Warning: Permanently added '[localhost]:31363' (ED25519) to the list of known hosts.
2026/01/31 17:26:06 parsed 1 programs
syzkaller login: [ 96.499160][ T5316] cgroup: Unknown subsys name 'net'
[ 96.586147][ T5316] cgroup: Unknown subsys name 'cpuset'
[ 96.595044][ T5316] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 97.024835][ T1225] cfg80211: failed to load regulatory.db
[ 98.539611][ T5316] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 103.891342][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 103.895618][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 103.898978][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 103.933841][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 103.937488][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 104.821080][ T5338] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 105.141285][ T43] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.153891][ T43] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.321800][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.332506][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 110.305921][ T5376] chnl_net:caif_netlink_parms(): no params data found
[ 110.584861][ T5376] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.588695][ T5376] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.591773][ T5376] bridge_slave_0: entered allmulticast mode
[ 110.617599][ T5376] bridge_slave_0: entered promiscuous mode
[ 110.640183][ T5376] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.652569][ T5376] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.656067][ T5376] bridge_slave_1: entered allmulticast mode
[ 110.673995][ T5376] bridge_slave_1: entered promiscuous mode
[ 110.756858][ T5376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.784798][ T5376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 110.854083][ T5376] team0: Port device team_slave_0 added
[ 110.875512][ T5376] team0: Port device team_slave_1 added
[ 110.923527][ T5376] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 110.927156][ T5376] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 110.962862][ T5376] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 110.982727][ T5376] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 110.985897][ T5376] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 111.013061][ T5376] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 111.099026][ T5376] hsr_slave_0: entered promiscuous mode
[ 111.113107][ T5376] hsr_slave_1: entered promiscuous mode
[ 111.458734][ T5376] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 111.507923][ T5376] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 111.516858][ T5376] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 111.535713][ T5376] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 111.693710][ T5376] 8021q: adding VLAN 0 to HW filter on device bond0
[ 111.734557][ T5376] 8021q: adding VLAN 0 to HW filter on device team0
[ 111.787850][ T31] bridge0: port 1(bridge_slave_0) entered blocking state
[ 111.790979][ T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 111.810713][ T31] bridge0: port 2(bridge_slave_1) entered blocking state
[ 111.813930][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.187271][ T5376] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.611055][ T5376] veth0_vlan: entered promiscuous mode
[ 112.632281][ T5376] veth1_vlan: entered promiscuous mode
[ 112.690765][ T5376] veth0_macvtap: entered promiscuous mode
[ 112.715927][ T5376] veth1_macvtap: entered promiscuous mode
[ 112.749064][ T5376] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 112.774125][ T5376] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 112.795817][ T31] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.817204][ T31] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.821045][ T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.847141][ T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2026/01/31 17:26:25 executed programs: 0
[ 113.260117][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 113.265010][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 113.270021][ T5342] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 113.283740][ T5342] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 113.286963][ T5342] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 113.581529][ T5453] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 113.613730][ T5458] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 113.622377][ T5458] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 113.629423][ T5458] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 113.633995][ T5458] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 113.643636][ T5458] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 113.648070][ T5459] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 113.651573][ T5458] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 113.655717][ T5459] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 