Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts.
2025/10/18 17:46:02 ignoring optional flag "type"="gce"
2025/10/18 17:46:02 parsed 1 programs
[ 30.638056][ T24] kauditd_printk_skb: 18 callbacks suppressed
[ 30.638067][ T24] audit: type=1400 audit(1760809562.300:92): avc: denied { unlink } for pid=319 comm="syz-executor" name="swap-file" dev="sda1" ino=2027 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2025/10/18 17:46:02 executed programs: 0
[ 30.681324][ T319] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 30.728802][ T326] bridge0: port 1(bridge_slave_0) entered blocking state
[ 30.736396][ T326] bridge0: port 1(bridge_slave_0) entered disabled state
[ 30.745320][ T326] device bridge_slave_0 entered promiscuous mode
[ 30.752895][ T326] bridge0: port 2(bridge_slave_1) entered blocking state
[ 30.760086][ T326] bridge0: port 2(bridge_slave_1) entered disabled state
[ 30.767570][ T326] device bridge_slave_1 entered promiscuous mode
[ 30.797757][ T326] bridge0: port 2(bridge_slave_1) entered blocking state
[ 30.805004][ T326] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 30.812734][ T326] bridge0: port 1(bridge_slave_0) entered blocking state
[ 30.819796][ T326] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 30.836982][ T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 30.844391][ T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 30.852273][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 30.860689][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 30.869617][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 30.878237][ T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 30.885767][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 30.894753][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 30.903558][ T49] bridge0: port 2(bridge_slave_1) entered blocking state
[ 30.910919][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 30.922285][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 30.931519][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 30.944839][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 30.956874][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 30.965139][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 30.972904][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 30.981517][ T326] device veth0_vlan entered promiscuous mode
[ 30.991614][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 31.001145][ T326] device veth1_macvtap entered promiscuous mode
[ 31.009963][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 31.020355][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 31.044462][ T24] audit: type=1400 audit(1760809562.700:93): avc: denied { mounton } for pid=330 comm="syz-executor.0" path="/root/syzkaller-testdir1541704181/syzkaller.jjvgVx/0/file1" dev="sda1" ino=2036 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 31.077905][ T331] EXT4-fs (loop0): 1 orphan inode deleted
[ 31.084106][ T331] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 31.107208][ T24] audit: type=1400 audit(1760809562.770:94): avc: denied { mount } for pid=330 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 31.107232][ T331] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.154612][ T24] audit: type=1400 audit(1760809562.810:95): avc: denied { write } for pid=330 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 31.158030][ T336] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 31.177994][ T24] audit: type=1400 audit(1760809562.810:96): avc: denied { add_name } for pid=330 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 31.189923][ T336] EXT4-fs (loop0): Remounting filesystem read-only
