Warning: Permanently added '10.128.1.155' (ED25519) to the list of known hosts.
2025/06/08 09:21:07 ignoring optional flag "sandboxArg"="0"
2025/06/08 09:21:07 parsed 1 programs
[ 49.333110][ T30] audit: type=1400 audit(1749374468.575:105): avc: denied { unlink } for pid=375 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 49.394423][ T375] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 49.830812][ T30] audit: type=1401 audit(1749374469.065:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 49.909414][ T391] bridge0: port 1(bridge_slave_0) entered blocking state
[ 49.916610][ T391] bridge0: port 1(bridge_slave_0) entered disabled state
[ 49.924765][ T391] device bridge_slave_0 entered promiscuous mode
[ 49.932449][ T391] bridge0: port 2(bridge_slave_1) entered blocking state
[ 49.939478][ T391] bridge0: port 2(bridge_slave_1) entered disabled state
[ 49.946956][ T391] device bridge_slave_1 entered promiscuous mode
[ 49.990109][ T391] bridge0: port 2(bridge_slave_1) entered blocking state
[ 49.997185][ T391] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.004464][ T391] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.011491][ T391] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.029564][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 50.037264][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 50.044516][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 50.054702][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 50.062829][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.069837][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.078306][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 50.086465][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.093498][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.105648][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 50.115529][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 50.129003][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 50.140034][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 50.148386][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 50.155953][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 50.164657][ T391] device veth0_vlan entered promiscuous mode
[ 50.174120][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 50.184346][ T391] device veth1_macvtap entered promiscuous mode
[ 50.193693][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 50.203649][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/06/08 09:21:09 executed programs: 0
[ 50.685247][ T434] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.692628][ T434] bridge0: port 1(bridge_slave_0) entered disabled state
[ 50.699982][ T434] device bridge_slave_0 entered promiscuous mode
[ 50.707136][ T434] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.714203][ T434] bridge0: port 2(bridge_slave_1) entered disabled state
[ 50.721572][ T434] device bridge_slave_1 entered promiscuous mode
[ 50.770377][ T434] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.777564][ T434] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.784831][ T434] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.791856][ T434] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.814212][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 50.822017][ T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 50.829335][ T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 50.838067][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 50.846242][ T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.853286][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.866376][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 50.874552][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.881567][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.893806][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 50.901840][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 50.911158][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 50.919432][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 50.931854][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 50.940207][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 50.955636][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 50.963657][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 50.971592][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 50.979470][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 50.987764][ T434] device veth0_vlan entered promiscuous mode
