Warning: Permanently added '10.128.1.5' (ED25519) to the list of known hosts.
2025/02/04 13:51:09 ignoring optional flag "sandboxArg"="0"
2025/02/04 13:51:09 ignoring optional flag "type"="gce"
2025/02/04 13:51:10 parsed 1 programs
[   46.566451][   T24] kauditd_printk_skb: 16 callbacks suppressed
[   46.566467][   T24] audit: type=1400 audit(1738677070.110:92): avc:  denied  { unlink } for  pid=447 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   46.615750][  T447] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.653116][   T24] audit: type=1400 audit(1738677070.200:93): avc:  denied  { mounton } for  pid=451 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=509 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   47.057576][  T483] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.064917][  T483] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.072212][  T483] device bridge_slave_0 entered promiscuous mode
[   47.079293][  T483] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.086131][  T483] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.093422][  T483] device bridge_slave_1 entered promiscuous mode
[   47.130965][  T483] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.137913][  T483] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.145060][  T483] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.151817][  T483] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.169570][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   47.177055][  T190] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.184157][  T190] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.194573][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   47.202606][  T190] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.209543][  T190] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.216833][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   47.225295][  T190] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.232170][  T190] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.243107][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   47.252269][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   47.265453][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   47.276280][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   47.284425][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   47.291859][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   47.299724][  T483] device veth0_vlan entered promiscuous mode
[   47.310016][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.318960][  T483] device veth1_macvtap entered promiscuous mode
[   47.328415][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.338249][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/02/04 13:51:10 executed programs: 0
[   47.497020][  T497] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.503928][  T497] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.511526][  T497] device bridge_slave_0 entered promiscuous mode
[   47.518216][  T497] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.525304][  T497] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.532509][  T497] device bridge_slave_1 entered promiscuous mode
[   47.574325][  T497] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.581195][  T497] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.588251][  T497] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.595150][  T497] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.616547][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   47.624267][  T190] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.631704][  T190] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.644732][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   47.652842][  T190] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.659700][  T190] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.668200][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   47.676422][  T190] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.683296][  T190] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.701025][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   47.710044][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   47.723257][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   47.740131][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   47.747999][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   47.755534][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   47.764227][  T497] device veth0_vlan entered promiscuous mode
[   47.778379][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.787474][  T497] device veth1_macvtap entered promiscuous mode
