Warning: Permanently added '10.128.0.107' (ED25519) to the list of known hosts.
2025/07/29 15:06:17 ignoring optional flag "sandboxArg"="0"
2025/07/29 15:06:17 ignoring optional flag "type"="gce"
2025/07/29 15:06:17 parsed 1 programs
2025/07/29 15:06:17 executed programs: 0
[ 45.175383][ T30] kauditd_printk_skb: 18 callbacks suppressed
[ 45.175398][ T30] audit: type=1400 audit(1753801577.776:92): avc: denied { unlink } for pid=327 comm="syz-executor" name="swap-file" dev="sda1" ino=2027 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 45.214040][ T327] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 45.273321][ T334] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.280995][ T334] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.288491][ T334] device bridge_slave_0 entered promiscuous mode
[ 45.295521][ T334] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.302560][ T334] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.310056][ T334] device bridge_slave_1 entered promiscuous mode
[ 45.353150][ T30] audit: type=1400 audit(1753801577.946:93): avc: denied { create } for pid=334 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 45.359759][ T334] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.373791][ T30] audit: type=1400 audit(1753801577.946:94): avc: denied { write } for pid=334 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 45.380786][ T334] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.380893][ T334] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.401972][ T30] audit: type=1400 audit(1753801577.946:95): avc: denied { read } for pid=334 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 45.408761][ T334] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.456981][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.464992][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.472845][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 45.481018][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 45.490081][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 45.498501][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.505678][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.515036][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 45.523445][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.530523][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.542469][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 45.551705][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 45.565776][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 45.577385][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 45.585601][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 45.593264][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 45.601699][ T334] device veth0_vlan entered promiscuous mode
[ 45.612173][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 45.621546][ T334] device veth1_macvtap entered promiscuous mode
[ 45.630686][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 45.640687][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 45.987769][ T345] loop0: detected capacity change from 0 to 131072
[ 45.995900][ T30] audit: type=1400 audit(1753801578.596:96): avc: denied { mounton } for pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir2097518004/syzkaller.WUb5XT/0/file2" dev="sda1" ino=2036 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 45.996145][ T345] F2FS-fs (loop0): Invalid log sectors per block(124) log sectorsize(9)
[ 46.031817][ T345] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 46.041550][ T345] F2FS-fs (loop0): invalid crc value
