Warning: Permanently added '10.128.1.234' (ED25519) to the list of known hosts.
2024/10/23 08:29:32 ignoring optional flag "sandboxArg"="0"
2024/10/23 08:29:32 ignoring optional flag "type"="gce"
2024/10/23 08:29:33 parsed 1 programs
2024/10/23 08:29:33 executed programs: 0
[ 63.716855][ T30] kauditd_printk_skb: 19 callbacks suppressed
[ 63.716871][ T30] audit: type=1400 audit(1729672173.162:95): avc: denied { unlink } for pid=364 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 63.757392][ T364] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 63.812775][ T370] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.820221][ T370] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.828268][ T370] device bridge_slave_0 entered promiscuous mode
[ 63.835468][ T370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.842803][ T370] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.850208][ T370] device bridge_slave_1 entered promiscuous mode
[ 63.902444][ T370] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.909470][ T370] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 63.916728][ T370] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.923830][ T370] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.944057][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.951509][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.959502][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 63.967077][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 63.976601][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 63.984744][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.991938][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 64.001858][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 64.010468][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 64.017594][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 64.029430][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 64.039226][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 64.053700][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 64.066078][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 64.074714][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 64.082665][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 64.091128][ T370] device veth0_vlan entered promiscuous mode
[ 64.103177][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 64.113131][ T370] device veth1_macvtap entered promiscuous mode
[ 64.123934][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 64.135132][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 64.159976][ T376] loop0: detected capacity change from 0 to 512
[ 64.167904][ T30] audit: type=1400 audit(1729672173.612:96): avc: denied { mounton } for pid=375 comm="syz-executor.0" path="/root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/0/file1" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 64.209892][ T376] EXT4-fs (loop0): 1 orphan inode deleted
[ 64.215656][ T376] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,. Quota mode: writeback.
[ 64.239913][ T376] ext4 filesystem being mounted at /root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/0/file1 supports timestamps until 2038 (0x7fffffff)
[ 64.240745][ T30] audit: type=1400 audit(1729672173.682:97): avc: denied { mount } for pid=375 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 64.281763][ T381] EXT4-fs error (device loop0): ext4_ext_remove_space:2840: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 64.284241][ T30] audit: type=1400 audit(1729672173.702:98): avc: denied { write } for pid=375 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 64.295454][ T381] EXT4-fs (loop0): Remounting filesystem read-only
[ 64.317512][ T30] audit: type=1400 audit(1729672173.702:99): avc: denied { add_name } for pid=375 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 64.323529][ T381] EXT4-fs error (device loop0): __ext4_get_inode_loc:4351: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 64.345556][ T30] audit: type=1400 audit(1729672173.702:100): avc: denied { create } for pid=375 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 64.358237][ T381] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5834: Corrupt filesystem
[ 64.377603][ T30] audit: type=1400 audit(1729672173.702:101): avc: denied { read write open } for pid=375 comm="syz-executor.0" path="/root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 64.387744][ T381] EXT4-fs error (device loop0): ext4_punch_hole:4143: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 64.415677][ T30] audit: type=1400 audit(1729672173.702:102): avc: denied { mounton } for pid=375 comm="syz-executor.0" path="/root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 64.455957][ T30] audit: type=1400 audit(1729672173.722:103): avc: denied { ioctl } for pid=375 comm="syz-executor.0" path="/root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/0/file1/bus" dev="loop0" ino=16 ioctlcmd=0x582b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 64.485106][ T30] audit: type=1400 audit(1729672173.872:104): avc: denied { unmount } for pid=370 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 64.545881][ T383] loop0: detected capacity change from 0 to 512
[ 64.558896][ T383] EXT4-fs (loop0): 1 orphan inode deleted
[ 64.564945][ T383] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,. Quota mode: writeback.
