Warning: Permanently added '10.128.10.31' (ED25519) to the list of known hosts. 2024/05/29 16:53:10 ignoring optional flag "sandboxArg"="0" 2024/05/29 16:53:10 parsed 1 programs [ 41.785876][ T23] kauditd_printk_skb: 18 callbacks suppressed [ 41.785882][ T23] audit: type=1400 audit(1717001590.770:94): avc: denied { mounton } for pid=336 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 41.819132][ T23] audit: type=1400 audit(1717001590.770:95): avc: denied { read write } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.845205][ T23] audit: type=1400 audit(1717001590.770:96): avc: denied { open } for pid=336 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.872613][ T23] audit: type=1400 audit(1717001590.810:97): avc: denied { unlink } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.899044][ T23] audit: type=1400 audit(1717001590.810:98): avc: denied { relabelto } for pid=337 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/05/29 16:53:10 executed programs: 0 [ 41.931646][ T336] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 41.971835][ T342] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.979375][ T342] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.986684][ T342] device bridge_slave_0 entered promiscuous mode [ 41.993573][ T342] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.000813][ T342] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.008483][ T342] device bridge_slave_1 entered promiscuous mode [ 42.021402][ T23] audit: type=1400 audit(1717001591.010:99): avc: denied { read } for pid=71 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 42.048654][ T342] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.055761][ T342] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.063067][ T342] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.070148][ T342] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.087523][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.095218][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.102762][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.113482][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.122602][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.130872][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.137815][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.145932][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.154223][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.161441][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.172356][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.181540][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.195644][ T342] device veth0_vlan entered promiscuous mode [ 42.202447][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.211920][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.219937][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 42.227491][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 42.238578][ T342] device veth1_macvtap entered promiscuous mode [ 42.246707][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.259537][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.268269][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.288760][ T23] audit: type=1400 audit(1717001591.270:100): avc: denied { mounton } for pid=346 comm="syz-executor.0" path="/root/syzkaller-testdir1761313643/syzkaller.uxlkoj/0/file1" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 