Warning: Permanently added '10.128.1.88' (ED25519) to the list of known hosts.
2025/12/26 13:22:57 parsed 1 programs
[ 71.435150][ T4188] cgroup: Unknown subsys name 'net'
[ 71.542376][ T4188] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 73.121454][ T4188] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 76.832666][ T4250] chnl_net:caif_netlink_parms(): no params data found
[ 76.881985][ T4250] bridge0: port 1(bridge_slave_0) entered blocking state
[ 76.889812][ T4250] bridge0: port 1(bridge_slave_0) entered disabled state
[ 76.897948][ T4250] device bridge_slave_0 entered promiscuous mode
[ 76.907049][ T4250] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.914361][ T4250] bridge0: port 2(bridge_slave_1) entered disabled state
[ 76.923031][ T4250] device bridge_slave_1 entered promiscuous mode
[ 76.947375][ T4250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 76.958774][ T4250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 76.983842][ T4250] team0: Port device team_slave_0 added
[ 76.992071][ T4250] team0: Port device team_slave_1 added
[ 77.012262][ T4250] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 77.019480][ T4250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.046119][ T4250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 77.058897][ T4250] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 77.066168][ T4250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.093001][ T4250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 77.144288][ T4250] device hsr_slave_0 entered promiscuous mode
[ 77.151616][ T4250] device hsr_slave_1 entered promiscuous mode
[ 77.316434][ T4250] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 77.327406][ T4250] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 77.338839][ T4250] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 77.350110][ T4250] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 77.394323][ T4250] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.402105][ T4250] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 77.410243][ T4250] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.417693][ T4250] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 77.483297][ T4250] 8021q: adding VLAN 0 to HW filter on device bond0
[ 77.526608][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 77.537774][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 77.547568][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 77.555857][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 77.571307][ T4250] 8021q: adding VLAN 0 to HW filter on device team0
[ 77.596542][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 77.606997][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.614614][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 77.635016][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 77.645072][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.652328][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 77.673945][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 77.683339][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 77.693662][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 77.706803][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 77.715545][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 77.741325][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 77.858351][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 77.867193][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 77.884790][ T4250] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 77.916983][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 77.927546][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 77.948721][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 77.958682][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 77.970850][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 77.979255][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 77.991736][ T4250] device veth0_vlan entered promiscuous mode
[ 78.007302][ T4250] device veth1_vlan entered promiscuous mode
[ 78.031303][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 78.039900][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 78.050429][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 78.059942][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 78.074367][ T4250] device veth0_macvtap entered promiscuous mode
[ 78.087518][ T4250] device veth1_macvtap entered promiscuous mode
[ 78.108278][ T4250] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 78.117663][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 78.129886][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 78.146387][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 78.156030][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 78.169411][ T4250] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 78.177588][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 78.187037][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 78.200655][ T4250] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.212507][ T4250] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.221310][ T4250] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.230714][ T4250] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.362412][ T4250] syz-executor (4250) used greatest stack depth: 20296 bytes left
[ 78.474921][ T1158] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.491887][ T1158] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.506872][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 78.527540][ T1158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.536875][ T1158] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.548008][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/12/26 13:23:07 executed programs: 0
[ 79.513230][ T4294] chnl_net:caif_netlink_parms(): no params data found
[ 79.575363][ T4294] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.584024][ T4294] bridge0: port 1(bridge_slave_0) entered disabled state
[ 79.592254][ T4294] device bridge_slave_0 entered promiscuous mode
[ 79.601466][ T4294] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.611851][ T4294] bridge0: port 2(bridge_slave_1) entered disabled state
[ 79.620141][ T4294] device bridge_slave_1 entered promiscuous mode
[ 79.650713][ T4294] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 79.663934][ T4294] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 79.688165][ T4294] team0: Port device team_slave_0 added
[ 79.697765][ T4294] team0: Port device team_slave_1 added
[ 79.717056][ T4294] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 79.724842][ T4294] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.751085][ T4294] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 79.768014][ T4294] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 79.775218][ T4294] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.802119][ T4294] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 79.842425][ T307] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 79.868580][ T4294] device hsr_slave_0 entered promiscuous mode
