Warning: Permanently added '10.128.0.197' (ECDSA) to the list of known hosts.
2023/03/04 02:22:43 ignoring optional flag "sandboxArg"="0"
2023/03/04 02:22:43 parsed 1 programs
2023/03/04 02:22:43 executed programs: 0
[ 73.767442][ T5082] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 73.775916][ T5082] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 73.784204][ T5082] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 73.792795][ T5082] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 73.801727][ T5082] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 73.809398][ T5082] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 73.950094][ T5506] chnl_net:caif_netlink_parms(): no params data found
[ 74.011161][ T5506] bridge0: port 1(bridge_slave_0) entered blocking state
[ 74.019818][ T5506] bridge0: port 1(bridge_slave_0) entered disabled state
[ 74.027422][ T5506] bridge_slave_0: entered allmulticast mode
[ 74.034503][ T5506] bridge_slave_0: entered promiscuous mode
[ 74.044634][ T5506] bridge0: port 2(bridge_slave_1) entered blocking state
[ 74.052482][ T5506] bridge0: port 2(bridge_slave_1) entered disabled state
[ 74.061597][ T5506] bridge_slave_1: entered allmulticast mode
[ 74.069505][ T5506] bridge_slave_1: entered promiscuous mode
[ 74.101851][ T5506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 74.113724][ T5506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 74.149011][ T5506] team0: Port device team_slave_0 added
[ 74.159638][ T5506] team0: Port device team_slave_1 added
[ 74.185093][ T5506] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 74.192318][ T5506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 74.220996][ T5506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 74.234284][ T5506] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 74.243014][ T5506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 74.271587][ T5506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 74.313428][ T5506] hsr_slave_0: entered promiscuous mode
[ 74.320019][ T5506] hsr_slave_1: entered promiscuous mode
[ 75.041230][ T5506] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 75.051180][ T5506] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 75.070504][ T5506] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 75.082248][ T5506] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 75.155105][ T5506] 8021q: adding VLAN 0 to HW filter on device bond0
[ 75.170003][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 75.179544][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 75.192067][ T5506] 8021q: adding VLAN 0 to HW filter on device team0
[ 75.204025][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 75.213976][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 75.222670][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 75.230040][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 75.238597][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 75.254397][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 75.264917][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 75.274111][ T7] bridge0: port 2(bridge_slave_1) entered blocking state
[ 75.281610][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 75.301795][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 75.311519][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 75.320678][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 75.331492][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 75.340211][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 75.350712][ T5091] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 75.366107][ T5506] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 75.379451][ T5506] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 75.392994][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 75.403485][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 75.412252][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 