113.658937][ T5458] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 113.662797][ T5460] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 113.666195][ T5458] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 113.670188][ T5460] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 113.673684][ T5458] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 113.677521][ T5460] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 113.681155][ T5458] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 113.684900][ T5460] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 113.689375][ T5458] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 113.693496][ T5460] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 113.696653][ T5458] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 113.699926][ T5460] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 113.706569][ T5460] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 113.719237][ T5457] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 113.723468][ T5457] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 113.752154][ T5453] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 115.068006][ T31] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.371965][ T31] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.407047][ T5438] chnl_net:caif_netlink_parms(): no params data found
[ 115.503987][ T46] Bluetooth: hci0: command tx timeout
[ 115.589366][ T31] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.749041][ T46] Bluetooth: hci2: command tx timeout
[ 115.751813][ T46] Bluetooth: hci1: command tx timeout
[ 115.826943][ T46] Bluetooth: hci3: command tx timeout
[ 115.829832][ T46] Bluetooth: hci5: command tx timeout
[ 115.833339][ T5453] Bluetooth: hci4: command tx timeout
[ 115.864009][ T31] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.287288][ T5438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.290501][ T5438] bridge0: port 1(bridge_slave_0) entered disabled state
[ 116.310223][ T5438] bridge_slave_0: entered allmulticast mode
[ 116.326917][ T5438] bridge_slave_0: entered promiscuous mode
[ 116.481311][ T5438] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.494589][ T5438] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.497747][ T5438] bridge_slave_1: entered allmulticast mode
[ 116.522752][ T5438] bridge_slave_1: entered promiscuous mode
[ 116.613329][ T31] bridge_slave_1: left allmulticast mode
[ 116.617040][ T31] bridge_slave_1: left promiscuous mode
[ 116.620436][ T31] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.645267][ T31] bridge_slave_0: left allmulticast mode
[ 116.647757][ T31] bridge_slave_0: left promiscuous mode
[ 116.650432][ T31] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.224865][ T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 117.231217][ T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 117.243542][ T31] bond0 (unregistering): Released all slaves
[ 117.404720][ T5438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 117.489209][ T5438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 117.583722][ T46] Bluetooth: hci0: command tx timeout
[ 117.603473][ T31] hsr_slave_0: left promiscuous mode
[ 117.614454][ T31] hsr_slave_1: left promiscuous mode
[ 117.625065][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 117.628451][ T31] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 117.643424][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 117.647359][ T31] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 117.699832][ T31] veth1_macvtap: left promiscuous mode
[ 117.702354][ T31] veth0_macvtap: left promiscuous mode
[ 117.712941][ T31] veth1_vlan: left promiscuous mode
[ 117.715589][ T31] veth0_vlan: left promiscuous mode
[ 117.825068][ T5458] Bluetooth: hci1: command tx timeout
[ 117.827623][ T5458] Bluetooth: hci2: command tx timeout
[ 117.910939][ T46] Bluetooth: hci5: command tx timeout
[ 117.913883][ T5458] Bluetooth: hci4: command tx timeout
[ 117.916139][ T5458] Bluetooth: hci3: command tx timeout
[ 118.200945][ T31] team0 (unregistering): Port device team_slave_1 removed
[ 118.225780][ T31] team0 (unregistering): Port device team_slave_0 removed
[ 118.555693][ T5438] team0: Port device team_slave_0 added
[ 118.564283][ T5438] team0: Port device team_slave_1 added
[ 118.731140][ T5447] chnl_net:caif_netlink_parms(): no params data found
[ 118.851997][ T5438] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 118.857927][ T5438] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 118.894339][ T5438] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 118.900433][ T5438] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 118.912756][ T5438] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 118.933263][ T5438] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 119.030611][ T5444] chnl_net:caif_netlink_parms(): no params data found
[ 119.049999][ T5448] chnl_net:caif_netlink_parms(): no params data found
[ 119.340849][ T5438] hsr_slave_0: entered promiscuous mode
