Warning: Permanently added '[localhost]:12310' (ED25519) to the list of known hosts.
2025/01/03 08:53:04 ignoring optional flag "sandboxArg"="0"
2025/01/03 08:53:05 parsed 1 programs
[ 109.874905][ T5603] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 114.143016][ T5642] chnl_net:caif_netlink_parms(): no params data found
[ 114.185584][ T5642] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.188476][ T5642] bridge0: port 1(bridge_slave_0) entered disabled state
[ 114.191858][ T5642] bridge_slave_0: entered allmulticast mode
[ 114.194937][ T5642] bridge_slave_0: entered promiscuous mode
[ 114.198688][ T5642] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.202872][ T5642] bridge0: port 2(bridge_slave_1) entered disabled state
[ 114.205772][ T5642] bridge_slave_1: entered allmulticast mode
[ 114.208906][ T5642] bridge_slave_1: entered promiscuous mode
[ 114.224685][ T5642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 114.229922][ T5642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 114.246981][ T5642] team0: Port device team_slave_0 added
[ 114.251359][ T5642] team0: Port device team_slave_1 added
[ 114.265313][ T5642] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 114.268024][ T5642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 114.278089][ T5642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 114.285752][ T5642] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 114.288416][ T5642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 114.298349][ T5642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 114.319361][ T5642] hsr_slave_0: entered promiscuous mode
[ 114.322772][ T5642] hsr_slave_1: entered promiscuous mode
[ 114.825050][ T5642] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 114.846945][ T5642] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 114.863232][ T5642] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 114.875090][ T5642] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 114.905713][ T5642] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.908639][ T5642] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.911805][ T5642] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.914725][ T5642] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.996267][ T5642] 8021q: adding VLAN 0 to HW filter on device bond0
[ 115.022669][ T30] bridge0: port 1(bridge_slave_0) entered disabled state
[ 115.026137][ T30] bridge0: port 2(bridge_slave_1) entered disabled state
[ 115.044551][ T5642] 8021q: adding VLAN 0 to HW filter on device team0
[ 115.055738][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.058340][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 115.095075][ T30] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.097818][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 115.315669][ T5642] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.380054][ T5642] veth0_vlan: entered promiscuous mode
[ 115.401699][ T5642] veth1_vlan: entered promiscuous mode
[ 115.436992][ T5642] veth0_macvtap: entered promiscuous mode
[ 115.453880][ T5642] veth1_macvtap: entered promiscuous mode
[ 115.473593][ T5642] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 115.486451][ T5642] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 115.504194][ T5642] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.507622][ T5642] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.522300][ T5642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.525719][ T5642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.742534][ T1038] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.842484][ T1038] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.896947][ T1038] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.991612][ T1038] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.823071][ T30] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.826161][ T30] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.867130][ T30] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.870267][ T30] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.017802][ T4661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 118.022047][ T4661] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 118.025304][ T4661] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 118.028524][ T4661] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 118.034610][ T4661] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 118.037503][ T4661] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 118.226739][ T1038] bridge_slave_1: left allmulticast mode
[ 118.228986][ T1038] bridge_slave_1: left promiscuous mode
[ 118.252994][ T1038] bridge0: port 2(bridge_slave_1) entered disabled state
[ 118.272676][ T1038] bridge_slave_0: left allmulticast mode
[ 118.278396][ T1038] bridge_slave_0: left promiscuous mode
[ 118.308725][ T1038] bridge0: port 1(bridge_slave_0) entered disabled state
[ 118.603693][ T1038] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 118.608573][ T1038] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 118.613517][ T1038] bond0 (unregistering): Released all slaves
[ 118.697915][ T1038] hsr_slave_0: left promiscuous mode
[ 118.724026][ T1038] hsr_slave_1: left promiscuous mode
[ 118.731905][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 118.735240][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 118.747888][ T1038] batman_adv: batadv0: Interface deactivated: batadv_slave_1
2025/01/03 08:53:18 executed programs: 0
[ 118.769569][ T1038] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 118.796324][ T1038] veth1_macvtap: left promiscuous mode
[ 118.801162][ T1038] veth0_macvtap: left promiscuous mode
[ 118.803394][ T1038] veth1_vlan: left promiscuous mode
[ 118.806317][ T1038] veth0_vlan: left promiscuous mode
[ 118.816190][ T4661] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 118.820271][ T4661] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 118.824310][ T4661] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 118.827446][ T4661] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 118.830608][ T4661] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 118.834620][ T4661] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 119.414404][ T1038] team0 (unregistering): Port device team_slave_1 removed
[ 119.449678][ T1038] team0 (unregistering): Port device team_slave_0 removed
[ 119.925369][ T5768] chnl_net:caif_netlink_parms(): no params data found
[ 120.332059][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state
[ 120.335561][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state
[ 120.338292][ T5768] bridge_slave_0: entered allmulticast mode
[ 120.357143][ T5768] bridge_slave_0: entered promiscuous mode
[ 120.376117][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state
[ 120.379061][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state
[ 120.418371][ T5768] bridge_slave_1: entered allmulticast mode
[ 120.437387][ T5768] bridge_slave_1: entered promiscuous mode
[ 120.577940][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.589675][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.696450][ T5768] team0: Port device team_slave_0 added
[ 120.710475][ T5768] team0: Port device team_slave_1 added
[ 120.781821][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 120.784580][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 120.819483][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 120.842420][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 120.845282][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 120.871065][ T5342] Bluetooth: hci0: command tx timeout
