Warning: Permanently added '10.128.0.38' (ED25519) to the list of known hosts.
2025/11/30 22:56:27 parsed 1 programs
syzkaller login: [ 82.924719][ T5802] cgroup: Unknown subsys name 'net'
[ 83.165626][ T5802] cgroup: Unknown subsys name 'cpuset'
[ 83.231463][ T5802] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 84.919538][ T5802] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 86.944548][ T1228] cfg80211: failed to load regulatory.db
[ 89.079364][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 89.084594][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 89.085773][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 89.091954][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 89.092931][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 90.168638][ T5839] chnl_net:caif_netlink_parms(): no params data found
[ 91.347859][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.349256][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.349490][ T5839] bridge_slave_0: entered allmulticast mode
[ 91.353575][ T5839] bridge_slave_0: entered promiscuous mode
[ 91.393085][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.393295][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.393475][ T5839] bridge_slave_1: entered allmulticast mode
[ 91.396225][ T5839] bridge_slave_1: entered promiscuous mode
[ 91.708481][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 91.754496][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.281448][ T5839] team0: Port device team_slave_0 added
[ 92.302249][ T5839] team0: Port device team_slave_1 added
[ 92.506584][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.506595][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 92.506608][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.513599][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 92.513626][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 92.551975][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.551992][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 92.552016][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.956463][ T5839] hsr_slave_0: entered promiscuous mode
[ 92.958083][ T5839] hsr_slave_1: entered promiscuous mode
[ 92.960043][ T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 92.960058][ T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.204854][ T5839] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 94.278014][ T5839] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 94.308568][ T5839] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 94.345545][ T5839] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 94.492637][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[ 94.519747][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[ 94.533135][ T1515] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.533310][ T1515] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 94.559232][ T57] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.559441][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.862375][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.077948][ T5839] veth0_vlan: entered promiscuous mode
[ 95.093638][ T5839] veth1_vlan: entered promiscuous mode
[ 95.130808][ T5839] veth0_macvtap: entered promiscuous mode
[ 95.138908][ T5839] veth1_macvtap: entered promiscuous mode
[ 95.158567][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 95.168863][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 95.198747][ T57] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.208986][ T57] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.210302][ T57] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.218402][ T1515] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/11/30 22:56:42 executed programs: 0
[ 95.560104][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 95.566400][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 95.567657][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 95.568965][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 95.569713][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 95.689360][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 95.692630][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 95.693832][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 95.695948][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 95.697680][ T5846] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 95.736650][ T5846] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 95.748368][ T5846] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 95.759898][ T5923] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 95.772600][ T5923] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 95.774190][ T5923] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 95.843690][ T5925] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 95.847123][ T5925] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 95.871131][ T61] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 95.881827][ T5846] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 95.894772][ T5846] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 95.898240][ T61] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 95.899101][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 95.900763][ T5846] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 95.902825][ T61] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 95.908259][ T61] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 97.415363][ T1496] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.474037][ T5917] chnl_net:caif_netlink_parms(): no params data found
[ 97.545218][ T5916] chnl_net:caif_netlink_parms(): no params data found
[ 97.557133][ T5924] chnl_net:caif_netlink_parms(): no params data found
[ 97.663603][ T61] Bluetooth: hci0: command tx timeout
[ 97.726387][ T1496] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.857453][ T5918] chnl_net:caif_netlink_parms(): no params data found
[ 97.910977][ T5925] Bluetooth: hci2: command tx timeout
[ 97.911213][ T61] Bluetooth: hci3: command tx timeout
[ 97.981019][ T5925] Bluetooth: hci1: command tx timeout
[ 97.981320][ T61] Bluetooth: hci4: command tx timeout
[ 98.194205][ T1496] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.223994][ T5911] chnl_net:caif_netlink_parms(): no params data found
[ 98.653728][ T1496] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.908517][ T5917] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.908703][ T5917] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.909279][ T5917] bridge_slave_0: entered allmulticast mode
[ 98.915196][ T5917] bridge_slave_0: entered promiscuous mode
[ 99.079219][ T5917] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.079317][ T5917] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.079437][ T5917] bridge_slave_1: entered allmulticast mode
[ 99.081189][ T5917] bridge_slave_1: entered promiscuous mode
[ 99.164481][ T5916] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.164613][ T5916] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.164826][ T5916] bridge_slave_0: entered allmulticast mode
[ 99.167637][ T5916] bridge_slave_0: entered promiscuous mode
[ 99.171636][ T5924] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.171821][ T5924] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.172007][ T5924] bridge_slave_0: entered allmulticast mode
[ 99.174770][ T5924] bridge_slave_0: entered promiscuous mode
[ 99.401972][ T5916] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.402116][ T5916] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.402319][ T5916] bridge_slave_1: entered allmulticast mode
[ 99.404307][ T5916] bridge_slave_1: entered promiscuous mode
[ 99.407296][ T5924] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.407367][ T5924] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.407492][ T5924] bridge_slave_1: entered allmulticast mode
[ 99.409012][ T5924] bridge_slave_1: entered promiscuous mode
[ 99.551901][ T5918] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.552095][ T5918] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.552279][ T5918] bridge_slave_0: entered allmulticast mode
[ 99.554055][ T5918] bridge_slave_0: entered promiscuous mode
[ 99.741081][ T61] Bluetooth: hci0: command tx timeout
[ 99.748287][ T5917] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.748529][ T5918] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.748670][ T5918] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.748831][ T5918] bridge_slave_1: entered allmulticast mode
[ 99.750569][ T5918] bridge_slave_1: entered promiscuous mode
[ 99.905805][ T5911] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.905893][ T5911] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.906029][ T5911] bridge_slave_0: entered allmulticast mode
[ 99.907557][ T5911] bridge_slave_0: entered promiscuous mode
[ 99.945147][ T5917] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.981176][ T61] Bluetooth: hci3: command tx timeout
[ 99.981206][ T61] Bluetooth: hci2: command tx timeout
