Warning: Permanently added '10.128.1.45' (ED25519) to the list of known hosts.
2025/09/05 04:35:51 ignoring optional flag "type"="gce"
2025/09/05 04:35:51 parsed 1 programs
[   45.598179][   T30] kauditd_printk_skb: 18 callbacks suppressed
[   45.598197][   T30] audit: type=1400 audit(1757046951.720:92): avc:  denied  { unlink } for  pid=327 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2025/09/05 04:35:51 executed programs: 0
[   45.674068][  T327] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.736083][  T334] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.743310][  T334] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.751020][  T334] device bridge_slave_0 entered promiscuous mode
[   45.758142][  T334] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.765272][  T334] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.772788][  T334] device bridge_slave_1 entered promiscuous mode
[   45.824260][  T334] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.831727][  T334] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.839072][  T334] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.846280][  T334] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.865487][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.873023][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.881191][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   45.888901][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   45.899150][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.907698][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.914753][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.923860][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.932620][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.939830][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.952298][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.962104][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.976728][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.989393][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.997646][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   46.005186][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   46.013877][  T334] device veth0_vlan entered promiscuous mode
[   46.024634][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.034268][  T334] device veth1_macvtap entered promiscuous mode
[   46.043830][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.053843][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.078171][  T345] loop0: detected capacity change from 0 to 512
[   46.088395][   T30] audit: type=1400 audit(1757046952.210:93): avc:  denied  { mounton } for  pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1" dev="sda1" ino=2035 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   46.130624][  T345] EXT4-fs (loop0): 1 orphan inode deleted
[   46.136576][  T345] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   46.148070][   T30] audit: type=1400 audit(1757046952.270:94): avc:  denied  { mount } for  pid=344 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   46.148076][  T345] ext4 filesystem being mounted at /root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   46.192781][   T30] audit: type=1400 audit(1757046952.300:95): avc:  denied  { write } for  pid=344 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   46.215507][   T30] audit: type=1400 audit(1757046952.300:96): avc:  denied  { add_name } for  pid=344 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   46.238188][   T30] audit: type=1400 audit(1757046952.300:97): avc:  denied  { create } for  pid=344 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.238338][   T10] ==================================================================
[   46.259069][   T30] audit: type=1400 audit(1757046952.300:98): avc:  denied  { read write open } for  pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.268161][   T10] BUG: KASAN: use-after-free in ext4_find_extent+0xbeb/0xe20
[   46.268228][   T10] Read of size 4 at addr ffff8881244cf090 by task kworker/u4:1/10
[   46.297368][   T30] audit: type=1400 audit(1757046952.300:99): avc:  denied  { map } for  pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.304526][   T10] 
[   46.304543][   T10] CPU: 0 PID: 10 Comm: kworker/u4:1 Not tainted syzkaller #0
[   46.312708][   T30] audit: type=1400 audit(1757046952.300:100): avc:  denied  { execute } for  pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.340331][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.340348][   T10] Workqueue: writeback wb_workfn (flush-7:0)
[   46.340402][   T10] Call Trace:
[   46.340408][   T10]  <TASK>
[   46.340422][   T10]  __dump_stack+0x21/0x30
