Warning: Permanently added '10.128.0.245' (ED25519) to the list of known hosts.
2025/04/18 00:03:36 ignoring optional flag "sandboxArg"="0"
2025/04/18 00:03:38 parsed 1 programs
[   60.314317][   T24] kauditd_printk_skb: 31 callbacks suppressed
[   60.314331][   T24] audit: type=1400 audit(1744934619.150:107): avc:  denied  { unlink } for  pid=457 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   60.383779][  T457] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   61.030620][   T24] audit: type=1401 audit(1744934619.870:108): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   61.149752][   T24] audit: type=1400 audit(1744934619.980:109): avc:  denied  { create } for  pid=491 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   61.202822][  T493] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.210036][  T493] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.217592][  T493] device bridge_slave_0 entered promiscuous mode
[   61.225467][  T493] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.232901][  T493] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.240817][  T493] device bridge_slave_1 entered promiscuous mode
[   61.277871][  T493] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.285122][  T493] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.292673][  T493] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.300052][  T493] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.319963][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   61.327681][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.335118][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.345105][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.353930][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.361139][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.370492][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.378492][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.385589][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.398780][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   61.408423][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   61.427968][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   61.439316][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   61.447319][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   61.455234][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   61.463622][  T493] device veth0_vlan entered promiscuous mode
[   61.473759][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.482774][  T493] device veth1_macvtap entered promiscuous mode
[   61.492568][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   61.502917][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/04/18 00:03:40 executed programs: 0
[   62.071017][  T520] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.078012][  T520] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.085731][  T520] device bridge_slave_0 entered promiscuous mode
[   62.093175][  T520] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.100120][  T520] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.107323][  T520] device bridge_slave_1 entered promiscuous mode
[   62.151425][  T520] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.158819][  T520] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.166335][  T520] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.173585][  T520] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.198322][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.206351][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.213862][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.231249][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   62.239673][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.246591][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.254111][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.263045][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.270167][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.277438][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   62.287766][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   62.305243][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.319594][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   62.328226][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   62.335924][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   62.346109][  T520] device veth0_vlan entered promiscuous mode
[   62.357709][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   62.367105][  T520] device veth1_macvtap entered promiscuous mode
[   62.376861][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.387270][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.574476][  T531] F2FS-fs (loop2): fault_injection options not supported
[   62.583007][  T531] F2FS-fs (loop2): invalid crc value
[   62.589452][  T531] F2FS-fs (loop2): Found nat_bits in checkpoint
[   62.621298][  T531] F2FS-fs (loop2): Start checkpoint disabled!
[   62.628299][  T531] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   62.636616][   T24] audit: type=1400 audit(1744934621.470:110): avc:  denied  { mount } for  pid=530 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   62.658592][   T24] audit: type=1400 audit(1744934621.470:111): avc:  denied  { write } for  pid=530 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   62.680604][   T24] audit: type=1400 audit(1744934621.470:112): avc:  denied  { add_name } for  pid=530 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   62.701634][   T24] audit: type=1400 audit(1744934621.470:113): avc:  denied  { create } for  pid=530 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   62.721917][   T24] audit: type=1400 audit(1744934621.470:114): avc:  denied  { write open } for  pid=530 comm="syz.2.16" path="/0/file0/file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   62.745892][   T24] audit: type=1400 audit(1744934621.470:115): avc:  denied  { ioctl } for  pid=530 comm="syz.2.16" path="/0/file0/file0" dev="loop2" ino=10 ioctlcmd=0xf50d scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   62.765579][    T7] attempt to access beyond end of device
[   62.765579][    T7] loop2: rw=2049, want=45104, limit=40427
[   63.098996][  T536] F2FS-fs (loop2): fault_injection options not supported
[   63.107231][  T536] F2FS-fs (loop2): invalid crc value
[   63.114601][  T536] F2FS-fs (loop2): Found nat_bits in checkpoint
[   63.146432][  T536] F2FS-fs (loop2): Start checkpoint disabled!
