Warning: Permanently added '10.128.0.77' (ED25519) to the list of known hosts.
2024/05/10 03:34:30 ignoring optional flag "sandboxArg"="0"
2024/05/10 03:34:30 parsed 1 programs
[ 40.494952][ T30] audit: type=1400 audit(1715312070.469:157): avc: denied { mounton } for pid=340 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 40.520243][ T30] audit: type=1400 audit(1715312070.469:158): avc: denied { mount } for pid=340 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
2024/05/10 03:34:30 executed programs: 0
[ 40.620632][ T30] audit: type=1400 audit(1715312070.599:159): avc: denied { unlink } for pid=340 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 40.657594][ T340] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 40.701475][ T346] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.708315][ T346] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.715611][ T346] device bridge_slave_0 entered promiscuous mode
[ 40.722411][ T346] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.729247][ T346] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.736877][ T346] device bridge_slave_1 entered promiscuous mode
[ 40.769252][ T30] audit: type=1400 audit(1715312070.739:160): avc: denied { write } for pid=346 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 40.773559][ T346] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.789634][ T30] audit: type=1400 audit(1715312070.739:161): avc: denied { read } for pid=346 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 40.796422][ T346] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.796503][ T346] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.830986][ T346] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 40.847156][ T26] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.854292][ T26] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.861731][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 40.868877][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 40.877687][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 40.885911][ T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.892786][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 40.909847][ T346] device veth0_vlan entered promiscuous mode
[ 40.916634][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 40.924932][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 40.932796][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 40.940362][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 40.947536][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 40.955653][ T20] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.962521][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.970387][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 40.978110][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 40.989145][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 40.997768][ T346] device veth1_macvtap entered promiscuous mode
[ 41.006262][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 41.016592][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 41.029340][ T30] audit: type=1400 audit(1715312070.999:162): avc: denied { mounton } for pid=346 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 41.325520][ T351] loop0: detected capacity change from 0 to 131072
[ 41.332418][ T30] audit: type=1400 audit(1715312071.309:163): avc: denied { mounton } for pid=350 comm="syz-executor.0" path="/root/syzkaller-testdir1499322940/syzkaller.KElTUE/0/file2" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 41.333196][ T351] F2FS-fs (loop0): Invalid log sectors per block(124) log sectorsize(9)
