Warning: Permanently added '10.128.0.219' (ED25519) to the list of known hosts.
2026/05/24 15:23:11 parsed 1 programs
[  150.419294][ T5631] cgroup: Unknown subsys name 'net'
[  150.650358][ T5631] cgroup: Unknown subsys name 'cpuset'
[  150.724989][ T5631] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  152.371412][ T5631] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  155.370133][ T4912] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  155.382046][ T4912] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  155.387715][ T4912] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  155.398338][ T4912] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  155.399042][ T4912] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  157.291362][ T1040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.291387][ T1040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  157.353571][ T1040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  157.353591][ T1040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.918582][ T5708] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.919584][ T5708] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.919692][ T5708] bridge_slave_0: entered allmulticast mode
[  160.921217][ T5708] bridge_slave_0: entered promiscuous mode
[  160.931117][ T5708] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.931316][ T5708] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.931479][ T5708] bridge_slave_1: entered allmulticast mode
[  160.933817][ T5708] bridge_slave_1: entered promiscuous mode
[  160.985297][ T5708] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  160.987755][ T5708] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  161.030949][ T5708] team0: Port device team_slave_0 added
[  161.032975][ T5708] team0: Port device team_slave_1 added
[  161.081168][ T5708] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.081184][ T5708] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  161.081208][ T5708] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.083418][ T5708] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.083432][ T5708] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  161.083452][ T5708] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.160113][ T5708] hsr_slave_0: entered promiscuous mode
[  161.161373][ T5708] hsr_slave_1: entered promiscuous mode
[  161.677525][ T5708] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  161.708525][ T5708] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  161.755820][ T5708] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  161.790761][ T5708] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  161.792749][ T5708] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  161.839884][ T5708] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  162.036388][ T5708] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  162.057034][ T5708] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  162.469566][ T5708] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.586047][ T5708] 8021q: adding VLAN 0 to HW filter on device team0
[  162.604534][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.604720][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.655657][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.655804][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.090614][ T5708] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.166569][ T5708] veth0_vlan: entered promiscuous mode
[  163.173565][ T5708] veth1_vlan: entered promiscuous mode
[  163.241308][ T5708] veth0_macvtap: entered promiscuous mode
[  163.495391][ T5708] veth1_macvtap: entered promiscuous mode
[  163.551635][ T5708] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.569999][ T5708] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.590789][   T56] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.618548][   T56] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.620109][   T56] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.620669][   T56] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.548787][ T1195] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/24 15:23:28 executed programs: 0
[  164.798707][ T4912] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  164.802413][ T4912] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  164.803166][ T4912] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  164.804159][ T4912] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  164.845666][ T4912] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  165.130745][ T1195] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.586489][ T1195] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.704177][ T5748] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.704303][ T5748] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.705874][ T5748] bridge_slave_0: entered allmulticast mode