[   63.153137][  T536] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   63.200818][   T49] device bridge_slave_1 left promiscuous mode
[   63.206817][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.214284][   T49] device bridge_slave_0 left promiscuous mode
[   63.220531][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.228436][   T49] device veth1_macvtap left promiscuous mode
[   63.231457][    T7] attempt to access beyond end of device
[   63.231457][    T7] loop2: rw=2049, want=40968, limit=40427
[   63.234554][   T49] device veth0_vlan left promiscuous mode
[   63.566074][  T541] F2FS-fs (loop2): fault_injection options not supported
[   63.576482][  T541] F2FS-fs (loop2): invalid crc value
[   63.583614][  T541] F2FS-fs (loop2): Found nat_bits in checkpoint
[   63.623507][  T541] F2FS-fs (loop2): Start checkpoint disabled!
[   63.630956][  T541] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   63.678203][  T541] ------------[ cut here ]------------
[   63.683999][  T541] WARNING: CPU: 0 PID: 541 at fs/f2fs/segment.c:2582 new_curseg+0xee2/0x18c0
[   63.692988][  T541] Modules linked in:
[   63.696690][  T541] CPU: 0 PID: 541 Comm: syz.2.18 Not tainted 5.10.236-syzkaller-1007360-gba8b8b193394 #0
[   63.706497][  T541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   63.716639][  T541] RIP: 0010:new_curseg+0xee2/0x18c0
[   63.722189][  T541] Code: 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 f6 76 88 ff f0 80 0b 04 c7 45 c0 00 00 00 00 45 89 f4 e9 ea fb ff ff e8 6e d6 4a ff <0f> 0b 48 8b 9d 38 ff ff ff 48 89 df be 08 00 00 00 e8 c8 76 88 ff
[   63.742196][  T541] RSP: 0018:ffffc900030776e0 EFLAGS: 00010293
[   63.748411][  T541] RAX: ffffffff821fe982 RBX: 0000000000000018 RCX: ffff8881191dcf00
[   63.756620][  T541] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 0000000000000018
[   63.765066][  T541] RBP: ffffc900030777c0 R08: ffffffff821fe409 R09: 0000000000000003
[   63.773190][  T541] R10: fffff5200060eecc R11: dffffc0000000001 R12: 0000000000000006
[   63.781101][  T541] R13: 0000000000000006 R14: 0000000000000018 R15: dffffc0000000000
[   63.788855][  T541] FS:  00007f9cd37766c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   63.798221][  T541] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   63.804838][  T541] CR2: 0000001b2c35ffff CR3: 00000001189e7000 CR4: 00000000003506b0
[   63.812883][  T541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   63.820825][  T541] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   63.829772][  T541] Call Trace:
[   63.833261][  T541]  __allocate_new_segment+0x144/0x870
[   63.838787][  T541]  f2fs_allocate_new_section+0x1c3/0x270
[   63.844445][  T541]  ? new_curseg+0x18c0/0x18c0
[   63.849024][  T541]  ? down_read_trylock+0x179/0x1d0
[   63.854541][  T541]  ? __kasan_check_write+0x14/0x20
[   63.859687][  T541]  ? __init_rwsem+0x1c0/0x1c0
[   63.864282][  T541]  expand_inode_data+0x62d/0xc10
[   63.869467][  T541]  ? f2fs_dirty_inode+0x173/0x2e0
[   63.874839][  T541]  ? f2fs_insert_range+0x590/0x590
[   63.880145][  T541]  ? inode_dio_wait+0x2a9/0x340
[   63.885362][  T541]  ? inode_owner_or_capable+0x140/0x140
[   63.890851][  T541]  f2fs_fallocate+0x431/0x7e0
[   63.895367][  T541]  vfs_fallocate+0x492/0x570
[   63.899780][  T541]  do_vfs_ioctl+0x1686/0x1a30
[   63.904286][  T541]  ? ioctl_has_perm+0x3f0/0x560
[   63.908967][  T541]  ? __kasan_slab_free+0x11/0x20
[   63.913792][  T541]  ? __ia32_compat_sys_ioctl+0xc30/0xc30
[   63.919586][  T541]  ? has_cap_mac_admin+0x3c0/0x3c0
