Warning: Permanently added '10.128.1.105' (ED25519) to the list of known hosts.
2025/12/20 18:05:10 parsed 1 programs
[   82.955142][ T5770] cgroup: Unknown subsys name 'net'
[   83.099468][ T5770] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   84.736181][ T5770] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   88.479811][ T5826] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.488705][ T5826] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.496350][ T5826] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.504830][ T5826] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.512571][ T5826] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   88.520018][ T5826] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.545174][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.553301][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.623067][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.630983][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.911035][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   89.997671][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.006040][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.016845][ T5849] bridge_slave_0: entered allmulticast mode
[   90.025748][ T5849] bridge_slave_0: entered promiscuous mode
[   90.048197][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.055601][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.062892][ T5849] bridge_slave_1: entered allmulticast mode
[   90.069915][ T5849] bridge_slave_1: entered promiscuous mode
[   90.115707][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.127834][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.183396][ T5849] team0: Port device team_slave_0 added
[   90.191186][ T5849] team0: Port device team_slave_1 added
[   90.238602][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.245881][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.272731][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.289378][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.296791][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.322813][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.378505][ T5849] hsr_slave_0: entered promiscuous mode
[   90.384976][ T5849] hsr_slave_1: entered promiscuous mode
[   90.572447][ T5849] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   90.584575][ T5849] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   90.597119][ T5849] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   90.611953][ T5849] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   90.715398][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   90.740041][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   90.754959][ T1122] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.762388][ T1122] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.782570][ T1122] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.789708][ T1122] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.838123][ T5849] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   91.020354][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   91.068448][ T5849] veth0_vlan: entered promiscuous mode
[   91.084459][ T5849] veth1_vlan: entered promiscuous mode
[   91.111866][ T5849] veth0_macvtap: entered promiscuous mode
[   91.125801][ T5849] veth1_macvtap: entered promiscuous mode
[   91.144892][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.159759][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.171531][ T5849] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.181790][ T5849] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.191557][ T5849] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.200469][ T5849] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.776905][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/20 18:05:21 executed programs: 0
[   91.965200][  T787] cfg80211: failed to load regulatory.db
[   91.984026][ T5826] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   91.991827][ T5826] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   92.001366][ T5826] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   92.010202][ T5826] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   92.018064][ T5826] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   92.025678][ T5826] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   92.184460][ T5878] chnl_net:caif_netlink_parms(): no params data found
[   92.255505][ T5878] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.263222][ T5878] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.270378][ T5878] bridge_slave_0: entered allmulticast mode
[   92.277915][ T5878] bridge_slave_0: entered promiscuous mode
[   92.291079][ T5878] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.298450][ T5878] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.305899][ T5878] bridge_slave_1: entered allmulticast mode
[   92.313124][ T5878] bridge_slave_1: entered promiscuous mode
[   92.349719][ T5878] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.361813][ T5878] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.399411][ T5878] team0: Port device team_slave_0 added
