Warning: Permanently added '10.128.1.123' (ED25519) to the list of known hosts.
2024/03/21 02:30:18 ignoring optional flag "sandboxArg"="0"
2024/03/21 02:30:18 parsed 1 programs
[ 42.155745][ T28] audit: type=1400 audit(1710988218.289:156): avc: denied { mounton } for pid=342 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 42.181173][ T28] audit: type=1400 audit(1710988218.299:157): avc: denied { mount } for pid=342 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
2024/03/21 02:30:18 executed programs: 0
[ 42.222754][ T28] audit: type=1400 audit(1710988218.359:158): avc: denied { unlink } for pid=342 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 42.253177][ T342] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 42.314282][ T348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.321130][ T348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 42.328685][ T348] device bridge_slave_0 entered promiscuous mode
[ 42.335627][ T348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.342743][ T348] bridge0: port 2(bridge_slave_1) entered disabled state
[ 42.350205][ T348] device bridge_slave_1 entered promiscuous mode
[ 42.396489][ T28] audit: type=1400 audit(1710988218.529:159): avc: denied { write } for pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 42.402781][ T348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.416961][ T28] audit: type=1400 audit(1710988218.529:160): avc: denied { read } for pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 42.423774][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 42.423875][ T348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.458552][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 42.479471][ T37] bridge0: port 1(bridge_slave_0) entered disabled state
[ 42.486602][ T37] bridge0: port 2(bridge_slave_1) entered disabled state
[ 42.494651][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 42.502668][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 42.511662][ T59] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 42.520174][ T59] bridge0: port 1(bridge_slave_0) entered blocking state
[ 42.527547][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 42.545880][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 42.554212][ T19] bridge0: port 2(bridge_slave_1) entered blocking state
[ 42.561061][ T19] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 42.569681][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 42.577890][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 42.591585][ T348] device veth0_vlan entered promiscuous mode
[ 42.598374][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 42.606855][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 42.615017][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 42.622490][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 42.634113][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 42.643137][ T348] device veth1_macvtap entered promiscuous mode
[ 42.653410][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 42.666739][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 42.678441][ T28] audit: type=1400 audit(1710988218.819:161): avc: denied { mounton } for pid=348 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=370 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 42.712902][ T354] loop0: detected capacity change from 0 to 512
[ 42.719621][ T28] audit: type=1400 audit(1710988218.849:162): avc: denied { mounton } for pid=353 comm="syz-executor.0" path="/root/syzkaller-testdir862011964/syzkaller.UsHH6R/0/file1" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 42.755231][ T354] EXT4-fs (loop0): 1 orphan inode deleted
[ 42.761161][ T354] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 42.770451][ T28] audit: type=1400 audit(1710988218.899:163): avc: denied { mount } for pid=353 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 42.772549][ T354] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/0/file1 supports timestamps until 2038 (0x7fffffff)