[ 79.876886][ T4294] device hsr_slave_1 entered promiscuous mode
[ 79.885178][ T4294] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 79.893845][ T4294] Cannot create hsr debugfs directory
[ 81.402652][ T13] Bluetooth: hci0: command 0x0409 tx timeout
[ 83.109740][ T307] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.296366][ T307] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.352547][ T307] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.496909][ T1336] Bluetooth: hci0: command 0x041b tx timeout
[ 84.244570][ T4294] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 84.254759][ T4294] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 84.265910][ T4294] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 84.293688][ T4294] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 84.368592][ T4294] 8021q: adding VLAN 0 to HW filter on device bond0
[ 84.385590][ T4294] 8021q: adding VLAN 0 to HW filter on device team0
[ 84.394139][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 84.403743][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 84.415260][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 84.425510][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 84.434265][ T154] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.441362][ T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 84.450041][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 84.464048][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 84.473515][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 84.484237][ T154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.491366][ T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.514542][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 84.527251][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 84.540148][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 84.550071][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 84.559794][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 84.591036][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 84.600816][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 84.617351][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 84.626194][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 84.650168][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 84.664323][ T1158] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 84.676171][ T4294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 84.746227][ T307] device hsr_slave_0 left promiscuous mode
[ 84.753296][ T307] device hsr_slave_1 left promiscuous mode
[ 84.765814][ T307] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 84.773600][ T307] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 84.782766][ T307] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 84.790756][ T307] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 84.799860][ T307] device bridge_slave_1 left promiscuous mode
[ 84.807390][ T307] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.822290][ T307] device bridge_slave_0 left promiscuous mode
[ 84.828642][ T307] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.848219][ T307] device veth1_macvtap left promiscuous mode
[ 84.855307][ T307] device veth0_macvtap left promiscuous mode
[ 84.861418][ T307] device veth1_vlan left promiscuous mode
[ 84.867720][ T307] device veth0_vlan left promiscuous mode
[ 85.053657][ T307] team0 (unregistering): Port device team_slave_1 removed
[ 85.072640][ T307] team0 (unregistering): Port device team_slave_0 removed
[ 85.088584][ T307] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 85.106310][ T307] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 85.213308][ T307] bond0 (unregistering): Released all slaves
[ 85.402253][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 85.410086][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 85.425872][ T4294] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 85.454641][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 85.474675][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 85.495781][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 85.504408][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 85.514629][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 85.524881][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 85.536070][ T4294] device veth0_vlan entered promiscuous mode
[ 85.549421][ T4294] device veth1_vlan entered promiscuous mode
[ 85.566998][ T13] Bluetooth: hci0: command 0x040f tx timeout
[ 85.586084][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 85.594578][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 85.603642][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 85.612898][ T4343] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 85.627922][ T4294] device veth0_macvtap entered promiscuous mode
[ 85.638775][ T4294] device veth1_macvtap entered promiscuous mode
[ 85.657455][ T4294] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 85.665111][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 85.674361][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 85.683533][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 85.692853][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 85.705861][ T4294] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 85.716756][ T4294] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.725906][ T4294] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.736016][ T4294] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.745837][ T4294] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.759171][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 85.769010][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 85.832926][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.841089][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.867969][ T4343] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.876433][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 85.886724][ T4343] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.898371][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 85.997688][ T4345] loop0: detected capacity change from 0 to 4096
[ 86.030753][ T4345] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk.
[ 86.051775][ T4345] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk.
[ 86.082420][ T4345] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[ 86.111761][ T4345] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk.
[ 86.126441][ T4345] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 86.143245][ T4345] ntfs: volume version 3.1.
[ 86.148327][ T4345] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[ 86.181808][ T4345] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x2, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[ 86.221777][ T4345] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute.
[ 86.234319][ T4345] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x2, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[ 86.255081][ T4345] ntfs: (device loop0): ntfs_check_logfile(): Error mapping $LogFile page (index 0).
