Warning: Permanently added '[localhost]:40638' (ED25519) to the list of known hosts.
2025/01/17 09:39:49 ignoring optional flag "sandboxArg"="0"
2025/01/17 09:39:49 parsed 1 programs
[ 110.244206][ T5574] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 114.958993][ T73] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.962243][ T73] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.022877][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.034605][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.910868][ T5638] chnl_net:caif_netlink_parms(): no params data found
[ 115.952946][ T5638] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.956203][ T5638] bridge0: port 1(bridge_slave_0) entered disabled state
[ 115.960269][ T5638] bridge_slave_0: entered allmulticast mode
[ 115.963425][ T5638] bridge_slave_0: entered promiscuous mode
[ 115.968859][ T5638] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.971795][ T5638] bridge0: port 2(bridge_slave_1) entered disabled state
[ 115.974552][ T5638] bridge_slave_1: entered allmulticast mode
[ 115.978865][ T5638] bridge_slave_1: entered promiscuous mode
[ 115.994854][ T5638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 116.000750][ T5638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 116.015953][ T5638] team0: Port device team_slave_0 added
[ 116.021104][ T5638] team0: Port device team_slave_1 added
[ 116.033590][ T5638] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 116.036333][ T5638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 116.047259][ T5638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 116.052533][ T5638] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 116.055640][ T5638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 116.067068][ T5638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 116.089775][ T5638] hsr_slave_0: entered promiscuous mode
[ 116.092462][ T5638] hsr_slave_1: entered promiscuous mode
[ 116.598037][ T5638] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 116.617030][ T5638] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 116.624438][ T5638] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 116.639269][ T5638] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 116.671938][ T5638] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.674638][ T5638] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 116.677609][ T5638] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.680946][ T5638] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 116.787100][ T5638] 8021q: adding VLAN 0 to HW filter on device bond0
[ 116.802514][ T3082] bridge0: port 1(bridge_slave_0) entered disabled state
[ 116.806084][ T3082] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.823655][ T5638] 8021q: adding VLAN 0 to HW filter on device team0
[ 116.867771][ T3082] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.870608][ T3082] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 116.874083][ T3082] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.876638][ T3082] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 116.908181][ T5638] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 116.912095][ T5638] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 117.145778][ T5638] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 117.215157][ T5638] veth0_vlan: entered promiscuous mode
[ 117.232119][ T5638] veth1_vlan: entered promiscuous mode
[ 117.278426][ T5638] veth0_macvtap: entered promiscuous mode
[ 117.284111][ T5638] veth1_macvtap: entered promiscuous mode
[ 117.311721][ T5638] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.327035][ T5638] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 117.334917][ T5638] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.358554][ T5638] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.361862][ T5638] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.365230][ T5638] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.638074][ T3082] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 117.703763][ T3082] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 117.775318][ T3082] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 117.878815][ T3082] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 117.923454][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 117.928561][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 117.932581][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 117.938749][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 117.942023][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 117.944846][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/01/17 09:40:02 executed programs: 0
[ 118.246186][ T4666] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 118.258039][ T4666] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 118.261800][ T4666] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 118.264967][ T4666] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 118.270803][ T4666] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 118.274029][ T4666] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 118.482880][ T5703] chnl_net:caif_netlink_parms(): no params data found
