Warning: Permanently added '10.128.0.81' (ED25519) to the list of known hosts.
2024/05/20 07:05:03 ignoring optional flag "sandboxArg"="0"
2024/05/20 07:05:04 parsed 1 programs
2024/05/20 07:05:05 executed programs: 0
[   85.953624][ T5443] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.008347][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   86.016092][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   86.024038][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   86.033097][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   86.040802][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   86.048396][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.161308][ T5449] chnl_net:caif_netlink_parms(): no params data found
[   86.212124][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.219490][ T5449] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.227906][ T5449] bridge_slave_0: entered allmulticast mode
[   86.234705][ T5449] bridge_slave_0: entered promiscuous mode
[   86.242802][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.250779][ T5449] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.258129][ T5449] bridge_slave_1: entered allmulticast mode
[   86.264837][ T5449] bridge_slave_1: entered promiscuous mode
[   86.289094][ T5449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.300490][ T5449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.326624][ T5449] team0: Port device team_slave_0 added
[   86.335067][ T5449] team0: Port device team_slave_1 added
[   86.358422][ T5449] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.365392][ T5449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.391969][ T5449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.406016][ T5449] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.413655][ T5449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.439657][ T5449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.474644][ T5449] hsr_slave_0: entered promiscuous mode
[   86.480990][ T5449] hsr_slave_1: entered promiscuous mode
[   87.078497][ T5449] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.090202][ T5449] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.102688][ T5449] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.113835][ T5449] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.148793][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.155969][ T5449] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.163507][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.171322][ T5449] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.194293][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.205142][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.292701][ T5449] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.316630][ T5449] 8021q: adding VLAN 0 to HW filter on device team0
[   87.335551][ T5486] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.342750][ T5486] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.362326][ T5486] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.369536][ T5486] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.585849][ T5449] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.637958][ T5449] veth0_vlan: entered promiscuous mode
[   87.654093][ T5449] veth1_vlan: entered promiscuous mode
[   87.691103][ T5449] veth0_macvtap: entered promiscuous mode
[   87.702127][ T5449] veth1_macvtap: entered promiscuous mode