[   92.408856][ T5878] team0: Port device team_slave_1 added
[   92.439641][ T5878] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.446808][ T5878] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.473010][ T5878] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.487505][ T5878] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.494620][ T5878] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.520637][ T5878] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.566865][ T5878] hsr_slave_0: entered promiscuous mode
[   92.573306][ T5878] hsr_slave_1: entered promiscuous mode
[   92.579458][ T5878] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.588036][ T5878] Cannot create hsr debugfs directory
[   93.964487][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.043312][ T5826] Bluetooth: hci0: command tx timeout
[   96.122994][ T5826] Bluetooth: hci0: command tx timeout
[   96.204574][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.255793][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.183815][   T12] hsr_slave_0: left promiscuous mode
[   97.195861][   T12] hsr_slave_1: left promiscuous mode
[   97.216080][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   97.237667][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   97.274450][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   97.294555][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   97.302640][   T12] bridge_slave_1: left allmulticast mode
[   97.308309][   T12] bridge_slave_1: left promiscuous mode
[   97.320035][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.336357][   T12] bridge_slave_0: left allmulticast mode
[   97.342048][   T12] bridge_slave_0: left promiscuous mode
[   97.348317][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.380731][   T12] veth1_macvtap: left promiscuous mode
[   97.387463][   T12] veth0_macvtap: left promiscuous mode
[   97.395042][   T12] veth1_vlan: left promiscuous mode
[   97.400547][   T12] veth0_vlan: left promiscuous mode
[   97.820182][   T12] team0 (unregistering): Port device team_slave_1 removed
[   97.852798][   T12] team0 (unregistering): Port device team_slave_0 removed
[   97.880196][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   97.915038][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   98.191962][   T12] bond0 (unregistering): Released all slaves
[   98.202268][ T5826] Bluetooth: hci0: command tx timeout
[   98.328350][ T5878] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.338915][ T5878] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.350628][ T5878] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.361394][ T5878] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.468879][ T5878] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.501104][ T5878] 8021q: adding VLAN 0 to HW filter on device team0
[   98.514057][ T1122] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.521183][ T1122] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.539718][ T1122] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.546912][ T1122] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.769368][ T5878] 8021q: adding VLAN 0 to HW filter on device batadv0
[   98.816175][ T5878] veth0_vlan: entered promiscuous mode
[   98.827480][ T5878] veth1_vlan: entered promiscuous mode
[   98.863814][ T5878] veth0_macvtap: entered promiscuous mode
[   98.873438][ T5878] veth1_macvtap: entered promiscuous mode
[   98.890465][ T5878] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.903748][ T5878] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.923897][ T5878] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.933203][ T5878] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.941944][ T5878] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.950833][ T5878] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.021415][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.034357][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.061309][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.069586][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/12/20 18:05:28 executed programs: 2
[   99.128187][ T5928] syz.0.17[5928]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   99.181438][ T5928] loop0: detected capacity change from 0 to 4096
[   99.239471][ T5928] ntfs: (device loop0): parse_options(): NLS character set maccentHuro not found. Using previous one cp857.
[   99.254482][ T5928] ntfs: (device loop0): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[   99.287906][ T5928] ntfs: volume version 3.1.
[   99.298755][ T5928] ntfs: (device loop0): ntfs_index_lookup(): Corrupt index.  Aborting lookup.
[   99.308088][ T5928] ntfs: (device loop0): ntfs_mark_quotas_out_of_date(): Lookup of quota defaults entry failed.
[   99.319955][ T5928] ntfs: (device loop0): load_system_files(): Failed to mark quotas out of date.  Mounting read-only.  Run chkdsk.
[   99.335674][ T5928] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Corrupt directory.  Aborting lookup.
[   99.347714][ T5928] ntfs: (device loop0): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[   99.359869][ T5928] ntfs: (device loop0): load_system_files(): Failed to load $UsnJrnl.  Will not be able to remount read-write.  Run chkdsk.
