Warning: Permanently added '10.128.10.22' (ED25519) to the list of known hosts.
2025/04/09 15:52:53 ignoring optional flag "sandboxArg"="0"
2025/04/09 15:52:54 parsed 1 programs
[   84.467378][ T2029] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2025/04/09 15:53:04 executed programs: 0
[   94.385704][ T2521] loop0: detected capacity change from 0 to 32768
[   94.398657][ T2521] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 66 has bad blkno in extent list at depth 65533 (index 289)
[   94.419602][ T2521] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[   94.429625][ T2521] OCFS2: File system is now read-only.
[   94.435101][ T2521] (syz.0.15,2521,1):ocfs2_find_leaf:1933 ERROR: status = -30
[   94.443275][ T2521] (syz.0.15,2521,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[   94.451570][ T2521] (syz.0.15,2521,1):ocfs2_get_clusters:624 ERROR: status = -30
[   94.459175][ T2521] (syz.0.15,2521,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[   94.467503][ T2521] (syz.0.15,2521,1):ocfs2_read_virt_blocks:981 ERROR: status = -30
[   94.475564][ T2521] (syz.0.15,2521,1):ocfs2_read_dir_block:511 ERROR: status = -30
[   94.483734][ T2521] (syz.0.15,2521,1):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[   94.492520][ T2521] (syz.0.15,2521,1):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[   94.492533][ T2521] (syz.0.15,2521,1):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[   94.513321][ T2521] (syz.0.15,2521,1):ocfs2_initialize_super:2252 ERROR: status = -30
[   94.521490][ T2521] (syz.0.15,2521,1):ocfs2_fill_super:1176 ERROR: status = -30
[   94.786318][ T2523] loop0: detected capacity change from 0 to 32768
[   94.795441][ T2523] ==================================================================
[   94.803664][ T2523] BUG: KASAN: use-after-free in __ocfs2_find_path+0x172/0x760
[   94.811148][ T2523] Read of size 4 at addr ffff88806a850000 by task syz.0.16/2523
[   94.818786][ T2523] 
[   94.821154][ T2523] CPU: 0 PID: 2523 Comm: syz.0.16 Not tainted 6.1.133-syzkaller #0
[   94.829042][ T2523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   94.839090][ T2523] Call Trace:
[   94.842370][ T2523]  <TASK>
[   94.845465][ T2523]  dump_stack_lvl+0x163/0x213
[   94.850144][ T2523]  ? nf_tcp_handle_invalid+0x352/0x352
[   94.855588][ T2523]  ? panic+0x495/0x495
[   94.859662][ T2523]  ? _printk+0xca/0x10a
[   94.863819][ T2523]  ? __virt_addr_valid+0x134/0x330
[   94.868948][ T2523]  print_report+0x15f/0x4f0
[   94.873465][ T2523]  ? __virt_addr_valid+0x134/0x330
[   94.878591][ T2523]  ? __virt_addr_valid+0x2df/0x330
[   94.883686][ T2523]  ? __ocfs2_find_path+0x172/0x760
[   94.888784][ T2523]  kasan_report+0x136/0x160
[   94.893278][ T2523]  ? __ocfs2_find_path+0x172/0x760
[   94.898462][ T2523]  __ocfs2_find_path+0x172/0x760
[   94.903469][ T2523]  ? ocfs2_find_leaf+0x1e0/0x1e0
[   94.908397][ T2523]  ? ocfs2_find_path+0x120/0x120
[   94.913313][ T2523]  ? ocfs2_refresh_inode+0x9b0/0x9b0
[   94.918608][ T2523]  ocfs2_find_leaf+0xc0/0x1e0
[   94.923266][ T2523]  ? find_path_ins+0x150/0x150
[   94.928041][ T2523]  ? ocfs2_refresh_inode+0x9b0/0x9b0
[   94.933305][ T2523]  ocfs2_get_clusters_nocache+0x194/0xa20
[   94.939095][ T2523]  ? ocfs2_get_clusters+0xde0/0xde0
[   94.944296][ T2523]  ? ocfs2_read_inode_block+0x100/0x1c0
[   94.949838][ T2523]  ? ocfs2_read_inode_block_full+0x1c0/0x1c0
[   94.955805][ T2523]  ? do_raw_spin_unlock+0x137/0x8a0
[   94.960996][ T2523]  ocfs2_get_clusters+0x754/0xde0
[   94.966037][ T2523]  ? ocfs2_xattr_get_clusters+0x8c0/0x8c0
[   94.971770][ T2523]  ? down_read+0x8fd/0xba0
[   94.976184][ T2523]  ? look_up_lock_class+0x66/0xd0
[   94.981201][ T2523]  ocfs2_extent_map_get_blocks+0x182/0x640
