Warning: Permanently added '10.128.0.145' (ED25519) to the list of known hosts.
2025/08/14 17:36:25 ignoring optional flag "sandboxArg"="0"
2025/08/14 17:36:26 parsed 1 programs
[   53.101930][   T24] kauditd_printk_skb: 27 callbacks suppressed
[   53.101943][   T24] audit: type=1400 audit(1755192987.400:101): avc:  denied  { create } for  pid=414 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.133910][   T24] audit: type=1400 audit(1755192987.400:102): avc:  denied  { write } for  pid=414 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.161888][   T24] audit: type=1400 audit(1755192987.400:103): avc:  denied  { read } for  pid=414 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.187673][   T24] audit: type=1400 audit(1755192987.440:104): avc:  denied  { unlink } for  pid=414 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   53.223628][  T414] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   53.829800][  T429] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.838354][  T429] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.847637][  T429] device bridge_slave_0 entered promiscuous mode
[   53.857490][  T429] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.866509][  T429] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.876192][  T429] device bridge_slave_1 entered promiscuous mode
[   53.916072][  T429] bridge0: port 2(bridge_slave_1) entered blocking state
[   53.925680][  T429] bridge0: port 2(bridge_slave_1) entered forwarding state
[   53.933458][  T429] bridge0: port 1(bridge_slave_0) entered blocking state
[   53.941506][  T429] bridge0: port 1(bridge_slave_0) entered forwarding state
[   53.960836][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   53.970689][  T314] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.979067][  T314] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.988768][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   53.997054][  T314] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.004201][  T314] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.013237][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.022240][  T314] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.029434][  T314] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.042060][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.051365][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   54.065484][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   54.076296][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   54.085039][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   54.092659][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   54.101409][  T429] device veth0_vlan entered promiscuous mode
[   54.111411][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   54.121861][  T429] device veth1_macvtap entered promiscuous mode
[   54.131999][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   54.143795][  T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   54.211248][   T24] audit: type=1400 audit(1755192988.510:105): avc:  denied  { create } for  pid=440 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   54.619776][   T24] audit: type=1401 audit(1755192988.920:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/08/14 17:36:29 executed programs: 0
[   54.894903][  T474] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.904012][  T474] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.913878][  T474] device bridge_slave_0 entered promiscuous mode
[   54.925014][  T474] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.934220][  T474] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.943212][  T474] device bridge_slave_1 entered promiscuous mode
[   54.981912][  T474] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.989928][  T474] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.997628][  T474] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.005701][  T474] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.025527][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.035598][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.044380][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.058184][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.069160][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.077354][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.087841][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.097243][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.108937][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.120170][   T49] device bridge_slave_1 left promiscuous mode
[   55.127714][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.136382][   T49] device bridge_slave_0 left promiscuous mode
[   55.147155][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.159734][   T49] device veth1_macvtap left promiscuous mode
[   55.166528][   T49] device veth0_vlan left promiscuous mode
[   55.259449][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.271174][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.287717][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.303005][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.311554][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.321049][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.330580][  T474] device veth0_vlan entered promiscuous mode
[   55.341280][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   55.351134][  T474] device veth1_macvtap entered promiscuous mode
[   55.360943][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   55.372553][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   55.559187][  T479] F2FS-fs (loop2): fault_injection options not supported
[   55.567863][  T479] F2FS-fs (loop2): invalid crc value
[   55.575653][  T479] F2FS-fs (loop2): Found nat_bits in checkpoint
[   55.597497][  T479] F2FS-fs (loop2): Start checkpoint disabled!
[   55.606026][  T479] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   55.615741][   T24] audit: type=1400 audit(1755192989.920:107): avc:  denied  { mount } for  pid=478 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   55.640421][   T24] audit: type=1400 audit(1755192989.920:108): avc:  denied  { write } for  pid=478 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   55.663859][   T24] audit: type=1400 audit(1755192989.920:109): avc:  denied  { add_name } for  pid=478 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   55.687615][   T24] audit: type=1400 audit(1755192989.920:110): avc:  denied  { create } for  pid=478 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   55.716156][  T314] attempt to access beyond end of device
[   55.716156][  T314] loop2: rw=2049, want=40968, limit=40427
[   56.024303][  T486] F2FS-fs (loop2): fault_injection options not supported
[   56.033406][  T486] F2FS-fs (loop2): invalid crc value
[   56.040658][  T486] F2FS-fs (loop2): Found nat_bits in checkpoint
[   56.061761][  T486] F2FS-fs (loop2): Start checkpoint disabled!
