Warning: Permanently added '10.128.1.86' (ED25519) to the list of known hosts.
2025/10/14 18:16:31 parsed 1 programs
[   49.951846][   T28] audit: type=1400 audit(1760465792.498:106): avc:  denied  { unlink } for  pid=396 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   50.069864][  T396] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   51.118830][  T426] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.126224][  T426] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.133792][  T426] device bridge_slave_0 entered promiscuous mode
[   51.141551][  T426] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.148596][  T426] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.156442][  T426] device bridge_slave_1 entered promiscuous mode
[   51.213807][  T426] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.221128][  T426] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.228475][  T426] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.235666][  T426] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.255771][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.263965][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.272198][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.282817][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.291606][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.298852][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.307941][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.316690][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.323783][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.339833][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.347893][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.363450][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.375412][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.383986][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.391749][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.399940][  T426] device veth0_vlan entered promiscuous mode
[   51.410347][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.420142][  T426] device veth1_macvtap entered promiscuous mode
[   51.430475][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.440744][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.524899][   T28] audit: type=1401 audit(1760465794.068:107): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   51.599477][   T28] audit: type=1400 audit(1760465794.138:108): avc:  denied  { create } for  pid=451 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
2025/10/14 18:16:34 executed programs: 0
[   51.943603][  T462] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.950666][  T462] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.958202][  T462] device bridge_slave_0 entered promiscuous mode
[   51.968352][  T462] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.975715][  T462] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.983264][  T462] device bridge_slave_1 entered promiscuous mode
[   52.046071][  T462] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.053185][  T462] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.060451][  T462] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.067687][  T462] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.087526][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.096028][  T299] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.103379][  T299] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.115115][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.123531][  T299] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.130660][  T299] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.144870][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.153137][  T299] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.160269][  T299] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.173176][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.183291][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.197897][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   52.209413][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   52.217708][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   52.225850][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   52.234256][  T462] device veth0_vlan entered promiscuous mode
[   52.245109][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   52.254572][  T462] device veth1_macvtap entered promiscuous mode
[   52.264440][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   52.274884][  T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   52.303907][  T473] loop2: detected capacity change from 0 to 1024
[   52.310544][  T473] =======================================================
[   52.310544][  T473] WARNING: The mand mount option has been deprecated and
[   52.310544][  T473]          and is ignored by this kernel. Remove the mand
[   52.310544][  T473]          option from the mount to silence this warning.
[   52.310544][  T473] =======================================================
[   52.358027][  T473] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   52.367312][   T28] audit: type=1400 audit(1760465794.918:109): avc:  denied  { mount } for  pid=472 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   52.389501][   T28] audit: type=1400 audit(1760465794.918:110): avc:  denied  { write } for  pid=472 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   52.390430][  T473] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.16: Allocating blocks 497-513 which overlap fs metadata
[   52.412141][   T28] audit: type=1400 audit(1760465794.918:111): avc:  denied  { add_name } for  pid=472 comm="syz.2.16" name="memory.stat" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   52.427083][  T473] EXT4-fs (loop2): pa ffff8881113dd348: logic 256, phys. 385, len 8
[   52.447790][   T28] audit: type=1400 audit(1760465794.918:112): avc:  denied  { create } for  pid=472 comm="syz.2.16" name="memory.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   52.454560][  T473] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   52.485547][   T28] audit: type=1400 audit(1760465794.918:113): avc:  denied  { read append open } for  pid=472 comm="syz.2.16" path="/0/file1/memory.stat" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   52.509621][   T28] audit: type=1400 audit(1760465795.008:114): avc:  denied  { write } for  pid=472 comm="syz.2.16" name="memory.stat" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   52.531884][   T28] audit: type=1400 audit(1760465795.008:115): avc:  denied  { mounton } for  pid=472 comm="syz.2.16" path="/0/file1/bus" dev="loop2" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   52.533418][  T462] EXT4-fs (loop2): unmounting filesystem.
