Warning: Permanently added '10.128.0.181' (ED25519) to the list of known hosts.
2025/08/14 17:45:00 ignoring optional flag "sandboxArg"="0"
2025/08/14 17:45:01 parsed 1 programs
[   53.736411][   T24] kauditd_printk_skb: 27 callbacks suppressed
[   53.736424][   T24] audit: type=1400 audit(1755193502.320:101): avc:  denied  { create } for  pid=405 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.763268][   T24] audit: type=1400 audit(1755193502.320:102): avc:  denied  { write } for  pid=405 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.783795][   T24] audit: type=1400 audit(1755193502.320:103): avc:  denied  { read } for  pid=405 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.804333][   T24] audit: type=1400 audit(1755193502.350:104): avc:  denied  { unlink } for  pid=405 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   53.833784][  T405] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   54.792461][  T448] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.799562][  T448] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.806866][  T448] device bridge_slave_0 entered promiscuous mode
[   54.814160][  T448] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.821426][  T448] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.828868][  T448] device bridge_slave_1 entered promiscuous mode
[   54.864375][  T448] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.871662][  T448] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.878949][  T448] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.885974][  T448] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.903655][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   54.911239][  T309] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.918367][  T309] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.927580][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   54.935764][  T309] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.942824][  T309] bridge0: port 1(bridge_slave_0) entered forwarding state
[   54.951563][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   54.959888][  T309] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.966931][  T309] bridge0: port 2(bridge_slave_1) entered forwarding state
[   54.978411][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   54.987779][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.001429][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.012714][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.021086][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.028507][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.037001][  T448] device veth0_vlan entered promiscuous mode
[   55.047134][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   55.060706][  T448] device veth1_macvtap entered promiscuous mode
[   55.070686][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   55.081003][  T309] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   55.137617][   T24] audit: type=1401 audit(1755193503.720:105): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   55.187481][   T24] audit: type=1400 audit(1755193503.770:106): avc:  denied  { create } for  pid=460 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
2025/08/14 17:45:03 executed programs: 0
[   55.376547][  T465] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.383918][  T465] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.391485][  T465] device bridge_slave_0 entered promiscuous mode
[   55.398503][  T465] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.405975][  T465] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.413388][  T465] device bridge_slave_1 entered promiscuous mode
[   55.454656][  T465] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.461736][  T465] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.469048][  T465] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.476074][  T465] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.500233][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.507633][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.515747][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   55.523402][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   55.532979][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   55.541647][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.548902][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.558959][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   55.567211][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.574313][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.589885][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   55.604756][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   55.615432][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   55.627712][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   55.635965][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   55.643716][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   55.653193][  T465] device veth0_vlan entered promiscuous mode
[   55.663843][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   55.673032][  T465] device veth1_macvtap entered promiscuous mode
[   55.682364][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   55.692747][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   55.855111][  T493] F2FS-fs (loop2): fault_injection options not supported
[   55.863471][  T493] F2FS-fs (loop2): invalid crc value
[   55.870071][  T493] F2FS-fs (loop2): Found nat_bits in checkpoint
[   55.900609][  T493] F2FS-fs (loop2): Start checkpoint disabled!