[ 42.815963][ T28] audit: type=1400 audit(1710988218.949:164): avc: denied { write } for pid=353 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 42.838736][ T28] audit: type=1400 audit(1710988218.949:165): avc: denied { add_name } for pid=353 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 42.861749][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 42.876015][ T8] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 42.886384][ T8] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:0: mark_inode_dirty error
[ 42.898434][ T8] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 42.911357][ T8] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 42.911357][ T8]
[ 42.921361][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 42.937187][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 42.979697][ T361] loop0: detected capacity change from 0 to 512
[ 42.994720][ T361] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.000326][ T361] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.010581][ T361] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/1/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.043938][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.058212][ T8] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 43.068249][ T8] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:0: mark_inode_dirty error
[ 43.080255][ T8] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 43.093390][ T8] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 43.093390][ T8]
[ 43.103429][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.119163][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 43.160055][ T366] loop0: detected capacity change from 0 to 512
[ 43.174251][ T366] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.180040][ T366] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.189526][ T366] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/2/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.221398][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.235104][ T8] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 43.244897][ T8] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:0: mark_inode_dirty error
[ 43.256787][ T8] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 43.269198][ T8] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 43.269198][ T8]
[ 43.279921][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.295845][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 43.335379][ T370] loop0: detected capacity change from 0 to 512
[ 43.354397][ T370] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.360218][ T370] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.369908][ T370] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/3/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.405276][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.419231][ T8] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 43.429140][ T8] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:0: mark_inode_dirty error
[ 43.441250][ T8] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 43.454681][ T8] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 43.454681][ T8]
[ 43.466810][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.484441][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 43.522059][ T374] loop0: detected capacity change from 0 to 512
[ 43.535971][ T374] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.541665][ T374] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.550817][ T374] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/4/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.585169][ T10] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:1: Invalid inode table block 790638693 in block_group 0
[ 43.599226][ T10] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 43.608597][ T10] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:1: mark_inode_dirty error
[ 43.620274][ T10] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 43.632679][ T10] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 43.632679][ T10]
[ 43.642519][ T10] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:1: Invalid inode table block 790638693 in block_group 0
[ 43.657958][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 43.691764][ T378] loop0: detected capacity change from 0 to 512
