Warning: Permanently added '10.128.10.21' (ED25519) to the list of known hosts.
2025/01/31 10:09:22 ignoring optional flag "sandboxArg"="0"
2025/01/31 10:09:22 parsed 1 programs
[  102.563354][ T6250] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  106.661082][ T6316] chnl_net:caif_netlink_parms(): no params data found
[  106.722305][ T6316] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.729730][ T6316] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.737284][ T6316] bridge_slave_0: entered allmulticast mode
[  106.747097][ T6316] bridge_slave_0: entered promiscuous mode
[  106.754587][ T6316] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.762361][ T6316] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.770836][ T6316] bridge_slave_1: entered allmulticast mode
[  106.777919][ T6316] bridge_slave_1: entered promiscuous mode
[  106.804907][ T6316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.816854][ T6316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.839693][ T6316] team0: Port device team_slave_0 added
[  106.848653][ T6316] team0: Port device team_slave_1 added
[  106.870192][ T6316] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.877288][ T6316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.904333][ T6316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.917055][ T6316] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.924172][ T6316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.950379][ T6316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.984977][ T6316] hsr_slave_0: entered promiscuous mode
[  106.991139][ T6316] hsr_slave_1: entered promiscuous mode
[  107.525358][ T6316] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  107.542121][ T6316] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  107.551854][ T6316] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  107.561541][ T6316] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  107.596442][ T6316] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.603595][ T6316] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.611048][ T6316] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.618251][ T6316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.647925][ T1146] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.658040][ T1146] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.703794][ T6316] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.739202][ T6316] 8021q: adding VLAN 0 to HW filter on device team0
[  107.751935][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.759128][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.774960][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.782079][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.969150][ T6316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.011228][ T6316] veth0_vlan: entered promiscuous mode
[  108.026886][ T6316] veth1_vlan: entered promiscuous mode
[  108.055160][ T6316] veth0_macvtap: entered promiscuous mode
[  108.065932][ T6316] veth1_macvtap: entered promiscuous mode
[  108.086329][ T6316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.102084][ T6316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.113547][ T6316] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.123974][ T6316] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.132734][ T6316] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.142503][ T6316] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.312944][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  108.327943][   T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.335005][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  108.347764][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  108.357025][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  108.365024][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  108.372427][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  108.417343][   T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.470588][   T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.545889][   T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.740256][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.751898][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.793706][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.803706][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/01/31 10:09:33 executed programs: 0