[ 86.270232][ T4345] ==================================================================
[ 86.278764][ T4345] BUG: KASAN: slab-out-of-bounds in ntfs_readdir+0xdda/0x3550
[ 86.286626][ T4345] Read of size 1 at addr ffff88807cacde61 by task syz.0.17/4345
[ 86.294282][ T4345]
[ 86.296646][ T4345] CPU: 1 PID: 4345 Comm: syz.0.17 Not tainted syzkaller #0
[ 86.303865][ T4345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 86.314055][ T4345] Call Trace:
[ 86.317389][ T4345]
[ 86.320442][ T4345] dump_stack_lvl+0x168/0x230
[ 86.325165][ T4345] ? show_regs_print_info+0x20/0x20
[ 86.330639][ T4345] ? load_image+0x3b0/0x3b0
[ 86.335333][ T4345] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 86.340760][ T4345] print_address_description+0x60/0x2d0
[ 86.346371][ T4345] ? ntfs_readdir+0xdda/0x3550
[ 86.351283][ T4345] kasan_report+0xdf/0x130
[ 86.355850][ T4345] ? ntfs_readdir+0xdda/0x3550
[ 86.360659][ T4345] ? unmap_mft_record+0x171/0x2e0
[ 86.365990][ T4345] ntfs_readdir+0xdda/0x3550
[ 86.370663][ T4345] ? __might_sleep+0xf0/0xf0
[ 86.375340][ T4345] ? preempt_count_add+0x8d/0x190
[ 86.380412][ T4345] ? rwsem_write_trylock+0x12f/0x1b0
[ 86.385737][ T4345] ? clear_nonspinnable+0x60/0x60
[ 86.390903][ T4345] ? ntfs_unmap_page+0x200/0x200
[ 86.395922][ T4345] iterate_dir+0x218/0x560
[ 86.400457][ T4345] __se_sys_getdents64+0xe5/0x260
[ 86.405526][ T4345] ? __x64_sys_getdents64+0x80/0x80
[ 86.410772][ T4345] ? filldir+0x720/0x720
[ 86.415061][ T4345] ? vtime_user_exit+0x2dc/0x400
[ 86.420068][ T4345] ? lockdep_hardirqs_on+0x94/0x140
[ 86.425721][ T4345] do_syscall_64+0x4c/0xa0
[ 86.430186][ T4345] ? clear_bhb_loop+0x30/0x80
[ 86.435065][ T4345] ? clear_bhb_loop+0x30/0x80
[ 86.440454][ T4345] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.446529][ T4345] RIP: 0033:0x7fceacfe2749
[ 86.451165][ T4345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 86.471113][ T4345] RSP: 002b:00007ffd8703ff88 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 86.479592][ T4345] RAX: ffffffffffffffda RBX: 00007fcead238fa0 RCX: 00007fceacfe2749
[ 86.487611][ T4345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 86.495728][ T4345] RBP: 00007fcead066f91 R08: 0000000000000000 R09: 0000000000000000
[ 86.504072][ T4345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 86.512092][ T4345] R13: 00007fcead238fa0 R14: 00007fcead238fa0 R15: 0000000000000003
[ 86.520237][ T4345]
[ 86.523449][ T4345]
[ 86.525827][ T4345] Allocated by task 4345:
[ 86.530175][ T4345] __kasan_kmalloc+0xb5/0xf0
[ 86.534809][ T4345] ntfs_readdir+0x798/0x3550
[ 86.539608][ T4345] iterate_dir+0x218/0x560
[ 86.544054][ T4345] __se_sys_getdents64+0xe5/0x260
[ 86.549225][ T4345] do_syscall_64+0x4c/0xa0
[ 86.553712][ T4345] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.559674][ T4345]
[ 86.562062][ T4345] The buggy address belongs to the object at ffff88807cacde00
[ 86.562062][ T4345] which belongs to the cache kmalloc-64 of size 64
[ 86.576340][ T4345] The buggy address is located 33 bytes to the right of
[ 86.576340][ T4345] 64-byte region [ffff88807cacde00, ffff88807cacde40)
[ 86.590115][ T4345] The buggy address belongs to the page:
[ 86.595891][ T4345] page:ffffea0001f2b340 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88807cacd300 pfn:0x7cacd
[ 86.607443][ T4345] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 86.615546][ T4345] raw: 00fff00000000200 ffffea00009ae6c0 0000001b0000001b ffff888016841640
[ 86.624207][ T4345] raw: ffff88807cacd300 000000008020001e 00000001ffffffff 0000000000000000
[ 86.633190][ T4345] page dumped because: kasan: bad access detected
[ 86.639905][ T4345] page_owner tracks the page as allocated
[ 86.645694][ T4345] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY), pid 3559, ts 27809922793, free_ts 25187432632
[ 86.661612][ T4345] get_page_from_freelist+0x1b77/0x1c60
[ 86.667233][ T4345] __alloc_pages+0x1e1/0x470
[ 86.671879][ T4345] new_slab+0xc0/0x4b0
[ 86.676194][ T4345] ___slab_alloc+0x81e/0xdf0
[ 86.680925][ T4345] __kmalloc_track_caller+0x1cb/0x330
[ 86.686766][ T4345] krealloc+0x5a/0xf0
[ 86.690880][ T4345] ima_collect_measurement+0x390/0x760
[ 86.696472][ T4345] process_measurement+0xfb9/0x1a10