[ 120.886093][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 120.973591][ T5768] hsr_slave_0: entered promiscuous mode
[ 120.982034][ T5768] hsr_slave_1: entered promiscuous mode
[ 121.359058][ T5768] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 121.369809][ T5768] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 121.385468][ T5768] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 121.402839][ T5768] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 121.506602][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0
[ 121.533405][ T5768] 8021q: adding VLAN 0 to HW filter on device team0
[ 121.546928][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.549545][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 121.574196][ T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.577497][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 121.613923][ T5768] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 121.830207][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 121.894645][ T5768] veth0_vlan: entered promiscuous mode
[ 121.905979][ T5768] veth1_vlan: entered promiscuous mode
[ 121.944238][ T5768] veth0_macvtap: entered promiscuous mode
[ 121.948185][ T5768] veth1_macvtap: entered promiscuous mode
[ 121.971934][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 121.994869][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 121.999136][ T5768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.011419][ T5768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.014697][ T5768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.017979][ T5768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.122776][ T30] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.125727][ T30] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.158764][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.165745][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.387975][ T5838] loop0: detected capacity change from 0 to 32768
[ 122.410011][ T5838] ==================================================================
[ 122.413150][ T5838] BUG: KASAN: slab-use-after-free in __ocfs2_find_path+0x203/0x7e0
[ 122.416249][ T5838] Read of size 4 at addr ffff88804fa70000 by task syz.0.15/5838
[ 122.419928][ T5838]
[ 122.420888][ T5838] CPU: 0 UID: 0 PID: 5838 Comm: syz.0.15 Not tainted 6.13.0-rc5-syzkaller-g0bc21e701a6f #0
[ 122.424669][ T5838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 122.428838][ T5838] Call Trace:
[ 122.430134][ T5838]
[ 122.431204][ T5838] dump_stack_lvl+0x241/0x360
[ 122.433046][ T5838] ? __pfx_dump_stack_lvl+0x10/0x10
[ 122.435069][ T5838] ? __pfx__printk+0x10/0x10
[ 122.436856][ T5838] ? _printk+0xd5/0x120
[ 122.438430][ T5838] ? __virt_addr_valid+0x183/0x530
[ 122.440436][ T5838] ? __virt_addr_valid+0x183/0x530
[ 122.442419][ T5838] print_report+0x169/0x550
[ 122.444163][ T5838] ? __virt_addr_valid+0x183/0x530
[ 122.446086][ T5838] ? __virt_addr_valid+0x183/0x530
[ 122.448019][ T5838] ? __virt_addr_valid+0x45f/0x530
[ 122.449979][ T5838] ? __phys_addr+0xba/0x170
[ 122.451751][ T5838] ? __ocfs2_find_path+0x203/0x7e0
[ 122.453735][ T5838] kasan_report+0x143/0x180
[ 122.455580][ T5838] ? __ocfs2_find_path+0x203/0x7e0
[ 122.457530][ T5838] __ocfs2_find_path+0x203/0x7e0
[ 122.459455][ T5838] ? __pfx_find_leaf_ins+0x10/0x10
[ 122.461597][ T5838] ? __pfx___ocfs2_find_path+0x10/0x10
[ 122.463783][ T5838] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 122.466188][ T5838] ocfs2_find_leaf+0xcf/0x230
[ 122.468054][ T5838] ? __pfx_ocfs2_find_leaf+0x10/0x10