[ 118.566276][ T5703] bridge0: port 1(bridge_slave_0) entered blocking state
[ 118.588547][ T5703] bridge0: port 1(bridge_slave_0) entered disabled state
[ 118.591448][ T5703] bridge_slave_0: entered allmulticast mode
[ 118.595262][ T5703] bridge_slave_0: entered promiscuous mode
[ 118.609435][ T5703] bridge0: port 2(bridge_slave_1) entered blocking state
[ 118.612813][ T5703] bridge0: port 2(bridge_slave_1) entered disabled state
[ 118.615550][ T5703] bridge_slave_1: entered allmulticast mode
[ 118.629385][ T5703] bridge_slave_1: entered promiscuous mode
[ 118.669232][ T5703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 118.674076][ T5703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 118.738954][ T5703] team0: Port device team_slave_0 added
[ 118.755457][ T5703] team0: Port device team_slave_1 added
[ 118.822281][ T5703] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 118.825142][ T5703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 118.848624][ T5703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 118.869054][ T5703] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 118.871817][ T5703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 118.896587][ T5703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 118.951434][ T5703] hsr_slave_0: entered promiscuous mode
[ 118.956084][ T5703] hsr_slave_1: entered promiscuous mode
[ 118.969341][ T5703] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 118.972207][ T5703] Cannot create hsr debugfs directory
[ 119.649065][ T3082] bridge_slave_1: left allmulticast mode
[ 119.651352][ T3082] bridge_slave_1: left promiscuous mode
[ 119.653809][ T3082] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.669330][ T3082] bridge_slave_0: left allmulticast mode
[ 119.671640][ T3082] bridge_slave_0: left promiscuous mode
[ 119.673974][ T3082] bridge0: port 1(bridge_slave_0) entered disabled state
[ 120.178727][ T3082] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 120.190897][ T3082] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 120.199127][ T3082] bond0 (unregistering): Released all slaves
[ 120.271551][ T3082] hsr_slave_0: left promiscuous mode
[ 120.285597][ T3082] hsr_slave_1: left promiscuous mode
[ 120.295933][ T3082] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 120.305233][ T3082] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 120.310838][ T3082] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 120.314032][ T3082] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 120.317129][ T4666] Bluetooth: hci0: command tx timeout
[ 120.324966][ T3082] veth1_macvtap: left promiscuous mode
[ 120.329094][ T3082] veth0_macvtap: left promiscuous mode
[ 120.332457][ T3082] veth1_vlan: left promiscuous mode
[ 120.334515][ T3082] veth0_vlan: left promiscuous mode
[ 120.575372][ T3082] team0 (unregistering): Port device team_slave_1 removed
[ 120.596623][ T3082] team0 (unregistering): Port device team_slave_0 removed
[ 121.071229][ T5703] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 121.167455][ T5703] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 121.180295][ T5703] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 121.210012][ T5703] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 121.371392][ T5703] 8021q: adding VLAN 0 to HW filter on device bond0
[ 121.399820][ T5703] 8021q: adding VLAN 0 to HW filter on device team0
[ 121.410790][ T3082] bridge0: port 1(bridge_slave_0) entered blocking state
[ 121.413579][ T3082] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 121.432726][ T1037] bridge0: port 2(bridge_slave_1) entered blocking state
[ 121.435339][ T1037] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 121.480063][ T5703] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 121.700782][ T5703] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 121.750702][ T5703] veth0_vlan: entered promiscuous mode
[ 121.769761][ T5703] veth1_vlan: entered promiscuous mode
[ 121.800781][ T5703] veth0_macvtap: entered promiscuous mode
[ 121.815385][ T5703] veth1_macvtap: entered promiscuous mode
[ 121.835361][ T5703] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 121.851044][ T5703] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 121.868535][ T5703] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.871959][ T5703] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.875271][ T5703] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.890118][ T5703] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.982982][ T1037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.993068][ T1037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.034432][ T3082] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.040701][ T3082] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.399940][ T4666] Bluetooth: hci0: command tx timeout
[ 122.522162][ T5787] loop0: detected capacity change from 0 to 32768