[   56.069997][  T486] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   56.125321][  T314] attempt to access beyond end of device
[   56.125321][  T314] loop2: rw=2049, want=40968, limit=40427
[   56.456044][  T491] F2FS-fs (loop2): fault_injection options not supported
[   56.466698][  T491] F2FS-fs (loop2): invalid crc value
[   56.474506][  T491] F2FS-fs (loop2): Found nat_bits in checkpoint
[   56.496286][  T491] F2FS-fs (loop2): Start checkpoint disabled!
[   56.505066][  T491] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   56.556610][   T49] attempt to access beyond end of device
[   56.556610][   T49] loop2: rw=2049, want=40968, limit=40427
[   56.837463][  T499] F2FS-fs (loop2): fault_injection options not supported
[   56.847775][  T499] F2FS-fs (loop2): invalid crc value
[   56.854917][  T499] F2FS-fs (loop2): Found nat_bits in checkpoint
[   56.879402][  T499] F2FS-fs (loop2): Start checkpoint disabled!
[   56.890767][  T499] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   56.945636][   T49] attempt to access beyond end of device
[   56.945636][   T49] loop2: rw=2049, want=40968, limit=40427
[   57.236497][  T504] F2FS-fs (loop2): fault_injection options not supported
[   57.246028][  T504] F2FS-fs (loop2): invalid crc value
[   57.252986][  T504] F2FS-fs (loop2): Found nat_bits in checkpoint
[   57.275253][  T504] F2FS-fs (loop2): Start checkpoint disabled!
[   57.284311][  T504] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   57.324958][  T504] ------------[ cut here ]------------
[   57.330651][  T504] WARNING: CPU: 1 PID: 504 at fs/f2fs/segment.c:2582 new_curseg+0xe5d/0x18a0
[   57.340021][  T504] Modules linked in:
[   57.344484][  T504] CPU: 1 PID: 504 Comm: syz.2.20 Not tainted 5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   57.354875][  T504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.366696][  T504] RIP: 0010:new_curseg+0xe5d/0x18a0
[   57.372948][  T504] Code: 0b 4c 8b bd 30 ff ff ff 4c 89 ff be 08 00 00 00 e8 78 c2 93 ff f0 41 80 0f 04 41 b5 01 45 89 f7 e9 4d fb ff ff e8 e3 d0 59 ff <0f> 0b 4c 8b a5 30 ff ff ff 4c 89 e7 be 08 00 00 00 e8 4d c2 93 ff
[   57.396991][  T504] RSP: 0018:ffffc900023c7738 EFLAGS: 00010293
[   57.403430][  T504] RAX: ffffffff8209cf8d RBX: ffff888117bc6098 RCX: ffff888118b20000
[   57.412509][  T504] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 0000000000000018
[   57.420899][  T504] RBP: ffffc900023c7828 R08: 0000000000000004 R09: 0000000000000003
[   57.429446][  T504] R10: fffff52000478ed8 R11: 1ffff92000478ed8 R12: 0000000000000018
[   57.439943][  T504] R13: 1ffff11022f78c13 R14: 0000000000000018 R15: 0000000000000010
[   57.449095][  T504] FS:  00007f135fede6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   57.458228][  T504] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.465138][  T504] CR2: 00007f8c3e5a5000 CR3: 00000001175f8000 CR4: 00000000003506a0
[   57.474412][  T504] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   57.482747][  T504] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   57.491796][  T504] Call Trace:
[   57.495386][  T504]  __allocate_new_segment+0x13d/0x810
[   57.502126][  T504]  f2fs_allocate_new_section+0x1d5/0x280
[   57.508359][  T504]  ? new_curseg+0x18a0/0x18a0
[   57.513201][  T504]  ? __kasan_check_write+0x14/0x20
[   57.518353][  T504]  ? down_read_trylock+0x100/0x150
[   57.523592][  T504]  ? __init_rwsem+0x1c0/0x1c0
[   57.528381][  T504]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   57.534167][  T504]  expand_inode_data+0x5a8/0x930
[   57.539127][  T504]  ? f2fs_insert_range+0x5b0/0x5b0
[   57.544639][  T504]  ? inode_dio_wait+0x226/0x290
[   57.551130][  T504]  ? file_update_time+0x3a2/0x400
[   57.557477][  T504]  ? inode_owner_or_capable+0x140/0x140