[ 122.470068][ T5838] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 122.472652][ T5838] ocfs2_get_clusters_nocache+0x1ad/0xbf0
[ 122.474851][ T5838] ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[ 122.477195][ T5838] ? ocfs2_read_inode_block+0x14c/0x1e0
[ 122.479334][ T5838] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 122.481621][ T5838] ? do_raw_spin_unlock+0x58/0x8b0
[ 122.483627][ T5838] ocfs2_get_clusters+0x5bd/0xbd0
[ 122.485618][ T5838] ? __pfx_ocfs2_get_clusters+0x10/0x10
[ 122.487797][ T5838] ? __kernel_text_address+0xd/0x40
[ 122.489804][ T5838] ? __pfx_lock_acquire+0x10/0x10
[ 122.491711][ T5838] ocfs2_extent_map_get_blocks+0x24c/0x7d0
[ 122.493892][ T5838] ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[ 122.496352][ T5838] ? lockdep_unlock+0x16a/0x300
[ 122.498250][ T5838] ocfs2_read_virt_blocks+0x313/0xb10
[ 122.500309][ T5838] ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[ 122.502676][ T5838] ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[ 122.505034][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 122.507067][ T5838] ocfs2_find_entry+0x43b/0x2730
[ 122.508977][ T5838] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 122.511071][ T5838] ? __lock_acquire+0x1397/0x2100
[ 122.513067][ T5838] ? format_decode+0xc5f/0x1bb0
[ 122.515087][ T5838] ? __pfx_format_decode+0x10/0x10
[ 122.517036][ T5838] ? __mutex_trylock_common+0x183/0x2e0
[ 122.519214][ T5838] ? __pfx___might_resched+0x10/0x10
[ 122.521367][ T5838] ? string+0x26a/0x2b0
[ 122.523031][ T5838] ? widen_string+0x3a/0x310
[ 122.524967][ T5838] ? string+0x26a/0x2b0
[ 122.526680][ T5838] ? vsnprintf+0x1ccd/0x1da0
[ 122.528480][ T5838] ocfs2_find_files_on_disk+0xff/0x360
[ 122.530580][ T5838] ocfs2_lookup_ino_from_name+0xb1/0x1e0
[ 122.532767][ T5838] ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[ 122.535282][ T5838] ? kasan_save_track+0x51/0x80
[ 122.537165][ T5838] ? kasan_save_track+0x3f/0x80
[ 122.539033][ T5838] ? __kasan_kmalloc+0x98/0xb0
[ 122.540859][ T5838] ? ocfs2_new_dlm_debug+0x97/0x200
[ 122.542836][ T5838] ocfs2_get_system_file_inode+0x305/0x7b0
[ 122.545399][ T5838] ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[ 122.547803][ T5838] ocfs2_init_global_system_inodes+0x32c/0x730
[ 122.550148][ T5838] ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[ 122.552694][ T5838] ? __kmalloc_cache_noprof+0x243/0x390
[ 122.554800][ T5838] ? ocfs2_new_dlm_debug+0x97/0x200
[ 122.556775][ T5838] ? ocfs2_new_dlm_debug+0xb5/0x200
[ 122.558772][ T5838] ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[ 122.560909][ T5838] ? rcu_is_watching+0x15/0xb0
[ 122.562847][ T5838] ? trace_ocfs2_initialize_super+0x9e/0x230
[ 122.565278][ T5838] ocfs2_fill_super+0x2f5b/0x5760
[ 122.567136][ T5838] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 122.569160][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 122.571180][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 122.573156][ T5838] ? validate_chain+0x11e/0x5920
[ 122.575372][ T5838] ? mark_lock+0x9a/0x360
[ 122.577340][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 122.579299][ T5838] ? string+0x26a/0x2b0
[ 122.580835][ T5838] ? widen_string+0x3a/0x310
[ 122.582539][ T5838] ? string+0x26a/0x2b0
[ 122.584229][ T5838] ? bdev_name+0x2b1/0x3c0
[ 122.585937][ T5838] ? pointer+0x703/0x1210
[ 122.587573][ T5838] ? __pfx_pointer+0x10/0x10
[ 122.589350][ T5838] ? __pfx_format_decode+0x10/0x10
[ 122.591196][ T5838] ? __lock_acquire+0x1397/0x2100
[ 122.593098][ T5838] ? vsnprintf+0x1ccd/0x1da0
[ 122.595013][ T5838] ? snprintf+0xda/0x120
[ 122.596676][ T5838] ? __pfx_lock_release+0x10/0x10
[ 122.598582][ T5838] ? do_raw_spin_lock+0x14f/0x370