[   87.728901][ T5449] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.745274][ T5449] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.760749][ T5449] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.772551][ T5449] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.782271][ T5449] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.792977][ T5449] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.874395][ T1282] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.888815][ T1282] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.923450][ T2836] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.934793][ T2836] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.031550][ T5522] loop0: detected capacity change from 0 to 2048
[   88.068058][   T53] Bluetooth: hci0: command tx timeout
[   88.111007][ T5528] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   88.188648][ T5522] loop0: detected capacity change from 2048 to 0
[   88.215658][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.215658][ T5449] loop0: rw=0, sector=100, nr_sectors = 2 limit=0
[   88.233813][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=226)
[   88.243102][ T5449] NILFS (loop0): error -5 truncating bmap (ino=15)
[   88.261651][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.261651][ T5449] loop0: rw=0, sector=66, nr_sectors = 2 limit=0
[   88.275682][ T5449] NILFS (loop0): I/O error reading b-tree node block (ino=16, blocknr=15)
[   88.284979][ T5449] NILFS (loop0): error -5 truncating bmap (ino=16)
[   88.294446][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.294446][ T5449] loop0: rw=0, sector=90, nr_sectors = 2 limit=0
[   88.320491][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=34)
[   88.329666][ T5449] NILFS (loop0): error -5 truncating bmap (ino=17)
[   88.348469][ T5528] segctord: attempt to access beyond end of device
[   88.348469][ T5528] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.362614][ T5528] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.372756][ T5528] segctord: attempt to access beyond end of device
[   88.372756][ T5528] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.385869][ T5528] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.397553][ T5528] segctord: attempt to access beyond end of device
[   88.397553][ T5528] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.411162][ T5528] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.422352][ T5528] segctord: attempt to access beyond end of device
[   88.422352][ T5528] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.435171][ T5528] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.448171][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.448171][ T5449] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.463521][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.486116][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.486116][ T5449] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.501479][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.510679][ T5449] syz-executor.0: attempt to access beyond end of device
[   88.510679][ T5449] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[   88.525660][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.534813][ T5449] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[   88.546521][ T5449] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[   90.147387][   T53] Bluetooth: hci0: command tx timeout
[   92.226765][   T53] Bluetooth: hci0: command tx timeout
[   94.306961][   T53] Bluetooth: hci0: command tx timeout
[  113.213932][ T5449] bio_check_eod: 1 callbacks suppressed
[  113.213948][ T5449] syz-executor.0: attempt to access beyond end of device
[  113.213948][ T5449] loop0: rw=395265, sector=2040, nr_sectors = 2 limit=0
