Warning: Permanently added '10.128.1.187' (ED25519) to the list of known hosts. 2026/03/25 18:10:35 parsed 1 programs Setting up swapspace version 1, size = 127995904 bytes [ 44.343792][ T24] audit: type=1400 audit(1774462236.540:106): avc: denied { unlink } for pid=415 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 44.420519][ T415] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 44.845012][ T24] audit: type=1401 audit(1774462237.050:107): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" [ 44.912388][ T24] audit: type=1400 audit(1774462237.110:108): avc: denied { create } for pid=426 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.272325][ T458] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.279922][ T458] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.287654][ T458] device bridge_slave_0 entered promiscuous mode [ 45.295067][ T458] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.302099][ T458] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.309540][ T458] device bridge_slave_1 entered promiscuous mode [ 45.345950][ T458] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.352995][ T458] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.360686][ T458] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.367834][ T458] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.384057][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.392176][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.399423][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.408814][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.417017][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.424211][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.433163][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.441762][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.449663][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.460947][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.470329][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.482993][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.493633][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.502239][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 45.510601][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 45.521052][ T458] device veth0_vlan entered promiscuous mode [ 45.531654][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.541031][ T458] device veth1_macvtap entered promiscuous mode [ 45.550002][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.559953][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2026/03/25 18:10:38 executed programs: 0 [ 45.962894][ T480] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.970354][ T480] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.978250][ T480] device bridge_slave_0 entered promiscuous mode [ 45.986385][ T480] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.993585][ T480] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.001044][ T480] device bridge_slave_1 entered promiscuous mode [ 46.040591][ T480] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.048215][ T480] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.057081][ T480] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.066102][ T480] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.090725][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.099105][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.108392][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.123556][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.132169][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.139654][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.148603][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.156937][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.163957][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.180867][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 46.190071][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 46.204274][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 46.219477][ T480] device veth0_vlan entered promiscuous mode [ 46.229149][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 46.238128][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 