[   47.797108][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.809995][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   47.818090][  T190] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.870179][  T502] ======================================================
[   47.870179][  T502] WARNING: the mand mount option is being deprecated and
[   47.870179][  T502]          will be removed in v5.15!
[   47.870179][  T502] ======================================================
[   47.879126][   T24] audit: type=1400 audit(1738677071.420:94): avc:  denied  { mounton } for  pid=501 comm="syz-executor" path="/root/syzkaller-testdir4142028972/syzkaller.duyt2K/0/file1" dev="sda1" ino=1937 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   47.934692][  T502] EXT4-fs (loop0): 1 orphan inode deleted
[   47.940506][  T502] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   47.959503][  T502] ext4 filesystem being mounted at /root/syzkaller-testdir4142028972/syzkaller.duyt2K/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.959598][   T24] audit: type=1400 audit(1738677071.510:95): avc:  denied  { mount } for  pid=501 comm="syz-executor" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   47.991419][  T509] EXT4-fs error (device loop0): ext4_ext_remove_space:2839: inode #16: comm syz-executor: path[1].p_hdr == NULL
[   47.996054][   T24] audit: type=1400 audit(1738677071.520:96): avc:  denied  { write } for  pid=501 comm="syz-executor" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   48.008279][  T509] EXT4-fs (loop0): Remounting filesystem read-only
[   48.035740][  T509] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   48.048739][  T509] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   48.057985][   T24] audit: type=1400 audit(1738677071.520:97): avc:  denied  { add_name } for  pid=501 comm="syz-executor" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   48.058002][   T24] audit: type=1400 audit(1738677071.520:98): avc:  denied  { create } for  pid=501 comm="syz-executor" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.058021][   T24] audit: type=1400 audit(1738677071.520:99): avc:  denied  { write open } for  pid=501 comm="syz-executor" path="/root/syzkaller-testdir4142028972/syzkaller.duyt2K/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.058037][   T24] audit: type=1400 audit(1738677071.520:100): avc:  denied  { read } for  pid=501 comm="syz-executor" name="bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.058056][   T24] audit: type=1400 audit(1738677071.520:101): avc:  denied  { mounton } for  pid=501 comm="syz-executor" path="/root/syzkaller-testdir4142028972/syzkaller.duyt2K/0/file1/bus" dev="loop0" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.173731][  T509] EXT4-fs error (device loop0): ext4_punch_hole:4229: inode #16: comm syz-executor: mark_inode_dirty error
[   48.188905][  T497] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   48.336581][  T512] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.343482][  T512] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.351070][  T512] device bridge_slave_0 entered promiscuous mode
[   48.360825][  T512] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.367740][  T512] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.375275][  T512] device bridge_slave_1 entered promiscuous mode
[   48.414018][  T512] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.420877][  T512] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.428047][  T512] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.434872][  T512] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.456221][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   48.464171][  T508] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.471770][  T508] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.480819][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   48.488990][  T508] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.495996][  T508] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.504806][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   48.512946][  T508] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.519804][  T508] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.533548][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   48.543450][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   48.558051][  T508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   48.569475][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   48.577308][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   48.585166][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   48.595105][  T512] device veth0_vlan entered promiscuous mode
[   48.604715][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   48.613877][  T512] device veth1_macvtap entered promiscuous mode
[   48.623228][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   48.634926][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   48.711018][  T517] EXT4-fs (loop0): 1 orphan inode deleted
