Warning: Permanently added '10.128.10.36' (ED25519) to the list of known hosts. 2023/08/07 20:51:06 ignoring optional flag "sandboxArg"="0" 2023/08/07 20:51:06 parsed 1 programs 2023/08/07 20:51:06 executed programs: 0 [ 60.347794][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.355471][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.521174][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.530028][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.567562][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.586542][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.746374][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 60.754951][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 60.812734][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 60.822474][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 60.830940][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 60.839527][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 60.851388][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.859583][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.885174][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.926666][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 60.934305][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 60.976567][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 60.984822][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 60.993064][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 61.008976][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.036702][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.045296][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.072389][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.091665][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.101407][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.122592][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.132759][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.157488][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.165810][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.215350][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.235243][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.251733][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.261519][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.271966][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.280401][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.288825][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.297570][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.306161][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.315256][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.337407][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.346659][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.355476][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 61.364942][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 61.374853][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.383946][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.392728][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.401472][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.429916][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.451414][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.466698][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.482844][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.500568][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 61.516679][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 61.529245][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 61.537970][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 61.546130][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.554630][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 61.565071][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 61.596561][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 63.470692][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 63.496886][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.515910][ T2266] device veth0_vlan entered promiscuous mode [ 63.538004][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.547211][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.561532][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.576766][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.690536][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 63.707232][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.743004][ T2280] device veth0_vlan entered promiscuous mode [ 63.757430][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.766158][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.787352][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.795288][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.809059][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 63.817959][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.833632][ T2285] device veth0_vlan entered promiscuous mode [ 63.868237][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.887030][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.895351][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 63.906417][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 63.915133][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 63.923507][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 63.935071][ T2281] device veth0_vlan entered promiscuous mode [ 63.948956][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.957048][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.976584][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 63.988698][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 63.999884][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 64.008684][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 64.033050][ T2269] device veth0_vlan entered promiscuous mode [ 64.049217][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 64.060773][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 