[ 119.360468][ T5438] hsr_slave_1: entered promiscuous mode
[ 119.437559][ T5449] chnl_net:caif_netlink_parms(): no params data found
[ 119.455086][ T5446] chnl_net:caif_netlink_parms(): no params data found
[ 119.640054][ T5447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.643314][ T5447] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.646500][ T5447] bridge_slave_0: entered allmulticast mode
[ 119.663299][ T46] Bluetooth: hci0: command tx timeout
[ 119.666307][ T5447] bridge_slave_0: entered promiscuous mode
[ 119.677691][ T5444] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.680989][ T5444] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.693110][ T5444] bridge_slave_0: entered allmulticast mode
[ 119.702578][ T5444] bridge_slave_0: entered promiscuous mode
[ 119.726752][ T5447] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.729878][ T5447] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.734177][ T5447] bridge_slave_1: entered allmulticast mode
[ 119.737918][ T5447] bridge_slave_1: entered promiscuous mode
[ 119.784536][ T5444] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.792873][ T5444] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.796176][ T5444] bridge_slave_1: entered allmulticast mode
[ 119.801876][ T5444] bridge_slave_1: entered promiscuous mode
[ 119.878478][ T5448] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.881445][ T5448] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.890562][ T5448] bridge_slave_0: entered allmulticast mode
[ 119.904662][ T46] Bluetooth: hci2: command tx timeout
[ 119.906985][ T46] Bluetooth: hci1: command tx timeout
[ 119.910492][ T5448] bridge_slave_0: entered promiscuous mode
[ 119.915880][ T5448] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.918837][ T5448] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.922261][ T5448] bridge_slave_1: entered allmulticast mode
[ 119.954176][ T5448] bridge_slave_1: entered promiscuous mode
[ 119.982756][ T5453] Bluetooth: hci5: command tx timeout
[ 119.985228][ T5453] Bluetooth: hci3: command tx timeout
[ 119.988266][ T5453] Bluetooth: hci4: command tx timeout
[ 120.088127][ T5447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.115729][ T5444] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.154208][ T5444] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.203169][ T5447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.262006][ T5446] bridge0: port 1(bridge_slave_0) entered blocking state
[ 120.267488][ T5446] bridge0: port 1(bridge_slave_0) entered disabled state
[ 120.270633][ T5446] bridge_slave_0: entered allmulticast mode
[ 120.274918][ T5446] bridge_slave_0: entered promiscuous mode
[ 120.288305][ T5448] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.294033][ T5449] bridge0: port 1(bridge_slave_0) entered blocking state
[ 120.296889][ T5449] bridge0: port 1(bridge_slave_0) entered disabled state
[ 120.299927][ T5449] bridge_slave_0: entered allmulticast mode
[ 120.307991][ T5449] bridge_slave_0: entered promiscuous mode
[ 120.323158][ T5444] team0: Port device team_slave_0 added
[ 120.335432][ T5446] bridge0: port 2(bridge_slave_1) entered blocking state
[ 120.339354][ T5446] bridge0: port 2(bridge_slave_1) entered disabled state
[ 120.343611][ T5446] bridge_slave_1: entered allmulticast mode
[ 120.347628][ T5446] bridge_slave_1: entered promiscuous mode
[ 120.354420][ T5448] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.360009][ T5449] bridge0: port 2(bridge_slave_1) entered blocking state
[ 120.366869][ T5449] bridge0: port 2(bridge_slave_1) entered disabled state
[ 120.370034][ T5449] bridge_slave_1: entered allmulticast mode
[ 120.384211][ T5449] bridge_slave_1: entered promiscuous mode
[ 120.428712][ T5444] team0: Port device team_slave_1 added
[ 120.433673][ T5447] team0: Port device team_slave_0 added
[ 120.480674][ T5447] team0: Port device team_slave_1 added
[ 120.509049][ T5449] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.553310][ T5446] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 120.558832][ T5448] team0: Port device team_slave_0 added
[ 120.564328][ T5449] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.571092][ T5446] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 120.590565][ T5444] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 120.594208][ T5444] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.604950][ T5444] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 120.621559][ T5448] team0: Port device team_slave_1 added
[ 120.716285][ T5444] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 120.719403][ T5444] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.751816][ T5444] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 120.768689][ T5447] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 120.771500][ T5447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.802728][ T5447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 120.905737][ T5447] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 120.911539][ T5447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.942874][ T5447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 120.954139][ T5448] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 120.957334][ T5448] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 120.992685][ T5448] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 121.000794][ T5449] team0: Port device team_slave_0 added