[   48.716557][  T517] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   48.735491][  T517] ext4 filesystem being mounted at /root/syzkaller-testdir2973887570/syzkaller.IbKkfj/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   48.755899][  T521] EXT4-fs error (device loop0): ext4_free_blocks:5685: comm syz-executor: Freeing blocks not in datazone - block = 41, count = 1
[   48.770244][  T521] EXT4-fs (loop0): Remounting filesystem read-only
[   48.776674][  T521] ==================================================================
[   48.784590][  T521] BUG: KASAN: out-of-bounds in ext4_ext_remove_space+0x1fbc/0x4e10
[   48.792407][  T521] Read of size 18446744073709551604 at addr ffff888123212018 by task syz-executor/521
[   48.801864][  T521] 
[   48.804037][  T521] CPU: 1 PID: 521 Comm: syz-executor Not tainted 5.10.233-syzkaller-1006618-gfbe98d68b6b3 #0
[   48.814105][  T521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   48.824007][  T521] Call Trace:
[   48.827144][  T521]  dump_stack_lvl+0x1e2/0x24b
[   48.831663][  T521]  ? bfq_pos_tree_add_move+0x43b/0x43b
[   48.837102][  T521]  ? panic+0x812/0x812
[   48.841008][  T521]  print_address_description+0x81/0x3b0
[   48.846389][  T521]  kasan_report+0x179/0x1c0
[   48.850729][  T521]  ? ext4_ext_remove_space+0x1fbc/0x4e10
[   48.856199][  T521]  ? ext4_ext_remove_space+0x1fbc/0x4e10
[   48.861664][  T521]  kasan_check_range+0x293/0x2a0
[   48.866434][  T521]  ? ext4_ext_remove_space+0x1fbc/0x4e10
[   48.871995][  T521]  memmove+0x2d/0x70
[   48.875726][  T521]  ext4_ext_remove_space+0x1fbc/0x4e10
[   48.881025][  T521]  ? _raw_spin_trylock_bh+0x190/0x190
[   48.886229][  T521]  ? _raw_write_lock+0xa4/0x170
[   48.890913][  T521]  ? ext4_ext_index_trans_blocks+0x120/0x120
[   48.896724][  T521]  ? ext4_es_remove_extent+0x297/0x460
[   48.902020][  T521]  ? ext4_zero_partial_blocks+0x1e5/0x220
[   48.907575][  T521]  ext4_punch_hole+0x720/0xb10
[   48.912183][  T521]  ext4_fallocate+0x2e8/0x1cc0
[   48.916862][  T521]  ? _copy_from_user+0x96/0xd0
[   48.921466][  T521]  ? ext4_ext_truncate+0x200/0x200
[   48.926407][  T521]  ? fsnotify_perm+0x67/0x4e0
[   48.931009][  T521]  ? security_file_permission+0x7b/0xb0
[   48.936391][  T521]  ? preempt_count_add+0x92/0x1a0
[   48.941252][  T521]  vfs_fallocate+0x492/0x570
[   48.945683][  T521]  __x64_sys_fallocate+0xc0/0x110
[   48.950632][  T521]  do_syscall_64+0x34/0x70
[   48.954930][  T521]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   48.960614][  T521] RIP: 0033:0x7f7d4597bf69
[   48.964864][  T521] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   48.984579][  T521] RSP: 002b:00007f7d454dd0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[   48.992956][  T521] RAX: ffffffffffffffda RBX: 00007f7d45ab3050 RCX: 00007f7d4597bf69
[   49.000904][  T521] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 0000000000000004
[   49.008802][  T521] RBP: 00007f7d459d96fe R08: 0000000000000000 R09: 0000000000000000
[   49.016618][  T521] R10: 0000000000001a00 R11: 0000000000000246 R12: 0000000000000000
[   49.024424][  T521] R13: 000000000000000b R14: 00007f7d45ab3050 R15: 00007ffc1318b278
[   49.032235][  T521] 
[   49.034397][  T521] The buggy address belongs to the page:
[   49.039893][  T521] page:ffffea00048c8480 refcount:2 mapcount:0 mapping:ffff888109302490 index:0x27 pfn:0x123212
[   49.050032][  T521] aops:def_blk_aops ino:0
[   49.054403][  T521] flags: 0x4000000000002036(referenced|uptodate|lru|active|private)
[   49.062295][  T521] raw: 4000000000002036 ffffea00048c1308 ffff888105db6030 ffff888109302490
[   49.070729][  T521] raw: 0000000000000027 ffff888122e11a80 00000002ffffffff ffff88810ca44000
[   49.079277][  T521] page dumped because: kasan: bad access detected
[   49.085640][  T521] page->mem_cgroup:ffff88810ca44000
[   49.090677][  T521] page_owner tracks the page as allocated
[   49.096239][  T521] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 517, ts 48754267588, free_ts 48290205035
[   49.113156][  T521]  prep_new_page+0x166/0x180
[   49.117601][  T521]  get_page_from_freelist+0x2d8c/0x2f30
[   49.122952][  T521]  __alloc_pages_nodemask+0x435/0xaf0
[   49.128256][  T521]  pagecache_get_page+0x669/0x950
[   49.133122][  T521]  __getblk_gfp+0x221/0x7e0
[   49.137457][  T521]  ext4_ext_insert_extent+0xf33/0x4c30
[   49.142748][  T521]  ext4_split_extent_at+0x84a/0x1240
[   49.147874][  T521]  ext4_split_extent+0x1bd/0x4e0
[   49.152653][  T521]  ext4_ext_map_blocks+0x2206/0x6ee0
[   49.157763][  T521]  ext4_map_blocks+0xa65/0x1d10
[   49.162537][  T521]  _ext4_get_block+0x21b/0x610
[   49.167142][  T521]  ext4_get_block_unwritten+0x2a/0x40
[   49.172404][  T521]  ext4_block_write_begin+0x61e/0x13b0