[  113.233739][ T5449] Buffer I/O error on dev loop0, logical block 1020, lost sync page write
[  113.242418][ T5449] NILFS (loop0): unable to write superblock: err=-5
[  113.249223][ T5449] syz-executor.0: attempt to access beyond end of device
[  113.249223][ T5449] loop0: rw=395265, sector=2, nr_sectors = 2 limit=0
[  113.262815][ T5449] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  113.271249][ T5449] NILFS (loop0): unable to write superblock: err=-5
[  113.306442][ T4549] ==================================================================
[  113.314560][ T4549] BUG: KASAN: slab-use-after-free in lru_add_fn+0x2cc/0x1a20
[  113.321953][ T4549] Read of size 8 at addr ffff8880768aab18 by task udevd/4549
[  113.329331][ T4549] 
[  113.331640][ T4549] CPU: 0 PID: 4549 Comm: udevd Not tainted 6.9.0-next-20240520-syzkaller-13491-g632483ea8004 #0
[  113.342038][ T4549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  113.352077][ T4549] Call Trace:
[  113.355361][ T4549]  <TASK>
[  113.358338][ T4549]  dump_stack_lvl+0x241/0x360
[  113.363024][ T4549]  ? __pfx_dump_stack_lvl+0x10/0x10
[  113.368245][ T4549]  ? __pfx__printk+0x10/0x10
[  113.373186][ T4549]  ? _printk+0xd5/0x120
[  113.377341][ T4549]  ? __virt_addr_valid+0x183/0x520
[  113.382574][ T4549]  ? __virt_addr_valid+0x183/0x520
[  113.387685][ T4549]  print_report+0x169/0x550
[  113.392203][ T4549]  ? __virt_addr_valid+0x183/0x520
[  113.397329][ T4549]  ? __virt_addr_valid+0x183/0x520
[  113.402489][ T4549]  ? __virt_addr_valid+0x44e/0x520
[  113.407611][ T4549]  ? __phys_addr+0xba/0x170
[  113.412118][ T4549]  ? lru_add_fn+0x2cc/0x1a20
[  113.416710][ T4549]  kasan_report+0x143/0x180
[  113.421226][ T4549]  ? lru_add_fn+0x2cc/0x1a20
[  113.425809][ T4549]  ? lru_add_fn+0x20c/0x1a20
[  113.430388][ T4549]  kasan_check_range+0x282/0x290
[  113.435318][ T4549]  lru_add_fn+0x2cc/0x1a20
[  113.439742][ T4549]  folio_batch_move_lru+0x322/0x690
[  113.444933][ T4549]  ? __pfx_lru_add_fn+0x10/0x10
[  113.449778][ T4549]  ? __pfx_folio_batch_move_lru+0x10/0x10
[  113.455495][ T4549]  ? __lock_acquire+0x1346/0x1fd0
[  113.460510][ T4549]  lru_add_drain_cpu+0x10e/0x8c0
[  113.465441][ T4549]  ? __pfx_lru_add_drain_cpu+0x10/0x10
[  113.470890][ T4549]  ? mark_lock+0x9a/0x350
[  113.475209][ T4549]  ? lru_add_drain+0x79/0x3e0
[  113.479872][ T4549]  lru_add_drain+0x123/0x3e0
[  113.484474][ T4549]  do_wp_page+0x2c65/0x5310
[  113.489026][ T4549]  ? __pfx_do_wp_page+0x10/0x10
[  113.493886][ T4549]  ? __pfx_lock_acquire+0x10/0x10
[  113.498912][ T4549]  ? do_raw_spin_lock+0x14f/0x370
[  113.503940][ T4549]  ? __pfx_validate_chain+0x10/0x10
[  113.509223][ T4549]  handle_pte_fault+0x1189/0x70f0
[  113.514243][ T4549]  ? __pfx_validate_chain+0x10/0x10
[  113.519435][ T4549]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[  113.525155][ T4549]  ? __pfx_handle_pte_fault+0x10/0x10
[  113.530518][ T4549]  ? __lock_acquire+0x1346/0x1fd0
[  113.535538][ T4549]  ? reacquire_held_locks+0x3eb/0x690
[  113.540899][ T4549]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  113.546103][ T4549]  ? __pfx_reacquire_held_locks+0x10/0x10
[  113.551835][ T4549]  handle_mm_fault+0x10df/0x1ba0
[  113.556797][ T4549]  ? __pfx_handle_mm_fault+0x10/0x10
[  113.562082][ T4549]  ? lock_vma_under_rcu+0x592/0x6e0
[  113.567285][ T4549]  ? exc_page_fault+0x113/0x8c0
[  113.572136][ T4549]  exc_page_fault+0x459/0x8c0
[  113.576817][ T4549]  asm_exc_page_fault+0x26/0x30
[  113.581663][ T4549] RIP: 0033:0x7fd5eff4b485
[  113.586065][ T4549] Code: e9 d0 fa ff ff 48 89 52 28 48 89 52 20 89 c8 41 b9 01 00 00 00 48 ff 44 24 18 c1 f8 05 41 d3 e1 48 98 44 09 8c 85 60 08 00 00 <4c> 89 42 18 48 89 72 10 48 89 56 18 49 89 50 10 45 85 db 74 2d 48