[   63.924813][  T541]  ? putname+0xe7/0x140
[   63.928985][  T541]  ? selinux_file_ioctl+0x3cc/0x540
[   63.934058][  T541]  ? selinux_file_alloc_security+0x120/0x120
[   63.940498][  T541]  ? __fget_files+0x31e/0x380
[   63.945139][  T541]  ? security_file_ioctl+0x84/0xb0
[   63.950174][  T541]  __se_sys_ioctl+0x99/0x190
[   63.954643][  T541]  __x64_sys_ioctl+0x7b/0x90
[   63.959295][  T541]  do_syscall_64+0x31/0x40
[   63.963556][  T541]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   63.969206][  T541] RIP: 0033:0x7f9cd3d04169
[   63.973615][  T541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.993184][  T541] RSP: 002b:00007f9cd3776038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.001468][  T541] RAX: ffffffffffffffda RBX: 00007f9cd3f1cfa0 RCX: 00007f9cd3d04169
[   64.009340][  T541] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   64.017475][  T541] RBP: 00007f9cd3d852a0 R08: 0000000000000000 R09: 0000000000000000
[   64.025273][  T541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.033347][  T541] R13: 0000000000000000 R14: 00007f9cd3f1cfa0 R15: 00007ffc9a9c40b8
[   64.041416][  T541] ---[ end trace 39cbe0f3651b9921 ]---
[   64.047158][  T541] ------------[ cut here ]------------
[   64.052556][  T541] WARNING: CPU: 0 PID: 541 at fs/f2fs/segment.c:2636 new_curseg+0x14d4/0x18c0
[   64.061241][  T541] Modules linked in:
[   64.065066][  T541] CPU: 0 PID: 541 Comm: syz.2.18 Tainted: G        W         5.10.236-syzkaller-1007360-gba8b8b193394 #0
[   64.076344][  T541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   64.086272][  T541] RIP: 0010:new_curseg+0x14d4/0x18c0
[   64.091343][  T541] Code: e9 66 fc ff ff e8 9c d0 4a ff 0f 0b 49 8d 7d 78 be 08 00 00 00 e8 fc 70 88 ff f0 41 80 4d 78 04 e9 d2 ed ff ff e8 7c d0 4a ff <0f> 0b 48 8b 5d 98 48 8d 7b 78 be 08 00 00 00 e8 d8 70 88 ff f0 80
[   64.111317][  T541] RSP: 0018:ffffc900030776e0 EFLAGS: 00010293
[   64.117269][  T541] RAX: ffffffff821fef74 RBX: 0000000000000001 RCX: ffff8881191dcf00
[   64.125468][  T541] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   64.133589][  T541] RBP: ffffc900030777c0 R08: ffffffff821fec26 R09: ffffed1020cfe74b
[   64.141624][  T541] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000018
[   64.149911][  T541] R13: 0000000000000000 R14: dffffc0000000000 R15: ffff8881067f3a01
[   64.157842][  T541] FS:  00007f9cd37766c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   64.166655][  T541] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   64.173282][  T541] CR2: 0000001b2c35ffff CR3: 00000001189e7000 CR4: 00000000003506b0
[   64.181105][  T541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   64.188969][  T541] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   64.197102][  T541] Call Trace:
[   64.200340][  T541]  __allocate_new_segment+0x144/0x870
[   64.205582][  T541]  f2fs_allocate_new_section+0x1c3/0x270
[   64.211225][  T541]  ? new_curseg+0x18c0/0x18c0
[   64.215790][  T541]  ? down_read_trylock+0x179/0x1d0
[   64.221173][  T541]  ? __kasan_check_write+0x14/0x20
[   64.226145][  T541]  ? __init_rwsem+0x1c0/0x1c0
[   64.230720][  T541]  expand_inode_data+0x62d/0xc10
[   64.235421][  T541]  ? f2fs_dirty_inode+0x173/0x2e0
[   64.240407][  T541]  ? f2fs_insert_range+0x590/0x590
[   64.245315][  T541]  ? inode_dio_wait+0x2a9/0x340
[   64.250189][  T541]  ? inode_owner_or_capable+0x140/0x140
[   64.255550][  T541]  f2fs_fallocate+0x431/0x7e0
[   64.260228][  T541]  vfs_fallocate+0x492/0x570