64.078387][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 64.086025][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 64.128872][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 64.156851][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 64.170075][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 64.186920][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 64.218244][ T2273] device veth0_vlan entered promiscuous mode [ 64.230044][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 64.239235][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 64.976149][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.006742][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.327325][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.336073][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.362088][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.406697][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.420927][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.435009][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.590168][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.606793][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.657808][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 65.669632][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 65.706670][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 65.729005][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 65.771493][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 65.786980][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 66.046094][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.055283][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.064578][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.087243][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 66.112084][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.136709][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.190763][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.206700][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 66.243525][ T2115] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.269508][ T2115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.309593][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.326732][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 66.456326][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.465511][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.496816][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.507088][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 66.542126][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 66.567412][ T92] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 66.601234][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 66.621179][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 67.136908][ T3338] loop2: detected capacity change from 0 to 65536 [ 67.217643][ T3338] XFS (loop2): Deprecated V4 format (crc=0) will not be supported after September 2030. [ 67.267801][ T3338] XFS (loop2): Mounting V4 Filesystem [ 67.285855][ T3338] XFS (loop2): totally zeroed log [ 67.299426][ T3338] XFS (loop2): Ending clean mount [ 67.317525][ T3338] XFS (loop2): Quotacheck needed: Please wait. [ 67.365013][ T3338] XFS (loop2): Quotacheck: Done. [ 67.381172][ T3338] xfs filesystem being mounted at /root/syzkaller-testdir1393022209/syzkaller.6YY29Q/0/file0 supports timestamps until 2038 (0x7fffffff) 2023/08/07 20:51:19 executed programs: 6 [ 67.458307][ T2266] XFS (loop2): Unmounting Filesystem [ 67.478976][ T2266] syz-executor.2: attempt to access beyond end of device [ 67.478976][ T2266] loop2: rw=432129, sector=65536, nr_sectors = 64 limit=65536 [ 67.511023][ T3369] loop0: detected capacity change from 0 to 65536 [ 67.523379][ T46] XFS (loop2): log I/O error -5 [ 67.528558][ T46] XFS (loop2): Filesystem has been shut down due to log error (0x2). [ 67.548708][ T46] XFS (loop2): Please unmount the filesystem and rectify the problem(s). [ 67.557862][ T46] ================================================================== [ 67.566716][ T46] BUG: KASAN: use-after-free in __lock_acquire+0x8d/0xb70 [ 67.574024][ T46] Read of size 8 at addr ffff88806e25cc60 by task kworker/0:1H/46 [ 67.582000][ T46] [ 67.584411][ T46] CPU: 0 PID: 46 Comm: kworker/0:1H Not tainted 6.1.43-syzkaller #0 [ 67.592390][ T46] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 67.602807][ T46] Workqueue: xfs-log/loop2 xlog_ioend_work [ 67.609242][ T46] Call Trace: [ 67.612526][ T46] [ 67.615468][ T46] dump_stack_lvl+0xf4/0x251 [ 67.620504][ T46] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 67.625973][ T46] ? panic+0x406/0x406 [ 67.630045][ T46] ? _printk+0xca/0x10a [ 67.634290][ T46] print_report+0x15f/0x4f0 [ 67.638978][ T46] ? __lock_acquire+0x8d/0xb70 [ 67.643842][ T46] kasan_report+0x136/0x160 [ 67.648484][ T46] ? __lock_acquire+0x8d/0xb70 [ 67.653345][ T46] __lock_acquire+0x8d/0xb70 [ 67.658029][ T46] ? do_raw_spin_unlock+0x137/0x8a0 [ 67.663903][ T46] lock_acquire+0x1a2/0x390 [ 67.668501][ T46] ? xfs_trans_committed_bulk+0xcf/0x670 [ 67.674225][ T46] ? read_lock_is_recursive+0x10/0x10 [ 67.679601][ T46] ? __lock_acquire+0x607/0xb70 [ 67.685693][ T46] _raw_spin_lock+0x2a/0x40 [ 67.690301][ T46] ? xfs_trans_committed_bulk+0xcf/0x670 [ 67.695933][ T46] xfs_trans_committed_bulk+0xcf/0x670 [ 67.701395][ T46] ? xfs_trans_del_item+0xf0/0xf0 [ 67.704082][ T3373] loop1: detected capacity change from 0 to 65536 [ 67.706405][ T46] ? do_raw_spin_unlock+0x137/0x8a0 [ 67.706423][ T46] ? do_raw_spin_unlock+0x137/0x8a0 [ 67.706431][ T46] xlog_cil_committed+0x24a/0xb90 [ 67.706441][ T46] ? xlog_cil_process_committed+0x180/0x180 [ 67.706447][ T46] ? xlog_state_shutdown_callbacks+0x297/0x390 [ 67.706453][ T46] ? __lock_acquire+0xb70/0xb70 [ 67.706459][ T46] xlog_cil_process_committed+0x144/0x180 [ 67.706465][ T46] xlog_state_shutdown_callbacks+0x29f/0x390 [ 67.706471][ T46] ? xlog_assign_tail_lsn+0x80/0x80 [ 67.706477][ T46] xlog_force_shutdown+0x282/0x2d0 [ 67.706483][ T46] xlog_ioend_work+0x92/0xe0 [ 67.706489][ T46] process_one_work+0x746/0xea0 [ 67.706498][ T46] ? worker_detach_from_pool+0x240/0x240 [ 67.722842][ T3369] XFS (loop0): Mounting V4 Filesystem [ 67.723245][ T46] ? __rwlock_init+0x140/0x140 [ 67.767784][ T3369] XFS (loop0): totally zeroed log [ 67.772478][ T46] ? wq_worker_sleeping+0x19/0x1f0 [ 67.772492][ T46] worker_thread+0x806/0xe60 [ 67.772502][ T46] kthread+0x1e8/0x240 [ 67.791775][ T3369] XFS (loop0): Ending clean mount [ 67.793212][ T46] ? rcu_lock_release+0x20/0x20 [ 67.793227][ T46] ? kthread_blkcg+0xa0/0xa0 [ 67.793234][ T46] ret_from_fork+0x1f/0x30 [ 67.793244][ T46] [ 67.793247][ T46] [ 67.793250][ T46] Allocated by task 3338: [ 67.793254][ T46] kasan_set_track+0x4b/0x70 [ 67.818781][ T3380] loop3: detected capacity change from 0 to 65536 [ 67.821898][ T46] __kasan_kmalloc+0x97/0xb0 [ 67.821911][ T46] __kmalloc+0xa6/0x1c0 [ 67.821919][ T46] kmem_alloc+0xbf/0x300 [ 67.821924][ T46] xfs_trans_ail_init+0x1c/0x230 [ 67.829471][ T3369] XFS (loop0): Quotacheck needed: Please wait. [ 67.831191][ T46] xfs_log_mount+0x229/0x550 [ 67.831203][ T46] xfs_mountfs+0x990/0x16b0 [ 67.831210][ T46] xfs_fs_fill_super+0xb3e/0xe70 [ 67.831216][ T46] get_tree_bdev+0x3c7/0x5f0 [ 67.873177][ T3369] XFS (loop0): Quotacheck: Done. [ 67.876861][ T46] vfs_get_tree+0x7a/0x170 [ 67.876877][ T46] do_new_mount+0x1e1/0x8f0 [ 67.876883][ T46] __se_sys_mount+0x23e/0x2d0 [ 67.876888][ T46] do_syscall_64+0x3d/0xb0 [ 67.876895][ T46] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 67.882267][ T3369] xfs filesystem being mounted at /root/syzkaller-testdir2668799547/syzkaller.xD2ps6/0/file0 supports timestamps until 2038 (0x7fffffff) [ 67.886218][ T46] [ 67.886222][ T46] Freed by task 2266: [ 67.886226][ T46] kasan_set_track+0x4b/0x70 [ 67.886236][ T46] kasan_save_free_info+0x27/0x40 [ 67.886242][ T46] ____kasan_slab_free+0x122/0x1e0 [ 67.886248][ T46] __kmem_cache_free+0x283/0x440 [ 67.886255][ T46] xfs_log_unmount+0x49/0xc0 [ 67.886261][ T46] xfs_unmountfs+0x10b/0x1c0 [ 67.886267][ T46] xfs_fs_put_super+0x67/0x2a0 [ 67.886272][ T46] generic_shutdown_super+0x107/0x2c0 [ 67.886278][ T46] kill_block_super+0x75/0xb0 [ 67.886284][ T46] deactivate_locked_super+0x71/0xd0 [ 67.934838][ T3373] XFS (loop1): Mounting V4 Filesystem [ 67.938809][ T46] cleanup_mnt+0x2bd/0x330 [ 67.938823][ T46] task_work_run+0x206/0x280 [ 67.938831][ T46] exit_to_user_mode_loop+0xa4/0xb0 [ 67.938838][ T46] exit_to_user_mode_prepare+0x6c/0xc0 [ 67.938843][ T46] syscall_exit_to_user_mode+0x27/0x1c0 [ 67.938850][ T46] do_syscall_64+0x49/0xb0 [ 67.938855][ T46] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 67.944580][ T3380] XFS (loop3): Mounting V4 Filesystem [ 67.945115][ T46] [ 67.945119][ T46] The buggy address belongs to the object at ffff88806e25cc00 [ 67.945119][ T46] which belongs to the cache kmalloc-256 of size 256 [ 67.964312][ T3373] XFS (loop1): totally zeroed log [ 67.965147][ T46] The buggy address is located 96 bytes inside of [ 67.965147][ T46] 256-byte region [ffff88806e25cc00, ffff88806e25cd00) [ 67.965157][ T46] [ 67.965159][ T46] The buggy address belongs to the physical page: [ 67.965164][ T46] page:ffffea0001b89700 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6e25c [ 67.965172][ T46] head:ffffea0001b89700 order:1 compound_mapcount:0 compound_pincount:0 [ 67.965177][ T46] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 67.965187][ T46] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff88800a841b40 [ 67.975755][ T3373] XFS (loop1): Ending clean mount [ 67.979777][ T46] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 67.979781][ T46] page dumped because: kasan: bad access detected [ 67.979785][ T46] page_owner tracks the page as allocated [ 67.979787][ T46] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 2, tgid 2 (kthreadd), ts 67176680977, free_ts 67035581782 [ 67.979800][ T46] post_alloc_hook+0x286/0x2b0 [ 67.979811][ T46] get_page_from_freelist+0x3100/0x32a0 [ 67.979817][ T46] __alloc_pages+0x251/0x640 [ 67.992334][ T3380] XFS (loop3): totally zeroed log [ 67.995440][ T46] alloc_slab_page+0x6a/0x150 [ 67.995454][ T46] new_slab+0x70/0x250 [ 68.008132][ T3373] XFS (loop1): Quotacheck needed: Please wait. [ 68.009778][ T46] ___slab_alloc+0x8cf/0xd50 [ 68.009792][ T46] __kmem_cache_alloc_node+0x195/0x250 [ 68.009799][ T46] kmalloc_trace+0x26/0xc0 [ 68.018329][ T3380] XFS (loop3): Ending clean mount [ 68.020399][ T46] set_kthread_struct+0x76/0x170 [ 68.020412][ T46] copy_process+0xfbe/0x3710 [ 68.020418][ T46] kernel_clone+0x18b/0x660 [ 68.074374][ T3389] loop4: detected capacity change from 0 to 65536 [ 68.076696][ T46] kernel_thread+0x14d/0x1d0 [ 68.076709][ T46] kthreadd+0x466/0x5e0 [ 68.076715][ T46] ret_from_fork+0x1f/0x30 [ 68.076722][ T46] page last free stack trace: [ 68.076725][ T46] free_unref_page_prepare+0xd4b/0xee0 [ 68.076732][ T46] free_unref_page+0x9a/0x500 [ 68.076738][ T46] qlist_free_all+0x22/0x60 [ 68.076745][ T46] kasan_quarantine_reduce+0x162/0x190 [ 68.113404][ T3391] loop5: detected capacity change from 0 to 65536 [ 68.120677][ T46] __kasan_slab_alloc+0x1f/0x70 [ 68.120691][ T46] slab_post_alloc_hook+0x51/0x390 [ 68.120699][ T46] kmem_cache_alloc+0x10c/0x290 [ 68.120706][ T46] getname_flags+0x9c/0x430 [ 68.120711][ T46] __se_sys_newfstatat+0xd7/0x790 [ 68.120717][ T46] do_syscall_64+0x3d/0xb0 [ 68.120723][ T46] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 68.120730][ T46] [ 68.120733][ T46] Memory state around the buggy address: [ 68.120737][ T46] ffff88806e25cb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 68.120741][ T46] ffff88806e25cb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 68.120745][ T46] >ffff88806e25cc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.120747][ T46] ^ [ 68.120751][ T46] ffff88806e25cc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 68.120755][ T46] ffff88806e25cd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 68.120757][ T46] ================================================================== [ 68.120761][ T46] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 68.121024][ T46] Kernel Offset: disabled [ 68.401828][ T46] Rebooting in 86400 seconds..