[ 31.211645][ T24] audit: type=1400 audit(1760809562.810:97): avc: denied { create } for pid=330 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 31.240829][ T336] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 31.240856][ T24] audit: type=1400 audit(1760809562.810:98): avc: denied { read write open } for pid=330 comm="syz-executor.0" path="/root/syzkaller-testdir1541704181/syzkaller.jjvgVx/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 31.283571][ T24] audit: type=1400 audit(1760809562.810:99): avc: denied { mounton } for pid=330 comm="syz-executor.0" path="/root/syzkaller-testdir1541704181/syzkaller.jjvgVx/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 31.283651][ T336] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 31.313370][ T24] audit: type=1400 audit(1760809562.820:100): avc: denied { ioctl } for pid=330 comm="syz-executor.0" path="/root/syzkaller-testdir1541704181/syzkaller.jjvgVx/0/file1/bus" dev="loop0" ino=16 ioctlcmd=0x582b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 31.323525][ T336] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 31.369795][ T24] audit: type=1400 audit(1760809563.030:101): avc: denied { unmount } for pid=326 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 31.438363][ T338] EXT4-fs (loop0): 1 orphan inode deleted
[ 31.444235][ T338] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 31.466477][ T338] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.491242][ T342] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 31.503907][ T342] EXT4-fs (loop0): Remounting filesystem read-only
[ 31.510860][ T342] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 31.524870][ T342] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 31.535044][ T342] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 31.607603][ T344] EXT4-fs (loop0): 1 orphan inode deleted
[ 31.613689][ T344] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 31.635709][ T344] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.659946][ T348] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 31.672900][ T348] EXT4-fs (loop0): Remounting filesystem read-only
[ 31.680241][ T348] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 31.694088][ T348] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 31.704473][ T348] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 31.767656][ T350] EXT4-fs (loop0): 1 orphan inode deleted
[ 31.774379][ T350] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 31.797971][ T350] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.820862][ T354] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 31.833569][ T354] EXT4-fs (loop0): Remounting filesystem read-only
[ 31.841019][ T354] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 31.855214][ T354] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 31.865565][ T354] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 31.947590][ T356] EXT4-fs (loop0): 1 orphan inode deleted
[ 31.953716][ T356] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 31.975705][ T356] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 31.999849][ T360] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 32.012745][ T360] EXT4-fs (loop0): Remounting filesystem read-only
[ 32.019802][ T360] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 32.034248][ T360] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 32.044938][ T360] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 32.107675][ T362] EXT4-fs (loop0): 1 orphan inode deleted
[ 32.113755][ T362] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 32.136580][ T362] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 32.160125][ T366] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[ 32.175328][ T366] EXT4-fs (loop0): Remounting filesystem read-only