[   64.264757][  T541]  do_vfs_ioctl+0x1686/0x1a30
[   64.269259][  T541]  ? ioctl_has_perm+0x3f0/0x560
[   64.274183][  T541]  ? __kasan_slab_free+0x11/0x20
[   64.279013][  T541]  ? __ia32_compat_sys_ioctl+0xc30/0xc30
[   64.284734][  T541]  ? has_cap_mac_admin+0x3c0/0x3c0
[   64.289994][  T541]  ? putname+0xe7/0x140
[   64.294007][  T541]  ? selinux_file_ioctl+0x3cc/0x540
[   64.299149][  T541]  ? selinux_file_alloc_security+0x120/0x120
[   64.305104][  T541]  ? __fget_files+0x31e/0x380
[   64.309576][  T541]  ? security_file_ioctl+0x84/0xb0
[   64.314562][  T541]  __se_sys_ioctl+0x99/0x190
[   64.319112][  T541]  __x64_sys_ioctl+0x7b/0x90
[   64.323602][  T541]  do_syscall_64+0x31/0x40
[   64.327961][  T541]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   64.333849][  T541] RIP: 0033:0x7f9cd3d04169
[   64.338136][  T541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.357828][  T541] RSP: 002b:00007f9cd3776038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.366417][  T541] RAX: ffffffffffffffda RBX: 00007f9cd3f1cfa0 RCX: 00007f9cd3d04169
[   64.374224][  T541] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   64.382186][  T541] RBP: 00007f9cd3d852a0 R08: 0000000000000000 R09: 0000000000000000
[   64.390007][  T541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.397761][  T541] R13: 0000000000000000 R14: 00007f9cd3f1cfa0 R15: 00007ffc9a9c40b8
[   64.405734][  T541] ---[ end trace 39cbe0f3651b9922 ]---
[   64.411070][  T541] ==================================================================
[   64.419259][  T541] BUG: KASAN: slab-out-of-bounds in reset_curseg+0x52e/0x590
[   64.426869][  T541] Read of size 4 at addr ffff888117086bc0 by task syz.2.18/541
[   64.434797][  T541] 
[   64.437127][  T541] CPU: 1 PID: 541 Comm: syz.2.18 Tainted: G        W         5.10.236-syzkaller-1007360-gba8b8b193394 #0
[   64.448351][  T541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   64.458326][  T541] Call Trace:
[   64.461437][  T541]  dump_stack_lvl+0x1e2/0x24b
[   64.465942][  T541]  ? bfq_pos_tree_add_move+0x43b/0x43b
[   64.471224][  T541]  ? panic+0x812/0x812
[   64.475151][  T541]  print_address_description+0x81/0x3b0
[   64.480633][  T541]  ? preempt_schedule+0xd9/0xe0
[   64.485303][  T541]  kasan_report+0x179/0x1c0
[   64.489664][  T541]  ? reset_curseg+0x52e/0x590
[   64.494387][  T541]  ? reset_curseg+0x52e/0x590
[   64.499369][  T541]  __asan_report_load4_noabort+0x14/0x20
[   64.505114][  T541]  reset_curseg+0x52e/0x590
[   64.510003][  T541]  new_curseg+0x1371/0x18c0
[   64.514548][  T541]  __allocate_new_segment+0x144/0x870
[   64.520435][  T541]  f2fs_allocate_new_section+0x1c3/0x270
[   64.526402][  T541]  ? new_curseg+0x18c0/0x18c0
[   64.531007][  T541]  ? down_read_trylock+0x179/0x1d0
[   64.540192][  T541]  ? __kasan_check_write+0x14/0x20
[   64.545352][  T541]  ? __init_rwsem+0x1c0/0x1c0
[   64.549942][  T541]  expand_inode_data+0x62d/0xc10
[   64.554951][  T541]  ? f2fs_dirty_inode+0x173/0x2e0
[   64.559890][  T541]  ? f2fs_insert_range+0x590/0x590
[   64.565130][  T541]  ? inode_dio_wait+0x2a9/0x340
[   64.570055][  T541]  ? inode_owner_or_capable+0x140/0x140
[   64.575518][  T541]  f2fs_fallocate+0x431/0x7e0
[   64.580074][  T541]  vfs_fallocate+0x492/0x570
[   64.584582][  T541]  do_vfs_ioctl+0x1686/0x1a30
[   64.589170][  T541]  ? ioctl_has_perm+0x3f0/0x560
[   64.593864][  T541]  ? __kasan_slab_free+0x11/0x20
[   64.598720][  T541]  ? __ia32_compat_sys_ioctl+0xc30/0xc30
[   64.604207][  T541]  ? has_cap_mac_admin+0x3c0/0x3c0