[ 51.000623][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 51.008817][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 51.017946][ T434] device veth1_macvtap entered promiscuous mode
[ 51.026594][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 51.034378][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 51.042800][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 51.052432][ T45] device bridge_slave_1 left promiscuous mode
[ 51.058571][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 51.066249][ T45] device bridge_slave_0 left promiscuous mode
[ 51.072478][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 51.080362][ T45] device veth1_macvtap left promiscuous mode
[ 51.086401][ T45] device veth0_vlan left promiscuous mode
[ 51.205666][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 51.214052][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 51.335664][ T439] loop2: detected capacity change from 0 to 40427
[ 51.367497][ T439] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 51.385182][ T439] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 51.394745][ T439] F2FS-fs (loop2): invalid crc value
[ 51.401369][ T439] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 51.432322][ T439] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 51.439375][ T439] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 51.447083][ T30] audit: type=1400 audit(1749374470.685:107): avc: denied { mount } for pid=438 comm="syz.2.15" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 51.468894][ T30] audit: type=1400 audit(1749374470.685:108): avc: denied { write } for pid=438 comm="syz.2.15" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 51.490691][ T30] audit: type=1400 audit(1749374470.685:109): avc: denied { add_name } for pid=438 comm="syz.2.15" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 51.499825][ T434] ------------[ cut here ]------------
[ 51.511263][ T30] audit: type=1400 audit(1749374470.685:110): avc: denied { create } for pid=438 comm="syz.2.15" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 51.517296][ T434] WARNING: CPU: 0 PID: 434 at fs/f2fs/inode.c:880 f2fs_evict_inode+0x12b0/0x1560
[ 51.537463][ T30] audit: type=1400 audit(1749374470.685:111): avc: denied { read open } for pid=438 comm="syz.2.15" path="/0/bus/file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 51.546394][ T434] Modules linked in:
[ 51.568245][ T30] audit: type=1400 audit(1749374470.685:112): avc: denied { ioctl } for pid=438 comm="syz.2.15" path="/0/bus/file0" dev="loop2" ino=10 ioctlcmd=0xf501 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 51.571997][ T434] CPU: 0 PID: 434 Comm: syz-executor Not tainted 5.15.185-syzkaller-1080583-ge678c93d43cc #0
[ 51.605671][ T434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 51.615827][ T434] RIP: 0010:f2fs_evict_inode+0x12b0/0x1560
[ 51.621668][ T434] Code: e9 55 f2 ff ff e8 f0 3e 61 ff eb 05 e8 e9 3e 61 ff 4c 8b 74 24 28 48 8b 7c 24 18 e8 ba ef 02 00 e9 bc fc ff ff e8 d0 3e 61 ff <0f> 0b 4c 89 f7 be 08 00 00 00 e8 91 b2 9f ff f0 41 80 0e 04 e9 99
[ 51.641338][ T434] RSP: 0018:ffffc90000a978c0 EFLAGS: 00010293
[ 51.647466][ T434] RAX: ffffffff820767c0 RBX: 1ffff92000152f2c RCX: ffff888116bd3b40
[ 51.655480][ T434] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[ 51.663500][ T434] RBP: ffffc90000a97a30 R08: dffffc0000000000 R09: ffffed1025bc497b
[ 51.671494][ T434] R10: ffffed1025bc497b R11: 1ffff11025bc497a R12: ffff88812de24bd0
[ 51.679696][ T434] R13: dffffc0000000000 R14: ffff88811836c078 R15: 0000000000000002
