Warning: Permanently added '10.128.1.187' (ED25519) to the list of known hosts. 2024/02/20 00:42:59 ignoring optional flag "sandboxArg"="0" 2024/02/20 00:43:00 parsed 1 programs 2024/02/20 00:43:00 executed programs: 0 [ 48.797076][ T1503] loop0: detected capacity change from 0 to 2048 [ 48.820438][ T1503] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 48.836285][ T1503] ================================================================== [ 48.844799][ T1503] BUG: KASAN: slab-out-of-bounds in ext4_read_inline_data+0x1e0/0x290 [ 48.853329][ T1503] Read of size 20 at addr ffff888105dbf1a3 by task syz-executor.0/1503 [ 48.862180][ T1503] [ 48.864479][ T1503] CPU: 1 PID: 1503 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller #0 [ 48.873026][ T1503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 48.883223][ T1503] Call Trace: [ 48.886576][ T1503] [ 48.889490][ T1503] dump_stack_lvl+0x41/0x5e [ 48.894219][ T1503] print_address_description.constprop.0.cold+0x6c/0x309 [ 48.901328][ T1503] ? ext4_read_inline_data+0x1e0/0x290 [ 48.906939][ T1503] ? ext4_read_inline_data+0x1e0/0x290 [ 48.912674][ T1503] kasan_report.cold+0x83/0xdf [ 48.917866][ T1503] ? ext4_read_inline_data+0x1e0/0x290 [ 48.923399][ T1503] kasan_check_range+0x13d/0x180 [ 48.928395][ T1503] memcpy+0x20/0x60 [ 48.932347][ T1503] ext4_read_inline_data+0x1e0/0x290 [ 48.937617][ T1503] ext4_convert_inline_data_nolock+0xe2/0xbd0 [ 48.944135][ T1503] ? ext4_convert_inline_data+0x2ad/0x4e0 [ 48.950550][ T1503] ? ext4_prepare_inline_data+0x1b0/0x1b0 [ 48.956745][ T1503] ? down_write+0xc8/0x130 [ 48.961493][ T1503] ? down_write_killable_nested+0x160/0x160 [ 48.967634][ T1503] ? ext4_journal_check_start+0x46/0x1d0 [ 48.973712][ T1503] ? __ext4_journal_start_sb+0x226/0x2e0 [ 48.979489][ T1503] ext4_convert_inline_data+0x419/0x4e0 [ 48.985191][ T1503] ? ext4_inline_data_truncate+0xa00/0xa00 [ 48.991239][ T1503] ? down_write_killable_nested+0x160/0x160 [ 48.998455][ T1503] ? lock_acquire+0x11a/0x230 [ 49.003243][ T1503] ? aa_path_link+0x2e0/0x2e0 [ 49.007975][ T1503] ext4_fallocate+0x13f/0x2d60 [ 49.012860][ T1503] ? __lock_acquire.constprop.0+0x478/0xb30 [ 49.018900][ T1503] ? ext4_ext_truncate+0x1c0/0x1c0 [ 49.023978][ T1503] ? lock_acquire+0x11a/0x230 [ 49.028887][ T1503] ? __x64_sys_fallocate+0xb0/0x100 [ 49.034054][ T1503] vfs_fallocate+0x2a8/0xa40 [ 49.038698][ T1503] __x64_sys_fallocate+0xb0/0x100 [ 49.043693][ T1503] do_syscall_64+0x35/0x80 [ 49.048252][ T1503] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 49.054201][ T1503] RIP: 0033:0x7f937d95c959 [ 49.058593][ T1503] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 49.078442][ T1503] RSP: 002b:00007f937d4df0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 49.086827][ T1503] RAX: ffffffffffffffda RBX: 00007f937da7bf80 RCX: 00007f937d95c959 [ 49.095109][ T1503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 49.104030][ T1503] RBP: 00007f937d9b8c88 R08: 0000000000000000 R09: 0000000000000000 [ 49.112075][ T1503] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000000 [ 49.120203][ T1503] R13: 0000000000000006 R14: 00007f937da7bf80 R15: 00007ffc56ab5408 [ 49.128155][ T1503] [ 49.131323][ T1503] [ 49.133707][ T1503] Allocated by task 1: [ 49.138090][ T1503] kasan_save_stack+0x1b/0x40 [ 49.143356][ T1503] __kasan_slab_alloc+0x61/0x80 [ 49.148184][ T1503] kmem_cache_alloc+0x211/0x310 [ 49.153006][ T1503] __kernfs_new_node+0xc7/0x6c0 [ 49.158868][ T1503] kernfs_new_node+0x77/0x160 [ 49.163616][ T1503] __kernfs_create_file+0x27/0x2e0 [ 49.168706][ T1503] sysfs_add_file_mode_ns+0x1aa/0x4b0 [ 49.174053][ T1503] sysfs_create_file_ns+0x10b/0x190 [ 49.179581][ T1503] device_add+0x320/0x1b30 [ 49.184139][ T1503] __acpi_device_add+0x4f7/0xb30 [ 49.189159][ T1503] acpi_add_single_object+0x9a1/0x16e0 [ 49.194696][ T1503] acpi_bus_check_add+0x154/0x480 [ 49.199927][ T1503] acpi_ns_walk_namespace+0x1d5/0x4d0 [ 49.205268][ T1503] acpi_walk_namespace+0xb6/0xe0 [ 49.210372][ T1503] acpi_bus_scan+0x115/0x150 [ 49.214931][ T1503] acpi_scan_init+0x27f/0x62f [ 49.219830][ T1503] acpi_init+0x6ec/0x77b [ 49.224123][ T1503] do_one_initcall+0xb4/0x2e0 [ 49.228938][ T1503] kernel_init_freeable+0x519/0x57b [ 49.234110][ T1503] kernel_init+0x14/0x120 [ 49.238405][ T1503] ret_from_fork+0x1f/0x30 [ 49.242788][ T1503] [ 49.245089][ T1503] The buggy address belongs to the object at ffff888105dbf0e8 [ 49.245089][ T1503] which belongs to the cache kernfs_node_cache of size 168 [ 49.259931][ T1503] The buggy address is located 19 bytes to the right of [ 49.259931][ T1503] 168-byte region [ffff888105dbf0e8, ffff888105dbf190) [ 49.274133][ T1503] The buggy address belongs to the page: [ 49.279753][ T1503] page:ffffea0004176fc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x105dbf [ 49.290128][ T1503] flags: 0x200000000000200(slab|node=0|zone=2) [ 49.296338][ T1503] raw: 0200000000000200 0000000000000000 dead000000000122 ffff888100140a00 [ 49.305320][ T1503] raw: 0000000000000000 0000000000110011 00000001ffffffff 0000000000000000 [ 49.314226][ T1503] page dumped because: kasan: bad access detected [ 49.320601][ T1503] page_owner tracks the page as allocated [ 49.326282][ T1503] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, ts 1721478996, free_ts 0 [ 49.341341][ T1503] get_page_from_freelist+0x166f/0x2910 [ 49.346853][ T1503] __alloc_pages+0x2b3/0x590 [ 49.351405][ T1503] alloc_page_interleave+0xf/0x160 [ 49.356481][ T1503] allocate_slab+0x2eb/0x430 [ 49.361124][ T1503] ___slab_alloc+0xb1c/0xf80 [ 49.365676][ T1503] kmem_cache_alloc+0x2d7/0x310 [ 49.370580][ T1503] __kernfs_new_node+0xc7/0x6c0 [ 49.375485][ T1503] kernfs_create_dir_ns+0x80/0x260 [ 49.380660][ T1503] sysfs_create_dir_ns+0x116/0x260 [ 49.385783][ T1503] kobject_add_internal+0x281/0x920 [ 49.391034][ T1503] kobject_add+0x120/0x190 [ 49.395414][ T1503] device_add+0x2df/0x1b30 [ 49.399889][ T1503] __acpi_device_add+0x4f7/0xb30 [ 49.404789][ T1503] acpi_add_single_object+0x9a1/0x16e0 [ 49.410478][ T1503] acpi_bus_check_add+0x154/0x480 [ 49.415465][ T1503] acpi_ns_walk_namespace+0x1d5/0x4d0 [ 49.421061][ T1503] page_owner free stack trace missing [ 49.426394][ T1503] [ 49.428775][ T1503] Memory state around the buggy address: [ 49.434719][ T1503] ffff888105dbf080: 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 [ 49.442749][ T1503] ffff888105dbf100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 49.450795][ T1503] >ffff888105dbf180: 00 00 fc fc fc fc fc fc fc fc 00 00 00 00 00 00 [ 49.459107][ T1503] ^ [ 49.464627][ T1503] ffff888105dbf200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc [ 49.472776][ T1503] ffff888105dbf280: fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 00 [ 49.481355][ T1503] ================================================================== [ 49.489385][ T1503] Disabling lock debugging due to kernel taint [ 49.495799][ T1503] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 49.503385][ T1503] Kernel Offset: disabled [ 49.508113][ T1503] Rebooting in 86400 seconds..