[ 46.048966][ T345] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (9621037545273099749, 1067266233009637)
[ 46.061288][ T345] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[ 46.082730][ T345] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 46.089892][ T345] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 46.097849][ T30] audit: type=1400 audit(1753801578.696:97): avc: denied { mount } for pid=344 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 46.119812][ T30] audit: type=1400 audit(1753801578.696:98): avc: denied { read } for pid=344 comm="syz-executor.0" name="file2" dev="loop0" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 46.142121][ T30] audit: type=1400 audit(1753801578.696:99): avc: denied { open } for pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir2097518004/syzkaller.WUb5XT/0/file2/file2" dev="loop0" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 46.145841][ T334] ------------[ cut here ]------------
[ 46.169541][ T30] audit: type=1400 audit(1753801578.696:100): avc: denied { ioctl } for pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir2097518004/syzkaller.WUb5XT/0/file2/file2" dev="loop0" ino=8 ioctlcmd=0xf519 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 46.175615][ T334] WARNING: CPU: 1 PID: 334 at fs/f2fs/inode.c:880 f2fs_evict_inode+0x12b0/0x1560
[ 46.205060][ T30] audit: type=1400 audit(1753801578.716:101): avc: denied { unmount } for pid=334 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 46.214479][ T334] Modules linked in:
[ 46.238510][ T334] CPU: 1 PID: 334 Comm: syz-executor.0 Not tainted 5.15.189-syzkaller-1081280-gf32b52534f1d #0
[ 46.249822][ T334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 46.260356][ T334] RIP: 0010:f2fs_evict_inode+0x12b0/0x1560
[ 46.266603][ T334] Code: e9 55 f2 ff ff e8 20 2c 61 ff eb 05 e8 19 2c 61 ff 4c 8b 74 24 28 48 8b 7c 24 18 e8 3a f0 02 00 e9 bc fc ff ff e8 00 2c 61 ff <0f> 0b 4c 89 f7 be 08 00 00 00 e8 d1 a8 9f ff f0 41 80 0e 04 e9 99
[ 46.286858][ T334] RSP: 0018:ffffc900009e78c0 EFLAGS: 00010293
[ 46.292947][ T334] RAX: ffffffff820783d0 RBX: 1ffff9200013cf2c RCX: ffff88811b7de2c0
[ 46.301080][ T334] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[ 46.309283][ T334] RBP: ffffc900009e7a30 R08: dffffc0000000000 R09: ffffed10241b6c83
[ 46.317294][ T334] R10: ffffed10241b6c83 R11: 1ffff110241b6c82 R12: ffff888120db6410
[ 46.325437][ T334] R13: dffffc0000000000 R14: ffff88810e862078 R15: 0000000000000002
[ 46.333615][ T334] FS: 0000555580c5f480(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 46.342837][ T334] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 46.349854][ T334] CR2: 00007ffff1424ff8 CR3: 000000010d200000 CR4: 00000000003506a0
[ 46.358254][ T334] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 46.366295][ T334] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 46.374285][ T334] Call Trace:
[ 46.377620][ T334]
[ 46.380723][ T334] ? inode_wait_for_writeback+0x1b0/0x200
[ 46.386507][ T334] ? f2fs_write_inode+0x850/0x850
[ 46.391592][ T334] ? bit_waitqueue+0x30/0x30
[ 46.396386][ T334] ? locks_free_lock_context+0x42/0x70
[ 46.402101][ T334] ? f2fs_write_inode+0x850/0x850
[ 46.407175][ T334] evict+0x485/0x870
[ 46.411208][ T334] ? proc_nr_inodes+0x310/0x310
[ 46.416278][ T334] ? _raw_spin_lock+0x8e/0xe0
[ 46.420986][ T334] ? _raw_spin_unlock+0x4d/0x70
[ 46.426073][ T334] evict_inodes+0x5de/0x650
[ 46.430601][ T334] ? clear_inode+0x150/0x150
[ 46.435306][ T334] generic_shutdown_super+0x96/0x330
[ 46.440626][ T334] kill_block_super+0x7f/0xf0
