Warning: Permanently added '10.128.0.247' (ED25519) to the list of known hosts.
2025/10/18 18:57:11 parsed 1 programs
[  108.221560][ T5807] cgroup: Unknown subsys name 'net'
[  108.542406][ T5807] cgroup: Unknown subsys name 'cpuset'
[  108.606985][ T5807] cgroup: Unknown subsys name 'rlimit'
[  110.700064][ T5807] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  113.678946][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.678968][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.731837][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.731860][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.965111][ T5833] chnl_net:caif_netlink_parms(): no params data found
[  116.416910][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.419028][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.419204][ T5833] bridge_slave_0: entered allmulticast mode
[  116.421369][ T5833] bridge_slave_0: entered promiscuous mode
[  116.430972][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.431213][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.431446][ T5833] bridge_slave_1: entered allmulticast mode
[  116.434701][ T5833] bridge_slave_1: entered promiscuous mode
[  116.621938][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  116.627222][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  116.918857][ T5833] team0: Port device team_slave_0 added
[  116.921410][ T5833] team0: Port device team_slave_1 added
[  117.098658][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[  117.098672][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.098691][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  117.101917][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[  117.101933][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  117.101969][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  117.384258][ T5833] hsr_slave_0: entered promiscuous mode
[  117.389298][ T5833] hsr_slave_1: entered promiscuous mode
[  117.934575][ T5833] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  117.975376][ T5833] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  118.002065][ T5833] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  118.040105][ T5833] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  118.191472][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.221782][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[  118.238581][ T1116] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.239071][ T1116] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.255799][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.256247][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.530561][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.588960][ T5833] veth0_vlan: entered promiscuous mode
[  118.598468][ T5833] veth1_vlan: entered promiscuous mode
[  118.637358][ T5833] veth0_macvtap: entered promiscuous mode
[  118.642741][ T5833] veth1_macvtap: entered promiscuous mode
[  118.665014][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.681543][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.702831][ T1116] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.704760][ T1116] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.704810][ T1116] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.704849][ T1116] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.452328][ T1116] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.711519][ T1116] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.959086][ T1116] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.574856][ T5114] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  120.583517][ T5114] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  120.584943][ T5114] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  120.594435][ T5114] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  120.595676][ T5114] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  120.941830][ T1116] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.988405][ T1116] bridge_slave_1: left allmulticast mode
[  121.988494][ T1116] bridge_slave_1: left promiscuous mode