[  165.708181][ T5748] bridge_slave_0: entered promiscuous mode
[  165.716267][ T5748] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.716447][ T5748] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.716600][ T5748] bridge_slave_1: entered allmulticast mode
[  165.719352][ T5748] bridge_slave_1: entered promiscuous mode
[  165.781105][ T5748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  165.783615][ T5748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.962266][ T1195] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  166.066412][ T5748] team0: Port device team_slave_0 added
[  166.070195][ T5748] team0: Port device team_slave_1 added
[  166.097880][ T5748] batman_adv: batadv0: Adding interface: batadv_slave_0
[  166.097896][ T5748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  166.097914][ T5748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  166.099129][ T5748] batman_adv: batadv0: Adding interface: batadv_slave_1
[  166.099140][ T5748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  166.099159][ T5748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  166.167150][ T5748] hsr_slave_0: entered promiscuous mode
[  166.168277][ T5748] hsr_slave_1: entered promiscuous mode
[  166.169191][ T5748] debugfs: 'hsr0' already exists in 'hsr'
[  166.169300][ T5748] Cannot create hsr debugfs directory
[  166.844701][ T1195] bridge_slave_1: left allmulticast mode
[  166.844894][ T1195] bridge_slave_1: left promiscuous mode
[  166.849044][ T1195] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.936775][ T4912] Bluetooth: hci0: command tx timeout
[  167.005525][ T1195] bridge_slave_0: left allmulticast mode
[  167.005548][ T1195] bridge_slave_0: left promiscuous mode
[  167.005722][ T1195] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.855112][ T1195] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  167.914998][ T1195] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  167.956408][ T1195] bond0 (unregistering): Released all slaves
[  168.074916][ T5257] 8021q: adding VLAN 0 to HW filter on device eth1
[  168.974578][ T1195] hsr_slave_0: left promiscuous mode
[  168.994565][ T1195] hsr_slave_1: left promiscuous mode
[  168.995669][ T1195] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.995770][ T1195] batman_adv: batadv0: Removing interface: batadv_slave_0
[  169.015037][ T4912] Bluetooth: hci0: command tx timeout
[  169.045872][ T1195] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  169.045898][ T1195] batman_adv: batadv0: Removing interface: batadv_slave_1
[  169.135846][ T1195] veth1_macvtap: left promiscuous mode
[  169.137973][ T1195] veth0_macvtap: left promiscuous mode
[  169.138187][ T1195] veth1_vlan: left promiscuous mode
[  169.138376][ T1195] veth0_vlan: left promiscuous mode
[  169.856203][ T1195] team0 (unregistering): Port device team_slave_1 removed
[  169.885251][ T1195] team0 (unregistering): Port device team_slave_0 removed
[  170.706001][ T5748] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  170.777981][ T5748] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  170.779934][ T5748] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  170.834462][ T5748] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  170.836158][ T5748] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  170.879994][ T5748] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  170.881160][ T5748] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  170.915262][ T5748] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  171.095377][ T4912] Bluetooth: hci0: command tx timeout
[  171.196592][ T5748] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.240773][ T5748] 8021q: adding VLAN 0 to HW filter on device team0
[  171.266866][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.267167][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[  171.309899][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.310072][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  171.938324][ T5748] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.997720][ T5748] veth0_vlan: entered promiscuous mode
[  172.009502][ T5748] veth1_vlan: entered promiscuous mode
[  172.051032][ T5748] veth0_macvtap: entered promiscuous mode
[  172.055725][ T5748] veth1_macvtap: entered promiscuous mode