[  109.726755][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  109.737758][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  109.746689][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  109.756132][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  109.764783][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  109.772089][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  109.953764][ T6458] chnl_net:caif_netlink_parms(): no params data found
[  110.033248][ T6458] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.041840][ T6458] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.049297][ T6458] bridge_slave_0: entered allmulticast mode
[  110.057063][ T6458] bridge_slave_0: entered promiscuous mode
[  110.066712][ T6458] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.074088][ T6458] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.081437][ T6458] bridge_slave_1: entered allmulticast mode
[  110.088701][ T6458] bridge_slave_1: entered promiscuous mode
[  110.123235][ T6458] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.142479][ T6458] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.179839][ T6458] team0: Port device team_slave_0 added
[  110.189766][ T6458] team0: Port device team_slave_1 added
[  110.222723][ T6458] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.230436][ T6458] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.260389][ T6458] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.273561][ T6458] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.281032][ T6458] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.309530][ T6458] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.357899][ T6458] hsr_slave_0: entered promiscuous mode
[  110.367218][ T6458] hsr_slave_1: entered promiscuous mode
[  110.373556][ T6458] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  110.382244][ T6458] Cannot create hsr debugfs directory
[  111.157684][   T63] bridge_slave_1: left allmulticast mode
[  111.163402][   T63] bridge_slave_1: left promiscuous mode
[  111.172201][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.186020][   T63] bridge_slave_0: left allmulticast mode
[  111.191926][   T63] bridge_slave_0: left promiscuous mode
[  111.200978][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.543505][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  111.555498][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  111.566469][   T63] bond0 (unregistering): Released all slaves
[  111.688912][   T63] hsr_slave_0: left promiscuous mode
[  111.695571][   T63] hsr_slave_1: left promiscuous mode
[  111.701441][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.709686][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  111.720638][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.728469][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.743780][   T63] veth1_macvtap: left promiscuous mode
[  111.749435][   T63] veth0_macvtap: left promiscuous mode
[  111.755258][   T63] veth1_vlan: left promiscuous mode
[  111.760576][   T63] veth0_vlan: left promiscuous mode
[  111.804068][   T54] Bluetooth: hci0: command tx timeout
[  112.058088][   T63] team0 (unregistering): Port device team_slave_1 removed
[  112.088131][   T63] team0 (unregistering): Port device team_slave_0 removed