[ 121.015395][ T5449] team0: Port device team_slave_1 added
[ 121.019172][ T5446] team0: Port device team_slave_0 added
[ 121.057652][ T5448] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 121.060784][ T5448] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.076327][ T5448] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 121.097234][ T5446] team0: Port device team_slave_1 added
[ 121.114139][ T5444] hsr_slave_0: entered promiscuous mode
[ 121.124200][ T5444] hsr_slave_1: entered promiscuous mode
[ 121.129937][ T5444] debugfs: 'hsr0' already exists in 'hsr'
[ 121.136251][ T5444] Cannot create hsr debugfs directory
[ 121.150666][ T5438] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 121.235149][ T5438] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 121.243166][ T5449] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 121.246226][ T5449] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.261392][ T5449] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 121.305635][ T5438] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 121.317356][ T5449] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 121.320485][ T5449] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.334024][ T5449] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 121.339023][ T5446] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 121.341941][ T5446] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.354272][ T5446] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 121.365108][ T5447] hsr_slave_0: entered promiscuous mode
[ 121.369010][ T5447] hsr_slave_1: entered promiscuous mode
[ 121.372006][ T5447] debugfs: 'hsr0' already exists in 'hsr'
[ 121.375828][ T5447] Cannot create hsr debugfs directory
[ 121.388667][ T5438] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 121.399711][ T5448] hsr_slave_0: entered promiscuous mode
[ 121.404696][ T5448] hsr_slave_1: entered promiscuous mode
[ 121.407738][ T5448] debugfs: 'hsr0' already exists in 'hsr'
[ 121.409943][ T5448] Cannot create hsr debugfs directory
[ 121.421929][ T5446] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 121.427346][ T5446] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 121.453670][ T5446] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 121.613934][ T5449] hsr_slave_0: entered promiscuous mode
[ 121.624005][ T5449] hsr_slave_1: entered promiscuous mode
[ 121.626987][ T5449] debugfs: 'hsr0' already exists in 'hsr'
[ 121.629357][ T5449] Cannot create hsr debugfs directory
[ 121.720022][ T5446] hsr_slave_0: entered promiscuous mode
[ 121.723964][ T5446] hsr_slave_1: entered promiscuous mode
[ 121.726924][ T5446] debugfs: 'hsr0' already exists in 'hsr'
[ 121.729466][ T5446] Cannot create hsr debugfs directory
[ 121.742953][ T46] Bluetooth: hci0: command tx timeout
[ 121.983150][ T46] Bluetooth: hci1: command tx timeout
[ 121.985514][ T46] Bluetooth: hci2: command tx timeout
[ 122.063146][ T5453] Bluetooth: hci4: command tx timeout
[ 122.065570][ T5453] Bluetooth: hci3: command tx timeout
[ 122.067970][ T5453] Bluetooth: hci5: command tx timeout
[ 122.260335][ T5444] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 122.281013][ T5444] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 122.381163][ T5444] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 122.399058][ T5444] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 122.522360][ T5438] 8021q: adding VLAN 0 to HW filter on device bond0
[ 122.568859][ T5438] 8021q: adding VLAN 0 to HW filter on device team0
[ 122.654980][ T168] bridge0: port 1(bridge_slave_0) entered blocking state
[ 122.658058][ T168] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 122.663299][ T168] bridge0: port 2(bridge_slave_1) entered blocking state
[ 122.666480][ T168] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 122.760154][ T5438] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 122.826658][ T5448] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 122.929459][ T5448] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 122.964793][ T5448] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 123.032186][ T5444] 8021q: adding VLAN 0 to HW filter on device bond0
[ 123.059268][ T5448] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 123.081256][ T5444] 8021q: adding VLAN 0 to HW filter on device team0