[ 122.581974][ T5787] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 66 has bad blkno in extent list at depth 65533 (index 52)
[ 122.606608][ T5787] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 122.610391][ T5787] OCFS2: File system is now read-only.
[ 122.612593][ T5787] (syz.0.15,5787,0):ocfs2_find_leaf:1940 ERROR: status = -30
[ 122.615596][ T5787] (syz.0.15,5787,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 122.640265][ T5787] (syz.0.15,5787,0):ocfs2_get_clusters:624 ERROR: status = -30
[ 122.643265][ T5787] (syz.0.15,5787,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 122.657560][ T5787] (syz.0.15,5787,0):ocfs2_read_virt_blocks:987 ERROR: status = -30
[ 122.660854][ T5787] (syz.0.15,5787,0):ocfs2_read_dir_block:511 ERROR: status = -30
[ 122.664009][ T5787] (syz.0.15,5787,0):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[ 122.677334][ T5787] (syz.0.15,5787,0):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[ 122.677362][ T5787] (syz.0.15,5787,0):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[ 122.685384][ T5787] (syz.0.15,5787,0):ocfs2_initialize_super:2250 ERROR: status = -30
[ 122.707110][ T5787] (syz.0.15,5787,0):ocfs2_fill_super:1178 ERROR: status = -30
[ 123.302785][ T5805] loop0: detected capacity change from 0 to 32768
[ 123.323374][ T5805] (syz.0.16,5805,0):ocfs2_read_blocks:239 ERROR: status = -12
[ 123.347382][ T5805] (syz.0.16,5805,0):__ocfs2_find_path:1844 ERROR: status = -12
[ 123.350233][ T5805] (syz.0.16,5805,0):ocfs2_find_leaf:1940 ERROR: status = -12
[ 123.353149][ T5805] (syz.0.16,5805,0):ocfs2_get_clusters_nocache:421 ERROR: status = -12
[ 123.378048][ T5805] (syz.0.16,5805,0):ocfs2_get_clusters:624 ERROR: status = -12
[ 123.381432][ T5805] (syz.0.16,5805,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -12
[ 123.384658][ T5805] (syz.0.16,5805,0):ocfs2_read_virt_blocks:987 ERROR: status = -12
[ 123.390856][ T5805] (syz.0.16,5805,0):ocfs2_read_dir_block:511 ERROR: status = -12
[ 123.393905][ T5805] (syz.0.16,5805,0):ocfs2_init_global_system_inodes:461 ERROR: status = -22
[ 123.400240][ T5805] (syz.0.16,5805,0):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[ 123.400268][ T5805] (syz.0.16,5805,0):ocfs2_init_global_system_inodes:472 ERROR: status = -22
[ 123.409761][ T5805] (syz.0.16,5805,0):ocfs2_initialize_super:2250 ERROR: status = -22
[ 123.412713][ T5805] (syz.0.16,5805,0):ocfs2_fill_super:1178 ERROR: status = -22
2025/01/17 09:40:07 executed programs: 4
[ 123.730986][ T5814] loop0: detected capacity change from 0 to 32768
[ 123.742372][ T5814] OCFS2: ERROR (device loop0): int ocfs2_validate_extent_block(struct super_block *, struct buffer_head *): Extent block #28 has bad signature
[ 123.755404][ T5814] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 123.765428][ T5814] OCFS2: File system is now read-only.
[ 123.778556][ T5814] (syz.0.17,5814,0):__ocfs2_find_path:1844 ERROR: status = -30
[ 123.781549][ T5814] (syz.0.17,5814,0):ocfs2_find_leaf:1940 ERROR: status = -30
[ 123.784432][ T5814] (syz.0.17,5814,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 123.789394][ T5814] (syz.0.17,5814,0):ocfs2_get_clusters:624 ERROR: status = -30
[ 123.792511][ T5814] (syz.0.17,5814,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 123.795809][ T5814] (syz.0.17,5814,0):ocfs2_read_virt_blocks:987 ERROR: status = -30
[ 123.800011][ T5814] (syz.0.17,5814,0):ocfs2_read_dir_block:511 ERROR: status = -30
[ 123.803877][ T5814] (syz.0.17,5814,0):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[ 123.808925][ T5814] (syz.0.17,5814,0):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[ 123.808951][ T5814] (syz.0.17,5814,0):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[ 123.818895][ T5814] (syz.0.17,5814,0):ocfs2_initialize_super:2250 ERROR: status = -30
[ 123.822026][ T5814] (syz.0.17,5814,0):ocfs2_fill_super:1178 ERROR: status = -30
[ 124.128435][ T5816] loop0: detected capacity change from 0 to 32768
[ 124.135773][ T5816] OCFS2: ERROR (device loop0): int ocfs2_validate_extent_block(struct super_block *, struct buffer_head *): Extent block #34 has bad signature
[ 124.149548][ T5816] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 124.153234][ T5816] OCFS2: File system is now read-only.
[ 124.155492][ T5816] (syz.0.18,5816,0):__ocfs2_find_path:1844 ERROR: status = -30
[ 124.170402][ T5816] (syz.0.18,5816,0):ocfs2_find_leaf:1940 ERROR: status = -30
[ 124.173064][ T5816] (syz.0.18,5816,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 124.176141][ T5816] (syz.0.18,5816,0):ocfs2_get_clusters:624 ERROR: status = -30
[ 124.179892][ T5816] (syz.0.18,5816,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 124.183147][ T5816] (syz.0.18,5816,0):ocfs2_read_virt_blocks:987 ERROR: status = -30
[ 124.186064][ T5816] (syz.0.18,5816,0):ocfs2_read_dir_block:511 ERROR: status = -30
[ 124.190910][ T5816] (syz.0.18,5816,0):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[ 124.194343][ T5816] (syz.0.18,5816,0):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 1, possibly corrupt fs?
