Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
2025/07/23 09:29:02 ignoring optional flag "sandboxArg"="0"
2025/07/23 09:29:03 parsed 1 programs
[   49.584535][   T24] kauditd_printk_skb: 27 callbacks suppressed
[   49.584545][   T24] audit: type=1400 audit(1753262944.300:101): avc:  denied  { create } for  pid=410 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   49.611409][   T24] audit: type=1400 audit(1753262944.300:102): avc:  denied  { write } for  pid=410 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   49.631965][   T24] audit: type=1400 audit(1753262944.300:103): avc:  denied  { read } for  pid=410 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   49.652308][   T24] audit: type=1400 audit(1753262944.340:104): avc:  denied  { unlink } for  pid=410 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   49.680481][  T410] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   50.281164][   T24] audit: type=1401 audit(1753262945.000:105): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   50.350392][   T24] audit: type=1400 audit(1753262945.070:106): avc:  denied  { create } for  pid=444 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   50.664052][  T460] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.671722][  T460] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.679222][  T460] device bridge_slave_0 entered promiscuous mode
[   50.686113][  T460] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.693122][  T460] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.700564][  T460] device bridge_slave_1 entered promiscuous mode
[   50.729870][  T460] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.736933][  T460] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.744167][  T460] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.751221][  T460] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.767644][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   50.775333][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.782533][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.791457][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.799654][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.806694][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.815581][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.823769][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.830806][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.842026][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   50.850985][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   50.863200][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   50.873863][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   50.882263][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   50.889834][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   50.898178][  T460] device veth0_vlan entered promiscuous mode
[   50.907422][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   50.916320][  T460] device veth1_macvtap entered promiscuous mode
[   50.924842][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   50.934392][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/07/23 09:29:05 executed programs: 0
[   51.119968][  T470] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.127036][  T470] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.134400][  T470] device bridge_slave_0 entered promiscuous mode
[   51.141349][  T470] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.148399][  T470] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.155841][  T470] device bridge_slave_1 entered promiscuous mode
[   51.191411][  T470] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.198553][  T470] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.205813][  T470] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.212840][  T470] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.237355][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.245492][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.253162][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.262179][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.270791][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.278976][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.286034][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.294807][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.303191][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.311403][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.318458][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.333056][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   51.341198][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.350691][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   51.358952][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.375721][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   51.384061][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.394569][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   51.402530][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.411020][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.418729][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.427034][  T470] device veth0_vlan entered promiscuous mode
[   51.441316][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   51.449671][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.458679][  T470] device veth1_macvtap entered promiscuous mode
[   51.468745][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   51.477017][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   51.485554][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.498614][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   51.507055][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.606969][  T484] EXT4-fs (loop2): 1 orphan inode deleted
[   51.612897][  T484] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,bsddf,lazytime,