[ 122.600495][ T5838] ? __pfx_snprintf+0x10/0x10
[ 122.602270][ T5838] ? set_blocksize+0x1fc/0x360
[ 122.604032][ T5838] ? sb_set_blocksize+0x98/0xf0
[ 122.605916][ T5838] ? setup_bdev_super+0x4e6/0x5d0
[ 122.607887][ T5838] mount_bdev+0x20a/0x2d0
[ 122.609605][ T5838] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 122.611763][ T5838] ? __pfx_mount_bdev+0x10/0x10
[ 122.613631][ T5838] ? vfs_parse_fs_string+0x190/0x230
[ 122.615684][ T5838] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 122.617816][ T5838] legacy_get_tree+0xee/0x190
[ 122.619667][ T5838] ? __pfx_ocfs2_mount+0x10/0x10
[ 122.621587][ T5838] vfs_get_tree+0x90/0x2b0
[ 122.623304][ T5838] do_new_mount+0x2be/0xb40
[ 122.625140][ T5838] ? __pfx_do_new_mount+0x10/0x10
[ 122.627142][ T5838] __se_sys_mount+0x2d6/0x3c0
[ 122.629001][ T5838] ? __pfx___se_sys_mount+0x10/0x10
[ 122.631006][ T5838] ? exc_page_fault+0x590/0x8b0
[ 122.632790][ T5838] ? __x64_sys_mount+0x20/0xc0
[ 122.634642][ T5838] do_syscall_64+0xf3/0x230
[ 122.636362][ T5838] ? clear_bhb_loop+0x35/0x90
[ 122.638162][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 122.640487][ T5838] RIP: 0033:0x7f2322f816ba
[ 122.642250][ T5838] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 122.649495][ T5838] RSP: 002b:00007f2323e69e88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 122.652753][ T5838] RAX: ffffffffffffffda RBX: 00007f2323e69f10 RCX: 00007f2322f816ba
[ 122.655796][ T5838] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f2323e69ed0
[ 122.658818][ T5838] RBP: 0000000020004440 R08: 00007f2323e69f10 R09: 0000000001000000
[ 122.661948][ T5838] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[ 122.665135][ T5838] R13: 00007f2323e69ed0 R14: 000000000000444a R15: 00000000200005c0
[ 122.668212][ T5838]
[ 122.669415][ T5838]
[ 122.670341][ T5838] Allocated by task 5392:
[ 122.672065][ T5838] kasan_save_track+0x3f/0x80
[ 122.673867][ T5838] __kasan_slab_alloc+0x66/0x80
[ 122.675811][ T5838] kmem_cache_alloc_noprof+0x1d9/0x380
[ 122.677841][ T5838] rxrpc_alloc_call+0x27a/0xdd0
[ 122.679705][ T5838] rxrpc_service_prealloc_one+0x35b/0xd60
[ 122.681840][ T5838] rxrpc_kernel_charge_accept+0xd2/0x100
[ 122.684036][ T5838] afs_charge_preallocation+0xba/0x2c0
[ 122.686182][ T5838] afs_open_socket+0x459/0x610
[ 122.688215][ T5838] afs_net_init+0x7b9/0x9a0
[ 122.689970][ T5838] ops_init+0x31e/0x590
[ 122.691622][ T5838] setup_net+0x287/0x9e0
[ 122.693214][ T5838] copy_net_ns+0x33f/0x570
[ 122.694961][ T5838] create_new_namespaces+0x425/0x7b0
[ 122.696981][ T5838] unshare_nsproxy_namespaces+0x124/0x180
[ 122.699177][ T5838] ksys_unshare+0x57d/0xa70
[ 122.701031][ T5838] __x64_sys_unshare+0x38/0x40
[ 122.702953][ T5838] do_syscall_64+0xf3/0x230
[ 122.704763][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 122.707102][ T5838]
[ 122.708062][ T5838] Freed by task 5418:
[ 122.709580][ T5838] kasan_save_track+0x3f/0x80
[ 122.711452][ T5838] kasan_save_free_info+0x40/0x50
[ 122.713476][ T5838] __kasan_slab_free+0x59/0x70
[ 122.715414][ T5838] kmem_cache_free+0x195/0x410
[ 122.717338][ T5838] rxrpc_rcu_free_call+0x45/0xa0
[ 122.719306][ T5838] rcu_core+0xaaa/0x17a0
[ 122.720935][ T5838] handle_softirqs+0x2d4/0x9b0
[ 122.722809][ T5838] __irq_exit_rcu+0xf7/0x220
[ 122.724692][ T5838] irq_exit_rcu+0x9/0x30
[ 122.726351][ T5838] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 122.728670][ T5838] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 122.730819][ T5838]
[ 122.731729][ T5838] Last potentially related work creation:
[ 122.734116][ T5838] kasan_save_stack+0x3f/0x60
[ 122.735965][ T5838] __kasan_record_aux_stack+0xac/0xc0
[ 122.738040][ T5838] call_rcu+0x167/0xa70
[ 122.739661][ T5838] rxrpc_discard_prealloc+0x705/0x810