[  113.605746][ T4549] RSP: 002b:00007ffc91266e60 EFLAGS: 00010202
[  113.611808][ T4549] RAX: 0000000000000000 RBX: 0000000000000040 RCX: 0000000000000002
[  113.619773][ T4549] RDX: 00005581fe208050 RSI: 00007fd5f0074b10 RDI: 00005581fe1e4010
[  113.628006][ T4549] RBP: 00007fd5f0074aa0 R08: 00007fd5f0074b10 R09: 0000000000000004
[  113.635965][ T4549] R10: 0000000000000012 R11: 0000000000000000 R12: 0000000000000004
[  113.643922][ T4549] R13: 0000000000000002 R14: 00007fd5f0074b00 R15: 0000000000000040
[  113.651896][ T4549]  </TASK>
[  113.654906][ T4549] 
[  113.657245][ T4549] Allocated by task 5522:
[  113.661553][ T4549]  kasan_save_track+0x3f/0x80
[  113.666221][ T4549]  __kasan_slab_alloc+0x66/0x80
[  113.671059][ T4549]  kmem_cache_alloc_lru_noprof+0x139/0x2b0
[  113.676857][ T4549]  nilfs_alloc_inode+0x2e/0xf0
[  113.681606][ T4549]  iget5_locked+0xa4/0x280
[  113.686012][ T4549]  nilfs_iget_locked+0x12b/0x180
[  113.690939][ T4549]  nilfs_ifile_read+0x30/0x1b0
[  113.695693][ T4549]  nilfs_attach_checkpoint+0xed/0x1a0
[  113.701051][ T4549]  nilfs_fill_super+0x380/0x6a0
[  113.705886][ T4549]  nilfs_get_tree+0x4f9/0x920
[  113.710546][ T4549]  vfs_get_tree+0x90/0x2a0
[  113.714949][ T4549]  do_new_mount+0x2be/0xb40
[  113.719440][ T4549]  __se_sys_mount+0x2d9/0x3c0
[  113.724105][ T4549]  do_syscall_64+0xf5/0x240
[  113.728599][ T4549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.734483][ T4549] 
[  113.736796][ T4549] Freed by task 5449:
[  113.740759][ T4549]  kasan_save_track+0x3f/0x80
[  113.745425][ T4549]  kasan_save_free_info+0x40/0x50
[  113.750436][ T4549]  poison_slab_object+0xe0/0x150
[  113.755364][ T4549]  __kasan_slab_free+0x37/0x60
[  113.760116][ T4549]  kmem_cache_free+0x145/0x350
[  113.764865][ T4549]  rcu_core+0xafd/0x1830
[  113.769098][ T4549]  handle_softirqs+0x2d6/0x990
[  113.773848][ T4549]  __irq_exit_rcu+0xf4/0x1c0
[  113.778425][ T4549]  irq_exit_rcu+0x9/0x30
[  113.782652][ T4549]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  113.788277][ T4549]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  113.794243][ T4549] 
[  113.796551][ T4549] Last potentially related work creation:
[  113.802246][ T4549]  kasan_save_stack+0x3f/0x60
[  113.806910][ T4549]  __kasan_record_aux_stack+0xac/0xc0
[  113.812267][ T4549]  call_rcu+0x167/0xa70
[  113.816410][ T4549]  nilfs_put_root+0x97/0xc0
[  113.820903][ T4549]  nilfs_detach_log_writer+0x8bb/0xbe0
[  113.826349][ T4549]  nilfs_put_super+0x4d/0x160
[  113.831015][ T4549]  generic_shutdown_super+0x136/0x2d0
[  113.836373][ T4549]  kill_block_super+0x44/0x90
[  113.841040][ T4549]  deactivate_locked_super+0xc4/0x130
[  113.846401][ T4549]  cleanup_mnt+0x426/0x4c0
[  113.850812][ T4549]  task_work_run+0x24f/0x310
[  113.855434][ T4549]  syscall_exit_to_user_mode+0x168/0x370
[  113.861148][ T4549]  do_syscall_64+0x102/0x240
[  113.865727][ T4549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.871608][ T4549] 
[  113.873919][ T4549] The buggy address belongs to the object at ffff8880768aa670
[  113.873919][ T4549]  which belongs to the cache nilfs2_inode_cache of size 1512
[  113.888648][ T4549] The buggy address is located 1192 bytes inside of
[  113.888648][ T4549]  freed 1512-byte region [ffff8880768aa670, ffff8880768aac58)
[  113.902599][ T4549] 
[  113.904908][ T4549] The buggy address belongs to the physical page:
[  113.911303][ T4549] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x768a8
[  113.920057][ T4549] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  113.928537][ T4549] memcg:ffff888023313801