[ 43.705468][ T378] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.711183][ T378] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.720339][ T378] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/5/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.760285][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.774544][ T8] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 43.784318][ T8] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm kworker/u4:0: mark_inode_dirty error
[ 43.796423][ T8] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 0 with max blocks 16 with error 117
[ 43.808687][ T8] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 43.808687][ T8]
[ 43.820137][ T8] EXT4-fs error (device loop0): __ext4_get_inode_loc:4497: comm kworker/u4:0: Invalid inode table block 790638693 in block_group 0
[ 43.835579][ T348] EXT4-fs (loop0): unmounting filesystem.
[ 43.854952][ T384] loop0: detected capacity change from 0 to 512
[ 43.874325][ T384] EXT4-fs (loop0): 1 orphan inode deleted
[ 43.879968][ T384] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 43.888881][ T384] ext4 filesystem being mounted at /root/syzkaller-testdir862011964/syzkaller.UsHH6R/6/file1 supports timestamps until 2038 (0x7fffffff)
[ 43.915659][ T8] ==================================================================
[ 43.923663][ T8] BUG: KASAN: use-after-free in ext4_find_extent+0xbab/0xdb0
[ 43.930954][ T8] Read of size 4 at addr ffff888126a544cc by task kworker/u4:0/8
[ 43.938498][ T8]
[ 43.940673][ T8] CPU: 1 PID: 8 Comm: kworker/u4:0 Not tainted 6.1.68-syzkaller-1150912-g75266774b9c4 #0
[ 43.950318][ T8] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 43.960321][ T8] Workqueue: writeback wb_workfn (flush-7:0)
[ 43.966463][ T8] Call Trace:
[ 43.969697][ T8]
[ 43.972591][ T8] dump_stack_lvl+0x151/0x1b7
[ 43.977242][ T8] ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 43.982647][ T8] ? _printk+0xd1/0x111
[ 43.986638][ T8] ? __virt_addr_valid+0x242/0x2f0
[ 43.992276][ T8] print_report+0x158/0x4e0
[ 43.996683][ T8] ? __virt_addr_valid+0x242/0x2f0
[ 44.001916][ T8] ? kasan_addr_to_slab+0xd/0x80
[ 44.006937][ T8] ? ext4_find_extent+0xbab/0xdb0
[ 44.012042][ T8] kasan_report+0x13c/0x170
[ 44.016506][ T8] ? ext4_find_extent+0xbab/0xdb0
[ 44.021379][ T8] __asan_report_load4_noabort+0x14/0x20
[ 44.027877][ T8] ext4_find_extent+0xbab/0xdb0
[ 44.032723][ T8] ext4_ext_map_blocks+0x255/0x71e0
[ 44.037843][ T8] ? stack_trace_save+0x113/0x1c0
[ 44.042819][ T8] ? kasan_set_track+0x60/0x70
[ 44.047477][ T8] ? kasan_set_track+0x4b/0x70
[ 44.052267][ T8] ? kasan_save_alloc_info+0x1f/0x30
[ 44.058607][ T8] ? __kasan_slab_alloc+0x6c/0x80
[ 44.063461][ T8] ? slab_post_alloc_hook+0x53/0x2c0
[ 44.068667][ T8] ? kmem_cache_alloc+0x175/0x2c0
[ 44.073730][ T8] ? ext4_ext_release+0x10/0x10
[ 44.078429][ T8] ? writeback_sb_inodes+0xb32/0x1910
[ 44.083714][ T8] ? wb_writeback+0x3b9/0x9f0
[ 44.088322][ T8] ? wb_workfn+0x399/0x1030
[ 44.092643][ T8] ? process_one_work+0x73d/0xcb0
[ 44.097509][ T8] ? worker_thread+0xa60/0x1260
[ 44.102279][ T8] ? kthread+0x26d/0x300
[ 44.106444][ T8] ? ret_from_fork+0x1f/0x30
[ 44.110887][ T8] ? _raw_read_unlock+0x25/0x40
[ 44.115646][ T8] ? ext4_es_lookup_extent+0x33b/0x950
[ 44.121382][ T8] ext4_map_blocks+0xa36/0x1ca0
[ 44.126156][ T8] ? ext4_issue_zeroout+0x250/0x250
[ 44.131186][ T8] ? ext4_inode_journal_mode+0x1a5/0x470
[ 44.136650][ T8] ext4_writepages+0x17b5/0x3fd0
[ 44.141650][ T8] ? ext4_read_folio+0x240/0x240
[ 44.146528][ T8] ? xas_load+0x39d/0x3b0
[ 44.150859][ T8] ? __kasan_check_write+0x14/0x20
[ 44.155954][ T8] ? __filemap_get_folio+0x95e/0xae0
[ 44.161382][ T8] ? cpudl_cleanup+0x40/0x40
[ 44.165858][ T8] ? __kasan_check_write+0x14/0x20
[ 44.170879][ T8] ? folio_mark_accessed+0x1ca/0x650
[ 44.175990][ T8] ? xas_load+0x39d/0x3b0
[ 44.180535][ T8] ? ext4_read_folio+0x240/0x240
[ 44.185502][ T8] do_writepages+0x385/0x620
[ 44.189925][ T8] ? __writepage+0x130/0x130
[ 44.194524][ T8] ? enqueue_task_fair+0xe57/0x24c0
[ 44.199576][ T8] ? __kasan_check_write+0x14/0x20
[ 44.204681][ T8] __writeback_single_inode+0xdc/0xb80