[   57.566445][  T504]  f2fs_fallocate+0x42b/0x7e0
[   57.571844][  T504]  vfs_fallocate+0x4b4/0x590
[   57.576864][  T504]  do_vfs_ioctl+0x12e3/0x1510
[   57.582102][  T504]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   57.589952][  T504]  ? has_cap_mac_admin+0x330/0x330
[   57.597783][  T504]  ? __kasan_slab_free+0x11/0x20
[   57.606323][  T504]  ? slab_free_freelist_hook+0xc5/0x190
[   57.613825][  T504]  ? putname+0xfe/0x150
[   57.618002][  T504]  ? selinux_file_ioctl+0x377/0x480
[   57.625539][  T504]  ? selinux_file_alloc_security+0x120/0x120
[   57.633392][  T504]  ? __fget_files+0x2c4/0x320
[   57.639508][  T504]  ? security_file_ioctl+0x84/0xa0
[   57.644809][  T504]  __se_sys_ioctl+0x9f/0x1a0
[   57.650823][  T504]  __x64_sys_ioctl+0x7b/0x90
[   57.657374][  T504]  do_syscall_64+0x31/0x40
[   57.662852][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   57.669425][  T504] RIP: 0033:0x7f136046d969
[   57.674488][  T504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.699054][  T504] RSP: 002b:00007f135fede038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.712270][  T504] RAX: ffffffffffffffda RBX: 00007f1360694fa0 RCX: 00007f136046d969
[   57.723886][  T504] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   57.734923][  T504] RBP: 00007f13604efab1 R08: 0000000000000000 R09: 0000000000000000
[   57.745728][  T504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   57.755028][  T504] R13: 0000000000000000 R14: 00007f1360694fa0 R15: 00007ffdbfba72a8
[   57.764308][  T504] ---[ end trace 56a862e285acb1f6 ]---
[   57.771486][  T504] ------------[ cut here ]------------
[   57.777449][  T504] WARNING: CPU: 1 PID: 504 at fs/f2fs/segment.c:2636 new_curseg+0x14c0/0x18a0
[   57.790610][  T504] Modules linked in:
[   57.795631][  T504] CPU: 1 PID: 504 Comm: syz.2.20 Tainted: G        W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   57.807720][  T504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.819036][  T504] RIP: 0010:new_curseg+0x14c0/0x18a0
[   57.825032][  T504] Code: ff e8 a4 ca 59 ff 0f 0b 4c 8b 75 d0 49 8d 7e 78 be 08 00 00 00 e8 10 bc 93 ff f0 41 80 4e 78 04 e9 ba ed ff ff e8 80 ca 59 ff <0f> 0b 48 8b 5d d0 48 8d 7b 78 be 08 00 00 00 e8 ec bb 93 ff f0 80
[   57.849989][  T504] RSP: 0018:ffffc900023c7738 EFLAGS: 00010293
[   57.858949][  T504] RAX: ffffffff8209d5f0 RBX: ffff88810aff7f01 RCX: ffff888118b20000
[   57.871046][  T504] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   57.883837][  T504] RBP: ffffc900023c7828 R08: dffffc0000000000 R09: ffffed10215fefe6
[   57.893960][  T504] R10: ffffed10215fefe6 R11: 1ffff110215fefe5 R12: 0000000000000000
[   57.905432][  T504] R13: 0000000000000018 R14: 0000000000000001 R15: 0000000000000018
[   57.917058][  T504] FS:  00007f135fede6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   57.930641][  T504] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.939604][  T504] CR2: 00007f8c3e5a5000 CR3: 00000001175f8000 CR4: 00000000003506a0
[   57.948602][  T504] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   57.957939][  T504] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   57.969298][  T504] Call Trace:
[   57.973599][  T504]  __allocate_new_segment+0x13d/0x810
[   57.980975][  T504]  f2fs_allocate_new_section+0x1d5/0x280
[   57.987582][  T504]  ? new_curseg+0x18a0/0x18a0
[   57.996680][  T504]  ? __kasan_check_write+0x14/0x20
[   58.005584][  T504]  ? down_read_trylock+0x100/0x150
[   58.011387][  T504]  ? __init_rwsem+0x1c0/0x1c0
[   58.017452][  T504]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   58.023460][  T504]  expand_inode_data+0x5a8/0x930
[   58.028691][  T504]  ? f2fs_insert_range+0x5b0/0x5b0
[   58.034540][  T504]  ? inode_dio_wait+0x226/0x290
[   58.039558][  T504]  ? file_update_time+0x3a2/0x400