[   52.572848][  T478] loop2: detected capacity change from 0 to 1024
[   52.592695][  T478] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   52.618496][  T478] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.17: Allocating blocks 497-513 which overlap fs metadata
[   52.632704][  T478] EXT4-fs (loop2): pa ffff8881113dd9d8: logic 256, phys. 385, len 8
[   52.640968][  T478] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   52.657333][  T462] ==================================================================
[   52.665428][  T462] BUG: KASAN: use-after-free in ext4_ext_remove_space+0x2f43/0x3fb0
[   52.673515][  T462] Read of size 4 at addr ffff8881264d2db8 by task syz-executor/462
[   52.681580][  T462] 
[   52.683993][  T462] CPU: 0 PID: 462 Comm: syz-executor Not tainted syzkaller #0
[   52.691453][  T462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   52.701529][  T462] Call Trace:
[   52.704820][  T462]  <TASK>
[   52.707751][  T462]  __dump_stack+0x21/0x24
[   52.712085][  T462]  dump_stack_lvl+0xee/0x150
[   52.716675][  T462]  ? __cfi_dump_stack_lvl+0x8/0x8
[   52.721704][  T462]  ? ext4_inode_block_valid+0x2d7/0x3f0
[   52.727516][  T462]  ? ext4_ext_remove_space+0x2f43/0x3fb0
[   52.733168][  T462]  print_address_description+0x71/0x200
[   52.738850][  T462]  print_report+0x4a/0x60
[   52.743189][  T462]  kasan_report+0x122/0x150
[   52.748055][  T462]  ? ext4_ext_remove_space+0x2f43/0x3fb0
[   52.753693][  T462]  __asan_report_load4_noabort+0x14/0x20
[   52.759410][  T462]  ext4_ext_remove_space+0x2f43/0x3fb0
[   52.764881][  T462]  ? ext4_es_free_extent+0x3de/0x4c0
[   52.770185][  T462]  ? ext4_es_insert_extent+0x2d70/0x2d70
[   52.775899][  T462]  ? ext4_da_release_space+0x1d6/0x480
[   52.781377][  T462]  ? __cfi_ext4_ext_remove_space+0x10/0x10
[   52.787223][  T462]  ? ext4_es_remove_extent+0x1d9/0x330
[   52.792704][  T462]  ext4_ext_truncate+0x200/0x320
[   52.797663][  T462]  ext4_truncate+0x9a6/0xf90
[   52.802348][  T462]  ? __cfi_ext4_truncate+0x10/0x10
[   52.807483][  T462]  ext4_evict_inode+0xcc3/0x1460
[   52.812438][  T462]  ? _raw_spin_unlock+0x4c/0x70
[   52.817303][  T462]  ? __cfi_ext4_evict_inode+0x10/0x10
[   52.822685][  T462]  ? _raw_spin_unlock+0x4c/0x70
[   52.827544][  T462]  ? inode_io_list_del+0x19b/0x1b0
[   52.832703][  T462]  ? __cfi_ext4_evict_inode+0x10/0x10
[   52.838276][  T462]  evict+0x493/0x890
[   52.842278][  T462]  ? __kasan_check_write+0x14/0x20
[   52.847543][  T462]  ? proc_nr_inodes+0x2f0/0x2f0
[   52.852437][  T462]  ? lockref_put_return+0x152/0x1c0
[   52.857731][  T462]  ? __cfi_lockref_put_return+0x10/0x10
[   52.863312][  T462]  ? __kasan_check_write+0x14/0x20
[   52.868438][  T462]  iput+0x620/0x670
[   52.872270][  T462]  do_unlinkat+0x375/0x6b0
[   52.876690][  T462]  ? __cfi_do_unlinkat+0x10/0x10
[   52.881779][  T462]  ? getname_flags+0x206/0x500
[   52.886609][  T462]  __x64_sys_unlink+0x49/0x50
[   52.891381][  T462]  x64_sys_call+0x958/0x9a0
[   52.895905][  T462]  do_syscall_64+0x4c/0xa0
[   52.900325][  T462]  ? clear_bhb_loop+0x30/0x80
[   52.905093][  T462]  ? clear_bhb_loop+0x30/0x80
[   52.909845][  T462]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   52.915843][  T462] RIP: 0033:0x7fd8b918df57
[   52.920373][  T462] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.939985][  T462] RSP: 002b:00007fffbac55078 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[   52.948416][  T462] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd8b918df57