[   49.177637][  T521]  ext4_write_begin+0x6fa/0x1730
[   49.182508][  T521]  ext4_da_write_begin+0x49d/0xf60
[   49.187449][  T521]  generic_perform_write+0x2cd/0x570
[   49.192664][  T521] page last free stack trace:
[   49.197303][  T521]  free_unref_page_prepare+0x2ae/0x2d0
[   49.202592][  T521]  free_unref_page_list+0x122/0xb20
[   49.207626][  T521]  release_pages+0xea0/0xef0
[   49.212048][  T521]  __pagevec_release+0x84/0x100
[   49.216737][  T521]  shmem_undo_range+0x7d1/0x1a60
[   49.221517][  T521]  shmem_evict_inode+0x215/0x9d0
[   49.226282][  T521]  evict+0x526/0x9c0
[   49.230018][  T521]  iput+0x632/0x7e0
[   49.233662][  T521]  dentry_unlink_inode+0x2ea/0x3d0
[   49.238607][  T521]  __dentry_kill+0x447/0x650
[   49.243035][  T521]  dentry_kill+0xc0/0x2a0
[   49.247197][  T521]  dput+0x40/0x80
[   49.250679][  T521]  __fput+0x52e/0x7b0
[   49.254493][  T521]  ____fput+0x15/0x20
[   49.258313][  T521]  task_work_run+0x129/0x190
[   49.262736][  T521]  do_exit+0xc83/0x2a50
[   49.266812][  T521] 
[   49.268993][  T521] Memory state around the buggy address:
[   49.274541][  T521]  ffff888123211f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   49.282442][  T521]  ffff888123211f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   49.290346][  T521] >ffff888123212000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   49.298228][  T521]                             ^
[   49.302924][  T521]  ffff888123212080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   49.310829][  T521]  ffff888123212100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   49.318802][  T521] ==================================================================
[   49.326783][  T521] Disabling lock debugging due to kernel taint
[   49.338683][  T521] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   49.352228][  T521] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   49.362136][    T7] device bridge_slave_1 left promiscuous mode
[   49.362189][  T521] EXT4-fs error (device loop0): __ext4_ext_dirty:182: inode #16: comm syz-executor: mark_inode_dirty error
[   49.368078][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.379687][  T521] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   49.399784][  T521] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   49.399802][    T7] device bridge_slave_0 left promiscuous mode
[   49.415287][  T521] EXT4-fs error (device loop0): ext4_punch_hole:4229: inode #16: comm syz-executor: mark_inode_dirty error
[   49.415566][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.432447][  T512] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   49.448135][    T7] device veth1_macvtap left promiscuous mode
[   49.454202][    T7] device veth0_vlan left promiscuous mode
[   49.778428][  T523] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.785798][  T523] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.793196][  T523] device bridge_slave_0 entered promiscuous mode
[   49.800300][  T523] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.807249][  T523] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.814502][  T523] device bridge_slave_1 entered promiscuous mode
[   49.851975][  T523] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.858835][  T523] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.865950][  T523] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.872732][  T523] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.890481][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   49.897935][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.905213][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.915368][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   49.923517][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.930383][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.951665][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   49.959829][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.966668][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.974121][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   49.982619][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   49.992315][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   50.004883][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   50.012797][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   50.020149][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   50.028122][  T523] device veth0_vlan entered promiscuous mode
[   50.037867][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   50.046879][  T523] device veth1_macvtap entered promiscuous mode
[   50.062010][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   50.071753][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   50.121014][  T529] EXT4-fs (loop0): 1 orphan inode deleted