[  112.538049][ T6458] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  112.553673][ T6458] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  112.567293][ T6458] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  112.579005][ T6458] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  112.811296][ T6458] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.856358][ T6458] 8021q: adding VLAN 0 to HW filter on device team0
[  112.875904][ T3503] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.883129][ T3503] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.921531][ T3503] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.928734][ T3503] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.212621][ T6458] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.273132][ T6458] veth0_vlan: entered promiscuous mode
[  113.319278][ T6458] veth1_vlan: entered promiscuous mode
[  113.383235][ T6458] veth0_macvtap: entered promiscuous mode
[  113.398305][ T6458] veth1_macvtap: entered promiscuous mode
[  113.422366][ T6458] batman_adv: batadv0: Interface activated: batadv_slave_0
[  113.437660][ T6458] batman_adv: batadv0: Interface activated: batadv_slave_1
[  113.450976][ T6458] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  113.461617][ T6458] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  113.473402][ T6458] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  113.484118][ T6458] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  113.578465][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.599351][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.626186][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.635208][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.884030][   T54] Bluetooth: hci0: command tx timeout
[  114.034991][ T6602] loop0: detected capacity change from 0 to 32768
[  114.058070][ T6602] ==================================================================
[  114.066193][ T6602] BUG: KASAN: use-after-free in __ocfs2_find_path+0x203/0x7e0
[  114.073799][ T6602] Read of size 4 at addr ffff888068489000 by task syz.0.15/6602
[  114.081452][ T6602] 
[  114.083816][ T6602] CPU: 1 UID: 0 PID: 6602 Comm: syz.0.15 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  114.083835][ T6602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  114.083849][ T6602] Call Trace:
[  114.083855][ T6602]  <TASK>
[  114.083861][ T6602]  dump_stack_lvl+0x241/0x360
[  114.083891][ T6602]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.083911][ T6602]  ? __pfx__printk+0x10/0x10
[  114.083931][ T6602]  ? _printk+0xd5/0x120
[  114.083948][ T6602]  ? __virt_addr_valid+0x183/0x530
[  114.083969][ T6602]  ? __virt_addr_valid+0x183/0x530
[  114.083989][ T6602]  print_report+0x169/0x550
[  114.084008][ T6602]  ? __virt_addr_valid+0x183/0x530
[  114.084028][ T6602]  ? __virt_addr_valid+0x183/0x530
[  114.084047][ T6602]  ? __virt_addr_valid+0x45f/0x530
[  114.084065][ T6602]  ? __phys_addr+0xba/0x170
[  114.084085][ T6602]  ? __ocfs2_find_path+0x203/0x7e0
[  114.084104][ T6602]  kasan_report+0x143/0x180
[  114.084122][ T6602]  ? __ocfs2_find_path+0x203/0x7e0
[  114.084143][ T6602]  __ocfs2_find_path+0x203/0x7e0
[  114.084164][ T6602]  ? __pfx_find_leaf_ins+0x10/0x10
[  114.084183][ T6602]  ? __pfx___ocfs2_find_path+0x10/0x10
[  114.084211][ T6602]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[  114.084233][ T6602]  ocfs2_find_leaf+0xcf/0x230
[  114.084253][ T6602]  ? __pfx_ocfs2_find_leaf+0x10/0x10
[  114.084276][ T6602]  ocfs2_get_clusters_nocache+0x1b6/0xca0
[  114.084305][ T6602]  ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[  114.084330][ T6602]  ? ocfs2_read_inode_block+0x14c/0x1e0
[  114.084349][ T6602]  ? __pfx_ocfs2_read_inode_block+0x10/0x10
[  114.084368][ T6602]  ? do_raw_spin_unlock+0x13c/0x8b0