[   55.907571][  T493] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   55.915386][   T24] audit: type=1400 audit(1755193504.500:107): avc:  denied  { mount } for  pid=492 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   55.941842][   T24] audit: type=1400 audit(1755193504.520:108): avc:  denied  { write } for  pid=492 comm="syz.2.16" name="/" dev="loop2" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   55.963396][   T24] audit: type=1400 audit(1755193504.520:109): avc:  denied  { add_name } for  pid=492 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   55.984617][   T24] audit: type=1400 audit(1755193504.520:110): avc:  denied  { create } for  pid=492 comm="syz.2.16" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   56.012868][  T493] ------------[ cut here ]------------
[   56.018375][  T493] WARNING: CPU: 1 PID: 493 at fs/f2fs/segment.c:2582 new_curseg+0xe5d/0x18a0
[   56.027213][  T493] Modules linked in:
[   56.031227][  T493] CPU: 1 PID: 493 Comm: syz.2.16 Not tainted 5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   56.041050][  T493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.051178][  T493] RIP: 0010:new_curseg+0xe5d/0x18a0
[   56.056493][  T493] Code: 0b 4c 8b bd 30 ff ff ff 4c 89 ff be 08 00 00 00 e8 78 c2 93 ff f0 41 80 0f 04 41 b5 01 45 89 f7 e9 4d fb ff ff e8 e3 d0 59 ff <0f> 0b 4c 8b a5 30 ff ff ff 4c 89 e7 be 08 00 00 00 e8 4d c2 93 ff
[   56.076419][  T493] RSP: 0018:ffffc90000e97738 EFLAGS: 00010293
[   56.082550][  T493] RAX: ffffffff8209cf8d RBX: ffff888117617f58 RCX: ffff888112fb4f00
[   56.090722][  T493] RDX: 0000000000000000 RSI: 0000000000000018 RDI: 0000000000000018
[   56.099047][  T493] RBP: ffffc90000e97828 R08: 0000000000000004 R09: 0000000000000003
[   56.107118][  T493] R10: fffff520001d2ed8 R11: 1ffff920001d2ed8 R12: 0000000000000018
[   56.115278][  T493] R13: 1ffff11022ec2feb R14: 0000000000000018 R15: 000000000000000e
[   56.123436][  T493] FS:  00007fa3e86cb6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   56.132472][  T493] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.139162][  T493] CR2: 0000001b30c5ffff CR3: 0000000117225000 CR4: 00000000003506a0
[   56.147156][  T493] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   56.155252][  T493] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   56.163440][  T493] Call Trace:
[   56.166736][  T493]  __allocate_new_segment+0x13d/0x810
[   56.172171][  T493]  f2fs_allocate_new_section+0x1d5/0x280
[   56.177902][  T493]  ? new_curseg+0x18a0/0x18a0
[   56.182625][  T493]  ? __kasan_check_write+0x14/0x20
[   56.187749][  T493]  ? down_read_trylock+0x100/0x150
[   56.192901][  T493]  ? __init_rwsem+0x1c0/0x1c0
[   56.197680][  T493]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   56.203488][  T493]  expand_inode_data+0x5a8/0x930
[   56.208441][  T493]  ? f2fs_insert_range+0x5b0/0x5b0
[   56.213583][  T493]  ? inode_dio_wait+0x226/0x290
[   56.218449][  T493]  ? file_update_time+0x3a2/0x400
[   56.223564][  T493]  ? inode_owner_or_capable+0x140/0x140
[   56.229286][  T493]  f2fs_fallocate+0x42b/0x7e0
[   56.233978][  T493]  vfs_fallocate+0x4b4/0x590
[   56.238575][  T493]  do_vfs_ioctl+0x12e3/0x1510
[   56.243395][  T493]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   56.249080][  T493]  ? has_cap_mac_admin+0x330/0x330
[   56.254275][  T493]  ? __kasan_slab_free+0x11/0x20
[   56.259250][  T493]  ? slab_free_freelist_hook+0xc5/0x190
[   56.264810][  T493]  ? putname+0xfe/0x150