[   50.126560][  T529] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   50.145437][  T529] ext4 filesystem being mounted at /root/syzkaller-testdir3684734176/syzkaller.Y6t3sJ/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   50.166754][  T533] EXT4-fs error (device loop0): ext4_ext_remove_space:2839: inode #16: comm syz-executor: path[1].p_hdr == NULL
[   50.178727][  T533] EXT4-fs (loop0): Remounting filesystem read-only
[   50.185278][  T533] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   50.198168][  T533] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   50.207558][  T533] EXT4-fs error (device loop0): ext4_punch_hole:4229: inode #16: comm syz-executor: mark_inode_dirty error
[   50.223753][  T523] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   50.406581][  T536] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.413587][  T536] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.421142][  T536] device bridge_slave_0 entered promiscuous mode
[   50.430509][  T536] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.437441][  T536] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.444973][  T536] device bridge_slave_1 entered promiscuous mode
[   50.470992][    T7] device bridge_slave_1 left promiscuous mode
[   50.476961][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.484225][    T7] device bridge_slave_0 left promiscuous mode
[   50.490421][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.497973][    T7] device bridge_slave_1 left promiscuous mode
[   50.504181][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.511567][    T7] device bridge_slave_0 left promiscuous mode
[   50.517486][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.525357][    T7] device veth1_macvtap left promiscuous mode
[   50.531298][    T7] device veth0_vlan left promiscuous mode
[   50.536989][    T7] device veth1_macvtap left promiscuous mode
[   50.543128][    T7] device veth0_vlan left promiscuous mode
[   50.704525][  T536] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.711643][  T536] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.718703][  T536] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.725555][  T536] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.743788][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   50.751473][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.758453][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.767228][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   50.775354][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.782297][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   50.790869][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   50.798859][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.805707][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   50.817782][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   50.827005][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   50.840833][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   50.852138][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   50.860132][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   50.867326][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   50.875430][  T536] device veth0_vlan entered promiscuous mode
[   50.885482][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   50.894393][  T536] device veth1_macvtap entered promiscuous mode
[   50.903782][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   50.914383][  T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   50.970994][  T541] EXT4-fs (loop0): 1 orphan inode deleted
[   50.976546][  T541] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   50.995339][  T541] ext4 filesystem being mounted at /root/syzkaller-testdir3159897793/syzkaller.CYKqeQ/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.016041][  T545] EXT4-fs error (device loop0): ext4_ext_remove_space:2839: inode #16: comm syz-executor: path[1].p_hdr == NULL
[   51.028025][  T545] EXT4-fs (loop0): Remounting filesystem read-only
[   51.034459][  T545] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   51.047502][  T545] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   51.057017][  T545] EXT4-fs error (device loop0): ext4_punch_hole:4229: inode #16: comm syz-executor: mark_inode_dirty error
[   51.075442][  T536] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   51.290835][  T547] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.297786][  T547] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.305330][  T547] device bridge_slave_0 entered promiscuous mode
[   51.313823][  T547] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.320668][  T547] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.327927][  T547] device bridge_slave_1 entered promiscuous mode