[  121.990272][ T1116] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.098529][ T1116] bridge_slave_0: left allmulticast mode
[  122.098559][ T1116] bridge_slave_0: left promiscuous mode
[  122.098821][ T1116] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.767098][ T1116] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.826630][ T1116] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.848791][ T1116] bond0 (unregistering): Released all slaves
[  124.286288][ T1116] hsr_slave_0: left promiscuous mode
[  124.328162][ T1116] hsr_slave_1: left promiscuous mode
[  124.329373][ T1116] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.329450][ T1116] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.379873][ T1116] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.379906][ T1116] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.489965][ T1116] veth1_macvtap: left promiscuous mode
[  124.490228][ T1116] veth0_macvtap: left promiscuous mode
[  124.490531][ T1116] veth1_vlan: left promiscuous mode
[  124.490865][ T1116] veth0_vlan: left promiscuous mode
[  126.676716][ T1116] team0 (unregistering): Port device team_slave_1 removed
[  126.856959][ T1116] team0 (unregistering): Port device team_slave_0 removed
2025/10/18 18:57:39 executed programs: 0
[  132.502112][ T5114] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  132.514256][ T5114] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  132.521425][ T5114] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  132.525439][ T5114] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  132.526866][ T5114] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  133.026359][ T5978] chnl_net:caif_netlink_parms(): no params data found
[  133.476501][ T5978] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.476760][ T5978] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.476930][ T5978] bridge_slave_0: entered allmulticast mode
[  133.479017][ T5978] bridge_slave_0: entered promiscuous mode
[  133.501039][ T5978] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.501243][ T5978] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.501493][ T5978] bridge_slave_1: entered allmulticast mode
[  133.504780][ T5978] bridge_slave_1: entered promiscuous mode
[  133.671763][ T5978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.685312][ T5978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.890185][ T5978] team0: Port device team_slave_0 added
[  133.894006][ T5978] team0: Port device team_slave_1 added
[  134.337048][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.337065][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.337084][ T5978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.338962][ T5978] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.338978][ T5978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  134.338999][ T5978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.588151][ T5114] Bluetooth: hci0: command tx timeout
[  134.662589][ T5978] hsr_slave_0: entered promiscuous mode
[  134.663650][ T5978] hsr_slave_1: entered promiscuous mode
[  136.441242][ T5978] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  136.492234][ T5978] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  136.530888][ T5978] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  136.573452][ T5978] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  136.666020][ T5114] Bluetooth: hci0: command tx timeout
[  136.758230][ T5978] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.791795][ T5978] 8021q: adding VLAN 0 to HW filter on device team0
[  136.815528][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.815679][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.853365][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.853589][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.203009][ T5978] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.284646][ T5978] veth0_vlan: entered promiscuous mode
[  137.297608][ T5978] veth1_vlan: entered promiscuous mode
[  137.359957][ T5978] veth0_macvtap: entered promiscuous mode
[  137.370904][ T5978] veth1_macvtap: entered promiscuous mode
[  137.398334][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_0