42.303524][ T347] EXT4-fs (loop0): 1 orphan inode deleted [ 42.324595][ T347] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 42.347194][ T347] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/0/file1 supports timestamps until 2038 (0x7fffffff) [ 42.347198][ T23] audit: type=1400 audit(1717001591.330:101): avc: denied { mount } for pid=346 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 42.387980][ T23] audit: type=1400 audit(1717001591.370:102): avc: denied { write } for pid=346 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 42.399889][ T352] EXT4-fs error (device loop0): ext4_ext_remove_space:2833: inode #16: comm syz-executor.0: path[1].p_hdr == NULL [ 42.411816][ T23] audit: type=1400 audit(1717001591.370:103): avc: denied { add_name } for pid=346 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 42.424680][ T352] EXT4-fs (loop0): Remounting filesystem read-only [ 42.452113][ T352] EXT4-fs error (device loop0): __ext4_get_inode_loc:4408: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 42.465413][ T352] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5869: Corrupt filesystem [ 42.475169][ T352] EXT4-fs error (device loop0): ext4_punch_hole:4201: inode #16: comm syz-executor.0: mark_inode_dirty error [ 42.543044][ T355] EXT4-fs (loop0): 1 orphan inode deleted [ 42.549022][ T355] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 42.574452][ T355] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/1/file1 supports timestamps until 2038 (0x7fffffff) [ 42.596191][ T359] EXT4-fs error (device loop0): ext4_ext_remove_space:2833: inode #16: comm syz-executor.0: path[1].p_hdr == NULL [ 42.611299][ T359] EXT4-fs (loop0): Remounting filesystem read-only [ 42.618849][ T359] EXT4-fs error (device loop0): __ext4_get_inode_loc:4408: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 42.633252][ T359] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5869: Corrupt filesystem [ 42.643265][ T359] EXT4-fs error (device loop0): ext4_punch_hole:4201: inode #16: comm syz-executor.0: mark_inode_dirty error [ 42.743013][ T361] EXT4-fs (loop0): 1 orphan inode deleted [ 42.748647][ T361] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 42.771085][ T361] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/2/file1 supports timestamps until 2038 (0x7fffffff) [ 42.791451][ T365] EXT4-fs error (device loop0): ext4_ext_remove_space:2833: inode #16: comm syz-executor.0: path[1].p_hdr == NULL [ 42.804541][ T365] EXT4-fs (loop0): Remounting filesystem read-only [ 42.811896][ T365] EXT4-fs error (device loop0): __ext4_get_inode_loc:4408: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 42.825164][ T365] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5869: Corrupt filesystem [ 42.835651][ T365] EXT4-fs error (device loop0): ext4_punch_hole:4201: inode #16: comm syz-executor.0: mark_inode_dirty error [ 42.913110][ T367] EXT4-fs (loop0): 1 orphan inode deleted [ 42.918852][ T367] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 42.940817][ T367] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/3/file1 supports timestamps until 2038 (0x7fffffff) [ 42.961425][ T371] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:475: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0 [ 42.976167][ T371] EXT4-fs (loop0): Remounting filesystem read-only [ 42.983043][ T371] EXT4-fs