[ 44.210371][ T8] writeback_sb_inodes+0xb32/0x1910
[ 44.215604][ T8] ? _raw_spin_lock+0xa4/0x1b0
[ 44.220473][ T8] ? queue_io+0x520/0x520
[ 44.224752][ T8] ? __writeback_inodes_wb+0x3f0/0x3f0
[ 44.230580][ T8] ? queue_io+0x3d0/0x520
[ 44.235059][ T8] ? memset+0x35/0x40
[ 44.239344][ T8] wb_writeback+0x3b9/0x9f0
[ 44.243689][ T8] ? inode_cgwb_move_to_attached+0x3c0/0x3c0
[ 44.249747][ T8] ? set_worker_desc+0x158/0x1c0
[ 44.255997][ T8] ? cpudl_cleanup+0x40/0x40
[ 44.260537][ T8] ? __kasan_check_write+0x14/0x20
[ 44.266207][ T8] wb_workfn+0x399/0x1030
[ 44.270757][ T8] ? inode_wait_for_writeback+0x280/0x280
[ 44.276790][ T8] ? kthread_data+0x53/0xc0
[ 44.281147][ T8] ? _raw_spin_unlock+0x4c/0x70
[ 44.285923][ T8] ? finish_task_switch+0x167/0x7b0
[ 44.291151][ T8] ? __kasan_check_read+0x11/0x20
[ 44.296065][ T8] ? read_word_at_a_time+0x12/0x20
[ 44.301104][ T8] ? strscpy+0x9c/0x260
[ 44.305177][ T8] process_one_work+0x73d/0xcb0
[ 44.309866][ T8] worker_thread+0xa60/0x1260
[ 44.314659][ T8] kthread+0x26d/0x300
[ 44.318861][ T8] ? worker_clr_flags+0x1a0/0x1a0
[ 44.323873][ T8] ? kthread_blkcg+0xd0/0xd0
[ 44.328312][ T8] ret_from_fork+0x1f/0x30
[ 44.332959][ T8]
[ 44.335852][ T8]
[ 44.337996][ T8] The buggy address belongs to the physical page:
[ 44.344521][ T8] page:ffffea00049a9500 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x126a54
[ 44.354675][ T8] flags: 0x4000000000000000(zone=1)
[ 44.359803][ T8] raw: 4000000000000000 ffffea00049a9548 ffffea00049a94c8 0000000000000000
[ 44.369762][ T8] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 44.378171][ T8] page dumped because: kasan: bad access detected
[ 44.385052][ T8] page_owner tracks the page as freed
[ 44.390589][ T8] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 361, tgid 360 (syz-executor.0), ts 43034460692, free_ts 43118428715
[ 44.409794][ T8] post_alloc_hook+0x213/0x220
[ 44.414399][ T8] prep_new_page+0x1b/0x110
[ 44.418729][ T8] get_page_from_freelist+0x27ea/0x2870
[ 44.424109][ T8] __alloc_pages+0x3a1/0x780
[ 44.428670][ T8] __folio_alloc+0x15/0x40
[ 44.433179][ T8] __filemap_get_folio+0x827/0xae0
[ 44.438384][ T8] pagecache_get_page+0x2f/0x110
[ 44.443794][ T8] grab_cache_page_write_begin+0x42/0x60
[ 44.449532][ T8] ext4_write_begin+0x257/0xfb0
[ 44.454620][ T8] ext4_da_write_begin+0x2ff/0x920
[ 44.459730][ T8] generic_perform_write+0x2f9/0x5c0
[ 44.464859][ T8] ext4_buffered_write_iter+0x360/0x640
[ 44.470546][ T8] ext4_file_write_iter+0x194/0x1570
[ 44.475782][ T8] do_iter_write+0x6e6/0xc50
[ 44.480170][ T8] vfs_iter_write+0x7c/0xa0
[ 44.484598][ T8] iter_file_splice_write+0x7f8/0xf90
[ 44.489901][ T8] page last free stack trace:
[ 44.494417][ T8] free_unref_page_prepare+0x83d/0x850
[ 44.499737][ T8] free_unref_page_list+0xf1/0x7b0
[ 44.505005][ T8] release_pages+0xf7f/0xfe0
[ 44.509759][ T8] __pagevec_release+0x84/0x100
[ 44.514482][ T8] truncate_inode_pages_range+0x1d1/0x1020
[ 44.520150][ T8] truncate_inode_pages_final+0x83/0x90
[ 44.525508][ T8] ext4_evict_inode+0x684/0x1550
[ 44.530458][ T8] evict+0x2a3/0x630
[ 44.534180][ T8] evict_inodes+0x5d1/0x650
[ 44.538521][ T8] generic_shutdown_super+0x97/0x370
[ 44.543643][ T8] kill_block_super+0x7e/0xe0
[ 44.548334][ T8] deactivate_locked_super+0xad/0x110
[ 44.553540][ T8] deactivate_super+0xbe/0xf0
[ 44.558256][ T8] cleanup_mnt+0x485/0x510
[ 44.562490][ T8] __cleanup_mnt+0x19/0x20
[ 44.567174][ T8] task_work_run+0x24d/0x2e0
[ 44.571638][ T8]
[ 44.574633][ T8] Memory state around the buggy address:
[ 44.580700][ T8] ffff888126a54380: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.590197][ T8] ffff888126a54400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.598401][ T8] >ffff888126a54480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.606477][ T8] ^
[ 44.612719][ T8] ffff888126a54500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.621163][ T8] ffff888126a54580: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 44.629207][ T8] ==================================================================
[ 44.637723][ T8] Disabling lock debugging due to kernel taint
[ 44.644072][ T8] ------------[ cut here ]------------
[ 44.649340][ T8] kernel BUG at fs/ext4/inode.c:2435!
