Warning: Permanently added '10.128.10.31' (ED25519) to the list of known hosts.
2024/12/29 21:52:10 ignoring optional flag "sandboxArg"="0"
2024/12/29 21:52:11 parsed 1 programs
[   73.153711][ T2028] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2024/12/29 21:52:21 executed programs: 0
2024/12/29 21:52:29 executed programs: 2
[   91.068568][ T2939] loop0: detected capacity change from 0 to 32768
[   91.080326][ T2939] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 66 has bad blkno in extent list at depth 65533 (index 273)
[   91.101259][ T2939] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[   91.111390][ T2939] OCFS2: File system is now read-only.
[   91.116910][ T2939] (syz.0.15,2939,1):ocfs2_find_leaf:1933 ERROR: status = -30
[   91.124343][ T2939] (syz.0.15,2939,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[   91.132767][ T2939] (syz.0.15,2939,1):ocfs2_get_clusters:624 ERROR: status = -30
[   91.140362][ T2939] (syz.0.15,2939,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[   91.148730][ T2939] (syz.0.15,2939,1):ocfs2_read_virt_blocks:981 ERROR: status = -30
[   91.156795][ T2939] (syz.0.15,2939,1):ocfs2_read_dir_block:511 ERROR: status = -30
[   91.164845][ T2939] (syz.0.15,2939,1):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[   91.173732][ T2939] (syz.0.15,2939,1):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[   91.173747][ T2939] (syz.0.15,2939,1):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[   91.194600][ T2939] (syz.0.15,2939,1):ocfs2_initialize_super:2252 ERROR: status = -30
[   91.202698][ T2939] (syz.0.15,2939,1):ocfs2_fill_super:1176 ERROR: status = -30
[   91.455023][ T2942] loop0: detected capacity change from 0 to 32768
[   91.463828][ T2942] ==================================================================
[   91.471908][ T2942] BUG: KASAN: use-after-free in __ocfs2_find_path+0x172/0x760
[   91.479395][ T2942] Read of size 4 at addr ffff888065629000 by task syz.0.16/2942
[   91.487021][ T2942] 
[   91.489411][ T2942] CPU: 1 PID: 2942 Comm: syz.0.16 Not tainted 6.1.122-syzkaller #0
[   91.497366][ T2942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   91.507409][ T2942] Call Trace:
[   91.510674][ T2942]  <TASK>
[   91.513613][ T2942]  dump_stack_lvl+0x163/0x213
[   91.518282][ T2942]  ? nf_tcp_handle_invalid+0x2f3/0x2f3
[   91.523732][ T2942]  ? panic+0x495/0x495
[   91.527873][ T2942]  ? _printk+0xca/0x10a
[   91.532012][ T2942]  ? __virt_addr_valid+0x134/0x330
[   91.537230][ T2942]  print_report+0x15f/0x4f0
[   91.541734][ T2942]  ? __virt_addr_valid+0x134/0x330
[   91.546832][ T2942]  ? __virt_addr_valid+0x2df/0x330
[   91.551923][ T2942]  ? __ocfs2_find_path+0x172/0x760
[   91.557018][ T2942]  kasan_report+0x136/0x160
[   91.561594][ T2942]  ? __ocfs2_find_path+0x172/0x760
[   91.566699][ T2942]  __ocfs2_find_path+0x172/0x760
[   91.571620][ T2942]  ? ocfs2_find_leaf+0x1e0/0x1e0
[   91.576544][ T2942]  ? ocfs2_find_path+0x120/0x120
[   91.581549][ T2942]  ? ocfs2_refresh_inode+0x9b0/0x9b0
[   91.586813][ T2942]  ocfs2_find_leaf+0xc0/0x1e0
[   91.591469][ T2942]  ? find_path_ins+0x150/0x150
[   91.596224][ T2942]  ? ocfs2_refresh_inode+0x9b0/0x9b0
[   91.601620][ T2942]  ocfs2_get_clusters_nocache+0x194/0xa20
[   91.607319][ T2942]  ? ocfs2_get_clusters+0xde0/0xde0
[   91.612589][ T2942]  ? ocfs2_read_inode_block+0x100/0x1c0
[   91.618113][ T2942]  ? ocfs2_read_inode_block_full+0x1c0/0x1c0
[   91.624070][ T2942]  ? do_raw_spin_unlock+0x137/0x8a0
[   91.629282][ T2942]  ocfs2_get_clusters+0x754/0xde0
[   91.634288][ T2942]  ? ocfs2_xattr_get_clusters+0x8c0/0x8c0
[   91.640007][ T2942]  ? down_read+0x8fd/0xba0
[   91.644401][ T2942]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[   91.650275][ T2942]  ocfs2_extent_map_get_blocks+0x182/0x640