[ 100.054584][ T5916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.058044][ T5924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.060442][ T5911] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.060536][ T5911] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.060650][ T5911] bridge_slave_1: entered allmulticast mode
[ 100.061317][ T61] Bluetooth: hci4: command tx timeout
[ 100.061343][ T61] Bluetooth: hci1: command tx timeout
[ 100.067008][ T5911] bridge_slave_1: entered promiscuous mode
[ 100.216543][ T5916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.218697][ T5924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.584865][ T5918] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.775224][ T5917] team0: Port device team_slave_0 added
[ 100.778011][ T5918] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.918199][ T5911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.939953][ T5917] team0: Port device team_slave_1 added
[ 101.013660][ T5916] team0: Port device team_slave_0 added
[ 101.016366][ T5924] team0: Port device team_slave_0 added
[ 101.019797][ T5911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 101.164049][ T5916] team0: Port device team_slave_1 added
[ 101.243394][ T5924] team0: Port device team_slave_1 added
[ 101.344868][ T5918] team0: Port device team_slave_0 added
[ 101.746289][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 101.746302][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 101.746317][ T5917] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 101.749119][ T5918] team0: Port device team_slave_1 added
[ 101.821268][ T5925] Bluetooth: hci0: command tx timeout
[ 101.824550][ T5911] team0: Port device team_slave_0 added
[ 101.882534][ T1496] bridge_slave_1: left allmulticast mode
[ 101.882736][ T1496] bridge_slave_1: left promiscuous mode
[ 101.884485][ T1496] bridge0: port 2(bridge_slave_1) entered disabled state
[ 101.972201][ T1496] bridge_slave_0: left allmulticast mode
[ 101.972221][ T1496] bridge_slave_0: left promiscuous mode
[ 101.972390][ T1496] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.062072][ T5925] Bluetooth: hci2: command tx timeout
[ 102.062108][ T5925] Bluetooth: hci3: command tx timeout
[ 102.141202][ T61] Bluetooth: hci1: command tx timeout
[ 102.141234][ T61] Bluetooth: hci4: command tx timeout
[ 103.681681][ T1496] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 103.741669][ T1496] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 103.763564][ T1496] bond0 (unregistering): Released all slaves
[ 103.805216][ T5917] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 103.805229][ T5917] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.805242][ T5917] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 103.901056][ T5925] Bluetooth: hci0: command tx timeout
[ 103.932733][ T5916] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 103.932744][ T5916] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.932757][ T5916] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 103.934967][ T5911] team0: Port device team_slave_1 added
[ 103.935881][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 103.935892][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.935905][ T5924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 104.083017][ T5916] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.083028][ T5916] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.083041][ T5916] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 104.141097][ T5925] Bluetooth: hci3: command tx timeout
[ 104.141128][ T5925] Bluetooth: hci2: command tx timeout
[ 104.202489][ T5924] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.202503][ T5924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.202516][ T5924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 104.206215][ T5918] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 104.206226][ T5918] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.206238][ T5918] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 104.220995][ T61] Bluetooth: hci4: command tx timeout
[ 104.221024][ T61] Bluetooth: hci1: command tx timeout
[ 104.362836][ T5918] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.362849][ T5918] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.362862][ T5918] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 104.366469][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 104.366484][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.366507][ T5911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 104.549578][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 104.549594][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 104.549615][ T5911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 105.105432][ T5917] hsr_slave_0: entered promiscuous mode