[ 46.445421][ T334] kill_f2fs_super+0x2e7/0x390
[ 46.450213][ T334] ? radix_tree_delete_item+0x2c8/0x410
[ 46.455917][ T334] ? f2fs_mount+0x40/0x40
[ 46.460396][ T334] ? unregister_shrinker+0x201/0x290
[ 46.466135][ T334] deactivate_locked_super+0xa0/0x100
[ 46.471627][ T334] deactivate_super+0xaf/0xe0
[ 46.476510][ T334] cleanup_mnt+0x446/0x500
[ 46.481082][ T334] __cleanup_mnt+0x19/0x20
[ 46.485705][ T334] task_work_run+0x127/0x190
[ 46.490413][ T334] exit_to_user_mode_loop+0xd0/0xe0
[ 46.496425][ T334] exit_to_user_mode_prepare+0x5a/0xa0
[ 46.501949][ T334] syscall_exit_to_user_mode+0x1a/0x30
[ 46.508117][ T334] do_syscall_64+0x58/0xa0
[ 46.512580][ T334] ? clear_bhb_loop+0x50/0xa0
[ 46.517709][ T334] ? clear_bhb_loop+0x50/0xa0
[ 46.522488][ T334] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.528732][ T334] RIP: 0033:0x7ffa73cdd017
[ 46.533178][ T334] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 46.552978][ T334] RSP: 002b:00007ffff14257c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 46.561522][ T334] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007ffa73cdd017
[ 46.569566][ T334] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffff1425880
[ 46.577673][ T334] RBP: 00007ffff1425880 R08: 0000000000000000 R09: 0000000000000000
[ 46.585915][ T334] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff1426940
[ 46.593953][ T334] R13: 00007ffa73d273b9 R14: 000000000000b242 R15: 0000000000000003
[ 46.602094][ T334]
[ 46.605202][ T334] ---[ end trace 2ef16f385fca6205 ]---
[ 46.655603][ T334] ==================================================================
[ 46.663750][ T334] BUG: KASAN: use-after-free in _raw_spin_lock+0x81/0xe0
[ 46.670785][ T334] Write of size 4 at addr ffff888120db6188 by task syz-executor.0/334
[ 46.679313][ T334]
[ 46.681657][ T334] CPU: 0 PID: 334 Comm: syz-executor.0 Tainted: G W 5.15.189-syzkaller-1081280-gf32b52534f1d #0
[ 46.693644][ T334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 46.704271][ T334] Call Trace:
[ 46.707776][ T334]
[ 46.710718][ T334] __dump_stack+0x21/0x30
[ 46.715057][ T334] dump_stack_lvl+0xee/0x150
[ 46.719963][ T334] ? show_regs_print_info+0x20/0x20
[ 46.725323][ T334] ? load_image+0x3a0/0x3a0
[ 46.729854][ T334] ? __schedule+0xb76/0x14c0
[ 46.734550][ T334] print_address_description+0x7f/0x2c0
[ 46.740228][ T334] ? _raw_spin_lock+0x81/0xe0
[ 46.745127][ T334] kasan_report+0xf1/0x140
[ 46.749655][ T334] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 46.755389][ T334] ? _raw_spin_lock+0x81/0xe0
[ 46.760078][ T334] kasan_check_range+0x280/0x290
[ 46.765021][ T334] __kasan_check_write+0x14/0x20
[ 46.769956][ T334] _raw_spin_lock+0x81/0xe0
[ 46.774755][ T334] ? _raw_spin_trylock_bh+0x130/0x130
[ 46.780139][ T334] ? __kasan_check_write+0x14/0x20
[ 46.785265][ T334] ? _raw_spin_lock+0x8e/0xe0
[ 46.789977][ T334] ? _raw_spin_trylock_bh+0x130/0x130
[ 46.795346][ T334] igrab+0x20/0xa0
[ 46.799068][ T334] f2fs_sync_inode_meta+0x153/0x2a0
[ 46.804267][ T334] f2fs_write_checkpoint+0xa7d/0x1f00
[ 46.809648][ T334] ? __kasan_check_write+0x14/0x20
[ 46.814814][ T334] ? f2fs_get_sectors_written+0x4e0/0x4e0
[ 46.820550][ T334] ? rwsem_write_trylock+0x130/0x300
[ 46.825881][ T334] ? __kasan_check_read+0x11/0x20
[ 46.830903][ T334] ? wb_wait_for_completion+0x1d8/0x270
[ 46.836445][ T334] f2fs_issue_checkpoint+0x2e5/0x470
[ 46.841732][ T334] ? f2fs_destroy_checkpoint_caches+0x30/0x30
[ 46.847808][ T334] ? try_to_writeback_inodes_sb+0xc0/0xc0
[ 46.853613][ T334] f2fs_sync_fs+0x16f/0x2c0
[ 46.858122][ T334] sync_filesystem+0x1cb/0x240
