Warning: Permanently added '10.128.0.219' (ED25519) to the list of known hosts.
2024/12/31 22:08:02 ignoring optional flag "sandboxArg"="0"
2024/12/31 22:08:02 parsed 1 programs
[ 69.446040][ T2657] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
2024/12/31 22:08:09 executed programs: 0
[ 78.295310][ T3552] FAULT_INJECTION: forcing a failure.
[ 78.295310][ T3552] name failslab, interval 1, probability 0, space 0, times 1
[ 78.308029][ T3552] CPU: 1 UID: 0 PID: 3552 Comm: syz.3.16 Not tainted 6.12.0-syzkaller #0
[ 78.316448][ T3552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 78.326492][ T3552] Call Trace:
[ 78.329781][ T3552]
[ 78.332718][ T3552] dump_stack_lvl+0x108/0x280
[ 78.337490][ T3552] ? __pfx_dump_stack_lvl+0x10/0x10
[ 78.342680][ T3552] ? __pfx__printk+0x10/0x10
[ 78.347271][ T3552] ? kmem_cache_alloc_lru_noprof+0x4e/0x440
[ 78.353268][ T3552] ? __pfx_lock_release+0x10/0x10
[ 78.358270][ T3552] should_fail_ex+0x3b0/0x4e0
[ 78.363017][ T3552] should_failslab+0xac/0x100
[ 78.367681][ T3552] kmem_cache_alloc_lru_noprof+0x65/0x440
[ 78.373404][ T3552] ? __d_alloc+0x2c/0x930
[ 78.377708][ T3552] __d_alloc+0x2c/0x930
[ 78.381863][ T3552] ? alloc_fd+0x4ab/0x520
[ 78.386195][ T3552] d_alloc_pseudo+0x13/0xb0
[ 78.390730][ T3552] alloc_file_pseudo+0x11b/0x270
[ 78.395847][ T3552] ? __pfx_alloc_file_pseudo+0x10/0x10
[ 78.401351][ T3552] ? _raw_spin_unlock+0x28/0x50
[ 78.406275][ T3552] anon_inode_getfile_fmode+0xa2/0x1a0
[ 78.411714][ T3552] __se_sys_fanotify_init+0x5b9/0x700
[ 78.417060][ T3552] do_syscall_64+0x8d/0x170
[ 78.421540][ T3552] ? clear_bhb_loop+0x55/0xb0
[ 78.426192][ T3552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 78.432092][ T3552] RIP: 0033:0x7f732e185d29
[ 78.436498][ T3552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 78.456432][ T3552] RSP: 002b:00007f732ef09038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[ 78.465003][ T3552] RAX: ffffffffffffffda RBX: 00007f732e375fa0 RCX: 00007f732e185d29
[ 78.473051][ T3552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[ 78.480995][ T3552] RBP: 00007f732ef09090 R08: 0000000000000000 R09: 0000000000000000
[ 78.489117][ T3552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 78.497073][ T3552] R13: 0000000000000001 R14: 00007f732e375fa0 R15: 00007ffe01a888d8
[ 78.505108][ T3552]
[ 78.508389][ T3552] ==================================================================
[ 78.516450][ T3552] BUG: KASAN: use-after-free in put_unused_fd+0xaa/0x1b0
[ 78.523457][ T3552] Write of size 8 at addr ffff88812cfeb478 by task syz.3.16/3552
[ 78.531145][ T3552]
[ 78.533455][ T3552] CPU: 1 UID: 0 PID: 3552 Comm: syz.3.16 Not tainted 6.12.0-syzkaller #0
[ 78.541857][ T3552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 78.551936][ T3552] Call Trace:
[ 78.555208][ T3552]
[ 78.558118][ T3552] dump_stack_lvl+0x108/0x280
[ 78.562791][ T3552] ? __pfx_dump_stack_lvl+0x10/0x10
[ 78.567963][ T3552] ? __pfx__printk+0x10/0x10
[ 78.572612][ T3552] ? _printk+0xce/0x120
[ 78.576738][ T3552] ? __virt_addr_valid+0x141/0x270
[ 78.581820][ T3552] ? __virt_addr_valid+0x229/0x270
[ 78.586987][ T3552] print_report+0x169/0x550
[ 78.591467][ T3552] ? __virt_addr_valid+0x141/0x270
[ 78.596547][ T3552] ? __virt_addr_valid+0x229/0x270
[ 78.601627][ T3552] ? put_unused_fd+0xaa/0x1b0
[ 78.606274][ T3552] kasan_report+0x143/0x180
[ 78.610748][ T3552] ? put_unused_fd+0xaa/0x1b0
[ 78.615409][ T3552] kasan_check_range+0x282/0x290
[ 78.620319][ T3552] put_unused_fd+0xaa/0x1b0
[ 78.624793][ T3552] __se_sys_fanotify_init+0x5cb/0x700
[ 78.630141][ T3552] do_syscall_64+0x8d/0x170
[ 78.634627][ T3552] ? clear_bhb_loop+0x55/0xb0
[ 78.639277][ T3552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 78.645144][ T3552] RIP: 0033:0x7f732e185d29
[ 78.649541][ T3552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 78.669123][ T3552] RSP: 002b:00007f732ef09038 EFLAGS: 00000246 ORIG_RAX: 000000000000012c
[ 78.677538][ T3552] RAX: ffffffffffffffda RBX: 00007f732e375fa0 RCX: 00007f732e185d29
[ 78.685533][ T3552] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008
[ 78.693482][ T3552] RBP: 00007f732ef09090 R08: 0000000000000000 R09: 0000000000000000
[ 78.701522][ T3552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 78.709467][ T3552] R13: 0000000000000001 R14: 00007f732e375fa0 R15: 00007ffe01a888d8
[ 78.717418][ T3552]
[ 78.720415][ T3552]
[ 78.722732][ T3552] The buggy address belongs to the physical page:
[ 78.729128][ T3552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12cfeb
[ 78.737947][ T3552] flags: 0x100000000000000(node=0|zone=2)
[ 78.743654][ T3552] raw: 0100000000000000 ffffea0004b3fac8 ffffea0004b3fac8 0000000000000000
[ 78.752216][ T3552] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 78.760777][ T3552] page dumped because: kasan: bad access detected
[ 78.767321][ T3552] page_owner info is not present (never set?)
[ 78.773652][ T3552]
[ 78.775954][ T3552] Memory state around the buggy address:
[ 78.781575][ T3552] ffff88812cfeb300: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 78.789644][ T3552] ffff88812cfeb380: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 78.797804][ T3552] >ffff88812cfeb400: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 78.805837][ T3552] ^
[ 78.813791][ T3552] ffff88812cfeb480: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 78.822368][ T3552] ffff88812cfeb500: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 78.830595][ T3552] ==================================================================
[ 78.839237][ T3552] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 78.846738][ T3552] Kernel Offset: disabled
[ 78.851078][ T3552] Rebooting in 86400 seconds..