[ 105.107401][ T5917] hsr_slave_1: entered promiscuous mode
[ 105.108404][ T5917] debugfs: 'hsr0' already exists in 'hsr'
[ 105.108480][ T5917] Cannot create hsr debugfs directory
[ 105.590211][ T5916] hsr_slave_0: entered promiscuous mode
[ 105.591773][ T5916] hsr_slave_1: entered promiscuous mode
[ 105.592643][ T5916] debugfs: 'hsr0' already exists in 'hsr'
[ 105.592665][ T5916] Cannot create hsr debugfs directory
[ 105.603671][ T5924] hsr_slave_0: entered promiscuous mode
[ 105.605037][ T5924] hsr_slave_1: entered promiscuous mode
[ 105.605989][ T5924] debugfs: 'hsr0' already exists in 'hsr'
[ 105.606011][ T5924] Cannot create hsr debugfs directory
[ 105.867000][ T5918] hsr_slave_0: entered promiscuous mode
[ 105.867816][ T5918] hsr_slave_1: entered promiscuous mode
[ 105.868346][ T5918] debugfs: 'hsr0' already exists in 'hsr'
[ 105.868365][ T5918] Cannot create hsr debugfs directory
[ 106.107239][ T5911] hsr_slave_0: entered promiscuous mode
[ 106.108074][ T5911] hsr_slave_1: entered promiscuous mode
[ 106.108841][ T5911] debugfs: 'hsr0' already exists in 'hsr'
[ 106.108861][ T5911] Cannot create hsr debugfs directory
[ 106.921216][ T1496] hsr_slave_0: left promiscuous mode
[ 106.941277][ T1496] hsr_slave_1: left promiscuous mode
[ 106.942579][ T1496] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 106.942667][ T1496] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 106.982657][ T1496] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 106.982687][ T1496] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 107.049364][ T1496] veth1_macvtap: left promiscuous mode
[ 107.049523][ T1496] veth0_macvtap: left promiscuous mode
[ 107.050540][ T1496] veth1_vlan: left promiscuous mode
[ 107.050747][ T1496] veth0_vlan: left promiscuous mode
[ 109.031815][ T1496] team0 (unregistering): Port device team_slave_1 removed
[ 109.211992][ T1496] team0 (unregistering): Port device team_slave_0 removed
[ 112.048922][ T5917] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 112.113266][ T5917] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 112.243974][ T5917] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 112.288171][ T5917] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 112.859919][ T5917] 8021q: adding VLAN 0 to HW filter on device bond0
[ 112.887912][ T5917] 8021q: adding VLAN 0 to HW filter on device team0
[ 112.913269][ T43] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.913411][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 112.939590][ T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.952622][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 113.225930][ T5916] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 113.269371][ T5916] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 113.322402][ T5916] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 113.389069][ T5916] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 113.612601][ T5924] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 113.648841][ T5924] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 113.686139][ T5924] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 113.744660][ T5924] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 113.845955][ T5917] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.870468][ T5911] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 113.900707][ T5911] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 113.939627][ T5911] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 113.995906][ T5911] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 114.140429][ T5918] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 114.176419][ T5918] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 114.208482][ T5918] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 114.233280][ T5918] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 114.334705][ T5917] veth0_vlan: entered promiscuous mode
[ 114.338577][ T5916] 8021q: adding VLAN 0 to HW filter on device bond0
[ 114.383621][ T5917] veth1_vlan: entered promiscuous mode
[ 114.425337][ T5916] 8021q: adding VLAN 0 to HW filter on device team0
[ 114.452765][ T5924] 8021q: adding VLAN 0 to HW filter on device bond0
[ 114.466542][ T43] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.467466][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.505685][ T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.505792][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.555266][ T5924] 8021q: adding VLAN 0 to HW filter on device team0