75.421257][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 75.430000][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 75.442897][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 75.587439][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 75.594970][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 75.609040][ T5506] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 75.633100][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 75.643041][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 75.665296][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 75.676434][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 75.687158][ T5506] veth0_vlan: entered promiscuous mode
[ 75.699337][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 75.709281][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 75.719485][ T5506] veth1_vlan: entered promiscuous mode
[ 75.744753][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 75.754329][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 75.764039][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 75.773965][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 75.786407][ T5506] veth0_macvtap: entered promiscuous mode
[ 75.799482][ T5506] veth1_macvtap: entered promiscuous mode
[ 75.820492][ T5506] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 75.828404][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 75.839138][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 75.848605][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 75.858182][ T4399] Bluetooth: hci0: command 0x0409 tx timeout
[ 75.866020][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 75.879025][ T5506] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 75.889928][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 75.901009][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 75.912124][ T5506] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.923793][ T5506] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.933374][ T5506] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.944620][ T5506] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 76.016652][ T2847] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 76.033288][ T2847] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 76.054374][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 76.075456][ T2847] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 76.085996][ T2847] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 76.113669][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 76.183881][ T5610] loop0: detected capacity change from 0 to 2048
[ 76.218172][ T5610] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[ 76.253709][ T5610] ==================================================================
[ 76.261901][ T5610] BUG: KASAN: slab-use-after-free in ext4_find_extent+0x7a2/0xcd0
[ 76.269887][ T5610] Read of size 4 at addr ffff888074ebf978 by task syz-executor.0/5610
[ 76.278143][ T5610]
[ 76.280465][ T5610] CPU: 0 PID: 5610 Comm: syz-executor.0 Not tainted 6.2.0-syzkaller #0
[ 76.288700][ T5610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023
[ 76.298757][ T5610] Call Trace:
[ 76.302167][ T5610]
[ 76.305201][ T5610] dump_stack_lvl+0x12e/0x1d0
[ 76.309898][ T5610] ? irq_work_queue+0x66/0xb0
[ 76.314591][ T5610] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 76.320052][ T5610] ? panic+0x500/0x500
[ 76.324122][ T5610] ? _printk+0xab/0xf0
[ 76.328227][ T5610] print_report+0x163/0x510
[ 76.333099][ T5610] ? ext4_find_extent+0x7a2/0xcd0
[ 76.338126][ T5610] kasan_report+0xce/0x100
[ 76.342558][ T5610] ? ext4_find_extent+0x7a2/0xcd0
[ 76.347706][ T5610] ext4_find_extent+0x7a2/0xcd0
[ 76.352574][ T5610] ? ext4_es_scan_range+0x230/0x230
[ 76.357776][ T5610] ext4_clu_mapped+0xd0/0x7c0
[ 76.362555][ T5610] ? ext4_es_lookup_extent+0x395/0xa00
[ 76.368299][ T5610] ? __down_read_common+0x184/0x2c0