[ 64.589290][ T383] ext4 filesystem being mounted at /root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/1/file1 supports timestamps until 2038 (0x7fffffff)
[ 64.611886][ T387] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[ 64.626166][ T387] EXT4-fs (loop0): Remounting filesystem read-only
[ 64.632971][ T387] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6185: Corrupt filesystem
[ 64.641927][ T387] ==================================================================
[ 64.649812][ T387] BUG: KASAN: out-of-bounds in ext4_ext_remove_space+0x2149/0x4a60
[ 64.657535][ T387] Read of size 18446744073709551544 at addr ffff88811fe50054 by task syz-executor.0/387
[ 64.667158][ T387]
[ 64.669336][ T387] CPU: 0 PID: 387 Comm: syz-executor.0 Not tainted 5.15.167-syzkaller-1075712-g5e4635681cf1 #0
[ 64.679609][ T387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 64.689755][ T387] Call Trace:
[ 64.692887][ T387]
[ 64.695653][ T387] dump_stack_lvl+0x151/0x1c0
[ 64.700204][ T387] ? io_uring_drop_tctx_refs+0x190/0x190
[ 64.705866][ T387] ? panic+0x760/0x760
[ 64.710122][ T387] print_address_description+0x87/0x3b0
[ 64.715808][ T387] kasan_report+0x179/0x1c0
[ 64.720360][ T387] ? ext4_ext_remove_space+0x2149/0x4a60
[ 64.726193][ T387] ? ext4_ext_remove_space+0x2149/0x4a60
[ 64.731748][ T387] kasan_check_range+0x293/0x2a0
[ 64.736577][ T387] ? ext4_ext_remove_space+0x2149/0x4a60
[ 64.742277][ T387] memmove+0x2d/0x70
[ 64.746438][ T387] ext4_ext_remove_space+0x2149/0x4a60
[ 64.751733][ T387] ? ext4_ext_index_trans_blocks+0x120/0x120
[ 64.757538][ T387] ? ext4_es_remove_extent+0x297/0x460
[ 64.762835][ T387] ext4_punch_hole+0x794/0xbf0
[ 64.767641][ T387] ext4_fallocate+0x30c/0x1f10
[ 64.772241][ T387] ? ext4_ext_truncate+0x240/0x240
[ 64.777682][ T387] ? fsnotify_perm+0x6a/0x5b0
[ 64.782360][ T387] vfs_fallocate+0x492/0x570
[ 64.787522][ T387] do_vfs_ioctl+0x2238/0x2a80
[ 64.792290][ T387] ? __x64_compat_sys_ioctl+0x90/0x90
[ 64.797780][ T387] ? ioctl_has_perm+0x1f8/0x560
[ 64.802460][ T387] ? ioctl_has_perm+0x3f5/0x560
[ 64.807669][ T387] ? has_cap_mac_admin+0x3c0/0x3c0
[ 64.812921][ T387] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 64.818368][ T387] ? recalc_sigpending+0x1a5/0x230
[ 64.824291][ T387] ? __set_current_blocked+0x2a5/0x2f0
[ 64.830010][ T387] ? selinux_file_ioctl+0x3cc/0x540
[ 64.835047][ T387] ? set_current_blocked+0x40/0x40
[ 64.840280][ T387] ? selinux_file_alloc_security+0x120/0x120
[ 64.846315][ T387] ? __fget_files+0x31e/0x380
[ 64.850942][ T387] ? security_file_ioctl+0x84/0xb0
[ 64.856052][ T387] __se_sys_ioctl+0x99/0x190
[ 64.860707][ T387] __x64_sys_ioctl+0x7b/0x90
[ 64.865208][ T387] x64_sys_call+0x98/0x9a0
[ 64.869390][ T387] do_syscall_64+0x3b/0xb0
[ 64.873821][ T387] ? clear_bhb_loop+0x35/0x90
[ 64.878337][ T387] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.884063][ T387] RIP: 0033:0x7f2c0e085ae9
[ 64.888317][ T387] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 64.907852][ T387] RSP: 002b:00007f2c058270c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 64.916268][ T387] RAX: ffffffffffffffda RBX: 00007f2c0e1a5050 RCX: 00007f2c0e085ae9
[ 64.924556][ T387] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004
[ 64.932633][ T387] RBP: 00007f2c0e0d147a R08: 0000000000000000 R09: 0000000000000000
[ 64.940871][ T387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 64.948855][ T387] R13: 000000000000000b R14: 00007f2c0e1a5050 R15: 00007ffea6ea1658
[ 64.956960][ T387]
[ 64.959806][ T387]
[ 64.962183][ T387] The buggy address belongs to the page:
[ 64.968226][ T387] page:ffffea00047f9400 refcount:2 mapcount:0 mapping:ffff8881092cea98 index:0x3a pfn:0x11fe50
[ 64.979781][ T387] memcg:ffff888107ffc000
[ 64.984231][ T387] aops:def_blk_aops ino:700000
[ 64.989556][ T387] flags: 0x4000000000002036(referenced|uptodate|lru|active|private|zone=1)
[ 64.998575][ T387] raw: 4000000000002036 ffffea0004352e48 ffffea000431dc88 ffff8881092cea98
[ 65.007648][ T387] raw: 000000000000003a ffff888119ed7690 00000002ffffffff ffff888107ffc000
[ 65.016452][ T387] page dumped because: kasan: bad access detected
[ 65.022915][ T387] page_owner tracks the page as allocated
[ 65.028820][ T387] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 383, ts 64608807932, free_ts 45945182527
[ 65.046431][ T387] post_alloc_hook+0x1a3/0x1b0
[ 65.051384][ T387] prep_new_page+0x1b/0x110
[ 65.055930][ T387] get_page_from_freelist+0x3550/0x35d0
[ 65.062188][ T387] __alloc_pages+0x27e/0x8f0
[ 65.066882][ T387] pagecache_get_page+0xb18/0xeb0
[ 65.071985][ T387] __getblk_gfp+0x21e/0x7c0
[ 65.076327][ T387] ext4_ext_insert_extent+0xf7a/0x4b10
[ 65.081616][ T387] ext4_ext_map_blocks+0x1d3e/0x7450
[ 65.086736][ T387] ext4_map_blocks+0xa60/0x1c70
[ 65.091808][ T387] _ext4_get_block+0x23b/0x660
[ 65.096385][ T387] ext4_get_block+0x39/0x50
[ 65.100814][ T387] ext4_block_write_begin+0x5ea/0x12a0
[ 65.106299][ T387] ext4_write_begin+0x6bc/0x13d0
[ 65.111157][ T387] ext4_da_write_begin+0x4a2/0xc30
[ 65.116614][ T387] generic_perform_write+0x2bc/0x5a0
[ 65.122086][ T387] ext4_buffered_write_iter+0x48a/0x610
[ 65.127987][ T387] page last free stack trace:
[ 65.132589][ T387] free_unref_page_prepare+0x7c8/0x7d0
[ 65.138055][ T387] free_unref_page_list+0x14b/0xa60
[ 65.143277][ T387] release_pages+0x1310/0x1370
[ 65.148123][ T387] free_pages_and_swap_cache+0x8a/0xa0
[ 65.153417][ T387] tlb_flush_mmu+0xd0/0x180
[ 65.157760][ T387] unmap_page_range+0x1c70/0x1ed0
[ 65.163156][ T387] unmap_vmas+0x389/0x560
[ 65.167411][ T387] exit_mmap+0x3e4/0x940
[ 65.171852][ T387] __mmput+0x95/0x310
[ 65.175825][ T387] mmput+0x5b/0x170
[ 65.179568][ T387] do_exit+0xb9c/0x2ca0
[ 65.184232][ T387] do_group_exit+0x141/0x310
[ 65.189435][ T387] get_signal+0x7a3/0x1630
[ 65.193949][ T387] arch_do_signal_or_restart+0xbd/0x1680
[ 65.199535][ T387] exit_to_user_mode_loop+0xa0/0xe0
[ 65.204630][ T387] exit_to_user_mode_prepare+0x5a/0xa0
[ 65.210089][ T387]
[ 65.212256][ T387] Memory state around the buggy address:
[ 65.218268][ T387] ffff88811fe4ff00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 65.226252][ T387] ffff88811fe4ff80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 65.234148][ T387] >ffff88811fe50000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 65.242034][ T387] ^
[ 65.248546][ T387] ffff88811fe50080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 65.256516][ T387] ffff88811fe50100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 65.264428][ T387] ==================================================================
[ 65.272683][ T387] Disabling lock debugging due to kernel taint
[ 65.280198][ T387] EXT4-fs error (device loop0): __ext4_get_inode_loc:4351: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 65.293731][ T387] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5834: Corrupt filesystem
[ 65.305049][ T387] EXT4-fs error (device loop0): ext4_punch_hole:4143: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 65.406952][ T390] loop0: detected capacity change from 0 to 512
[ 65.418808][ T390] EXT4-fs (loop0): 1 orphan inode deleted
[ 65.424470][ T390] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,. Quota mode: writeback.