[  114.084389][ T6602]  ocfs2_get_clusters+0x5bd/0xbd0
[  114.084416][ T6602]  ? __pfx_ocfs2_get_clusters+0x10/0x10
[  114.084439][ T6602]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  114.084458][ T6602]  ? __pfx_lock_acquire+0x10/0x10
[  114.084476][ T6602]  ? unwind_get_return_address+0x4d/0x90
[  114.084498][ T6602]  ? arch_stack_walk+0xfd/0x150
[  114.084523][ T6602]  ocfs2_extent_map_get_blocks+0x24c/0x7d0
[  114.084550][ T6602]  ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[  114.084575][ T6602]  ? __pfx_check_noncircular+0x10/0x10
[  114.084599][ T6602]  ocfs2_read_virt_blocks+0x313/0xb10
[  114.084624][ T6602]  ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[  114.084650][ T6602]  ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[  114.084682][ T6602]  ocfs2_find_entry+0x433/0x2570
[  114.084710][ T6602]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  114.084734][ T6602]  ? mark_lock+0x2ae/0x360
[  114.084754][ T6602]  ? __lock_acquire+0x1397/0x2100
[  114.084782][ T6602]  ? format_decode+0x56c/0xca0
[  114.084798][ T6602]  ? string+0x270/0x2b0
[  114.084810][ T6602]  ? widen_string+0x3a/0x300
[  114.084825][ T6602]  ? string+0x270/0x2b0
[  114.084839][ T6602]  ? vsnprintf+0x1152/0x1220
[  114.084860][ T6602]  ocfs2_find_files_on_disk+0xff/0x360
[  114.084883][ T6602]  ocfs2_lookup_ino_from_name+0xb1/0x1e0
[  114.084906][ T6602]  ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[  114.084930][ T6602]  ? kasan_save_track+0x51/0x80
[  114.084944][ T6602]  ? kasan_save_track+0x3f/0x80
[  114.084956][ T6602]  ? __kasan_kmalloc+0x98/0xb0
[  114.084971][ T6602]  ? ocfs2_new_dlm_debug+0x97/0x200
[  114.084992][ T6602]  ocfs2_get_system_file_inode+0x305/0x7b0
[  114.085012][ T6602]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[  114.085039][ T6602]  ocfs2_init_global_system_inodes+0x32c/0x730
[  114.085058][ T6602]  ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[  114.085074][ T6602]  ? __kmalloc_cache_noprof+0x243/0x390
[  114.085093][ T6602]  ? ocfs2_new_dlm_debug+0x97/0x200
[  114.085112][ T6602]  ? ocfs2_new_dlm_debug+0xb5/0x200
[  114.085130][ T6602]  ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[  114.085150][ T6602]  ? rcu_is_watching+0x15/0xb0
[  114.085174][ T6602]  ? trace_ocfs2_initialize_super+0x9e/0x230
[  114.085191][ T6602]  ocfs2_fill_super+0x4b69/0x7200
[  114.085231][ T6602]  ? __pfx_ocfs2_fill_super+0x10/0x10
[  114.085255][ T6602]  ? __pfx_check_noncircular+0x10/0x10
[  114.085277][ T6602]  ? lockdep_unlock+0x16a/0x300
[  114.085294][ T6602]  ? __pfx_lockdep_unlock+0x10/0x10
[  114.085315][ T6602]  ? validate_chain+0x15c0/0x5920
[  114.085346][ T6602]  ? __pfx_validate_chain+0x10/0x10
[  114.085370][ T6602]  ? task_dead_fair+0x2ee/0x3c0
[  114.085391][ T6602]  ? __pfx_task_dead_fair+0x10/0x10
[  114.085417][ T6602]  ? validate_chain+0x11e/0x5920
[  114.085439][ T6602]  ? mark_lock+0x9a/0x360
[  114.085464][ T6602]  ? __pfx_validate_chain+0x10/0x10
[  114.085491][ T6602]  ? string+0x270/0x2b0
[  114.085505][ T6602]  ? widen_string+0x3a/0x300
[  114.085520][ T6602]  ? string+0x270/0x2b0
[  114.085536][ T6602]  ? bdev_name+0x2a2/0x3b0
[  114.085555][ T6602]  ? pointer+0x764/0x1210
[  114.085569][ T6602]  ? bdev_open+0x882/0xc50
[  114.085590][ T6602]  ? __pfx_lock_release+0x10/0x10
[  114.085608][ T6602]  ? __pfx_pointer+0x10/0x10
[  114.085622][ T6602]  ? mark_lock+0x9a/0x360
[  114.085643][ T6602]  ? format_decode+0x56c/0xca0
[  114.085660][ T6602]  ? vsnprintf+0x1152/0x1220
[  114.085685][ T6602]  ? snprintf+0xda/0x120
[  114.085699][ T6602]  ? __pfx_lock_release+0x10/0x10
[  114.085717][ T6602]  ? do_raw_spin_lock+0x14f/0x370
[  114.085734][ T6602]  ? __pfx_snprintf+0x10/0x10
[  114.085750][ T6602]  ? set_blocksize+0x1fc/0x360
[  114.085770][ T6602]  ? sb_set_blocksize+0x98/0xf0
[  114.085789][ T6602]  ? setup_bdev_super+0x4e6/0x5d0