[ 114.583786][ T5911] 8021q: adding VLAN 0 to HW filter on device bond0
[ 114.586773][ T5917] veth0_macvtap: entered promiscuous mode
[ 114.599117][ T1496] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.599381][ T1496] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.628893][ T5917] veth1_macvtap: entered promiscuous mode
[ 114.640070][ T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.640237][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.693280][ T5911] 8021q: adding VLAN 0 to HW filter on device team0
[ 114.727937][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 114.734155][ T5918] 8021q: adding VLAN 0 to HW filter on device bond0
[ 114.737194][ T3609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.737754][ T3609] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.772025][ T5917] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 114.778078][ T3609] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.778308][ T3609] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.835397][ T3609] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.852196][ T3609] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.858550][ T3609] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.865191][ T5918] 8021q: adding VLAN 0 to HW filter on device team0
[ 114.881155][ T3609] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.963462][ T57] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.963804][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 115.039433][ T1515] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.039703][ T1515] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 115.271930][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.271950][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.384370][ T5916] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.441179][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.441198][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.513853][ T5924] 8021q: adding VLAN 0 to HW filter on device batadv0
2025/11/30 22:57:02 executed programs: 10
[ 115.615963][ T5911] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.757458][ T5916] veth0_vlan: entered promiscuous mode
[ 115.799827][ T5916] veth1_vlan: entered promiscuous mode
[ 115.935995][ T5911] veth0_vlan: entered promiscuous mode
[ 115.987373][ T5918] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 116.007989][ T5911] veth1_vlan: entered promiscuous mode
[ 116.025287][ T5916] veth0_macvtap: entered promiscuous mode
[ 116.057603][ T5916] veth1_macvtap: entered promiscuous mode
[ 116.179172][ T5916] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 116.218105][ T5916] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 116.246214][ T5911] veth0_macvtap: entered promiscuous mode
[ 116.279914][ T3609] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.297311][ T5911] veth1_macvtap: entered promiscuous mode
[ 116.299631][ T5918] veth0_vlan: entered promiscuous mode
[ 116.305441][ T3609] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.327110][ T3609] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.336296][ T6046] loop1: detected capacity change from 0 to 32768
[ 116.365438][ T3609] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.440628][ T6046] non-latin1 character 0xffff found in JFS file name
[ 116.440644][ T6046] mount with iocharset=utf8 to access
[ 116.489279][ T5918] veth1_vlan: entered promiscuous mode
[ 116.579736][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 116.648709][ T5924] veth0_vlan: entered promiscuous mode
[ 116.654657][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 116.709875][ T1515] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.716926][ T1515] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.729410][ T5924] veth1_vlan: entered promiscuous mode
[ 116.732623][ T1515] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.740510][ T1515] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.749714][ T1515] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.749732][ T1515] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.898713][ T5918] veth0_macvtap: entered promiscuous mode
[ 116.944081][ T1012] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.944100][ T1012] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.962519][ T5918] veth1_macvtap: entered promiscuous mode
[ 117.117645][ T5924] veth0_macvtap: entered promiscuous mode
[ 117.139130][ T1515] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.139149][ T1515] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.162880][ T5918] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.181473][ T5924] veth1_macvtap: entered promiscuous mode