[  172.077432][ T5748] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.178629][ T5748] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.204056][   T68] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.205770][   T68] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.205812][   T68] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.205845][   T68] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.627038][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.627058][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.683798][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.683817][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/24 15:23:36 executed programs: 2
[  173.078827][ T5851] loop0: detected capacity change from 0 to 32768
[  173.176209][ T4912] Bluetooth: hci0: command tx timeout
[  173.818766][ T5852] loop0: detected capacity change from 0 to 32768
[  174.357798][ T5853] loop0: detected capacity change from 0 to 32768
[  174.925473][ T5854] loop0: detected capacity change from 0 to 32768
[  175.499077][ T5855] loop0: detected capacity change from 0 to 32768
[  176.128064][ T5856] loop0: detected capacity change from 0 to 32768
[  176.698333][ T5857] loop0: detected capacity change from 0 to 32768
[  177.266927][ T5858] loop0: detected capacity change from 0 to 32768
[  177.864270][ T5859] loop0: detected capacity change from 0 to 32768
2026/05/24 15:23:41 executed programs: 11
[  178.417651][ T5860] loop0: detected capacity change from 0 to 32768
[  179.447008][ T5866] loop0: detected capacity change from 0 to 32768
[  179.964181][ T5867] loop0: detected capacity change from 0 to 32768
[  180.531118][ T5868] loop0: detected capacity change from 0 to 32768
[  181.108210][ T5870] loop0: detected capacity change from 0 to 32768
[  181.597167][ T5872] loop0: detected capacity change from 0 to 32768
[  182.167891][ T5873] loop0: detected capacity change from 0 to 32768
[  182.689794][ T5874] loop0: detected capacity change from 0 to 32768
[  183.212355][ T5875] loop0: detected capacity change from 0 to 32768
2026/05/24 15:23:47 executed programs: 21
[  183.768195][ T5876] loop0: detected capacity change from 0 to 32768
[  184.276133][ T5877] loop0: detected capacity change from 0 to 32768
[  184.778828][ T5878] loop0: detected capacity change from 0 to 32768
[  185.341379][ T5879] loop0: detected capacity change from 0 to 32768
[  185.889523][ T5880] loop0: detected capacity change from 0 to 32768
[  186.429470][ T5881] loop0: detected capacity change from 0 to 32768
[  186.947927][ T5882] loop0: detected capacity change from 0 to 32768
[  187.515068][ T5883] loop0: detected capacity change from 0 to 32768
[  188.052109][ T5884] loop0: detected capacity change from 0 to 32768
[  188.611584][ T5885] loop0: detected capacity change from 0 to 32768
2026/05/24 15:23:52 executed programs: 31
[  189.236187][ T5886] loop0: detected capacity change from 0 to 32768
[  189.782476][ T5887] loop0: detected capacity change from 0 to 32768
[  190.341631][ T5888] loop0: detected capacity change from 0 to 32768
[  190.842767][ T5889] loop0: detected capacity change from 0 to 32768
[  191.390237][ T5890] loop0: detected capacity change from 0 to 32768
[  191.921966][ T5891] loop0: detected capacity change from 0 to 32768
[  192.422186][ T5892] loop0: detected capacity change from 0 to 32768
[  192.988452][ T5893] loop0: detected capacity change from 0 to 32768
[  193.512173][ T5894] loop0: detected capacity change from 0 to 32768
[  194.005000][ T5895] loop0: detected capacity change from 0 to 32768
2026/05/24 15:23:57 executed programs: 41
[  194.298871][ T1337] ieee802154 phy0 wpan0: encryption failed: -22
[  194.298929][ T1337] ieee802154 phy1 wpan1: encryption failed: -22
[  194.560983][ T5896] loop0: detected capacity change from 0 to 32768
[  195.097541][ T5897] loop0: detected capacity change from 0 to 32768
[  195.622482][ T5898] loop0: detected capacity change from 0 to 32768
[  196.173962][ T5899] loop0: detected capacity change from 0 to 32768
[  196.693199][ T5900] loop0: detected capacity change from 0 to 32768
[  197.218411][ T5901] loop0: detected capacity change from 0 to 32768
[  197.743589][ T5902] loop0: detected capacity change from 0 to 32768
[  198.260588][ T5903] loop0: detected capacity change from 0 to 32768
[  198.797283][ T5904] loop0: detected capacity change from 0 to 32768
[  199.342345][ T5905] loop0: detected capacity change from 0 to 32768
2026/05/24 15:24:03 executed programs: 51
[  199.875378][ T5906] loop0: detected capacity change from 0 to 32768
[  200.423534][ T5907] loop0: detected capacity change from 0 to 32768
[  200.945403][ T5908] loop0: detected capacity change from 0 to 32768