[   94.986997][ T2523]  ? ocfs2_get_clusters_nocache+0xa20/0xa20
[   94.992886][ T2523]  ocfs2_read_virt_blocks+0x257/0x780
[   94.998262][ T2523]  ? ocfs2_validate_dx_leaf+0x1c0/0x1c0
[   95.003810][ T2523]  ? ocfs2_seek_data_hole_offset+0xb90/0xb90
[   95.009826][ T2523]  ? verify_lock_unused+0x140/0x140
[   95.015273][ T2523]  ocfs2_find_entry+0x38e/0x1fd0
[   95.020196][ T2523]  ? memset+0x1f/0x40
[   95.024160][ T2523]  ? ocfs2_free_dir_lookup_result+0xc0/0xc0
[   95.030030][ T2523]  ? do_raw_spin_unlock+0x137/0x8a0
[   95.035294][ T2523]  ? ocfs2_lock_res_init_common+0x3c4/0x4b0
[   95.041275][ T2523]  ? ocfs2_inode_lock_res_init+0x2c0/0x2c0
[   95.047077][ T2523]  ? submit_bio_noacct_nocheck+0xc8a/0xf00
[   95.052912][ T2523]  ? read_lock_is_recursive+0x10/0x10
[   95.058268][ T2523]  ? vsnprintf+0x1970/0x1970
[   95.062926][ T2523]  ? rcu_is_watching+0x1b/0x90
[   95.067669][ T2523]  ? vsnprintf+0xb6e/0x1970
[   95.072154][ T2523]  ocfs2_find_files_on_disk+0x8c/0x200
[   95.077594][ T2523]  ocfs2_lookup_ino_from_name+0xa8/0x190
[   95.083295][ T2523]  ? ocfs2_find_files_on_disk+0x200/0x200
[   95.088999][ T2523]  ? __stack_depot_save+0x1d/0x460
[   95.094091][ T2523]  ocfs2_get_system_file_inode+0x3d8/0x670
[   95.100149][ T2523]  ? mount_bdev+0x26b/0x340
[   95.104739][ T2523]  ? legacy_get_tree+0xe5/0x170
[   95.109569][ T2523]  ? vfs_get_tree+0x7a/0x170
[   95.114152][ T2523]  ? do_new_mount+0x1e0/0x910
[   95.118814][ T2523]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   95.124864][ T2523]  ? ocfs2_fast_symlink_read_folio+0x480/0x480
[   95.131001][ T2523]  ocfs2_init_global_system_inodes+0x275/0x560
[   95.137133][ T2523]  ? trace_ocfs2_initialize_super+0x100/0x100
[   95.143196][ T2523]  ? __kasan_kmalloc+0x97/0xb0
[   95.147950][ T2523]  ? ocfs2_new_dlm_debug+0xa7/0x1e0
[   95.153134][ T2523]  ? ocfs2_put_dlm_debug+0x40/0x40
[   95.158226][ T2523]  ocfs2_fill_super+0x3a11/0x4d10
[   95.163232][ T2523]  ? ocfs2_mount+0x10/0x10
[   95.167642][ T2523]  ? __lock_acquire+0xfa4/0x7110
[   95.172570][ T2523]  ? __lock_acquire+0xfa4/0x7110
[   95.177527][ T2523]  ? unwind_next_frame+0x1a3f/0x2220
[   95.182792][ T2523]  ? deref_stack_reg+0x17c/0x210
[   95.187713][ T2523]  ? preempt_count_add+0x8f/0x120
[   95.192722][ T2523]  ? verify_lock_unused+0x140/0x140
[   95.197903][ T2523]  ? __lock_acquire+0xfa4/0x7110
[   95.202823][ T2523]  ? verify_lock_unused+0x140/0x140
[   95.208002][ T2523]  ? verify_lock_unused+0x140/0x140
[   95.213188][ T2523]  ? read_lock_is_recursive+0x10/0x10
[   95.218556][ T2523]  ? __stack_depot_save+0x1d/0x460
[   95.223898][ T2523]  ? reacquire_held_locks+0x3a8/0x590
[   95.229257][ T2523]  ? alloc_super+0x1e0/0x8a0
[   95.233841][ T2523]  ? bdev_name+0x181/0x340
[   95.238237][ T2523]  ? pointer+0x1d3/0xc90
[   95.242462][ T2523]  ? string+0x240/0x240
[   95.246596][ T2523]  ? vsnprintf+0x1970/0x1970
[   95.251219][ T2523]  ? ptr_to_hashval+0x50/0x50
[   95.255893][ T2523]  ? rwsem_write_trylock+0x15e/0x200
[   95.261168][ T2523]  ? mount_bdev+0xe8/0x340
[   95.265570][ T2523]  ? snprintf+0xcc/0x110
[   95.269795][ T2523]  ? __up_read+0x360/0x360
[   95.274191][ T2523]  ? vscnprintf+0x30/0x30
[   95.278502][ T2523]  mount_bdev+0x26b/0x340
[   95.282815][ T2523]  ? ocfs2_mount+0x10/0x10
[   95.287217][ T2523]  legacy_get_tree+0xe5/0x170
[   95.291879][ T2523]  ? trace_raw_output_ocfs2_buffer_cached_end+0xd0/0xd0
[   95.298965][ T2523]  vfs_get_tree+0x7a/0x170
[   95.303390][ T2523]  do_new_mount+0x21a/0x910
[   95.307929][ T2523]  ? do_move_mount_old+0x120/0x120
[   95.313053][ T2523]  __se_sys_mount+0x22e/0x2c0
[   95.317736][ T2523]  ? print_irqtrace_events+0x210/0x210
[   95.323201][ T2523]  ? __x64_sys_mount+0xc0/0xc0