[   91.656059][ T2942]  ? ocfs2_get_clusters_nocache+0xa20/0xa20
[   91.661955][ T2942]  ? __lock_acquire+0xfa4/0x7110
[   91.666871][ T2942]  ocfs2_read_virt_blocks+0x257/0x780
[   91.672240][ T2942]  ? ocfs2_validate_dx_leaf+0x1c0/0x1c0
[   91.677763][ T2942]  ? ocfs2_seek_data_hole_offset+0xb90/0xb90
[   91.683733][ T2942]  ? verify_lock_unused+0x140/0x140
[   91.688929][ T2942]  ocfs2_find_entry+0x3b1/0x1e80
[   91.693851][ T2942]  ? ocfs2_free_dir_lookup_result+0xc0/0xc0
[   91.699725][ T2942]  ? ocfs2_inode_lock_res_init+0x2c0/0x2c0
[   91.705510][ T2942]  ? submit_bio_noacct_nocheck+0xc8a/0xf00
[   91.711299][ T2942]  ? read_lock_is_recursive+0x10/0x10
[   91.716735][ T2942]  ? vsnprintf+0x1970/0x1970
[   91.721305][ T2942]  ? rcu_is_watching+0x1b/0x90
[   91.726067][ T2942]  ? vsnprintf+0xb6e/0x1970
[   91.730557][ T2942]  ocfs2_find_files_on_disk+0x8c/0x200
[   91.736011][ T2942]  ocfs2_lookup_ino_from_name+0xa8/0x190
[   91.741622][ T2942]  ? ocfs2_find_files_on_disk+0x200/0x200
[   91.747322][ T2942]  ? __stack_depot_save+0x1d/0x460
[   91.752412][ T2942]  ocfs2_get_system_file_inode+0x3da/0x660
[   91.758197][ T2942]  ? mount_bdev+0x26b/0x340
[   91.762706][ T2942]  ? do_syscall_64+0x3b/0x80
[   91.767305][ T2942]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   91.773373][ T2942]  ? ocfs2_fast_symlink_read_folio+0x430/0x430
[   91.779527][ T2942]  ocfs2_init_global_system_inodes+0x275/0x560
[   91.785670][ T2942]  ? trace_ocfs2_initialize_super+0x100/0x100
[   91.791723][ T2942]  ? __kasan_kmalloc+0x97/0xb0
[   91.796586][ T2942]  ? ocfs2_new_dlm_debug+0xa7/0x1e0
[   91.801787][ T2942]  ? ocfs2_put_dlm_debug+0x40/0x40
[   91.806902][ T2942]  ocfs2_fill_super+0x37dd/0x4aa0
[   91.811921][ T2942]  ? ocfs2_mount+0x10/0x10
[   91.816332][ T2942]  ? __lock_acquire+0xfa4/0x7110
[   91.821284][ T2942]  ? __lock_acquire+0xfa4/0x7110
[   91.826202][ T2942]  ? unwind_next_frame+0x1a3f/0x2220
[   91.831490][ T2942]  ? deref_stack_reg+0x17c/0x210
[   91.836437][ T2942]  ? preempt_count_add+0x8f/0x120
[   91.841453][ T2942]  ? verify_lock_unused+0x140/0x140
[   91.846667][ T2942]  ? __lock_acquire+0xfa4/0x7110
[   91.851780][ T2942]  ? verify_lock_unused+0x140/0x140
[   91.856978][ T2942]  ? verify_lock_unused+0x140/0x140
[   91.862184][ T2942]  ? read_lock_is_recursive+0x10/0x10
[   91.867543][ T2942]  ? __stack_depot_save+0x1d/0x460
[   91.872643][ T2942]  ? reacquire_held_locks+0x3a8/0x590
[   91.877996][ T2942]  ? alloc_super+0x1e0/0x8a0
[   91.882567][ T2942]  ? bdev_name+0x181/0x300
[   91.886962][ T2942]  ? pointer+0x1d3/0xc90
[   91.891183][ T2942]  ? string+0x240/0x240
[   91.895320][ T2942]  ? vsnprintf+0x1970/0x1970
[   91.899919][ T2942]  ? ptr_to_hashval+0x50/0x50
[   91.904571][ T2942]  ? rwsem_write_trylock+0x15e/0x200
[   91.909836][ T2942]  ? mount_bdev+0xe8/0x340
[   91.914235][ T2942]  ? snprintf+0xcc/0x110
[   91.918460][ T2942]  ? __up_read+0x360/0x360
[   91.922854][ T2942]  ? vscnprintf+0x30/0x30
[   91.927164][ T2942]  ? mount_bdev+0x340/0x340
[   91.931669][ T2942]  mount_bdev+0x26b/0x340
[   91.936064][ T2942]  ? ocfs2_mount+0x10/0x10
[   91.940466][ T2942]  legacy_get_tree+0xe5/0x170
[   91.945124][ T2942]  ? trace_raw_output_ocfs2_buffer_cached_end+0xd0/0xd0
[   91.952041][ T2942]  vfs_get_tree+0x7a/0x170
[   91.956440][ T2942]  do_new_mount+0x21a/0x910
[   91.960931][ T2942]  ? do_move_mount_old+0x120/0x120
[   91.966021][ T2942]  __se_sys_mount+0x22e/0x2c0
[   91.970769][ T2942]  ? print_irqtrace_events+0x210/0x210
[   91.976297][ T2942]  ? __x64_sys_mount+0xc0/0xc0
[   91.981041][ T2942]  ? syscall_enter_from_user_mode+0x2e/0x200
[   91.987020][ T2942]  ? lockdep_hardirqs_on+0x94/0xf0
[   91.992176][ T2942]  ? syscall_enter_from_user_mode+0x2e/0x200