[ 41.367772][ T351] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 41.377132][ T351] F2FS-fs (loop0): invalid crc value
[ 41.384077][ T351] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (9621037545273099749, 1067266233009637)
[ 41.396157][ T351] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[ 41.413711][ T351] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 41.420594][ T351] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 41.428061][ T30] audit: type=1400 audit(1715312071.399:164): avc: denied { mount } for pid=350 comm="syz-executor.0" name="/" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 41.450114][ T30] audit: type=1400 audit(1715312071.399:165): avc: denied { read } for pid=350 comm="syz-executor.0" name="file2" dev="loop0" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 41.472747][ T30] audit: type=1400 audit(1715312071.399:166): avc: denied { open } for pid=350 comm="syz-executor.0" path="/root/syzkaller-testdir1499322940/syzkaller.KElTUE/0/file2/file2" dev="loop0" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 41.474711][ T346] ------------[ cut here ]------------
[ 41.505844][ T346] WARNING: CPU: 1 PID: 346 at fs/f2fs/inode.c:850 f2fs_evict_inode+0x1191/0x1470
[ 41.515317][ T346] Modules linked in:
[ 41.519059][ T346] CPU: 0 PID: 346 Comm: syz-executor.0 Not tainted 5.15.149-syzkaller-1069109-g5d96939590c0 #0
[ 41.529306][ T346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 41.539138][ T346] RIP: 0010:f2fs_evict_inode+0x1191/0x1470
[ 41.544993][ T346] Code: 53 ff eb 0f e8 f0 94 53 ff 49 bf 00 00 00 00 00 fc ff df 48 8b 5c 24 28 4c 89 ef e8 89 21 03 00 e9 a1 fc ff ff e8 cf 94 53 ff <0f> 0b 4c 89 f7 be 08 00 00 00 e8 b0 a5 95 ff f0 41 80 0e 04 e9 7e
[ 41.564609][ T346] RSP: 0018:ffffc90000a97960 EFLAGS: 00010293
[ 41.570458][ T346] RAX: ffffffff821c8f31 RBX: 0000000000000002 RCX: ffff888123ea93c0
[ 41.578330][ T346] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[ 41.586445][ T346] RBP: ffffc90000a97ad0 R08: ffffffff821c8bb9 R09: ffffed10249098b9
[ 41.594532][ T346] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88812484c2d8
[ 41.602680][ T346] R13: ffff88812484c2b0 R14: ffff88810b038078 R15: dffffc0000000000
[ 41.610504][ T346] FS: 0000555556458480(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 41.619348][ T346] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 41.626366][ T346] CR2: 000056458b78cee8 CR3: 0000000123967000 CR4: 00000000003506b0
[ 41.634541][ T346] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 41.642669][ T346] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 41.650532][ T346] Call Trace:
[ 41.653624][ T346]
[ 41.656476][ T346] ? show_regs+0x58/0x60
[ 41.660664][ T346] ? __warn+0x160/0x2f0
[ 41.664642][ T346] ? f2fs_evict_inode+0x1191/0x1470
[ 41.669670][ T346] ? report_bug+0x3d9/0x5b0
[ 41.674050][ T346] ? f2fs_evict_inode+0x1191/0x1470
[ 41.679049][ T346] ? handle_bug+0x41/0x70
[ 41.683267][ T346] ? exc_invalid_op+0x1b/0x50
[ 41.687752][ T346] ? asm_exc_invalid_op+0x1b/0x20
[ 41.692696][ T346] ? f2fs_evict_inode+0xe19/0x1470
[ 41.697549][ T346] ? f2fs_evict_inode+0x1191/0x1470
[ 41.702922][ T346] ? f2fs_evict_inode+0x1191/0x1470
[ 41.707958][ T346] ? _raw_spin_unlock+0x4d/0x70
[ 41.712928][ T346] ? f2fs_write_inode+0x5d0/0x5d0
[ 41.717869][ T346] ? bit_waitqueue+0x30/0x30