[  114.085808][ T6602]  get_tree_bdev_flags+0x48c/0x5c0
[  114.085825][ T6602]  ? __pfx_ocfs2_fill_super+0x10/0x10
[  114.085847][ T6602]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  114.085864][ T6602]  ? cap_capable+0x139/0x450
[  114.085885][ T6602]  ? safesetid_security_capable+0xb2/0x1d0
[  114.085908][ T6602]  vfs_get_tree+0x90/0x2b0
[  114.085925][ T6602]  do_new_mount+0x2be/0xb40
[  114.085946][ T6602]  ? __pfx_do_new_mount+0x10/0x10
[  114.085967][ T6602]  __se_sys_mount+0x2d6/0x3c0
[  114.085988][ T6602]  ? __pfx___se_sys_mount+0x10/0x10
[  114.086007][ T6602]  ? exc_page_fault+0x590/0x8b0
[  114.086028][ T6602]  ? __x64_sys_mount+0x20/0xc0
[  114.086047][ T6602]  do_syscall_64+0xf3/0x230
[  114.086067][ T6602]  ? clear_bhb_loop+0x35/0x90
[  114.086090][ T6602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.086110][ T6602] RIP: 0033:0x7f5707d7f79a
[  114.086134][ T6602] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.086146][ T6602] RSP: 002b:00007f5708bf2e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  114.086165][ T6602] RAX: ffffffffffffffda RBX: 00007f5708bf2ef0 RCX: 00007f5707d7f79a
[  114.086177][ T6602] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f5708bf2eb0
[  114.086188][ T6602] RBP: 0000000020004440 R08: 00007f5708bf2ef0 R09: 0000000001000000
[  114.086212][ T6602] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[  114.086223][ T6602] R13: 00007f5708bf2eb0 R14: 000000000000444a R15: 00000000200005c0
[  114.086240][ T6602]  </TASK>
[  114.086246][ T6602] 
[  114.741823][ T6602] The buggy address belongs to the physical page:
[  114.748253][ T6602] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x7fd997a39 pfn:0x68489
[  114.757706][ T6602] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  114.764894][ T6602] raw: 00fff00000000000 ffffea0001a12348 ffffea00019c9ec8 0000000000000000
[  114.773557][ T6602] raw: 00000007fd997a39 0000000000000000 00000000ffffffff 0000000000000000
[  114.782183][ T6602] page dumped because: kasan: bad access detected
[  114.788598][ T6602] page_owner tracks the page as freed
[  114.793955][ T6602] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 6612, tgid 6612 (sed), ts 114033172858, free_ts 114043453495
[  114.812025][ T6602]  post_alloc_hook+0x1f4/0x240
[  114.816815][ T6602]  get_page_from_freelist+0x3651/0x37a0
[  114.822361][ T6602]  __alloc_frozen_pages_noprof+0x292/0x710
[  114.828217][ T6602]  alloc_pages_mpol+0x311/0x660
[  114.833093][ T6602]  vma_alloc_folio_noprof+0x12b/0x260
[  114.838645][ T6602]  folio_prealloc+0x2e/0x170
[  114.843226][ T6602]  __handle_mm_fault+0x3e4b/0x70f0
[  114.848334][ T6602]  handle_mm_fault+0x2c1/0x7e0
[  114.853087][ T6602]  exc_page_fault+0x459/0x8b0
[  114.857781][ T6602]  asm_exc_page_fault+0x26/0x30
[  114.862649][ T6602] page last free pid 6612 tgid 6612 stack trace:
[  114.868971][ T6602]  free_unref_folios+0xe2f/0x18a0
[  114.874034][ T6602]  folios_put_refs+0x76c/0x860
[  114.878963][ T6602]  free_pages_and_swap_cache+0x2e5/0x690
[  114.884608][ T6602]  tlb_flush_mmu+0x3a3/0x680
[  114.889192][ T6602]  tlb_finish_mmu+0xd4/0x200
[  114.893768][ T6602]  exit_mmap+0x52a/0xd40
[  114.898003][ T6602]  __mmput+0x115/0x410
[  114.902063][ T6602]  exit_mm+0x220/0x310
[  114.906309][ T6602]  do_exit+0x9ad/0x28e0
[  114.910561][ T6602]  do_group_exit+0x207/0x2c0
[  114.915167][ T6602]  __x64_sys_exit_group+0x3f/0x40
[  114.920210][ T6602]  x64_sys_call+0x26a8/0x26b0
[  114.924893][ T6602]  do_syscall_64+0xf3/0x230
[  114.929393][ T6602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.935279][ T6602] 
[  114.937608][ T6602] Memory state around the buggy address:
[  114.943244][ T6602]  ffff888068488f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  114.951299][ T6602]  ffff888068488f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  114.959441][ T6602] >ffff888068489000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  114.967491][ T6602]                    ^