[ 123.184905][ T31] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.187898][ T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 123.237331][ T5447] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 123.268178][ T31] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.271445][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 123.318798][ T5447] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 123.457743][ T5444] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 123.527345][ T5447] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 123.545559][ T5447] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 123.626140][ T5438] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 123.879923][ T5438] veth0_vlan: entered promiscuous mode
[ 123.931477][ T5448] 8021q: adding VLAN 0 to HW filter on device bond0
[ 123.946952][ T5449] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 123.997456][ T5438] veth1_vlan: entered promiscuous mode
[ 124.079360][ T5448] 8021q: adding VLAN 0 to HW filter on device team0
[ 124.103395][ T5449] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 124.118521][ T5449] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 124.152067][ T5438] veth0_macvtap: entered promiscuous mode
[ 124.185810][ T5449] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 124.195340][ T1039] bridge0: port 1(bridge_slave_0) entered blocking state
[ 124.198370][ T1039] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 124.214818][ T1039] bridge0: port 2(bridge_slave_1) entered blocking state
[ 124.218025][ T1039] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 124.282360][ T5444] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 124.294354][ T5438] veth1_macvtap: entered promiscuous mode
[ 124.388460][ T5438] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 124.457797][ T5446] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 124.515661][ T5438] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 124.524523][ T5446] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 124.548209][ T5446] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 124.572179][ T5447] 8021q: adding VLAN 0 to HW filter on device bond0
[ 124.628034][ T5446] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 124.664581][ T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 124.690811][ T5447] 8021q: adding VLAN 0 to HW filter on device team0
[ 124.762795][ T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 124.856684][ T1156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 124.859867][ T1156] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 124.886177][ T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 124.930374][ T5444] veth0_vlan: entered promiscuous mode
[ 124.997941][ T1156] bridge0: port 2(bridge_slave_1) entered blocking state
[ 125.000804][ T1156] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.019116][ T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.075033][ T5444] veth1_vlan: entered promiscuous mode
[ 125.139749][ T5449] 8021q: adding VLAN 0 to HW filter on device bond0
[ 125.206145][ T1156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.209450][ T1156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 125.228752][ T5448] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 125.330692][ T5447] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 125.370220][ T5447] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 125.456872][ T1156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.474435][ T1156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 125.499396][ T5444] veth0_macvtap: entered promiscuous mode
[ 125.519248][ T5449] 8021q: adding VLAN 0 to HW filter on device team0
[ 125.568008][ T5444] veth1_macvtap: entered promiscuous mode
[ 125.604787][ T1156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 125.608056][ T1156] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 125.634683][ T1156] bridge0: port 2(bridge_slave_1) entered blocking state
[ 125.637902][ T1156] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.676613][ T5446] 8021q: adding VLAN 0 to HW filter on device bond0
[ 125.758177][ T5446] 8021q: adding VLAN 0 to HW filter on device team0
[ 125.768223][ T5444] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 125.949180][ T5444] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 126.017065][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.020295][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
2026/01/31 17:26:38 executed programs: 12
[ 126.143135][ T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.149208][ T31] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.152531][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 126.227795][ T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.339062][ T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.363905][ T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.375881][ T5447] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 126.594264][ T5448] veth0_vlan: entered promiscuous mode
[ 126.601049][ T5448] veth1_vlan: entered promiscuous mode
[ 126.786839][ T5448] veth0_macvtap: entered promiscuous mode
[ 126.860501][ T5448] veth1_macvtap: entered promiscuous mode
