DUID 00:04:52:37:01:18:ef:18:23:1a:50:cb:d1:49:65:cf:57:ac
no interfaces have a carrier
[   39.808114][ T3915] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.840755][ T3915] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.84' (ED25519) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
syzkaller login: [   68.659444][ T4250] loop1: detected capacity change from 0 to 128
[   68.681011][ T4251] loop0: detected capacity change from 0 to 128
[   68.684538][ T4256] loop3: detected capacity change from 0 to 128
[   68.695203][ T4258] loop2: detected capacity change from 0 to 128
[   68.707704][ T4250] VFS: Found a Xenix FS (block size = 1024) on device loop1
[   68.716214][ T4251] VFS: Found a Xenix FS (block size = 1024) on device loop0
[   68.719368][ T4257] loop4: detected capacity change from 0 to 128
[   68.732088][ T4258] VFS: Found a Xenix FS (block size = 1024) on device loop2
[   68.735095][ T4250] unable to read i-node block
[   68.747030][ T4256] VFS: Found a Xenix FS (block size = 1024) on device loop3
executing program
[   68.754734][ T4257] VFS: Found a Xenix FS (block size = 1024) on device loop4
[   68.762480][ T4250] sysv_new_block: new block 224 is not in data zone
[   68.771045][ T4250] unable to read i-node block
[   68.777083][ T4250] unable to read i-node block
[   68.782403][ T4250] sysv_free_inode: unable to read inode block on device loop1
[   68.795170][ T4251] ==================================================================
executing program
[   68.803300][ T4251] BUG: KASAN: use-after-free in sysv_new_inode+0x107e/0x1210
[   68.810725][ T4251] Read of size 2 at addr ffff88806e1321ce by task syz-executor256/4251
[   68.819075][ T4251] 
[   68.821444][ T4251] CPU: 1 PID: 4251 Comm: syz-executor256 Not tainted 6.1.126-syzkaller #0
[   68.829959][ T4251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   68.840048][ T4251] Call Trace:
[   68.843442][ T4251]  <TASK>
[   68.846513][ T4251]  dump_stack_lvl+0x1e3/0x2cb
[   68.851232][ T4251]  ? nf_tcp_handle_invalid+0x642/0x642
executing program
[   68.856732][ T4251]  ? panic+0x764/0x764
[   68.860842][ T4251]  ? _printk+0xd1/0x111
[   68.865021][ T4251]  ? __virt_addr_valid+0x17f/0x530
[   68.870158][ T4251]  ? __virt_addr_valid+0x17f/0x530
[   68.875329][ T4251]  print_report+0x15f/0x4f0
[   68.879860][ T4251]  ? __virt_addr_valid+0x17f/0x530
[   68.884997][ T4251]  ? __virt_addr_valid+0x17f/0x530
[   68.890137][ T4251]  ? __virt_addr_valid+0x45b/0x530
[   68.895278][ T4251]  ? __phys_addr+0xb6/0x170
[   68.899993][ T4251]  ? sysv_new_inode+0x107e/0x1210
[   68.905057][ T4251]  kasan_report+0x136/0x160
executing program
[   68.909684][ T4251]  ? sysv_new_inode+0x107e/0x1210
[   68.914864][ T4251]  sysv_new_inode+0x107e/0x1210
[   68.919747][ T4251]  ? from_kgid+0x1a3/0x730
[   68.924285][ T4251]  ? make_kgid+0x6f0/0x6f0
[   68.928734][ T4251]  ? sysv_free_inode+0x840/0x840
[   68.933782][ T4251]  ? generic_permission+0x27c/0x4f0
[   68.938979][ T4251]  sysv_symlink+0x9b/0x180
[   68.943591][ T4251]  vfs_symlink+0x247/0x3d0
[   68.948475][ T4251]  do_symlinkat+0x21e/0x390
[   68.953002][ T4251]  ? __check_object_size+0x4dd/0xa30
[   68.958296][ T4251]  ? vfs_symlink+0x3d0/0x3d0
[   68.962902][ T4251]  ? getname_flags+0x1f9/0x4f0
[   68.967656][ T4251]  __x64_sys_symlinkat+0x95/0xa0
[   68.972674][ T4251]  do_syscall_64+0x3b/0xb0
[   68.977083][ T4251]  ? clear_bhb_loop+0x45/0xa0
[   68.981747][ T4251]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   68.987631][ T4251] RIP: 0033:0x7f5c159da839
[   68.992053][ T4251] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   69.011661][ T4251] RSP: 002b:00007f5c15997218 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[   69.020072][ T4251] RAX: ffffffffffffffda RBX: 00007f5c15a6b6c8 RCX: 00007f5c159da839
[   69.028063][ T4251] RDX: 0000000020000340 RSI: 0000000000000004 RDI: 0000000020000440
[   69.036067][ T4251] RBP: 00007f5c15a6b6c0 R08: 0000000000000000 R09: 0000000000000000
[   69.044030][ T4251] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5c15a37f70
[   69.051994][ T4251] R13: 00007f5c15a2e0e0 R14: 00007f5c15a2e088 R15: 00007f5c15a2e07e
[   69.059962][ T4251]  </TASK>
[   69.062976][ T4251] 
[   69.065287][ T4251] The buggy address belongs to the physical page:
[   69.071724][ T4251] page:ffffea0001b84c80 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6e132
[   69.081869][ T4251] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   69.088995][ T4251] raw: 00fff00000000000 ffffea0001b84cc8 ffffea0001b84c48 0000000000000000
[   69.097566][ T4251] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   69.106138][ T4251] page dumped because: kasan: bad access detected