[  137.420345][ T5978] batman_adv: batadv0: Interface activated: batadv_slave_1
[  137.442448][   T68] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.445209][   T68] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  137.446674][   T68] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  137.446917][   T68] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  137.717559][ T1116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.717594][ T1116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.812542][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.812567][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/18 18:57:44 executed programs: 2
[  138.047736][ T6066] ==================================================================
[  138.047755][ T6066] BUG: KASAN: slab-out-of-bounds in change_page_attr_set_clr+0x625/0xfc0
[  138.047804][ T6066] Read of size 8 at addr ffff8880278b46f8 by task syz.0.17/6066
[  138.047821][ T6066] 
[  138.047846][ T6066] CPU: 1 UID: 0 PID: 6066 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  138.047870][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  138.047892][ T6066] Call Trace:
[  138.047903][ T6066]  <TASK>
[  138.047913][ T6066]  dump_stack_lvl+0x189/0x250
[  138.047942][ T6066]  ? __kasan_check_byte+0x12/0x40
[  138.047967][ T6066]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.047993][ T6066]  ? lock_release+0x4b/0x3e0
[  138.048020][ T6066]  ? __virt_addr_valid+0x4a5/0x5c0
[  138.048048][ T6066]  print_report+0xca/0x240
[  138.048080][ T6066]  ? change_page_attr_set_clr+0x625/0xfc0
[  138.048113][ T6066]  kasan_report+0x118/0x150
[  138.048137][ T6066]  ? change_page_attr_set_clr+0x625/0xfc0
[  138.048184][ T6066]  change_page_attr_set_clr+0x625/0xfc0
[  138.048223][ T6066]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  138.048257][ T6066]  ? __pfx_pagerange_is_ram_callback+0x10/0x10
[  138.048285][ T6066]  ? memtype_reserve+0x874/0xb30
[  138.048320][ T6066]  _set_pages_array+0x145/0x270
[  138.048343][ T6066]  drm_gem_shmem_get_pages_locked+0x2d0/0x440
[  138.048371][ T6066]  ? drm_gem_shmem_mmap+0x18b/0x450
[  138.048399][ T6066]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  138.048431][ T6066]  ? rt_read_unlock+0x150/0x220
[  138.048462][ T6066]  drm_gem_shmem_mmap+0x193/0x450
[  138.048490][ T6066]  drm_gem_mmap_obj+0x18a/0x4e0
[  138.048514][ T6066]  drm_gem_mmap+0x38d/0x640
[  138.048536][ T6066]  ? __pfx_drm_gem_mmap+0x10/0x10
[  138.048557][ T6066]  ? __mas_set_range+0x12f/0x3c0
[  138.048591][ T6066]  mmap_region+0x18c9/0x20f0
[  138.048632][ T6066]  ? __pfx_mmap_region+0x10/0x10
[  138.048666][ T6066]  ? rtlock_slowlock_locked+0xd8/0x4010
[  138.048733][ T6066]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  138.048781][ T6066]  ? bpf_lsm_mmap_addr+0x9/0x20
[  138.048808][ T6066]  ? security_mmap_addr+0x71/0x270
[  138.048838][ T6066]  ? shmem_mapping+0xd/0x50
[  138.048871][ T6066]  ? memfd_check_seals_mmap+0xcb/0x210
[  138.048902][ T6066]  do_mmap+0xc23/0x10c0
[  138.048927][ T6066]  ? __pfx_do_mmap+0x10/0x10
[  138.048945][ T6066]  ? rwbase_write_lock+0x56f/0x750
[  138.048972][ T6066]  ? __lock_acquire+0xab9/0xd20
[  138.048997][ T6066]  vm_mmap_pgoff+0x2a9/0x4d0
[  138.049037][ T6066]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  138.049072][ T6066]  ? __fget_files+0x2a/0x420
[  138.049096][ T6066]  ? __fget_files+0x3a6/0x420
[  138.049118][ T6066]  ? __fget_files+0x2a/0x420
[  138.049143][ T6066]  ksys_mmap_pgoff+0x4e9/0x720
[  138.049172][ T6066]  ? __x64_sys_mmap+0x7f/0x140
[  138.049207][ T6066]  do_syscall_64+0xfa/0xfa0
[  138.049242][ T6066]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.049277][ T6066]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.049299][ T6066]  ? clear_bhb_loop+0x60/0xb0
[  138.049334][ T6066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.049357][ T6066] RIP: 0033:0x7f638ff1efc9
[  138.049383][ T6066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.049403][ T6066] RSP: 002b:00007ffdc97f1258 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  138.049428][ T6066] RAX: ffffffffffffffda RBX: 00007f6390175fa0 RCX: 00007f638ff1efc9