46.246825][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 46.269433][ T480] device veth1_macvtap entered promiscuous mode [ 46.279960][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 46.292232][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 46.303742][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 46.320334][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 46.329751][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 46.339510][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 46.349215][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 46.416263][ T486] EXT4-fs (loop2): Ignoring removed bh option [ 46.423032][ T486] EXT4-fs (loop2): Ignoring removed oldalloc option [ 46.430495][ T486] EXT4-fs (loop2): Ignoring removed nobh option [ 46.437136][ T486] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 46.456061][ T486] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 46.477763][ T24] audit: type=1400 audit(1774462238.690:109): avc: denied { mount } for pid=485 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 46.500653][ T24] audit: type=1400 audit(1774462238.690:110): avc: denied { write } for pid=485 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 46.515716][ T486] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.17: Allocating blocks 497-513 which overlap fs metadata [ 46.525493][ T24] audit: type=1400 audit(1774462238.690:111): avc: denied { add_name } for pid=485 comm="syz.2.17" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 46.525506][ T24] audit: type=1400 audit(1774462238.690:112): avc: denied { create } for pid=485 comm="syz.2.17" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 46.525519][ T24] audit: type=1400 audit(1774462238.690:113): avc: denied { read open } for pid=485 comm="syz.2.17" path="/0/file1/bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 46.525536][ T24] audit: type=1400 audit(1774462238.690:114): avc: denied { write } for pid=485 comm="syz.2.17" name="bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 46.542657][ T486] EXT4-fs (loop2): pa ffff888120ede5e8: logic 128, phys. 385, len 8 [ 46.655139][ T486] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 46.667215][ T24] audit: type=1400 audit(1774462238.690:115): avc: denied { read write } for pid=485 comm="syz.2.17" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 46.807627][ T493] EXT4-fs (loop2): Ignoring removed bh option [ 46.814209][ T493] EXT4-fs (loop2): Ignoring removed oldalloc option [ 46.821766][ T493] EXT4-fs (loop2): Ignoring removed nobh option [ 46.828091][ T493] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 46.846587][ T493] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 46.896443][ T493] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.18: Allocating blocks 497-513 which overlap fs metadata [ 46.911487][ T493] EXT4-fs (loop2): pa ffff88811053a2a0: logic 128, phys. 385, len 8 [ 46.922988][ T493] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 46.961308][ T493] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.18: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 46.980008][ T493] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 119 with max blocks 1 with error 117 [ 46.993259][ T493] EXT4-fs (loop2): This should not happen!! Data will be lost [ 46.993259][ T493] [ 47.003788][ T493] EXT4-fs error (device loop2): ext4_ext_search_right:1612: inode #15: comm syz.2.18: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.024082][ T493] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:4875: inode #15: block 116: len 3: ext4_ext_map_blocks returned -117 [ 47.127638][ T500] EXT4-fs (loop2): Ignoring removed bh option [ 47.134296][ T500] EXT4-fs (loop2): Ignoring removed oldalloc option [ 47.141817][ T500] EXT4-fs (loop2): Ignoring removed nobh option [ 47.148348][ T500] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 47.165810][ T500] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 47.211993][ T500] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.19: Allocating blocks 497-513 which overlap fs metadata [ 47.226275][ T500] EXT4-fs (loop2): pa ffff8881248a1930: logic 128, phys. 385, len 8 [ 47.235670][ T500] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 47.280102][ T7] EXT4-fs error (device loop2): ext4_ext_search_right:1612: inode #15: comm kworker/u4:0: pblk 273 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.304626][ T7] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:4875: inode #15: block 119: len 1: ext4_ext_map_blocks returned -117 [ 47.305250][ T500] EXT4-fs error (device loop2): ext4_ext_search_right:1612: inode #15: comm syz.2.19: pblk 273 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.321565][ T7] EXT4-fs (loop2): failed to convert unwritten extents to written extents -- potential data loss! (inode 15, error -117) [ 47.343157][ T500] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 122 with max blocks 2 with error 117 [ 47.370835][ T500] EXT4-fs (loop2): This should not happen!! Data will be lost [ 47.370835][ T500] [ 47.390934][ T500] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.19: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.415777][ T500] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.19: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.435923][ T500] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:4875: inode #15: block 120: len 2: ext4_ext_map_blocks returned -117 [ 47.452727][ T112] device bridge_slave_1 left promiscuous mode [ 47.459159][ T112] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.466785][ T112] device bridge_slave_0 left promiscuous mode [ 47.473238][ T112] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.481047][ T112] device veth1_macvtap left promiscuous mode [ 47.488143][ T112] device veth0_vlan left promiscuous mode [ 47.580066][ T507] EXT4-fs (loop2): Ignoring removed bh option [ 47.587307][ T507] EXT4-fs (loop2): Ignoring removed oldalloc option [ 47.595952][ T507] EXT4-fs (loop2): Ignoring removed nobh option [ 47.602605][ T507] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 47.625988][ T507] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 47.668442][ T507] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.20: Allocating blocks 497-513 which overlap fs metadata [ 47.684332][ T507] EXT4-fs (loop2): pa ffff888120fc1000: logic 128, phys. 385, len 8 [ 47.692824][ T507] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 47.722335][ T507] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.20: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.742746][ T507] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 119 with max blocks 1 with error 117 [ 47.757694][ T507] EXT4-fs (loop2): This should not happen!! Data will be lost [ 47.757694][ T507] [ 47.770104][ T507] EXT4-fs error (device loop2): ext4_ext_search_right:1612: inode #15: comm syz.2.20: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 47.790335][ T507] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:4875: inode #15: block 116: len 3: ext4_ext_map_blocks returned -117 [ 47.892872][ T514] EXT4-fs (loop2): Ignoring removed bh option [ 47.899210][ T514] EXT4-fs (loop2): Ignoring removed oldalloc option [ 47.906164][ T514] EXT4-fs (loop2): Ignoring removed nobh option [ 47.912412][ T514] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 47.936178][ T514] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 47.988930][ T514] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.21: Allocating blocks 497-513 which overlap fs metadata [ 48.011109][ T514] EXT4-fs (loop2): pa ffff888120fc15e8: logic 128, phys. 385, len 8 [ 48.020268][ T514] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 48.058863][ T514] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.21: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 48.090228][ T514] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 119 with max blocks 1 with error 117 [ 48.110930][ T514] EXT4-fs (loop2): This should not happen!! Data will be lost [ 48.110930][ T514] [ 48.121546][ T514] EXT4-fs error (device loop2): ext4_ext_search_right:1612: inode #15: comm syz.2.21: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 48.141453][ T514] EXT4-fs warning (device loop2): ext4_convert_unwritten_extents:4875: inode #15: block 116: len 3: ext4_ext_map_blocks returned -117 [ 48.291396][ T521] EXT4-fs (loop2): Ignoring