[   51.632114][  T484] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.642512][   T24] audit: type=1400 audit(1753262946.360:107): avc:  denied  { mount } for  pid=483 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   51.664260][   T24] audit: type=1400 audit(1753262946.370:108): avc:  denied  { write } for  pid=483 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   51.686253][   T24] audit: type=1400 audit(1753262946.370:109): avc:  denied  { add_name } for  pid=483 comm="syz.2.16" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   51.707247][   T24] audit: type=1400 audit(1753262946.370:110): avc:  denied  { create } for  pid=483 comm="syz.2.16" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   51.712794][  T489] EXT4-fs error (device loop2): ext4_ext_remove_space:2841: inode #16: comm syz.2.16: path[1].p_hdr == NULL
[   51.740802][  T489] EXT4-fs (loop2): Remounting filesystem read-only
[   51.747589][  T489] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5933: Corrupt filesystem
[   51.760608][  T489] EXT4-fs error (device loop2): ext4_punch_hole:4230: inode #16: comm syz.2.16: mark_inode_dirty error
[   52.145801][   T48] device bridge_slave_1 left promiscuous mode
[   52.152025][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.159842][   T48] device bridge_slave_0 left promiscuous mode
[   52.166132][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.174151][   T48] device veth1_macvtap left promiscuous mode
[   52.180444][   T48] device veth0_vlan left promiscuous mode
[   52.388353][  T470] EXT4-fs error (device loop2): ext4_map_blocks:630: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   52.652293][  T491] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.659500][  T491] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.667102][  T491] device bridge_slave_0 entered promiscuous mode
[   52.674627][  T491] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.681995][  T491] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.689434][  T491] device bridge_slave_1 entered promiscuous mode
[   52.720797][  T491] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.727851][  T491] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.735132][  T491] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.742273][  T491] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.760438][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.767993][  T481] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.775715][  T481] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.784217][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.792855][  T481] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.799914][  T481] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.809852][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.818137][  T481] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.825185][  T481] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.837115][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.846696][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.860496][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   52.871356][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   52.879721][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   52.887169][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   52.895379][  T491] device veth0_vlan entered promiscuous mode
[   52.904177][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   52.915630][  T491] device veth1_macvtap entered promiscuous mode
[   52.924353][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   52.933945][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   52.976959][  T496] EXT4-fs (loop3): 1 orphan inode deleted
[   52.982812][  T496] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,bsddf,lazytime,
[   53.001995][  T496] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.070322][  T500] ==================================================================
[   53.078504][  T500] BUG: KASAN: use-after-free in ext4_find_extent+0xbeb/0xe20
[   53.085871][  T500] Read of size 4 at addr ffff888123b5fe5c by task syz.3.19/500
[   53.093413][  T500] 
[   53.095749][  T500] CPU: 0 PID: 500 Comm: syz.3.19 Not tainted 5.10.240-syzkaller-1008073-gad9a98ef27a4 #0
[   53.105544][  T500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   53.115593][  T500] Call Trace:
[   53.118882][  T500]  __dump_stack+0x21/0x24
[   53.123223][  T500]  dump_stack_lvl+0x169/0x1d8
[   53.127898][  T500]  ? show_regs_print_info+0x18/0x18
[   53.133101][  T500]  ? thaw_kernel_threads+0x220/0x220
[   53.138486][  T500]  print_address_description+0x7f/0x2c0
[   53.144029][  T500]  ? ext4_find_extent+0xbeb/0xe20
[   53.149050][  T500]  kasan_report+0xe2/0x130
[   53.153487][  T500]  ? __read_extent_tree_block+0x1e8/0x790
[   53.159202][  T500]  ? ext4_find_extent+0xbeb/0xe20
[   53.164239][  T500]  __asan_report_load4_noabort+0x14/0x20
[   53.169871][  T500]  ext4_find_extent+0xbeb/0xe20
[   53.174917][  T500]  ext4_ext_remove_space+0x306/0x4920
[   53.180289][  T500]  ? __kasan_slab_free+0x11/0x20
[   53.185221][  T500]  ? slab_free_freelist_hook+0xc5/0x190
[   53.191037][  T500]  ? ext4_es_free_extent+0x3de/0x4c0
[   53.196356][  T500]  ? ext4_es_free_extent+0x3de/0x4c0
[   53.201752][  T500]  ? count_rsvd+0x156/0x8a0
[   53.206350][  T500]  ? __es_remove_extent+0xa77/0x16f0
[   53.211652][  T500]  ? ext4_ext_index_trans_blocks+0x100/0x100
[   53.217630][  T500]  ? ext4_es_remove_extent+0x1d9/0x330
[   53.223093][  T500]  ext4_punch_hole+0x6f8/0xad0
[   53.227862][  T500]  ext4_fallocate+0x271/0x1a70
[   53.232714][  T500]  ? selinux_file_permission+0x2a5/0x510
[   53.238353][  T500]  ? preempt_count_add+0x90/0x1b0
[   53.243385][  T500]  vfs_fallocate+0x4b4/0x590
[   53.247976][  T500]  __x64_sys_fallocate+0xc0/0x110
[   53.253088][  T500]  do_syscall_64+0x31/0x40
[   53.257504][  T500]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.263394][  T500] RIP: 0033:0x7f9d96bfade9
[   53.267806][  T500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   53.287401][  T500] RSP: 002b:00007f9d9664c038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   53.295802][  T500] RAX: ffffffffffffffda RBX: 00007f9d96e14080 RCX: 00007f9d96bfade9
[   53.303761][  T500] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[   53.311721][  T500] RBP: 00007f9d96c7c2a0 R08: 0000000000000000 R09: 0000000000000000
[   53.319681][  T500] R10: 0000000000001a00 R11: 0000000000000246 R12: 0000000000000000