[  114.971544][ T6602]  ffff888068489080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  114.979593][ T6602]  ffff888068489100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  114.987727][ T6602] ==================================================================
[  115.029860][ T6602] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  115.037190][ T6602] CPU: 1 UID: 0 PID: 6602 Comm: syz.0.15 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[  115.047362][ T6602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  115.057440][ T6602] Call Trace:
[  115.060741][ T6602]  <TASK>
[  115.063691][ T6602]  dump_stack_lvl+0x241/0x360
[  115.068407][ T6602]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.073640][ T6602]  ? __pfx__printk+0x10/0x10
[  115.078262][ T6602]  ? preempt_schedule+0xe1/0xf0
[  115.083150][ T6602]  ? vscnprintf+0x5d/0x90
[  115.087513][ T6602]  panic+0x349/0x880
[  115.091438][ T6602]  ? check_panic_on_warn+0x21/0xb0
[  115.096572][ T6602]  ? __pfx_panic+0x10/0x10
[  115.101190][ T6602]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  115.107188][ T6602]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  115.113600][ T6602]  ? print_report+0x502/0x550
[  115.118307][ T6602]  check_panic_on_warn+0x86/0xb0
[  115.123262][ T6602]  ? __ocfs2_find_path+0x203/0x7e0
[  115.128410][ T6602]  end_report+0x77/0x160
[  115.132754][ T6602]  kasan_report+0x154/0x180
[  115.137277][ T6602]  ? __ocfs2_find_path+0x203/0x7e0
[  115.142422][ T6602]  __ocfs2_find_path+0x203/0x7e0
[  115.147366][ T6602]  ? __pfx_find_leaf_ins+0x10/0x10
[  115.152485][ T6602]  ? __pfx___ocfs2_find_path+0x10/0x10
[  115.157935][ T6602]  ? __pfx_ocfs2_validate_inode_block+0x10/0x10
[  115.164191][ T6602]  ocfs2_find_leaf+0xcf/0x230
[  115.168860][ T6602]  ? __pfx_ocfs2_find_leaf+0x10/0x10
[  115.174141][ T6602]  ocfs2_get_clusters_nocache+0x1b6/0xca0
[  115.179956][ T6602]  ? __pfx_ocfs2_get_clusters_nocache+0x10/0x10
[  115.186633][ T6602]  ? ocfs2_read_inode_block+0x14c/0x1e0
[  115.192176][ T6602]  ? __pfx_ocfs2_read_inode_block+0x10/0x10
[  115.198060][ T6602]  ? do_raw_spin_unlock+0x13c/0x8b0
[  115.203282][ T6602]  ocfs2_get_clusters+0x5bd/0xbd0
[  115.208332][ T6602]  ? __pfx_ocfs2_get_clusters+0x10/0x10
[  115.213873][ T6602]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  115.220026][ T6602]  ? __pfx_lock_acquire+0x10/0x10
[  115.225052][ T6602]  ? unwind_get_return_address+0x4d/0x90
[  115.230681][ T6602]  ? arch_stack_walk+0xfd/0x150
[  115.235532][ T6602]  ocfs2_extent_map_get_blocks+0x24c/0x7d0
[  115.241339][ T6602]  ? __pfx_ocfs2_extent_map_get_blocks+0x10/0x10
[  115.247663][ T6602]  ? __pfx_check_noncircular+0x10/0x10
[  115.253640][ T6602]  ocfs2_read_virt_blocks+0x313/0xb10
[  115.259011][ T6602]  ? __pfx_ocfs2_validate_dir_block+0x10/0x10
[  115.265081][ T6602]  ? __pfx_ocfs2_read_virt_blocks+0x10/0x10
[  115.270972][ T6602]  ocfs2_find_entry+0x433/0x2570
[  115.275910][ T6602]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  115.281282][ T6602]  ? mark_lock+0x2ae/0x360
[  115.285700][ T6602]  ? __lock_acquire+0x1397/0x2100
[  115.290733][ T6602]  ? format_decode+0x56c/0xca0
[  115.295487][ T6602]  ? string+0x270/0x2b0
[  115.299632][ T6602]  ? widen_string+0x3a/0x300
[  115.304212][ T6602]  ? string+0x270/0x2b0
[  115.308357][ T6602]  ? vsnprintf+0x1152/0x1220
[  115.312940][ T6602]  ocfs2_find_files_on_disk+0xff/0x360
[  115.318399][ T6602]  ocfs2_lookup_ino_from_name+0xb1/0x1e0
[  115.324029][ T6602]  ? __pfx_ocfs2_lookup_ino_from_name+0x10/0x10
[  115.330697][ T6602]  ? kasan_save_track+0x51/0x80
[  115.335535][ T6602]  ? kasan_save_track+0x3f/0x80
[  115.340371][ T6602]  ? __kasan_kmalloc+0x98/0xb0