[ 51.687721][ T434] FS: 0000555594c48500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 51.696703][ T434] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 51.703416][ T434] CR2: 00007f87f8c77000 CR3: 000000012c267000 CR4: 00000000003506a0
[ 51.711421][ T434] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 51.719717][ T434] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 51.727752][ T434] Call Trace:
[ 51.731051][ T434]
[ 51.734022][ T434] ? inode_wait_for_writeback+0x1b0/0x200
[ 51.739771][ T434] ? f2fs_write_inode+0x850/0x850
[ 51.744849][ T434] ? bit_waitqueue+0x30/0x30
[ 51.749450][ T434] ? locks_free_lock_context+0x42/0x70
[ 51.755009][ T434] ? f2fs_write_inode+0x850/0x850
[ 51.760041][ T434] evict+0x485/0x870
[ 51.763972][ T434] ? proc_nr_inodes+0x310/0x310
[ 51.768825][ T434] ? _raw_spin_lock+0x8e/0xe0
[ 51.773564][ T434] ? _raw_spin_unlock+0x4d/0x70
[ 51.778425][ T434] evict_inodes+0x5de/0x650
[ 51.783054][ T434] ? clear_inode+0x150/0x150
[ 51.787663][ T434] generic_shutdown_super+0x96/0x330
[ 51.793146][ T434] kill_block_super+0x7f/0xf0
[ 51.797840][ T434] kill_f2fs_super+0x2e7/0x390
[ 51.802642][ T434] ? radix_tree_delete_item+0x2c8/0x410
[ 51.808197][ T434] ? f2fs_mount+0x40/0x40
[ 51.812568][ T434] ? unregister_shrinker+0x201/0x290
[ 51.817857][ T434] deactivate_locked_super+0xa0/0x100
[ 51.823237][ T434] deactivate_super+0xaf/0xe0
[ 51.827925][ T434] cleanup_mnt+0x446/0x500
[ 51.832389][ T434] __cleanup_mnt+0x19/0x20
[ 51.836815][ T434] task_work_run+0x127/0x190
[ 51.841414][ T434] exit_to_user_mode_loop+0xd0/0xe0
[ 51.846674][ T434] exit_to_user_mode_prepare+0x5a/0xa0
[ 51.852136][ T434] syscall_exit_to_user_mode+0x1a/0x30
[ 51.857633][ T434] do_syscall_64+0x58/0xa0
[ 51.862053][ T434] ? clear_bhb_loop+0x50/0xa0
[ 51.866880][ T434] ? clear_bhb_loop+0x50/0xa0
[ 51.871572][ T434] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 51.877606][ T434] RIP: 0033:0x7f71732e4a47
[ 51.882094][ T434] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 51.901897][ T434] RSP: 002b:00007fffc8fae408 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 51.910372][ T434] RAX: 0000000000000000 RBX: 00007f71733565fc RCX: 00007f71732e4a47
[ 51.918369][ T434] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffc8fae4c0
[ 51.926363][ T434] RBP: 00007fffc8fae4c0 R08: 0000000000000000 R09: 0000000000000000
[ 51.934359][ T434] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffc8faf540
[ 51.943098][ T434] R13: 00007f71733565fc R14: 000000000000c80a R15: 00007fffc8faf580
[ 51.951088][ T434]
[ 51.954132][ T434] ---[ end trace f39ac983dbe5001d ]---
[ 51.992352][ T434] ==================================================================
[ 52.000573][ T434] BUG: KASAN: use-after-free in _raw_spin_lock+0x81/0xe0
[ 52.007592][ T434] Write of size 4 at addr ffff88812de24948 by task syz-executor/434
[ 52.015552][ T434]
[ 52.017876][ T434] CPU: 0 PID: 434 Comm: syz-executor Tainted: G W 5.15.185-syzkaller-1080583-ge678c93d43cc #0
[ 52.029403][ T434] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 52.039448][ T434] Call Trace:
[ 52.042718][ T434]
[ 52.045642][ T434] __dump_stack+0x21/0x30
[ 52.049970][ T434] dump_stack_lvl+0xee/0x150
[ 52.054543][ T434] ? show_regs_print_info+0x20/0x20
[ 52.059730][ T434] ? load_image+0x3a0/0x3a0
[ 52.064222][ T434] ? kvm_sched_clock_read+0x18/0x40
[ 52.069413][ T434] print_address_description+0x7f/0x2c0
[ 52.074950][ T434] ? _raw_spin_lock+0x81/0xe0
[ 52.079612][ T434] kasan_report+0xf1/0x140
[ 52.084031][ T434] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 52.089497][ T434] ? _raw_spin_lock+0x81/0xe0
[ 52.094166][ T434] kasan_check_range+0x280/0x290
[ 52.099095][ T434] __kasan_check_write+0x14/0x20
[ 52.104025][ T434] _raw_spin_lock+0x81/0xe0
[ 52.108521][ T434] ? _raw_spin_trylock_bh+0x130/0x130
[ 52.113883][ T434] ? __kasan_check_write+0x14/0x20
[ 52.118985][ T434] ? _raw_spin_lock+0x8e/0xe0
[ 52.123650][ T434] ? _raw_spin_trylock_bh+0x130/0x130
[ 52.129020][ T434] igrab+0x20/0xa0
[ 52.132734][ T434] f2fs_sync_inode_meta+0x153/0x2a0