[ 46.863124][ T334] f2fs_quota_off_umount+0x217/0x230
[ 46.868556][ T334] f2fs_put_super+0xb7/0xc00
[ 46.873169][ T334] ? fsnotify_destroy_marks+0x14f/0x400
[ 46.878745][ T334] ? fsnotify_sb_delete+0x471/0x4e0
[ 46.883950][ T334] ? f2fs_drop_inode+0x980/0x980
[ 46.888895][ T334] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 46.895106][ T334] ? clear_inode+0x150/0x150
[ 46.899726][ T334] ? fscrypt_destroy_keyring+0x27f/0x290
[ 46.905365][ T334] ? f2fs_drop_inode+0x980/0x980
[ 46.910306][ T334] generic_shutdown_super+0x151/0x330
[ 46.915673][ T334] kill_block_super+0x7f/0xf0
[ 46.920345][ T334] kill_f2fs_super+0x2e7/0x390
[ 46.925107][ T334] ? radix_tree_delete_item+0x2c8/0x410
[ 46.930650][ T334] ? f2fs_mount+0x40/0x40
[ 46.934979][ T334] ? unregister_shrinker+0x201/0x290
[ 46.940275][ T334] deactivate_locked_super+0xa0/0x100
[ 46.945780][ T334] deactivate_super+0xaf/0xe0
[ 46.950722][ T334] cleanup_mnt+0x446/0x500
[ 46.955417][ T334] __cleanup_mnt+0x19/0x20
[ 46.959871][ T334] task_work_run+0x127/0x190
[ 46.964461][ T334] exit_to_user_mode_loop+0xd0/0xe0
[ 46.969801][ T334] exit_to_user_mode_prepare+0x5a/0xa0
[ 46.975437][ T334] syscall_exit_to_user_mode+0x1a/0x30
[ 46.980945][ T334] do_syscall_64+0x58/0xa0
[ 46.985361][ T334] ? clear_bhb_loop+0x50/0xa0
[ 46.990061][ T334] ? clear_bhb_loop+0x50/0xa0
[ 46.995013][ T334] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.001154][ T334] RIP: 0033:0x7ffa73cdd017
[ 47.005691][ T334] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 47.025572][ T334] RSP: 002b:00007ffff14257c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 47.033991][ T334] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007ffa73cdd017
[ 47.041968][ T334] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffff1425880
[ 47.049936][ T334] RBP: 00007ffff1425880 R08: 0000000000000000 R09: 0000000000000000
[ 47.057906][ T334] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff1426940
[ 47.065997][ T334] R13: 00007ffa73d273b9 R14: 000000000000b242 R15: 0000000000000003
[ 47.073999][ T334]
[ 47.077027][ T334]
[ 47.079383][ T334] Allocated by task 345:
[ 47.083706][ T334] __kasan_slab_alloc+0xbd/0xf0
[ 47.088717][ T334] slab_post_alloc_hook+0x4f/0x2b0
[ 47.094030][ T334] kmem_cache_alloc+0xf7/0x260
[ 47.098799][ T334] f2fs_alloc_inode+0x26/0x330
[ 47.103601][ T334] iget_locked+0x16c/0x7e0
[ 47.108027][ T334] f2fs_iget+0x55/0x5130
[ 47.112268][ T334] f2fs_lookup+0x366/0xab0
[ 47.116769][ T334] path_openat+0xfcf/0x2f10
[ 47.121283][ T334] do_filp_open+0x1b3/0x3e0
[ 47.126246][ T334] do_sys_openat2+0x14c/0x7b0
[ 47.130957][ T334] __x64_sys_open+0x11c/0x140
[ 47.135646][ T334] x64_sys_call+0x3fc/0x9a0
[ 47.140148][ T334] do_syscall_64+0x4c/0xa0
[ 47.144565][ T334] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.150456][ T334]
[ 47.152775][ T334] Freed by task 334:
[ 47.156664][ T334] kasan_set_track+0x4a/0x70
[ 47.161254][ T334] kasan_set_free_info+0x23/0x40
[ 47.166191][ T334] ____kasan_slab_free+0x125/0x160
[ 47.171304][ T334] __kasan_slab_free+0x11/0x20
[ 47.176068][ T334] slab_free_freelist_hook+0xc2/0x190
[ 47.181442][ T334] kmem_cache_free+0x100/0x320
[ 47.186338][ T334] f2fs_free_inode+0x24/0x30
[ 47.190953][ T334] i_callback+0x4c/0x70
[ 47.195152][ T334] rcu_do_batch+0x51d/0xba0
[ 47.199661][ T334] rcu_core+0x5e4/0xf80
[ 47.203819][ T334] rcu_core_si+0x9/0x10
[ 47.207978][ T334] handle_softirqs+0x250/0x560
[ 47.212776][ T334] __irq_exit_rcu+0x52/0xf0
[ 47.217417][ T334] irq_exit_rcu+0x9/0x10
[ 47.221678][ T334] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 47.227489][ T334] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 47.233489][ T334]