[ 86.701705][ T4345] ima_file_check+0xc1/0x100
[ 86.706515][ T4345] path_openat+0x2735/0x2f30
[ 86.711141][ T4345] do_filp_open+0x1b3/0x3e0
[ 86.715685][ T4345] do_sys_openat2+0x142/0x4a0
[ 86.720466][ T4345] __x64_sys_openat+0x135/0x160
[ 86.725353][ T4345] do_syscall_64+0x4c/0xa0
[ 86.729841][ T4345] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.735781][ T4345] page last free stack trace:
[ 86.740564][ T4345] free_unref_page_prepare+0x637/0x6c0
[ 86.746058][ T4345] free_unref_page+0x94/0x280
[ 86.750867][ T4345] free_contig_range+0x96/0xf0
[ 86.755666][ T4345] destroy_args+0x100/0xa20
[ 86.760215][ T4345] debug_vm_pgtable+0x318/0x370
[ 86.765185][ T4345] do_one_initcall+0x1ee/0x680
[ 86.769987][ T4345] do_initcall_level+0x137/0x1f0
[ 86.774954][ T4345] do_initcalls+0x4b/0x90
[ 86.779317][ T4345] kernel_init_freeable+0x3ce/0x560
[ 86.784548][ T4345] kernel_init+0x19/0x1b0
[ 86.788924][ T4345] ret_from_fork+0x1f/0x30
[ 86.793392][ T4345]
[ 86.795760][ T4345] Memory state around the buggy address:
[ 86.801420][ T4345] ffff88807cacdd00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 86.809804][ T4345] ffff88807cacdd80: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
[ 86.818175][ T4345] >ffff88807cacde00: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[ 86.826272][ T4345] ^
[ 86.833615][ T4345] ffff88807cacde80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 86.842083][ T4345] ffff88807cacdf00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 86.850343][ T4345] ==================================================================
[ 86.858543][ T4345] Disabling lock debugging due to kernel taint
[ 86.909519][ T4345] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 86.916901][ T4345] CPU: 1 PID: 4345 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 86.925613][ T4345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 86.935803][ T4345] Call Trace:
[ 86.939163][ T4345]
[ 86.942142][ T4345] dump_stack_lvl+0x168/0x230
[ 86.946857][ T4345] ? show_regs_print_info+0x20/0x20
[ 86.952093][ T4345] ? load_image+0x3b0/0x3b0
[ 86.956638][ T4345] panic+0x2c9/0x7f0
[ 86.960574][ T4345] ? bpf_jit_dump+0xd0/0xd0
[ 86.965110][ T4345] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 86.971081][ T4345] ? _raw_spin_unlock+0x40/0x40
[ 86.975960][ T4345] ? ntfs_readdir+0xdda/0x3550
[ 86.980902][ T4345] check_panic_on_warn+0x80/0xa0
[ 86.985887][ T4345] ? ntfs_readdir+0xdda/0x3550
[ 86.990707][ T4345] end_report+0x6d/0xf0
[ 86.994904][ T4345] kasan_report+0x102/0x130
[ 86.999614][ T4345] ? ntfs_readdir+0xdda/0x3550
[ 87.004414][ T4345] ? unmap_mft_record+0x171/0x2e0
[ 87.009588][ T4345] ntfs_readdir+0xdda/0x3550
[ 87.014330][ T4345] ? __might_sleep+0xf0/0xf0
[ 87.019221][ T4345] ? preempt_count_add+0x8d/0x190
[ 87.024283][ T4345] ? rwsem_write_trylock+0x12f/0x1b0
[ 87.029665][ T4345] ? clear_nonspinnable+0x60/0x60
[ 87.035035][ T4345] ? ntfs_unmap_page+0x200/0x200
[ 87.040113][ T4345] iterate_dir+0x218/0x560
[ 87.044681][ T4345] __se_sys_getdents64+0xe5/0x260
[ 87.050013][ T4345] ? __x64_sys_getdents64+0x80/0x80
[ 87.055256][ T4345] ? filldir+0x720/0x720
[ 87.059540][ T4345] ? vtime_user_exit+0x2dc/0x400
[ 87.064707][ T4345] ? lockdep_hardirqs_on+0x94/0x140
[ 87.070409][ T4345] do_syscall_64+0x4c/0xa0
[ 87.074871][ T4345] ? clear_bhb_loop+0x30/0x80
[ 87.079750][ T4345] ? clear_bhb_loop+0x30/0x80
[ 87.084475][ T4345] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 87.090410][ T4345] RIP: 0033:0x7fceacfe2749
[ 87.094863][ T4345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 87.114893][ T4345] RSP: 002b:00007ffd8703ff88 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 87.123524][ T4345] RAX: ffffffffffffffda RBX: 00007fcead238fa0 RCX: 00007fceacfe2749
[ 87.131532][ T4345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 87.139663][ T4345] RBP: 00007fcead066f91 R08: 0000000000000000 R09: 0000000000000000
[ 87.147672][ T4345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 87.155677][ T4345] R13: 00007fcead238fa0 R14: 00007fcead238fa0 R15: 0000000000000003
[ 87.163864][ T4345]
[ 87.167475][ T4345] Kernel Offset: disabled
[ 87.171925][ T4345] Rebooting in 86400 seconds..