[ 122.741860][ T5838] rxrpc_listen+0x268/0x390
[ 122.743639][ T5838] afs_close_socket+0xa8/0x310
[ 122.745521][ T5838] afs_net_exit+0x60/0xf0
[ 122.747182][ T5838] cleanup_net+0x802/0xd50
[ 122.748881][ T5838] process_scheduled_works+0xa66/0x1840
[ 122.750907][ T5838] worker_thread+0x870/0xd30
[ 122.752663][ T5838] kthread+0x2f0/0x390
[ 122.754214][ T5838] ret_from_fork+0x4b/0x80
[ 122.755885][ T5838] ret_from_fork_asm+0x1a/0x30
[ 122.757710][ T5838]
[ 122.758652][ T5838] The buggy address belongs to the object at ffff88804fa70000
[ 122.758652][ T5838] which belongs to the cache rxrpc_call_jar of size 1600
[ 122.764345][ T5838] The buggy address is located 0 bytes inside of
[ 122.764345][ T5838] freed 1600-byte region [ffff88804fa70000, ffff88804fa70640)
[ 122.769482][ T5838]
[ 122.770432][ T5838] The buggy address belongs to the physical page:
[ 122.772954][ T5838] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88804fa73600 pfn:0x4fa70
[ 122.777487][ T5838] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 122.780821][ T5838] flags: 0x4fff00000000240(workingset|head|node=1|zone=1|lastcpupid=0x7ff)
[ 122.784103][ T5838] page_type: f5(slab)
[ 122.785688][ T5838] raw: 04fff00000000240 ffff8880333d6a00 ffffea0001387a10 ffffea0001368b10
[ 122.788902][ T5838] raw: ffff88804fa73600 0000000000090000 00000001f5000000 0000000000000000
[ 122.792173][ T5838] head: 04fff00000000240 ffff8880333d6a00 ffffea0001387a10 ffffea0001368b10
[ 122.795394][ T5838] head: ffff88804fa73600 0000000000090000 00000001f5000000 0000000000000000
[ 122.798721][ T5838] head: 04fff00000000002 ffffea00013e9c01 ffffffffffffffff 0000000000000000
[ 122.801970][ T5838] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[ 122.805325][ T5838] page dumped because: kasan: bad access detected
[ 122.807752][ T5838] page_owner tracks the page as allocated
[ 122.809889][ T5838] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5392, tgid 5392 (syz-executor), ts 81074474986, free_ts 80451547752
[ 122.818010][ T5838] post_alloc_hook+0x1f3/0x230
[ 122.819934][ T5838] get_page_from_freelist+0x365c/0x37a0
[ 122.822119][ T5838] __alloc_pages_noprof+0x292/0x710
[ 122.824150][ T5838] alloc_pages_mpol_noprof+0x3e8/0x680
[ 122.826287][ T5838] alloc_slab_page+0x6a/0x110
[ 122.828130][ T5838] allocate_slab+0x5a/0x2b0
[ 122.829860][ T5838] ___slab_alloc+0xc27/0x14a0
[ 122.831710][ T5838] __slab_alloc+0x58/0xa0
[ 122.833407][ T5838] kmem_cache_alloc_noprof+0x268/0x380
[ 122.835483][ T5838] rxrpc_alloc_call+0x27a/0xdd0
[ 122.837298][ T5838] rxrpc_service_prealloc_one+0x35b/0xd60
[ 122.839402][ T5838] rxrpc_kernel_charge_accept+0xd2/0x100
[ 122.841530][ T5838] afs_charge_preallocation+0xba/0x2c0
[ 122.843570][ T5838] afs_open_socket+0x459/0x610
[ 122.845452][ T5838] afs_net_init+0x7b9/0x9a0
[ 122.847111][ T5838] ops_init+0x31e/0x590
[ 122.848715][ T5838] page last free pid 8 tgid 8 stack trace:
[ 122.850979][ T5838] free_unref_page+0xd3f/0x1010
[ 122.852865][ T5838] kasan_depopulate_vmalloc_pte+0x74/0x90
[ 122.855062][ T5838] __apply_to_page_range+0x806/0xde0
[ 122.856903][ T5838] kasan_release_vmalloc+0xa5/0xd0
[ 122.858729][ T5838] purge_vmap_node+0x22f/0x8d0
[ 122.860568][ T5838] __purge_vmap_area_lazy+0x708/0xae0
[ 122.862566][ T5838] drain_vmap_area_work+0x27/0x40
[ 122.864440][ T5838] process_scheduled_works+0xa66/0x1840
[ 122.866385][ T5838] worker_thread+0x870/0xd30
[ 122.868090][ T5838] kthread+0x2f0/0x390
[ 122.869690][ T5838] ret_from_fork+0x4b/0x80
[ 122.871395][ T5838] ret_from_fork_asm+0x1a/0x30
[ 122.873194][ T5838]
[ 122.874111][ T5838] Memory state around the buggy address:
[ 122.876292][ T5838] ffff88804fa6ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 122.879224][ T5838] ffff88804fa6ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 122.882268][ T5838] >ffff88804fa70000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 122.885193][ T5838] ^
[ 122.886628][ T5838] ffff88804fa70080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 122.889489][ T5838] ffff88804fa70100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 122.892507][ T5838] ==================================================================
[ 122.946867][ T5838] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 122.949744][ T5838] CPU: 0 UID: 0 PID: 5838 Comm: syz.0.15 Not tainted 6.13.0-rc5-syzkaller-g0bc21e701a6f #0
[ 122.953681][ T5838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 122.957802][ T5838] Call Trace:
[ 122.959085][ T5838]
[ 122.960225][ T5838] dump_stack_lvl+0x241/0x360
[ 122.962037][ T5838] ? __pfx_dump_stack_lvl+0x10/0x10
[ 122.964032][ T5838] ? __pfx__printk+0x10/0x10
[ 122.965791][ T5838] ? preempt_schedule+0xe1/0xf0
[ 122.967686][ T5838] ? vscnprintf+0x5d/0x90
[ 122.969368][ T5838] panic+0x349/0x880
[ 122.970867][ T5838] ? check_panic_on_warn+0x21/0xb0
[ 122.972815][ T5838] ? __pfx_panic+0x10/0x10
[ 122.974772][ T5838] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 122.977101][ T5838] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 122.979451][ T5838] ? print_report+0x502/0x550
[ 122.981272][ T5838] check_panic_on_warn+0x86/0xb0
[ 122.983165][ T5838] ? __ocfs2_find_path+0x203/0x7e0
[ 122.985201][ T5838] end_report+0x77/0x160
[ 122.986827][ T5838] kasan_report+0x154/0x180
[ 122.988579][ T5838] ? __ocfs2_find_path+0x203/0x7e0
[ 122.990528][ T5838] __ocfs2_find_path+0x203/0x7e0
[ 122.992384][ T5838] ? __pfx_find_leaf_ins+0x10/0x10
[ 122.994648][ T5838] ? __pfx___ocfs2_find_path+0x10/0x10
[ 122.996766][ T5838] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 122.999127][ T5838] ocfs2_find_leaf+0xcf/0x230
[ 123.000902][ T5838] ? __pfx_ocfs2_find_leaf+0x10/0x10
[ 123.002887][ T5838] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 123.005154][ T5838] ocfs2_get_clusters_nocache+0x1ad/0xbf0
[ 123.007321][ T5838] ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[ 123.009848][ T5838] ? ocfs2_read_inode_block+0x14c/0x1e0
[ 123.011963][ T5838] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 123.014146][ T5838] ? do_raw_spin_unlock+0x58/0x8b0
[ 123.016117][ T5838] ocfs2_get_clusters+0x5bd/0xbd0
[ 123.018048][ T5838] ? __pfx_ocfs2_get_clusters+0x10/0x10
[ 123.020016][ T5838] ? __kernel_text_address+0xd/0x40
[ 123.021787][ T5838] ? __pfx_lock_acquire+0x10/0x10
[ 123.023694][ T5838] ocfs2_extent_map_get_blocks+0x24c/0x7d0
[ 123.025893][ T5838] ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[ 123.028334][ T5838] ? lockdep_unlock+0x16a/0x300
[ 123.030094][ T5838] ocfs2_read_virt_blocks+0x313/0xb10
[ 123.032002][ T5838] ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[ 123.034078][ T5838] ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[ 123.036203][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 123.038053][ T5838] ocfs2_find_entry+0x43b/0x2730
[ 123.039994][ T5838] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 123.042069][ T5838] ? __lock_acquire+0x1397/0x2100
[ 123.044066][ T5838] ? format_decode+0xc5f/0x1bb0
[ 123.046044][ T5838] ? __pfx_format_decode+0x10/0x10
[ 123.048005][ T5838] ? __mutex_trylock_common+0x183/0x2e0
[ 123.050113][ T5838] ? __pfx___might_resched+0x10/0x10
[ 123.052345][ T5838] ? string+0x26a/0x2b0
[ 123.053907][ T5838] ? widen_string+0x3a/0x310
[ 123.055768][ T5838] ? string+0x26a/0x2b0
[ 123.057214][ T5838] ? vsnprintf+0x1ccd/0x1da0
[ 123.058996][ T5838] ocfs2_find_files_on_disk+0xff/0x360
[ 123.061021][ T5838] ocfs2_lookup_ino_from_name+0xb1/0x1e0