[   58.044691][  T504]  ? inode_owner_or_capable+0x140/0x140
[   58.050986][  T504]  f2fs_fallocate+0x42b/0x7e0
[   58.056094][  T504]  vfs_fallocate+0x4b4/0x590
[   58.060949][  T504]  do_vfs_ioctl+0x12e3/0x1510
[   58.066989][  T504]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   58.073371][  T504]  ? has_cap_mac_admin+0x330/0x330
[   58.078639][  T504]  ? __kasan_slab_free+0x11/0x20
[   58.084663][  T504]  ? slab_free_freelist_hook+0xc5/0x190
[   58.090621][  T504]  ? putname+0xfe/0x150
[   58.095642][  T504]  ? selinux_file_ioctl+0x377/0x480
[   58.102778][  T504]  ? selinux_file_alloc_security+0x120/0x120
[   58.109808][  T504]  ? __fget_files+0x2c4/0x320
[   58.115280][  T504]  ? security_file_ioctl+0x84/0xa0
[   58.121249][  T504]  __se_sys_ioctl+0x9f/0x1a0
[   58.126666][  T504]  __x64_sys_ioctl+0x7b/0x90
[   58.131381][  T504]  do_syscall_64+0x31/0x40
[   58.136541][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   58.143169][  T504] RIP: 0033:0x7f136046d969
[   58.149468][  T504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.172698][  T504] RSP: 002b:00007f135fede038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.182930][  T504] RAX: ffffffffffffffda RBX: 00007f1360694fa0 RCX: 00007f136046d969
[   58.192054][  T504] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   58.202455][  T504] RBP: 00007f13604efab1 R08: 0000000000000000 R09: 0000000000000000
[   58.212184][  T504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   58.222849][  T504] R13: 0000000000000000 R14: 00007f1360694fa0 R15: 00007ffdbfba72a8
[   58.231189][  T504] ---[ end trace 56a862e285acb1f7 ]---
[   58.240820][  T504] ==================================================================
[   58.252739][  T504] BUG: KASAN: slab-out-of-bounds in reset_curseg+0x4dd/0x560
[   58.261397][  T504] Read of size 4 at addr ffff8881191733c0 by task syz.2.20/504
[   58.270665][  T504] 
[   58.273021][  T504] CPU: 0 PID: 504 Comm: syz.2.20 Tainted: G        W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   58.287047][  T504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   58.299354][  T504] Call Trace:
[   58.302978][  T504]  __dump_stack+0x21/0x24
[   58.307924][  T504]  dump_stack_lvl+0x169/0x1d8
[   58.313311][  T504]  ? show_regs_print_info+0x18/0x18
[   58.319214][  T504]  ? thaw_kernel_threads+0x220/0x220
[   58.324630][  T504]  print_address_description+0x7f/0x2c0
[   58.330825][  T504]  ? reset_curseg+0x4dd/0x560
[   58.336013][  T504]  kasan_report+0xe2/0x130
[   58.340689][  T504]  ? reset_curseg+0x4dd/0x560
[   58.345556][  T504]  __asan_report_load4_noabort+0x14/0x20
[   58.351375][  T504]  reset_curseg+0x4dd/0x560
[   58.356566][  T504]  new_curseg+0x12f6/0x18a0
[   58.361080][  T504]  __allocate_new_segment+0x13d/0x810
[   58.367459][  T504]  f2fs_allocate_new_section+0x1d5/0x280
[   58.374203][  T504]  ? new_curseg+0x18a0/0x18a0
[   58.380386][  T504]  ? __kasan_check_write+0x14/0x20
[   58.385773][  T504]  ? down_read_trylock+0x100/0x150
[   58.391506][  T504]  ? __init_rwsem+0x1c0/0x1c0
[   58.396737][  T504]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   58.403967][  T504]  expand_inode_data+0x5a8/0x930
[   58.410047][  T504]  ? f2fs_insert_range+0x5b0/0x5b0
[   58.417078][  T504]  ? inode_dio_wait+0x226/0x290
[   58.422708][  T504]  ? file_update_time+0x3a2/0x400
[   58.428230][  T504]  ? inode_owner_or_capable+0x140/0x140
[   58.434367][  T504]  f2fs_fallocate+0x42b/0x7e0
[   58.440158][  T504]  vfs_fallocate+0x4b4/0x590
[   58.445233][  T504]  do_vfs_ioctl+0x12e3/0x1510
[   58.450654][  T504]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   58.457267][  T504]  ? has_cap_mac_admin+0x330/0x330
[   58.463026][  T504]  ? __kasan_slab_free+0x11/0x20