[ 76.373499][ T5610] ext4_da_get_block_prep+0x8b3/0x1110
[ 76.378967][ T5610] ? ext4_da_release_space+0x540/0x540
[ 76.384459][ T5610] ? __rwlock_init+0x150/0x150
[ 76.389390][ T5610] ? ext4_block_write_begin+0x24f/0xd30
[ 76.395212][ T5610] ? __lock_acquire+0x1f80/0x1f80
[ 76.400246][ T5610] ? do_raw_spin_unlock+0x13b/0x8b0
[ 76.405798][ T5610] ext4_block_write_begin+0x3f9/0xd30
[ 76.411189][ T5610] ? ext4_da_release_space+0x540/0x540
[ 76.417097][ T5610] ? ext4_iomap_swap_activate+0x10/0x10
[ 76.423707][ T5610] ext4_da_write_begin+0x4dc/0x830
[ 76.428875][ T5610] ? ext4_dirty_folio+0x200/0x200
[ 76.433998][ T5610] ? fault_in_iov_iter_readable+0xc5/0x220
[ 76.440087][ T5610] generic_perform_write+0x2b6/0x500
[ 76.446004][ T5610] ? generic_file_direct_write+0x520/0x520
[ 76.452174][ T5610] ? clear_nonspinnable+0x60/0x60
[ 76.457474][ T5610] ? ext4_write_checks+0x1c7/0x210
[ 76.462631][ T5610] ext4_buffered_write_iter+0xf5/0x2e0
[ 76.468185][ T5610] ext4_file_write_iter+0x199/0x14e0
[ 76.473697][ T5610] ? ext4_file_read_iter+0x4a0/0x4a0
[ 76.479081][ T5610] ? common_file_perm+0x12f/0x180
[ 76.484142][ T5610] vfs_write+0x7be/0xb10
[ 76.488392][ T5610] ? file_end_write+0x1c0/0x1c0
[ 76.493941][ T5610] ? do_futex+0x23b/0x470
[ 76.498285][ T5610] ? mutex_lock_nested+0x1b/0x20
[ 76.503225][ T5610] ? __fdget_pos+0x1ba/0x240
[ 76.507910][ T5610] ksys_write+0x122/0x200
[ 76.512253][ T5610] ? __ia32_sys_read+0x80/0x80
[ 76.517016][ T5610] ? syscall_enter_from_user_mode+0x32/0x2c0
[ 76.523259][ T5610] ? lockdep_hardirqs_on+0x90/0x130
[ 76.528464][ T5610] ? syscall_enter_from_user_mode+0x32/0x2c0
[ 76.534446][ T5610] do_syscall_64+0x41/0xc0
[ 76.538972][ T5610] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 76.544914][ T5610] RIP: 0033:0x7f2e0be8c0a9
[ 76.549329][ T5610] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 76.568940][ T5610] RSP: 002b:00007f2e0ccb5168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 76.577473][ T5610] RAX: ffffffffffffffda RBX: 00007f2e0bfabf80 RCX: 00007f2e0be8c0a9
[ 76.585449][ T5610] RDX: 00000000175d9003 RSI: 0000000020000200 RDI: 0000000000000004
[ 76.593421][ T5610] RBP: 00007f2e0bee7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 76.601397][ T5610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 76.609461][ T5610] R13: 00007ffe9fa6b28f R14: 00007f2e0ccb5300 R15: 0000000000022000
[ 76.617707][ T5610]
[ 76.620728][ T5610]
[ 76.623133][ T5610] Allocated by task 5357:
[ 76.627454][ T5610] kasan_set_track+0x40/0x60
[ 76.632071][ T5610] __kasan_slab_alloc+0x66/0x70
[ 76.637039][ T5610] slab_post_alloc_hook+0x68/0x3a0
[ 76.642168][ T5610] kmem_cache_alloc_lru+0x127/0x270
[ 76.647377][ T5610] new_inode_pseudo+0x75/0x180
[ 76.652317][ T5610] create_pipe_files+0x4b/0x690
[ 76.657611][ T5610] __do_pipe_flags+0x2c/0x1b0
[ 76.662290][ T5610] do_pipe2+0x8b/0x270
[ 76.666362][ T5610] __x64_sys_pipe+0x35/0x40
[ 76.670876][ T5610] do_syscall_64+0x41/0xc0
[ 76.675303][ T5610] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 76.681207][ T5610]
[ 76.683534][ T5610] Freed by task 5357:
[ 76.687510][ T5610] kasan_set_track+0x40/0x60
[ 76.692278][ T5610] kasan_save_free_info+0x2b/0x40
[ 76.697306][ T5610] ____kasan_slab_free+0xd6/0x120
[ 76.702416][ T5610] kmem_cache_free+0x2be/0x590
[ 76.707209][ T5610] evict+0x48d/0x550
[ 76.711147][ T5610] __dentry_kill+0x38b/0x560
[ 76.715830][ T5610] dentry_kill+0xbb/0x1e0
[ 76.720170][ T5610] dput+0x169/0x300
[ 76.724277][ T5610] __fput+0x4d6/0x720
[ 76.728346][ T5610] task_work_run+0x20a/0x290
[ 76.733043][ T5610] exit_to_user_mode_loop+0xd1/0xf0
[ 76.738285][ T5610] exit_to_user_mode_prepare+0xb1/0x140
[ 76.743920][ T5610] syscall_exit_to_user_mode+0x54/0x2d0
[ 76.749463][ T5610] do_syscall_64+0x4d/0xc0
[ 76.754068][ T5610] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 76.759960][ T5610]
[ 76.762360][ T5610] Last potentially related work creation:
[ 76.768264][ T5610] kasan_save_stack+0x2f/0x50