[ 123.063186][ T5838] ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[ 123.065621][ T5838] ? kasan_save_track+0x51/0x80
[ 123.067498][ T5838] ? kasan_save_track+0x3f/0x80
[ 123.069316][ T5838] ? __kasan_kmalloc+0x98/0xb0
[ 123.071140][ T5838] ? ocfs2_new_dlm_debug+0x97/0x200
[ 123.073149][ T5838] ocfs2_get_system_file_inode+0x305/0x7b0
[ 123.075466][ T5838] ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[ 123.077709][ T5838] ocfs2_init_global_system_inodes+0x32c/0x730
[ 123.079783][ T5838] ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[ 123.082235][ T5838] ? __kmalloc_cache_noprof+0x243/0x390
[ 123.084311][ T5838] ? ocfs2_new_dlm_debug+0x97/0x200
[ 123.086272][ T5838] ? ocfs2_new_dlm_debug+0xb5/0x200
[ 123.088067][ T5838] ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[ 123.090091][ T5838] ? rcu_is_watching+0x15/0xb0
[ 123.092376][ T5838] ? trace_ocfs2_initialize_super+0x9e/0x230
[ 123.095210][ T5838] ocfs2_fill_super+0x2f5b/0x5760
[ 123.097819][ T5838] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 123.100464][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 123.102454][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 123.104380][ T5838] ? validate_chain+0x11e/0x5920
[ 123.106207][ T5838] ? mark_lock+0x9a/0x360
[ 123.107864][ T5838] ? __pfx_validate_chain+0x10/0x10
[ 123.109742][ T5838] ? string+0x26a/0x2b0
[ 123.111108][ T5838] ? widen_string+0x3a/0x310
[ 123.112778][ T5838] ? string+0x26a/0x2b0
[ 123.114354][ T5838] ? bdev_name+0x2b1/0x3c0
[ 123.116001][ T5838] ? pointer+0x703/0x1210
[ 123.117583][ T5838] ? __pfx_pointer+0x10/0x10
[ 123.119317][ T5838] ? __pfx_format_decode+0x10/0x10
[ 123.121141][ T5838] ? __lock_acquire+0x1397/0x2100
[ 123.123018][ T5838] ? vsnprintf+0x1ccd/0x1da0
[ 123.124704][ T5838] ? snprintf+0xda/0x120
[ 123.126336][ T5838] ? __pfx_lock_release+0x10/0x10
[ 123.128348][ T5838] ? do_raw_spin_lock+0x14f/0x370
[ 123.130160][ T5838] ? __pfx_snprintf+0x10/0x10
[ 123.131819][ T5838] ? set_blocksize+0x1fc/0x360
[ 123.133363][ T5838] ? sb_set_blocksize+0x98/0xf0
[ 123.135184][ T5838] ? setup_bdev_super+0x4e6/0x5d0
[ 123.137056][ T5838] mount_bdev+0x20a/0x2d0
[ 123.138430][ T5838] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 123.140280][ T5838] ? __pfx_mount_bdev+0x10/0x10
[ 123.142101][ T5838] ? vfs_parse_fs_string+0x190/0x230
[ 123.144284][ T5838] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 123.146303][ T5838] legacy_get_tree+0xee/0x190
[ 123.148480][ T5838] ? __pfx_ocfs2_mount+0x10/0x10
[ 123.150385][ T5838] vfs_get_tree+0x90/0x2b0
[ 123.152130][ T5838] do_new_mount+0x2be/0xb40
[ 123.153860][ T5838] ? __pfx_do_new_mount+0x10/0x10
[ 123.155865][ T5838] __se_sys_mount+0x2d6/0x3c0
[ 123.157722][ T5838] ? __pfx___se_sys_mount+0x10/0x10
[ 123.159921][ T5838] ? exc_page_fault+0x590/0x8b0
[ 123.161724][ T5838] ? __x64_sys_mount+0x20/0xc0
[ 123.163558][ T5838] do_syscall_64+0xf3/0x230
[ 123.165117][ T5838] ? clear_bhb_loop+0x35/0x90
[ 123.166633][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 123.168842][ T5838] RIP: 0033:0x7f2322f816ba
[ 123.170542][ T5838] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 123.177709][ T5838] RSP: 002b:00007f2323e69e88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 123.180779][ T5838] RAX: ffffffffffffffda RBX: 00007f2323e69f10 RCX: 00007f2322f816ba
[ 123.183748][ T5838] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f2323e69ed0
[ 123.186802][ T5838] RBP: 0000000020004440 R08: 00007f2323e69f10 R09: 0000000001000000
[ 123.189726][ T5838] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[ 123.192651][ T5838] R13: 00007f2323e69ed0 R14: 000000000000444a R15: 00000000200005c0
[ 123.195563][ T5838]
[ 123.196994][ T5838] Kernel Offset: disabled
[ 123.198609][ T5838] Rebooting in 86400 seconds..