[ 65.448372][ T390] ext4 filesystem being mounted at /root/syzkaller-testdir3002807149/syzkaller.gbC5Gs/2/file1 supports timestamps until 2038 (0x7fffffff)
[ 65.471036][ T393] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[ 65.485004][ T393] EXT4-fs (loop0): Remounting filesystem read-only
[ 65.492907][ T393] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6185: Corrupt filesystem
[ 65.508664][ T20] general protection fault, probably for non-canonical address 0xf2c0010e0000001a: 0000 [#1] PREEMPT SMP KASAN
[ 65.521765][ T20] KASAN: maybe wild-memory-access in range [0x96002870000000d0-0x96002870000000d7]
[ 65.531263][ T20] CPU: 0 PID: 20 Comm: kworker/0:1 Tainted: G B 5.15.167-syzkaller-1075712-g5e4635681cf1 #0
[ 65.542643][ T20] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 65.552523][ T20] Workqueue: ipv6_addrconf addrconf_dad_work
[ 65.558428][ T20] RIP: 0010:__stack_depot_save+0x170/0x470
[ 65.564066][ T20] Code: 2e e4 ce 04 44 89 f1 81 e1 ff 0f 00 00 48 89 45 b0 48 89 4d b8 4c 8b 24 c8 4c 89 cb 41 89 df eb 04 4d 8b 24 24 4d 85 e4 74 2d <45> 39 74 24 08 75 f0 41 39 5c 24 0c 75 e9 31 c0 49 8b 4c c5 00 49
[ 65.584146][ T20] RSP: 0018:ffffc90000147288 EFLAGS: 00010286
[ 65.590655][ T20] RAX: ffff88823fe40000 RBX: 0000000000000012 RCX: 0000000000000fe4
[ 65.599081][ T20] RDX: ffffc90000147374 RSI: 0000000000000001 RDI: 0000000000000800
[ 65.607060][ T20] RBP: ffffc900001472e0 R08: 0000000000000003 R09: 0000000000000012
[ 65.615042][ T20] R10: ffffc90000147250 R11: dffffc0000000001 R12: f2c0010e00000012
[ 65.623317][ T20] R13: ffffc900001472f0 R14: 00000000f0d86fe4 R15: 0000000000000012
[ 65.631302][ T20] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 65.640511][ T20] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 65.647009][ T20] CR2: 00007f2c05827d58 CR3: 000000010b224000 CR4: 00000000003506b0
[ 65.654910][ T20] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 65.663430][ T20] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 65.671226][ T20] Call Trace:
[ 65.674359][ T20]
[ 65.677241][ T20] ? __die_body+0x62/0xb0
[ 65.681671][ T20] ? die_addr+0x9f/0xd0
[ 65.685662][ T20] ? exc_general_protection+0x311/0x4b0
[ 65.691039][ T20] ? asm_exc_general_protection+0x27/0x30
[ 65.696598][ T20] ? __stack_depot_save+0x170/0x470
[ 65.701628][ T20] ? __stack_depot_save+0x34/0x470
[ 65.706572][ T20] ? kfree+0xc8/0x220
[ 65.710389][ T20] ? kfree+0xc8/0x220
[ 65.714292][ T20] kasan_set_track+0x5d/0x70
[ 65.718724][ T20] ? kasan_set_track+0x4b/0x70
[ 65.723540][ T20] ? kasan_set_free_info+0x23/0x40