[ 41.722536][ T346] ? locks_free_lock_context+0x42/0x70
[ 41.727885][ T346] ? __destroy_inode+0x35f/0x4e0
[ 41.732729][ T346] ? f2fs_write_inode+0x5d0/0x5d0
[ 41.737591][ T346] evict+0x2a3/0x630
[ 41.741675][ T346] evict_inodes+0x5db/0x660
[ 41.746012][ T346] ? clear_inode+0x150/0x150
[ 41.750620][ T346] generic_shutdown_super+0x9c/0x2e0
[ 41.755872][ T346] kill_block_super+0x7e/0xe0
[ 41.760502][ T346] kill_f2fs_super+0x2f9/0x3c0
[ 41.765586][ T346] ? f2fs_mount+0x40/0x40
[ 41.769744][ T346] ? unregister_shrinker+0x23c/0x2d0
[ 41.774930][ T346] deactivate_locked_super+0xad/0x110
[ 41.780528][ T346] deactivate_super+0xbe/0xf0
[ 41.785011][ T346] cleanup_mnt+0x45c/0x510
[ 41.789347][ T346] __cleanup_mnt+0x19/0x20
[ 41.793671][ T346] task_work_run+0x129/0x190
[ 41.798209][ T346] exit_to_user_mode_loop+0xc4/0xe0
[ 41.803381][ T346] exit_to_user_mode_prepare+0x5a/0xa0
[ 41.808632][ T346] syscall_exit_to_user_mode+0x26/0x160
[ 41.814311][ T346] do_syscall_64+0x49/0xb0
[ 41.818472][ T346] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 41.824330][ T346] RIP: 0033:0x7f10e7b1c017
[ 41.828544][ T346] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 41.848340][ T346] RSP: 002b:00007ffee91bd138 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 41.856564][ T346] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f10e7b1c017
[ 41.864571][ T346] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffee91bd1f0
[ 41.872705][ T346] RBP: 00007ffee91bd1f0 R08: 0000000000000000 R09: 0000000000000000
[ 41.880821][ T346] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee91be2b0
[ 41.888856][ T346] R13: 00007f10e7b663b9 R14: 000000000000a04c R15: 0000000000000003
[ 41.896882][ T346]
[ 41.899636][ T346] ---[ end trace 5dc209b232d46ccb ]---
[ 41.940245][ T346] ==================================================================
[ 41.948217][ T346] BUG: KASAN: use-after-free in _raw_spin_lock+0x97/0x1b0
[ 41.955158][ T346] Write of size 4 at addr ffff88812484c338 by task syz-executor.0/346
[ 41.963138][ T346]
[ 41.965315][ T346] CPU: 0 PID: 346 Comm: syz-executor.0 Tainted: G W 5.15.149-syzkaller-1069109-g5d96939590c0 #0
[ 41.976860][ T346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 41.986849][ T346] Call Trace:
[ 41.989959][ T346]
[ 41.992828][ T346] dump_stack_lvl+0x151/0x1b7
[ 41.997344][ T346] ? io_uring_drop_tctx_refs+0x190/0x190
[ 42.002879][ T346] ? __wake_up_klogd+0xd5/0x110
[ 42.007540][ T346] ? panic+0x751/0x751
[ 42.011402][ T346] print_address_description+0x87/0x3b0
[ 42.016785][ T346] kasan_report+0x179/0x1c0
[ 42.021495][ T346] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 42.027495][ T346] ? _raw_spin_lock+0x97/0x1b0
[ 42.032101][ T346] ? _raw_spin_lock+0x97/0x1b0
[ 42.036692][ T346] kasan_check_range+0x293/0x2a0
[ 42.041667][ T346] __kasan_check_write+0x14/0x20
[ 42.046560][ T346] _raw_spin_lock+0x97/0x1b0
[ 42.050924][ T346] ? _raw_spin_trylock_bh+0x190/0x190
[ 42.056220][ T346] ? _raw_spin_lock+0xa4/0x1b0
[ 42.060940][ T346] ? _raw_spin_trylock_bh+0x190/0x190
[ 42.066203][ T346] ? remove_wait_queue+0x140/0x140
[ 42.071152][ T346] igrab+0x20/0xa0
[ 42.074719][ T346] f2fs_sync_inode_meta+0x14d/0x2a0
[ 42.079749][ T346] f2fs_write_checkpoint+0xab4/0x1fb0
[ 42.085134][ T346] ? f2fs_get_sectors_written+0x500/0x500
[ 42.090710][ T346] ? rwsem_write_trylock+0x15b/0x290
[ 42.095892][ T346] ? __kasan_check_write+0x14/0x20
[ 42.100841][ T346] ? mutex_unlock+0xb2/0x260
[ 42.105264][ T346] f2fs_issue_checkpoint+0x31b/0x4d0