[  138.049445][ T6066] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  138.049459][ T6066] RBP: 00007f638ffa1f91 R08: 0000000000000003 R09: 0000000100000000
[  138.049474][ T6066] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  138.049488][ T6066] R13: 00007f6390175fa0 R14: 00007f6390175fa0 R15: 0000000000000006
[  138.049514][ T6066]  </TASK>
[  138.049523][ T6066] 
[  138.049532][ T6066] Allocated by task 6066:
[  138.049542][ T6066]  kasan_save_track+0x3e/0x80
[  138.049561][ T6066]  __kasan_kmalloc+0x93/0xb0
[  138.049579][ T6066]  __kvmalloc_node_noprof+0x3fd/0x920
[  138.049602][ T6066]  drm_gem_get_pages+0x169/0xa30
[  138.049636][ T6066]  drm_gem_shmem_get_pages_locked+0x201/0x440
[  138.049672][ T6066]  drm_gem_shmem_mmap+0x193/0x450
[  138.049696][ T6066]  drm_gem_mmap_obj+0x18a/0x4e0
[  138.049714][ T6066]  drm_gem_mmap+0x38d/0x640
[  138.049731][ T6066]  mmap_region+0x18c9/0x20f0
[  138.049758][ T6066]  do_mmap+0xc23/0x10c0
[  138.049774][ T6066]  vm_mmap_pgoff+0x2a9/0x4d0
[  138.049805][ T6066]  ksys_mmap_pgoff+0x4e9/0x720
[  138.049822][ T6066]  do_syscall_64+0xfa/0xfa0
[  138.049853][ T6066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.049873][ T6066] 
[  138.049878][ T6066] The buggy address belongs to the object at ffff8880278b4600
[  138.049878][ T6066]  which belongs to the cache kmalloc-256 of size 256
[  138.049895][ T6066] The buggy address is located 0 bytes to the right of
[  138.049895][ T6066]  allocated 248-byte region [ffff8880278b4600, ffff8880278b46f8)
[  138.049916][ T6066] 
[  138.049922][ T6066] The buggy address belongs to the physical page:
[  138.049942][ T6066] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x278b4
[  138.049960][ T6066] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  138.049977][ T6066] flags: 0x80000000000040(head|node=0|zone=1)
[  138.050002][ T6066] page_type: f5(slab)
[  138.050021][ T6066] raw: 0080000000000040 ffff88813ff26b40 ffffea00009f2480 dead000000000004
[  138.050039][ T6066] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  138.050059][ T6066] head: 0080000000000040 ffff88813ff26b40 ffffea00009f2480 dead000000000004
[  138.050077][ T6066] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  138.050097][ T6066] head: 0080000000000001 ffffea00009e2d01 00000000ffffffff 00000000ffffffff
[  138.050115][ T6066] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  138.050126][ T6066] page dumped because: kasan: bad access detected
[  138.050140][ T6066] page_owner tracks the page as allocated
[  138.050148][ T6066] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 70, tgid 70 (kworker/u8:5), ts 14447348561, free_ts 0
[  138.050188][ T6066]  post_alloc_hook+0x240/0x2a0
[  138.050206][ T6066]  get_page_from_freelist+0x28c0/0x2960
[  138.050231][ T6066]  __alloc_frozen_pages_noprof+0x181/0x370
[  138.050255][ T6066]  allocate_slab+0x71/0x3a0
[  138.050281][ T6066]  ___slab_alloc+0xb12/0x13f0
[  138.050306][ T6066]  __slab_alloc+0xc6/0x1f0
[  138.050329][ T6066]  __kmalloc_cache_node_noprof+0x1a0/0x700
[  138.050349][ T6066]  blk_alloc_flush_queue+0x7f/0x240
[  138.050369][ T6066]  blk_mq_alloc_and_init_hctx+0x79e/0xd50
[  138.050399][ T6066]  __blk_mq_realloc_hw_ctxs+0x169/0x400
[  138.050427][ T6066]  blk_mq_init_allocated_queue+0x416/0x14e0
[  138.050452][ T6066]  blk_mq_alloc_queue+0x191/0x280
[  138.050476][ T6066]  scsi_alloc_sdev+0x785/0xb60
[  138.050505][ T6066]  scsi_probe_and_add_lun+0x1c5/0x4580
[  138.050534][ T6066]  __scsi_scan_target+0x1dd/0xd10
[  138.050562][ T6066]  scsi_scan_host_selected+0x375/0x690
[  138.050592][ T6066] page_owner free stack trace missing
[  138.050600][ T6066] 
[  138.050604][ T6066] Memory state around the buggy address:
[  138.050616][ T6066]  ffff8880278b4580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  138.050631][ T6066]  ffff8880278b4600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  138.050645][ T6066] >ffff8880278b4680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[  138.050656][ T6066]                                                                 ^
[  138.050668][ T6066]  ffff8880278b4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  138.050683][ T6066]  ffff8880278b4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  138.050694][ T6066] ==================================================================