[  113.932760][ T4549] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  113.940292][ T4549] page_type: 0xffffefff(slab)
[  113.944983][ T4549] raw: 00fff00000000040 ffff88801af6fdc0 dead000000000122 0000000000000000
[  113.953553][ T4549] raw: 0000000000000000 0000000080130013 00000001ffffefff ffff888023313801
[  113.962132][ T4549] head: 00fff00000000040 ffff88801af6fdc0 dead000000000122 0000000000000000
[  113.970796][ T4549] head: 0000000000000000 0000000080130013 00000001ffffefff ffff888023313801
[  113.979453][ T4549] head: 00fff00000000003 ffffea0001da2a01 ffffffffffffffff 0000000000000000
[  113.988115][ T4549] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  113.996769][ T4549] page dumped because: kasan: bad access detected
[  114.003164][ T4549] page_owner tracks the page as allocated
[  114.008863][ T4549] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5522, tgid 5521 (syz-executor.0), ts 88090751432, free_ts 87527298236
[  114.032723][ T4549]  post_alloc_hook+0x1f3/0x230
[  114.037486][ T4549]  get_page_from_freelist+0x2ce2/0x2d90
[  114.043014][ T4549]  __alloc_pages_noprof+0x256/0x6c0
[  114.048201][ T4549]  alloc_slab_page+0x5f/0x120
[  114.052864][ T4549]  allocate_slab+0x5a/0x2e0
[  114.057455][ T4549]  ___slab_alloc+0xcd1/0x14b0
[  114.062127][ T4549]  __slab_alloc+0x58/0xa0
[  114.066618][ T4549]  kmem_cache_alloc_lru_noprof+0x1c5/0x2b0
[  114.072421][ T4549]  nilfs_alloc_inode+0x2e/0xf0
[  114.077172][ T4549]  iget5_locked+0xa4/0x280
[  114.081584][ T4549]  nilfs_iget_locked+0x12b/0x180
[  114.086514][ T4549]  nilfs_dat_read+0xc3/0x310
[  114.091266][ T4549]  load_nilfs+0x56f/0x1090
[  114.095668][ T4549]  nilfs_fill_super+0x310/0x6a0
[  114.100591][ T4549]  nilfs_get_tree+0x4f9/0x920
[  114.105262][ T4549]  vfs_get_tree+0x90/0x2a0
[  114.109667][ T4549] page last free pid 5502 tgid 5502 stack trace:
[  114.116064][ T4549]  free_unref_page+0xd22/0xea0
[  114.120818][ T4549]  __put_partials+0xeb/0x130
[  114.125403][ T4549]  put_cpu_partial+0x17c/0x250
[  114.130239][ T4549]  __slab_free+0x2ea/0x3d0
[  114.134641][ T4549]  qlist_free_all+0x9e/0x140
[  114.139217][ T4549]  kasan_quarantine_reduce+0x14f/0x170
[  114.144663][ T4549]  __kasan_slab_alloc+0x23/0x80
[  114.149502][ T4549]  __kmalloc_noprof+0x1a9/0x410
[  114.154335][ T4549]  tomoyo_realpath_from_path+0xcf/0x5e0
[  114.159867][ T4549]  tomoyo_path_perm+0x2b7/0x740
[  114.164700][ T4549]  security_inode_getattr+0xd8/0x130
[  114.169975][ T4549]  vfs_getattr+0x45/0x430
[  114.174294][ T4549]  vfs_fstatat+0xd6/0x190
[  114.178612][ T4549]  __x64_sys_newfstatat+0x125/0x1b0
[  114.183792][ T4549]  do_syscall_64+0xf5/0x240
[  114.188282][ T4549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.194160][ T4549] 
[  114.196478][ T4549] Memory state around the buggy address:
[  114.202090][ T4549]  ffff8880768aaa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  114.210143][ T4549]  ffff8880768aaa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  114.218189][ T4549] >ffff8880768aab00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  114.226231][ T4549]                             ^
[  114.231066][ T4549]  ffff8880768aab80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  114.239112][ T4549]  ffff8880768aac00: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[  114.247154][ T4549] ==================================================================
[  114.255196][ T4549] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  114.262408][ T4549] CPU: 0 PID: 4549 Comm: udevd Not tainted 6.9.0-next-20240520-syzkaller-13491-g632483ea8004 #0