[ 42.110480][ T346] ? f2fs_destroy_checkpoint_caches+0x30/0x30
[ 42.116376][ T346] ? sync_inodes_sb+0x7cd/0x8b0
[ 42.121101][ T346] ? try_to_writeback_inodes_sb+0xc0/0xc0
[ 42.126615][ T346] f2fs_sync_fs+0x186/0x2f0
[ 42.130951][ T346] sync_filesystem+0x1cf/0x250
[ 42.135548][ T346] f2fs_quota_off_umount+0x20e/0x220
[ 42.140754][ T346] ? f2fs_drop_inode+0xa20/0xa20
[ 42.145612][ T346] f2fs_put_super+0xb9/0xc10
[ 42.150075][ T346] ? f2fs_drop_inode+0xa20/0xa20
[ 42.154906][ T346] ? __fsnotify_vfsmount_delete+0x20/0x20
[ 42.160546][ T346] ? clear_inode+0x150/0x150
[ 42.165057][ T346] ? fscrypt_destroy_keyring+0x287/0x2a0
[ 42.170756][ T346] ? f2fs_drop_inode+0xa20/0xa20
[ 42.175617][ T346] generic_shutdown_super+0x157/0x2e0
[ 42.180908][ T346] kill_block_super+0x7e/0xe0
[ 42.185558][ T346] kill_f2fs_super+0x2f9/0x3c0
[ 42.190129][ T346] ? f2fs_mount+0x40/0x40
[ 42.194367][ T346] ? unregister_shrinker+0x23c/0x2d0
[ 42.199488][ T346] deactivate_locked_super+0xad/0x110
[ 42.204700][ T346] deactivate_super+0xbe/0xf0
[ 42.209221][ T346] cleanup_mnt+0x45c/0x510
[ 42.213465][ T346] __cleanup_mnt+0x19/0x20
[ 42.217712][ T346] task_work_run+0x129/0x190
[ 42.222227][ T346] exit_to_user_mode_loop+0xc4/0xe0
[ 42.227366][ T346] exit_to_user_mode_prepare+0x5a/0xa0
[ 42.232730][ T346] syscall_exit_to_user_mode+0x26/0x160
[ 42.238109][ T346] do_syscall_64+0x49/0xb0
[ 42.242447][ T346] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 42.248264][ T346] RIP: 0033:0x7f10e7b1c017
[ 42.252605][ T346] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8
[ 42.272588][ T346] RSP: 002b:00007ffee91bd138 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 42.281002][ T346] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f10e7b1c017
[ 42.288910][ T346] RDX: 0000000000000000 RSI: 000000000000000a RDI: 00007ffee91bd1f0
[ 42.296709][ T346] RBP: 00007ffee91bd1f0 R08: 0000000000000000 R09: 0000000000000000
[ 42.304534][ T346] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee91be2b0
[ 42.312510][ T346] R13: 00007f10e7b663b9 R14: 000000000000a04c R15: 0000000000000003
[ 42.320418][ T346]
[ 42.323278][ T346]
[ 42.325448][ T346] Allocated by task 351:
[ 42.329530][ T346] __kasan_slab_alloc+0xb1/0xe0
[ 42.334299][ T346] slab_post_alloc_hook+0x53/0x2c0
[ 42.339335][ T346] kmem_cache_alloc+0xf5/0x200
[ 42.343935][ T346] f2fs_alloc_inode+0x26/0x340
[ 42.348705][ T346] iget_locked+0x174/0x860
[ 42.352960][ T346] f2fs_iget+0x55/0x4de0
[ 42.357039][ T346] f2fs_lookup+0x410/0xd80
[ 42.361301][ T346] path_openat+0x1194/0x2f40
[ 42.365719][ T346] do_filp_open+0x21c/0x460
[ 42.370059][ T346] do_sys_openat2+0x13f/0x830
[ 42.374742][ T346] __x64_sys_open+0x221/0x270
[ 42.379257][ T346] do_syscall_64+0x3d/0xb0
[ 42.383510][ T346] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 42.389418][ T346]
[ 42.391589][ T346] Freed by task 346:
[ 42.395313][ T346] kasan_set_track+0x4b/0x70
[ 42.399826][ T346] kasan_set_free_info+0x23/0x40
[ 42.404772][ T346] ____kasan_slab_free+0x126/0x160
[ 42.409971][ T346] __kasan_slab_free+0x11/0x20
[ 42.414934][ T346] slab_free_freelist_hook+0xbd/0x190
[ 42.420145][ T346] kmem_cache_free+0x116/0x2e0
[ 42.424822][ T346] f2fs_free_inode+0x24/0x30
[ 42.429334][ T346] i_callback+0x4b/0x70
[ 42.433326][ T346] rcu_do_batch+0x57a/0xc10
[ 42.437666][ T346] rcu_core+0x517/0x1020
[ 42.441746][ T346] rcu_core_si+0x9/0x10
[ 42.445911][ T346] __do_softirq+0x26d/0x5bf
[ 42.450261][ T346]
[ 42.452428][ T346] Last potentially related work creation:
[ 42.457977][ T346] kasan_save_stack+0x3b/0x60
[ 42.462575][ T346] __kasan_record_aux_stack+0xd3/0xf0
[ 42.467783][ T346] kasan_record_aux_stack_noalloc+0xb/0x10
[ 42.473798][ T346] call_rcu+0x133/0x12a0
[ 42.477872][ T346] evict+0x5df/0x630
[ 42.481604][ T346] evict_inodes+0x5db/0x660
[ 42.485946][ T346] generic_shutdown_super+0x9c/0x2e0
[ 42.491150][ T346] kill_block_super+0x7e/0xe0
[ 42.495836][ T346] kill_f2fs_super+0x2f9/0x3c0
[ 42.500437][ T346] deactivate_locked_super+0xad/0x110
[ 42.505650][ T346] deactivate_super+0xbe/0xf0
[ 42.510162][ T346] cleanup_mnt+0x45c/0x510
[ 42.514498][ T346] __cleanup_mnt+0x19/0x20
[ 42.518834][ T346] task_work_run+0x129/0x190
[ 42.523521][ T346] exit_to_user_mode_loop+0xc4/0xe0
[ 42.528653][ T346] exit_to_user_mode_prepare+0x5a/0xa0
[ 42.533938][ T346] syscall_exit_to_user_mode+0x26/0x160
[ 42.539411][ T346] do_syscall_64+0x49/0xb0
[ 42.543662][ T346] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 42.549472][ T346]
[ 42.551645][ T346] The buggy address belongs to the object at ffff88812484c2b0
[ 42.551645][ T346] which belongs to the cache f2fs_inode_cache of size 1424
[ 42.566405][ T346] The buggy address is located 136 bytes inside of
[ 42.566405][ T346] 1424-byte region [ffff88812484c2b0, ffff88812484c840)
[ 42.579694][ T346] The buggy address belongs to the page:
[ 42.585169][ T346] page:ffffea0004921200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x124848
[ 42.595326][ T346] head:ffffea0004921200 order:3 compound_mapcount:0 compound_pincount:0
[ 42.603559][ T346] flags: 0x4000000000010200(slab|head|zone=1)
[ 42.609476][ T346] raw: 4000000000010200 0000000000000000 dead000000000122 ffff8881003e4300
[ 42.617899][ T346] raw: 0000000000000000 0000000080150015 00000001ffffffff 0000000000000000
[ 42.626386][ T346] page dumped because: kasan: bad access detected
[ 42.632642][ T346] page_owner tracks the page as allocated
[ 42.638187][ T346] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 351, ts 41376593082, free_ts 0
[ 42.658592][ T346] post_alloc_hook+0x1a3/0x1b0
[ 42.663279][ T346] prep_new_page+0x1b/0x110
[ 42.667652][ T346] get_page_from_freelist+0x3550/0x35d0
[ 42.673092][ T346] __alloc_pages+0x27e/0x8f0
[ 42.677803][ T346] new_slab+0x9a/0x4e0
[ 42.681667][ T346] ___slab_alloc+0x39e/0x830
[ 42.686095][ T346] __slab_alloc+0x4a/0x90
[ 42.690349][ T346] kmem_cache_alloc+0x134/0x200
[ 42.695395][ T346] f2fs_alloc_inode+0x26/0x340
[ 42.699981][ T346] iget_locked+0x174/0x860
[ 42.704235][ T346] f2fs_iget+0x55/0x4de0
[ 42.708330][ T346] f2fs_fill_super+0x4eed/0x80e0
[ 42.713089][ T346] mount_bdev+0x282/0x3b0
[ 42.717457][ T346] f2fs_mount+0x34/0x40
[ 42.721598][ T346] legacy_get_tree+0xf1/0x190
[ 42.726108][ T346] vfs_get_tree+0x88/0x290
[ 42.730361][ T346] page_owner free stack trace missing
[ 42.735570][ T346]
[ 42.737742][ T346] Memory state around the buggy address:
[ 42.743434][ T346] ffff88812484c200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 42.751458][ T346] ffff88812484c280: fc fc fc fc fc fc fa fb fb fb fb fb fb fb fb fb
[ 42.759354][ T346] >ffff88812484c300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 42.767247][ T346] ^
[ 42.772978][ T346] ffff88812484c380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 42.780963][ T346] ffff88812484c400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 42.788873][ T346] ==================================================================
[ 42.796766][ T346] Disabling lock debugging due to kernel taint