[   52.956389][  T462] RDX: 00007fffbac550a0 RSI: 00007fffbac55130 RDI: 00007fffbac55130
[   52.964452][  T462] RBP: 00007fffbac55130 R08: 0000000000000000 R09: 0000000000000000
[   52.972433][  T462] R10: 0000000000000100 R11: 0000000000000206 R12: 00007fffbac56220
[   52.980525][  T462] R13: 00007fd8b9210b55 R14: 000000000000cd65 R15: 00007fffbac572f0
[   52.989294][  T462]  </TASK>
[   52.992318][  T462] 
[   52.994702][  T462] The buggy address belongs to the physical page:
[   53.001119][  T462] page:ffffea0004993480 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x1264d2
[   53.011557][  T462] flags: 0x4000000000000000(zone=1)
[   53.016865][  T462] raw: 4000000000000000 ffffea00049934c8 ffffea0004993448 0000000000000000
[   53.025462][  T462] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   53.034043][  T462] page dumped because: kasan: bad access detected
[   53.040467][  T462] page_owner tracks the page as freed
[   53.045917][  T462] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 478, tgid 477 (syz.2.17), ts 52617873874, free_ts 52652864484
[   53.064338][  T462]  post_alloc_hook+0x1f5/0x210
[   53.069394][  T462]  prep_new_page+0x1c/0x110
[   53.073923][  T462]  get_page_from_freelist+0x2c7b/0x2cf0
[   53.079480][  T462]  __alloc_pages+0x1c3/0x450
[   53.084271][  T462]  __folio_alloc+0x12/0x40
[   53.088697][  T462]  __filemap_get_folio+0x6ec/0x980
[   53.093820][  T462]  pagecache_get_page+0x2b/0x110
[   53.098804][  T462]  grab_cache_page_write_begin+0x43/0x60
[   53.104441][  T462]  ext4_write_begin+0x24b/0xf70
[   53.109474][  T462]  ext4_da_write_begin+0x3e1/0x8b0
[   53.114595][  T462]  generic_perform_write+0x2f6/0x6d0
[   53.119886][  T462]  ext4_buffered_write_iter+0x36f/0x660
[   53.125577][  T462]  ext4_file_write_iter+0x18f/0x13d0
[   53.130968][  T462]  vfs_write+0x5db/0xca0
[   53.135223][  T462]  ksys_write+0x140/0x240
[   53.139577][  T462]  __x64_sys_write+0x7b/0x90
[   53.144254][  T462] page last free stack trace:
[   53.148928][  T462]  free_unref_page_prepare+0x742/0x750
[   53.154392][  T462]  free_unref_page_list+0x112/0x8b0
[   53.159595][  T462]  release_pages+0xad1/0xb20
[   53.164280][  T462]  __pagevec_release+0x71/0xe0
[   53.169059][  T462]  truncate_inode_pages_range+0x309/0xcc0
[   53.174803][  T462]  truncate_pagecache+0x6c/0x90
[   53.179848][  T462]  ext4_setattr+0xf9b/0x1a50
[   53.184805][  T462]  notify_change+0xcc3/0xf80
[   53.189403][  T462]  do_sys_ftruncate+0x58f/0x7f0
[   53.194258][  T462]  __x64_sys_ftruncate+0x60/0x70
[   53.199372][  T462]  x64_sys_call+0x2f9/0x9a0
[   53.203965][  T462]  do_syscall_64+0x4c/0xa0
[   53.208388][  T462]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   53.214304][  T462] 
[   53.216647][  T462] Memory state around the buggy address:
[   53.222294][  T462]  ffff8881264d2c80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.230717][  T462]  ffff8881264d2d00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.238885][  T462] >ffff8881264d2d80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.247039][  T462]                                         ^
[   53.252976][  T462]  ffff8881264d2e00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.261045][  T462]  ffff8881264d2e80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.269221][  T462] ==================================================================
[   53.279049][  T462] Disabling lock debugging due to kernel taint
[   53.289435][  T462] EXT4-fs (loop2): unmounting filesystem.