[ 44.654587][ T8] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 44.660547][ T8] CPU: 0 PID: 8 Comm: kworker/u4:0 Tainted: G B 6.1.68-syzkaller-1150912-g75266774b9c4 #0
[ 44.671799][ T8] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 44.681839][ T8] Workqueue: writeback wb_workfn (flush-7:0)
[ 44.687600][ T8] RIP: 0010:ext4_writepages+0x3d6f/0x3fd0
[ 44.693472][ T8] Code: e8 a6 6d 81 ff be 00 10 00 00 48 c7 c7 50 16 6c 86 4c 89 f2 e8 12 9f ab 00 e9 0f fb ff ff e8 88 6d 81 ff 0f 0b e8 81 6d 81 ff <0f> 0b e8 2a 7e 04 03 65 8b 05 13 10 0e 7e 41 89 c7 4c 89 f8 48 c1
[ 44.713698][ T8] RSP: 0018:ffffc90000087000 EFLAGS: 00010293
[ 44.719999][ T8] RAX: ffffffff81f4013f RBX: dffffc0000000000 RCX: ffff888100383cc0
[ 44.728610][ T8] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 44.736770][ T8] RBP: ffffc90000087410 R08: ffffffff81f3de4f R09: ffffed10200afdbb
[ 44.744734][ T8] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 44.752528][ T8] R13: 0000000000000000 R14: ffff88810057ee10 R15: ffffc900000872e0
[ 44.760525][ T8] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 44.769566][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 44.777240][ T8] CR2: 00007ffc90072e08 CR3: 000000000640f000 CR4: 00000000003506b0
[ 44.785127][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 44.792931][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 44.800780][ T8] Call Trace:
[ 44.803866][ T8]
[ 44.807860][ T8] ? __die_body+0x62/0xb0
[ 44.812113][ T8] ? die+0x88/0xb0
[ 44.815892][ T8] ? do_trap+0x103/0x330
[ 44.819968][ T8] ? ext4_writepages+0x3d6f/0x3fd0
[ 44.824997][ T8] ? handle_invalid_op+0x95/0xc0
[ 44.829893][ T8] ? ext4_writepages+0x3d6f/0x3fd0
[ 44.834918][ T8] ? exc_invalid_op+0x32/0x50
[ 44.839425][ T8] ? asm_exc_invalid_op+0x1b/0x20
[ 44.844383][ T8] ? ext4_writepages+0x1a7f/0x3fd0
[ 44.849504][ T8] ? ext4_writepages+0x3d6f/0x3fd0
[ 44.855141][ T8] ? ext4_writepages+0x3d6f/0x3fd0
[ 44.860700][ T8] ? ext4_read_folio+0x240/0x240
[ 44.865610][ T8] ? xas_load+0x39d/0x3b0
[ 44.869840][ T8] ? __kasan_check_write+0x14/0x20
[ 44.874847][ T8] ? __filemap_get_folio+0x95e/0xae0
[ 44.879996][ T8] ? cpudl_cleanup+0x40/0x40
[ 44.884544][ T8] ? __kasan_check_write+0x14/0x20
[ 44.889539][ T8] ? folio_mark_accessed+0x1ca/0x650
[ 44.894944][ T8] ? xas_load+0x39d/0x3b0
[ 44.899480][ T8] ? ext4_read_folio+0x240/0x240
[ 44.904658][ T8] do_writepages+0x385/0x620
[ 44.909345][ T8] ? __writepage+0x130/0x130
[ 44.914341][ T8] ? enqueue_task_fair+0xe57/0x24c0
[ 44.920159][ T8] ? __kasan_check_write+0x14/0x20