[   64.609160][  T541]  ? putname+0xe7/0x140
[   64.613186][  T541]  ? selinux_file_ioctl+0x3cc/0x540
[   64.618268][  T541]  ? selinux_file_alloc_security+0x120/0x120
[   64.624257][  T541]  ? __fget_files+0x31e/0x380
[   64.628874][  T541]  ? security_file_ioctl+0x84/0xb0
[   64.633893][  T541]  __se_sys_ioctl+0x99/0x190
[   64.638512][  T541]  __x64_sys_ioctl+0x7b/0x90
[   64.643068][  T541]  do_syscall_64+0x31/0x40
[   64.647282][  T541]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   64.653019][  T541] RIP: 0033:0x7f9cd3d04169
[   64.657365][  T541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.676991][  T541] RSP: 002b:00007f9cd3776038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.685331][  T541] RAX: ffffffffffffffda RBX: 00007f9cd3f1cfa0 RCX: 00007f9cd3d04169
[   64.693143][  T541] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   64.700939][  T541] RBP: 00007f9cd3d852a0 R08: 0000000000000000 R09: 0000000000000000
[   64.709020][  T541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.716821][  T541] R13: 0000000000000000 R14: 00007f9cd3f1cfa0 R15: 00007ffc9a9c40b8
[   64.724660][  T541] 
[   64.726799][  T541] Allocated by task 541:
[   64.730883][  T541]  ____kasan_kmalloc+0xdb/0x110
[   64.735662][  T541]  __kasan_kmalloc+0x9/0x10
[   64.740069][  T541]  __kmalloc+0x1aa/0x330
[   64.744107][  T541]  kvmalloc_node+0x82/0x130
[   64.748450][  T541]  f2fs_build_segment_manager+0xd2c/0x49b0
[   64.754197][  T541]  f2fs_fill_super+0x6067/0x7d90
[   64.758973][  T541]  mount_bdev+0x262/0x370
[   64.763154][  T541]  f2fs_mount+0x34/0x40
[   64.767130][  T541]  legacy_get_tree+0xf1/0x190
[   64.771719][  T541]  vfs_get_tree+0x88/0x290
[   64.776035][  T541]  do_new_mount+0x2ba/0xb30
[   64.780517][  T541]  path_mount+0x56f/0xcb0
[   64.784649][  T541]  __se_sys_mount+0x2c4/0x3b0
[   64.789174][  T541]  __x64_sys_mount+0xbf/0xd0
[   64.793704][  T541]  do_syscall_64+0x31/0x40
[   64.797947][  T541]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   64.803811][  T541] 
[   64.805984][  T541] The buggy address belongs to the object at ffff888117086800
[   64.805984][  T541]  which belongs to the cache kmalloc-1k of size 1024
[   64.820053][  T541] The buggy address is located 960 bytes inside of
[   64.820053][  T541]  1024-byte region [ffff888117086800, ffff888117086c00)
[   64.833862][  T541] The buggy address belongs to the page:
[   64.839619][  T541] page:ffffea00045c2000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x117080
[   64.849664][  T541] head:ffffea00045c2000 order:3 compound_mapcount:0 compound_pincount:0
[   64.858256][  T541] flags: 0x4000000000010200(slab|head)
[   64.863571][  T541] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100042f00
[   64.872263][  T541] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   64.880669][  T541] page dumped because: kasan: bad access detected
[   64.886931][  T541] page_owner tracks the page as allocated
[   64.892647][  T541] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 95, ts 63564249897, free_ts 63561974831
[   64.913204][  T541]  prep_new_page+0x166/0x180
[   64.917598][  T541]  get_page_from_freelist+0x2d8c/0x2f30
[   64.922971][  T541]  __alloc_pages_nodemask+0x435/0xaf0
[   64.928196][  T541]  new_slab+0x80/0x400
[   64.932150][  T541]  ___slab_alloc+0x302/0x4b0
[   64.936592][  T541]  __slab_alloc+0x63/0xa0
[   64.940754][  T541]  __kmalloc_track_caller+0x1f8/0x320
[   64.945964][  T541]  __alloc_skb+0xbc/0x510
[   64.950212][  T541]  alloc_uevent_skb+0x80/0x230
