Warning: Permanently added '10.128.0.91' (ED25519) to the list of known hosts.
2024/07/17 02:57:16 ignoring optional flag "sandboxArg"="0"
2024/07/17 02:57:16 parsed 1 programs
2024/07/17 02:57:16 executed programs: 0
[   42.122815][   T30] kauditd_printk_skb: 19 callbacks suppressed
[   42.122830][   T30] audit: type=1400 audit(1721185036.539:95): avc:  denied  { unlink } for  pid=344 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   42.152770][  T344] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   42.210299][  T350] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.217511][  T350] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.225407][  T350] device bridge_slave_0 entered promiscuous mode
[   42.232028][  T350] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.239338][  T350] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.246839][  T350] device bridge_slave_1 entered promiscuous mode
[   42.291360][  T350] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.298241][  T350] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.305511][  T350] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.312563][  T350] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.333444][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.341038][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.349208][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   42.356547][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.373395][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   42.381600][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.388479][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.395849][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   42.404493][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.411532][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.419160][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   42.427102][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   42.440099][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   42.451451][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   42.459403][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   42.466932][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   42.475123][  T350] device veth0_vlan entered promiscuous mode
[   42.485398][  T350] device veth1_macvtap entered promiscuous mode
[   42.492569][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   42.503290][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   42.515915][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   42.537970][  T356] loop0: detected capacity change from 0 to 512
[   42.545322][   T30] audit: type=1400 audit(1721185036.959:96): avc:  denied  { mounton } for  pid=355 comm="syz-executor.0" path="/root/syzkaller-testdir902263218/syzkaller.j02vDz/0/file1" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   42.585132][  T356] EXT4-fs (loop0): 1 orphan inode deleted
[   42.590774][  T356] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   42.602372][  T356] ext4 filesystem being mounted at /root/syzkaller-testdir902263218/syzkaller.j02vDz/0/file1 supports timestamps until 2038 (0x7fffffff)
[   42.612473][   T30] audit: type=1400 audit(1721185037.009:97): avc:  denied  { mount } for  pid=355 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   42.639717][   T30] audit: type=1400 audit(1721185037.019:98): avc:  denied  { read } for  pid=82 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   42.662175][   T30] audit: type=1400 audit(1721185037.029:99): avc:  denied  { write } for  pid=355 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   42.684382][   T30] audit: type=1400 audit(1721185037.029:100): avc:  denied  { add_name } for  pid=355 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   42.684780][  T310] ==================================================================
[   42.705786][   T30] audit: type=1400 audit(1721185037.029:101): avc:  denied  { create } for  pid=355 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.713592][  T310] BUG: KASAN: use-after-free in ext4_find_extent+0xbab/0xdb0
[   42.713643][  T310] Read of size 4 at addr ffff8881222e5064 by task kworker/u4:3/310
[   42.733868][   T30] audit: type=1400 audit(1721185037.039:102): avc:  denied  { read write open } for  pid=355 comm="syz-executor.0" path="/root/syzkaller-testdir902263218/syzkaller.j02vDz/0/file1/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.741009][  T310] 
[   42.741018][  T310] CPU: 0 PID: 310 Comm: kworker/u4:3 Not tainted 5.15.151-syzkaller-1069524-gdb06c48ab67e #0
[   42.748960][   T30] audit: type=1400 audit(1721185037.039:103): avc:  denied  { map } for  pid=355 comm="syz-executor.0" path="/root/syzkaller-testdir902263218/syzkaller.j02vDz/0/file1/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.777830][  T310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   42.777851][  T310] Workqueue: writeback wb_workfn (flush-7:0)
[   42.777901][  T310] Call Trace:
[   42.777908][  T310]  <TASK>
[   42.777916][  T310]  dump_stack_lvl+0x151/0x1b7
[   42.777940][  T310]  ? io_uring_drop_tctx_refs+0x190/0x190
[   42.781204][   T30] audit: type=1400 audit(1721185037.039:104): avc:  denied  { execute } for  pid=355 comm="syz-executor.0" path="/root/syzkaller-testdir902263218/syzkaller.j02vDz/0/file1/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   42.790301][  T310]  ? __wake_up_klogd+0xd5/0x110
[   42.790330][  T310]  ? panic+0x751/0x751
[   42.790348][  T310]  print_address_description+0x87/0x3b0
[   42.790369][  T310]  kasan_report+0x179/0x1c0
[   42.790386][  T310]  ? __read_extent_tree_block+0x1e0/0x7b0
[   42.790407][  T310]  ? ext4_find_extent+0xbab/0xdb0
[   42.790427][  T310]  ? ext4_find_extent+0xbab/0xdb0
[   42.790447][  T310]  __asan_report_load4_noabort+0x14/0x20
[   42.790468][  T310]  ext4_find_extent+0xbab/0xdb0
[   42.790581][  T310]  ext4_ext_map_blocks+0x269/0x74a0
[   42.928209][  T310]  ? __kasan_check_write+0x14/0x20
[   42.933200][  T310]  ? ret_from_fork+0x1f/0x30
[   42.937663][  T310]  ? stack_trace_save+0x113/0x1c0
[   42.942547][  T310]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[   42.948340][  T310]  ? __stack_depot_save+0x40d/0x470
[   42.953375][  T310]  ? ext4_ext_release+0x10/0x10
[   42.958146][  T310]  ? __kasan_slab_alloc+0xc3/0xe0
[   42.963110][  T310]  ? __kasan_slab_alloc+0xb1/0xe0
[   42.967954][  T310]  ? slab_post_alloc_hook+0x53/0x2c0
[   42.973313][  T310]  ? kmem_cache_alloc+0xf5/0x200
[   42.978125][  T310]  ? ext4_alloc_io_end_vec+0x2a/0x170
[   42.983492][  T310]  ? ext4_writepages+0x13b4/0x4000
[   42.988415][  T310]  ? do_writepages+0x40e/0x670
[   42.993157][  T310]  ? __writeback_single_inode+0xdf/0xa70
[   42.998946][  T310]  ? writeback_sb_inodes+0xb2a/0x1920
[   43.004066][  T310]  ? wb_writeback+0x3b9/0x9e0
[   43.008866][  T310]  ? wb_workfn+0x3d9/0x1110
[   43.013317][  T310]  ? process_one_work+0x6bb/0xc10
[   43.018147][  T310]  ? worker_thread+0xad5/0x12a0
[   43.022953][  T310]  ? kthread+0x421/0x510
[   43.027196][  T310]  ? ret_from_fork+0x1f/0x30
[   43.031883][  T310]  ? _raw_read_unlock+0x25/0x40
[   43.037353][  T310]  ? ext4_es_lookup_extent+0x33b/0x940
[   43.043234][  T310]  ext4_map_blocks+0xaa7/0x1e00
[   43.047927][  T310]  ? ext4_alloc_io_end_vec+0x2a/0x170
[   43.053320][  T310]  ? ext4_issue_zeroout+0x250/0x250
[   43.058563][  T310]  ? ext4_inode_journal_mode+0x1a5/0x470
[   43.063972][  T310]  ext4_writepages+0x1628/0x4000
[   43.069041][  T310]  ? eth_get_headlen+0x240/0x240
[   43.073892][  T310]  ? ext4_readpage+0x230/0x230
[   43.078952][  T310]  ? __kasan_check_read+0x11/0x20
[   43.083898][  T310]  ? dev_hard_start_xmit+0x5b8/0x620
[   43.089287][  T310]  ? load_balance+0x1ad1/0x6ff0
[   43.094151][  T310]  ? memcpy+0x56/0x70
[   43.097971][  T310]  ? ext4_readpage+0x230/0x230
[   43.102669][  T310]  do_writepages+0x40e/0x670
[   43.107098][  T310]  ? __writepage+0x130/0x130
[   43.111957][  T310]  ? __kasan_check_write+0x14/0x20
[   43.117157][  T310]  ? _raw_spin_lock+0xa4/0x1b0
[   43.121749][  T310]  __writeback_single_inode+0xdf/0xa70
[   43.127043][  T310]  writeback_sb_inodes+0xb2a/0x1920
[   43.132216][  T310]  ? _raw_spin_lock+0xa4/0x1b0
[   43.137073][  T310]  ? queue_io+0x520/0x520
[   43.141321][  T310]  ? __writeback_inodes_wb+0x3f0/0x3f0
[   43.146603][  T310]  ? queue_io+0x3d0/0x520
[   43.150947][  T310]  wb_writeback+0x3b9/0x9e0
[   43.155402][  T310]  ? inode_cgwb_move_to_attached+0x3c0/0x3c0
[   43.161264][  T310]  ? set_worker_desc+0x158/0x1c0
[   43.166184][  T310]  ? _raw_spin_trylock_bh+0x190/0x190
[   43.171553][  T310]  ? __kasan_check_write+0x14/0x20
[   43.176502][  T310]  wb_workfn+0x3d9/0x1110
[   43.180844][  T310]  ? inode_wait_for_writeback+0x280/0x280
[   43.186509][  T310]  ? sched_clock+0x9/0x10
[   43.190685][  T310]  ? _raw_spin_unlock+0x4d/0x70
[   43.195434][  T310]  ? finish_task_switch+0x167/0x7b0
[   43.201075][  T310]  ? __kasan_check_read+0x11/0x20
[   43.206145][  T310]  ? read_word_at_a_time+0x12/0x20
[   43.211070][  T310]  ? strscpy+0x9c/0x260
[   43.215060][  T310]  process_one_work+0x6bb/0xc10
[   43.219751][  T310]  worker_thread+0xad5/0x12a0
[   43.224392][  T310]  ? _raw_spin_lock+0x1b0/0x1b0
[   43.229070][  T310]  kthread+0x421/0x510
[   43.232972][  T310]  ? worker_clr_flags+0x180/0x180
[   43.237844][  T310]  ? kthread_blkcg+0xd0/0xd0
[   43.242473][  T310]  ret_from_fork+0x1f/0x30
[   43.246684][  T310]  </TASK>
[   43.249546][  T310] 
[   43.251712][  T310] The buggy address belongs to the page:
[   43.257307][  T310] page:ffffea000488b940 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1222e5
[   43.267648][  T310] flags: 0x4000000000000000(zone=1)
[   43.272744][  T310] raw: 4000000000000000 ffffea000488b948 ffffea000488b948 0000000000000000
[   43.281648][  T310] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   43.290241][  T310] page dumped because: kasan: bad access detected
[   43.296584][  T310] page_owner info is not present (never set?)