[ 124.194367][ T5816] (syz.0.18,5816,0):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[ 124.202785][ T5816] (syz.0.18,5816,0):ocfs2_initialize_super:2250 ERROR: status = -30
[ 124.206004][ T5816] (syz.0.18,5816,0):ocfs2_fill_super:1178 ERROR: status = -30
[ 124.476632][ T4666] Bluetooth: hci0: command tx timeout
[ 124.510082][ T5818] loop0: detected capacity change from 0 to 32768
[ 124.531733][ T5818] ==================================================================
[ 124.534848][ T5818] BUG: KASAN: use-after-free in __ocfs2_find_path+0x203/0x7e0
[ 124.537695][ T5818] Read of size 4 at addr ffff888054e73000 by task syz.0.19/5818
[ 124.541673][ T5818]
[ 124.542705][ T5818] CPU: 0 UID: 0 PID: 5818 Comm: syz.0.19 Not tainted 6.13.0-rc7-syzkaller-g9bffa1ad25b8 #0
[ 124.546498][ T5818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 124.550850][ T5818] Call Trace:
[ 124.552258][ T5818]
[ 124.553441][ T5818] dump_stack_lvl+0x241/0x360
[ 124.555340][ T5818] ? __pfx_dump_stack_lvl+0x10/0x10
[ 124.557239][ T5818] ? __pfx__printk+0x10/0x10
[ 124.559005][ T5818] ? _printk+0xd5/0x120
[ 124.560582][ T5818] ? __virt_addr_valid+0x183/0x530
[ 124.562606][ T5818] ? __virt_addr_valid+0x183/0x530
[ 124.564474][ T5818] print_report+0x169/0x550
[ 124.566113][ T5818] ? __virt_addr_valid+0x183/0x530
[ 124.567988][ T5818] ? __virt_addr_valid+0x183/0x530
[ 124.569826][ T5818] ? __virt_addr_valid+0x45f/0x530
[ 124.571668][ T5818] ? __phys_addr+0xba/0x170
[ 124.573376][ T5818] ? __ocfs2_find_path+0x203/0x7e0
[ 124.575264][ T5818] kasan_report+0x143/0x180
[ 124.576946][ T5818] ? __ocfs2_find_path+0x203/0x7e0
[ 124.578923][ T5818] __ocfs2_find_path+0x203/0x7e0
[ 124.580782][ T5818] ? __pfx_find_leaf_ins+0x10/0x10
[ 124.582725][ T5818] ? __pfx___ocfs2_find_path+0x10/0x10
[ 124.584787][ T5818] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 124.587176][ T5818] ocfs2_find_leaf+0xcf/0x230
[ 124.589000][ T5818] ? __pfx_ocfs2_find_leaf+0x10/0x10
[ 124.591014][ T5818] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 124.593384][ T5818] ocfs2_get_clusters_nocache+0x1ad/0xbf0
[ 124.595512][ T5818] ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[ 124.597767][ T5818] ? ocfs2_read_inode_block+0x14c/0x1e0
[ 124.599789][ T5818] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 124.602007][ T5818] ? do_raw_spin_unlock+0x58/0x8b0
[ 124.604149][ T5818] ocfs2_get_clusters+0x5bd/0xbd0
[ 124.606108][ T5818] ? __pfx_ocfs2_get_clusters+0x10/0x10
[ 124.608111][ T5818] ? mark_lock+0x9a/0x360
[ 124.609679][ T5818] ? __pfx_lock_acquire+0x10/0x10
[ 124.611519][ T5818] ? validate_chain+0x11e/0x5920
[ 124.613441][ T5818] ocfs2_extent_map_get_blocks+0x24c/0x7d0
[ 124.615612][ T5818] ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[ 124.617915][ T5818] ocfs2_read_virt_blocks+0x313/0xb10
[ 124.619990][ T5818] ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[ 124.622377][ T5818] ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[ 124.624576][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 124.626915][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 124.628985][ T5818] ocfs2_find_entry+0x43b/0x2730
[ 124.630812][ T5818] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 124.632850][ T5818] ? __asan_memset+0x23/0x50
[ 124.634637][ T5818] ? __lock_acquire+0x1397/0x2100
[ 124.636494][ T5818] ? format_decode+0xc5f/0x1bb0
[ 124.638444][ T5818] ? __pfx_format_decode+0x10/0x10
[ 124.640407][ T5818] ? __mutex_trylock_common+0x183/0x2e0
[ 124.642583][ T5818] ? __pfx___might_resched+0x10/0x10