[ 32.182532][ T366] EXT4-fs error (device loop0) in ext4_mb_clear_bb:5645: Corrupt filesystem
[ 32.192289][ T366] ==================================================================
[ 32.201014][ T366] BUG: KASAN: out-of-bounds in ext4_ext_remove_space+0x258d/0x4920
[ 32.209158][ T366] Read of size 18446744073709551544 at addr ffff888121b69054 by task syz-executor.0/366
[ 32.219899][ T366]
[ 32.222699][ T366] CPU: 1 PID: 366 Comm: syz-executor.0 Not tainted syzkaller #0
[ 32.230765][ T366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 32.241573][ T366] Call Trace:
[ 32.245309][ T366] __dump_stack+0x21/0x24
[ 32.249968][ T366] dump_stack_lvl+0x169/0x1d8
[ 32.255016][ T366] ? show_regs_print_info+0x18/0x18
[ 32.260689][ T366] ? thaw_kernel_threads+0x220/0x220
[ 32.266066][ T366] print_address_description+0x7f/0x2c0
[ 32.271690][ T366] ? ext4_ext_remove_space+0x258d/0x4920
[ 32.277599][ T366] kasan_report+0xe2/0x130
[ 32.282287][ T366] ? ext4_ext_remove_space+0x258d/0x4920
[ 32.288175][ T366] ? ext4_ext_remove_space+0x258d/0x4920
[ 32.294090][ T366] kasan_check_range+0x280/0x290
[ 32.299187][ T366] memmove+0x2d/0x70
[ 32.303339][ T366] ext4_ext_remove_space+0x258d/0x4920
[ 32.308794][ T366] ? __kasan_slab_free+0x11/0x20
[ 32.314085][ T366] ? ext4_ext_index_trans_blocks+0x100/0x100
[ 32.320070][ T366] ? ext4_es_remove_extent+0x1d9/0x330
[ 32.325627][ T366] ext4_punch_hole+0x6f8/0xad0
[ 32.330586][ T366] ext4_fallocate+0x271/0x1a70
[ 32.335730][ T366] ? selinux_file_permission+0x2a5/0x510
[ 32.341551][ T366] ? preempt_count_add+0x90/0x1b0
[ 32.347036][ T366] vfs_fallocate+0x4b4/0x590
[ 32.351955][ T366] do_vfs_ioctl+0x12e3/0x1510
[ 32.356707][ T366] ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[ 32.362409][ T366] ? has_cap_mac_admin+0x330/0x330
[ 32.367528][ T366] ? __kasan_check_write+0x14/0x20
[ 32.372739][ T366] ? _raw_spin_lock_irq+0x8f/0xe0
[ 32.378027][ T366] ? _raw_spin_lock_irqsave+0x110/0x110
[ 32.383680][ T366] ? selinux_file_ioctl+0x377/0x480
[ 32.389143][ T366] ? recalc_sigpending+0x1ac/0x230
[ 32.394585][ T366] ? selinux_file_alloc_security+0x120/0x120
[ 32.401046][ T366] ? __set_current_blocked+0x204/0x230
[ 32.406772][ T366] ? __fget_files+0x2c4/0x320
[ 32.411821][ T366] ? security_file_ioctl+0x84/0xa0
[ 32.417167][ T366] __se_sys_ioctl+0x9f/0x1a0
[ 32.422203][ T366] __x64_sys_ioctl+0x7b/0x90
[ 32.426981][ T366] do_syscall_64+0x31/0x40
[ 32.431607][ T366] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 32.437683][ T366] RIP: 0033:0x7f5133999ae9
[ 32.442296][ T366] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 32.462996][ T366] RSP: 002b:00007f512b13b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 32.471942][ T366] RAX: ffffffffffffffda RBX: 00007f5133ab9050 RCX: 00007f5133999ae9
[ 32.480162][ T366] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004
[ 32.488546][ T366] RBP: 00007f51339e547a R08: 0000000000000000 R09: 0000000000000000
[ 32.497373][ T366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 32.506040][ T366] R13: 000000000000000b R14: 00007f5133ab9050 R15: 00007ffc4508c558
[ 32.514439][ T366]
[ 32.516851][ T366] The buggy address belongs to the page:
[ 32.522681][ T366] page:ffffea000486da40 refcount:2 mapcount:0 mapping:ffff8881093579d0 index:0x3a pfn:0x121b69
[ 32.533666][ T366] aops:def_blk_aops ino:0
[ 32.538240][ T366] flags: 0x4000000000002036(referenced|uptodate|lru|active|private)
[ 32.546402][ T366] raw: 4000000000002036 ffffea000486ed08 ffff888106bd6030 ffff8881093579d0
[ 32.555359][ T366] raw: 000000000000003a ffff88811bfee738 00000002ffffffff ffff888106b88000
[ 32.564840][ T366] page dumped because: kasan: bad access detected
[ 32.571504][ T366] page->mem_cgroup:ffff888106b88000