[ 117.207002][ T5918] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 117.269259][ T1515] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.269546][ T1515] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.270169][ T1515] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.270615][ T1515] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.377249][ T1515] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.377268][ T1515] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.411054][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.495247][ T5924] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 117.601559][ T1012] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.624474][ T1012] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.638336][ T1012] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.688724][ T1012] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.934413][ T6052] loop1: detected capacity change from 0 to 32768
[ 118.013921][ T6052] non-latin1 character 0xffff found in JFS file name
[ 118.013936][ T6052] mount with iocharset=utf8 to access
[ 118.033785][ T6054] loop3: detected capacity change from 0 to 32768
[ 118.111404][ T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.111424][ T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.182519][ T6054] ==================================================================
[ 118.182534][ T6054] BUG: KASAN: slab-use-after-free in diWrite+0x1209/0x1f40
[ 118.182570][ T6054] Write of size 32 at addr ffff8880323f00c0 by task syz.3.20/6054
[ 118.182585][ T6054]
[ 118.182609][ T6054] CPU: 0 UID: 0 PID: 6054 Comm: syz.3.20 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 118.182629][ T6054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 118.182646][ T6054] Call Trace:
[ 118.182656][ T6054]
[ 118.182664][ T6054] dump_stack_lvl+0x189/0x250
[ 118.182690][ T6054] ? __virt_addr_valid+0x1c8/0x5c0
[ 118.182714][ T6054] ? rcu_is_watching+0x15/0xb0
[ 118.182731][ T6054] ? __pfx_dump_stack_lvl+0x10/0x10
[ 118.182754][ T6054] ? rcu_is_watching+0x15/0xb0
[ 118.182770][ T6054] ? lock_release+0x4b/0x3e0
[ 118.182791][ T6054] ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 118.182816][ T6054] ? __virt_addr_valid+0x1c8/0x5c0
[ 118.182840][ T6054] ? __virt_addr_valid+0x4a5/0x5c0
[ 118.182864][ T6054] print_report+0xca/0x240
[ 118.182886][ T6054] ? diWrite+0x1209/0x1f40
[ 118.182908][ T6054] kasan_report+0x118/0x150
[ 118.182932][ T6054] ? diWrite+0x1209/0x1f40
[ 118.182958][ T6054] kasan_check_range+0x2b0/0x2c0
[ 118.182981][ T6054] ? diWrite+0x1209/0x1f40
[ 118.183005][ T6054] __asan_memcpy+0x40/0x70
[ 118.183024][ T6054] diWrite+0x1209/0x1f40
[ 118.183053][ T6054] txCommit+0x852/0x5430
[ 118.183081][ T6054] ? rt_spin_unlock+0x161/0x200
[ 118.183102][ T6054] ? txLock+0xaf3/0x1cb0
[ 118.183127][ T6054] ? __pfx_txCommit+0x10/0x10
[ 118.183154][ T6054] ? rcu_is_watching+0x15/0xb0
[ 118.183170][ T6054] ? __mark_inode_dirty+0x3d2/0xe10
[ 118.183190][ T6054] add_missing_indices+0x8ce/0xce0
[ 118.183214][ T6054] ? __pfx_add_missing_indices+0x10/0x10
[ 118.183233][ T6054] ? set_page_refcounted+0xa0/0x1e0
[ 118.183256][ T6054] ? alloc_pages_noprof+0xe4/0x1e0
[ 118.183282][ T6054] jfs_readdir+0x1d92/0x3ae0
[ 118.183314][ T6054] ? __pfx_jfs_readdir+0x10/0x10
[ 118.183344][ T6054] ? rwbase_write_lock+0x56f/0x750
[ 118.183363][ T6054] ? __pfx_jfs_readdir+0x10/0x10
[ 118.183383][ T6054] wrap_directory_iterator+0x99/0xe0
[ 118.183404][ T6054] iterate_dir+0x3a5/0x580
[ 118.183425][ T6054] __se_sys_getdents64+0xe4/0x260
[ 118.183446][ T6054] ? __pfx___se_sys_getdents64+0x10/0x10
[ 118.183474][ T6054] ? __pfx_filldir64+0x10/0x10
[ 118.183496][ T6054] ? do_syscall_64+0xbe/0xfa0
[ 118.183521][ T6054] do_syscall_64+0xfa/0xfa0
[ 118.183543][ T6054] ? lockdep_hardirqs_on+0x9c/0x150
[ 118.183566][ T6054] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.183583][ T6054] ? clear_bhb_loop+0x60/0xb0
[ 118.183601][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.183618][ T6054] RIP: 0033:0x7fede211f749
[ 118.183638][ T6054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.183652][ T6054] RSP: 002b:00007fede1786038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 118.183672][ T6054] RAX: ffffffffffffffda RBX: 00007fede2375fa0 RCX: 00007fede211f749
[ 118.183685][ T6054] RDX: 0000000000000099 RSI: 0000200000000280 RDI: 0000000000000005
[ 118.183696][ T6054] RBP: 00007fede21a3f91 R08: 0000000000000000 R09: 0000000000000000
[ 118.183707][ T6054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 118.183718][ T6054] R13: 00007fede2376038 R14: 00007fede2375fa0 R15: 00007ffe1b2d9a78