[   51.377974][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   51.385440][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.395586][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   51.403949][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.412171][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.419004][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.426381][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   51.436606][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   51.445025][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.453026][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.460054][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.472303][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.482911][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.496882][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.507895][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.516065][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.523672][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.533833][  T547] device veth0_vlan entered promiscuous mode
[   51.544075][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.552998][  T547] device veth1_macvtap entered promiscuous mode
[   51.563723][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   51.571979][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.581301][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   51.589476][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.629719][    T7] device bridge_slave_1 left promiscuous mode
[   51.635686][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.643175][    T7] device bridge_slave_0 left promiscuous mode
[   51.649379][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.651548][  T553] EXT4-fs (loop0): 1 orphan inode deleted
[   51.661845][  T553] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   51.680592][  T553] ext4 filesystem being mounted at /root/syzkaller-testdir3872707534/syzkaller.cvJnpi/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.680690][    T7] device veth1_macvtap left promiscuous mode
[   51.702685][    T7] device veth0_vlan left promiscuous mode
[   51.708392][  T557] EXT4-fs error (device loop0): ext4_ext_remove_space:2839: inode #16: comm syz-executor: path[1].p_hdr == NULL
[   51.720329][  T557] EXT4-fs (loop0): Remounting filesystem read-only
[   51.726750][  T557] EXT4-fs error (device loop0): __ext4_get_inode_loc:4437: comm syz-executor: Invalid inode table block 0 in block_group 0
[   51.739661][  T557] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5900: Corrupt filesystem
[   51.749230][  T557] EXT4-fs error (device loop0): ext4_punch_hole:4229: inode #16: comm syz-executor: mark_inode_dirty error
[   51.770238][  T547] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[   51.900691][  T559] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.907540][  T559] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.915269][  T559] device bridge_slave_0 entered promiscuous mode
[   51.922235][  T559] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.929126][  T559] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.936232][  T559] device bridge_slave_1 entered promiscuous mode
[   51.972906][  T559] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.979774][  T559] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.986844][  T559] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.993676][  T559] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.015594][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   52.023181][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   52.030563][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   52.050246][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   52.058282][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   52.065311][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   52.072685][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   52.080726][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   52.087550][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   52.094853][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   52.102617][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   52.114098][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   52.124994][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   52.132964][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   52.140509][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   52.150240][  T559] device veth0_vlan entered promiscuous mode
[   52.160100][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   52.169259][  T559] device veth1_macvtap entered promiscuous mode
[   52.178245][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   52.194298][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   52.241555][  T564] EXT4-fs (loop0): 1 orphan inode deleted