[ 52.137922][ T434] f2fs_write_checkpoint+0xa7d/0x1f00
[ 52.143285][ T434] ? __kasan_check_write+0x14/0x20
[ 52.148384][ T434] ? f2fs_get_sectors_written+0x4e0/0x4e0
[ 52.154094][ T434] ? rwsem_write_trylock+0x130/0x300
[ 52.159367][ T434] ? __kasan_check_read+0x11/0x20
[ 52.164397][ T434] ? wb_wait_for_completion+0x1d8/0x270
[ 52.169932][ T434] f2fs_issue_checkpoint+0x2e5/0x470
[ 52.175217][ T434] ? f2fs_destroy_checkpoint_caches+0x30/0x30
[ 52.181273][ T434] ? try_to_writeback_inodes_sb+0xc0/0xc0
[ 52.186998][ T434] f2fs_sync_fs+0x16f/0x2c0
[ 52.191517][ T434] sync_filesystem+0x1cb/0x240
[ 52.196272][ T434] f2fs_quota_off_umount+0x217/0x230
[ 52.201540][ T434] f2fs_put_super+0xb7/0xc00
[ 52.206114][ T434] ? fsnotify_destroy_marks+0x14f/0x400
[ 52.211646][ T434] ? fsnotify_sb_delete+0x471/0x4e0
[ 52.216831][ T434] ? f2fs_drop_inode+0x980/0x980
[ 52.221758][ T434] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 52.227463][ T434] ? clear_inode+0x150/0x150
[ 52.232045][ T434] ? fscrypt_destroy_keyring+0x27f/0x290
[ 52.237666][ T434] ? f2fs_drop_inode+0x980/0x980
[ 52.242590][ T434] generic_shutdown_super+0x151/0x330
[ 52.247954][ T434] kill_block_super+0x7f/0xf0
[ 52.252640][ T434] kill_f2fs_super+0x2e7/0x390
[ 52.257403][ T434] ? radix_tree_delete_item+0x2c8/0x410
[ 52.262934][ T434] ? f2fs_mount+0x40/0x40
[ 52.267252][ T434] ? unregister_shrinker+0x201/0x290
[ 52.272526][ T434] deactivate_locked_super+0xa0/0x100
[ 52.277905][ T434] deactivate_super+0xaf/0xe0
[ 52.282567][ T434] cleanup_mnt+0x446/0x500
[ 52.286972][ T434] __cleanup_mnt+0x19/0x20
[ 52.291374][ T434] task_work_run+0x127/0x190
[ 52.295953][ T434] exit_to_user_mode_loop+0xd0/0xe0
[ 52.301138][ T434] exit_to_user_mode_prepare+0x5a/0xa0
[ 52.306583][ T434] syscall_exit_to_user_mode+0x1a/0x30
[ 52.312026][ T434] do_syscall_64+0x58/0xa0
[ 52.316422][ T434] ? clear_bhb_loop+0x50/0xa0
[ 52.321085][ T434] ? clear_bhb_loop+0x50/0xa0
[ 52.325743][ T434] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 52.331623][ T434] RIP: 0033:0x7f71732e4a47
[ 52.336027][ T434] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 52.355626][ T434] RSP: 002b:00007fffc8fae408 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 52.364036][ T434] RAX: 0000000000000000 RBX: 00007f71733565fc RCX: 00007f71732e4a47
[ 52.371997][ T434] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffc8fae4c0
[ 52.379952][ T434] RBP: 00007fffc8fae4c0 R08: 0000000000000000 R09: 0000000000000000
[ 52.387913][ T434] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffc8faf540
[ 52.395887][ T434] R13: 00007f71733565fc R14: 000000000000c80a R15: 00007fffc8faf580
[ 52.403846][ T434]
[ 52.406850][ T434]
[ 52.409156][ T434] Allocated by task 439:
[ 52.413398][ T434] __kasan_slab_alloc+0xbd/0xf0
[ 52.418243][ T434] slab_post_alloc_hook+0x4f/0x2b0
[ 52.423337][ T434] kmem_cache_alloc+0xf7/0x260
[ 52.428088][ T434] f2fs_alloc_inode+0x26/0x330
[ 52.432832][ T434] new_inode_pseudo+0x62/0x210
[ 52.437580][ T434] new_inode+0x28/0x1e0
[ 52.441717][ T434] f2fs_new_inode+0xd2/0x12b0
[ 52.446383][ T434] f2fs_create+0x178/0x15f0
[ 52.450872][ T434] path_openat+0x11ae/0x2f10
[ 52.455455][ T434] do_filp_open+0x1b3/0x3e0
[ 52.459944][ T434] do_sys_openat2+0x14c/0x7b0
[ 52.464604][ T434] __x64_sys_openat+0x136/0x160
[ 52.469439][ T434] x64_sys_call+0x219/0x9a0
[ 52.473927][ T434] do_syscall_64+0x4c/0xa0
[ 52.478327][ T434] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 52.484206][ T434]
[ 52.486513][ T434] Freed by task 434:
[ 52.490382][ T434] kasan_set_track+0x4a/0x70
[ 52.494961][ T434] kasan_set_free_info+0x23/0x40
[ 52.499884][ T434] ____kasan_slab_free+0x125/0x160
[ 52.504976][ T434] __kasan_slab_free+0x11/0x20
[ 52.509721][ T434] slab_free_freelist_hook+0xc2/0x190
[ 52.515084][ T434] kmem_cache_free+0x100/0x320
[ 52.519830][ T434] f2fs_free_inode+0x24/0x30
[ 52.524401][ T434] i_callback+0x4c/0x70
[ 52.528543][ T434] rcu_do_batch+0x51d/0xba0
[ 52.533033][ T434] rcu_core+0x5e4/0xf80
[ 52.537172][ T434] rcu_core_si+0x9/0x10
[ 52.541313][ T434] handle_softirqs+0x250/0x560