[ 44.925264][ T8] __writeback_single_inode+0xdc/0xb80
[ 44.930778][ T8] writeback_sb_inodes+0xb32/0x1910
[ 44.936073][ T8] ? _raw_spin_lock+0xa4/0x1b0
[ 44.941240][ T8] ? queue_io+0x520/0x520
[ 44.945876][ T8] ? __writeback_inodes_wb+0x3f0/0x3f0
[ 44.951317][ T8] ? queue_io+0x3d0/0x520
[ 44.955689][ T8] ? memset+0x35/0x40
[ 44.959426][ T8] wb_writeback+0x3b9/0x9f0
[ 44.963869][ T8] ? inode_cgwb_move_to_attached+0x3c0/0x3c0
[ 44.970065][ T8] ? set_worker_desc+0x158/0x1c0
[ 44.975025][ T8] ? cpudl_cleanup+0x40/0x40
[ 44.979449][ T8] ? __kasan_check_write+0x14/0x20
[ 44.984493][ T8] wb_workfn+0x399/0x1030
[ 44.988665][ T8] ? inode_wait_for_writeback+0x280/0x280
[ 44.994208][ T8] ? kthread_data+0x53/0xc0
[ 44.998551][ T8] ? _raw_spin_unlock+0x4c/0x70
[ 45.003349][ T8] ? finish_task_switch+0x167/0x7b0
[ 45.008835][ T8] ? __kasan_check_read+0x11/0x20
[ 45.013688][ T8] ? read_word_at_a_time+0x12/0x20
[ 45.018723][ T8] ? strscpy+0x9c/0x260
[ 45.022895][ T8] process_one_work+0x73d/0xcb0
[ 45.027584][ T8] worker_thread+0xa60/0x1260
[ 45.032211][ T8] kthread+0x26d/0x300
[ 45.036121][ T8] ? worker_clr_flags+0x1a0/0x1a0
[ 45.041236][ T8] ? kthread_blkcg+0xd0/0xd0
[ 45.045811][ T8] ret_from_fork+0x1f/0x30
[ 45.050560][ T8]
[ 45.053495][ T8] Modules linked in:
[ 45.059042][ T8] ---[ end trace 0000000000000000 ]---
[ 45.064377][ T8] RIP: 0010:ext4_writepages+0x3d6f/0x3fd0
[ 45.070167][ T8] Code: e8 a6 6d 81 ff be 00 10 00 00 48 c7 c7 50 16 6c 86 4c 89 f2 e8 12 9f ab 00 e9 0f fb ff ff e8 88 6d 81 ff 0f 0b e8 81 6d 81 ff <0f> 0b e8 2a 7e 04 03 65 8b 05 13 10 0e 7e 41 89 c7 4c 89 f8 48 c1
[ 45.090337][ T8] RSP: 0018:ffffc90000087000 EFLAGS: 00010293
[ 45.096632][ T8] RAX: ffffffff81f4013f RBX: dffffc0000000000 RCX: ffff888100383cc0
[ 45.105380][ T8] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 45.114205][ T8] RBP: ffffc90000087410 R08: ffffffff81f3de4f R09: ffffed10200afdbb
[ 45.122185][ T8] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[ 45.130299][ T8] R13: 0000000000000000 R14: ffff88810057ee10 R15: ffffc900000872e0
[ 45.138025][ T8] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 45.147892][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 45.154343][ T8] CR2: 00007ffc90072e08 CR3: 000000000640f000 CR4: 00000000003506b0
[ 45.162726][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 45.170607][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 45.178828][ T8] Kernel panic - not syncing: Fatal exception
[ 45.185081][ T8] Kernel Offset: disabled
[ 45.189389][ T8] Rebooting in 86400 seconds..