[ 47.235811][ T334] Last potentially related work creation:
[ 47.241656][ T334] kasan_save_stack+0x3a/0x60
[ 47.246361][ T334] __kasan_record_aux_stack+0xd2/0x100
[ 47.251876][ T334] kasan_record_aux_stack_noalloc+0xb/0x10
[ 47.257960][ T334] call_rcu+0x105/0xfe0
[ 47.262120][ T334] evict+0x7da/0x870
[ 47.266021][ T334] evict_inodes+0x5de/0x650
[ 47.270534][ T334] generic_shutdown_super+0x96/0x330
[ 47.275827][ T334] kill_block_super+0x7f/0xf0
[ 47.280510][ T334] kill_f2fs_super+0x2e7/0x390
[ 47.285277][ T334] deactivate_locked_super+0xa0/0x100
[ 47.290650][ T334] deactivate_super+0xaf/0xe0
[ 47.295420][ T334] cleanup_mnt+0x446/0x500
[ 47.299845][ T334] __cleanup_mnt+0x19/0x20
[ 47.304267][ T334] task_work_run+0x127/0x190
[ 47.308855][ T334] exit_to_user_mode_loop+0xd0/0xe0
[ 47.314107][ T334] exit_to_user_mode_prepare+0x5a/0xa0
[ 47.319589][ T334] syscall_exit_to_user_mode+0x1a/0x30
[ 47.325075][ T334] do_syscall_64+0x58/0xa0
[ 47.329500][ T334] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.335394][ T334]
[ 47.337719][ T334] The buggy address belongs to the object at ffff888120db6100
[ 47.337719][ T334] which belongs to the cache f2fs_inode_cache of size 1424
[ 47.352291][ T334] The buggy address is located 136 bytes inside of
[ 47.352291][ T334] 1424-byte region [ffff888120db6100, ffff888120db6690)
[ 47.365666][ T334] The buggy address belongs to the page:
[ 47.371379][ T334] page:ffffea0004836c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x120db0
[ 47.381801][ T334] head:ffffea0004836c00 order:3 compound_mapcount:0 compound_pincount:0
[ 47.390122][ T334] flags: 0x4000000000010200(slab|head|zone=1)
[ 47.396201][ T334] raw: 4000000000010200 0000000000000000 dead000000000122 ffff8881081f6900
[ 47.405222][ T334] raw: 0000000000000000 0000000080150015 00000001ffffffff 0000000000000000
[ 47.413805][ T334] page dumped because: kasan: bad access detected
[ 47.420308][ T334] page_owner tracks the page as allocated
[ 47.426029][ T334] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 345, ts 46040992584, free_ts 0
[ 47.446991][ T334] post_alloc_hook+0x192/0x1b0
[ 47.451772][ T334] prep_new_page+0x1c/0x110
[ 47.456333][ T334] get_page_from_freelist+0x2cc5/0x2d50
[ 47.461987][ T334] __alloc_pages+0x18f/0x440
[ 47.466857][ T334] new_slab+0xa1/0x4d0
[ 47.470948][ T334] ___slab_alloc+0x381/0x810
[ 47.475642][ T334] __slab_alloc+0x49/0x90
[ 47.479980][ T334] kmem_cache_alloc+0x138/0x260
[ 47.484945][ T334] f2fs_alloc_inode+0x26/0x330
[ 47.489729][ T334] iget_locked+0x16c/0x7e0
[ 47.494169][ T334] f2fs_iget+0x55/0x5130
[ 47.498433][ T334] f2fs_fill_super+0x3a20/0x6d10
[ 47.503392][ T334] mount_bdev+0x2ae/0x3e0
[ 47.507729][ T334] f2fs_mount+0x34/0x40
[ 47.512075][ T334] legacy_get_tree+0xed/0x190
[ 47.516861][ T334] vfs_get_tree+0x89/0x260
[ 47.521299][ T334] page_owner free stack trace missing
[ 47.526850][ T334]
[ 47.529187][ T334] Memory state around the buggy address:
[ 47.534907][ T334] ffff888120db6080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 47.542971][ T334] ffff888120db6100: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.551155][ T334] >ffff888120db6180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.559365][ T334] ^
[ 47.563710][ T334] ffff888120db6200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.571947][ T334] ffff888120db6280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 47.580009][ T334] ==================================================================
[ 47.588179][ T334] Disabling lock debugging due to kernel taint