[   56.269013][  T493]  ? selinux_file_ioctl+0x377/0x480
[   56.274248][  T493]  ? selinux_file_alloc_security+0x120/0x120
[   56.280352][  T493]  ? __fget_files+0x2c4/0x320
[   56.285057][  T493]  ? security_file_ioctl+0x84/0xa0
[   56.290201][  T493]  __se_sys_ioctl+0x9f/0x1a0
[   56.294894][  T493]  __x64_sys_ioctl+0x7b/0x90
[   56.299555][  T493]  do_syscall_64+0x31/0x40
[   56.304006][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   56.309927][  T493] RIP: 0033:0x7fa3e8c59169
[   56.314363][  T493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.334009][  T493] RSP: 002b:00007fa3e86cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.342545][  T493] RAX: ffffffffffffffda RBX: 00007fa3e8e71fa0 RCX: 00007fa3e8c59169
[   56.350617][  T493] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   56.358599][  T493] RBP: 00007fa3e8cda2a0 R08: 0000000000000000 R09: 0000000000000000
[   56.366615][  T493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   56.374633][  T493] R13: 0000000000000000 R14: 00007fa3e8e71fa0 R15: 00007ffff25e4f48
[   56.382811][  T493] ---[ end trace d246e023a559e2ba ]---
[   56.388352][  T493] ------------[ cut here ]------------
[   56.393960][  T493] WARNING: CPU: 1 PID: 493 at fs/f2fs/segment.c:2636 new_curseg+0x14c0/0x18a0
[   56.402942][  T493] Modules linked in:
[   56.406851][  T493] CPU: 1 PID: 493 Comm: syz.2.16 Tainted: G        W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   56.418255][  T493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.428377][  T493] RIP: 0010:new_curseg+0x14c0/0x18a0
[   56.433692][  T493] Code: ff e8 a4 ca 59 ff 0f 0b 4c 8b 75 d0 49 8d 7e 78 be 08 00 00 00 e8 10 bc 93 ff f0 41 80 4e 78 04 e9 ba ed ff ff e8 80 ca 59 ff <0f> 0b 48 8b 5d d0 48 8d 7b 78 be 08 00 00 00 e8 ec bb 93 ff f0 80
[   56.453388][  T493] RSP: 0018:ffffc90000e97738 EFLAGS: 00010293
[   56.459585][  T493] RAX: ffffffff8209d5f0 RBX: ffff888106796301 RCX: ffff888112fb4f00
[   56.467568][  T493] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   56.475637][  T493] RBP: ffffc90000e97828 R08: dffffc0000000000 R09: ffffed1020cf2c79
[   56.483674][  T493] R10: ffffed1020cf2c79 R11: 1ffff11020cf2c78 R12: 0000000000000000
[   56.491678][  T493] R13: 0000000000000018 R14: 0000000000000001 R15: 0000000000000018
[   56.499817][  T493] FS:  00007fa3e86cb6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   56.509350][  T493] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   56.515969][  T493] CR2: 0000001b30c5ffff CR3: 0000000117225000 CR4: 00000000003506a0
[   56.523979][  T493] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   56.532035][  T493] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   56.540231][  T493] Call Trace:
[   56.543571][  T493]  __allocate_new_segment+0x13d/0x810
[   56.549033][  T493]  f2fs_allocate_new_section+0x1d5/0x280
[   56.554761][  T493]  ? new_curseg+0x18a0/0x18a0
[   56.559468][  T493]  ? __kasan_check_write+0x14/0x20
[   56.564591][  T493]  ? down_read_trylock+0x100/0x150
[   56.569736][  T493]  ? __init_rwsem+0x1c0/0x1c0
[   56.574429][  T493]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   56.580208][  T493]  expand_inode_data+0x5a8/0x930
[   56.585185][  T493]  ? f2fs_insert_range+0x5b0/0x5b0
[   56.590435][  T493]  ? inode_dio_wait+0x226/0x290
[   56.595322][  T493]  ? file_update_time+0x3a2/0x400
[   56.600446][  T493]  ? inode_owner_or_capable+0x140/0x140
[   56.606011][  T493]  f2fs_fallocate+0x42b/0x7e0