[ 52.546061][ T434] __irq_exit_rcu+0x52/0xf0
[ 52.550549][ T434] irq_exit_rcu+0x9/0x10
[ 52.554777][ T434] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 52.560400][ T434] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 52.566364][ T434]
[ 52.568676][ T434] Last potentially related work creation:
[ 52.574373][ T434] kasan_save_stack+0x3a/0x60
[ 52.579043][ T434] __kasan_record_aux_stack+0xd2/0x100
[ 52.584503][ T434] kasan_record_aux_stack_noalloc+0xb/0x10
[ 52.590307][ T434] call_rcu+0xf6/0xf60
[ 52.594367][ T434] evict+0x7da/0x870
[ 52.598249][ T434] evict_inodes+0x5de/0x650
[ 52.602739][ T434] generic_shutdown_super+0x96/0x330
[ 52.608008][ T434] kill_block_super+0x7f/0xf0
[ 52.612667][ T434] kill_f2fs_super+0x2e7/0x390
[ 52.617418][ T434] deactivate_locked_super+0xa0/0x100
[ 52.622783][ T434] deactivate_super+0xaf/0xe0
[ 52.627447][ T434] cleanup_mnt+0x446/0x500
[ 52.631846][ T434] __cleanup_mnt+0x19/0x20
[ 52.636246][ T434] task_work_run+0x127/0x190
[ 52.640824][ T434] exit_to_user_mode_loop+0xd0/0xe0
[ 52.646005][ T434] exit_to_user_mode_prepare+0x5a/0xa0
[ 52.651449][ T434] syscall_exit_to_user_mode+0x1a/0x30
[ 52.656893][ T434] do_syscall_64+0x58/0xa0
[ 52.661290][ T434] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 52.667168][ T434]
[ 52.669474][ T434] The buggy address belongs to the object at ffff88812de248c0
[ 52.669474][ T434] which belongs to the cache f2fs_inode_cache of size 1424
[ 52.684140][ T434] The buggy address is located 136 bytes inside of
[ 52.684140][ T434] 1424-byte region [ffff88812de248c0, ffff88812de24e50)
[ 52.697494][ T434] The buggy address belongs to the page:
[ 52.703115][ T434] page:ffffea0004b78800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12de20
[ 52.713336][ T434] head:ffffea0004b78800 order:3 compound_mapcount:0 compound_pincount:0
[ 52.721640][ T434] flags: 0x4000000000010200(slab|head|zone=1)
[ 52.727708][ T434] raw: 4000000000010200 0000000000000000 dead000000000122 ffff8881081f7800
[ 52.736273][ T434] raw: 0000000000000000 0000000080150015 00000001ffffffff 0000000000000000
[ 52.744830][ T434] page dumped because: kasan: bad access detected
[ 52.751221][ T434] page_owner tracks the page as allocated
[ 52.756918][ T434] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 439, ts 51447997781, free_ts 0
[ 52.777388][ T434] post_alloc_hook+0x192/0x1b0
[ 52.782144][ T434] prep_new_page+0x1c/0x110
[ 52.786629][ T434] get_page_from_freelist+0x2cc5/0x2d50
[ 52.792158][ T434] __alloc_pages+0x18f/0x440
[ 52.796731][ T434] new_slab+0xa1/0x4d0
[ 52.800784][ T434] ___slab_alloc+0x381/0x810
[ 52.805358][ T434] __slab_alloc+0x49/0x90
[ 52.809683][ T434] kmem_cache_alloc+0x138/0x260
[ 52.814517][ T434] f2fs_alloc_inode+0x26/0x330
[ 52.819268][ T434] new_inode_pseudo+0x62/0x210
[ 52.824021][ T434] new_inode+0x28/0x1e0
[ 52.828161][ T434] f2fs_new_inode+0xd2/0x12b0
[ 52.832822][ T434] f2fs_create+0x178/0x15f0
[ 52.837308][ T434] path_openat+0x11ae/0x2f10
[ 52.841882][ T434] do_filp_open+0x1b3/0x3e0
[ 52.846370][ T434] do_sys_openat2+0x14c/0x7b0
[ 52.851037][ T434] page_owner free stack trace missing
[ 52.856388][ T434]
[ 52.858697][ T434] Memory state around the buggy address:
[ 52.864322][ T434] ffff88812de24800: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 52.872370][ T434] ffff88812de24880: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 52.880415][ T434] >ffff88812de24900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 52.888492][ T434] ^
[ 52.894890][ T434] ffff88812de24980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 52.902933][ T434] ffff88812de24a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 52.910971][ T434] ==================================================================
[ 52.919012][ T434] Disabling lock debugging due to kernel taint
[ 52.942372][ T30] audit: type=1400 audit(1749374472.175:113): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 52.977952][ T30] audit: type=1400 audit(1749374472.185:114): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1