[ 124.644544][ T5818] ? string+0x26a/0x2b0
[ 124.646095][ T5818] ? widen_string+0x3a/0x310
[ 124.647889][ T5818] ? string+0x26a/0x2b0
[ 124.649468][ T5818] ? vsnprintf+0x1ccd/0x1da0
[ 124.651254][ T5818] ocfs2_find_files_on_disk+0xff/0x360
[ 124.653469][ T5818] ocfs2_lookup_ino_from_name+0xb1/0x1e0
[ 124.655552][ T5818] ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[ 124.657816][ T5818] ? kasan_save_track+0x51/0x80
[ 124.659761][ T5818] ? kasan_save_track+0x3f/0x80
[ 124.661623][ T5818] ? __kasan_kmalloc+0x98/0xb0
[ 124.663472][ T5818] ? ocfs2_new_dlm_debug+0x97/0x200
[ 124.665332][ T5818] ocfs2_get_system_file_inode+0x305/0x7b0
[ 124.667434][ T5818] ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[ 124.669714][ T5818] ocfs2_init_global_system_inodes+0x32c/0x730
[ 124.671991][ T5818] ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[ 124.674625][ T5818] ? __kmalloc_cache_noprof+0x243/0x390
[ 124.676876][ T5818] ? ocfs2_new_dlm_debug+0x97/0x200
[ 124.679303][ T5818] ? ocfs2_new_dlm_debug+0xb5/0x200
[ 124.681743][ T5818] ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[ 124.683979][ T5818] ? rcu_is_watching+0x15/0xb0
[ 124.685720][ T5818] ? trace_ocfs2_initialize_super+0x9e/0x230
[ 124.687907][ T5818] ocfs2_fill_super+0x2f5b/0x5760
[ 124.689817][ T5818] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 124.691708][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 124.693556][ T5818] ? unwind_next_frame+0x18e6/0x22d0
[ 124.695496][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 124.697374][ T5818] ? preempt_count_add+0x93/0x190
[ 124.699123][ T5818] ? mark_lock+0x9a/0x360
[ 124.700648][ T5818] ? __lock_acquire+0x1397/0x2100
[ 124.702620][ T5818] ? validate_chain+0x11e/0x5920
[ 124.704506][ T5818] ? mark_lock+0x9a/0x360
[ 124.706179][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 124.708113][ T5818] ? string+0x26a/0x2b0
[ 124.709679][ T5818] ? widen_string+0x3a/0x310
[ 124.711451][ T5818] ? string+0x26a/0x2b0
[ 124.712982][ T5818] ? bdev_name+0x2b1/0x3c0
[ 124.714641][ T5818] ? pointer+0x703/0x1210
[ 124.716279][ T5818] ? __pfx_pointer+0x10/0x10
[ 124.717816][ T5818] ? __pfx_format_decode+0x10/0x10
[ 124.719754][ T5818] ? __lock_acquire+0x1397/0x2100
[ 124.721275][ T5818] ? vsnprintf+0x1ccd/0x1da0
[ 124.723025][ T5818] ? snprintf+0xda/0x120
[ 124.724647][ T5818] ? __pfx_lock_release+0x10/0x10
[ 124.726538][ T5818] ? do_raw_spin_lock+0x14f/0x370
[ 124.728279][ T5818] ? __pfx_snprintf+0x10/0x10
[ 124.729947][ T5818] ? set_blocksize+0x1fc/0x360
[ 124.731848][ T5818] ? sb_set_blocksize+0x98/0xf0
[ 124.733661][ T5818] ? setup_bdev_super+0x4e6/0x5d0
[ 124.735573][ T5818] mount_bdev+0x20a/0x2d0
[ 124.737231][ T5818] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 124.739239][ T5818] ? __pfx_mount_bdev+0x10/0x10
[ 124.741117][ T5818] ? vfs_parse_fs_string+0x190/0x230
[ 124.743257][ T5818] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 124.745399][ T5818] legacy_get_tree+0xee/0x190
[ 124.747244][ T5818] ? __pfx_ocfs2_mount+0x10/0x10
[ 124.749124][ T5818] vfs_get_tree+0x90/0x2b0
[ 124.750885][ T5818] do_new_mount+0x2be/0xb40
[ 124.752698][ T5818] ? __pfx_do_new_mount+0x10/0x10
[ 124.754893][ T5818] __se_sys_mount+0x2d6/0x3c0
[ 124.756693][ T5818] ? __pfx___se_sys_mount+0x10/0x10
[ 124.758687][ T5818] ? exc_page_fault+0x590/0x8b0
[ 124.760527][ T5818] ? __x64_sys_mount+0x20/0xc0
[ 124.762353][ T5818] do_syscall_64+0xf3/0x230
[ 124.764106][ T5818] ? clear_bhb_loop+0x35/0x90
[ 124.765973][ T5818] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.768204][ T5818] RIP: 0033:0x7f91979816ba