[   58.468571][  T504]  ? slab_free_freelist_hook+0xc5/0x190
[   58.476402][  T504]  ? putname+0xfe/0x150
[   58.481352][  T504]  ? selinux_file_ioctl+0x377/0x480
[   58.487931][  T504]  ? selinux_file_alloc_security+0x120/0x120
[   58.495471][  T504]  ? __fget_files+0x2c4/0x320
[   58.501491][  T504]  ? security_file_ioctl+0x84/0xa0
[   58.506927][  T504]  __se_sys_ioctl+0x9f/0x1a0
[   58.511982][  T504]  __x64_sys_ioctl+0x7b/0x90
[   58.516834][  T504]  do_syscall_64+0x31/0x40
[   58.521922][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   58.528773][  T504] RIP: 0033:0x7f136046d969
[   58.533547][  T504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.556918][  T504] RSP: 002b:00007f135fede038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   58.568438][  T504] RAX: ffffffffffffffda RBX: 00007f1360694fa0 RCX: 00007f136046d969
[   58.578611][  T504] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   58.589402][  T504] RBP: 00007f13604efab1 R08: 0000000000000000 R09: 0000000000000000
[   58.599667][  T504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   58.609102][  T504] R13: 0000000000000000 R14: 00007f1360694fa0 R15: 00007ffdbfba72a8
[   58.618637][  T504] 
[   58.621415][  T504] Allocated by task 504:
[   58.626642][  T504]  __kasan_kmalloc+0xda/0x110
[   58.632412][  T504]  __kmalloc+0x1a7/0x330
[   58.637476][  T504]  kvmalloc_node+0x88/0x130
[   58.644268][  T504]  f2fs_build_segment_manager+0xdba/0x48f0
[   58.652014][  T504]  f2fs_fill_super+0x42d1/0x6c70
[   58.658660][  T504]  mount_bdev+0x28b/0x3a0
[   58.667144][  T504]  f2fs_mount+0x34/0x40
[   58.673487][  T504]  legacy_get_tree+0xed/0x190
[   58.680531][  T504]  vfs_get_tree+0x89/0x260
[   58.686798][  T504]  do_new_mount+0x25a/0xa20
[   58.692404][  T504]  path_mount+0x572/0xc80
[   58.697560][  T504]  __se_sys_mount+0x318/0x380
[   58.703296][  T504]  __x64_sys_mount+0xbf/0xd0
[   58.708901][  T504]  do_syscall_64+0x31/0x40
[   58.713835][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   58.720409][  T504] 
[   58.723532][  T504] The buggy address belongs to the object at ffff888119173000
[   58.723532][  T504]  which belongs to the cache kmalloc-1k of size 1024
[   58.739430][  T504] The buggy address is located 960 bytes inside of
[   58.739430][  T504]  1024-byte region [ffff888119173000, ffff888119173400)
[   58.754165][  T504] The buggy address belongs to the page:
[   58.761406][  T504] page:ffffea0004645c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x119170
[   58.773616][  T504] head:ffffea0004645c00 order:3 compound_mapcount:0 compound_pincount:0
[   58.783814][  T504] flags: 0x4000000000010200(slab|head)
[   58.790006][  T504] raw: 4000000000010200 ffffea0004647000 0000000700000007 ffff888100042f00
[   58.800589][  T504] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   58.810516][  T504] page dumped because: kasan: bad access detected
[   58.817574][  T504] page_owner tracks the page as allocated
[   58.823305][  T504] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 106, ts 7532181654, free_ts 0
[   58.844683][  T504]  prep_new_page+0x179/0x180
[   58.849875][  T504]  get_page_from_freelist+0x2235/0x23d0
[   58.856029][  T504]  __alloc_pages_nodemask+0x268/0x5f0
[   58.863124][  T504]  new_slab+0x84/0x3f0
[   58.867814][  T504]  ___slab_alloc+0x2a6/0x450
[   58.873006][  T504]  __slab_alloc+0x63/0xa0
[   58.879087][  T504]  __kmalloc_track_caller+0x1ef/0x320
[   58.886019][  T504]  __alloc_skb+0xdc/0x520
[   58.893172][  T504]  netlink_sendmsg+0x5f6/0xb30
[   58.901109][  T504]  ____sys_sendmsg+0x5a2/0x8c0
[   58.908403][  T504]  ___sys_sendmsg+0x1f0/0x260
[   58.917013][  T504]  __x64_sys_sendmsg+0x1e2/0x2a0
[   58.923832][  T504]  do_syscall_64+0x31/0x40
