Warning: Permanently added '10.128.1.161' (ED25519) to the list of known hosts. executing program [ 21.587976][ T24] audit: type=1400 audit(1743230075.410:66): avc: denied { execmem } for pid=281 comm="syz-executor388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 21.615304][ T24] audit: type=1400 audit(1743230075.410:67): avc: denied { read write } for pid=281 comm="syz-executor388" name="loop0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 21.639513][ T24] audit: type=1400 audit(1743230075.410:68): avc: denied { open } for pid=281 comm="syz-executor388" path="/dev/loop0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 21.663590][ T24] audit: type=1400 audit(1743230075.410:69): avc: denied { ioctl } for pid=281 comm="syz-executor388" path="/dev/loop0" dev="devtmpfs" ino=111 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 21.745006][ T24] audit: type=1400 audit(1743230075.570:70): avc: denied { mounton } for pid=282 comm="syz-executor388" path="/root/file0" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 21.757475][ T282] F2FS-fs (loop0): fault_injection options not supported [ 21.775426][ T282] F2FS-fs (loop0): invalid crc value [ 21.781551][ T282] F2FS-fs (loop0): Found nat_bits in checkpoint [ 21.802005][ T282] F2FS-fs (loop0): Start checkpoint disabled! [ 21.808675][ T282] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 21.816245][ T24] audit: type=1400 audit(1743230075.640:71): avc: denied { mount } for pid=282 comm="syz-executor388" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 21.838341][ T24] audit: type=1400 audit(1743230075.640:72): avc: denied { write } for pid=282 comm="syz-executor388" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 21.860731][ T24] audit: type=1400 audit(1743230075.640:73): avc: denied { add_name } for pid=282 comm="syz-executor388" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 21.861453][ T282] ------------[ cut here ]------------ [ 21.886758][ T282] WARNING: CPU: 1 PID: 282 at fs/f2fs/segment.c:2582 new_curseg+0xee2/0x18c0 [ 21.886799][ T24] audit: type=1400 audit(1743230075.640:74): avc: denied { create } for pid=282 comm="syz-executor388" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 21.895324][ T282] Modules linked in: [ 21.919273][ T282] CPU: 1 PID: 282 Comm: syz-executor388 Not tainted 5.10.234-syzkaller-00033-g094fc3778d6b #0 [ 21.919337][ T24] audit: type=1400 audit(1743230075.640:75): avc: denied { write open } for pid=282 comm="syz-executor388" path="/root/file0/file0" dev="loop0" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 21.929393][ T282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 21.929406][ T282] RIP: 0010:new_curseg+0xee2/0x18c0 [ 21.929422][ T282] Code: 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 76 3e 88 ff f0 80 0b 04 c7 45 c0 00 00 00 00 45 89 f4 e9 ea fb ff ff e8 1e 9d 4a ff <0f> 0b 48 8b 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 48 3e 88 ff [ 21.987011][ T282] RSP: 0018:ffffc90000c576e0 EFLAGS: 00010293 [ 21.992896][ T282] RAX: ffffffff82202232 RBX: 0000000000000018 RCX: ffff88810bbd93c0 [ 22.000784][ T282] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 0000000000000018 [ 22.008561][ T282] RBP: ffffc90000c577c0 R08: ffffffff82201cb9 R09: 0000000000000003 [ 22.016366][ T282] R10: fffff5200018aecc R11: dffffc0000000001 R12: 000000000000000f [ 22.024161][ T282] R13: 000000000000000f R14: 0000000000000018 R15: dffffc0000000000 [ 22.031956][ T282] FS: 0000555594b70380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 22.040953][ T282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.047362][ T282] CR2: 00007f7b5caa6100 CR3: 000000010a956000 CR4: 00000000003506a0 [ 22.055186][ T282] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.063001][ T282] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.070827][ T282] Call Trace: [ 22.073944][ T282] ? show_regs+0x58/0x60 [ 22.077992][ T282] ? __warn+0x160/0x2f0 [ 22.081986][ T282] ? new_curseg+0xee2/0x18c0 [ 22.086436][ T282] ? report_bug+0x3d9/0x5b0 [ 22.090840][ T282] ? new_curseg+0xee2/0x18c0 [ 22.095288][ T282] ? handle_bug+0x41/0x70 [ 22.099432][ T282] ? exc_invalid_op+0x1b/0x50 [ 22.103996][ T282] ? asm_exc_invalid_op+0x12/0x20 [ 22.108820][ T282] ? new_curseg+0x969/0x18c0 [ 22.113231][ T282] ? new_curseg+0xee2/0x18c0 [ 22.117709][ T282] ? new_curseg+0xee2/0x18c0 [ 22.122087][ T282] __allocate_new_segment+0x144/0x870 [ 22.127335][ T282] f2fs_allocate_new_section+0x1c3/0x270 [ 22.132763][ T282] ? new_curseg+0x18c0/0x18c0 [ 22.137302][ T282] ? down_read_trylock+0x179/0x1d0 [ 22.142235][ T282] ? __kasan_check_write+0x14/0x20 [ 22.147196][ T282] ? __init_rwsem+0x1c0/0x1c0 [ 22.151686][ T282] expand_inode_data+0x62d/0xc10 [ 22.156484][ T282] ? f2fs_insert_range+0x590/0x590 [ 22.161407][ T282] ? file_update_time+0x34e/0x460 [ 22.166292][ T282] ? file_remove_privs+0x570/0x570 [ 22.171216][ T282] f2fs_fallocate+0x429/0x7e0 [ 22.175751][ T282] vfs_fallocate+0x492/0x570 [ 22.180154][ T282] do_vfs_ioctl+0x1686/0x1a30 [ 22.184763][ T282] ? ioctl_has_perm+0x3f0/0x560 [ 22.189367][ T282] ? __kasan_slab_free+0x11/0x20 [ 22.194172][ T282] ? __x32_compat_sys_ioctl+0x90/0x90 [ 22.199497][ T282] ? has_cap_mac_admin+0x3c0/0x3c0 [ 22.204487][ T282] ? putname+0xe7/0x140 [ 22.208434][ T282] ? selinux_file_ioctl+0x3cc/0x540 [ 22.213462][ T282] ? selinux_file_alloc_security+0x120/0x120 [ 22.219310][ T282] ? has_not_enough_free_secs+0x300/0x970 [ 22.224848][ T282] ? security_file_ioctl+0x84/0xb0 [ 22.230089][ T282] __se_sys_ioctl+0x99/0x190 [ 22.234557][ T282] __x64_sys_ioctl+0x7b/0x90 [ 22.238940][ T282] do_syscall_64+0x34/0x70 [ 22.243185][ T282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 22.248951][ T282] RIP: 0033:0x7f7b5ca290d9 [ 22.253166][ T282] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 22.272728][ T282] RSP: 002b:00007ffdc183fac8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.280956][ T282] RAX: ffffffffffffffda RBX: 0000200000000080 RCX: 00007f7b5ca290d9 [ 22.288778][ T282] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005 [ 22.296581][ T282] RBP: 0030656c69662f2e R08: 0000555594b714c0 R09: 0000555594b714c0 [ 22.304427][ T282] R10: 0000555594b714c0 R11: 0000000000000246 R12: 00007ffdc183faf0 [ 22.312280][ T282] R13: 00007ffdc183fd18 R14: 431bde82d7b634db R15: 00007f7b5ca7203b [ 22.320120][ T282] ---[ end