[ 76.773135][ T5610] __kasan_record_aux_stack+0xb0/0xc0
[ 76.778520][ T5610] call_rcu+0x167/0xa70
[ 76.782765][ T5610] __dentry_kill+0x38b/0x560
[ 76.787356][ T5610] dentry_kill+0xbb/0x1e0
[ 76.792057][ T5610] dput+0x169/0x300
[ 76.795941][ T5610] simple_recursive_removal+0x24b/0x750
[ 76.801476][ T5610] debugfs_remove+0x3f/0x60
[ 76.806062][ T5610] ieee80211_debugfs_remove_netdev+0x43/0x90
[ 76.812049][ T5610] ieee80211_if_change_type+0xe7/0x7e0
[ 76.817652][ T5610] ieee80211_change_iface+0x57/0x3b0
[ 76.823119][ T5610] cfg80211_change_iface+0x5cc/0xc50
[ 76.828435][ T5610] nl80211_set_interface+0x4df/0x730
[ 76.833717][ T5610] genl_rcv_msg+0xa9b/0xe20
[ 76.838240][ T5610] netlink_rcv_skb+0x1dd/0x3d0
[ 76.843000][ T5610] genl_rcv+0x23/0x30
[ 76.846984][ T5610] netlink_unicast+0x5ca/0x830
[ 76.851741][ T5610] netlink_sendmsg+0x7a0/0xb50
[ 76.856672][ T5610] __sys_sendto+0x380/0x4e0
[ 76.861280][ T5610] __x64_sys_sendto+0xd9/0xf0
[ 76.866139][ T5610] do_syscall_64+0x41/0xc0
[ 76.870555][ T5610] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 76.876452][ T5610]
[ 76.878770][ T5610] The buggy address belongs to the object at ffff888074ebf7b0
[ 76.878770][ T5610] which belongs to the cache inode_cache of size 1168
[ 76.892917][ T5610] The buggy address is located 456 bytes inside of
[ 76.892917][ T5610] freed 1168-byte region [ffff888074ebf7b0, ffff888074ebfc40)
[ 76.906890][ T5610]
[ 76.909314][ T5610] The buggy address belongs to the physical page:
[ 76.915995][ T5610] page:ffffea0001d3af00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x74ebc
[ 76.926315][ T5610] head:ffffea0001d3af00 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 76.935328][ T5610] anon flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 76.943964][ T5610] raw: 00fff00000010200 ffff8881400088c0 0000000000000000 0000000000000001
[ 76.952542][ T5610] raw: 0000000000000000 00000000000c000c 00000001ffffffff 0000000000000000
[ 76.961120][ T5610] page dumped because: kasan: bad access detected
[ 76.967527][ T5610] page_owner tracks the page as allocated
[ 76.973336][ T5610] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 5080, tgid 5080 (syz-executor.0), ts 52692430319, free_ts 14675015751
[ 76.996678][ T5610] get_page_from_freelist+0x3792/0x3910
[ 77.002226][ T5610] __alloc_pages+0x291/0x7f0
[ 77.006914][ T5610] alloc_slab_page+0x6a/0x160
[ 77.011588][ T5610] new_slab+0x84/0x2f0
[ 77.015702][ T5610] ___slab_alloc+0xa07/0x1000
[ 77.020387][ T5610] kmem_cache_alloc_lru+0x1ad/0x270
[ 77.026449][ T5610] new_inode_pseudo+0x75/0x180
[ 77.031271][ T5610] new_inode+0x1e/0x1b0
[ 77.035423][ T5610] debugfs_create_dir+0xd6/0x440
[ 77.040360][ T5610] ieee80211_debugfs_add_netdev+0x14d/0xf60
[ 77.046511][ T5610] ieee80211_if_add+0x8c7/0x1640
[ 77.051447][ T5610] ieee80211_register_hw+0x2a5d/0x3860
[ 77.056995][ T5610] mac80211_hwsim_new_radio+0x21ba/0x3c80
[ 77.062715][ T5610] hwsim_new_radio_nl+0xc93/0xf90
[ 77.067741][ T5610] genl_rcv_msg+0xa9b/0xe20
[ 77.072249][ T5610] netlink_rcv_skb+0x1dd/0x3d0
[ 77.077017][ T5610] page last free stack trace:
[ 77.081690][ T5610] free_unref_page_prepare+0xf0e/0xf70
[ 77.087324][ T5610] free_unref_page+0x37/0x3f0
[ 77.092040][ T5610] free_contig_range+0x9e/0x150
[ 77.096898][ T5610] destroy_args+0xe2/0x760
[ 77.101325][ T5610] debug_vm_pgtable+0x3eb/0x460
[ 77.106277][ T5610] do_one_initcall+0x1c4/0x710
[ 77.111314][ T5610] do_initcall_level+0x125/0x1b0
[ 77.116386][ T5610] do_initcalls+0x56/0xa0
[ 77.120719][ T5610] kernel_init_freeable+0x37f/0x500
[ 77.126091][ T5610] kernel_init+0x18/0x1a0
[ 77.130431][ T5610] ret_from_fork+0x1f/0x30
[ 77.134934][ T5610]
[ 77.137282][ T5610] Memory state around the buggy address:
[ 77.142925][ T5610] ffff888074ebf800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 77.151161][ T5610] ffff888074ebf880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 77.159483][ T5610] >ffff888074ebf900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 77.167631][ T5610] ^