[   56.610724][  T493]  vfs_fallocate+0x4b4/0x590
[   56.615415][  T493]  do_vfs_ioctl+0x12e3/0x1510
[   56.620179][  T493]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   56.625852][  T493]  ? has_cap_mac_admin+0x330/0x330
[   56.631123][  T493]  ? __kasan_slab_free+0x11/0x20
[   56.636067][  T493]  ? slab_free_freelist_hook+0xc5/0x190
[   56.641641][  T493]  ? putname+0xfe/0x150
[   56.645812][  T493]  ? selinux_file_ioctl+0x377/0x480
[   56.651039][  T493]  ? selinux_file_alloc_security+0x120/0x120
[   56.657031][  T493]  ? __fget_files+0x2c4/0x320
[   56.661799][  T493]  ? security_file_ioctl+0x84/0xa0
[   56.667067][  T493]  __se_sys_ioctl+0x9f/0x1a0
[   56.671730][  T493]  __x64_sys_ioctl+0x7b/0x90
[   56.676334][  T493]  do_syscall_64+0x31/0x40
[   56.680807][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   56.686721][  T493] RIP: 0033:0x7fa3e8c59169
[   56.691173][  T493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.710870][  T493] RSP: 002b:00007fa3e86cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   56.719507][  T493] RAX: ffffffffffffffda RBX: 00007fa3e8e71fa0 RCX: 00007fa3e8c59169
[   56.727485][  T493] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   56.735574][  T493] RBP: 00007fa3e8cda2a0 R08: 0000000000000000 R09: 0000000000000000
[   56.743590][  T493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   56.751622][  T493] R13: 0000000000000000 R14: 00007fa3e8e71fa0 R15: 00007ffff25e4f48
[   56.759641][  T493] ---[ end trace d246e023a559e2bb ]---
[   56.765212][  T493] ==================================================================
[   56.773289][  T493] BUG: KASAN: slab-out-of-bounds in reset_curseg+0x4dd/0x560
[   56.780672][  T493] Read of size 4 at addr ffff888117b37bc0 by task syz.2.16/493
[   56.788219][  T493] 
[   56.790545][  T493] CPU: 1 PID: 493 Comm: syz.2.16 Tainted: G        W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   56.801732][  T493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   56.811773][  T493] Call Trace:
[   56.815057][  T493]  __dump_stack+0x21/0x24
[   56.819379][  T493]  dump_stack_lvl+0x169/0x1d8
[   56.824176][  T493]  ? show_regs_print_info+0x18/0x18
[   56.829383][  T493]  ? thaw_kernel_threads+0x220/0x220
[   56.834680][  T493]  print_address_description+0x7f/0x2c0
[   56.840217][  T493]  ? reset_curseg+0x4dd/0x560
[   56.844892][  T493]  kasan_report+0xe2/0x130
[   56.849416][  T493]  ? reset_curseg+0x4dd/0x560
[   56.854095][  T493]  __asan_report_load4_noabort+0x14/0x20
[   56.859724][  T493]  reset_curseg+0x4dd/0x560
[   56.864243][  T493]  new_curseg+0x12f6/0x18a0
[   56.868765][  T493]  __allocate_new_segment+0x13d/0x810
[   56.874298][  T493]  f2fs_allocate_new_section+0x1d5/0x280
[   56.879947][  T493]  ? new_curseg+0x18a0/0x18a0
[   56.884708][  T493]  ? __kasan_check_write+0x14/0x20
[   56.889812][  T493]  ? down_read_trylock+0x100/0x150
[   56.894916][  T493]  ? __init_rwsem+0x1c0/0x1c0
[   56.899770][  T493]  ? has_not_enough_free_secs+0x3d7/0x8a0
[   56.905497][  T493]  expand_inode_data+0x5a8/0x930
[   56.910447][  T493]  ? f2fs_insert_range+0x5b0/0x5b0
[   56.915578][  T493]  ? inode_dio_wait+0x226/0x290
[   56.920617][  T493]  ? file_update_time+0x3a2/0x400
[   56.925640][  T493]  ? inode_owner_or_capable+0x140/0x140
[   56.931219][  T493]  f2fs_fallocate+0x42b/0x7e0
[   56.935896][  T493]  vfs_fallocate+0x4b4/0x590
[   56.940504][  T493]  do_vfs_ioctl+0x12e3/0x1510