removed bh option [ 48.297807][ T521] EXT4-fs (loop2): Ignoring removed oldalloc option [ 48.304649][ T521] EXT4-fs (loop2): Ignoring removed nobh option [ 48.310975][ T521] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 48.325827][ T521] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue [ 48.371747][ T521] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3358: comm syz.2.22: Allocating blocks 497-513 which overlap fs metadata [ 48.386983][ T521] EXT4-fs (loop2): pa ffff888124961690: logic 128, phys. 385, len 8 [ 48.395309][ T521] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4375: group 0, free 0, pa_free 1 [ 48.423387][ T521] EXT4-fs error (device loop2): ext4_find_extent:928: inode #15: comm syz.2.22: pblk 257 bad header/extent: invalid extent entries - magic f30a, entries 4, max 84(84), depth 0(0) [ 48.442855][ T521] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 119 with max blocks 1 with error 117 [ 48.456699][ T521] EXT4-fs (loop2): This should not happen!! Data will be lost [ 48.456699][ T521] [ 48.468519][ T521] ------------[ cut here ]------------ [ 48.475301][ T521] WARNING: CPU: 0 PID: 521 at fs/ext4/extents_status.c:269 __es_find_extent_range+0x4d8/0x5c0 [ 48.487698][ T521] Modules linked in: [ 48.493203][ T521] CPU: 0 PID: 521 Comm: syz.2.22 Not tainted syzkaller #0 [ 48.506594][ T521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 48.519695][ T521] RIP: 0010:__es_find_extent_range+0x4d8/0x5c0 [ 48.527533][ T521] Code: 23 98 ff eb 05 e8 58 23 98 ff 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 44 23 98 ff 0f 0b e9 61 fb ff ff e8 38 23 98 ff <0f> 0b e9 76 fb ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ce fb ff [ 48.554845][ T521] RSP: 0018:ffffc90000c56d88 EFLAGS: 00010293 [ 48.564088][ T521] RAX: ffffffff81cc9018 RBX: ffffc90000c56fc0 RCX: ffff88811a61a780 [ 48.577214][ T521] RDX: 0000000000000000 RSI: 000000000000005b RDI: 0000000000000058 [ 48.588995][ T521] RBP: ffffc90000c56de8 R08: ffffc90000c56fc0 R09: 1ffff11024912f59 [ 48.602677][ T521] R10: dffffc0000000000 R11: ffffed1024912f5a R12: ffff88811a4f83c8 [ 48.613416][ T521] R13: ffff8881248977b8 R14: 0000000000000058 R15: 000000000000005b [ 48.622747][ T521] FS: 00007fa51d5136c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 48.631867][ T521] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.638861][ T521] CR2: 00002000000340bf CR3: 000000011b2b0000 CR4: 00000000003506b0 [ 48.646959][ T521] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.655496][ T521] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.663765][ T521] Call Trace: [ 48.667282][ T521] ? trace_ext4_ext_convert_to_initialized_fastpath+0x140/0x140 [ 48.674958][ T521] ext4_es_find_extent_range+0xd8/0x300 [ 48.680493][ T521] ? trace_ext4_ext_convert_to_initialized_fastpath+0x140/0x140 [ 48.688387][ T521] ext4_ext_map_blocks+0x1ced/0x5dd0 [ 48.693764][ T521] ? block_invalidatepage+0x3ca/0x410 [ 48.699313][ T521] ? ext4_ext_release+0x10/0x10 [ 48.704165][ T521] ext4_map_blocks+0x3b1/0x1bd0 [ 48.709022][ T521] ? recalc_bh_state+0x44/0x1f0 [ 48.713887][ T521] ? ext4_issue_zeroout+0x1a0/0x1a0 [ 48.719300][ T521] ? __kasan_check_read+0x11/0x20 [ 48.724331][ T521] ? __ext4_journal_start_sb+0x2e2/0x490 [ 48.730108][ T521] ext4_convert_unwritten_extents+0x227/0x400 [ 48.736302][ T521] ? trace_ext4_fallocate_exit+0x140/0x140 [ 48.742106][ T521] ext4_convert_unwritten_io_end_vec+0x103/0x180 [ 48.748735][ T521] ext4_put_io_end+0xc4/0x260 [ 48.753502][ T521] ? ext4_writepages+0x10d1/0x2eb0 [ 48.758727][ T521] ext4_writepages+0x10d9/0x2eb0 [ 48.763769][ T521] ? ext4_readpage+0x220/0x220 [ 48.768683][ T521] ? ext4_readpage+0x220/0x220 [ 48.773720][ T521] do_writepages+0x128/0x280 [ 48.778690][ T521] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 48.784253][ T521] ? __writepage+0x130/0x130 [ 48.789256][ T521] ? __kasan_check_write+0x14/0x20 [ 48.794408][ T521] ? _raw_spin_lock+0x94/0xf0 [ 48.800150][ T521] ? _raw_spin_unlock+0x4d/0x70 [ 48.805729][ T521] __filemap_fdatawrite_range+0x2a0/0x350 [ 48.811442][ T521] ? filemap_check_errors+0x120/0x120 [ 48.816846][ T521] ? __get_user_nocheck_1+0x6/0x10 [ 48.822157][ T521] ? generic_perform_write+0x4c8/0x540 [ 48.827837][ T521] ? preempt_count_add+0x90/0x1b0 [ 48.833183][ T521] file_write_and_wait_range+0x8c/0x110 [ 48.839218][ T521] ext4_sync_file+0x1a9/0x9f0 [ 48.844034][ T521] vfs_fsync_range+0x190/0x1a0 [ 48.848934][ T521] ext4_buffered_write_iter+0x59b/0x640 [ 48.855301][ T521] ext4_file_write_iter+0x53f/0x1980 [ 48.860723][ T521] ? futex_wait+0x6f0/0x6f0 [ 48.865537][ T521] ? avc_policy_seqno+0x1b/0x70 [ 48.871566][ T521] ? selinux_file_permission+0x2a5/0x510 [ 48.877846][ T521] ? ext4_file_read_iter+0x530/0x530 [ 48.885100][ T521] ? security_file_permission+0x83/0xa0 [ 48.890941][ T521] ? iov_iter_init+0x3f/0x120 [ 48.896333][ T521] vfs_write+0x758/0xdc0 [ 48.900664][ T521] ? kernel_write+0x3c0/0x3c0 [ 48.905496][ T521] ? __fget_files+0x2c4/0x320 [ 48.910198][ T521] ? __fdget+0x1a1/0x230 [ 48.914810][ T521] ? __x64_sys_pwrite64+0xf2/0x220 [ 48.920068][ T521] __x64_sys_pwrite64+0x197/0x220 [ 48.925134][ T521] ? ksys_pwrite64+0x1b0/0x1b0 [ 48.930079][ T521] ? __kasan_check_read+0x11/0x20 [ 48.935364][ T521] ? exit_to_user_mode_prepare+0x9a/0xa0 [ 48.941241][ T521] do_syscall_64+0x31/0x40 [ 48.945849][ T521] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 48.951753][ T521] RIP: 0033:0x7fa51d6b0799 [ 48.956392][ T521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 48.976110][ T521] RSP: 002b:00007fa51d513028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 48.984951][ T521] RAX: ffffffffffffffda RBX: 00007fa51d929fa0 RCX: 00007fa51d6b0799 [ 48.993155][ T521] RDX: 00000000200000c1 RSI: 00002000000000c0 RDI: 0000000000000006 [ 49.001442][ T521] RBP: 00007fa51d746bd9 R08: 0000000000000000 R09: 0000000000000000 [ 49.009673][ T521] R10: 0000000000009000 R11: 0000000000000246 R12: 0000000000000000 [ 49.017847][ T521] R13: 00007fa51d92a038 R14: 00007fa51d929fa0 R15: 00007ffc067ca718 [ 49.026250][ T521] ---[ end trace 15475cc3b80b9ff7 ]--- [ 49.034260][ T521] ------------[ cut here ]------------ [ 49.039999][ T521] kernel BUG at fs/ext4/extents_status.c:874! [ 49.046446][ T521] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 49.053047][ T521] CPU: 1 PID: 521 Comm: syz.2.22 Tainted: G W syzkaller #0 [ 49.061702][ T521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 49.072578][ T521] RIP: 0010:ext4_es_insert_extent+0x2a1e/0x2b30 [ 49.079919][ T521] Code: 58 74 d2 ff e9 d1 d8 ff ff e8 4e f4 97 ff 0f 0b e8 47 f4 97 ff 0f 0b e8 40 f4 97 ff 0f 0b e8 39 f4 97 ff 0f 0b e8 32 f4 97 ff <0f> 0b 65 8b 05 29 52 35 7e 41 89 c7 c1 e8 06 48 8d 3c c5 a8 74 c3 [ 49.102005][ T521] RSP: 0018:ffffc90000c56cc0 EFLAGS: 00010293 [ 49.108318][ T521] RAX: ffffffff81ccbf1e RBX: ffff88811a4fe000 RCX: ffff88811a61a780 [ 49.116814][ T521] RDX: 0000000000000000 RSI: 000000000000005b RDI: 0000000000000058 [ 49.125031][ T521] RBP: ffffc90000c56e30 R08: ffffc90000c56d97 R09: ffffc90000c56d80 [ 49.133012][ T521] R10: dffffc0000000000 R11: fffff5200018adb3 R12: ffff88811a4f8000 [ 49.141314][ T521] R13: 0000000000000000 R14: 000000000000005b R15: 0000000000000058 [ 49.149804][ T521] FS: 00007fa51d5136c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 49.158717][ T521] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.165282][ T521] CR2: 00007fa51d6fde80 CR3: 000000011b2b0000 CR4: 00000000003506a0 [ 49.173338][ T521] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.181586][ T521] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.189714][ T521] Call Trace: [ 49.193778][ T521] ? __kasan_check_read+0x11/0x20 [ 49.198905][ T521] ? preempt_schedule_common+0xbe/0xf0 [ 49.204847][ T521] ? preempt_schedule+0xbc/0xd0 [ 49.209790][ T521] ? schedule_preempt_disabled+0x20/0x20 [ 49.215492][ T521] ? ext4_es_scan_clu+0x240/0x240 [ 49.220535][ T521] ? _raw_read_unlock+0x38/0x40 [ 49.225523][ T521] ? ext4_es_find_extent_range+0xea/0x300 [ 49.231400][ T521] ? trace_ext4_ext_convert_to_initialized_fastpath+0x140/0x140 [ 49.239425][ T521] ext4_ext_map_blocks+0x1ebb/0x5dd0 [ 49.245054][ T521] ? block_invalidatepage+0x3ca/0x410 [ 49.250690][ T521] ? ext4_ext_release+0x10/0x10 [ 49.255816][ T521] ext4_map_blocks+0x3b1/0x1bd0 [ 49.260681][ T521] ? recalc_bh_state+0x44/0x1f0 [ 49.265717][ T521] ? ext4_issue_zeroout+0x1a0/0x1a0 [ 49.271169][ T521] ? __kasan_check_read+0x11/0x20 [ 49.276354][ T521] ? __ext4_journal_start_sb+0x2e2/0x490 [ 49.282060][ T521] ext4_convert_unwritten_extents+0x227/0x400 [ 49.288485][ T521] ? trace_ext4_fallocate_exit+0x140/0x140 [ 49.295320][ T521] ext4_convert_unwritten_io_end_vec+0x103/0x180 [ 49.301892][ T521] ext4_put_io_end+0xc4/0x260 [ 49.306556][ T521] ? ext4_writepages+0x10d1/0x2eb0 [ 49.312005][ T521] ext4_writepages+0x10d9/0x2eb0 [ 49.317132][ T521] ? ext4_readpage+0x220/0x220 [ 49.321898][ T521] ? ext4_readpage+0x220/0x220 [ 49.326819][ T521] do_writepages+0x128/0x280 [ 49.332061][ T521] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 49.338763][ T521] ? __writepage+0x130/0x130 [ 49.343641][ T521] ? __kasan_check_write+0x14/0x20 [ 49.349554][ T521] ? _raw_spin_lock+0x94/0xf0 [ 49.355038][ T521] ? _raw_spin_unlock+0x4d/0x70 [ 49.361619][ T521] __filemap_fdatawrite_range+0x2a0/0x350 [ 49.368836][ T521] ? filemap_check_errors+0x120/0x120 [ 49.375407][ T521] ? __get_user_nocheck_1+0x6/0x10 [ 49.381600][ T521] ? generic_perform_write+0x4c8/0x540 [ 49.389053][ T521] ? preempt_count_add+0x90/0x1b0 [ 49.395766][ T521] file_write_and_wait_range+0x8c/0x110 [ 49.402745][ T521] ext4_sync_file+0x1a9/0x9f0 [ 49.408225][ T521] vfs_fsync_range+0x190/0x1a0 [ 49.413352][ T521] ext4_buffered_write_iter+0x59b/0x640 [ 49.419229][ T521] ext4_file_write_iter+0x53f/0x1980 [ 49.424790][ T521] ? futex_wait+0x6f0/0x6f0 [ 49.429386][ T521] ? avc_policy_seqno+0x1b/0x70 [ 49.434838][ T521] ? selinux_file_permission+0x2a5/0x510 [ 49.441459][ T521] ? ext4_file_read_iter+0x530/0x530 [ 49.447786][ T521] ? security_file_permission+0x83/0xa0 [ 49.453555][ T521] ? iov_iter_init+0x3f/0x120 [ 49.458308][ T521] vfs_write+0x758/0xdc0 [ 49.462718][ T521] ? kernel_write+0x3c0/0x3c0 [ 49.467649][ T521] ? __fget_files+0x2c4/0x320 [ 49.472334][ T521] ? __fdget+0x1a1/0x230 [ 49.476782][ T521] ? __x64_sys_pwrite64+0xf2/0x220 [ 49.482034][ T521] __x64_sys_pwrite64+0x197/0x220 [ 49.487068][ T521] ? ksys_pwrite64+0x1b0/0x1b0 [ 49.491981][ T521] ? __kasan_check_read+0x11/0x20 [ 49.498626][ T521] ? exit_to_user_mode_prepare+0x9a/0xa0 [ 49.504615][ T521] do_syscall_64+0x31/0x40 [ 49.509676][ T521] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 49.515832][ T521] RIP: 0033:0x7fa51d6b0799 [ 49.520736][ T521] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 49.541525][ T521] RSP: 002b:00007fa51d513028 EFLAGS: 00000246 ORIG_RAX: 0000000000000012 [ 49.552641][ T521] RAX: ffffffffffffffda RBX: 00007fa51d929fa0 RCX: 00007fa51d6b0799 [ 49.562787][ T521] RDX: 00000000200000c1 RSI: 00002000000000c0 RDI: 0000000000000006 [ 49.574707][ T521] RBP: 00007fa51d746bd9 R08: 0000000000000000 R09: 0000000000000000 [ 49.585398][ T521] R10: 0000000000009000 R11: 0000000000000246 R12: 0000000000000000 [ 49.594436][ T521] R13: 00007fa51d92a038 R14: 00007fa51d929fa0 R15: 00007ffc067ca718 [ 49.603046][ T521] Modules linked in: [ 49.610125][ T521] ---[ end trace 15475cc3b80b9ff8 ]--- [ 49.617588][ T521] RIP: 0010:ext4_es_insert_extent+0x2a1e/0x2b30 [ 49.625437][ T521] Code: 58 74 d2 ff e9 d1 d8 ff ff e8 4e f4 97 ff 0f 0b e8 47 f4 97 ff 0f 0b e8 40 f4 97 ff 0f 0b e8 39 f4 97 ff 0f 0b e8 32 f4 97 ff <0f> 0b 65 8b 05 29 52 35 7e 41 89 c7 c1 e8 06 48 8d 3c c5 a8 74 c3 [ 49.648233][ T521] RSP: 0018:ffffc90000c56cc0 EFLAGS: 00010293 [ 49.654493][ T521] RAX: ffffffff81ccbf1e RBX: ffff88811a4fe000 RCX: ffff88811a61a780 [ 49.662621][ T521] RDX: 0000000000000000 RSI: 000000000000005b RDI: 0000000000000058 [ 49.670800][ T521] RBP: ffffc90000c56e30 R08: ffffc90000c56d97 R09: ffffc90000c56d80 [ 49.679229][ T521] R10: dffffc0000000000 R11: fffff5200018adb3 R12: ffff88811a4f8000 [ 49.687750][ T521] R13: 0000000000000000 R14: 000000000000005b R15: 0000000000000058 [ 49.696168][ T521] FS: 00007fa51d5136c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 49.705115][ T521] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.711880][ T521] CR2: 00002000000340bf CR3: 000000011b2b0000 CR4: 00000000003506b0 [ 49.719889][ T521] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.727971][ T521] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.738064][ T521] Kernel panic - not syncing: Fatal exception [ 49.744948][ T521] Kernel Offset: disabled [ 49.750212][ T521] Rebooting in 86400 seconds..