[ 126.921756][ T1042] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.949288][ T5448] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 126.961096][ T1042] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.031715][ T5448] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 127.092556][ T1042] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.096468][ T1042] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.100188][ T1042] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.192334][ T5666] loop0: detected capacity change from 0 to 32768
[ 127.270848][ T1042] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.316336][ T5449] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.334306][ T25] audit: type=1800 audit(1769880399.599:2): pid=5666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 127.397250][ T1156] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.444961][ T1156] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.692117][ T5446] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.869680][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.895505][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.988975][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 128.003182][ T5449] veth0_vlan: entered promiscuous mode
[ 128.010425][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 128.034969][ T5449] veth1_vlan: entered promiscuous mode
[ 128.110856][ T5447] veth0_vlan: entered promiscuous mode
[ 128.130346][ T5446] veth0_vlan: entered promiscuous mode
[ 128.168569][ T5447] veth1_vlan: entered promiscuous mode
[ 128.247378][ T5446] veth1_vlan: entered promiscuous mode
[ 128.288110][ T5449] veth0_macvtap: entered promiscuous mode
[ 128.356137][ T5449] veth1_macvtap: entered promiscuous mode
[ 128.455257][ T5446] veth0_macvtap: entered promiscuous mode
[ 128.478387][ T5447] veth0_macvtap: entered promiscuous mode
[ 128.499044][ T5449] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 128.508622][ T5446] veth1_macvtap: entered promiscuous mode
[ 128.537591][ T5447] veth1_macvtap: entered promiscuous mode
[ 128.578856][ T5449] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 128.621128][ T5447] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 128.667036][ T5446] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 128.739375][ T5447] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 128.790300][ T5446] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 128.823007][ T1042] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.908934][ T1042] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 128.932659][ T1042] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.054931][ T1042] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.154733][ T1042] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.168373][ T5697] loop0: detected capacity change from 0 to 32768
[ 129.186445][ T1042] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.190346][ T1042] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.253002][ T25] audit: type=1800 audit(1769880401.519:3): pid=5697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.23" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 129.362373][ T1042] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.391151][ T1042] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.467311][ T1042] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.525688][ T1042] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.549272][ T1042] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 129.606552][ T1156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.609680][ T1156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 129.848630][ T1156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 129.871832][ T1156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.156163][ T168] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.159681][ T168] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.296546][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.327285][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.446084][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.470741][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 130.581302][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 130.609771][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 131.036908][ T5703] loop0: detected capacity change from 0 to 32768
[ 131.175352][ T25] audit: type=1800 audit(1769880403.439:4): pid=5703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.24" name="file1" dev="loop0" ino=4 res=0 errno=0
2026/01/31 17:26:43 executed programs: 22
[ 133.058755][ T5713] loop0: detected capacity change from 0 to 32768
[ 133.164101][ T25] audit: type=1800 audit(1769880405.439:5): pid=5713 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.27" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 134.983534][ T5725] loop0: detected capacity change from 0 to 32768
[ 135.062369][ T25] audit: type=1800 audit(1769880407.329:6): pid=5725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.33" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 136.576940][ T5733] loop0: detected capacity change from 0 to 32768