[   56.945183][  T493]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   56.950803][  T493]  ? has_cap_mac_admin+0x330/0x330
[   56.955909][  T493]  ? __kasan_slab_free+0x11/0x20
[   56.960834][  T493]  ? slab_free_freelist_hook+0xc5/0x190
[   56.966454][  T493]  ? putname+0xfe/0x150
[   56.970607][  T493]  ? selinux_file_ioctl+0x377/0x480
[   56.975963][  T493]  ? selinux_file_alloc_security+0x120/0x120
[   56.981963][  T493]  ? __fget_files+0x2c4/0x320
[   56.986636][  T493]  ? security_file_ioctl+0x84/0xa0
[   56.991737][  T493]  __se_sys_ioctl+0x9f/0x1a0
[   56.996334][  T493]  __x64_sys_ioctl+0x7b/0x90
[   57.000912][  T493]  do_syscall_64+0x31/0x40
[   57.005317][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   57.011194][  T493] RIP: 0033:0x7fa3e8c59169
[   57.015686][  T493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.035376][  T493] RSP: 002b:00007fa3e86cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.043789][  T493] RAX: ffffffffffffffda RBX: 00007fa3e8e71fa0 RCX: 00007fa3e8c59169
[   57.051757][  T493] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   57.059867][  T493] RBP: 00007fa3e8cda2a0 R08: 0000000000000000 R09: 0000000000000000
[   57.067927][  T493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   57.075897][  T493] R13: 0000000000000000 R14: 00007fa3e8e71fa0 R15: 00007ffff25e4f48
[   57.083861][  T493] 
[   57.086181][  T493] Allocated by task 493:
[   57.090442][  T493]  __kasan_kmalloc+0xda/0x110
[   57.095106][  T493]  __kmalloc+0x1a7/0x330
[   57.099340][  T493]  kvmalloc_node+0x88/0x130
[   57.103840][  T493]  f2fs_build_segment_manager+0xdba/0x48f0
[   57.109646][  T493]  f2fs_fill_super+0x42d1/0x6c70
[   57.114572][  T493]  mount_bdev+0x28b/0x3a0
[   57.118894][  T493]  f2fs_mount+0x34/0x40
[   57.123036][  T493]  legacy_get_tree+0xed/0x190
[   57.127700][  T493]  vfs_get_tree+0x89/0x260
[   57.132103][  T493]  do_new_mount+0x25a/0xa20
[   57.136594][  T493]  path_mount+0x572/0xc80
[   57.140911][  T493]  __se_sys_mount+0x318/0x380
[   57.145572][  T493]  __x64_sys_mount+0xbf/0xd0
[   57.150182][  T493]  do_syscall_64+0x31/0x40
[   57.154606][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   57.160568][  T493] 
[   57.162887][  T493] The buggy address belongs to the object at ffff888117b37800
[   57.162887][  T493]  which belongs to the cache kmalloc-1k of size 1024
[   57.177141][  T493] The buggy address is located 960 bytes inside of
[   57.177141][  T493]  1024-byte region [ffff888117b37800, ffff888117b37c00)
[   57.190599][  T493] The buggy address belongs to the page:
[   57.196250][  T493] page:ffffea00045ecc00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x117b30
[   57.206500][  T493] head:ffffea00045ecc00 order:3 compound_mapcount:0 compound_pincount:0
[   57.214825][  T493] flags: 0x4000000000010200(slab|head)
[   57.220294][  T493] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100042f00
[   57.229152][  T493] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   57.237732][  T493] page dumped because: kasan: bad access detected
[   57.244142][  T493] page_owner tracks the page as allocated
[   57.249871][  T493] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 107, ts 5710729468, free_ts 0
[   57.268178][  T493]  prep_new_page+0x179/0x180
[   57.272864][  T493]  get_page_from_freelist+0x2235/0x23d0
[   57.278407][  T493]  __alloc_pages_nodemask+0x268/0x5f0
[   57.283791][  T493]  new_slab+0x84/0x3f0
[   57.287861][  T493]  ___slab_alloc+0x2a6/0x450