[  201.491099][ T5909] loop0: detected capacity change from 0 to 32768
[  202.002122][ T5910] loop0: detected capacity change from 0 to 32768
[  202.597889][ T5911] loop0: detected capacity change from 0 to 32768
[  203.142407][ T5912] loop0: detected capacity change from 0 to 32768
[  203.698967][ T5913] loop0: detected capacity change from 0 to 32768
[  204.258220][ T5914] loop0: detected capacity change from 0 to 32768
[  204.313024][    C1] ==================================================================
[  204.313024][    C1] ==================================================================
[  204.313035][    C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[  204.313064][    C1] Read of size 4 at addr ffff888037164c08 by task ksoftirqd/1/30
[  204.313079][    C1] 
[  204.313096][    C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  204.313107][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  204.313121][    C1] Call Trace:
[  204.313125][    C1]  <TASK>
[  204.313129][    C1]  dump_stack_lvl+0xe8/0x150
[  204.313142][    C1]  print_address_description+0x55/0x1e0
[  204.313153][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.313164][    C1]  print_report+0x58/0x70
[  204.313173][    C1]  kasan_report+0x117/0x150
[  204.313185][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.313198][    C1]  lbmIODone+0x1312/0x16c0
[  204.313209][    C1]  ? blkg_put+0x22/0x240
[  204.313218][    C1]  ? blkg_put+0x22/0x240
[  204.313227][    C1]  ? blkg_put+0x18d/0x240
[  204.313235][    C1]  ? bio_endio+0x989/0x9d0
[  204.313247][    C1]  blk_update_request+0x57e/0xe60
[  204.313260][    C1]  blk_mq_end_request+0x3e/0x70
[  204.313271][    C1]  blk_done_softirq+0x10a/0x160
[  204.313281][    C1]  handle_softirqs+0x1de/0x6d0
[  204.313293][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  204.313303][    C1]  run_ksoftirqd+0x52/0x180
[  204.313314][    C1]  smpboot_thread_fn+0x541/0xa50
[  204.313327][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  204.313338][    C1]  kthread+0x388/0x470
[  204.313350][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  204.313360][    C1]  ? __pfx_kthread+0x10/0x10
[  204.313371][    C1]  ret_from_fork+0x514/0xb70
[  204.313382][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  204.313391][    C1]  ? __switch_to+0xc79/0x1410
[  204.313404][    C1]  ? __pfx_kthread+0x10/0x10
[  204.313415][    C1]  ret_from_fork_asm+0x1a/0x30
[  204.313429][    C1]  </TASK>
[  204.313432][    C1] 
[  204.313437][    C1] Allocated by task 5914:
[  204.313442][    C1]  kasan_save_track+0x3e/0x80
[  204.313451][    C1]  __kasan_kmalloc+0x93/0xb0
[  204.313458][    C1]  __kmalloc_cache_noprof+0x3a6/0x690
[  204.313468][    C1]  lmLogInit+0x3e5/0x1a00
[  204.313477][    C1]  lmLogOpen+0x4e1/0xfa0
[  204.313486][    C1]  jfs_mount_rw+0xee/0x670
[  204.313495][    C1]  jfs_fill_super+0x754/0xd80
[  204.313503][    C1]  get_tree_bdev_flags+0x431/0x4f0
[  204.313512][    C1]  vfs_get_tree+0x92/0x2a0
[  204.313520][    C1]  do_new_mount+0x341/0xd30
[  204.313532][    C1]  __se_sys_mount+0x31d/0x420
[  204.313543][    C1]  do_syscall_64+0x15f/0xf80
[  204.313554][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.313562][    C1] 
[  204.313564][    C1] Freed by task 5748:
[  204.313568][    C1]  kasan_save_track+0x3e/0x80
[  204.313575][    C1]  kasan_save_free_info+0x46/0x50
[  204.313587][    C1]  __kasan_slab_free+0x5c/0x80
[  204.313594][    C1]  kfree+0x1c5/0x6c0
[  204.313601][    C1]  lmLogShutdown+0x456/0x850
[  204.313611][    C1]  lmLogClose+0x28a/0x520
[  204.313621][    C1]  jfs_umount+0x2fb/0x3d0
[  204.313630][    C1]  jfs_put_super+0x8c/0x190
[  204.313637][    C1]  generic_shutdown_super+0x13d/0x2d0
[  204.313645][    C1]  kill_block_super+0x44/0x90
[  204.313654][    C1]  deactivate_locked_super+0xbc/0x130
[  204.313661][    C1]  cleanup_mnt+0x437/0x4d0
[  204.313669][    C1]  task_work_run+0x1d9/0x270
[  204.313680][    C1]  exit_to_user_mode_loop+0xf3/0x4d0
[  204.313691][    C1]  do_syscall_64+0x33e/0xf80
[  204.313701][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.313709][    C1] 
[  204.313711][    C1] The buggy address belongs to the object at ffff888037164c00
[  204.313711][    C1]  which belongs to the cache kmalloc-256 of size 256
[  204.313719][    C1] The buggy address is located 8 bytes inside of
[  204.313719][    C1]  freed 256-byte region [ffff888037164c00, ffff888037164d00)
[  204.313728][    C1] 
[  204.313730][    C1] The buggy address belongs to the physical page:
[  204.313739][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888037164a00 pfn:0x37164