[   58.930278][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   58.938673][  T504] page_owner free stack trace missing
[   58.944786][  T504] 
[   58.947463][  T504] Memory state around the buggy address:
[   58.954193][  T504]  ffff888119173280: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   58.963493][  T504]  ffff888119173300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   58.973357][  T504] >ffff888119173380: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   58.983744][  T504]                                            ^
[   58.991722][  T504]  ffff888119173400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   59.001981][  T504]  ffff888119173480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   59.011637][  T504] ==================================================================
[   59.021156][  T504] Disabling lock debugging due to kernel taint
[   59.031020][  T504] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[   59.036929][   T24] kauditd_printk_skb: 2 callbacks suppressed
[   59.036940][   T24] audit: type=1400 audit(1755192993.330:113): avc:  denied  { read } for  pid=77 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   59.043309][  T504] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[   59.043337][  T504] CPU: 0 PID: 504 Comm: syz.2.20 Tainted: G    B   W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   59.043343][  T504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   59.043362][  T504] RIP: 0010:update_sit_entry+0x3eb/0xf50
[   59.043382][  T504] Code: 89 45 a8 49 01 c5 41 f6 d7 41 80 e7 07 44 89 f9 41 bf 01 00 00 00 41 d3 e7 4d 89 ee 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 a5 08 00 00 41 0f b6 5d 00 44 89 f8 41
[   59.050017][   T24] audit: type=1400 audit(1755192993.330:114): avc:  denied  { search } for  pid=77 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   59.072651][  T504] RSP: 0018:ffffc900023c7350 EFLAGS: 00010246
[   59.072667][  T504] RAX: dffffc0000000000 RBX: ffff8881191733c8 RCX: 0000000000000007
[   59.072674][  T504] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881191733c8
[   59.072680][  T504] RBP: ffffc900023c73d0 R08: ffff888118b20000 R09: 0000000000000003
[   59.072687][  T504] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000004000
[   59.072693][  T504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000080
[   59.072703][  T504] FS:  00007f135fede6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   59.072711][  T504] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.072717][  T504] CR2: 00007f8c3e5a5000 CR3: 00000001175f8000 CR4: 00000000003506b0
[   59.072737][  T504] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   59.084048][   T24] audit: type=1400 audit(1755192993.330:115): avc:  denied  { write } for  pid=77 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   59.095479][  T504] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   59.095484][  T504] Call Trace:
[   59.095509][  T504]  ? __asan_report_store8_noabort+0x17/0x20
[   59.095522][  T504]  f2fs_allocate_data_block+0x156b/0x3a10
[   59.095537][  T504]  ? _raw_spin_unlock+0x4d/0x70
[   59.095548][  T504]  ? f2fs_inode_dirtied+0x26b/0x2a0
[   59.095557][  T504]  ? f2fs_io_type_to_rw_hint+0x1e0/0x1e0
[   59.095577][  T504]  ? f2fs_mark_inode_dirty_sync+0x110/0x140
[   59.109364][   T24] audit: type=1400 audit(1755192993.330:116): avc:  denied  { add_name } for  pid=77 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   59.115131][  T504]  ? inc_valid_block_count+0x562/0xa90
[   59.115142][  T504]  __allocate_data_block+0x52a/0x980
[   59.115163][  T504]  ? f2fs_map_blocks+0x35c0/0x35c0
[   59.139459][   T24] audit: type=1400 audit(1755192993.330:117): avc:  denied  { create } for  pid=77 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.163411][  T504]  f2fs_map_blocks+0xdc8/0x35c0