[   57.292449][  T493]  __slab_alloc+0x63/0xa0
[   57.296897][  T493]  __kmalloc_track_caller+0x1ef/0x320
[   57.302274][  T493]  __alloc_skb+0xdc/0x520
[   57.306602][  T493]  netlink_sendmsg+0x5f6/0xb30
[   57.311393][  T493]  ____sys_sendmsg+0x5a2/0x8c0
[   57.316155][  T493]  ___sys_sendmsg+0x1f0/0x260
[   57.320836][  T493]  __x64_sys_sendmsg+0x1e2/0x2a0
[   57.325794][  T493]  do_syscall_64+0x31/0x40
[   57.330208][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   57.336091][  T493] page_owner free stack trace missing
[   57.341448][  T493] 
[   57.343786][  T493] Memory state around the buggy address:
[   57.349424][  T493]  ffff888117b37a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   57.357612][  T493]  ffff888117b37b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   57.365757][  T493] >ffff888117b37b80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   57.373819][  T493]                                            ^
[   57.380183][  T493]  ffff888117b37c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   57.388507][  T493]  ffff888117b37c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   57.396561][  T493] ==================================================================
[   57.404615][  T493] Disabling lock debugging due to kernel taint
[   57.420406][  T493] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[   57.432243][  T493] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[   57.440668][  T493] CPU: 1 PID: 493 Comm: syz.2.16 Tainted: G    B   W         5.10.240-syzkaller-1008085-g1154f779f3f3 #0
[   57.451860][  T493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   57.461922][  T493] RIP: 0010:update_sit_entry+0x3eb/0xf50
[   57.467993][  T493] Code: 89 45 a8 49 01 c5 41 f6 d7 41 80 e7 07 44 89 f9 41 bf 01 00 00 00 41 d3 e7 4d 89 ee 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 a5 08 00 00 41 0f b6 5d 00 44 89 f8 41
[   57.487696][  T493] RSP: 0018:ffffc90000e97350 EFLAGS: 00010246
[   57.493762][  T493] RAX: dffffc0000000000 RBX: ffff888117b37bc8 RCX: 0000000000000007
[   57.501766][  T493] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888117b37bc8
[   57.509745][  T493] RBP: ffffc90000e973d0 R08: ffff888112fb4f00 R09: 0000000000000003
[   57.517718][  T493] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000004000
[   57.525714][  T493] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000080
[   57.533686][  T493] FS:  00007fa3e86cb6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   57.542613][  T493] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.549195][  T493] CR2: 0000001b30c5ffff CR3: 0000000117225000 CR4: 00000000003506a0
[   57.557252][  T493] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   57.565342][  T493] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   57.573315][  T493] Call Trace:
[   57.576609][  T493]  ? __asan_report_store8_noabort+0x17/0x20
[   57.582502][  T493]  f2fs_allocate_data_block+0x156b/0x3a10
[   57.588217][  T493]  ? _raw_spin_unlock+0x4d/0x70
[   57.593062][  T493]  ? f2fs_inode_dirtied+0x26b/0x2a0
[   57.598259][  T493]  ? f2fs_io_type_to_rw_hint+0x1e0/0x1e0
[   57.604150][  T493]  ? f2fs_mark_inode_dirty_sync+0x110/0x140
[   57.610038][  T493]  ? inc_valid_block_count+0x562/0xa90
[   57.615489][  T493]  __allocate_data_block+0x52a/0x980
[   57.620772][  T493]  ? f2fs_map_blocks+0x35c0/0x35c0
[   57.625879][  T493]  f2fs_map_blocks+0xdc8/0x35c0