error (device loop0) in ext4_mb_clear_bb:5638: Corrupt filesystem [ 42.992449][ T371] ================================================================== [ 43.000811][ T371] BUG: KASAN: out-of-bounds in ext4_ext_remove_space+0xfae/0x3c70 [ 43.008914][ T371] Read of size 18446744073709551544 at addr ffff88811bfe8054 by task syz-executor.0/371 [ 43.018782][ T371] [ 43.021067][ T371] CPU: 0 PID: 371 Comm: syz-executor.0 Not tainted 5.10.214-syzkaller #0 [ 43.029425][ T371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 43.039516][ T371] Call Trace: [ 43.042842][ T371] dump_stack_lvl+0x81/0xac [ 43.047160][ T371] print_address_description.constprop.0+0x24/0x160 [ 43.053762][ T371] ? ext4_ext_remove_space+0xfae/0x3c70 [ 43.059690][ T371] kasan_report.cold+0x82/0xdb [ 43.064542][ T371] ? ext4_ext_remove_space+0xfae/0x3c70 [ 43.070050][ T371] kasan_check_range+0x148/0x190 [ 43.075004][ T371] memmove+0x24/0x60 [ 43.078720][ T371] ext4_ext_remove_space+0xfae/0x3c70 [ 43.084023][ T371] ? ext4_ext_index_trans_blocks+0x100/0x100 [ 43.089840][ T371] ? _raw_write_unlock+0x38/0x60 [ 43.095283][ T371] ? ext4_es_lookup_extent+0x9b0/0x9b0 [ 43.101269][ T371] ? ext4_zero_partial_blocks+0x21b/0x520 [ 43.107401][ T371] ? __ext4_journal_start_sb+0x33/0x2d0 [ 43.113738][ T371] ext4_punch_hole+0x783/0xf90 [ 43.119311][ T371] ? rwsem_down_write_slowpath+0x1160/0x1160 [ 43.126014][ T371] ext4_fallocate+0x6fb/0x2c90 [ 43.130911][ T371] ? avc_ss_reset+0x120/0x120 [ 43.135358][ T371] ? ext4_ext_truncate+0x1c0/0x1c0 [ 43.140414][ T371] ? security_file_permission+0x4c/0x460 [ 43.145896][ T371] vfs_fallocate+0x2b1/0xb10 [ 43.150781][ T371] ioctl_preallocate+0x149/0x1c0 [ 43.155698][ T371] ? fiemap_prep+0x200/0x200 [ 43.160084][ T371] ? __kasan_check_write+0x14/0x20 [ 43.165033][ T371] ? _raw_spin_lock_irq+0x87/0x110 [ 43.170113][ T371] do_vfs_ioctl+0xaec/0xd10 [ 43.174536][ T371] ? generic_block_fiemap+0x70/0x70 [ 43.179770][ T371] ? sigsuspend+0x250/0x250 [ 43.184253][ T371] ? __kasan_check_write+0x14/0x20 [ 43.189333][ T371] ? selinux_file_ioctl+0xee/0x240 [ 43.194382][ T371] __x64_sys_ioctl+0xce/0x1a0 [ 43.199306][ T371] do_syscall_64+0x32/0x80 [ 43.203565][ T371] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 43.209480][ T371] RIP: 0033:0x7f8151287ae9 [ 43.213993][ T371] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 43.235108][ T371] RSP: 002b:00007f8148a290c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 43.244970][ T371] RAX: ffffffffffffffda RBX: 00007f81513a7050 RCX: 00007f8151287ae9 [ 43.254090][ T371] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004 [ 43.262915][ T371] RBP: 00007f81512d347a R08: 0000000000000000 R09: 0000000000000000 [ 43.270950][ T371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 43.279558][ T371] R13: 000000000000000b R14: 00007f81513a7050 R15: 00007ffe9dd597f8 [ 43.288913][ T371] [ 43.291295][ T371] The buggy address belongs to the page: [ 43.297698][ T371] page:ffffea00046ffa00 refcount:2 mapcount:0 mapping:ffff888108e9f9d0 index:0x3a pfn:0x11bfe8 [ 43.310063][ T371] aops:def_blk_aops ino:0 [ 43.314710][ T371] flags: 0x4000000000002036(referenced|uptodate|lru|active|private) [ 43.323260][ T371] raw: 4000000000002036 ffffea0004709988 ffff88811d151030 ffff888108e9f9d0 [ 43.331866][ T371] raw: 000000000000003a ffff88811a20dbd0 00000002ffffffff ffff88811ce38000 [ 43.340722][ T371] page dumped because: kasan: bad