trace 3674aaaf0335f54d ]--- [ 22.325438][ T282] ------------[ cut here ]------------ [ 22.330683][ T282] WARNING: CPU: 1 PID: 282 at fs/f2fs/segment.c:2636 new_curseg+0x14d4/0x18c0 [ 22.339374][ T282] Modules linked in: [ 22.343101][ T282] CPU: 1 PID: 282 Comm: syz-executor388 Tainted: G W 5.10.234-syzkaller-00033-g094fc3778d6b #0 [ 22.354571][ T282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 22.364466][ T282] RIP: 0010:new_curseg+0x14d4/0x18c0 [ 22.369577][ T282] Code: e9 66 fc ff ff e8 4c 97 4a ff 0f 0b 49 8d 7d 78 be 08 00 00 00 e8 7c 38 88 ff f0 41 80 4d 78 04 e9 d2 ed ff ff e8 2c 97 4a ff <0f> 0b 48 8b 5d 98 48 8d 7b 78 be 08 00 00 00 e8 58 38 88 ff f0 80 [ 22.389034][ T282] RSP: 0018:ffffc90000c576e0 EFLAGS: 00010293 [ 22.394922][ T282] RAX: ffffffff82202824 RBX: 0000000000000001 RCX: ffff88810bbd93c0 [ 22.402717][ T282] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 22.410555][ T282] RBP: ffffc90000c577c0 R08: ffffffff822024d6 R09: ffffed10215f57dc [ 22.418356][ T282] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000018 [ 22.426191][ T282] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff88810afabe01 [ 22.433992][ T282] FS: 0000555594b70380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 22.442746][ T282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.449186][ T282] CR2: 00007f7b5caa6100 CR3: 000000010a956000 CR4: 00000000003506a0 [ 22.456989][ T282] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.464803][ T282] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.472594][ T282] Call Trace: [ 22.475750][ T282] ? show_regs+0x58/0x60 [ 22.479807][ T282] ? __warn+0x160/0x2f0 [ 22.483787][ T282] ? new_curseg+0x14d4/0x18c0 [ 22.488335][ T282] ? report_bug+0x3d9/0x5b0 [ 22.492644][ T282] ? new_curseg+0x14d4/0x18c0 [ 22.497184][ T282] ? handle_bug+0x41/0x70 [ 22.501339][ T282] ? exc_invalid_op+0x1b/0x50 [ 22.505906][ T282] ? asm_exc_invalid_op+0x12/0x20 [ 22.510707][ T282] ? new_curseg+0x1186/0x18c0 [ 22.515242][ T282] ? new_curseg+0x14d4/0x18c0 [ 22.519727][ T282] ? new_curseg+0x14d4/0x18c0 [ 22.524269][ T282] __allocate_new_segment+0x144/0x870 [ 22.529572][ T282] f2fs_allocate_new_section+0x1c3/0x270 [ 22.535088][ T282] ? new_curseg+0x18c0/0x18c0 [ 22.539546][ T282] ? down_read_trylock+0x179/0x1d0 [ 22.544523][ T282] ? __kasan_check_write+0x14/0x20 [ 22.549437][ T282] ? __init_rwsem+0x1c0/0x1c0 [ 22.553982][ T282] expand_inode_data+0x62d/0xc10 [ 22.558759][ T282] ? f2fs_insert_range+0x590/0x590 [ 22.563687][ T282] ? file_update_time+0x34e/0x460 [ 22.568567][ T282] ? file_remove_privs+0x570/0x570 [ 22.573486][ T282] f2fs_fallocate+0x429/0x7e0 [ 22.578020][ T282] vfs_fallocate+0x492/0x570 [ 22.582420][ T282] do_vfs_ioctl+0x1686/0x1a30 [ 22.586960][ T282] ? ioctl_has_perm+0x3f0/0x560 [ 22.591630][ T282] ? __kasan_slab_free+0x11/0x20 [ 22.596442][ T282] ? __x32_compat_sys_ioctl+0x90/0x90 [ 22.602044][ T282] ? has_cap_mac_admin+0x3c0/0x3c0 [ 22.607023][ T282] ? putname+0xe7/0x140 [ 22.610979][ T282] ? selinux_file_ioctl+0x3cc/0x540 [ 22.616296][ T282] ? selinux_file_alloc_security+0x120/0x120 [ 22.622091][ T282] ? has_not_enough_free_secs+0x300/0x970 [ 22.627671][ T282] ? security_file_ioctl+0x84/0xb0 [ 22.632619][ T282] __se_sys_ioctl+0x99/0x190 [ 22.637145][ T282] __x64_sys_ioctl+0x7b/0x90 [ 22.641534][ T282] do_syscall_64+0x34/0x70 [ 22.645828][ T282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 22.651515][ T282] RIP: 0033:0x7f7b5ca290d9 [ 22.655793][ T282] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 22.675229][ T282] RSP: 002b:00007ffdc183fac8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.683464][ T282] RAX: ffffffffffffffda RBX: 0000200000000080 RCX: 00007f7b5ca290d9 [ 22.691290][ T282] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005 [ 22.699091][ T282] RBP: 0030656c69662f2e R08: 0000555594b714c0 R09: 0000555594b714c0 [ 22.706918][ T282] R10: 0000555594b714c0 R11: 0000000000000246 R12: 00007ffdc183faf0 [ 22.714716][ T282] R13: 00007ffdc183fd18 R14: 431bde82d7b634db R15: 00007f7b5ca7203b [ 22.722511][ T282] ---[ end trace 3674aaaf0335f54e ]--- [ 22.727895][ T282] ================================================================== [ 22.735711][ T282] BUG: KASAN: slab-out-of-bounds in reset_curseg+0x52e/0x590 [ 22.742908][ T282] Read of size 4 at addr ffff88810af59bc0 by task syz-executor388/282 [ 22.750975][ T282] [ 22.753152][ T282] CPU: 1 PID: 282 Comm: syz-executor388 Tainted: G W 5.10.234-syzkaller-00033-g094fc3778d6b #0 [ 22.764695][ T282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 22.774588][ T282] Call Trace: [ 22.777720][ T282] dump_stack_lvl+0x1e2/0x24b [ 22.782230][ T282] ? bfq_pos_tree_add_move+0x43b/0x43b [ 22.787525][ T282] ? panic+0x812/0x812 [ 22.791517][ T282] ? __kasan_check_write+0x14/0x20 [ 22.797016][ T282] print_address_description+0x81/0x3b0 [ 22.802393][ T282] ? preempt_schedule+0xd9/0xe0 [ 22.807081][ T282] kasan_report+0x179/0x1c0 [ 22.811420][ T282] ? reset_curseg+0x52e/0x590 [ 22.815943][ T282] ? reset_curseg+0x52e/0x590 [ 22.820448][ T282] __asan_report_load4_noabort+0x14/0x20 [ 22.825916][ T282] reset_curseg+0x52e/0x590 [ 22.830430][ T282] new_curseg+0x1371/0x18c0 [ 22.834766][ T282] __allocate_new_segment+0x144/0x870 [ 22.839970][ T282] f2fs_allocate_new_section+0x1c3/0x270 [ 22.845433][ T282] ? new_curseg+0x18c0/0x18c0 [ 22.849945][ T282] ? down_read_trylock+0x179/0x1d0 [ 22.854892][ T282] ? __kasan_check_write+0x14/0x20 [ 22.859842][ T282] ? __init_rwsem+0x1c0/0x1c0 [ 22.864361][ T282] expand_inode_data+0x62d/0xc10 [ 22.869214][ T282] ? f2fs_insert_range+0x590/0x590 [ 22.874171][ T282] ? file_update_time+0x34e/0x460 [ 22.879019][ T282] ? file_remove_privs+0x570/0x570 [ 22.883969][ T282] f2fs_fallocate+0x429/0x7e0 [ 22.888484][ T282] vfs_fallocate+0x492/0x570 [ 22.892910][ T282] do_vfs_ioctl+0x1686/0x1a30 [ 22.897424][ T282] ? ioctl_has_perm+0x3f0/0x560 [ 22.902110][ T282] ? __kasan_slab_free+0x11/0x20 [ 22.906885][ T282] ? __x32_compat_sys_ioctl+0x90/0x90 [ 22.912092][ T282] ? has_cap_mac_admin+0x3c0/0x3c0 [ 22.917038][ T282] ? putname+0xe7/0x140 [ 22.921031][ T282] ? selinux_file_ioctl+0x3cc/0x540 [ 22.926065][ T282] ? selinux_file_alloc_security+0x120/0x120 [ 22.931883][ T282] ? has_not_enough_free_secs+0x300/0x970 [ 22.937440][ T282] ? security_file_ioctl+0x84/0xb0 [ 22.942385][ T282] __se_sys_ioctl+0x99/0x190 [ 22.946817][ T282] __x64_sys_ioctl+0x7b/0x90 [ 22.951243][ T282] do_syscall_64+0x34/0x70 [ 22.955494][ T282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 22.961223][ T282] RIP: 0033:0x7f7b5ca290d9 [ 22.965476][ T282] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 22.984918][ T282] RSP: 002b:00007ffdc183fac8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 22.993161][ T282] RAX: ffffffffffffffda RBX: 0000200000000080 RCX: 00007f7b5ca290d9 [ 23.000984][ T282] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005 [ 23.008786][ T282] RBP: 0030656c69662f2e R08: 0000555594b714c0 R09: 0000555594b714c0 [ 23.016596][ T282] R10: 0000555594b714c0 R11: 0000000000000246 R12: 00007ffdc183faf0 [ 23.024424][ T282] R13: 00007ffdc183fd18 R14: 431bde82d7b634db R15: 00007f7b5ca7203b [ 23.032228][ T282] [ 23.034396][ T282] Allocated by task 282: [ 23.038483][ T282] ____kasan_kmalloc+0xdb/0x110 [ 23.043162][ T282] __kasan_kmalloc+0x9/0x10 [ 23.047502][ T282] __kmalloc+0x1aa/0x330 [ 23.051580][ T282] kvmalloc_node+0x82/0x130 [ 23.055928][ T282] f2fs_build_segment_manager+0xd2c/0x49b0 [ 23.061561][ T282] f2fs_fill_super+0x6067/0x7d90 [ 23.066422][ T282] mount_bdev+0x262/0x370 [ 23.070596][ T282] f2fs_mount+0x34/0x40 [ 23.074588][ T282] legacy_get_tree+0xf1/0x190 [ 23.079093][ T282] vfs_get_tree+0x88/0x290 [ 23.083349][ T282] do_new_mount+0x2ba/0xb30 [ 23.087707][ T282] path_mount+0x56f/0xcb0 [ 23.091869][ T282] __se_sys_mount+0x2c4/0x3b0 [ 23.096375][ T282] __x64_sys_mount+0xbf/0xd0 [ 23.100795][ T282] do_syscall_64+0x34/0x70 [ 23.105048][ T282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.110770][ T282] [ 23.112945][ T282] The buggy address belongs to the object at ffff88810af59800 [ 23.112945][ T282] which belongs to the cache kmalloc-1k of size 1024 [ 23.126932][ T282] The buggy address is located 960 bytes inside of [ 23.126932][ T282] 1024-byte region [ffff88810af59800, ffff88810af59c00) [ 23.140285][ T282] The buggy address belongs to the page: [ 23.145772][ T282] page:ffffea00042bd600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10af58 [ 23.155841][ T282] head:ffffea00042bd600 order:3 compound_mapcount:0 compound_pincount:0 [ 23.164000][ T282] flags: 0x4000000000010200(slab|head) [ 23.169288][ T282] raw: 4000000000010200 ffffea00042bca00 0000000300000003 ffff888100042f00 [ 23.177703][ T282] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 23.186119][ T282] page dumped because: kasan: bad access detected [ 23.192366][ T282] page_owner tracks the page as allocated [ 23.197932][ T282] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, ts 2043095434, free_ts 0 [ 23.214075][ T282] prep_new_page+0x166/0x180 [ 23.218493][ T282] get_page_from_freelist+0x2d8c/0x2f30 [ 23.223877][ T282] __alloc_pages_nodemask+0x435/0xaf0 [ 23.229083][ T282] new_slab+0x80/0x400 [ 23.233008][ T282] ___slab_alloc+0x302/0x4b0 [ 23.237424][ T282] __slab_alloc+0x63/0xa0 [ 23.241669][ T282] __kmalloc+0x204/0x330 [ 23.245811][ T282] blk_mq_realloc_hw_ctxs+0x435/0x1750 [ 23.251047][ T282] blk_mq_init_allocated_queue+0x3ea/0x1790 [ 23.256783][ T282] blk_mq_init_queue+0x6d/0xd0 [ 23.261372][ T282] scsi_mq_alloc_queue+0x42/0x140 [ 23.266234][ T282] scsi_alloc_sdev+0x642/0x970 [ 23.270834][ T282] scsi_probe_and_add_lun+0x1aa/0x4260 [ 23.276135][ T282] __scsi_scan_target+0x1fb/0xe80 [ 23.280991][ T282] scsi_scan_host_selected+0x334/0x5f0 [ 23.286287][ T282] scsi_scan_host+0x3a8/0x670 [ 23.290800][ T282] page_owner free stack trace missing [ 23.296012][ T282] [ 23.298170][ T282] Memory state around the buggy address: [ 23.303644][ T282] ffff88810af59a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 23.311544][ T282] ffff88810af59b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 23.319444][ T282] >ffff88810af59b80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 23.327513][ T282] ^ [ 23.333504][ T282] ffff88810af59c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 23.341404][ T282] ffff88810af59c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 23.349298][ T282] ================================================================== [ 23.357312][ T282] Disabling lock debugging due to kernel taint [ 23.363489][ T282] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN [ 23.375198][ T282] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 23.383439][ T282] CPU: 1 PID: 282 Comm: syz-executor388 Tainted: G B W 5.10.234-syzkaller-00033-g094fc3778d6b #0 [ 23.394892][ T282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 23.404798][ T282] RIP: 0010:update_sit_entry+0x434/0x1050 [ 23.410344][ T282] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f [ 23.429877][ T282] RSP: 0018:ffffc90000c572b8 EFLAGS: 00010246 [ 23.435776][ T282] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007 [ 23.443591][ T282] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff88810af59bc8 [ 23.451487][ T282] RBP: ffffc90000c57350 R08: ffffffff821fc8af R09: ffffffff821fc4fd [ 23.459475][ T282] R10: 0000000000000003 R11: ffff88810bbd93c0 R12: 0000000000003e00 [ 23.467285][ T282] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000 [ 23.475098][ T282] FS: 0000555594b70380(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 23.483867][ T282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.490283][ T282] CR2: 00007f7b5caa6100 CR3: 000000010a956000 CR4: 00000000003506a0 [ 23.498101][ T282] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.505922][ T282] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.513734][ T282] Call Trace: [ 23.516865][ T282] ? __die_body+0x62/0xb0 [ 23.521014][ T282] ? die_addr+0x9f/0xd0 [ 23.525011][ T282] ? exc_general_protection+0x3ff/0x490 [ 23.530397][ T282] ? asm_exc_general_protection+0x1e/0x30 [ 23.535946][ T282] ? update_sit_entry+0x2d/0x1050 [ 23.540808][ T282] ? update_sit_entry+0x3df/0x1050 [ 23.545839][ T282] ? update_sit_entry+0x434/0x1050 [ 23.550785][ T282] ? update_sit_entry+0x402/0x1050 [ 23.555743][ T282] ? __asan_report_store8_noabort+0x17/0x20 [ 23.561464][ T282] f2fs_allocate_data_block+0x1512/0x3680 [ 23.567021][ T282] ? __kasan_check_write+0x14/0x20 [ 23.571965][ T282] ? _raw_spin_unlock+0x4d/0x70 [ 23.576769][ T282] ? f2fs_free_inode+0x30/0x30 [ 23.581357][ T282] ? f2fs_io_type_to_rw_hint+0x210/0x210 [ 23.586823][ T282] ? f2fs_mark_inode_dirty_sync+0x10d/0x140 [ 23.592554][ T282] ? inc_valid_block_count+0x583/0xb20 [ 23.597847][ T282] __allocate_data_block+0x5a7/0xb10 [ 23.602972][ T282] ? f2fs_map_blocks+0x3e50/0x3e50 [ 23.607916][ T282] f2fs_map_blocks+0x18ef/0x3e50 [ 23.612806][ T282] ? f2fs_do_map_lock+0x280/0x280 [ 23.617761][ T282] ? __kasan_check_write+0x14/0x20 [ 23.622701][ T282] expand_inode_data+0x682/0xc10 [ 23.627473][ T282] ? f2fs_insert_range+0x590/0x590 [ 23.632418][ T282] ? file_update_time+0x34e/0x460 [ 23.637294][ T282] ? file_remove_privs+0x570/0x570 [ 23.642229][ T282] f2fs_fallocate+0x429/0x7e0 [ 23.646739][ T282] vfs_fallocate+0x492/0x570 [ 23.651167][ T282] do_vfs_ioctl+0x1686/0x1a30 [ 23.655696][ T282] ? ioctl_has_perm+0x3f0/0x560 [ 23.660466][ T282] ? __kasan_slab_free+0x11/0x20 [ 23.665248][ T282] ? __x32_compat_sys_ioctl+0x90/0x90 [ 23.670527][ T282] ? has_cap_mac_admin+0x3c0/0x3c0 [ 23.675471][ T282] ? putname+0xe7/0x140 [ 23.679464][ T282] ? selinux_file_ioctl+0x3cc/0x540 [ 23.684496][ T282] ? selinux_file_alloc_security+0x120/0x120 [ 23.690486][ T282] ? has_not_enough_free_secs+0x300/0x970 [ 23.696136][ T282] ? security_file_ioctl+0x84/0xb0 [ 23.701075][ T282] __se_sys_ioctl+0x99/0x190 [ 23.705505][ T282] __x64_sys_ioctl+0x7b/0x90 [ 23.710016][ T282] do_syscall_64+0x34/0x70 [ 23.714278][ T282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 23.719998][ T282] RIP: 0033:0x7f7b5ca290d9 [ 23.724252][ T282] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 23.743694][ T282] RSP: 002b:00007ffdc183fac8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 23.751939][ T282] RAX: ffffffffffffffda RBX: 0000200000000080 RCX: 00007f7b5ca290d9 [ 23.759933][ T282] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005 [ 23.767734][ T282] RBP: 0030656c69662f2e R08: 0000555594b714c0 R09: 0000555594b714c0 [ 23.775553][ T282] R10: 0000555594b714c0 R11: 0000000000000246 R12: 00007ffdc183faf0 [ 23.783358][ T282] R13: 00007ffdc183fd18 R14: 431bde82d7b634db R15: 00007f7b5ca7203b [ 23.791171][ T282] Modules linked in: [ 23.795080][ T282] ---[ end trace 3674aaaf0335f54f ]--- [ 23.800356][ T282] RIP: 0010:update_sit_entry+0x434/0x1050 [ 23.805924][ T282] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f [ 23.825410][ T282] RSP: 0018:ffffc90000c572b8 EFLAGS: 00010246 [ 23.831241][ T282] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007 [ 23.839131][ T282] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff88810af59bc8 [ 23.846909][ T282] RBP: ffffc90000c57350 R08: ffffffff821fc8af R09: ffffffff821fc4fd [ 23.854731][ T282] R10: 0000000000000003 R11: ffff88810bbd93c0 R12: 0000000000003e00 [ 23.862509][ T282] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000 [ 23.870346][ T282] FS: 0000555594b70380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.879085][ T282] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.885516][ T282] CR2: 000055e882cf2038 CR3: 000000010a956000 CR4: 00000000003506b0 [ 23.893308][ T282] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.901222][ T282] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.908969][ T282] Kernel panic - not syncing: Fatal exception [ 23.914913][ T282] Kernel Offset: disabled [ 23.919122][ T282] Rebooting in 86400 seconds..