[   59.163426][  T504]  ? __kasan_check_write+0x14/0x20
[   59.163440][  T504]  ? f2fs_do_map_lock+0x290/0x290
[   59.163449][  T504]  ? __kasan_check_write+0x14/0x20
[   59.163461][  T504]  ? down_read_trylock+0x100/0x150
[   59.163473][  T504]  expand_inode_data+0x5d7/0x930
[   59.163497][  T504]  ? f2fs_insert_range+0x5b0/0x5b0
[   59.170783][   T24] audit: type=1400 audit(1755192993.330:118): avc:  denied  { append open } for  pid=77 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.180214][  T504]  ? inode_dio_wait+0x226/0x290
[   59.180229][  T504]  ? file_update_time+0x3a2/0x400
[   59.180240][  T504]  ? inode_owner_or_capable+0x140/0x140
[   59.180252][  T504]  f2fs_fallocate+0x42b/0x7e0
[   59.180265][  T504]  vfs_fallocate+0x4b4/0x590
[   59.180275][  T504]  do_vfs_ioctl+0x12e3/0x1510
[   59.180285][  T504]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   59.180296][  T504]  ? has_cap_mac_admin+0x330/0x330
[   59.180306][  T504]  ? __kasan_slab_free+0x11/0x20
[   59.180315][  T504]  ? slab_free_freelist_hook+0xc5/0x190
[   59.180327][  T504]  ? putname+0xfe/0x150
[   59.180340][  T504]  ? selinux_file_ioctl+0x377/0x480
[   59.180352][  T504]  ? selinux_file_alloc_security+0x120/0x120
[   59.180361][  T504]  ? __fget_files+0x2c4/0x320
[   59.180373][  T504]  ? security_file_ioctl+0x84/0xa0
[   59.180383][  T504]  __se_sys_ioctl+0x9f/0x1a0
[   59.180433][  T504]  __x64_sys_ioctl+0x7b/0x90
[   59.190674][   T24] audit: type=1400 audit(1755192993.330:119): avc:  denied  { getattr } for  pid=77 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.197501][  T504]  do_syscall_64+0x31/0x40
[   59.197515][  T504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   59.197533][  T504] RIP: 0033:0x7f136046d969
[   59.620822][  T504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.642720][  T504] RSP: 002b:00007f135fede038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.651876][  T504] RAX: ffffffffffffffda RBX: 00007f1360694fa0 RCX: 00007f136046d969
[   59.661359][  T504] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   59.671164][  T504] RBP: 00007f13604efab1 R08: 0000000000000000 R09: 0000000000000000
[   59.679428][  T504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   59.688066][  T504] R13: 0000000000000000 R14: 00007f1360694fa0 R15: 00007ffdbfba72a8
[   59.696789][  T504] Modules linked in:
[   59.701568][  T504] ---[ end trace 56a862e285acb1f8 ]---
[   59.708473][  T504] RIP: 0010:update_sit_entry+0x3eb/0xf50
[   59.716692][  T504] Code: 89 45 a8 49 01 c5 41 f6 d7 41 80 e7 07 44 89 f9 41 bf 01 00 00 00 41 d3 e7 4d 89 ee 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 a5 08 00 00 41 0f b6 5d 00 44 89 f8 41
[   59.739334][  T504] RSP: 0018:ffffc900023c7350 EFLAGS: 00010246
[   59.746903][  T504] RAX: dffffc0000000000 RBX: ffff8881191733c8 RCX: 0000000000000007
[   59.756404][  T504] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881191733c8
[   59.768215][  T504] RBP: ffffc900023c73d0 R08: ffff888118b20000 R09: 0000000000000003
[   59.778603][  T504] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000004000
[   59.788687][  T504] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000080
[   59.797639][  T504] FS:  00007f135fede6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   59.807929][  T504] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.815155][  T504] CR2: 00007f8c3e5a5000 CR3: 00000001175f8000 CR4: 00000000003506b0
[   59.824518][  T504] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   59.833206][  T504] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   59.842224][  T504] Kernel panic - not syncing: Fatal exception
[   59.856158][  T504] Kernel Offset: disabled
[   59.861059][  T504] Rebooting in 86400 seconds..