access detected [ 43.347855][ T371] page->mem_cgroup:ffff88811ce38000 [ 43.352896][ T371] page_owner tracks the page as allocated [ 43.358643][ T371] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 367, ts 42958479102, free_ts 42855911292 [ 43.376463][ T371] get_page_from_freelist+0x1fee/0x2ad0 [ 43.382317][ T371] __alloc_pages_nodemask+0x2ae/0x2360 [ 43.388202][ T371] pagecache_get_page+0x169/0x6f0 [ 43.393506][ T371] __getblk_slow+0x1ad/0x580 [ 43.398495][ T371] __getblk_gfp+0x3d/0x50 [ 43.402883][ T371] ext4_ext_insert_extent+0xe64/0x3ec0 [ 43.409999][ T371] ext4_ext_map_blocks+0xf1b/0x5200 [ 43.415214][ T371] ext4_map_blocks+0x58d/0x1430 [ 43.420043][ T371] _ext4_get_block+0x206/0x5b0 [ 43.425218][ T371] ext4_get_block+0x11/0x20 [ 43.429834][ T371] ext4_block_write_begin+0x3b9/0xdc0 [ 43.435190][ T371] ext4_write_begin+0x484/0xf00 [ 43.439958][ T371] ext4_da_write_begin+0x52b/0xc30 [ 43.444925][ T371] generic_perform_write+0x202/0x4a0 [ 43.450293][ T371] ext4_buffered_write_iter+0x1e5/0x420 [ 43.456065][ T371] ext4_file_write_iter+0x358/0x18e0 [ 43.461749][ T371] page last free stack trace: [ 43.466771][ T371] free_pcp_prepare+0x1a7/0x230 [ 43.471539][ T371] free_unref_page_list+0x18a/0xae0 [ 43.476673][ T371] release_pages+0x374/0xb00 [ 43.482413][ T371] free_pages_and_swap_cache+0x180/0x1e0 [ 43.488045][ T371] tlb_finish_mmu+0x129/0x790 [ 43.493859][ T371] unmap_region+0x2ee/0x400 [ 43.498869][ T371] __do_munmap+0x48b/0x1050 [ 43.503524][ T371] __vm_munmap+0xfb/0x1a0 [ 43.508275][ T371] __x64_sys_munmap+0x62/0x80 [ 43.512944][ T371] do_syscall_64+0x32/0x80 [ 43.517569][ T371] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 43.523271][ T371] [ 43.525708][ T371] Memory state around the buggy address: [ 43.532470][ T371] ffff88811bfe7f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.541398][ T371] ffff88811bfe7f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.550167][ T371] >ffff88811bfe8000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.558774][ T371] ^ [ 43.566493][ T371] ffff88811bfe8080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.575108][ T371] ffff88811bfe8100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 43.583347][ T371] ================================================================== [ 43.591470][ T371] Disabling lock debugging due to kernel taint [ 43.598752][ T371] EXT4-fs error (device loop0): __ext4_get_inode_loc:4408: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 43.614961][ T371] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5869: Corrupt filesystem [ 43.626395][ T371] EXT4-fs error (device loop0): ext4_punch_hole:4201: inode #16: comm syz-executor.0: mark_inode_dirty error [ 43.673488][ T374] EXT4-fs (loop0): 1 orphan inode deleted [ 43.679863][ T374] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 43.703701][ T374] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/4/file1 supports timestamps until 2038 (0x7fffffff) [ 43.725484][ T378] EXT4-fs error (device loop0): ext4_ext_remove_space:2833: inode #16: comm syz-executor.0: path[1].p_hdr == NULL [ 43.737795][ T378] EXT4-fs (loop0): Remounting filesystem read-only [ 43.744368][ T378] EXT4-fs error (device loop0): __ext4_get_inode_loc:4408: comm syz-executor.0: Invalid inode table block 0 in block_group 0 [ 43.758059][ T378] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5869: Corrupt filesystem [ 43.768177][ T378] EXT4-fs error (device loop0): ext4_punch_hole:4201: inode #16: comm syz-executor.0: mark_inode_dirty error [ 43.863025][ T380] EXT4-fs (loop0): 1 orphan inode deleted [ 43.868571][ T380] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1, [ 43.892290][ T380] ext4 filesystem being mounted at /root/syzkaller-testdir1761313643/syzkaller.uxlkoj/5/file1 supports timestamps until 2038 (0x7fffffff) [ 43.912993][ T384] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:475: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0 [ 43.927564][ T384] EXT4-fs (loop0): Remounting filesystem read-only [ 43.934239][ T384] EXT4-fs error (device loop0) in ext4_mb_clear_bb:5638: Corrupt filesystem [ 43.948986][ T342] general protection fault, probably for non-canonical address 0xe1102f1800000c2c: 0000 [#1] PREEMPT SMP KASAN [ 43.962019][ T342] KASAN: maybe wild-memory-access in range [0x088198c000006160-0x088198c000006167] [ 43.971616][ T342] CPU: 0 PID: 342 Comm: syz-executor.0 Tainted: G B 5.10.214-syzkaller #0 [ 43.981989][ T342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 43.991890][ T342] RIP: 0010:cpuacct_charge+0xbd/0x1d0 [ 43.997835][ T342] Code: 8d 14 f5 20 e7 bf 84 49 bd 00 00 00 00 00 fc ff df 49 89 d7 49 c1 ef 03 4d 01 ef 49 8d bc 24 e8 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 0f 85 bd 00 00 00 49 8b 9c 24 e8 00 00 00 41 80 3f [ 44.018915][ T342] RSP: 0018:ffffc90000757950 EFLAGS: 00010003 [ 44.025041][ T342] RAX: 0110331800000c2c RBX: ffff8881f740607e RCX: 1ffff11023cc29da [ 44.033930][ T342] RDX: ffffffff84bfe720 RSI: 000000000000314e RDI: 088198c000006166 [ 44.041852][ T342] RBP: ffffc90000757988 R08: 0000000000000000 R09: ffffffff84ef2257 [ 44.049795][ T342] R10: fffffbfff09de44a R11: 0000000000000000 R12: 088198c00000607e [ 44.057875][ T342] R13: dffffc0000000000 R14: 0000000000000000 R15: fffffbfff097fce4 [ 44.066946][ T342] FS: 000055555599e480(0000) GS:ffff8881f7400000(0000) knlGS:0000000000000000 [ 44.075989][ T342] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.082490][ T342] CR2: 00000000200400ff CR3: 000000011e496000 CR4: 00000000003506b0 [ 44.090386][ T342] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.098465][ T342] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.106926][ T342] Call Trace: [ 44.110313][ T342] ? show_regs.part.0+0x1e/0x20 [ 44.115281][ T342] ? die_addr.cold+0x8/0xd [ 44.119796][ T342] ? exc_general_protection+0x19b/0x2e0 [ 44.125188][ T342] ? asm_exc_general_protection+0x1e/0x30 [ 44.131162][ T342] ? cpuacct_charge+0xbd/0x1d0 [ 44.135767][ T342] ? kvm_sched_clock_read+0x18/0x40 [ 44.141226][ T342] update_curr+0x204/0x510 [ 44.145634][ T342] ? run_rebalance_domains+0x150/0x150 [ 44.151118][ T342] dequeue_task_fair+0x39d/0x1770 [ 44.156149][ T342] ? put_prev_task_fair+0x80/0x80 [ 44.161079][ T342] ? psi_task_change+0x154/0x280 [ 44.166295][ T342] dequeue_task+0x89/0x8b0 [ 44.170800][ T342] ? sched_clock+0x2e/0x50 [ 44.175182][ T342] ? sched_clock_cpu+0x1b/0x1b0 [ 44.180205][ T342] ? lapic_next_event+0x51/0x80 [ 44.185397][ T342] __schedule+0x92c/0x19d0 [ 44.189861][ T342] ? io_schedule_timeout+0x150/0x150 [ 44.195497][ T342] ? hrtimer_start_range_ns+0x278/0xae0 [ 44.200972][ T342] ? remove_wait_queue+0x10f/0x190 [ 44.205997][ T342] schedule+0xdb/0x270 [ 44.210086][ T342] do_nanosleep+0x217/0x540 [ 44.215249][ T342] ? wait_consider_task+0x4080/0x4080 [ 44.220958][ T342] ? schedule_hrtimeout+0x20/0x20 [ 44.226226][ T342] ? memset+0x3c/0x50 [ 44.230292][ T342] ? __hrtimer_init+0x2f/0x1d0 [ 44.235083][ T342] ? __ia32_sys_waitid+0x140/0x140 [ 44.240852][ T342] hrtimer_nanosleep+0x191/0x3b0 [ 44.245593][ T342] ? nanosleep_copyout+0xd0/0xd0 [ 44.250468][ T342] ? __hrtimer_init+0x1d0/0x1d0 [ 44.256093][ T342] ? get_timespec64+0x72/0x220 [ 44.261151][ T342] ? put_timespec64+0x100/0x100 [ 44.266172][ T342] common_nsleep+0x78/0xb0 [ 44.270611][ T342] __x64_sys_clock_nanosleep+0x2a4/0x440 [ 44.276354][ T342] ? __ia32_sys_clock_getres_time32+0x1d0/0x1d0 [ 44.282817][ T342] ? debug_smp_processor_id+0x17/0x20 [ 44.288463][ T342] ? exit_to_user_mode_prepare+0x32/0x120 [ 44.294643][ T342] do_syscall_64+0x32/0x80 [ 44.298977][ T342] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 44.304730][ T342] RIP: 0033:0x7f81512b2eb3 [ 44.309104][ T342] Code: 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 4e 40 0d 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 [ 44.328952][ T342] RSP: 002b:00007ffe9dd59ac8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6 [ 44.337201][ T342] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00007f81512b2eb3 [ 44.345845][ T342] RDX: 00007ffe9dd59ae0 RSI: 0000000000000000 RDI: 0000000000000000 [ 44.354368][ T342] RBP: 00007ffe9dd59b6c R08: 000000000000002b R09: 00007ffe9ddbf080 [ 44.362276][ T342] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032 [ 44.370173][ T342] R13: 000000000000ab74 R14: 000000000000ab39 R15: 0000000000000005 [ 44.378160][ T342] Modules linked in: [ 44.381920][ T342] ---[ end trace 4ce1b433dbf7d1fc ]--- [ 44.381972][ C1] BUG: unable to handle page fault for address: ffff89a4f7500010 [ 44.387186][ T342] RIP: 0010:cpuacct_charge+0xbd/0x1d0 [ 44.395050][ C1] #PF: supervisor write access in kernel mode [ 44.400331][ T342] Code: 8d 14 f5 20 e7 bf 84 49 bd 00 00 00 00 00 fc ff df 49 89 d7 49 c1 ef 03 4d 01 ef 49 8d bc 24 e8 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 0f 85 bd 00 00 00 49 8b 9c 24 e8 00 00 00 41 80 3f [ 44.406314][ C1] #PF: error_code(0x0002) - not-present page [ 44.425851][ T342] RSP: 0018:ffffc90000757950 EFLAGS: 00010003 [ 44.431727][ C1] PGD 0 [ 44.431731][ T342] [ 44.431740][ T342] RAX: 0110331800000c2c RBX: ffff8881f740607e RCX: 1ffff11023cc29da [ 44.437785][ C1] P4D 0 [ 44.440471][ T342] RDX: ffffffff84bfe720 RSI: 000000000000314e RDI: 088198c000006166 [ 44.442914][ C1] [ 44.450870][ T342] RBP: ffffc90000757988 R08: 0000000000000000 R09: ffffffff84ef2257 [ 44.453579][ C1] Oops: 0002 [#2] PREEMPT SMP KASAN [ 44.461357][ T342] R10: fffffbfff09de44a R11: 0000000000000000 R12: 088198c00000607e [ 44.463528][ C1] CPU: 1 PID: 384 Comm: syz-executor.0 Tainted: G B D 5.10.214-syzkaller #0 [ 44.471349][ T342] R13: dffffc0000000000 R14: 0000000000000000 R15: fffffbfff097fce4 [ 44.476434][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 44.484276][ T342] FS: 000055555599e480(0000) GS:ffff8881f7400000(0000) knlGS:0000000000000000 [ 44.493917][ C1] RIP: 0010:cpuacct_account_field+0xae/0x100 [ 44.501905][ T342] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.511891][ C1] Code: c8 52 72 02 48 8d bb f0 00 00 00 48 89 f8 48 c1 e8 03 42 80 3c 20 00 75 41 48 8b 83 f0 00 00 00 48 8d bb e0 00 00 00 4c 01 e8 <65> 4c 01 30 48 89 f8 48 c1 e8 03 42 80 3c 20 00 75 25 48 8b 9b e0 [ 44.520817][ T342] CR2: 00000000200400ff CR3: 000000011e496000 