[  115.345124][ T6602]  ? ocfs2_new_dlm_debug+0x97/0x200
[  115.350321][ T6602]  ocfs2_get_system_file_inode+0x305/0x7b0
[  115.356123][ T6602]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[  115.362453][ T6602]  ocfs2_init_global_system_inodes+0x32c/0x730
[  115.368598][ T6602]  ? __pfx_ocfs2_init_global_system_inodes+0x10/0x10
[  115.375264][ T6602]  ? __kmalloc_cache_noprof+0x243/0x390
[  115.380807][ T6602]  ? ocfs2_new_dlm_debug+0x97/0x200
[  115.386003][ T6602]  ? ocfs2_new_dlm_debug+0xb5/0x200
[  115.391192][ T6602]  ? __pfx_ocfs2_new_dlm_debug+0x10/0x10
[  115.396814][ T6602]  ? rcu_is_watching+0x15/0xb0
[  115.401571][ T6602]  ? trace_ocfs2_initialize_super+0x9e/0x230
[  115.407543][ T6602]  ocfs2_fill_super+0x4b69/0x7200
[  115.412571][ T6602]  ? __pfx_ocfs2_fill_super+0x10/0x10
[  115.417940][ T6602]  ? __pfx_check_noncircular+0x10/0x10
[  115.423408][ T6602]  ? lockdep_unlock+0x16a/0x300
[  115.428246][ T6602]  ? __pfx_lockdep_unlock+0x10/0x10
[  115.433439][ T6602]  ? validate_chain+0x15c0/0x5920
[  115.438466][ T6602]  ? __pfx_validate_chain+0x10/0x10
[  115.443658][ T6602]  ? task_dead_fair+0x2ee/0x3c0
[  115.448501][ T6602]  ? __pfx_task_dead_fair+0x10/0x10
[  115.453722][ T6602]  ? validate_chain+0x11e/0x5920
[  115.458656][ T6602]  ? mark_lock+0x9a/0x360
[  115.463071][ T6602]  ? __pfx_validate_chain+0x10/0x10
[  115.468277][ T6602]  ? string+0x270/0x2b0
[  115.472453][ T6602]  ? widen_string+0x3a/0x300
[  115.477074][ T6602]  ? string+0x270/0x2b0
[  115.481357][ T6602]  ? bdev_name+0x2a2/0x3b0
[  115.485811][ T6602]  ? pointer+0x764/0x1210
[  115.490264][ T6602]  ? bdev_open+0x882/0xc50
[  115.494817][ T6602]  ? __pfx_lock_release+0x10/0x10
[  115.499848][ T6602]  ? __pfx_pointer+0x10/0x10
[  115.504430][ T6602]  ? mark_lock+0x9a/0x360
[  115.508762][ T6602]  ? format_decode+0x56c/0xca0
[  115.513525][ T6602]  ? vsnprintf+0x1152/0x1220
[  115.518110][ T6602]  ? snprintf+0xda/0x120
[  115.522343][ T6602]  ? __pfx_lock_release+0x10/0x10
[  115.527362][ T6602]  ? do_raw_spin_lock+0x14f/0x370
[  115.532379][ T6602]  ? __pfx_snprintf+0x10/0x10
[  115.537056][ T6602]  ? set_blocksize+0x1fc/0x360
[  115.541817][ T6602]  ? sb_set_blocksize+0x98/0xf0
[  115.546664][ T6602]  ? setup_bdev_super+0x4e6/0x5d0
[  115.551680][ T6602]  get_tree_bdev_flags+0x48c/0x5c0
[  115.556787][ T6602]  ? __pfx_ocfs2_fill_super+0x10/0x10
[  115.562169][ T6602]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  115.567813][ T6602]  ? cap_capable+0x139/0x450
[  115.572428][ T6602]  ? safesetid_security_capable+0xb2/0x1d0
[  115.578250][ T6602]  vfs_get_tree+0x90/0x2b0
[  115.582671][ T6602]  do_new_mount+0x2be/0xb40
[  115.587172][ T6602]  ? __pfx_do_new_mount+0x10/0x10
[  115.592191][ T6602]  __se_sys_mount+0x2d6/0x3c0
[  115.596873][ T6602]  ? __pfx___se_sys_mount+0x10/0x10
[  115.602159][ T6602]  ? exc_page_fault+0x590/0x8b0
[  115.607004][ T6602]  ? __x64_sys_mount+0x20/0xc0
[  115.611768][ T6602]  do_syscall_64+0xf3/0x230
[  115.616273][ T6602]  ? clear_bhb_loop+0x35/0x90
[  115.621033][ T6602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.626939][ T6602] RIP: 0033:0x7f5707d7f79a
[  115.631379][ T6602] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.651091][ T6602] RSP: 002b:00007f5708bf2e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  115.659616][ T6602] RAX: ffffffffffffffda RBX: 00007f5708bf2ef0 RCX: 00007f5707d7f79a
[  115.667587][ T6602] RDX: 0000000020004440 RSI: 0000000020000780 RDI: 00007f5708bf2eb0
[  115.675555][ T6602] RBP: 0000000020004440 R08: 00007f5708bf2ef0 R09: 0000000001000000
[  115.683515][ T6602] R10: 0000000001000000 R11: 0000000000000246 R12: 0000000020000780
[  115.691483][ T6602] R13: 00007f5708bf2eb0 R14: 000000000000444a R15: 00000000200005c0
[  115.699460][ T6602]  </TASK>
[  115.702926][ T6602] Kernel Offset: disabled
[  115.707260][ T6602] Rebooting in 86400 seconds..