[ 124.769878][ T5818] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 124.776847][ T5818] RSP: 002b:00007f919873ce88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 124.780019][ T5818] RAX: ffffffffffffffda RBX: 00007f919873cf10 RCX: 00007f91979816ba
[ 124.782952][ T5818] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f919873ced0
[ 124.785816][ T5818] RBP: 0000000020004440 R08: 00007f919873cf10 R09: 0000000001000000
[ 124.788700][ T5818] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[ 124.791505][ T5818] R13: 00007f919873ced0 R14: 000000000000444a R15: 00000000200005c0
[ 124.794398][ T5818]
[ 124.795581][ T5818]
[ 124.796466][ T5818] The buggy address belongs to the physical page:
[ 124.798814][ T5818] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x7f918e62c pfn:0x54e73
[ 124.802309][ T5818] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 124.804872][ T5818] raw: 04fff00000000000 ffffea0001539d08 ffff88801fc44b30 0000000000000000
[ 124.807960][ T5818] raw: 00000007f918e62c 0000000000000000 00000000ffffffff 0000000000000000
[ 124.810969][ T5818] page dumped because: kasan: bad access detected
[ 124.813218][ T5818] page_owner tracks the page as freed
[ 124.815158][ T5818] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 5818, tgid 5817 (syz.0.19), ts 124332478752, free_ts 124509531800
[ 124.821678][ T5818] post_alloc_hook+0x1f3/0x230
[ 124.823521][ T5818] get_page_from_freelist+0x365c/0x37a0
[ 124.825562][ T5818] __alloc_pages_noprof+0x292/0x710
[ 124.827486][ T5818] alloc_pages_mpol_noprof+0x3e1/0x780
[ 124.829534][ T5818] vma_alloc_folio_noprof+0x12e/0x230
[ 124.831611][ T5818] folio_prealloc+0x2e/0x170
[ 124.833406][ T5818] handle_pte_fault+0x2c98/0x5ed0
[ 124.835252][ T5818] handle_mm_fault+0x1106/0x1bb0
[ 124.837128][ T5818] exc_page_fault+0x459/0x8b0
[ 124.838814][ T5818] asm_exc_page_fault+0x26/0x30
[ 124.840654][ T5818] page last free pid 5818 tgid 5817 stack trace:
[ 124.843028][ T5818] free_unref_folios+0xe39/0x18b0
[ 124.844905][ T5818] folios_put_refs+0x76c/0x860
[ 124.846676][ T5818] free_pages_and_swap_cache+0x5c8/0x690
[ 124.848673][ T5818] tlb_flush_mmu+0x3a3/0x680
[ 124.850324][ T5818] tlb_finish_mmu+0xd4/0x200
[ 124.852119][ T5818] vms_clear_ptes+0x437/0x530
[ 124.853874][ T5818] vms_complete_munmap_vmas+0x210/0x8f0
[ 124.855859][ T5818] do_vmi_align_munmap+0x5ef/0x6f0
[ 124.857698][ T5818] do_vmi_munmap+0x24e/0x2d0
[ 124.859346][ T5818] __vm_munmap+0x24c/0x480
[ 124.861039][ T5818] __x64_sys_munmap+0x60/0x70
[ 124.862916][ T5818] do_syscall_64+0xf3/0x230
[ 124.864642][ T5818] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 124.867174][ T5818]
[ 124.868263][ T5818] Memory state around the buggy address:
[ 124.870411][ T5818] ffff888054e72f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 124.873493][ T5818] ffff888054e72f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 124.876509][ T5818] >ffff888054e73000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 124.879537][ T5818] ^
[ 124.881115][ T5818] ffff888054e73080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 124.884035][ T5818] ffff888054e73100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 124.886993][ T5818] ==================================================================
[ 124.919949][ T5818] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 124.922729][ T5818] CPU: 0 UID: 0 PID: 5818 Comm: syz.0.19 Not tainted 6.13.0-rc7-syzkaller-g9bffa1ad25b8 #0