[   91.998158][ T2942]  do_syscall_64+0x3b/0x80
[   92.002662][ T2942]  ? clear_bhb_loop+0x45/0xa0
[   92.007363][ T2942]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   92.013236][ T2942] RIP: 0033:0x7f0e98b7f79a
[   92.017752][ T2942] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.037351][ T2942] RSP: 002b:00007f0e99902e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   92.045759][ T2942] RAX: ffffffffffffffda RBX: 00007f0e99902ef0 RCX: 00007f0e98b7f79a
[   92.053721][ T2942] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f0e99902eb0
[   92.061690][ T2942] RBP: 0000000020004440 R08: 00007f0e99902ef0 R09: 0000000001000000
[   92.069640][ T2942] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[   92.077678][ T2942] R13: 00007f0e99902eb0 R14: 000000000000444a R15: 00000000200005c0
[   92.085719][ T2942]  </TASK>
[   92.088722][ T2942] 
[   92.091062][ T2942] The buggy address belongs to the physical page:
[   92.097468][ T2942] page:ffffea0001958a40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x65629
[   92.107600][ T2942] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   92.114733][ T2942] raw: 00fff00000000000 ffffea0001958a88 ffff8880b9f3e9a0 0000000000000000
[   92.123298][ T2942] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   92.131944][ T2942] page dumped because: kasan: bad access detected
[   92.138341][ T2942] page_owner tracks the page as freed
[   92.143688][ T2942] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, tgid 1 (swapper/0), ts 6035543882, free_ts 7298386682
[   92.158520][ T2942]  post_alloc_hook+0x286/0x2b0
[   92.163284][ T2942]  split_map_pages+0x22a/0x480
[   92.168037][ T2942]  isolate_freepages_range+0x2a4/0x460
[   92.173485][ T2942]  alloc_contig_range+0x60a/0x930
[   92.178496][ T2942]  alloc_contig_pages+0x3ef/0x4f0
[   92.183595][ T2942]  debug_vm_pgtable_alloc_huge_page+0x7d/0xd7
[   92.189642][ T2942]  init_args+0xa08/0xc2a
[   92.193870][ T2942]  debug_vm_pgtable+0xa5/0x5ad
[   92.198613][ T2942]  do_one_initcall+0x19f/0x4c0
[   92.203368][ T2942]  do_initcall_level+0x11e/0x1cd
[   92.208392][ T2942]  do_initcalls+0x46/0x74
[   92.212703][ T2942]  kernel_init_freeable+0x391/0x501
[   92.217883][ T2942]  kernel_init+0x14/0x190
[   92.222279][ T2942]  ret_from_fork+0x1f/0x30
[   92.226676][ T2942] page last free stack trace:
[   92.231330][ T2942]  free_unref_page_prepare+0x10b7/0x13b0
[   92.236942][ T2942]  free_unref_page+0x33/0x390
[   92.241623][ T2942]  free_contig_range+0x8d/0x130
[   92.246454][ T2942]  destroy_args+0xde/0x7e1
[   92.250954][ T2942]  debug_vm_pgtable+0x373/0x5ad
[   92.255813][ T2942]  do_one_initcall+0x19f/0x4c0
[   92.260570][ T2942]  do_initcall_level+0x11e/0x1cd
[   92.265491][ T2942]  do_initcalls+0x46/0x74
[   92.269798][ T2942]  kernel_init_freeable+0x391/0x501
[   92.274985][ T2942]  kernel_init+0x14/0x190
[   92.279299][ T2942]  ret_from_fork+0x1f/0x30
[   92.283806][ T2942] 
[   92.286143][ T2942] Memory state around the buggy address:
[   92.291787][ T2942]  ffff888065628f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   92.299855][ T2942]  ffff888065628f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   92.307898][ T2942] >ffff888065629000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   92.316113][ T2942]                    ^
[   92.320163][ T2942]  ffff888065629080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   92.328292][ T2942]  ffff888065629100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   92.336331][ T2942] ==================================================================
[   92.345469][ T2942] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   92.352957][ T2942] Kernel Offset: disabled
[   92.357278][ T2942] Rebooting in 86400 seconds..