CR4: 00000000003506b0 [ 44.526630][ C1] RSP: 0018:ffffc90000160c98 EFLAGS: 00010002 [ 44.533257][ T342] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.553610][ C1] [ 44.561513][ T342] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.567630][ C1] RAX: 0000012300000010 RBX: ffff88811cdd3a00 RCX: 1ffffffff097fce5 [ 44.575470][ T342] Kernel panic - not syncing: Fatal exception [ 44.577596][ C1] RDX: 1ffff11023e4ac82 RSI: ffffffff840828c0 RDI: ffff88811cdd3ae0 [ 44.608031][ C1] RBP: ffffc90000160cb8 R08: 1ffffffff097fce5 R09: 0000000000000003 [ 44.616011][ C1] R10: fffff5200002c1d5 R11: 0000000000000001 R12: dffffc0000000000 [ 44.623932][ C1] R13: 0000000000000010 R14: 0000000000980408 R15: ffff888106fd0100 [ 44.631774][ C1] FS: 00007f8148a296c0(0000) GS:ffff8881f7500000(0000) knlGS:0000000000000000 [ 44.640792][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.648129][ C1] CR2: ffff89a4f7500010 CR3: 0000000107188000 CR4: 00000000003506a0 [ 44.656169][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 44.664445][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 44.672387][ C1] Call Trace: [ 44.675603][ C1] [ 44.678381][ C1] ? show_regs.part.0+0x1e/0x20 [ 44.683141][ C1] ? __die+0x5d/0x9e [ 44.686876][ C1] ? no_context+0x428/0x7e0 [ 44.691412][ C1] ? stack_trace_save+0x8f/0xc0 [ 44.696336][ C1] ? is_prefetch.constprop.0+0x330/0x330 [ 44.702357][ C1] ? kfree+0xc2/0x4e0 [ 44.706969][ C1] ? __update_load_avg_cfs_rq+0xb8/0x3a0 [ 44.712882][ C1] ? __bad_area_nosemaphore+0x72/0x330 [ 44.718429][ C1] ? __enqueue_entity+0x148/0x3e0 [ 44.723458][ C1] ? update_cfs_group+0x1ac/0x240 [ 44.729900][ C1] ? bad_area_nosemaphore+0x11/0x20 [ 44.735512][ C1] ? do_kern_addr_fault+0x30/0x40 [ 44.741194][ C1] ? exc_page_fault+0xb1/0xc0 [ 44.745973][ C1] ? asm_exc_page_fault+0x1e/0x30 [ 44.751137][ C1] ? cpuacct_account_field+0xae/0x100 [ 44.756930][ C1] ? cpuacct_account_field+0x88/0x100 [ 44.762379][ C1] account_system_index_time+0x116/0x210 [ 44.768881][ C1] irqtime_account_process_tick+0x437/0x5a0 [ 44.775014][ C1] account_process_tick+0x367/0x470 [ 44.780394][ C1] update_process_times+0x6c/0xb0 [ 44.785227][ C1] tick_sched_handle+0xfa/0x170 [ 44.790085][ C1] tick_sched_timer+0xb6/0xd0 [ 44.794967][ C1] ? tick_sched_do_timer+0x340/0x340 [ 44.801778][ C1] __hrtimer_run_queues+0x39a/0x790 [ 44.807833][ C1] ? enqueue_hrtimer+0x1c0/0x1c0 [ 44.813028][ C1] ? _raw_write_lock_irqsave+0xe0/0xe0 [ 44.818574][ C1] ? ktime_get_update_offsets_now+0x6e/0x200 [ 44.824486][ C1] ? clockevents_program_event+0x1cb/0x260 [ 44.830114][ C1] hrtimer_interrupt+0x2f3/0x8d0 [ 44.834888][ C1] __sysvec_apic_timer_interrupt+0x10a/0x360 [ 44.840823][ C1] asm_call_irq_on_stack+0xf/0x20 [ 44.845662][ C1] [ 44.848627][ C1] sysvec_apic_timer_interrupt+0xa3/0xe0 [ 44.854526][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 44.860345][ C1] RIP: 0010:__memmove+0x19c/0x1a0 [ 44.865654][ C1] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 cc eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 [ 44.886394][ C1] RSP: 0018:ffffc90000a17898 EFLAGS: 00010282 [ 44.892473][ C1] RAX: ffff88811c29b048 RBX: ffff88811a2e6be8 RCX: ffffffffff213a55 [ 44.901052][ C1] RDX: ffffffffffffffb8 RSI: ffff88811d0875b7 RDI: ffff88811d0875ab [ 44.910035][ C1] RBP: ffffc90000a178b8 R08: 0000000000000001 R09: ffff88811c29b000 [ 44.918441][ C1] R10: dffffc0000000000 R11: 0000000000000000 R12: ffffffffffffffb8 [ 44.926249][ C1] R13: ffff88811c29b054 R14: ffff88811c29b048 R15: ffff88811c29b04c [ 44.934342][ C1] ? memmove+0x4e/0x60 [ 44.938237][ C1] ext4_ext_remove_space+0xfae/0x3c70 [ 44.943446][ C1] ? ext4_ext_index_trans_blocks+0x100/0x100 [ 44.949260][ C1] ? _raw_write_unlock+0x38/0x60 [ 44.954123][ C1] ? ext4_es_lookup_extent+0x9b0/0x9b0 [ 44.959774][ C1] ? ext4_zero_partial_blocks+0x21b/0x520 [ 44.965505][ C1] ? __ext4_journal_start_sb+0x33/0x2d0 [ 44.970969][ C1] ext4_punch_hole+0x783/0xf90 [ 44.975570][ C1] ? rwsem_down_write_slowpath+0x1160/0x1160 [ 44.981845][ C1] ext4_fallocate+0x6fb/0x2c90 [ 44.986906][ C1] ? avc_ss_reset+0x120/0x120 [ 44.991506][ C1] ? ext4_ext_truncate+0x1c0/0x1c0 [ 44.996571][ C1] ? security_file_permission+0x4c/0x460 [ 45.002057][ C1] vfs_fallocate+0x2b1/0xb10 [ 45.006567][ C1] ioctl_preallocate+0x149/0x1c0 [ 45.011503][ C1] ? fiemap_prep+0x200/0x200 [ 45.016457][ C1] ? __kasan_check_write+0x14/0x20 [ 45.021419][ C1] ? _raw_spin_lock_irq+0x87/0x110 [ 45.026343][ C1] do_vfs_ioctl+0xaec/0xd10 [ 45.030696][ C1] ? generic_block_fiemap+0x70/0x70 [ 45.035986][ C1] ? sigsuspend+0x250/0x250 [ 45.040321][ C1] ? __kasan_check_write+0x14/0x20 [ 45.045357][ C1] ? selinux_file_ioctl+0xee/0x240 [ 45.050549][ C1] __x64_sys_ioctl+0xce/0x1a0 [ 45.055215][ C1] do_syscall_64+0x32/0x80 [ 45.060455][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 45.067196][ C1] RIP: 0033:0x7f8151287ae9 [ 45.071778][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 45.092656][ C1] RSP: 002b:00007f8148a290c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 45.101331][ C1] RAX: ffffffffffffffda RBX: 00007f81513a7050 RCX: 00007f8151287ae9 [ 45.109394][ C1] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004 [ 45.117470][ C1] RBP: 00007f81512d347a R08: 0000000000000000 R09: 0000000000000000 [ 45.125383][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 45.133383][ C1] R13: 000000000000000b R14: 00007f81513a7050 R15: 00007ffe9dd597f8 [ 45.141183][ C1] Modules linked in: [ 45.144913][ C1] CR2: ffff89a4f7500010 [ 45.149068][ C1] ---[ end trace 4ce1b433dbf7d1fd ]--- [ 45.154409][ C1] RIP: 0010:cpuacct_charge+0xbd/0x1d0 [ 45.159612][ C1] Code: 8d 14 f5 20 e7 bf 84 49 bd 00 00 00 00 00 fc ff df 49 89 d7 49 c1 ef 03 4d 01 ef 49 8d bc 24 e8 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 28 00 0f 85 bd 00 00 00 49 8b 9c 24 e8 00 00 00 41 80 3f [ 45.179805][ C1] RSP: 0018:ffffc90000757950 EFLAGS: 00010003 [ 45.186053][ C1] RAX: 0110331800000c2c RBX: ffff8881f740607e RCX: 1ffff11023cc29da [ 45.194139][ C1] RDX: ffffffff84bfe720 RSI: 000000000000314e RDI: 088198c000006166 [ 45.201945][ C1] RBP: ffffc90000757988 R08: 0000000000000000 R09: ffffffff84ef2257 [ 45.209754][ C1] R10: fffffbfff09de44a R11: 0000000000000000 R12: 088198c00000607e [ 45.217757][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: fffffbfff097fce4 [ 45.225557][ C1] FS: 00007f8148a296c0(0000) GS:ffff8881f7500000(0000) knlGS:0000000000000000 [ 45.234672][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 45.241281][ C1] CR2: ffff89a4f7500010 CR3: 0000000107188000 CR4: 00000000003506a0 [ 45.249482][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 45.257513][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 45.793767][ T342] Shutting down cpus with NMI [ 45.798663][ T342] Kernel Offset: disabled [ 45.803162][ T342] Rebooting in 86400 seconds..