[ 32.576870][ T366] page_owner tracks the page as allocated
[ 32.582845][ T366] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 362, ts 32156842022, free_ts 32156689794
[ 32.600586][ T366] prep_new_page+0x179/0x180
[ 32.606178][ T366] get_page_from_freelist+0x2235/0x23d0
[ 32.612114][ T366] __alloc_pages_nodemask+0x268/0x5f0
[ 32.618107][ T366] pagecache_get_page+0x642/0x930
[ 32.623313][ T366] __getblk_gfp+0x212/0x780
[ 32.628038][ T366] ext4_ext_insert_extent+0x1084/0x4530
[ 32.633865][ T366] ext4_ext_map_blocks+0x148f/0x5d40
[ 32.639455][ T366] ext4_map_blocks+0x978/0x1bc0
[ 32.644522][ T366] _ext4_get_block+0x1bb/0x4b0
[ 32.649281][ T366] ext4_get_block+0x39/0x50
[ 32.654138][ T366] ext4_block_write_begin+0x567/0x1330
[ 32.659686][ T366] ext4_write_begin+0x651/0x15a0
[ 32.664996][ T366] ext4_da_write_begin+0x455/0xe80
[ 32.670471][ T366] generic_perform_write+0x2be/0x510
[ 32.675988][ T366] ext4_buffered_write_iter+0x4b8/0x640
[ 32.681696][ T366] ext4_file_write_iter+0x536/0x1980
[ 32.687262][ T366] page last free stack trace:
[ 32.691975][ T366] free_unref_page_prepare+0x2b7/0x2d0
[ 32.698818][ T366] free_unref_page_list+0x12e/0x9b0
[ 32.704379][ T366] release_pages+0xe38/0xe80
[ 32.709332][ T366] pagevec_lru_move_fn+0x193/0x210
[ 32.714515][ T366] lru_cache_add+0x119/0x380
[ 32.719152][ T366] add_to_page_cache_lru+0x18e/0x210
[ 32.724601][ T366] pagecache_get_page+0x704/0x930
[ 32.730444][ T366] grab_cache_page_write_begin+0x59/0xb0
[ 32.736842][ T366] ext4_write_begin+0x27b/0x15a0
[ 32.742394][ T366] ext4_da_write_begin+0x455/0xe80
[ 32.747795][ T366] generic_perform_write+0x2be/0x510
[ 32.762746][ T366] ext4_buffered_write_iter+0x4b8/0x640
[ 32.768481][ T366] ext4_file_write_iter+0x536/0x1980
[ 32.773852][ T366] vfs_write+0x725/0xd60
[ 32.778473][ T366] ksys_write+0x140/0x240
[ 32.782845][ T366] __x64_sys_write+0x7b/0x90
[ 32.787584][ T366]
[ 32.790224][ T366] Memory state around the buggy address:
[ 32.796240][ T366] ffff888121b68f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 32.804464][ T366] ffff888121b68f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 32.813031][ T366] >ffff888121b69000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 32.821511][ T366] ^
[ 32.828318][ T366] ffff888121b69080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 32.836920][ T366] ffff888121b69100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 32.845332][ T366] ==================================================================
[ 32.853780][ T366] Disabling lock debugging due to kernel taint
[ 32.864221][ T366] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 32.877784][ T366] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 32.887862][ T366] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 32.987545][ T368] EXT4-fs (loop0): 1 orphan inode deleted
[ 32.993620][ T368] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 33.016111][ T368] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 33.039268][ T372] EXT4-fs error (device loop0): ext4_ext_remove_space:2841: inode #16: comm syz-executor.0: path[1].p_hdr == NULL
[ 33.052066][ T372] EXT4-fs (loop0): Remounting filesystem read-only
[ 33.059323][ T372] EXT4-fs error (device loop0): __ext4_get_inode_loc:4438: comm syz-executor.0: Invalid inode table block 0 in block_group 0
[ 33.073557][ T372] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5933: Corrupt filesystem
[ 33.084297][ T372] EXT4-fs error (device loop0): ext4_punch_hole:4230: inode #16: comm syz-executor.0: mark_inode_dirty error
[ 33.158068][ T374] EXT4-fs (loop0): 1 orphan inode deleted
[ 33.164640][ T374] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,norecovery,dioread_lock,errors=remount-ro,noauto_da_alloc,resgid=0x0000000000000000,barrier,auto_da_alloc,max_dir_size_kb=0x00000000000004e1,