[ 124.926248][ T5818] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 124.930107][ T5818] Call Trace:
[ 124.931337][ T5818]
[ 124.932416][ T5818] dump_stack_lvl+0x241/0x360
[ 124.934074][ T5818] ? __pfx_dump_stack_lvl+0x10/0x10
[ 124.935933][ T5818] ? __pfx__printk+0x10/0x10
[ 124.937672][ T5818] ? preempt_schedule+0xe1/0xf0
[ 124.939419][ T5818] ? vscnprintf+0x5d/0x90
[ 124.940978][ T5818] panic+0x349/0x880
[ 124.942497][ T5818] ? check_panic_on_warn+0x21/0xb0
[ 124.944536][ T5818] ? __pfx_panic+0x10/0x10
[ 124.946221][ T5818] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 124.948486][ T5818] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 124.950753][ T5818] ? print_report+0x502/0x550
[ 124.952540][ T5818] check_panic_on_warn+0x86/0xb0
[ 124.954734][ T5818] ? __ocfs2_find_path+0x203/0x7e0
[ 124.956597][ T5818] end_report+0x77/0x160
[ 124.958162][ T5818] kasan_report+0x154/0x180
[ 124.959842][ T5818] ? __ocfs2_find_path+0x203/0x7e0
[ 124.961754][ T5818] __ocfs2_find_path+0x203/0x7e0
[ 124.963533][ T5818] ? __pfx_find_leaf_ins+0x10/0x10
[ 124.965753][ T5818] ? __pfx___ocfs2_find_path+0x10/0x10
[ 124.967967][ T5818] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 124.970042][ T5818] ocfs2_find_leaf+0xcf/0x230
[ 124.971754][ T5818] ? __pfx_ocfs2_find_leaf+0x10/0x10
[ 124.973689][ T5818] ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[ 124.976021][ T5818] ocfs2_get_clusters_nocache+0x1ad/0xbf0
[ 124.978027][ T5818] ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[ 124.980292][ T5818] ? ocfs2_read_inode_block+0x14c/0x1e0
[ 124.982464][ T5818] ? __pfx_ocfs2_read_inode_block+0x10/0x10
[ 124.984618][ T5818] ? do_raw_spin_unlock+0x58/0x8b0
[ 124.986469][ T5818] ocfs2_get_clusters+0x5bd/0xbd0
[ 124.988322][ T5818] ? __pfx_ocfs2_get_clusters+0x10/0x10
[ 124.990279][ T5818] ? mark_lock+0x9a/0x360
[ 124.992056][ T5818] ? __pfx_lock_acquire+0x10/0x10
[ 124.993952][ T5818] ? validate_chain+0x11e/0x5920
[ 124.995958][ T5818] ocfs2_extent_map_get_blocks+0x24c/0x7d0
[ 124.998017][ T5818] ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[ 125.000488][ T5818] ocfs2_read_virt_blocks+0x313/0xb10
[ 125.002607][ T5818] ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[ 125.004962][ T5818] ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[ 125.007376][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 125.009268][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 125.011120][ T5818] ocfs2_find_entry+0x43b/0x2730
[ 125.013199][ T5818] ? __pfx_ocfs2_find_entry+0x10/0x10
[ 125.015145][ T5818] ? __asan_memset+0x23/0x50
[ 125.016815][ T5818] ? __lock_acquire+0x1397/0x2100
[ 125.018714][ T5818] ? format_decode+0xc5f/0x1bb0
[ 125.020561][ T5818] ? __pfx_format_decode+0x10/0x10
[ 125.022423][ T5818] ? __mutex_trylock_common+0x183/0x2e0
[ 125.024457][ T5818] ? __pfx___might_resched+0x10/0x10
[ 125.026469][ T5818] ? string+0x26a/0x2b0
[ 125.028046][ T5818] ? widen_string+0x3a/0x310
[ 125.029793][ T5818] ? string+0x26a/0x2b0
[ 125.031419][ T5818] ? vsnprintf+0x1ccd/0x1da0
[ 125.033226][ T5818] ocfs2_find_files_on_disk+0xff/0x360
[ 125.035293][ T5818] ocfs2_lookup_ino_from_name+0xb1/0x1e0
[ 125.037386][ T5818] ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[ 125.039759][ T5818] ? kasan_save_track+0x51/0x80
[ 125.041611][ T5818] ? kasan_save_track+0x3f/0x80
[ 125.043537][ T5818] ? __kasan_kmalloc+0x98/0xb0
[ 125.045342][ T5818] ? ocfs2_new_dlm_debug+0x97/0x200
[ 125.047346][ T5818] ocfs2_get_system_file_inode+0x305/0x7b0
[ 125.049497][ T5818] ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[ 125.051948][ T5818] ocfs2_init_global_system_inodes+0x32c/0x730