[   52.247223][  T564] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,noquota,init_itable,stripe=0x0000000000000079,resgid=0x0000000000000000,sysvgroups,delalloc,usrquota,
[   52.266126][  T564] ext4 filesystem being mounted at /root/syzkaller-testdir3913046899/syzkaller.t22dsV/0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   52.287538][  T568] EXT4-fs error (device loop0): ext4_free_blocks:5685: comm syz-executor: Freeing blocks not in datazone - block = 41, count = 1
[   52.301080][  T568] EXT4-fs (loop0): Remounting filesystem read-only
[   52.342056][    T1] general protection fault, probably for non-canonical address 0xc6da2fa434d1a59: 0000 [#1] PREEMPT SMP KASAN
[   52.353529][    T1] CPU: 0 PID: 1 Comm: init Tainted: G    B             5.10.233-syzkaller-1006618-gfbe98d68b6b3 #0
[   52.364101][    T1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   52.374010][    T1] RIP: 0010:kmem_cache_alloc+0x115/0x2e0
[   52.379469][    T1] Code: 8b 38 48 85 ff 0f 84 b2 00 00 00 48 83 78 10 00 0f 84 a7 00 00 00 41 8b 44 24 28 48 8d 0c 07 49 8b 9c 24 d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 89 d1 48 83 c1 08 4d 8b 04 24 48 89 f8 65
[   52.399183][    T1] RSP: 0018:ffffc90000017d18 EFLAGS: 00010286
[   52.405090][    T1] RAX: 0000000000000340 RBX: 0c1922d9c2c5e8e6 RCX: 591a4d43faa26d0c
[   52.412885][    T1] RDX: 0000000000003748 RSI: 0000000000000340 RDI: 0c6da2fa434d1719
[   52.420714][    T1] RBP: ffffc90000017d60 R08: ffffffff83bc7c38 R09: 0000000000000003
[   52.428505][    T1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888107d94780
[   52.436318][    T1] R13: ffffffff83bd814b R14: 0000000000000cc0 R15: 0000000000000cc0
[   52.444139][    T1] FS:  00007f2d74ac4380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   52.452905][    T1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.459404][    T1] CR2: 000000002004007f CR3: 000000010c291000 CR4: 00000000003506b0
[   52.467228][    T1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.475033][    T1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.482838][    T1] Call Trace:
[   52.485979][    T1]  ? __die_body+0x62/0xb0
[   52.490227][    T1]  ? die_addr+0x9f/0xd0
[   52.494305][    T1]  ? exc_general_protection+0x3ff/0x490
[   52.499688][    T1]  ? asm_exc_general_protection+0x1e/0x30
[   52.505239][    T1]  ? sock_alloc_inode+0x1b/0xb0
[   52.509933][    T1]  ? __sock_create+0xe8/0x760
[   52.514454][    T1]  ? kmem_cache_alloc+0x115/0x2e0
[   52.519323][    T1]  ? kmem_cache_alloc+0x3d/0x2e0
[   52.524079][    T1]  ? sock_alloc_inode+0x1b/0xb0
[   52.528777][    T1]  ? sockfs_init_fs_context+0xb0/0xb0
[   52.533974][    T1]  sock_alloc_inode+0x1b/0xb0
[   52.538485][    T1]  ? sockfs_init_fs_context+0xb0/0xb0
[   52.543782][    T1]  new_inode_pseudo+0x64/0x220
[   52.548371][    T1]  __sock_create+0x135/0x760
[   52.552807][    T1]  ? blkcg_maybe_throttle_current+0x17d/0x9e0
[   52.558701][    T1]  __sys_socket+0x132/0x370
[   52.563040][    T1]  ? sock_create_kern+0x50/0x50
[   52.567868][    T1]  ? ____fput+0x15/0x20
[   52.571868][    T1]  ? debug_smp_processor_id+0x17/0x20
[   52.577062][    T1]  __x64_sys_socket+0x7a/0x90
[   52.581581][    T1]  do_syscall_64+0x34/0x70
[   52.585841][    T1]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.591549][    T1] RIP: 0033:0x7f2d74c26bd7
[   52.595816][    T1] Code: 73 01 c3 48 8b 0d 51 c2 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 21 c2 0c 00 f7 d8 64 89 01 48
[   52.615473][    T1] RSP: 002b:00007ffd3bd00ce8 EFLAGS: 00000202 ORIG_RAX: 0000000000000029
[   52.623841][    T1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2d74c26bd7
[   52.631760][    T1] RDX: 0000000000000000 RSI: 0000000000080002 RDI: 0000000000000001
[   52.639560][    T1] RBP: 0000000000000002 R08: 0000000000000000 R09: cbf6d3d9025e6bb4
[   52.647373][    T1] R10: 0000000000000008 R11: 0000000000000202 R12: 00007f2d74cb2bc0
[   52.655465][    T1] R13: 00007f2d74db4212 R14: 00007ffd3bd00e18 R15: 0000000000000000
[   52.663261][    T1] Modules linked in:
[   52.677664][    T1] ---[ end trace 89e3009d973ec997 ]---
[   52.683020][    T1] RIP: 0010:kmem_cache_alloc+0x115/0x2e0
[   52.688572][    T1] Code: 8b 38 48 85 ff 0f 84 b2 00 00 00 48 83 78 10 00 0f 84 a7 00 00 00 41 8b 44 24 28 48 8d 0c 07 49 8b 9c 24 d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 89 d1 48 83 c1 08 4d 8b 04 24 48 89 f8 65
[   52.709108][    T1] RSP: 0018:ffffc90000017d18 EFLAGS: 00010286
[   52.715028][    T1] RAX: 0000000000000340 RBX: 0c1922d9c2c5e8e6 RCX: 591a4d43faa26d0c
[   52.723306][    T1] RDX: 0000000000003748 RSI: 0000000000000340 RDI: 0c6da2fa434d1719
[   52.731389][    T1] RBP: ffffc90000017d60 R08: ffffffff83bc7c38 R09: 0000000000000003