[  114.272803][ T4549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  114.282844][ T4549] Call Trace:
[  114.286111][ T4549]  <TASK>
[  114.289030][ T4549]  dump_stack_lvl+0x241/0x360
[  114.293700][ T4549]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.298888][ T4549]  ? __pfx__printk+0x10/0x10
[  114.303471][ T4549]  ? rcu_is_watching+0x15/0xb0
[  114.308229][ T4549]  ? vscnprintf+0x5d/0x90
[  114.312556][ T4549]  panic+0x349/0x860
[  114.316459][ T4549]  ? __pfx_lock_release+0x10/0x10
[  114.321486][ T4549]  ? check_panic_on_warn+0x21/0xb0
[  114.326598][ T4549]  ? __pfx_panic+0x10/0x10
[  114.331047][ T4549]  ? do_raw_spin_unlock+0x13c/0x8b0
[  114.336249][ T4549]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  114.342165][ T4549]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  114.348491][ T4549]  check_panic_on_warn+0x86/0xb0
[  114.353450][ T4549]  ? lru_add_fn+0x2cc/0x1a20
[  114.358047][ T4549]  end_report+0x77/0x160
[  114.362404][ T4549]  kasan_report+0x154/0x180
[  114.366929][ T4549]  ? lru_add_fn+0x2cc/0x1a20
[  114.371526][ T4549]  ? lru_add_fn+0x20c/0x1a20
[  114.376123][ T4549]  kasan_check_range+0x282/0x290
[  114.381086][ T4549]  lru_add_fn+0x2cc/0x1a20
[  114.385509][ T4549]  folio_batch_move_lru+0x322/0x690
[  114.390709][ T4549]  ? __pfx_lru_add_fn+0x10/0x10
[  114.395557][ T4549]  ? __pfx_folio_batch_move_lru+0x10/0x10
[  114.401274][ T4549]  ? __lock_acquire+0x1346/0x1fd0
[  114.406300][ T4549]  lru_add_drain_cpu+0x10e/0x8c0
[  114.411233][ T4549]  ? __pfx_lru_add_drain_cpu+0x10/0x10
[  114.416686][ T4549]  ? mark_lock+0x9a/0x350
[  114.421004][ T4549]  ? lru_add_drain+0x79/0x3e0
[  114.425680][ T4549]  lru_add_drain+0x123/0x3e0
[  114.430269][ T4549]  do_wp_page+0x2c65/0x5310
[  114.434771][ T4549]  ? __pfx_do_wp_page+0x10/0x10
[  114.439616][ T4549]  ? __pfx_lock_acquire+0x10/0x10
[  114.444630][ T4549]  ? do_raw_spin_lock+0x14f/0x370
[  114.449650][ T4549]  ? __pfx_validate_chain+0x10/0x10
[  114.454840][ T4549]  handle_pte_fault+0x1189/0x70f0
[  114.459860][ T4549]  ? __pfx_validate_chain+0x10/0x10
[  114.465059][ T4549]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[  114.470870][ T4549]  ? __pfx_handle_pte_fault+0x10/0x10
[  114.476237][ T4549]  ? __lock_acquire+0x1346/0x1fd0
[  114.481258][ T4549]  ? reacquire_held_locks+0x3eb/0x690
[  114.486623][ T4549]  ? lock_vma_under_rcu+0x2f9/0x6e0
[  114.491828][ T4549]  ? __pfx_reacquire_held_locks+0x10/0x10
[  114.497550][ T4549]  handle_mm_fault+0x10df/0x1ba0
[  114.502492][ T4549]  ? __pfx_handle_mm_fault+0x10/0x10
[  114.507772][ T4549]  ? lock_vma_under_rcu+0x592/0x6e0
[  114.512971][ T4549]  ? exc_page_fault+0x113/0x8c0
[  114.517864][ T4549]  exc_page_fault+0x459/0x8c0
[  114.522538][ T4549]  asm_exc_page_fault+0x26/0x30
[  114.527380][ T4549] RIP: 0033:0x7fd5eff4b485
[  114.531784][ T4549] Code: e9 d0 fa ff ff 48 89 52 28 48 89 52 20 89 c8 41 b9 01 00 00 00 48 ff 44 24 18 c1 f8 05 41 d3 e1 48 98 44 09 8c 85 60 08 00 00 <4c> 89 42 18 48 89 72 10 48 89 56 18 49 89 50 10 45 85 db 74 2d 48
[  114.551549][ T4549] RSP: 002b:00007ffc91266e60 EFLAGS: 00010202
[  114.558044][ T4549] RAX: 0000000000000000 RBX: 0000000000000040 RCX: 0000000000000002
[  114.566088][ T4549] RDX: 00005581fe208050 RSI: 00007fd5f0074b10 RDI: 00005581fe1e4010
[  114.574063][ T4549] RBP: 00007fd5f0074aa0 R08: 00007fd5f0074b10 R09: 0000000000000004
[  114.582041][ T4549] R10: 0000000000000012 R11: 0000000000000000 R12: 0000000000000004
[  114.590004][ T4549] R13: 0000000000000002 R14: 00007fd5f0074b00 R15: 0000000000000040
[  114.597982][ T4549]  </TASK>
[  114.601314][ T4549] Kernel Offset: disabled
[  114.605737][ T4549] Rebooting in 86400 seconds..