[ 125.054160][ T5818] ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[ 125.056569][ T5818] ? __kmalloc_cache_noprof+0x243/0x390
[ 125.058565][ T5818] ? ocfs2_new_dlm_debug+0x97/0x200
[ 125.060422][ T5818] ? ocfs2_new_dlm_debug+0xb5/0x200
[ 125.062193][ T5818] ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[ 125.064211][ T5818] ? rcu_is_watching+0x15/0xb0
[ 125.065951][ T5818] ? trace_ocfs2_initialize_super+0x9e/0x230
[ 125.068067][ T5818] ocfs2_fill_super+0x2f5b/0x5760
[ 125.069931][ T5818] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 125.071844][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 125.073739][ T5818] ? unwind_next_frame+0x18e6/0x22d0
[ 125.075659][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 125.077517][ T5818] ? preempt_count_add+0x93/0x190
[ 125.079330][ T5818] ? mark_lock+0x9a/0x360
[ 125.080875][ T5818] ? __lock_acquire+0x1397/0x2100
[ 125.082731][ T5818] ? validate_chain+0x11e/0x5920
[ 125.084525][ T5818] ? mark_lock+0x9a/0x360
[ 125.086077][ T5818] ? __pfx_validate_chain+0x10/0x10
[ 125.087965][ T5818] ? string+0x26a/0x2b0
[ 125.089434][ T5818] ? widen_string+0x3a/0x310
[ 125.091125][ T5818] ? string+0x26a/0x2b0
[ 125.092709][ T5818] ? bdev_name+0x2b1/0x3c0
[ 125.094326][ T5818] ? pointer+0x703/0x1210
[ 125.095909][ T5818] ? __pfx_pointer+0x10/0x10
[ 125.097543][ T5818] ? __pfx_format_decode+0x10/0x10
[ 125.099393][ T5818] ? __lock_acquire+0x1397/0x2100
[ 125.101225][ T5818] ? vsnprintf+0x1ccd/0x1da0
[ 125.102770][ T5818] ? snprintf+0xda/0x120
[ 125.104337][ T5818] ? __pfx_lock_release+0x10/0x10
[ 125.106227][ T5818] ? do_raw_spin_lock+0x14f/0x370
[ 125.108044][ T5818] ? __pfx_snprintf+0x10/0x10
[ 125.109716][ T5818] ? set_blocksize+0x1fc/0x360
[ 125.111468][ T5818] ? sb_set_blocksize+0x98/0xf0
[ 125.113287][ T5818] ? setup_bdev_super+0x4e6/0x5d0
[ 125.115120][ T5818] mount_bdev+0x20a/0x2d0
[ 125.116520][ T5818] ? __pfx_ocfs2_fill_super+0x10/0x10
[ 125.118451][ T5818] ? __pfx_mount_bdev+0x10/0x10
[ 125.120225][ T5818] ? vfs_parse_fs_string+0x190/0x230
[ 125.122179][ T5818] ? __pfx_vfs_parse_fs_string+0x10/0x10
[ 125.124215][ T5818] legacy_get_tree+0xee/0x190
[ 125.125912][ T5818] ? __pfx_ocfs2_mount+0x10/0x10
[ 125.127750][ T5818] vfs_get_tree+0x90/0x2b0
[ 125.129383][ T5818] do_new_mount+0x2be/0xb40
[ 125.131022][ T5818] ? __pfx_do_new_mount+0x10/0x10
[ 125.132957][ T5818] __se_sys_mount+0x2d6/0x3c0
[ 125.135220][ T5818] ? __pfx___se_sys_mount+0x10/0x10
[ 125.137754][ T5818] ? exc_page_fault+0x590/0x8b0
[ 125.139576][ T5818] ? __x64_sys_mount+0x20/0xc0
[ 125.141317][ T5818] do_syscall_64+0xf3/0x230
[ 125.143071][ T5818] ? clear_bhb_loop+0x35/0x90
[ 125.144792][ T5818] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 125.146936][ T5818] RIP: 0033:0x7f91979816ba
[ 125.148547][ T5818] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 125.155480][ T5818] RSP: 002b:00007f919873ce88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 125.158468][ T5818] RAX: ffffffffffffffda RBX: 00007f919873cf10 RCX: 00007f91979816ba
[ 125.161353][ T5818] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f919873ced0
[ 125.164238][ T5818] RBP: 0000000020004440 R08: 00007f919873cf10 R09: 0000000001000000
[ 125.167050][ T5818] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[ 125.169683][ T5818] R13: 00007f919873ced0 R14: 000000000000444a R15: 00000000200005c0
[ 125.172776][ T5818]
[ 125.174235][ T5818] Kernel Offset: disabled
[ 125.176012][ T5818] Rebooting in 86400 seconds..