[ 136.637055][ T25] audit: type=1800 audit(1769880408.909:7): pid=5733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.37" name="file1" dev="loop0" ino=4 res=0 errno=0
2026/01/31 17:26:49 executed programs: 35
[ 138.460218][ T5745] loop0: detected capacity change from 0 to 32768
[ 138.537916][ T25] audit: type=1800 audit(1769880410.809:8): pid=5745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.41" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 140.039355][ T5753] loop0: detected capacity change from 0 to 32768
[ 140.158688][ T25] audit: type=1800 audit(1769880412.419:9): pid=5753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.47" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 140.442619][ T102] ==================================================================
[ 140.446170][ T102] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x749/0xaa0
[ 140.449565][ T102] Read of size 4 at addr ffff888059171c94 by task jfsCommit/102
[ 140.453764][ T102]
[ 140.454812][ T102] CPU: 0 UID: 0 PID: 102 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full)
[ 140.454826][ T102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 140.454857][ T102] Call Trace:
[ 140.454865][ T102]
[ 140.454870][ T102] dump_stack_lvl+0xe8/0x150
[ 140.454888][ T102] print_report+0xba/0x230
[ 140.454900][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.454914][ T102] kasan_report+0x117/0x150
[ 140.454925][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.454940][ T102] jfs_lazycommit+0x749/0xaa0
[ 140.454955][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 140.454969][ T102] ? __pfx_default_wake_function+0x10/0x10
[ 140.454986][ T102] ? __kthread_parkme+0x7a/0x1f0
[ 140.454996][ T102] ? __kthread_parkme+0x19c/0x1f0
[ 140.455040][ T102] kthread+0x726/0x8b0
[ 140.455053][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 140.455077][ T102] ? __pfx_kthread+0x10/0x10
[ 140.455090][ T102] ? _raw_spin_unlock_irq+0x23/0x50
[ 140.455159][ T102] ? __pfx_kthread+0x10/0x10
[ 140.455171][ T102] ret_from_fork+0x51b/0xa40
[ 140.455181][ T102] ? __pfx_ret_from_fork+0x10/0x10
[ 140.455197][ T102] ? __switch_to+0xc82/0x1410
[ 140.455212][ T102] ? __pfx_kthread+0x10/0x10
[ 140.455224][ T102] ret_from_fork_asm+0x1a/0x30
[ 140.455242][ T102]
[ 140.455246][ T102]
[ 140.511535][ T102] Allocated by task 5753:
[ 140.514053][ T102] kasan_save_track+0x3e/0x80
[ 140.516804][ T102] __kasan_kmalloc+0x93/0xb0
[ 140.519440][ T102] __kmalloc_cache_noprof+0x3d1/0x6e0
[ 140.522593][ T102] jfs_fill_super+0xc2/0xd80
[ 140.525297][ T102] get_tree_bdev_flags+0x431/0x4f0
[ 140.527836][ T102] vfs_get_tree+0x92/0x2a0
[ 140.529745][ T102] do_new_mount+0x329/0xa50
[ 140.531663][ T102] __se_sys_mount+0x31d/0x420
[ 140.533798][ T102] do_syscall_64+0xe2/0xf80
[ 140.535796][ T102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.538422][ T102]
[ 140.539537][ T102] Freed by task 5438:
[ 140.541256][ T102] kasan_save_track+0x3e/0x80
[ 140.543290][ T102] kasan_save_free_info+0x46/0x50
[ 140.545523][ T102] __kasan_slab_free+0x5c/0x80
[ 140.547549][ T102] kfree+0x1be/0x650
[ 140.549219][ T102] generic_shutdown_super+0x135/0x2c0
[ 140.551530][ T102] kill_block_super+0x44/0x90
[ 140.553626][ T102] deactivate_locked_super+0xbc/0x130
[ 140.556020][ T102] cleanup_mnt+0x437/0x4d0
[ 140.558010][ T102] task_work_run+0x1d9/0x270
[ 140.560156][ T102] exit_to_user_mode_loop+0xed/0x480
[ 140.562512][ T102] do_syscall_64+0x2b7/0xf80
[ 140.564645][ T102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.567259][ T102]
[ 140.568354][ T102] The buggy address belongs to the object at ffff888059171c00
[ 140.568354][ T102] which belongs to the cache kmalloc-256 of size 256
[ 140.574345][ T102] The buggy address is located 148 bytes inside of
[ 140.574345][ T102] freed 256-byte region [ffff888059171c00, ffff888059171d00)
[ 140.580323][ T102]
[ 140.581436][ T102] The buggy address belongs to the physical page:
[ 140.584365][ T102] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x59171
[ 140.588157][ T102] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 140.591364][ T102] page_type: f5(slab)
[ 140.593202][ T102] raw: 04fff00000000000 ffff88801a841b40 ffffea0001461e80 000000000000000a
[ 140.596982][ T102] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[ 140.600621][ T102] page dumped because: kasan: bad access detected
[ 140.603483][ T102] page_owner tracks the page as allocated
[ 140.605893][ T102] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5709, tgid 5708 (syz.3.20), ts 132888069447, free_ts 132824961750
[ 140.614179][ T102] post_alloc_hook+0x228/0x280
[ 140.616340][ T102] get_page_from_freelist+0x24dc/0x2580
[ 140.618797][ T102] __alloc_frozen_pages_noprof+0x18d/0x380
[ 140.621450][ T102] alloc_pages_mpol+0x232/0x4a0
[ 140.623691][ T102] allocate_slab+0x86/0x3a0
[ 140.625765][ T102] ___slab_alloc+0xd82/0x1760
[ 140.627884][ T102] __slab_alloc+0x65/0x100
[ 140.629908][ T102] __kmalloc_noprof+0x46c/0x7e0
[ 140.632095][ T102] iter_file_splice_write+0x1d4/0x1100