[   46.343096][   T30] audit: type=1400 audit(1757046952.300:101): avc:  denied  { mounton } for  pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir1324825215/syzkaller.jur5NN/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.350385][   T10]  dump_stack_lvl+0xee/0x150
[   46.350418][   T10]  ? show_regs_print_info+0x20/0x20
[   46.448075][   T10]  ? load_image+0x3a0/0x3a0
[   46.452676][   T10]  print_address_description+0x7f/0x2c0
[   46.458231][   T10]  ? ext4_find_extent+0xbeb/0xe20
[   46.463276][   T10]  kasan_report+0xf1/0x140
[   46.467713][   T10]  ? __read_extent_tree_block+0x1e8/0x790
[   46.473517][   T10]  ? ext4_find_extent+0xbeb/0xe20
[   46.478540][   T10]  __asan_report_load4_noabort+0x14/0x20
[   46.484409][   T10]  ext4_find_extent+0xbeb/0xe20
[   46.489268][   T10]  ext4_ext_map_blocks+0x1de/0x6280
[   46.494472][   T10]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[   46.500381][   T10]  ? __stack_depot_save+0x442/0x480
[   46.505670][   T10]  ? __kasan_slab_alloc+0xcf/0xf0
[   46.510801][   T10]  ? __kasan_slab_alloc+0xbd/0xf0
[   46.515829][   T10]  ? slab_post_alloc_hook+0x4f/0x2b0
[   46.521460][   T10]  ? kmem_cache_alloc+0xf7/0x260
[   46.526507][   T10]  ? ext4_alloc_io_end_vec+0x2a/0x160
[   46.532185][   T10]  ? ext4_writepages+0xec8/0x2f90
[   46.537221][   T10]  ? do_writepages+0x48a/0x6c0
[   46.542173][   T10]  ? wb_workfn+0x38f/0xe20
[   46.546611][   T10]  ? process_one_work+0x6be/0xba0
[   46.551743][   T10]  ? worker_thread+0xa59/0x1200
[   46.557204][   T10]  ? ext4_ext_release+0x10/0x10
[   46.562231][   T10]  ? ext4_es_lookup_extent+0x32d/0x8c0
[   46.567868][   T10]  ext4_map_blocks+0x97b/0x1b20
[   46.572835][   T10]  ? slab_post_alloc_hook+0x6d/0x2b0
[   46.578246][   T10]  ? should_failslab+0x9/0x20
[   46.583153][   T10]  ? ext4_issue_zeroout+0x250/0x250
[   46.588544][   T10]  ? ext4_inode_journal_mode+0x19a/0x480
[   46.594481][   T10]  ext4_writepages+0x11e7/0x2f90
[   46.599613][   T10]  ? __kasan_check_read+0x11/0x20
[   46.604787][   T10]  ? mark_page_accessed+0x3b6/0x8d0
[   46.609996][   T10]  ? __activate_page+0xd40/0xd40
[   46.614956][   T10]  ? ext4_readpage+0x220/0x220
[   46.619881][   T10]  ? memcpy+0x56/0x70
[   46.624322][   T10]  ? copy_page_from_iter_atomic+0x784/0x1350
[   46.630499][   T10]  ? __set_page_dirty_no_writeback+0xff/0x130
[   46.636665][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   46.642303][   T10]  ? update_load_avg+0x410/0x1110
[   46.647367][   T10]  ? ext4_readpage+0x220/0x220
[   46.652315][   T10]  do_writepages+0x48a/0x6c0
[   46.657007][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   46.662645][   T10]  ? update_load_avg+0x410/0x1110
[   46.667947][   T10]  ? __writepage+0x130/0x130
[   46.672542][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   46.678269][   T10]  ? __kasan_check_write+0x14/0x20
[   46.683737][   T10]  ? _raw_spin_lock+0x8e/0xe0
[   46.688688][   T10]  __writeback_single_inode+0xd5/0x9c0
[   46.694176][   T10]  ? wbc_attach_and_unlock_inode+0x194/0x5f0
[   46.700280][   T10]  writeback_sb_inodes+0x9c0/0x1590
[   46.705795][   T10]  ? queue_io+0x4c0/0x4c0
[   46.710150][   T10]  ? __kasan_check_read+0x11/0x20
[   46.715179][   T10]  ? queue_io+0x382/0x4c0
[   46.719612][   T10]  wb_writeback+0x3f1/0x980
[   46.724130][   T10]  ? inode_cgwb_move_to_attached+0x3e0/0x3e0
[   46.730211][   T10]  ? set_worker_desc+0x155/0x1c0
[   46.735513][   T10]  ? __kasan_check_write+0x14/0x20
[   46.740805][   T10]  wb_workfn+0x38f/0xe20
[   46.745269][   T10]  ? inode_wait_for_writeback+0x200/0x200
[   46.751332][   T10]  ? compat_start_thread+0x20/0x20
[   46.756550][   T10]  ? _raw_spin_unlock+0x4d/0x70
[   46.761432][   T10]  ? finish_task_switch+0x16b/0x780
[   46.766983][   T10]  ? __switch_to_asm+0x3a/0x60
[   46.772016][   T10]  ? __schedule+0xb76/0x14c0
[   46.776716][   T10]  process_one_work+0x6be/0xba0
[   46.781832][   T10]  worker_thread+0xa59/0x1200
[   46.786710][   T10]  ? __kthread_parkme+0xac/0x200
[   46.791943][   T10]  kthread+0x411/0x500
[   46.796173][   T10]  ? worker_clr_flags+0x190/0x190
[   46.801392][   T10]  ? kthread_blkcg+0xd0/0xd0
[   46.805991][   T10]  ret_from_fork+0x1f/0x30
[   46.810506][   T10]  </TASK>
[   46.813547][   T10] 
[   46.815878][   T10] The buggy address belongs to the page:
[   46.821531][   T10] page:ffffea00049133c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x1244cf
[   46.831887][   T10] flags: 0x4000000000000000(zone=1)
[   46.837128][   T10] raw: 4000000000000000 ffffea0004913408 ffffea0004912088 0000000000000000
[   46.845727][   T10] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   46.854324][   T10] page dumped because: kasan: bad access detected
[   46.860915][   T10] page_owner info is not present (never set?)
