[ 27.623262] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 27.632250] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 27.642029] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.650224] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 27.715216] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 27.836250] syz-executor.0 (7955) used greatest stack depth: 24264 bytes left [ 28.239711] can: request_module (can-proto-0) failed. [ 28.250290] can: request_module (can-proto-0) failed. [ 28.260004] can: request_module (can-proto-0) failed. [ 37.946904] unregister_netdevice: waiting for ip6gre0 to become free. Usage count = -1 Warning: Permanently added '10.128.1.119' (ECDSA) to the list of known hosts. [ 45.950342] audit: type=1800 audit(1647018918.663:2): pid=8289 uid=0 auid=4294967295 ses=4294967295 op="collect_data" cause="failed(directio)" comm="syz-executor235" name="bus" dev="sda1" ino=13876 res=0 [ 46.011637] EXT4-fs warning (device sda1): ext4_block_to_path:107: block 1074791436 > max in inode 13876 [ 46.021638] ------------[ cut here ]------------ [ 46.026409] kernel BUG at fs/ext4/indirect.c:1236! [ 46.031427] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 46.036952] Modules linked in: [ 46.040124] CPU: 1 PID: 8289 Comm: syz-executor235 Not tainted 4.14.271-syzkaller #0 [ 46.048079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 46.057596] task: ffff8880ab196600 task.stack: ffff8880ab080000 [ 46.063761] RIP: 0010:ext4_ind_remove_space+0xe9f/0x1570 [ 46.069363] RSP: 0018:ffff8880ab087a58 EFLAGS: 00010206 [ 46.074716] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 [ 46.082177] RDX: 0000000000000000 RSI: ffffffff878b9920 RDI: ffffed1015610f17 [ 46.089682] RBP: ffff8880ab087d18 R08: ffff8880ab196f20 R09: 0000000000000000 [ 46.096996] R10: 0000000000000000 R11: dffffc0000000000 R12: ffff8880ab087b70 [ 46.104295] R13: 000000004010040c R14: 0000000000001000 R15: ffff88808a57d4f0 [ 46.111551] FS: 0000555556610300(0000) GS:ffff8880ba700000(0000) knlGS:0000000000000000 [ 46.119976] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.126076] CR2: 0000000020000084 CR3: 00000000aa890000 CR4: 00000000003406e0 [ 46.133878] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.141222] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.148565] Call Trace: [ 46.151168] ? debug_check_no_obj_freed+0x2d5/0x890 [ 46.156531] ? __lock_acquire+0x701/0x42d0 [ 46.160766] ? ext4_ind_truncate+0x8e0/0x8e0 [ 46.165167] ? ext4_es_free_extent+0x1f8/0x530 [ 46.169775] ? rcu_read_lock_sched_held+0x108/0x120 [ 46.174786] ? kmem_cache_free+0x25f/0x2d0 [ 46.179134] ? ext4_es_free_extent+0x1f8/0x530 [ 46.184279] ? ext4_es_remove_extent+0x81/0x290 [ 46.189172] ? lock_downgrade+0x7f0/0x7f0 [ 46.193400] ? _raw_write_unlock+0x2c/0x50 [ 46.197890] ? ext4_es_remove_extent+0x81/0x290 [ 46.202543] ext4_punch_hole+0xd55/0x1040 [ 46.206679] ext4_fallocate+0x292/0x19f0 [ 46.210733] vfs_fallocate+0x2ba/0x770 [ 46.214609] SyS_fallocate+0x3f/0x60 [ 46.218308] ? compat_SyS_ftruncate+0x10/0x10 [ 46.222803] do_syscall_64+0x1c7/0x5b0 [ 46.226792] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 46.231712] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 46.237005] RIP: 0033:0x7ff95c08dc09 [ 46.240994] RSP: 002b:00007ffe305d57c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 46.248828] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff95c08dc09 [ 46.256081] RDX: 0000000001000000 RSI: 0000000000000003 RDI: 0000000000000005 [ 46.263949] RBP: 00007ff95c051db0 R08: 0000000000000000 R09: 0000000000000000 [ 46.271865] R10: 00000ffeffeff000 R11: 0000000000000246 R12: 00007ff95c051e40 [ 46.279548] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 46.287155] Code: 89 95 a0 fd ff ff 48 89 85 b0 fd ff ff e8 6a 15 c6 ff 4c 8b 8d 90 fd ff ff 8b 95 a0 fd ff ff 48 8b 85 b0 fd ff ff e9 eb f2 ff ff <0f> 0b 4c 3b bd b0 fd ff ff 0f 84 ad 00 00 00 48 8b 9d 90 fd ff [ 46.306489] RIP: ext4_ind_remove_space+0xe9f/0x1570 RSP: ffff8880ab087a58 [ 46.314143] ---[ end trace 4863973828e49c97 ]--- [ 46.318987] Kernel panic - not syncing: Fatal exception [ 46.324539] Kernel Offset: disabled [ 46.328740] Rebooting in 86400 seconds..