[   57.630742][  T493]  ? __kasan_check_write+0x14/0x20
[   57.635887][  T493]  ? f2fs_do_map_lock+0x290/0x290
[   57.640927][  T493]  ? __kasan_check_write+0x14/0x20
[   57.646052][  T493]  ? down_read_trylock+0x100/0x150
[   57.651167][  T493]  expand_inode_data+0x5d7/0x930
[   57.656103][  T493]  ? f2fs_insert_range+0x5b0/0x5b0
[   57.661208][  T493]  ? inode_dio_wait+0x226/0x290
[   57.666057][  T493]  ? file_update_time+0x3a2/0x400
[   57.671084][  T493]  ? inode_owner_or_capable+0x140/0x140
[   57.676628][  T493]  f2fs_fallocate+0x42b/0x7e0
[   57.681308][  T493]  vfs_fallocate+0x4b4/0x590
[   57.685896][  T493]  do_vfs_ioctl+0x12e3/0x1510
[   57.690570][  T493]  ? __ia32_compat_sys_ioctl+0x7b0/0x7b0
[   57.696317][  T493]  ? has_cap_mac_admin+0x330/0x330
[   57.701432][  T493]  ? __kasan_slab_free+0x11/0x20
[   57.706368][  T493]  ? slab_free_freelist_hook+0xc5/0x190
[   57.711909][  T493]  ? putname+0xfe/0x150
[   57.716061][  T493]  ? selinux_file_ioctl+0x377/0x480
[   57.721275][  T493]  ? selinux_file_alloc_security+0x120/0x120
[   57.727256][  T493]  ? __fget_files+0x2c4/0x320
[   57.731931][  T493]  ? security_file_ioctl+0x84/0xa0
[   57.737042][  T493]  __se_sys_ioctl+0x9f/0x1a0
[   57.741628][  T493]  __x64_sys_ioctl+0x7b/0x90
[   57.746214][  T493]  do_syscall_64+0x31/0x40
[   57.750627][  T493]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   57.756512][  T493] RIP: 0033:0x7fa3e8c59169
[   57.760927][  T493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.780610][  T493] RSP: 002b:00007fa3e86cb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   57.789228][  T493] RAX: ffffffffffffffda RBX: 00007fa3e8e71fa0 RCX: 00007fa3e8c59169
[   57.797294][  T493] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000005
[   57.805263][  T493] RBP: 00007fa3e8cda2a0 R08: 0000000000000000 R09: 0000000000000000
[   57.813236][  T493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   57.821294][  T493] R13: 0000000000000000 R14: 00007fa3e8e71fa0 R15: 00007ffff25e4f48
[   57.829262][  T493] Modules linked in:
[   57.834022][  T493] ---[ end trace d246e023a559e2bc ]---
[   57.840242][  T493] RIP: 0010:update_sit_entry+0x3eb/0xf50
[   57.845921][  T493] Code: 89 45 a8 49 01 c5 41 f6 d7 41 80 e7 07 44 89 f9 41 bf 01 00 00 00 41 d3 e7 4d 89 ee 49 c1 ee 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 04 06 84 c0 0f 85 a5 08 00 00 41 0f b6 5d 00 44 89 f8 41
[   57.866005][  T493] RSP: 0018:ffffc90000e97350 EFLAGS: 00010246
[   57.872332][  T493] RAX: dffffc0000000000 RBX: ffff888117b37bc8 RCX: 0000000000000007
[   57.880371][  T493] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888117b37bc8
[   57.888347][  T493] RBP: ffffc90000e973d0 R08: ffff888112fb4f00 R09: 0000000000000003
[   57.896632][  T493] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000004000
[   57.904639][  T493] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000080
[   57.912832][  T493] FS:  00007fa3e86cb6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   57.921785][  T493] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   57.928577][  T493] CR2: 0000001b30c5ffff CR3: 0000000117225000 CR4: 00000000003506a0
[   57.936640][  T493] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   57.944674][  T493] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   57.952928][  T493] Kernel panic - not syncing: Fatal exception
[   57.959215][  T493] Kernel Offset: disabled
[   57.963548][  T493] Rebooting in 86400 seconds..