[   64.954907][  T541]  kobject_uevent_net_broadcast+0x311/0x590
[   64.960636][  T541]  kobject_uevent_env+0x525/0x700
[   64.965612][  T541]  kobject_synth_uevent+0x4eb/0xae0
[   64.970868][  T541]  uevent_store+0x25/0x60
[   64.975024][  T541]  dev_attr_store+0x5c/0x80
[   64.979365][  T541]  sysfs_kf_write+0x123/0x140
[   64.983895][  T541]  kernfs_fop_write_iter+0x2c4/0x410
[   64.989119][  T541] page last free stack trace:
[   64.993713][  T541]  __free_pages_ok+0x82c/0x850
[   64.998314][  T541]  free_the_page+0x76/0x370
[   65.002662][  T541]  __free_pages+0x67/0xc0
[   65.007273][  T541]  kfree+0x1f0/0x270
[   65.010996][  T541]  can_pernet_exit+0x75/0xd0
[   65.015435][  T541]  cleanup_net+0x66c/0xcb0
[   65.019895][  T541]  process_one_work+0x6dc/0xbd0
[   65.024588][  T541]  worker_thread+0xaea/0x1510
[   65.029442][  T541]  kthread+0x34b/0x3d0
[   65.033481][  T541]  ret_from_fork+0x1f/0x30
[   65.037844][  T541] 
[   65.039997][  T541] Memory state around the buggy address:
[   65.045608][  T541]  ffff888117086a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.053526][  T541]  ffff888117086b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.061409][  T541] >ffff888117086b80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   65.069284][  T541]                                            ^
[   65.075276][  T541]  ffff888117086c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   65.083223][  T541]  ffff888117086c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   65.091376][  T541] ==================================================================
[   65.099433][  T541] Disabling lock debugging due to kernel taint
[   65.106674][  T541] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[   65.118222][  T541] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[   65.126455][  T541] CPU: 1 PID: 541 Comm: syz.2.18 Tainted: G    B   W         5.10.236-syzkaller-1007360-gba8b8b193394 #0
[   65.137640][  T541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   65.147644][  T541] RIP: 0010:update_sit_entry+0x434/0x1050
[   65.153275][  T541] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f
[   65.173184][  T541] RSP: 0018:ffffc900030772b8 EFLAGS: 00010246
[   65.179270][  T541] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007
[   65.187289][  T541] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff888117086bc8
[   65.195100][  T541] RBP: ffffc90003077350 R08: ffffffff821f8fff R09: ffffffff821f8c4d
[   65.202910][  T541] R10: 0000000000000003 R11: ffff8881191dcf00 R12: 0000000000003e00
[   65.210723][  T541] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[   65.218548][  T541] FS:  00007f9cd37766c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   65.227384][  T541] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.233918][  T541] CR2: 00007f9ccc713000 CR3: 00000001189e7000 CR4: 00000000003506a0
[   65.241764][  T541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   65.249717][  T541] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   65.257530][  T541] Call Trace:
[   65.260747][  T541]  ? __asan_report_store8_noabort+0x17/0x20
[   65.266470][  T541]  f2fs_allocate_data_block+0x1512/0x3680
[   65.272039][  T541]  ? __kasan_check_write+0x14/0x20
[   65.277181][  T541]  ? _raw_spin_unlock+0x4d/0x70
[   65.281867][  T541]  ? f2fs_free_inode+0x30/0x30
[   65.286464][  T541]  ? f2fs_io_type_to_rw_hint+0x210/0x210
[   65.291918][  T541]  ? f2fs_mark_inode_dirty_sync+0x10d/0x140
[   65.297655][  T541]  ? inc_valid_block_count+0x583/0xb20