[ 140.634421][ T102] direct_splice_actor+0x101/0x160
[ 140.636667][ T102] splice_direct_to_actor+0x53a/0xc70
[ 140.639097][ T102] do_splice_direct+0x195/0x290
[ 140.641301][ T102] do_sendfile+0x535/0x7d0
[ 140.643384][ T102] __se_sys_sendfile64+0x144/0x1a0
[ 140.645742][ T102] do_syscall_64+0xe2/0xf80
[ 140.647762][ T102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.650383][ T102] page last free pid 5707 tgid 5706 stack trace:
[ 140.653174][ T102] __free_frozen_pages+0xbf8/0xd70
[ 140.655367][ T102] __put_partials+0x146/0x170
[ 140.657455][ T102] __slab_free+0x294/0x320
[ 140.659491][ T102] qlist_free_all+0x97/0x100
[ 140.661550][ T102] kasan_quarantine_reduce+0x148/0x160
[ 140.663990][ T102] __kasan_slab_alloc+0x22/0x80
[ 140.666184][ T102] __kmalloc_noprof+0x3c2/0x7e0
[ 140.668398][ T102] iter_file_splice_write+0x1d4/0x1100
[ 140.670881][ T102] direct_splice_actor+0x101/0x160
[ 140.673180][ T102] splice_direct_to_actor+0x53a/0xc70
[ 140.675572][ T102] do_splice_direct+0x195/0x290
[ 140.677717][ T102] do_sendfile+0x535/0x7d0
[ 140.679714][ T102] __se_sys_sendfile64+0x144/0x1a0
[ 140.682019][ T102] do_syscall_64+0xe2/0xf80
[ 140.684155][ T102] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 140.686779][ T102]
[ 140.687881][ T102] Memory state around the buggy address:
[ 140.690371][ T102] ffff888059171b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 140.693700][ T102] ffff888059171c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.696895][ T102] >ffff888059171c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 140.700131][ T102] ^
[ 140.702023][ T102] ffff888059171d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 140.705450][ T102] ffff888059171d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 140.708781][ T102] ==================================================================
[ 140.712145][ T102] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 140.715199][ T102] CPU: 0 UID: 0 PID: 102 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full)
[ 140.719057][ T102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 140.723382][ T102] Call Trace:
[ 140.724839][ T102]
[ 140.726187][ T102] vpanic+0x1e0/0x670
[ 140.727889][ T102] panic+0xc5/0xd0
[ 140.729503][ T102] ? __pfx_panic+0x10/0x10
[ 140.731387][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.733492][ T102] ? rcu_is_watching+0x15/0xb0
[ 140.735601][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.737692][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.739760][ T102] check_panic_on_warn+0x89/0xb0
[ 140.741814][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.743923][ T102] end_report+0x6f/0x140
[ 140.745702][ T102] kasan_report+0x128/0x150
[ 140.747710][ T102] ? jfs_lazycommit+0x749/0xaa0
[ 140.749817][ T102] jfs_lazycommit+0x749/0xaa0
[ 140.751893][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 140.754127][ T102] ? __pfx_default_wake_function+0x10/0x10
[ 140.756794][ T102] ? __kthread_parkme+0x7a/0x1f0
[ 140.758901][ T102] ? __kthread_parkme+0x19c/0x1f0
[ 140.761094][ T102] kthread+0x726/0x8b0
[ 140.762864][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 140.765117][ T102] ? __pfx_kthread+0x10/0x10
[ 140.767121][ T102] ? _raw_spin_unlock_irq+0x23/0x50
[ 140.769379][ T102] ? __pfx_kthread+0x10/0x10
[ 140.771391][ T102] ret_from_fork+0x51b/0xa40
[ 140.773351][ T102] ? __pfx_ret_from_fork+0x10/0x10
[ 140.775523][ T102] ? __switch_to+0xc82/0x1410
[ 140.777593][ T102] ? __pfx_kthread+0x10/0x10
[ 140.779567][ T102] ret_from_fork_asm+0x1a/0x30
[ 140.781574][ T102]
[ 140.783246][ T102] Kernel Offset: disabled
[ 140.785119][ T102] Rebooting in 86400 seconds..
VM DIAGNOSIS:
17:26:52 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900018af670
R8 =ffff888034548237 R9 =1ffff110068a9046 R10=dffffc0000000000 R11=ffffffff85336470
R12=dffffc0000000000 R13=ffffffff9a02ca04 R14=ffffffff9a3416a0 R15=0000000000000000
RIP=ffffffff853364ec RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808ccea000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f13ca1e1f18 CR3=0000000036170000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fff80440 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 307a79732f74656e 2f70756f7267637a
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff7783f126
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff7783f126 00007fff7783f12c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13ca008704
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13ca008750
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13ca0086c4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f13ca008742
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000797469 7275636573007761 7200656c676e616d
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000003a800000006 00000260000001c8 0000013000000098 0000000000000260
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009800000000 00000260000001c8 0000013000000098 000000000000001f
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000