[   46.866986][   T10] 
[   46.869327][   T10] Memory state around the buggy address:
[   46.875308][   T10]  ffff8881244cef80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   46.883563][   T10]  ffff8881244cf000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   46.891736][   T10] >ffff8881244cf080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   46.899909][   T10]                          ^
[   46.904691][   T10]  ffff8881244cf100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   46.912956][   T10]  ffff8881244cf180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   46.921244][   T10] ==================================================================
[   46.929314][   T10] Disabling lock debugging due to kernel taint
[   46.938147][   T10] ------------[ cut here ]------------
[   46.944579][   T10] kernel BUG at fs/ext4/inode.c:2433!
[   46.950856][   T10] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   46.957339][   T10] CPU: 1 PID: 10 Comm: kworker/u4:1 Tainted: G    B             syzkaller #0
[   46.966528][   T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   46.976770][   T10] Workqueue: writeback wb_workfn (flush-7:0)
[   46.982772][   T10] RIP: 0010:ext4_writepages+0x2eed/0x2f90
[   46.988530][   T10] Code: 00 74 08 48 89 df e8 22 01 ce ff 48 8b 3b 48 8b 74 24 28 48 8b 54 24 30 44 89 e9 45 89 f0 e8 6a 9b 07 00 eb 51 e8 a3 88 8f ff <0f> 0b e8 9c 88 8f ff eb 2f e8 95 88 8f ff eb 5f e8 8e 88 8f ff 31
[   47.008616][   T10] RSP: 0018:ffffc900000a7100 EFLAGS: 00010293
[   47.014696][   T10] RAX: ffffffff81d92e4d RBX: ffff88810cc43018 RCX: ffff8881002713c0
[   47.023121][   T10] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   47.031337][   T10] RBP: ffffc900000a7470 R08: dffffc0000000000 R09: ffffed10219885fc
[   47.039335][   T10] R10: ffffed10219885fc R11: 1ffff110219885fb R12: dffffc0000000000
[   47.047420][   T10] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.055391][   T10] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   47.064498][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   47.071492][   T10] CR2: 0000000020009000 CR3: 000000000660f000 CR4: 00000000003506a0
[   47.080003][   T10] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   47.088149][   T10] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   47.096465][   T10] Call Trace:
[   47.099757][   T10]  <TASK>
[   47.102904][   T10]  ? __kasan_check_read+0x11/0x20
[   47.108217][   T10]  ? mark_page_accessed+0x3b6/0x8d0
[   47.113570][   T10]  ? __activate_page+0xd40/0xd40
[   47.118618][   T10]  ? ext4_readpage+0x220/0x220
[   47.123415][   T10]  ? memcpy+0x56/0x70
[   47.128232][   T10]  ? copy_page_from_iter_atomic+0x784/0x1350
[   47.134514][   T10]  ? __set_page_dirty_no_writeback+0xff/0x130
[   47.140622][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   47.146563][   T10]  ? update_load_avg+0x410/0x1110
[   47.151609][   T10]  ? ext4_readpage+0x220/0x220
[   47.156559][   T10]  do_writepages+0x48a/0x6c0