[   53.327642][  T500] R13: 0000000000000000 R14: 00007f9d96e14080 R15: 00007ffe5bd60f08
[   53.335619][  T500] 
[   53.338097][  T500] The buggy address belongs to the page:
[   53.343734][  T500] page:ffffea00048ed7c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x123b5f
[   53.353982][  T500] flags: 0x4000000000000000()
[   53.358740][  T500] raw: 4000000000000000 ffffea0004930508 ffffea00048ed788 0000000000000000
[   53.367312][  T500] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   53.376153][  T500] page dumped because: kasan: bad access detected
[   53.382642][  T500] page_owner tracks the page as freed
[   53.388046][  T500] page last allocated via order 0, migratetype Movable, gfp_mask 0x8100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO|0x8000000), pid 496, ts 52959129890, free_ts 52960959790
[   53.404459][  T500]  prep_new_page+0x179/0x180
[   53.409050][  T500]  get_page_from_freelist+0x2235/0x23d0
[   53.414674][  T500]  __alloc_pages_nodemask+0x268/0x5f0
[   53.420034][  T500]  wp_page_copy+0x1d0/0x15d0
[   53.424614][  T500]  do_wp_page+0x9a6/0xc80
[   53.428962][  T500]  handle_pte_fault+0x12ef/0x3750
[   53.433975][  T500]  __handle_speculative_fault+0xdd6/0x12c0
[   53.439771][  T500]  do_user_addr_fault+0x7e7/0xc80
[   53.444785][  T500]  exc_page_fault+0x5a/0xc0
[   53.449282][  T500]  asm_exc_page_fault+0x1e/0x30
[   53.454115][  T500] page last free stack trace:
[   53.458777][  T500]  free_unref_page_prepare+0x2b7/0x2d0
[   53.464231][  T500]  free_unref_page_list+0x12e/0x9b0
[   53.469420][  T500]  release_pages+0xe38/0xe80
[   53.473997][  T500]  free_pages_and_swap_cache+0x86/0xa0
[   53.479447][  T500]  tlb_finish_mmu+0x175/0x300
[   53.484109][  T500]  unmap_region+0x32c/0x380
[   53.488594][  T500]  __do_munmap+0x63c/0x850
[   53.493002][  T500]  __se_sys_munmap+0x127/0x1b0
[   53.497758][  T500]  __x64_sys_munmap+0x5b/0x70
[   53.502511][  T500]  do_syscall_64+0x31/0x40
[   53.506928][  T500]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.512812][  T500] 
[   53.515126][  T500] Memory state around the buggy address:
[   53.520839][  T500]  ffff888123b5fd00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.528889][  T500]  ffff888123b5fd80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.537159][  T500] >ffff888123b5fe00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.545425][  T500]                                                     ^
[   53.552456][  T500]  ffff888123b5fe80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.560605][  T500]  ffff888123b5ff00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   53.568659][  T500] ==================================================================
[   53.576709][  T500] Disabling lock debugging due to kernel taint
[   53.590915][  T500] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem
[   53.600901][  T500] EXT4-fs (loop3): Remounting filesystem read-only
[   53.607731][  T500] EXT4-fs error (device loop3): ext4_dirty_inode:6143: inode #16: comm syz.3.19: mark_inode_dirty error
[   53.620938][  T500] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:476: comm syz.3.19: Invalid block bitmap block 0 in block_group 0
[   53.634720][  T500] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem
[   53.644523][  T500] EXT4-fs error (device loop3): ext4_punch_hole:4230: inode #16: comm syz.3.19: mark_inode_dirty error
[   53.695622][   T48] device bridge_slave_1 left promiscuous mode
[   53.701761][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.709596][   T48] device bridge_slave_0 left promiscuous mode
[   53.715930][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.724487][   T48] device veth1_macvtap left promiscuous mode
[   53.730747][   T48] device veth0_vlan left promiscuous mode
[   53.798436][  T491] EXT4-fs error (device loop3): ext4_map_blocks:630: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   53.936435][  T502] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.943502][  T502] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.951295][  T502] device bridge_slave_0 entered promiscuous mode
[   53.958303][  T502] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.965789][  T502] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.973302][  T502] device bridge_slave_1 entered promiscuous mode
[   54.003113][  T502] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.010230][  T502] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.017586][  T502] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.024602][  T502] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.041369][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.048909][  T481] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.056356][  T481] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.065292][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.073391][  T481] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.080426][  T481] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.088980][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.097387][  T481] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.104409][  T481] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.125400][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.133617][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.143353][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   54.154807][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   54.162932][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   54.170578][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   54.179095][  T502] device veth0_vlan entered promiscuous mode
[   54.189230][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   54.198426][  T502] device veth1_macvtap entered promiscuous mode
[   54.207317][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   54.219336][  T481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   54.266829][  T507] EXT4-fs (loop4): 1 orphan inode deleted
[   54.272863][  T507] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,bsddf,lazytime,
[   54.291614][  T507] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.361925][  T511] ------------[ cut here ]------------
[   54.367615][  T511] kernel BUG at fs/ext4/extents.c:3181!