[   43.302564][  T310] 
[   43.304730][  T310] Memory state around the buggy address:
[   43.311513][  T310]  ffff8881222e4f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   43.319588][  T310]  ffff8881222e4f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   43.327706][  T310] >ffff8881222e5000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   43.335892][  T310]                                                        ^
[   43.343300][  T310]  ffff8881222e5080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   43.351437][  T310]  ffff8881222e5100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   43.359417][  T310] ==================================================================
[   43.367387][  T310] Disabling lock debugging due to kernel taint
[   43.378936][  T310] ------------[ cut here ]------------
[   43.385163][  T310] kernel BUG at fs/ext4/inode.c:2421!
[   43.390417][  T310] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   43.396392][  T310] CPU: 1 PID: 310 Comm: kworker/u4:3 Tainted: G    B             5.15.151-syzkaller-1069524-gdb06c48ab67e #0
[   43.408080][  T310] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   43.418142][  T310] Workqueue: writeback wb_workfn (flush-7:0)
[   43.424409][  T310] RIP: 0010:ext4_writepages+0x3f4b/0x4000
[   43.430145][  T310] Code: 00 74 08 48 89 df e8 d4 cc c9 ff 48 8b 3b 48 8b 74 24 48 48 8b 54 24 28 44 89 e9 45 89 f8 e8 4c 34 08 00 eb 58 e8 d5 a6 87 ff <0f> 0b e8 ce a6 87 ff eb 3b e8 c7 a6 87 ff eb 72 e8 c0 a6 87 ff 31
[   43.450744][  T310] RSP: 0018:ffffc90000cd7000 EFLAGS: 00010293
[   43.457009][  T310] RAX: ffffffff81e88ebb RBX: dffffc0000000000 RCX: ffff8881065e13c0
[   43.464993][  T310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   43.472780][  T310] RBP: ffffc90000cd7410 R08: ffffffff81e8687b R09: ffffed10212635fc
[   43.480601][  T310] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[   43.488600][  T310] R13: ffffc90000cd72e0 R14: 0000000000000000 R15: 0000000000000000
[   43.496520][  T310] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   43.505556][  T310] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   43.512050][  T310] CR2: 000000c00125d000 CR3: 000000010bb5d000 CR4: 00000000003506a0
[   43.519872][  T310] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   43.527770][  T310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   43.535788][  T310] Call Trace:
[   43.539081][  T310]  <TASK>
[   43.541885][  T310]  ? __die_body+0x62/0xb0
[   43.546046][  T310]  ? die+0x88/0xb0
[   43.549595][  T310]  ? do_trap+0x103/0x330
[   43.553765][  T310]  ? ext4_writepages+0x3f4b/0x4000
[   43.558705][  T310]  ? handle_invalid_op+0x95/0xc0
[   43.563574][  T310]  ? ext4_writepages+0x3f4b/0x4000
[   43.568545][  T310]  ? exc_invalid_op+0x32/0x50
[   43.573410][  T310]  ? asm_exc_invalid_op+0x1b/0x20
[   43.578465][  T310]  ? ext4_writepages+0x190b/0x4000
[   43.583768][  T310]  ? ext4_writepages+0x3f4b/0x4000
[   43.588864][  T310]  ? ext4_writepages+0x3f4b/0x4000
[   43.593877][  T310]  ? eth_get_headlen+0x240/0x240
[   43.599223][  T310]  ? ext4_readpage+0x230/0x230
[   43.603894][  T310]  ? __kasan_check_read+0x11/0x20