[ 33.187194][ T374] ext4 filesystem being mounted at /root/syzkaller-testdir1541704181/syzkaller.jjvgVx/7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 33.210969][ T378] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz-executor.0: Invalid block bitmap block 0 in block_group 0
[ 33.225465][ T378] EXT4-fs (loop0): Remounting filesystem read-only
[ 33.232974][ T378] EXT4-fs error (device loop0) in ext4_mb_clear_bb:5645: Corrupt filesystem
[ 33.255604][ C1] BUG: unable to handle page fault for address: ffffeeee7ffff111
[ 33.263560][ C1] #PF: supervisor read access in kernel mode
[ 33.269826][ C1] #PF: error_code(0x0000) - not-present page
[ 33.275933][ C1] PGD 0 P4D 0
[ 33.279605][ C1] Oops: 0000 [#1] PREEMPT SMP KASAN
[ 33.285093][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G B syzkaller #0
[ 33.293691][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 33.304070][ C1] RIP: 0010:__run_timers+0x566/0x9a0
[ 33.309978][ C1] Code: 4c 89 ff e8 4c 00 49 00 4d 89 27 4d 85 e4 74 2e e8 df 0f 0f 00 49 83 c4 08 4c 89 e0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 e7 e8 1c 00 49 00 4d 89 3c 24 eb 05 e8 b1
[ 33.330052][ C1] RSP: 0018:ffffc90000170dc0 EFLAGS: 00010806
[ 33.336489][ C1] RAX: 1ffff2ee7ffff111 RBX: 1ffff11024386519 RCX: dffffc0000000000
[ 33.344558][ C1] RDX: 0000000000000102 RSI: 0000000000000001 RDI: 000000000000000a
[ 33.352883][ C1] RBP: ffffc90000170f30 R08: dffffc0000000000 R09: ffffed103ee28f0e
[ 33.361035][ C1] R10: ffffed103ee28f0e R11: 1ffff1103ee28f0d R12: ffff9773ffff8889
[ 33.369028][ C1] R13: ffff888121c328c8 R14: 1ffff11024386518 R15: ffffc90000170e80
[ 33.377592][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 33.387172][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 33.393993][ C1] CR2: ffffeeee7ffff111 CR3: 000000010c9af000 CR4: 00000000003506a0
[ 33.402664][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 33.410870][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 33.419109][ C1] Call Trace:
[ 33.422486][ C1]
[ 33.425436][ C1] ? calc_index+0x200/0x200
[ 33.430041][ C1] ? sched_clock_cpu+0x1b/0x3d0
[ 33.434876][ C1] run_timer_softirq+0x6a/0xf0
[ 33.439814][ C1] __do_softirq+0x255/0x563
[ 33.444313][ C1] asm_call_irq_on_stack+0xf/0x20
[ 33.449587][ C1]
[ 33.452596][ C1] do_softirq_own_stack+0x60/0x80
[ 33.457973][ C1] __irq_exit_rcu+0x128/0x150
[ 33.462780][ C1] irq_exit_rcu+0x9/0x10
[ 33.467364][ C1] sysvec_apic_timer_interrupt+0xbf/0xe0
[ 33.473239][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 33.479839][ C1] RIP: 0010:default_idle+0x12/0x20
[ 33.485732][ C1] Code: 48 8b 7c 24 10 e8 be 29 00 00 e9 71 ff ff ff e8 d4 fe fa ff 00 00 cc cc 55 48 89 e5 0f 1f 44 00 00 0f 00 2d f0 ee 4c 00 fb f4 <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 55 48 89 e5 41 57 41 56
[ 33.506547][ C1] RSP: 0018:ffffc90000107d98 EFLAGS: 00000256
[ 33.512784][ C1] RAX: ffff8881f7100000 RBX: ffff888100294f00 RCX: 000000000000752e
[ 33.521022][ C1] RDX: 0000000000000001 RSI: ffffffff85202400 RDI: ffffffff852023c0
[ 33.529014][ C1] RBP: ffffc90000107d98 R08: dffffc0000000000 R09: ffffed103ee2ae7b
[ 33.537456][ C1] R10: ffffed103ee2ae7b R11: 1ffff1103ee2ae7a R12: 0000000000000001
[ 33.546110][ C1] R13: 1ffff110200529e0 R14: 0000000000000000 R15: dffffc0000000000
[ 33.554716][ C1] arch_cpu_idle+0xa/0x10
[ 33.559055][ C1] default_idle_call+0x71/0x1d0
[ 33.564288][ C1] do_idle+0x1df/0x530
[ 33.568646][ C1] ? idle_inject_timer_fn+0x60/0x60
[ 33.574009][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 33.580413][ C1] cpu_startup_entry+0x18/0x20
[ 33.585195][ C1] start_secondary+0x2e9/0x3a0
[ 33.590067][ C1] secondary_startup_64_no_verify+0xad/0xbb
[ 33.595932][ C1] Modules linked in:
[ 33.599919][ C1] CR2: ffffeeee7ffff111
[ 33.604267][ C1] ---[ end trace 7ec2ff1ee457606d ]---
[ 33.604312][ C0] general protection fault, probably for non-canonical address 0xe1963c000000000c: 0000 [#2] PREEMPT SMP KASAN
[ 33.610181][ C1] RIP: 0010:__run_timers+0x566/0x9a0
[ 33.622159][ C0] KASAN: maybe wild-memory-access in range [0x0cb2000000000060-0x0cb2000000000067]
[ 33.627525][ C1] Code: 4c 89 ff e8 4c 00 49 00 4d 89 27 4d 85 e4 74 2e e8 df 0f 0f 00 49 83 c4 08 4c 89 e0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 4c 89 e7 e8 1c 00 49 00 4d 89 3c 24 eb 05 e8 b1
[ 33.637334][ C0] CPU: 0 PID: 378 Comm: syz-executor.0 Tainted: G B D syzkaller #0
[ 33.657816][ C1] RSP: 0018:ffffc90000170dc0 EFLAGS: 00010806
[ 33.667122][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 33.667133][ C1]
[ 33.673373][ C0] RIP: 0010:__find_rr_leaf+0x3cd/0x900
[ 33.683862][ C1] RAX: 1ffff2ee7ffff111 RBX: 1ffff11024386519 RCX: dffffc0000000000
[ 33.683874][ C1] RDX: 0000000000000102 RSI: 0000000000000001 RDI: 000000000000000a
[ 33.686295][ C0] Code: 18 48 89 84 24 b8 00 00 00 48 c7 84 24 c0 00 00 00 00 00 00 00 4d 8d 7d 66 4c 89 f8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <0f> b6 04 08 84 c0 0f 85 fc 01 00 00 41 80 3f 00 0f 84 91 00 00 00
[ 33.692001][ C1] RBP: ffffc90000170f30 R08: dffffc0000000000 R09: ffffed103ee28f0e
[ 33.700807][ C0] RSP: 0018:ffffc90000007460 EFLAGS: 00010207
[ 33.709202][ C1] R10: ffffed103ee28f0e R11: 1ffff1103ee28f0d R12: ffff9773ffff8889
[ 33.729911][ C0]
[ 33.739125][ C1] R13: ffff888121c328c8 R14: 1ffff11024386518 R15: ffffc90000170e80
[ 33.745723][ C0] RAX: 019640000000000c RBX: 1ffff1102438c50a RCX: dffffc0000000000
[ 33.755013][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 33.757428][ C0] RDX: 0000000080000100 RSI: 0000000000000000 RDI: ffff888121c62898
[ 33.766520][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 33.775729][ C0] RBP: ffffc900000075b8 R08: 0000000000000000 R09: 0000000000000021
[ 33.785174][ C1] CR2: ffffeeee7ffff111 CR3: 000000010c9af000 CR4: 00000000003506a0
[ 33.793500][ C0] R10: fffff52000000efe R11: 1ffff92000000efa R12: 1ffff1102438c513
[ 33.800710][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 33.808923][ C0] R13: 0cb2000000000000 R14: ffff888121c62800 R15: 0cb2000000000066
[ 33.817126][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 33.825281][ C0] FS: 00007f512b13b6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 33.833336][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 33.841668][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 33.874709][ C0] CR2: 00007f90fc212000 CR3: 000000010c9af000 CR4: 00000000003506b0
[ 33.883156][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 33.891868][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 33.899936][ C0] Call Trace:
[ 33.903401][ C0]
[ 33.906348][ C0] ? rt6_remove_exception+0x330/0x330
[ 33.912101][ C0] ? fib6_node_lookup+0x3ef/0x420
[ 33.917226][ C0] fib6_table_lookup+0x631/0x9f0
[ 33.922351][ C0] ? fib6_nh_age_exceptions+0x940/0x940
[ 33.927984][ C0] ? __kasan_check_read+0x11/0x20
[ 33.933211][ C0] ip6_pol_route+0x145/0x1110
[ 33.938194][ C0] ? fib6_table_lookup+0x9f0/0x9f0
[ 33.943501][ C0] ? __local_bh_enable_ip+0x53/0x80
[ 33.948696][ C0] ? local_bh_enable+0x1f/0x30
[ 33.953714][ C0] ip6_pol_route_input+0x56/0x80
[ 33.958842][ C0] fib6_rule_lookup+0x1c6/0x560
[ 33.964112][ C0] ? ip6_route_input_lookup+0xd0/0xd0
[ 33.969671][ C0] ? fib6_lookup+0x2a0/0x2a0
[ 33.974606][ C0] ? ip6t_do_table+0x1348/0x14e0
[ 33.979674][ C0] ip6_route_input+0x58b/0x780
[ 33.984603][ C0] ? ip6_multipath_l3_keys+0x5f0/0x5f0
[ 33.990372][ C0] ? ip6table_raw_hook+0x6a/0x80
[ 33.995780][ C0] ? ip6table_mangle_net_exit+0x80/0x80