[   65.302947][  T541]  __allocate_data_block+0x5a7/0xb10
[   65.308066][  T541]  ? f2fs_map_blocks+0x3e50/0x3e50
[   65.313012][  T541]  f2fs_map_blocks+0x18ef/0x3e50
[   65.318169][  T541]  ? f2fs_do_map_lock+0x280/0x280
[   65.322987][  T541]  ? __kasan_check_write+0x14/0x20
[   65.328047][  T541]  expand_inode_data+0x682/0xc10
[   65.332795][  T541]  ? f2fs_dirty_inode+0x173/0x2e0
[   65.337924][  T541]  ? f2fs_insert_range+0x590/0x590
[   65.342978][  T541]  ? inode_dio_wait+0x2a9/0x340
[   65.347727][  T541]  ? inode_owner_or_capable+0x140/0x140
[   65.353194][  T541]  f2fs_fallocate+0x431/0x7e0
[   65.357721][  T541]  vfs_fallocate+0x492/0x570
[   65.362152][  T541]  do_vfs_ioctl+0x1686/0x1a30
[   65.366654][  T541]  ? ioctl_has_perm+0x3f0/0x560
[   65.371422][  T541]  ? __kasan_slab_free+0x11/0x20
[   65.376673][  T541]  ? __ia32_compat_sys_ioctl+0xc30/0xc30
[   65.382199][  T541]  ? has_cap_mac_admin+0x3c0/0x3c0
[   65.387362][  T541]  ? putname+0xe7/0x140
[   65.391462][  T541]  ? selinux_file_ioctl+0x3cc/0x540
[   65.396704][  T541]  ? selinux_file_alloc_security+0x120/0x120
[   65.402517][  T541]  ? __fget_files+0x31e/0x380
[   65.407029][  T541]  ? security_file_ioctl+0x84/0xb0
[   65.412065][  T541]  __se_sys_ioctl+0x99/0x190
[   65.416675][  T541]  __x64_sys_ioctl+0x7b/0x90
[   65.421185][  T541]  do_syscall_64+0x31/0x40
[   65.425532][  T541]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   65.431359][  T541] RIP: 0033:0x7f9cd3d04169
[   65.435612][  T541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.455464][  T541] RSP: 002b:00007f9cd3776038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   65.463683][  T541] RAX: ffffffffffffffda RBX: 00007f9cd3f1cfa0 RCX: 00007f9cd3d04169
[   65.471748][  T541] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   65.479644][  T541] RBP: 00007f9cd3d852a0 R08: 0000000000000000 R09: 0000000000000000
[   65.487743][  T541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   65.495764][  T541] R13: 0000000000000000 R14: 00007f9cd3f1cfa0 R15: 00007ffc9a9c40b8
[   65.503643][  T541] Modules linked in:
[   65.508120][  T541] ---[ end trace 39cbe0f3651b9923 ]---
[   65.513868][  T541] RIP: 0010:update_sit_entry+0x434/0x1050
[   65.519568][  T541] Code: 3b 48 89 45 b0 49 01 c7 41 f6 d5 41 80 e5 07 bb 01 00 00 00 44 89 e9 d3 e3 4d 89 fe 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 4c 8b a5 68 ff ff ff 0f 85 05 09 00 00 45 0f
[   65.539439][  T541] RSP: 0018:ffffc900030772b8 EFLAGS: 00010246
[   65.545498][  T541] RAX: dffffc0000000000 RBX: 0000000000000080 RCX: 0000000000000007
[   65.553440][  T541] RDX: 0000000000000000 RSI: 0000000000000282 RDI: ffff888117086bc8
[   65.561391][  T541] RBP: ffffc90003077350 R08: ffffffff821f8fff R09: ffffffff821f8c4d
[   65.569316][  T541] R10: 0000000000000003 R11: ffff8881191dcf00 R12: 0000000000003e00
[   65.577526][  T541] R13: 0000000000000007 R14: 0000000000000000 R15: 0000000000000000
[   65.585369][  T541] FS:  00007f9cd37766c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   65.594205][  T541] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   65.601338][  T541] CR2: 00007f9ccc713000 CR3: 00000001189e7000 CR4: 00000000003506a0
[   65.609099][  T541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   65.617041][  T541] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   65.625042][  T541] Kernel panic - not syncing: Fatal exception
[   65.631329][  T541] Kernel Offset: disabled
[   65.635675][  T541] Rebooting in 86400 seconds..