[   52.732047][    T7] general protection fault, probably for non-canonical address 0xe272d0d000000000: 0000 [#2] PREEMPT SMP KASAN
[   52.739531][    T1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888107d94780
[   52.750717][    T7] KASAN: maybe wild-memory-access in range [0x1396a68000000000-0x1396a68000000007]
[   52.750732][    T7] CPU: 1 PID: 7 Comm: kworker/u4:0 Tainted: G    B D           5.10.233-syzkaller-1006618-gfbe98d68b6b3 #0
[   52.750739][    T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   52.750762][    T7] Workqueue: netns cleanup_net
[   52.758817][    T1] R13: ffffffff83bd814b R14: 0000000000000cc0 R15: 0000000000000cc0
[   52.767720][    T7] 
[   52.767737][    T7] RIP: 0010:rb_erase+0x6ba/0xd90
[   52.767756][    T7] Code: 3c 03 00 74 08 4c 89 e7 e8 d3 6e 36 ff 48 8b 5d d0 49 89 1c 24 48 83 cb 01 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 0e 4c 89 f7 49 89 cc e8 a5 6e 36 ff 4c 89 e1 49 89
[   52.779650][    T1] FS:  00007f2d74ac4380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   52.788832][    T7] RSP: 0018:ffffc90000077630 EFLAGS: 00010206
[   52.793667][    T1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.801230][    T7] 
[   52.801243][    T7] RAX: 0272d4d000000000 RBX: ffff888118971699 RCX: dffffc0000000000
[   52.801251][    T7] RDX: 0000000000000000 RSI: ffff8881059b9ee8 RDI: ffff888119f13430
[   52.801259][    T7] RBP: ffffc90000077690 R08: ffffffff81d37386 R09: ffffed102000b3ef
[   52.801275][    T7] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88812340d020
[   52.804003][    T1] CR2: 000000002004007f CR3: 000000010c291000 CR4: 00000000003506b0
[   52.808303][    T7] R13: ffff88812340d018 R14: 1396a68000000000 R15: 1ffff11024681a03
[   52.828250][    T1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.836850][    T7] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   52.836859][    T7] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.836867][    T7] CR2: 00000000fffffffe CR3: 000000010a829000 CR4: 00000000003506a0
[   52.836883][    T7] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.843477][    T1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.849714][    T7] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.849718][    T7] Call Trace:
[   52.849737][    T7]  ? __die_body+0x62/0xb0
[   52.849755][    T7]  ? die_addr+0x9f/0xd0
[   52.852308][    T1] Kernel panic - not syncing: Fatal exception
[   52.859744][    T7]  ? exc_general_protection+0x3ff/0x490
[   52.976713][    T7]  ? asm_exc_general_protection+0x1e/0x30
[   52.982343][    T7]  ? __kernfs_remove+0x6c6/0x9d0
[   52.987115][    T7]  ? rb_erase+0x6ba/0xd90
[   52.991281][    T7]  ? kernfs_drain_open_files+0x317/0x440
[   52.996752][    T7]  __kernfs_remove+0x774/0x9d0
[   53.001350][    T7]  ? kernfs_iop_rename+0x550/0x550
[   53.006300][    T7]  ? __kasan_check_write+0x14/0x20
[   53.011240][    T7]  ? down_write+0xd7/0x150
[   53.015496][    T7]  ? kernfs_find_ns+0x457/0x4a0
[   53.020191][    T7]  kernfs_remove_by_name_ns+0xec/0x160
[   53.025675][    T7]  sysfs_delete_link+0x108/0x130
[   53.030426][    T7]  device_remove_class_symlinks+0x1b5/0x1c0
[   53.036149][    T7]  device_del+0x43c/0xf00
[   53.040318][    T7]  ? kill_device+0xd0/0xd0
[   53.044571][    T7]  ? __kasan_check_write+0x14/0x20
[   53.049524][    T7]  ? mutex_unlock+0x1c/0x40
[   53.053859][    T7]  ? pm_runtime_set_memalloc_noio+0x21f/0x270
[   53.059763][    T7]  netdev_unregister_kobject+0x18a/0x250
[   53.065336][    T7]  unregister_netdevice_many+0x1276/0x17d0
[   53.071221][    T7]  ? alloc_netdev_mqs+0xcd0/0xcd0
[   53.076174][    T7]  ? unregister_netdevice_queue+0x258/0x350
[   53.081888][    T7]  ? list_netdevice+0x4c0/0x4c0
[   53.086578][    T7]  ? unregister_netdevice_queue+0x258/0x350
[   53.092306][    T7]  ? list_netdevice+0x4c0/0x4c0
[   53.097003][    T7]  ip_tunnel_delete_nets+0x33b/0x380
[   53.102304][    T7]  ? ip_tunnel_bind_dev+0x880/0x880
[   53.107324][    T7]  ? xfrmi6_err+0x640/0x640
[   53.111664][    T7]  ? __kasan_check_read+0x11/0x20
[   53.116523][    T7]  vti_exit_batch_net+0x22/0x30
[   53.121223][    T7]  ? vti_init_net+0x140/0x140
[   53.125982][    T7]  cleanup_net+0x6e9/0xcb0
[   53.130240][    T7]  ? __kasan_check_write+0x14/0x20
[   53.135180][    T7]  ? ops_init+0x4a0/0x4a0
[   53.139351][    T7]  ? read_word_at_a_time+0x12/0x20
[   53.144293][    T7]  ? strscpy+0x9c/0x260
[   53.148286][    T7]  process_one_work+0x6dc/0xbd0
[   53.152978][    T7]  worker_thread+0xaea/0x1510
[   53.157505][    T7]  kthread+0x34b/0x3d0
[   53.161389][    T7]  ? worker_clr_flags+0x180/0x180
[   53.166251][    T7]  ? kthread_blkcg+0xd0/0xd0
[   53.170676][    T7]  ret_from_fork+0x1f/0x30
[   53.174929][    T7] Modules linked in:
[   53.178914][    T1] Kernel Offset: disabled
[   53.183052][    T1] Rebooting in 86400 seconds..