[ 118.183738][ T6054]
[ 118.183745][ T6054]
[ 118.183752][ T6054] Allocated by task 5913:
[ 118.183761][ T6054] kasan_save_track+0x3e/0x80
[ 118.183780][ T6054] __kasan_slab_alloc+0x6c/0x80
[ 118.183798][ T6054] kmem_cache_alloc_noprof+0x181/0x6b0
[ 118.183817][ T6054] mas_dup_build+0x147/0x1260
[ 118.183839][ T6054] __mt_dup+0x147/0x230
[ 118.183858][ T6054] dup_mmap+0x3bd/0x1ae0
[ 118.183878][ T6054] copy_mm+0x13c/0x4b0
[ 118.183896][ T6054] copy_process+0x1704/0x3ae0
[ 118.183914][ T6054] kernel_clone+0x224/0x7c0
[ 118.183932][ T6054] __x64_sys_clone+0x18b/0x1e0
[ 118.183951][ T6054] do_syscall_64+0xfa/0xfa0
[ 118.183972][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.183987][ T6054]
[ 118.183991][ T6054] Freed by task 13:
[ 118.183999][ T6054] kasan_save_track+0x3e/0x80
[ 118.184016][ T6054] __kasan_save_free_info+0x46/0x50
[ 118.184032][ T6054] __kasan_slab_free+0x5c/0x80
[ 118.184051][ T6054] kmem_cache_free_bulk+0xace/0x1130
[ 118.184071][ T6054] kvfree_rcu_bulk+0xe5/0x1f0
[ 118.184086][ T6054] kfree_rcu_work+0xed/0x170
[ 118.184107][ T6054] process_scheduled_works+0xae1/0x17b0
[ 118.184125][ T6054] worker_thread+0x8a0/0xda0
[ 118.184143][ T6054] kthread+0x711/0x8a0
[ 118.184163][ T6054] ret_from_fork+0x4bc/0x870
[ 118.184179][ T6054] ret_from_fork_asm+0x1a/0x30
[ 118.184194][ T6054]
[ 118.184198][ T6054] Last potentially related work creation:
[ 118.184204][ T6054] kasan_save_stack+0x3e/0x60
[ 118.184220][ T6054] kasan_record_aux_stack+0xbd/0xd0
[ 118.184235][ T6054] kvfree_call_rcu+0xbb/0x410
[ 118.184256][ T6054] mas_wmb_replace+0x10dd/0x1830
[ 118.184271][ T6054] mas_commit_b_node+0xbfd/0x10a0
[ 118.184286][ T6054] mas_wr_store_entry+0x52a/0x27a0
[ 118.184305][ T6054] mas_store_prealloc+0xaf5/0x1030
[ 118.184325][ T6054] vma_complete+0x224/0xae0
[ 118.184339][ T6054] __split_vma+0x885/0x9e0
[ 118.184354][ T6054] vma_modify+0x122c/0x1880
[ 118.184368][ T6054] vma_modify_flags+0x1e8/0x230
[ 118.184383][ T6054] mprotect_fixup+0x407/0x9c0
[ 118.184397][ T6054] do_mprotect_pkey+0x8c5/0xcd0
[ 118.184411][ T6054] __x64_sys_mprotect+0x80/0x90
[ 118.184425][ T6054] do_syscall_64+0xfa/0xfa0
[ 118.184446][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.184467][ T6054]
[ 118.184471][ T6054] The buggy address belongs to the object at ffff8880323f0000
[ 118.184471][ T6054] which belongs to the cache maple_node of size 256
[ 118.184485][ T6054] The buggy address is located 192 bytes inside of
[ 118.184485][ T6054] freed 256-byte region [ffff8880323f0000, ffff8880323f0100)
[ 118.184503][ T6054]
[ 118.184507][ T6054] The buggy address belongs to the physical page:
[ 118.184527][ T6054] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x323f0
[ 118.184543][ T6054] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 118.184557][ T6054] anon flags: 0x80000000000040(head|node=0|zone=1)
[ 118.184576][ T6054] page_type: f5(slab)
[ 118.184591][ T6054] raw: 0080000000000040 ffff88813ff30c80 0000000000000000 dead000000000001
[ 118.184605][ T6054] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 118.184620][ T6054] head: 0080000000000040 ffff88813ff30c80 0000000000000000 dead000000000001
[ 118.184634][ T6054] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 118.184649][ T6054] head: 0080000000000001 ffffea0000c8fc01 00000000ffffffff 00000000ffffffff
[ 118.184662][ T6054] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 118.184671][ T6054] page dumped because: kasan: bad access detected
[ 118.184684][ T6054] page_owner tracks the page as allocated
[ 118.184690][ T6054] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5182, tgid 5182 (v4l_id), ts 32782120524, free_ts 32705628341
[ 118.184720][ T6054] post_alloc_hook+0x234/0x290
[ 118.184739][ T6054] get_page_from_freelist+0x28c0/0x2960
[ 118.184762][ T6054] __alloc_frozen_pages_noprof+0x181/0x370
[ 118.184784][ T6054] alloc_pages_mpol+0xd1/0x380
[ 118.184804][ T6054] allocate_slab+0x96/0x350
[ 118.184819][ T6054] ___slab_alloc+0xb10/0x1400
[ 118.184832][ T6054] __kmem_cache_alloc_bulk+0x1c0/0x5a0
[ 118.184851][ T6054] kmem_cache_prefill_sheaf+0x2ea/0x470
[ 118.184870][ T6054] mas_alloc_nodes+0x1c2/0x350
[ 118.184888][ T6054] mas_preallocate+0x2e0/0x670
[ 118.184907][ T6054] __split_vma+0x2fd/0x9e0
[ 118.184922][ T6054] vma_modify+0x1328/0x1880
[ 118.184936][ T6054] vma_modify_flags+0x1e8/0x230
[ 118.184951][ T6054] mprotect_fixup+0x407/0x9c0
[ 118.184964][ T6054] do_mprotect_pkey+0x8c5/0xcd0
[ 118.184979][ T6054] __x64_sys_mprotect+0x80/0x90
[ 118.184993][ T6054] page last free pid 5168 tgid 5168 stack trace:
[ 118.185003][ T6054] __free_frozen_pages+0xfb6/0x1140
[ 118.185023][ T6054] __put_partials+0x149/0x170
[ 118.185036][ T6054] __slab_free+0x29e/0x370
[ 118.185051][ T6054] qlist_free_all+0x97/0x140
[ 118.185068][ T6054] kasan_quarantine_reduce+0x148/0x160
[ 118.185086][ T6054] __kasan_slab_alloc+0x22/0x80
[ 118.185105][ T6054] kmem_cache_alloc_noprof+0x181/0x6b0
[ 118.185123][ T6054] getname_flags+0xb8/0x540
[ 118.185143][ T6054] do_readlinkat+0xbc/0x500
[ 118.185158][ T6054] __x64_sys_readlink+0x7f/0x90
[ 118.185172][ T6054] do_syscall_64+0xfa/0xfa0
[ 118.185193][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.185207][ T6054]
[ 118.185211][ T6054] Memory state around the buggy address:
[ 118.185221][ T6054] ffff8880323eff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 118.185232][ T6054] ffff8880323f0000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 118.185243][ T6054] >ffff8880323f0080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 118.185251][ T6054] ^
[ 118.185260][ T6054] ffff8880323f0100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 118.185270][ T6054] ffff8880323f0180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 118.185279][ T6054] ==================================================================
[ 118.185294][ T6054] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 118.185306][ T6054] CPU: 0 UID: 0 PID: 6054 Comm: syz.3.20 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 118.185326][ T6054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 118.185336][ T6054] Call Trace:
[ 118.185342][ T6054]
[ 118.185349][ T6054] dump_stack_lvl+0x99/0x250
[ 118.185373][ T6054] ? __asan_memcpy+0x40/0x70
[ 118.185392][ T6054] ? __pfx_dump_stack_lvl+0x10/0x10
[ 118.185416][ T6054] ? __pfx__printk+0x10/0x10
[ 118.185440][ T6054] vpanic+0x237/0x6d0
[ 118.185463][ T6054] ? __pfx_vpanic+0x10/0x10
[ 118.185483][ T6054] panic+0xb9/0xc0
[ 118.185499][ T6054] ? __pfx_panic+0x10/0x10
[ 118.185513][ T6054] ? _raw_spin_unlock_irqrestore+0x85/0x110
[ 118.185539][ T6054] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 118.185565][ T6054] ? is_module_address+0x17/0xf0
[ 118.185584][ T6054] ? diWrite+0x1209/0x1f40
[ 118.185606][ T6054] check_panic_on_warn+0x89/0xb0
[ 118.185623][ T6054] ? diWrite+0x1209/0x1f40
[ 118.185645][ T6054] end_report+0x78/0x160
[ 118.185667][ T6054] kasan_report+0x129/0x150
[ 118.185690][ T6054] ? diWrite+0x1209/0x1f40
[ 118.185717][ T6054] kasan_check_range+0x2b0/0x2c0
[ 118.185739][ T6054] ? diWrite+0x1209/0x1f40
[ 118.185763][ T6054] __asan_memcpy+0x40/0x70
[ 118.185782][ T6054] diWrite+0x1209/0x1f40
[ 118.185811][ T6054] txCommit+0x852/0x5430
[ 118.185837][ T6054] ? rt_spin_unlock+0x161/0x200
[ 118.185858][ T6054] ? txLock+0xaf3/0x1cb0
[ 118.185884][ T6054] ? __pfx_txCommit+0x10/0x10
[ 118.185911][ T6054] ? rcu_is_watching+0x15/0xb0
[ 118.185927][ T6054] ? __mark_inode_dirty+0x3d2/0xe10
[ 118.185946][ T6054] add_missing_indices+0x8ce/0xce0
[ 118.185971][ T6054] ? __pfx_add_missing_indices+0x10/0x10
[ 118.185990][ T6054] ? set_page_refcounted+0xa0/0x1e0
[ 118.186014][ T6054] ? alloc_pages_noprof+0xe4/0x1e0
[ 118.186038][ T6054] jfs_readdir+0x1d92/0x3ae0
[ 118.186070][ T6054] ? __pfx_jfs_readdir+0x10/0x10
[ 118.186100][ T6054] ? rwbase_write_lock+0x56f/0x750
[ 118.186120][ T6054] ? __pfx_jfs_readdir+0x10/0x10
[ 118.186139][ T6054] wrap_directory_iterator+0x99/0xe0
[ 118.186160][ T6054] iterate_dir+0x3a5/0x580
[ 118.186181][ T6054] __se_sys_getdents64+0xe4/0x260
[ 118.186202][ T6054] ? __pfx___se_sys_getdents64+0x10/0x10
[ 118.186221][ T6054] ? __pfx_filldir64+0x10/0x10
[ 118.186243][ T6054] ? do_syscall_64+0xbe/0xfa0
[ 118.186268][ T6054] do_syscall_64+0xfa/0xfa0
[ 118.186290][ T6054] ? lockdep_hardirqs_on+0x9c/0x150
[ 118.186313][ T6054] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.186330][ T6054] ? clear_bhb_loop+0x60/0xb0
[ 118.186349][ T6054] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.186366][ T6054] RIP: 0033:0x7fede211f749
[ 118.186379][ T6054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.186393][ T6054] RSP: 002b:00007fede1786038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 118.186411][ T6054] RAX: ffffffffffffffda RBX: 00007fede2375fa0 RCX: 00007fede211f749
[ 118.186424][ T6054] RDX: 0000000000000099 RSI: 0000200000000280 RDI: 0000000000000005
[ 118.186435][ T6054] RBP: 00007fede21a3f91 R08: 0000000000000000 R09: 0000000000000000
[ 118.186447][ T6054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 118.186463][ T6054] R13: 00007fede2376038 R14: 00007fede2375fa0 R15: 00007ffe1b2d9a78
[ 118.186483][ T6054]
[ 118.186829][ T6054] Kernel Offset: disabled