[   69.112571][ T4251] page_owner tracks the page as freed
[   69.118050][ T4251] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 4234, tgid 4234 (sshd), ts 61922261166, free_ts 61955565874
[   69.136122][ T4251]  post_alloc_hook+0x18d/0x1b0
[   69.140884][ T4251]  get_page_from_freelist+0x3731/0x38d0
[   69.146422][ T4251]  __alloc_pages+0x28d/0x770
[   69.151002][ T4251]  __folio_alloc+0xf/0x30
[   69.155521][ T4251]  vma_alloc_folio+0x486/0x990
[   69.160289][ T4251]  handle_mm_fault+0x2e8e/0x5340
[   69.165211][ T4251]  exc_page_fault+0x26f/0x620
[   69.169894][ T4251]  asm_exc_page_fault+0x22/0x30
[   69.174737][ T4251] page last free stack trace:
[   69.179430][ T4251]  free_unref_page_prepare+0x12a6/0x15b0
[   69.185047][ T4251]  free_unref_page_list+0x663/0x900
[   69.190230][ T4251]  release_pages+0x24c4/0x27a0
[   69.194978][ T4251]  tlb_flush_mmu+0xfc/0x210
[   69.199466][ T4251]  tlb_finish_mmu+0xce/0x1f0
[   69.204127][ T4251]  unmap_region+0x29f/0x2f0
[   69.208632][ T4251]  do_mas_align_munmap+0xef5/0x15a0
[   69.213869][ T4251]  do_mas_munmap+0x246/0x2b0
[   69.218470][ T4251]  __vm_munmap+0x268/0x370
[   69.222879][ T4251]  __x64_sys_munmap+0x5c/0x70
[   69.227563][ T4251]  do_syscall_64+0x3b/0xb0
[   69.231970][ T4251]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   69.237874][ T4251] 
[   69.240189][ T4251] Memory state around the buggy address:
[   69.245975][ T4251]  ffff88806e132080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.254399][ T4251]  ffff88806e132100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.262631][ T4251] >ffff88806e132180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.271425][ T4251]                                               ^
[   69.278271][ T4251]  ffff88806e132200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.286316][ T4251]  ffff88806e132280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   69.294360][ T4251] ==================================================================
[   69.333719][ T4251] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   69.341141][ T4251] CPU: 0 PID: 4251 Comm: syz-executor256 Not tainted 6.1.126-syzkaller #0
[   69.349669][ T4251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   69.360021][ T4251] Call Trace:
[   69.363401][ T4251]  <TASK>
[   69.366559][ T4251]  dump_stack_lvl+0x1e3/0x2cb
[   69.371361][ T4251]  ? nf_tcp_handle_invalid+0x642/0x642
[   69.376864][ T4251]  ? panic+0x764/0x764
[   69.380965][ T4251]  ? preempt_schedule_common+0xa6/0xd0
[   69.386559][ T4251]  ? vscnprintf+0x59/0x80
[   69.390967][ T4251]  panic+0x318/0x764
[   69.394977][ T4251]  ? check_panic_on_warn+0x1d/0xa0
[   69.400226][ T4251]  ? memcpy_page_flushcache+0xfc/0xfc
[   69.405712][ T4251]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   69.411729][ T4251]  ? _raw_spin_unlock+0x40/0x40
[   69.416605][ T4251]  ? print_report+0x4a3/0x4f0
[   69.421370][ T4251]  check_panic_on_warn+0x7e/0xa0
[   69.426335][ T4251]  ? sysv_new_inode+0x107e/0x1210
[   69.431469][ T4251]  end_report+0x66/0x110
[   69.435829][ T4251]  kasan_report+0x143/0x160
[   69.440355][ T4251]  ? sysv_new_inode+0x107e/0x1210
[   69.445952][ T4251]  sysv_new_inode+0x107e/0x1210
[   69.450823][ T4251]  ? from_kgid+0x1a3/0x730
[   69.455433][ T4251]  ? make_kgid+0x6f0/0x6f0
[   69.459864][ T4251]  ? sysv_free_inode+0x840/0x840
[   69.464893][ T4251]  ? generic_permission+0x27c/0x4f0
[   69.470172][ T4251]  sysv_symlink+0x9b/0x180
[   69.474657][ T4251]  vfs_symlink+0x247/0x3d0
[   69.479077][ T4251]  do_symlinkat+0x21e/0x390
[   69.483571][ T4251]  ? __check_object_size+0x4dd/0xa30
[   69.488842][ T4251]  ? vfs_symlink+0x3d0/0x3d0
[   69.493418][ T4251]  ? getname_flags+0x1f9/0x4f0
[   69.498178][ T4251]  __x64_sys_symlinkat+0x95/0xa0
[   69.503132][ T4251]  do_syscall_64+0x3b/0xb0
[   69.507559][ T4251]  ? clear_bhb_loop+0x45/0xa0
[   69.512316][ T4251]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   69.518296][ T4251] RIP: 0033:0x7f5c159da839
[   69.522748][ T4251] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   69.542436][ T4251] RSP: 002b:00007f5c15997218 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[   69.550855][ T4251] RAX: ffffffffffffffda RBX: 00007f5c15a6b6c8 RCX: 00007f5c159da839
[   69.558827][ T4251] RDX: 0000000020000340 RSI: 0000000000000004 RDI: 0000000020000440
[   69.566824][ T4251] RBP: 00007f5c15a6b6c0 R08: 0000000000000000 R09: 0000000000000000
[   69.574887][ T4251] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5c15a37f70
[   69.582842][ T4251] R13: 00007f5c15a2e0e0 R14: 00007f5c15a2e088 R15: 00007f5c15a2e07e
[   69.590815][ T4251]  </TASK>
[   69.594451][ T4251] Kernel Offset: disabled
[   69.598771][ T4251] Rebooting in 86400 seconds..