set_free_info+0x1f/0x40
[   43.922348][ T3503]  ____kasan_slab_free+0xd8/0x120
[   43.927347][ T3503]  slab_free_freelist_hook+0xdd/0x160
[   43.932689][ T3503]  kmem_cache_free+0x91/0x1f0
[   43.937341][ T3503]  jbd2_journal_stop+0x8d9/0xd70
[   43.942253][ T3503]  __ext4_journal_stop+0xf8/0x190
[   43.947249][ T3503]  ext4_symlink+0x5fe/0xed0
[   43.951726][ T3503]  vfs_symlink+0x2ad/0x490
[   43.956115][ T3503]  do_symlinkat+0x1fd/0x600
[   43.960635][ T3503]  __x64_sys_symlink+0x7a/0x90
[   43.965386][ T3503]  do_syscall_64+0x3d/0xb0
[   43.969785][ T3503]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.975650][ T3503] 
[   43.977947][ T3503] The buggy address belongs to the object at ffff888071a53ec8
[   43.977947][ T3503]  which belongs to the cache jbd2_journal_handle of size 56
[   43.992576][ T3503] The buggy address is located 36 bytes inside of
[   43.992576][ T3503]  56-byte region [ffff888071a53ec8, ffff888071a53f00)
[   44.005648][ T3503] The buggy address belongs to the page:
[   44.011249][ T3503] page:ffffea0001c694c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x71a53
[   44.021370][ T3503] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[   44.028890][ T3503] raw: 00fff00000000200 0000000000000000 dead000000000122 ffff88814634d140
[   44.037446][ T3503] raw: 0000000000000000 00000000802e002e 00000001ffffffff 0000000000000000
[   44.045997][ T3503] page dumped because: kasan: bad access detected
[   44.052380][ T3503] page_owner tracks the page as allocated
[   44.058066][ T3503] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0x12c50(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_RECLAIMABLE), pid 3492, ts 35917830207, free_ts 10187209887
[   44.075655][ T3503]  get_page_from_freelist+0x322a/0x33c0
[   44.081179][ T3503]  __alloc_pages+0x272/0x700
[   44.085743][ T3503]  new_slab+0xbb/0x4b0
[   44.089788][ T3503]  ___slab_alloc+0x6f6/0xe10
[   44.094353][ T3503]  kmem_cache_alloc+0x18e/0x280
[   44.099174][ T3503]  jbd2__journal_start+0x144/0x5c0
[   44.104257][ T3503]  __ext4_journal_start_sb+0x175/0x370
[   44.109689][ T3503]  ext4_dirty_inode+0x8b/0x100
[   44.114431][ T3503]  __mark_inode_dirty+0x2fd/0xd60
[   44.119425][ T3503]  generic_write_end+0x232/0x440
[   44.124333][ T3503]  ext4_da_write_end+0x72d/0x9e0
[   44.129241][ T3503]  generic_perform_write+0x3b7/0x5b0
[   44.134528][ T3503]  ext4_buffered_write_iter+0x227/0x360
[   44.140049][ T3503]  ext4_file_write_iter+0x87c/0x1990
[   44.145316][ T3503]  vfs_write+0xacf/0xe50
[   44.149532][ T3503]  ksys_write+0x1a2/0x2c0
[   44.153833][ T3503] page last free stack trace:
[   44.158476][ T3503]  free_unref_page_prepare+0xc34/0xcf0
[   44.163910][ T3503]  free_unref_page+0x95/0x2d0
[   44.168558][ T3503]  free_contig_range+0x95/0xf0
[   44.173297][ T3503]  destroy_args+0xfe/0x97f
[   44.177688][ T3503]  debug_vm_pgtable+0x40d/0x462
[   44.182529][ T3503]  do_one_initcall+0x22b/0x7a0
[   44.187272][ T3503]  do_initcall_level+0x157/0x207
[   44.192192][ T3503]  do_initcalls+0x49/0x86
[   44.196514][ T3503]  kernel_init_freeable+0x425/0x5b5
[   44.201681][ T3503]  kernel_init+0x19/0x290
[   44.205982][ T3503]  ret_from_fork+0x1f/0x30
[   44.210371][ T3503] 
[   44.212667][ T3503] Memory state around the buggy address:
[   44.218267][ T3503]  ffff888071a53d80: fb fb fb fb fc fc fc fc fa fb fb fb fb fb fb fc
[   44.226307][ T3503]  ffff888071a53e00: fc fc fc fa fb fb fb fb fb fb fc fc fc fc fa fb
[   44.234352][ T3503] >ffff888071a53e80: fb fb fb fb fb fc fc fc fc fa fb fb fb fb fb fb
[   44.242385][ T3503]                                                           ^
[   44.249808][ T3503]  ffff888071a53f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   44.257839][ T3503]  ffff888071a53f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   44.265867][ T3503] ==================================================================