[ 65.728529][ T20] ? ____kasan_slab_free+0x126/0x160
[ 65.733750][ T20] ? __kasan_slab_free+0x11/0x20
[ 65.738595][ T20] ? slab_free_freelist_hook+0xbd/0x190
[ 65.744104][ T20] ? kfree+0xc8/0x220
[ 65.747894][ T20] ? skb_release_data+0x8a9/0xa80
[ 65.752848][ T20] ? consume_skb+0xac/0x250
[ 65.757700][ T20] ? netlink_broadcast_filtered+0x10f4/0x1220
[ 65.763776][ T20] ? nlmsg_notify+0x101/0x1c0
[ 65.768371][ T20] ? rtnl_notify+0x9c/0xd0
[ 65.772804][ T20] ? __ipv6_ifa_notify+0x32a/0x11c0
[ 65.777951][ T20] ? addrconf_dad_completed+0x177/0xd80
[ 65.783453][ T20] ? addrconf_dad_work+0xdc1/0x1710
[ 65.788427][ T20] ? process_one_work+0x6bb/0xc10
[ 65.793287][ T20] ? worker_thread+0xad5/0x12a0
[ 65.797979][ T20] ? kthread+0x421/0x510
[ 65.802189][ T20] ? ret_from_fork+0x1f/0x30
[ 65.806900][ T20] ? stack_trace_snprint+0xf0/0xf0
[ 65.812045][ T20] kasan_set_free_info+0x23/0x40
[ 65.816896][ T20] ____kasan_slab_free+0x126/0x160
[ 65.821848][ T20] __kasan_slab_free+0x11/0x20
[ 65.826571][ T20] slab_free_freelist_hook+0xbd/0x190
[ 65.831959][ T20] ? skb_release_data+0x8a9/0xa80
[ 65.837066][ T20] kfree+0xc8/0x220
[ 65.840780][ T20] ? worker_thread+0xad5/0x12a0
[ 65.845727][ T20] skb_release_data+0x8a9/0xa80
[ 65.850452][ T20] consume_skb+0xac/0x250
[ 65.854681][ T20] netlink_broadcast_filtered+0x10f4/0x1220
[ 65.860400][ T20] ? inet6_fill_ifaddr+0x99b/0xf60
[ 65.865434][ T20] nlmsg_notify+0x101/0x1c0
[ 65.869946][ T20] rtnl_notify+0x9c/0xd0
[ 65.874208][ T20] __ipv6_ifa_notify+0x32a/0x11c0
[ 65.879840][ T20] ? snmp6_fill_stats+0x720/0x720
[ 65.885533][ T20] ? __kasan_check_write+0x14/0x20
[ 65.890978][ T20] ? try_to_grab_pending+0x1de/0x5d0
[ 65.896392][ T20] ? mod_delayed_work_on+0x190/0x190
[ 65.901850][ T20] ? mod_timer_pending+0x30/0x30
[ 65.906987][ T20] ? __kasan_check_write+0x14/0x20
[ 65.912074][ T20] ? __cancel_work+0x224/0x2a0
[ 65.916696][ T20] ? cancel_work+0x20/0x20
[ 65.920950][ T20] ? add_timer+0x68/0x80
[ 65.925092][ T20] addrconf_dad_completed+0x177/0xd80
[ 65.930301][ T20] ? _raw_spin_lock+0xa4/0x1b0
[ 65.935013][ T20] ? addrconf_dad_stop+0x410/0x410
[ 65.939953][ T20] ? gc_worker+0x2b2/0x1300
[ 65.944522][ T20] addrconf_dad_work+0xdc1/0x1710
[ 65.949583][ T20] ? ipv6_get_saddr_eval+0xf20/0xf20
[ 65.954731][ T20] ? __kasan_check_write+0x14/0x20
[ 65.959695][ T20] ? __kasan_check_read+0x11/0x20
[ 65.965130][ T20] ? read_word_at_a_time+0x12/0x20
[ 65.970976][ T20] ? strscpy+0x9c/0x260
[ 65.974978][ T20] process_one_work+0x6bb/0xc10
[ 65.979823][ T20] worker_thread+0xad5/0x12a0
[ 65.984341][ T20] ? _raw_spin_lock+0x1b0/0x1b0