[   53.306643][  T484] loop2: detected capacity change from 0 to 1024
[   53.324687][  T484] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   53.345073][  T484] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.18: Allocating blocks 497-513 which overlap fs metadata
[   53.359296][  T484] EXT4-fs (loop2): pa ffff888123b11498: logic 256, phys. 385, len 8
[   53.367353][  T484] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   53.387248][  T462] EXT4-fs (loop2): unmounting filesystem.
[   53.408621][  T488] loop2: detected capacity change from 0 to 1024
[   53.425082][  T488] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   53.443939][  T488] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.19: Allocating blocks 497-513 which overlap fs metadata
[   53.458676][  T488] EXT4-fs (loop2): pa ffff888123b111f8: logic 256, phys. 385, len 8
[   53.466854][  T488] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   53.485296][  T462] ------------[ cut here ]------------
[   53.490816][  T462] WARNING: CPU: 0 PID: 462 at fs/ext4/mballoc.c:1772 mb_free_blocks+0xe72/0x1290
[   53.500024][  T462] Modules linked in:
[   53.504027][  T462] CPU: 0 PID: 462 Comm: syz-executor Tainted: G    B              syzkaller #0
[   53.513337][  T462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   53.523428][  T462] RIP: 0010:mb_free_blocks+0xe72/0x1290
[   53.528997][  T462] Code: 54 f6 c7 ff 48 8b 33 48 8b bd 78 ff ff ff e8 e5 44 00 00 48 81 c4 a8 00 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 de 86 83 ff <0f> 0b eb e5 e8 d5 86 83 ff eb de 48 8b 85 60 ff ff ff 42 80 3c 28
[   53.548900][  T462] RSP: 0018:ffffc90000b67480 EFLAGS: 00010293
[   53.555035][  T462] RAX: ffffffff81ec9722 RBX: 0000000000000000 RCX: ffff88811a7de540
[   53.563059][  T462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   53.571051][  T462] RBP: ffffc90000b67550 R08: dffffc0000000000 R09: ffffed102396b090
[   53.579088][  T462] R10: ffffed102396b090 R11: 1ffff1102396b08f R12: 0000000000000000
[   53.587137][  T462] R13: dffffc0000000000 R14: ffff88811c96f000 R15: ffffc90000b67650
[   53.595175][  T462] FS:  000055557c6d0500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   53.604163][  T462] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   53.610750][  T462] CR2: 000055557c6fb528 CR3: 0000000121562000 CR4: 00000000003506b0
[   53.618906][  T462] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   53.627143][  T462] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   53.635687][  T462] Call Trace:
[   53.639041][  T462]  <TASK>
[   53.642034][  T462]  ? __kasan_check_read+0x11/0x20
[   53.647169][  T462]  ? __kasan_check_write+0x14/0x20
[   53.652328][  T462]  ? _raw_spin_trylock+0xb1/0x140
[   53.657474][  T462]  ? __cfi__raw_spin_trylock+0x10/0x10
[   53.663092][  T462]  ext4_free_blocks+0x163a/0x2100
[   53.668155][  T462]  ? __cfi_ext4_free_blocks+0x10/0x10
[   53.673597][  T462]  ? __ext4_journal_get_write_access+0x2df/0x6c0
[   53.680088][  T462]  ? ext4_inode_journal_mode+0x19a/0x480
[   53.685952][  T462]  ext4_ext_remove_space+0x1b7d/0x3fb0
[   53.691474][  T462]  ? __cfi_ext4_ext_remove_space+0x10/0x10
[   53.697397][  T462]  ? ext4_es_remove_extent+0x1d9/0x330
[   53.702908][  T462]  ext4_ext_truncate+0x200/0x320
[   53.707959][  T462]  ext4_truncate+0x9a6/0xf90
[   53.712601][  T462]  ? __cfi_ext4_truncate+0x10/0x10
[   53.717817][  T462]  ext4_evict_inode+0xcc3/0x1460
[   53.722811][  T462]  ? _raw_spin_unlock+0x4c/0x70
[   53.727748][  T462]  ? __cfi_ext4_evict_inode+0x10/0x10
[   53.733171][  T462]  ? _raw_spin_unlock+0x4c/0x70
[   53.738044][  T462]  ? inode_io_list_del+0x19b/0x1b0
[   53.743227][  T462]  ? __cfi_ext4_evict_inode+0x10/0x10
[   53.748632][  T462]  evict+0x493/0x890
[   53.752600][  T462]  ? __kasan_check_write+0x14/0x20
[   53.757837][  T462]  ? proc_nr_inodes+0x2f0/0x2f0