[   44.273895][ T3503] Disabling lock debugging due to kernel taint
[   44.280734][ T3503] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   44.287922][ T3503] CPU: 0 PID: 3503 Comm: syz-executor367 Tainted: G    B             5.15.143-syzkaller #0
[   44.297883][ T3503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   44.307911][ T3503] Call Trace:
[   44.311166][ T3503]  <TASK>
[   44.314072][ T3503]  dump_stack_lvl+0x1e3/0x2cb
[   44.318723][ T3503]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   44.324325][ T3503]  ? panic+0x84d/0x84d
[   44.328365][ T3503]  ? preempt_schedule_common+0xa6/0xd0
[   44.333797][ T3503]  ? preempt_schedule+0xd9/0xe0
[   44.338621][ T3503]  panic+0x318/0x84d
[   44.342487][ T3503]  ? check_panic_on_warn+0x1d/0xa0
[   44.347576][ T3503]  ? fb_is_primary_device+0xcc/0xcc
[   44.352750][ T3503]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   44.358701][ T3503]  ? _raw_spin_unlock+0x40/0x40
[   44.363523][ T3503]  ? print_memory_metadata+0xe2/0x140
[   44.368867][ T3503]  check_panic_on_warn+0x7e/0xa0
[   44.373773][ T3503]  ? jbd2_journal_get_write_access+0x12f/0x140
[   44.379897][ T3503]  end_report+0x6d/0xf0
[   44.384026][ T3503]  kasan_report+0x18e/0x1c0
[   44.388500][ T3503]  ? jbd2_journal_get_write_access+0x12f/0x140
[   44.394641][ T3503]  jbd2_journal_get_write_access+0x12f/0x140
[   44.400602][ T3503]  __ext4_journal_get_write_access+0x257/0x6b0
[   44.406727][ T3503]  ? __ext4_journal_ensure_credits+0x460/0x460
[   44.412852][ T3503]  ext4_reserve_inode_write+0x2bd/0x3d0
[   44.418371][ T3503]  ? __might_sleep+0xc0/0xc0
[   44.422943][ T3503]  ? ext4_mark_iloc_dirty+0x43b0/0x43b0
[   44.428458][ T3503]  ? jbd2_journal_stop+0x8d9/0xd70
[   44.433539][ T3503]  ? rcu_is_watching+0x11/0xa0
[   44.438276][ T3503]  __ext4_mark_inode_dirty+0x1d6/0x860
[   44.443707][ T3503]  ? jbd2_journal_stop+0x8d9/0xd70
[   44.448790][ T3503]  ? ext4_blocks_for_truncate+0x270/0x270
[   44.454481][ T3503]  ? __fscrypt_encrypt_symlink+0x2f2/0x430
[   44.460266][ T3503]  ? jbd2_journal_start_reserved+0x300/0x300
[   44.466217][ T3503]  ? fscrypt_prepare_symlink+0x150/0x150
[   44.471822][ T3503]  ext4_symlink+0xa2f/0xed0
[   44.476301][ T3503]  ? ext4_unlink+0x530/0x530
[   44.480862][ T3503]  ? inode_permission+0xf7/0x450
[   44.485770][ T3503]  ? bpf_lsm_inode_symlink+0x5/0x10
[   44.490961][ T3503]  ? security_inode_symlink+0xaf/0xf0
[   44.496309][ T3503]  vfs_symlink+0x2ad/0x490
[   44.500702][ T3503]  do_symlinkat+0x1fd/0x600
[   44.505177][ T3503]  ? vfs_symlink+0x490/0x490
[   44.509737][ T3503]  ? getname_flags+0x1ec/0x4e0
[   44.514471][ T3503]  ? lockdep_hardirqs_on+0x94/0x130
[   44.519637][ T3503]  __x64_sys_symlink+0x7a/0x90
[   44.524372][ T3503]  do_syscall_64+0x3d/0xb0
[   44.528760][ T3503]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   44.534622][ T3503] RIP: 0033:0x7ff734690269
[   44.539009][ T3503] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   44.558584][ T3503] RSP: 002b:00007ffee17ee7e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[   44.566966][ T3503] RAX: ffffffffffffffda RBX: 00007ffee17ee7f0 RCX: 00007ff734690269
[   44.574914][ T3503] RDX: 00007ff73468f170 RSI: 0000000020000180 RDI: 0000000020000140
[   44.582858][ T3503] RBP: 0000000000000002 R08: 00007ffee17ee586 R09: 0000000000003432
[   44.590801][ T3503] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000003
[   44.598745][ T3503] R13: 0000000000050012 R14: 00007ffee17ee8ea R15: 000000000000000d
[   44.606692][ T3503]  </TASK>
[   44.609855][ T3503] Kernel Offset: disabled
[   44.614156][ T3503] Rebooting in 86400 seconds..