[ 65.989115][ T20] kthread+0x421/0x510
[ 65.993094][ T20] ? worker_clr_flags+0x180/0x180
[ 65.998107][ T20] ? kthread_blkcg+0xd0/0xd0
[ 66.003031][ T20] ret_from_fork+0x1f/0x30
[ 66.007576][ T20]
[ 66.010532][ T20] Modules linked in:
[ 66.014535][ C1] general protection fault, probably for non-canonical address 0xfee26b8000000160: 0000 [#2] PREEMPT SMP KASAN
[ 66.026223][ C1] KASAN: maybe wild-memory-access in range [0xf7137c0000000b00-0xf7137c0000000b07]
[ 66.036997][ C1] CPU: 1 PID: 393 Comm: syz-executor.0 Tainted: G B D 5.15.167-syzkaller-1075712-g5e4635681cf1 #0
[ 66.049973][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 66.060784][ C1] RIP: 0010:update_curr+0x71/0x5d0
[ 66.066103][ C1] Code: 30 01 00 00 4c 89 e0 48 c1 e8 03 42 80 3c 38 00 74 08 4c 89 e7 e8 bf a7 63 00 bb 00 0b 00 00 49 03 1c 24 48 89 d8 48 c1 e8 03 <42> 80 3c 38 00 74 08 48 89 df e8 a0 a7 63 00 48 83 7d c8 00 0f 84
[ 66.085984][ C1] RSP: 0018:ffffc900001d08a0 EFLAGS: 00010806
[ 66.092163][ C1] RAX: 1ee26f8000000160 RBX: f7137c0000000b00 RCX: 1ffff11024398d88
[ 66.100370][ C1] RDX: 0000000000000000 RSI: ffff8881011e2780 RDI: ffff888121cc6c00
[ 66.108525][ C1] RBP: ffffc900001d08f0 R08: dffffc0000000000 R09: fffffbfff0d61888
[ 66.116790][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888121cc6d30
[ 66.124987][ C1] R13: ffff888121cc6c40 R14: ffff888121cc6c00 R15: dffffc0000000000
[ 66.133018][ C1] FS: 00007f2c058276c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 66.141786][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 66.148205][ C1] CR2: 0000000020040000 CR3: 000000010b224000 CR4: 00000000003506a0
[ 66.156353][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 66.164507][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 66.172307][ C1] Call Trace:
[ 66.175602][ C1]
[ 66.178699][ C1] ? __die_body+0x62/0xb0
[ 66.182869][ C1] ? die_addr+0x9f/0xd0
[ 66.186854][ C1] ? exc_general_protection+0x311/0x4b0
[ 66.192344][ C1] ? asm_exc_general_protection+0x27/0x30
[ 66.197977][ C1] ? update_curr+0x71/0x5d0
[ 66.202328][ C1] enqueue_task_fair+0x4b9/0x2650
[ 66.207541][ C1] ? handle_softirqs+0x25e/0x5c0
[ 66.212554][ C1] ? __kasan_check_read+0x11/0x20
[ 66.217450][ C1] ? sched_group_set_idle+0x640/0x640
[ 66.222623][ C1] ? sched_clock_cpu+0x18/0x3b0
[ 66.227392][ C1] ? psi_task_change+0x22c/0x360
[ 66.232167][ C1] enqueue_task+0x195/0x1430
[ 66.236680][ C1] ? activate_task+0xb0/0xb0
[ 66.241217][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 66.246255][ C1] ? sched_clock+0x9/0x10
[ 66.250700][ C1] ? sched_clock_cpu+0x18/0x3b0