[   53.762775][  T462]  ? lockref_put_return+0x152/0x1c0
[   53.768012][  T462]  ? __cfi_lockref_put_return+0x10/0x10
[   53.773627][  T462]  ? __kasan_check_write+0x14/0x20
[   53.778849][  T462]  iput+0x620/0x670
[   53.782800][  T462]  do_unlinkat+0x375/0x6b0
[   53.787271][  T462]  ? __cfi_do_unlinkat+0x10/0x10
[   53.792263][  T462]  ? getname_flags+0x206/0x500
[   53.797060][  T462]  __x64_sys_unlink+0x49/0x50
[   53.801891][  T462]  x64_sys_call+0x958/0x9a0
[   53.806581][  T462]  do_syscall_64+0x4c/0xa0
[   53.810997][  T462]  ? clear_bhb_loop+0x30/0x80
[   53.815709][  T462]  ? clear_bhb_loop+0x30/0x80
[   53.820483][  T462]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   53.826457][  T462] RIP: 0033:0x7fd8b918df57
[   53.830973][  T462] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.850893][  T462] RSP: 002b:00007fffbac55078 EFLAGS: 00000206 ORIG_RAX: 0000000000000057
[   53.859461][  T462] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd8b918df57
[   53.867493][  T462] RDX: 00007fffbac550a0 RSI: 00007fffbac55130 RDI: 00007fffbac55130
[   53.875766][  T462] RBP: 00007fffbac55130 R08: 0000000000000000 R09: 0000000000000000
[   53.883785][  T462] R10: 0000000000000100 R11: 0000000000000206 R12: 00007fffbac56220
[   53.891822][  T462] R13: 00007fd8b9210b55 R14: 000000000000d0c6 R15: 00007fffbac572f0
[   53.899835][  T462]  </TASK>
[   53.902886][  T462] ---[ end trace 0000000000000000 ]---
[   53.908713][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 8192, count = 64
[   53.924918][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 32720, count = 16
[   53.939368][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 0, count = 32728
[   53.953607][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 1360, count = 16
[   53.967911][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 0, count = 1363
[   53.981813][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 0, count = 16
[   53.995860][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 38655229952, count = 16
[   54.010636][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 38655229959, count = 9
[   54.027271][  T462] EXT4-fs (loop2): unmounting filesystem.
[   54.034231][   T43] device bridge_slave_1 left promiscuous mode
[   54.041385][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.050231][   T43] device bridge_slave_0 left promiscuous mode
[   54.053507][  T492] loop2: detected capacity change from 0 to 1024
[   54.056763][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.071491][   T43] device veth1_macvtap left promiscuous mode
[   54.077764][   T43] device veth0_vlan left promiscuous mode
[   54.084581][  T492] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   54.116393][  T492] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.20: Allocating blocks 497-513 which overlap fs metadata
[   54.130938][  T492] EXT4-fs (loop2): pa ffff888123b2db28: logic 256, phys. 385, len 8
[   54.139230][  T492] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   54.157007][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 9118354150032, count = 16
[   54.171734][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 9118354147656, count = 2377
[   54.186700][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 9118354147648, count = 16
[   54.201871][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 201988076303840, count = 16
[   54.216748][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 201988076292607, count = 11240
[   54.232300][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 201988076292592, count = 16
[   54.247287][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 144081268931456, count = 16
[   54.262382][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 144081268929085, count = 2376
[   54.398187][  T462] EXT4-fs (loop2): unmounting filesystem.