[  138.050713][ T6066] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  138.050729][ T6066] CPU: 1 UID: 0 PID: 6066 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  138.050753][ T6066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  138.050765][ T6066] Call Trace:
[  138.050773][ T6066]  <TASK>
[  138.050782][ T6066]  dump_stack_lvl+0x99/0x250
[  138.050809][ T6066]  ? __asan_memcpy+0x40/0x70
[  138.050840][ T6066]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.050867][ T6066]  ? __pfx__printk+0x10/0x10
[  138.050900][ T6066]  vpanic+0x237/0x6d0
[  138.050921][ T6066]  ? __pfx_vpanic+0x10/0x10
[  138.050947][ T6066]  panic+0xb9/0xc0
[  138.050966][ T6066]  ? __pfx_panic+0x10/0x10
[  138.050984][ T6066]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  138.051022][ T6066]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  138.051060][ T6066]  ? change_page_attr_set_clr+0x625/0xfc0
[  138.051093][ T6066]  check_panic_on_warn+0x89/0xb0
[  138.051121][ T6066]  ? change_page_attr_set_clr+0x625/0xfc0
[  138.051154][ T6066]  end_report+0x78/0x160
[  138.051183][ T6066]  kasan_report+0x129/0x150
[  138.051207][ T6066]  ? change_page_attr_set_clr+0x625/0xfc0
[  138.051244][ T6066]  change_page_attr_set_clr+0x625/0xfc0
[  138.051279][ T6066]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[  138.051310][ T6066]  ? __pfx_pagerange_is_ram_callback+0x10/0x10
[  138.051337][ T6066]  ? memtype_reserve+0x874/0xb30
[  138.051374][ T6066]  _set_pages_array+0x145/0x270
[  138.051397][ T6066]  drm_gem_shmem_get_pages_locked+0x2d0/0x440
[  138.051423][ T6066]  ? drm_gem_shmem_mmap+0x18b/0x450
[  138.051452][ T6066]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[  138.051482][ T6066]  ? rt_read_unlock+0x150/0x220
[  138.051513][ T6066]  drm_gem_shmem_mmap+0x193/0x450
[  138.051542][ T6066]  drm_gem_mmap_obj+0x18a/0x4e0
[  138.051565][ T6066]  drm_gem_mmap+0x38d/0x640
[  138.051587][ T6066]  ? __pfx_drm_gem_mmap+0x10/0x10
[  138.051608][ T6066]  ? __mas_set_range+0x12f/0x3c0
[  138.051642][ T6066]  mmap_region+0x18c9/0x20f0
[  138.051687][ T6066]  ? __pfx_mmap_region+0x10/0x10
[  138.051720][ T6066]  ? rtlock_slowlock_locked+0xd8/0x4010
[  138.051785][ T6066]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  138.051829][ T6066]  ? bpf_lsm_mmap_addr+0x9/0x20
[  138.051855][ T6066]  ? security_mmap_addr+0x71/0x270
[  138.051884][ T6066]  ? shmem_mapping+0xd/0x50
[  138.051917][ T6066]  ? memfd_check_seals_mmap+0xcb/0x210
[  138.051948][ T6066]  do_mmap+0xc23/0x10c0
[  138.051971][ T6066]  ? __pfx_do_mmap+0x10/0x10
[  138.051989][ T6066]  ? rwbase_write_lock+0x56f/0x750
[  138.052013][ T6066]  ? __lock_acquire+0xab9/0xd20
[  138.052038][ T6066]  vm_mmap_pgoff+0x2a9/0x4d0
[  138.052075][ T6066]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  138.052107][ T6066]  ? __fget_files+0x2a/0x420
[  138.052133][ T6066]  ? __fget_files+0x3a6/0x420
[  138.052155][ T6066]  ? __fget_files+0x2a/0x420
[  138.052186][ T6066]  ksys_mmap_pgoff+0x4e9/0x720
[  138.052206][ T6066]  ? __x64_sys_mmap+0x7f/0x140
[  138.052242][ T6066]  do_syscall_64+0xfa/0xfa0
[  138.052276][ T6066]  ? lockdep_hardirqs_on+0x9c/0x150
[  138.052310][ T6066]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.052332][ T6066]  ? clear_bhb_loop+0x60/0xb0
[  138.052356][ T6066]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.052376][ T6066] RIP: 0033:0x7f638ff1efc9
[  138.052393][ T6066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.052410][ T6066] RSP: 002b:00007ffdc97f1258 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  138.052432][ T6066] RAX: ffffffffffffffda RBX: 00007f6390175fa0 RCX: 00007f638ff1efc9
[  138.052449][ T6066] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[  138.052463][ T6066] RBP: 00007f638ffa1f91 R08: 0000000000000003 R09: 0000000100000000
[  138.052478][ T6066] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[  138.052491][ T6066] R13: 00007f6390175fa0 R14: 00007f6390175fa0 R15: 0000000000000006
[  138.052516][ T6066]  </TASK>
[  138.052839][ T6066] Kernel Offset: disabled