[ 66.255392][ C1] ? __kasan_check_write+0x14/0x20
[ 66.260424][ C1] ? _raw_spin_lock+0xa4/0x1b0
[ 66.265022][ C1] ttwu_do_activate+0x15d/0x290
[ 66.269846][ C1] try_to_wake_up+0x644/0x1160
[ 66.274610][ C1] ? try_invoke_on_locked_down_task+0x2a0/0x2a0
[ 66.280774][ C1] ? __kasan_check_write+0x14/0x20
[ 66.285752][ C1] ? _raw_spin_lock_irqsave+0x210/0x210
[ 66.291926][ C1] wake_up_process+0x10/0x20
[ 66.297251][ C1] hrtimer_wakeup+0x62/0x80
[ 66.302073][ C1] ? __remove_hrtimer+0x4d0/0x4d0
[ 66.307189][ C1] __hrtimer_run_queues+0x41a/0xad0
[ 66.312477][ C1] ? hrtimer_interrupt+0xaa0/0xaa0
[ 66.317392][ C1] ? clockevents_program_event+0x22f/0x300
[ 66.323202][ C1] ? ktime_get_update_offsets_now+0x2ba/0x2d0
[ 66.329239][ C1] hrtimer_interrupt+0x40c/0xaa0
[ 66.334639][ C1] __sysvec_apic_timer_interrupt+0xfd/0x3c0
[ 66.340440][ C1] sysvec_apic_timer_interrupt+0x95/0xc0
[ 66.345986][ C1]
[ 66.348765][ C1]
[ 66.351539][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 66.357359][ C1] RIP: 0010:__memmove+0x19c/0x1a0
[ 66.362405][ C1] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 cc eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 66.381967][ C1] RSP: 0018:ffffc90000d67500 EFLAGS: 00010282
[ 66.387964][ C1] RAX: ffff888120e57048 RBX: ffffffff81e15669 RCX: ffffffffff107b3b
[ 66.396046][ C1] RDX: ffffffffffffffb8 RSI: ffff888121d4f4d1 RDI: ffff888121d4f4c5
[ 66.404027][ C1] RBP: ffffc90000d67530 R08: ffffffff81e15552 R09: ffffed10233d7c55
[ 66.411831][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffffffffffb8
[ 66.419648][ C1] R13: 0000000000000000 R14: ffff888120e57054 R15: ffff888120e57048
[ 66.427631][ C1] ? ext4_ext_remove_space+0x2149/0x4a60
[ 66.433100][ C1] ? ext4_ext_remove_space+0x2032/0x4a60
[ 66.438567][ C1] ? memmove+0x56/0x70
[ 66.442565][ C1] ext4_ext_remove_space+0x2149/0x4a60
[ 66.447942][ C1] ? ext4_ext_index_trans_blocks+0x120/0x120
[ 66.453788][ C1] ? ext4_es_remove_extent+0x297/0x460
[ 66.459056][ C1] ext4_punch_hole+0x794/0xbf0
[ 66.463653][ C1] ext4_fallocate+0x30c/0x1f10
[ 66.468248][ C1] ? ext4_ext_truncate+0x240/0x240
[ 66.473293][ C1] ? fsnotify_perm+0x6a/0x5b0
[ 66.477796][ C1] vfs_fallocate+0x492/0x570
[ 66.482221][ C1] do_vfs_ioctl+0x2238/0x2a80
[ 66.486736][ C1] ? __x64_compat_sys_ioctl+0x90/0x90
[ 66.492117][ C1] ? ioctl_has_perm+0x1f8/0x560
[ 66.496888][ C1] ? ioctl_has_perm+0x3f5/0x560
[ 66.501666][ C1] ? has_cap_mac_admin+0x3c0/0x3c0
[ 66.506701][ C1] ? _raw_spin_lock_irq+0xa5/0x1b0
[ 66.511865][ C1] ? recalc_sigpending+0x1a5/0x230
[ 66.517185][ C1] ? __set_current_blocked+0x2a5/0x2f0