[   43.608753][  T310]  ? dev_hard_start_xmit+0x5b8/0x620
[   43.614319][  T310]  ? load_balance+0x1ad1/0x6ff0
[   43.619087][  T310]  ? memcpy+0x56/0x70
[   43.622901][  T310]  ? ext4_readpage+0x230/0x230
[   43.627607][  T310]  do_writepages+0x40e/0x670
[   43.632321][  T310]  ? __writepage+0x130/0x130
[   43.636925][  T310]  ? __kasan_check_write+0x14/0x20
[   43.641943][  T310]  ? _raw_spin_lock+0xa4/0x1b0
[   43.646628][  T310]  __writeback_single_inode+0xdf/0xa70
[   43.651935][  T310]  writeback_sb_inodes+0xb2a/0x1920
[   43.656968][  T310]  ? _raw_spin_lock+0xa4/0x1b0
[   43.661576][  T310]  ? queue_io+0x520/0x520
[   43.665828][  T310]  ? __writeback_inodes_wb+0x3f0/0x3f0
[   43.671137][  T310]  ? queue_io+0x3d0/0x520
[   43.675363][  T310]  wb_writeback+0x3b9/0x9e0
[   43.679709][  T310]  ? inode_cgwb_move_to_attached+0x3c0/0x3c0
[   43.685619][  T310]  ? set_worker_desc+0x158/0x1c0
[   43.690394][  T310]  ? _raw_spin_trylock_bh+0x190/0x190
[   43.695637][  T310]  ? __kasan_check_write+0x14/0x20
[   43.700555][  T310]  wb_workfn+0x3d9/0x1110
[   43.704973][  T310]  ? inode_wait_for_writeback+0x280/0x280
[   43.710458][  T310]  ? sched_clock+0x9/0x10
[   43.714625][  T310]  ? _raw_spin_unlock+0x4d/0x70
[   43.719308][  T310]  ? finish_task_switch+0x167/0x7b0
[   43.724403][  T310]  ? __kasan_check_read+0x11/0x20
[   43.729474][  T310]  ? read_word_at_a_time+0x12/0x20
[   43.734675][  T310]  ? strscpy+0x9c/0x260
[   43.738854][  T310]  process_one_work+0x6bb/0xc10
[   43.743747][  T310]  worker_thread+0xad5/0x12a0
[   43.748587][  T310]  ? _raw_spin_lock+0x1b0/0x1b0
[   43.753468][  T310]  kthread+0x421/0x510
[   43.757611][  T310]  ? worker_clr_flags+0x180/0x180
[   43.762555][  T310]  ? kthread_blkcg+0xd0/0xd0
[   43.767065][  T310]  ret_from_fork+0x1f/0x30
[   43.771330][  T310]  </TASK>
[   43.774367][  T310] Modules linked in:
[   43.779297][  T310] ---[ end trace e40627e6f1ad2a79 ]---
[   43.784829][  T310] RIP: 0010:ext4_writepages+0x3f4b/0x4000
[   43.790463][  T310] Code: 00 74 08 48 89 df e8 d4 cc c9 ff 48 8b 3b 48 8b 74 24 48 48 8b 54 24 28 44 89 e9 45 89 f8 e8 4c 34 08 00 eb 58 e8 d5 a6 87 ff <0f> 0b e8 ce a6 87 ff eb 3b e8 c7 a6 87 ff eb 72 e8 c0 a6 87 ff 31
[   43.810443][  T310] RSP: 0018:ffffc90000cd7000 EFLAGS: 00010293
[   43.816809][  T310] RAX: ffffffff81e88ebb RBX: dffffc0000000000 RCX: ffff8881065e13c0
[   43.824906][  T310] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   43.833032][  T310] RBP: ffffc90000cd7410 R08: ffffffff81e8687b R09: ffffed10212635fc
[   43.841080][  T310] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[   43.849237][  T310] R13: ffffc90000cd72e0 R14: 0000000000000000 R15: 0000000000000000
[   43.858692][  T310] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   43.867952][  T310] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   43.874776][  T310] CR2: 00007ffe2fc55f58 CR3: 000000010bb5d000 CR4: 00000000003506b0
[   43.883661][  T310] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   43.892009][  T310] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   43.900201][  T310] Kernel panic - not syncing: Fatal exception
[   43.906516][  T310] Kernel Offset: disabled
[   43.910894][  T310] Rebooting in 86400 seconds..