[   95.328048][ T2523]  ? syscall_enter_from_user_mode+0x2e/0x200
[   95.334021][ T2523]  ? lockdep_hardirqs_on+0x94/0xf0
[   95.339117][ T2523]  ? syscall_enter_from_user_mode+0x2e/0x200
[   95.345173][ T2523]  do_syscall_64+0x3b/0x80
[   95.349821][ T2523]  ? clear_bhb_loop+0x45/0xa0
[   95.354518][ T2523]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   95.360417][ T2523] RIP: 0033:0x7fe6d717f79a
[   95.364816][ T2523] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.384972][ T2523] RSP: 002b:00007fe6d7f8ce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   95.394012][ T2523] RAX: ffffffffffffffda RBX: 00007fe6d7f8cef0 RCX: 00007fe6d717f79a
[   95.402316][ T2523] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007fe6d7f8ceb0
[   95.410444][ T2523] RBP: 0000000020004440 R08: 00007fe6d7f8cef0 R09: 0000000001000000
[   95.418397][ T2523] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[   95.426557][ T2523] R13: 00007fe6d7f8ceb0 R14: 000000000000444a R15: 00000000200005c0
[   95.434543][ T2523]  </TASK>
[   95.437545][ T2523] 
[   95.439855][ T2523] The buggy address belongs to the physical page:
[   95.446267][ T2523] page:ffffea0001aa1400 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6a850
[   95.456501][ T2523] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   95.463601][ T2523] raw: 00fff00000000000 ffffea0001aa1448 ffff8880b9e3e9a0 0000000000000000
[   95.472601][ T2523] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   95.481161][ T2523] page dumped because: kasan: bad access detected
[   95.487655][ T2523] page_owner tracks the page as freed
[   95.493007][ T2523] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 2523, tgid 2522 (syz.0.16), ts 94647471967, free_ts 94785938253
[   95.511474][ T2523]  post_alloc_hook+0x286/0x2b0
[   95.516311][ T2523]  get_page_from_freelist+0x340b/0x35b0
[   95.521925][ T2523]  __alloc_pages+0x251/0x640
[   95.526512][ T2523]  __folio_alloc+0xf/0x30
[   95.531030][ T2523]  vma_alloc_folio+0x484/0x9e0
[   95.535774][ T2523]  handle_mm_fault+0x2462/0x40a0
[   95.540778][ T2523]  exc_page_fault+0x279/0x5f0
[   95.545606][ T2523]  asm_exc_page_fault+0x22/0x30
[   95.550436][ T2523] page last free stack trace:
[   95.555121][ T2523]  free_unref_page_prepare+0x10b7/0x13b0
[   95.560733][ T2523]  free_unref_page_list+0x54b/0x7e0
[   95.565918][ T2523]  release_pages+0x1c13/0x1dc0
[   95.570662][ T2523]  tlb_flush_mmu+0xe5/0x1d0
[   95.575145][ T2523]  tlb_finish_mmu+0xb0/0x1b0
[   95.579711][ T2523]  unmap_region+0x265/0x2b0
[   95.584192][ T2523]  do_mas_align_munmap+0xa2b/0x1140
[   95.589367][ T2523]  do_mas_munmap+0x195/0x1f0
[   95.593932][ T2523]  __vm_munmap+0x236/0x300
[   95.598324][ T2523]  __x64_sys_munmap+0x57/0x60
[   95.602978][ T2523]  do_syscall_64+0x3b/0x80
[   95.607370][ T2523]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   95.613243][ T2523] 
[   95.615576][ T2523] Memory state around the buggy address:
[   95.621206][ T2523]  ffff88806a84ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   95.629270][ T2523]  ffff88806a84ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   95.637572][ T2523] >ffff88806a850000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   95.645613][ T2523]                    ^
[   95.649665][ T2523]  ffff88806a850080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   95.657705][ T2523]  ffff88806a850100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   95.665755][ T2523] ==================================================================
[   95.675543][ T2523] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   95.683007][ T2523] Kernel Offset: disabled
[   95.687322][ T2523] Rebooting in 86400 seconds..