[   54.373176][  T511] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   54.379243][  T511] CPU: 0 PID: 511 Comm: syz.4.22 Tainted: G    B             5.10.240-syzkaller-1008073-gad9a98ef27a4 #0
[   54.390423][  T511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   54.400574][  T511] RIP: 0010:ext4_split_extent_at+0xe6e/0xe90
[   54.406550][  T511] Code: 48 89 df 48 89 74 24 68 e8 8f 89 d3 ff 48 8b 74 24 68 e9 5a fb ff ff e8 a0 99 99 ff 0f 0b e8 99 99 99 ff 0f 0b e8 92 99 99 ff <0f> 0b e8 8b 99 99 ff 0f 0b e8 84 99 99 ff 0f 0b e8 7d 99 99 ff 0f
[   54.426334][  T511] RSP: 0018:ffffc90003097900 EFLAGS: 00010293
[   54.432843][  T511] RAX: ffffffff81ca06de RBX: 0000000000000000 RCX: ffff888112c28000
[   54.440813][  T511] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[   54.448783][  T511] RBP: ffffc90003097a70 R08: 0000000000000000 R09: 0000000050000028
[   54.456751][  T511] R10: ffffed10234c4bea R11: 1ffff110234c4be8 R12: 0000000000000000
[   54.464719][  T511] R13: 0000000000000000 R14: 1ffff110243a01db R15: 0000000000000000
[   54.472775][  T511] FS:  00007f18de2356c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   54.481874][  T511] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   54.488473][  T511] CR2: 000040000003207f CR3: 000000011a701000 CR4: 00000000003506b0
[   54.496533][  T511] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   54.504504][  T511] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   54.512568][  T511] Call Trace:
[   54.515866][  T511]  ? __asan_report_load2_noabort+0x14/0x20
[   54.521672][  T511]  ? ext4_ext_try_to_merge_right+0x820/0x820
[   54.527737][  T511]  ext4_ext_remove_space+0x677/0x4920
[   54.533106][  T511]  ? __kasan_slab_free+0x11/0x20
[   54.538132][  T511]  ? ext4_es_free_extent+0x3de/0x4c0
[   54.543592][  T511]  ? ext4_es_free_extent+0x3de/0x4c0
[   54.548966][  T511]  ? count_rsvd+0x156/0x8a0
[   54.553589][  T511]  ? __es_remove_extent+0xa77/0x16f0
[   54.558973][  T511]  ? ext4_ext_index_trans_blocks+0x100/0x100
[   54.565163][  T511]  ? ext4_es_remove_extent+0x1d9/0x330
[   54.570635][  T511]  ext4_punch_hole+0x6f8/0xad0
[   54.575407][  T511]  ext4_fallocate+0x271/0x1a70
[   54.580186][  T511]  ? selinux_file_permission+0x2a5/0x510
[   54.586018][  T511]  ? preempt_count_add+0x90/0x1b0
[   54.591100][  T511]  vfs_fallocate+0x4b4/0x590
[   54.595696][  T511]  __x64_sys_fallocate+0xc0/0x110
[   54.600724][  T511]  do_syscall_64+0x31/0x40
[   54.605146][  T511]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   54.611044][  T511] RIP: 0033:0x7f18de7e3de9
[   54.615459][  T511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   54.635409][  T511] RSP: 002b:00007f18de235038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   54.643826][  T511] RAX: ffffffffffffffda RBX: 00007f18de9fd080 RCX: 00007f18de7e3de9
[   54.652576][  T511] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[   54.660639][  T511] RBP: 00007f18de8652a0 R08: 0000000000000000 R09: 0000000000000000
[   54.668606][  T511] R10: 0000000000001a00 R11: 0000000000000246 R12: 0000000000000000
[   54.676573][  T511] R13: 0000000000000000 R14: 00007f18de9fd080 R15: 00007ffd0c96e998
[   54.684547][  T511] Modules linked in:
[   54.690371][  T511] ---[ end trace 0478a5d5ded4b343 ]---
[   54.696082][  T511] RIP: 0010:ext4_split_extent_at+0xe6e/0xe90
[   54.705933][  T511] Code: 48 89 df 48 89 74 24 68 e8 8f 89 d3 ff 48 8b 74 24 68 e9 5a fb ff ff e8 a0 99 99 ff 0f 0b e8 99 99 99 ff 0f 0b e8 92 99 99 ff <0f> 0b e8 8b 99 99 ff 0f 0b e8 84 99 99 ff 0f 0b e8 7d 99 99 ff 0f
[   54.726088][  T511] RSP: 0018:ffffc90003097900 EFLAGS: 00010293
[   54.732211][  T511] RAX: ffffffff81ca06de RBX: 0000000000000000 RCX: ffff888112c28000
[   54.740294][  T511] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[   54.748467][  T511] RBP: ffffc90003097a70 R08: 0000000000000000 R09: 0000000050000028
[   54.756925][  T511] R10: ffffed10234c4bea R11: 1ffff110234c4be8 R12: 0000000000000000
[   54.764960][  T511] R13: 0000000000000000 R14: 1ffff110243a01db R15: 0000000000000000
[   54.773011][  T511] FS:  00007f18de2356c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   54.782038][  T511] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   54.788926][  T511] CR2: 000040000003207f CR3: 000000011a701000 CR4: 00000000003506b0
[   54.796967][  T511] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   54.805231][  T511] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   54.813262][  T511] Kernel panic - not syncing: Fatal exception
[   54.819500][  T511] Kernel Offset: disabled
[   54.823826][  T511] Rebooting in 86400 seconds..