[ 66.522668][ C1] ? selinux_file_ioctl+0x3cc/0x540
[ 66.527700][ C1] ? set_current_blocked+0x40/0x40
[ 66.533012][ C1] ? selinux_file_alloc_security+0x120/0x120
[ 66.538807][ C1] ? __fget_files+0x31e/0x380
[ 66.543320][ C1] ? security_file_ioctl+0x84/0xb0
[ 66.548437][ C1] __se_sys_ioctl+0x99/0x190
[ 66.552961][ C1] __x64_sys_ioctl+0x7b/0x90
[ 66.557736][ C1] x64_sys_call+0x98/0x9a0
[ 66.561989][ C1] do_syscall_64+0x3b/0xb0
[ 66.566409][ C1] ? clear_bhb_loop+0x35/0x90
[ 66.571010][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 66.576853][ C1] RIP: 0033:0x7f2c0e085ae9
[ 66.581103][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 66.600724][ C1] RSP: 002b:00007f2c058270c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 66.609453][ C1] RAX: ffffffffffffffda RBX: 00007f2c0e1a5050 RCX: 00007f2c0e085ae9
[ 66.617451][ C1] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004
[ 66.625268][ C1] RBP: 00007f2c0e0d147a R08: 0000000000000000 R09: 0000000000000000
[ 66.633076][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 66.641186][ C1] R13: 000000000000000b R14: 00007f2c0e1a5050 R15: 00007ffea6ea1658
[ 66.649179][ C1]
[ 66.652150][ C1] Modules linked in:
[ 66.655947][ C1] ---[ end trace 80d0ef15784ea85a ]---
[ 66.661329][ C1] RIP: 0010:__stack_depot_save+0x170/0x470
[ 66.666966][ C1] Code: 2e e4 ce 04 44 89 f1 81 e1 ff 0f 00 00 48 89 45 b0 48 89 4d b8 4c 8b 24 c8 4c 89 cb 41 89 df eb 04 4d 8b 24 24 4d 85 e4 74 2d <45> 39 74 24 08 75 f0 41 39 5c 24 0c 75 e9 31 c0 49 8b 4c c5 00 49
[ 66.687134][ C1] RSP: 0018:ffffc90000147288 EFLAGS: 00010286
[ 66.693031][ C1] RAX: ffff88823fe40000 RBX: 0000000000000012 RCX: 0000000000000fe4
[ 66.701194][ C1] RDX: ffffc90000147374 RSI: 0000000000000001 RDI: 0000000000000800
[ 66.709089][ C1] RBP: ffffc900001472e0 R08: 0000000000000003 R09: 0000000000000012
[ 66.716988][ C1] R10: ffffc90000147250 R11: dffffc0000000001 R12: f2c0010e00000012
[ 66.724887][ C1] R13: ffffc900001472f0 R14: 00000000f0d86fe4 R15: 0000000000000012
[ 66.732778][ C1] FS: 00007f2c058276c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 66.741630][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 66.748147][ C1] CR2: 0000000020040000 CR3: 000000010b224000 CR4: 00000000003506a0
[ 66.756078][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 66.764228][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 66.772941][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 67.926660][ C1] Shutting down cpus with NMI
[ 67.931543][ C1] Kernel Offset: disabled
[ 67.935912][ C1] Rebooting in 86400 seconds..