[ 77.175701][ T5610] ffff888074ebf980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 77.183967][ T5610] ffff888074ebfa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 77.192128][ T5610] ==================================================================
[ 77.243671][ T5610] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 77.250995][ T5610] CPU: 0 PID: 5610 Comm: syz-executor.0 Not tainted 6.2.0-syzkaller #0
[ 77.259320][ T5610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023
[ 77.269909][ T5610] Call Trace:
[ 77.273195][ T5610]
[ 77.276128][ T5610] dump_stack_lvl+0x12e/0x1d0
[ 77.281409][ T5610] ? nf_tcp_handle_invalid+0x4e0/0x4e0
[ 77.286864][ T5610] ? panic+0x500/0x500
[ 77.290929][ T5610] ? lock_release+0x106/0xa80
[ 77.295707][ T5610] panic+0x1f2/0x500
[ 77.299607][ T5610] ? memcpy_page_flushcache+0xe0/0xe0
[ 77.305503][ T5610] ? _raw_spin_unlock_irqrestore+0x114/0x120
[ 77.311498][ T5610] ? _raw_spin_unlock+0x40/0x40
[ 77.316357][ T5610] check_panic_on_warn+0x58/0x70
[ 77.321484][ T5610] ? ext4_find_extent+0x7a2/0xcd0
[ 77.326507][ T5610] end_report+0xbb/0x170
[ 77.330753][ T5610] kasan_report+0xdb/0x100
[ 77.335257][ T5610] ? ext4_find_extent+0x7a2/0xcd0
[ 77.340286][ T5610] ext4_find_extent+0x7a2/0xcd0
[ 77.345135][ T5610] ? ext4_es_scan_range+0x230/0x230
[ 77.350337][ T5610] ext4_clu_mapped+0xd0/0x7c0
[ 77.355044][ T5610] ? ext4_es_lookup_extent+0x395/0xa00
[ 77.360477][ T5610] ? __down_read_common+0x184/0x2c0
[ 77.365811][ T5610] ext4_da_get_block_prep+0x8b3/0x1110
[ 77.371274][ T5610] ? ext4_da_release_space+0x540/0x540
[ 77.376791][ T5610] ? __rwlock_init+0x150/0x150
[ 77.381525][ T5610] ? ext4_block_write_begin+0x24f/0xd30
[ 77.387131][ T5610] ? __lock_acquire+0x1f80/0x1f80
[ 77.392215][ T5610] ? do_raw_spin_unlock+0x13b/0x8b0
[ 77.397385][ T5610] ext4_block_write_begin+0x3f9/0xd30
[ 77.402760][ T5610] ? ext4_da_release_space+0x540/0x540
[ 77.408465][ T5610] ? ext4_iomap_swap_activate+0x10/0x10
[ 77.414085][ T5610] ext4_da_write_begin+0x4dc/0x830
[ 77.419606][ T5610] ? ext4_dirty_folio+0x200/0x200
[ 77.424764][ T5610] ? fault_in_iov_iter_readable+0xc5/0x220
[ 77.430560][ T5610] generic_perform_write+0x2b6/0x500
[ 77.435919][ T5610] ? generic_file_direct_write+0x520/0x520
[ 77.441699][ T5610] ? clear_nonspinnable+0x60/0x60
[ 77.446698][ T5610] ? ext4_write_checks+0x1c7/0x210
[ 77.451847][ T5610] ext4_buffered_write_iter+0xf5/0x2e0
[ 77.457301][ T5610] ext4_file_write_iter+0x199/0x14e0
[ 77.464212][ T5610] ? ext4_file_read_iter+0x4a0/0x4a0
[ 77.469523][ T5610] ? common_file_perm+0x12f/0x180
[ 77.474610][ T5610] vfs_write+0x7be/0xb10
[ 77.478831][ T5610] ? file_end_write+0x1c0/0x1c0
[ 77.483827][ T5610] ? do_futex+0x23b/0x470
[ 77.488144][ T5610] ? mutex_lock_nested+0x1b/0x20
[ 77.493069][ T5610] ? __fdget_pos+0x1ba/0x240
[ 77.497738][ T5610] ksys_write+0x122/0x200
[ 77.502215][ T5610] ? __ia32_sys_read+0x80/0x80
[ 77.506951][ T5610] ? syscall_enter_from_user_mode+0x32/0x2c0
[ 77.512908][ T5610] ? lockdep_hardirqs_on+0x90/0x130
[ 77.518091][ T5610] ? syscall_enter_from_user_mode+0x32/0x2c0
[ 77.524038][ T5610] do_syscall_64+0x41/0xc0
[ 77.528432][ T5610] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 77.534402][ T5610] RIP: 0033:0x7f2e0be8c0a9
[ 77.538790][ T5610] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 77.558404][ T5610] RSP: 002b:00007f2e0ccb5168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 77.566877][ T5610] RAX: ffffffffffffffda RBX: 00007f2e0bfabf80 RCX: 00007f2e0be8c0a9
[ 77.574911][ T5610] RDX: 00000000175d9003 RSI: 0000000020000200 RDI: 0000000000000004
[ 77.583030][ T5610] RBP: 00007f2e0bee7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 77.590986][ T5610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 77.598929][ T5610] R13: 00007ffe9fa6b28f R14: 00007f2e0ccb5300 R15: 0000000000022000
[ 77.607281][ T5610]
[ 77.610448][ T5610] Kernel Offset: disabled
[ 77.614763][ T5610] Rebooting in 86400 seconds..