[   54.414905][  T496] loop2: detected capacity change from 0 to 1024
[   54.439061][  T496] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   54.460627][  T496] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.21: Allocating blocks 497-513 which overlap fs metadata
[   54.475114][  T496] EXT4-fs (loop2): pa ffff888123ae1d20: logic 256, phys. 385, len 8
[   54.483168][  T496] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   54.499772][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 11426331020240, count = 16
[   54.514804][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 11426330994278, count = 25974
[   54.529992][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 11426330994272, count = 16
[   54.544973][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 125844460657104, count = 16
[   54.560038][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 125844460632169, count = 24941
[   54.575333][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 125844460632160, count = 16
[   54.590112][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 53021913678480, count = 16
[   54.605085][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 53021913653296, count = 25185
[   57.142310][  T462] EXT4-fs (loop2): unmounting filesystem.
[   57.164454][  T500] loop2: detected capacity change from 0 to 1024
[   57.182758][  T500] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   57.206037][  T500] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.22: Allocating blocks 497-513 which overlap fs metadata
[   57.220393][  T500] EXT4-fs (loop2): pa ffff888123ae1bd0: logic 256, phys. 385, len 8
[   57.228515][  T500] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   57.245958][  T462] EXT4-fs (loop2): unmounting filesystem.
2025/10/14 18:16:39 executed programs: 9
[   57.262233][  T505] loop2: detected capacity change from 0 to 1024
[   57.282858][  T505] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   57.302991][  T505] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.23: Allocating blocks 497-513 which overlap fs metadata
[   57.317033][  T505] EXT4-fs (loop2): pa ffff888123ae1b28: logic 256, phys. 385, len 8
[   57.325160][  T505] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   57.342403][  T462] EXT4-fs (loop2): unmounting filesystem.
[   57.358834][  T509] loop2: detected capacity change from 0 to 1024
[   57.373120][  T509] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   57.394172][  T509] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.24: Allocating blocks 497-513 which overlap fs metadata
[   57.408490][  T509] EXT4-fs (loop2): pa ffff888123ae15e8: logic 256, phys. 385, len 8
[   57.416638][  T509] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   57.433843][  T462] EXT4-fs (loop2): unmounting filesystem.
[   57.451980][  T513] loop2: detected capacity change from 0 to 1024
[   57.463084][  T513] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   57.484069][  T513] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3836: comm syz.2.25: Allocating blocks 497-513 which overlap fs metadata
[   57.498331][  T513] EXT4-fs (loop2): pa ffff88812e962930: logic 256, phys. 385, len 8
[   57.506567][  T513] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[   57.523048][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 118057719421072, count = 16
[   57.537885][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 118057719396723, count = 24352
[   57.552964][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 118057719396720, count = 16
[   57.568448][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 59615092198288, count = 16
[   57.583154][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 59615092172084, count = 26214
[   57.598595][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 59615092172080, count = 16
[   57.613402][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 119221420194256, count = 16
[   57.628354][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 119221420165753, count = 28511
[   62.491314][  T462] EXT4-fs error: 28481 callbacks suppressed
[   62.491333][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 60684137289872, count = 16
[   62.512385][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 60684137275444, count = 14437
[   62.527373][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 60684137275440, count = 16
[   62.542343][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 112589990710368, count = 16
[   62.557774][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 112589990684262, count = 26122
[   62.573008][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 112589990684256, count = 16
[   62.587900][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 127961829531584, count = 16
[   62.602944][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 127961829501027, count = 30559
[   62.618291][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 127961829501024, count = 16
[   62.633190][  T462] EXT4-fs error (device loop2): ext4_free_blocks:6205: comm syz-executor: Freeing blocks not in datazone - block = 104876213190864, count = 16