[ 34.001429][ C0] ip6_rcv_finish+0x155/0x360
[ 34.006183][ C0] ipv6_rcv+0xec/0x210
[ 34.010625][ C0] ? add_grec+0x11a/0x1100
[ 34.015232][ C0] ? ip6_rcv_finish+0x360/0x360
[ 34.020336][ C0] ? refcount_add+0x80/0x80
[ 34.025296][ C0] ? __kasan_check_write+0x14/0x20
[ 34.030864][ C0] ? ip6_rcv_finish+0x360/0x360
[ 34.036044][ C0] __netif_receive_skb+0xc8/0x280
[ 34.041380][ C0] ? __kasan_check_write+0x14/0x20
[ 34.046762][ C0] ? _raw_spin_lock_irq+0x8f/0xe0
[ 34.051899][ C0] process_backlog+0x368/0x600
[ 34.056763][ C0] net_rx_action+0x432/0xdd0
[ 34.061456][ C0] ? net_tx_action+0x530/0x530
[ 34.066223][ C0] __do_softirq+0x255/0x563
[ 34.071068][ C0] asm_call_irq_on_stack+0xf/0x20
[ 34.076358][ C0]
[ 34.079476][ C0] do_softirq_own_stack+0x60/0x80
[ 34.084656][ C0] __irq_exit_rcu+0x128/0x150
[ 34.089499][ C0] irq_exit_rcu+0x9/0x10
[ 34.093987][ C0] sysvec_apic_timer_interrupt+0xbf/0xe0
[ 34.100105][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 34.106102][ C0] RIP: 0010:__memmove+0x19c/0x1a0
[ 34.111223][ C0] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 00 eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 34.131648][ C0] RSP: 0018:ffffc900010a7760 EFLAGS: 00010282
[ 34.137823][ C0] RAX: ffff888121bab048 RBX: ffffffffffffffb8 RCX: fffffffffc714d24
[ 34.145972][ C0] RDX: ffffffffffffffb8 RSI: ffff8881254962e8 RDI: ffff8881254962dc
[ 34.154162][ C0] RBP: ffffc900010a7790 R08: ffff888121bab000 R09: ffffed102420c87f
[ 34.163177][ C0] R10: ffffed102420c87f R11: 1ffff1102420c87e R12: 0000000000000000
[ 34.171566][ C0] R13: ffffffff81c8ca2d R14: ffff888121bab054 R15: ffff888121bab048
[ 34.180131][ C0] ? ext4_ext_remove_space+0x258d/0x4920
[ 34.185861][ C0] ? memmove+0x56/0x70
[ 34.190427][ C0] ext4_ext_remove_space+0x258d/0x4920
[ 34.195967][ C0] ? __kasan_slab_free+0x11/0x20
[ 34.201001][ C0] ? ext4_ext_index_trans_blocks+0x100/0x100
[ 34.207334][ C0] ? ext4_es_remove_extent+0x1d9/0x330
[ 34.212794][ C0] ext4_punch_hole+0x6f8/0xad0
[ 34.217651][ C0] ext4_fallocate+0x271/0x1a70
[ 34.222418][ C0] ? selinux_file_permission+0x2a5/0x510
[ 34.228849][ C0] ? preempt_count_add+0x90/0x1b0
[ 34.234412][ C0] vfs_fallocate+0x4b4/0x590
[ 34.239447][ C0] do_vfs_ioctl+0x12e3/0x1510
[ 34.244787][ C0] ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[ 34.251051][ C0] ? has_cap_mac_admin+0x330/0x330
[ 34.256514][ C0] ? __kasan_check_write+0x14/0x20
[ 34.262177][ C0] ? _raw_spin_lock_irq+0x8f/0xe0
[ 34.267483][ C0] ? _raw_spin_lock_irqsave+0x110/0x110
[ 34.273206][ C0] ? selinux_file_ioctl+0x377/0x480
[ 34.278600][ C0] ? recalc_sigpending+0x1ac/0x230
[ 34.284052][ C0] ? selinux_file_alloc_security+0x120/0x120
[ 34.290825][ C0] ? __set_current_blocked+0x204/0x230
[ 34.296659][ C0] ? __fget_files+0x2c4/0x320
[ 34.301354][ C0] ? security_file_ioctl+0x84/0xa0
[ 34.306785][ C0] __se_sys_ioctl+0x9f/0x1a0
[ 34.312001][ C0] __x64_sys_ioctl+0x7b/0x90
[ 34.316582][ C0] do_syscall_64+0x31/0x40
[ 34.321554][ C0] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 34.328229][ C0] RIP: 0033:0x7f5133999ae9
[ 34.333059][ C0] Code: Unable to access opcode bytes at RIP 0x7f5133999abf.
[ 34.340558][ C0] RSP: 002b:00007f512b13b0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 34.349682][ C0] RAX: ffffffffffffffda RBX: 00007f5133ab9050 RCX: 00007f5133999ae9
[ 34.358108][ C0] RDX: 0000000020000080 RSI: 000000004030582b RDI: 0000000000000004
[ 34.366381][ C0] RBP: 00007f51339e547a R08: 0000000000000000 R09: 0000000000000000
[ 34.374630][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 34.382977][ C0] R13: 000000000000000b R14: 00007f5133ab9050 R15: 00007ffc4508c558
[ 34.391486][ C0] Modules linked in:
[ 34.396051][ C1] Kernel Offset: disabled
[ 34.400888][ C1] Rebooting in 86400 seconds..