[  204.313750][    C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  204.313757][    C1] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[  204.313768][    C1] page_type: f5(slab)
[  204.313777][    C1] raw: 0080000000000240 ffff88801a010b40 ffffea0000dbad10 ffffea0000b84410
[  204.313784][    C1] raw: ffff888037164a00 000000080010000f 00000000f5000000 0000000000000000
[  204.313792][    C1] head: 0080000000000240 ffff88801a010b40 ffffea0000dbad10 ffffea0000b84410
[  204.313800][    C1] head: ffff888037164a00 000000080010000f 00000000f5000000 0000000000000000
[  204.313807][    C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  204.313814][    C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  204.313819][    C1] page dumped because: kasan: bad access detected
[  204.313826][    C1] page_owner tracks the page as allocated
[  204.313832][    C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 21013309957, free_ts 0
[  204.313848][    C1]  post_alloc_hook+0x22d/0x280
[  204.313857][    C1]  get_page_from_freelist+0x27c8/0x2840
[  204.313867][    C1]  __alloc_frozen_pages_noprof+0x18d/0x380
[  204.313877][    C1]  allocate_slab+0x77/0x660
[  204.313888][    C1]  refill_objects+0x33c/0x3d0
[  204.313899][    C1]  __pcs_replace_empty_main+0x373/0x720
[  204.313910][    C1]  __kmalloc_noprof+0x530/0x7b0
[  204.313918][    C1]  __pcs_replace_empty_main+0x331/0x720
[  204.313929][    C1]  kmem_cache_alloc_noprof+0x433/0x680
[  204.313937][    C1]  mempool_init_node+0x210/0x4f0
[  204.313948][    C1]  mempool_init_noprof+0x3a/0x50
[  204.313957][    C1]  bioset_init+0x2ff/0x7f0
[  204.313966][    C1]  btrfs_bioset_init+0x1f/0xb0
[  204.313975][    C1]  init_btrfs_fs+0x6d/0x1f0
[  204.313986][    C1]  do_one_initcall+0x250/0x870
[  204.313995][    C1]  do_initcall_level+0x104/0x190
[  204.314006][    C1] page_owner free stack trace missing
[  204.314009][    C1] 
[  204.314011][    C1] Memory state around the buggy address:
[  204.314016][    C1]  ffff888037164b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  204.314022][    C1]  ffff888037164b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  204.314028][    C1] >ffff888037164c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  204.314032][    C1]                       ^
[  204.314037][    C1]  ffff888037164c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  204.314042][    C1]  ffff888037164d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  204.314046][    C1] ==================================================================
[  204.321349][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  204.321368][    C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  204.321389][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  204.321400][    C1] Call Trace:
[  204.321408][    C1]  <TASK>
[  204.321415][    C1]  vpanic+0x56c/0xa60
[  204.321441][    C1]  ? __pfx_vpanic+0x10/0x10
[  204.321461][    C1]  ? __pfx___schedule+0x10/0x10
[  204.321485][    C1]  panic+0xc5/0xd0
[  204.321504][    C1]  ? __pfx_panic+0x10/0x10
[  204.321524][    C1]  ? preempt_schedule_thunk+0x16/0x30
[  204.321552][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.321574][    C1]  check_panic_on_warn+0x89/0xb0
[  204.321597][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.321618][    C1]  end_report+0x73/0x170
[  204.321638][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.321657][    C1]  kasan_report+0x128/0x150
[  204.321677][    C1]  ? lbmIODone+0x1312/0x16c0
[  204.321701][    C1]  lbmIODone+0x1312/0x16c0
[  204.321722][    C1]  ? blkg_put+0x22/0x240
[  204.321739][    C1]  ? blkg_put+0x22/0x240
[  204.321756][    C1]  ? blkg_put+0x18d/0x240
[  204.321773][    C1]  ? bio_endio+0x989/0x9d0
[  204.321793][    C1]  blk_update_request+0x57e/0xe60
[  204.321819][    C1]  blk_mq_end_request+0x3e/0x70
[  204.321839][    C1]  blk_done_softirq+0x10a/0x160
[  204.321859][    C1]  handle_softirqs+0x1de/0x6d0
[  204.321880][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  204.321900][    C1]  run_ksoftirqd+0x52/0x180
[  204.321920][    C1]  smpboot_thread_fn+0x541/0xa50
[  204.321940][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  204.321962][    C1]  kthread+0x388/0x470
[  204.321983][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  204.322002][    C1]  ? __pfx_kthread+0x10/0x10
[  204.322024][    C1]  ret_from_fork+0x514/0xb70
[  204.322043][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  204.322062][    C1]  ? __switch_to+0xc79/0x1410
[  204.322091][    C1]  ? __pfx_kthread+0x10/0x10
[  204.322113][    C1]  ret_from_fork_asm+0x1a/0x30
[  204.322139][    C1]  </TASK>
[  204.322629][    C1] Kernel Offset: disabled