[   47.161154][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   47.166796][   T10]  ? update_load_avg+0x410/0x1110
[   47.172136][   T10]  ? __writepage+0x130/0x130
[   47.176731][   T10]  ? __update_load_avg_cfs_rq+0xaf/0x2f0
[   47.182375][   T10]  ? __kasan_check_write+0x14/0x20
[   47.187502][   T10]  ? _raw_spin_lock+0x8e/0xe0
[   47.192357][   T10]  __writeback_single_inode+0xd5/0x9c0
[   47.197906][   T10]  ? wbc_attach_and_unlock_inode+0x194/0x5f0
[   47.204103][   T10]  writeback_sb_inodes+0x9c0/0x1590
[   47.209430][   T10]  ? queue_io+0x4c0/0x4c0
[   47.214200][   T10]  ? __kasan_check_read+0x11/0x20
[   47.219557][   T10]  ? queue_io+0x382/0x4c0
[   47.224372][   T10]  wb_writeback+0x3f1/0x980
[   47.229378][   T10]  ? inode_cgwb_move_to_attached+0x3e0/0x3e0
[   47.235605][   T10]  ? set_worker_desc+0x155/0x1c0
[   47.240747][   T10]  ? __kasan_check_write+0x14/0x20
[   47.246043][   T10]  wb_workfn+0x38f/0xe20
[   47.250316][   T10]  ? inode_wait_for_writeback+0x200/0x200
[   47.256468][   T10]  ? compat_start_thread+0x20/0x20
[   47.261816][   T10]  ? _raw_spin_unlock+0x4d/0x70
[   47.266904][   T10]  ? finish_task_switch+0x16b/0x780
[   47.272127][   T10]  ? __switch_to_asm+0x3a/0x60
[   47.277170][   T10]  ? __schedule+0xb76/0x14c0
[   47.281886][   T10]  process_one_work+0x6be/0xba0
[   47.286838][   T10]  worker_thread+0xa59/0x1200
[   47.292278][   T10]  ? __kthread_parkme+0xac/0x200
[   47.297574][   T10]  kthread+0x411/0x500
[   47.302133][   T10]  ? worker_clr_flags+0x190/0x190
[   47.307714][   T10]  ? kthread_blkcg+0xd0/0xd0
[   47.312886][   T10]  ret_from_fork+0x1f/0x30
[   47.317428][   T10]  </TASK>
[   47.320474][   T10] Modules linked in:
[   47.327974][   T10] ---[ end trace 01aaf3ddf5825729 ]---
[   47.333687][   T10] RIP: 0010:ext4_writepages+0x2eed/0x2f90
[   47.339640][   T10] Code: 00 74 08 48 89 df e8 22 01 ce ff 48 8b 3b 48 8b 74 24 28 48 8b 54 24 30 44 89 e9 45 89 f0 e8 6a 9b 07 00 eb 51 e8 a3 88 8f ff <0f> 0b e8 9c 88 8f ff eb 2f e8 95 88 8f ff eb 5f e8 8e 88 8f ff 31
[   47.359857][   T10] RSP: 0018:ffffc900000a7100 EFLAGS: 00010293
[   47.366160][   T10] RAX: ffffffff81d92e4d RBX: ffff88810cc43018 RCX: ffff8881002713c0
[   47.374655][   T10] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   47.383156][   T10] RBP: ffffc900000a7470 R08: dffffc0000000000 R09: ffffed10219885fc
[   47.391373][   T10] R10: ffffed10219885fc R11: 1ffff110219885fb R12: dffffc0000000000
[   47.399497][   T10] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.407786][   T10] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   47.416856][   T10] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   47.423824][   T10] CR2: 0000555562356818 CR3: 000000010d1fb000 CR4: 00000000003506b0
[   47.432111][   T10] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   47.440169][   T10] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   47.448327][   T10] Kernel panic - not syncing: Fatal exception
[   47.455003][   T10] Kernel Offset: disabled
[   47.459343][   T10] Rebooting in 86400 seconds..