[   99.398068][ T5878] ntfs: (device loop0): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp857.  You might want to try to use the mount option nls=utf8.
[   99.417509][ T5878] ntfs: (device loop0): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[   99.431236][ T5878] ==================================================================
[   99.439332][ T5878] BUG: KASAN: slab-out-of-bounds in ntfs_readdir+0xd6f/0x2970
[   99.446843][ T5878] Read of size 1 at addr ffff888024302199 by task syz-executor/5878
[   99.454836][ T5878] 
[   99.457205][ T5878] CPU: 1 PID: 5878 Comm: syz-executor Not tainted syzkaller #0
[   99.464768][ T5878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   99.474848][ T5878] Call Trace:
[   99.478146][ T5878]  <TASK>
[   99.481092][ T5878]  dump_stack_lvl+0x16c/0x230
[   99.485804][ T5878]  ? __lock_acquire+0x7c80/0x7c80
[   99.490854][ T5878]  ? show_regs_print_info+0x20/0x20
[   99.496074][ T5878]  ? load_image+0x3b0/0x3b0
[   99.500596][ T5878]  ? __virt_addr_valid+0x469/0x540
[   99.505722][ T5878]  print_report+0xac/0x220
[   99.510162][ T5878]  ? ntfs_readdir+0xd6f/0x2970
[   99.514957][ T5878]  kasan_report+0x117/0x150
[   99.519482][ T5878]  ? filldir64+0x462/0x680
[   99.523916][ T5878]  ? ntfs_readdir+0xd6f/0x2970
[   99.528725][ T5878]  ntfs_readdir+0xd6f/0x2970
[   99.533355][ T5878]  ? __might_sleep+0xe0/0xe0
[   99.537982][ T5878]  ? ntfs_dir_fsync+0x410/0x410
[   99.542851][ T5878]  ? down_write+0x162/0x1f0
[   99.547363][ T5878]  ? down_read_killable+0x340/0x340
[   99.552579][ T5878]  ? end_current_label_crit_section+0x149/0x170
[   99.558851][ T5878]  ? ntfs_dir_fsync+0x410/0x410
[   99.563724][ T5878]  wrap_directory_iterator+0x92/0xd0
[   99.569028][ T5878]  iterate_dir+0x1c2/0x580
[   99.573470][ T5878]  __se_sys_getdents64+0xe9/0x260
[   99.578512][ T5878]  ? __x64_sys_getdents64+0x80/0x80
[   99.583726][ T5878]  ? filldir+0x680/0x680
[   99.587988][ T5878]  ? lock_chain_count+0x20/0x20
[   99.592872][ T5878]  ? lockdep_hardirqs_on+0x98/0x150
[   99.598096][ T5878]  do_syscall_64+0x55/0xb0
[   99.602535][ T5878]  ? clear_bhb_loop+0x40/0x90
[   99.607234][ T5878]  ? clear_bhb_loop+0x40/0x90
[   99.611944][ T5878]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   99.617856][ T5878] RIP: 0033:0x7fd8d21c20b3
[   99.622304][ T5878] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   99.641939][ T5878] RSP: 002b:00007ffc1eb6be88 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   99.650376][ T5878] RAX: ffffffffffffffda RBX: 0000555555d32640 RCX: 00007fd8d21c20b3
[   99.658366][ T5878] RDX: 0000000000008000 RSI: 0000555555d32640 RDI: 0000000000000006
[   99.666351][ T5878] RBP: 0000555555d32614 R08: 0000000000000000 R09: 0000000000000000
[   99.674353][ T5878] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[   99.682334][ T5878] R13: 0000000000000016 R14: 0000555555d32610 R15: 00007ffc1eb6f230
[   99.690333][ T5878]  </TASK>
[   99.693366][ T5878] 
[   99.695735][ T5878] Allocated by task 5878:
[   99.700073][ T5878]  kasan_set_track+0x4e/0x70
[   99.704673][ T5878]  __kasan_kmalloc+0x8f/0xa0
[   99.709271][ T5878]  __kmalloc+0xb4/0x240
[   99.713444][ T5878]  ntfs_readdir+0x754/0x2970
[   99.718053][ T5878]  wrap_directory_iterator+0x92/0xd0
[   99.723350][ T5878]  iterate_dir+0x1c2/0x580
[   99.727776][ T5878]  __se_sys_getdents64+0xe9/0x260
[   99.732818][ T5878]  do_syscall_64+0x55/0xb0
[   99.737245][ T5878]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   99.743147][ T5878] 
[   99.745475][ T5878] The buggy address belongs to the object at ffff888024302000
[   99.745475][ T5878]  which belongs to the cache kmalloc-512 of size 512
[   99.759534][ T5878] The buggy address is located 65 bytes to the right of
[   99.759534][ T5878]  allocated 344-byte region [ffff888024302000, ffff888024302158)
[   99.774121][ T5878] 
[   99.776477][ T5878] The buggy address belongs to the physical page:
[   99.782904][ T5878] page:ffffea000090c000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24300
[   99.793070][ T5878] head:ffffea000090c000 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   99.802014][ T5878] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   99.810008][ T5878] page_type: 0xffffffff()
[   99.814352][ T5878] raw: 00fff00000000840 ffff888017841c80 dead000000000122 0000000000000000
[   99.822951][ T5878] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   99.831548][ T5878] page dumped because: kasan: bad access detected
[   99.837987][ T5878] page_owner tracks the page as allocated
[   99.843714][ T5878] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5878, tgid 5878 (syz-executor), ts 99096788925, free_ts 88698672023
[   99.866477][ T5878]  post_alloc_hook+0x1cd/0x210
[   99.871284][ T5878]  get_page_from_freelist+0x195c/0x19f0
[   99.876852][ T5878]  __alloc_pages+0x1e3/0x460
[   99.881463][ T5878]  alloc_slab_page+0x5d/0x170
[   99.886172][ T5878]  new_slab+0x87/0x2e0
[   99.890264][ T5878]  ___slab_alloc+0xc6d/0x1300
[   99.894961][ T5878]  __kmem_cache_alloc_node+0x1a2/0x260
[   99.900436][ T5878]  kmalloc_trace+0x2a/0xe0
[   99.904873][ T5878]  kernfs_fop_open+0x3f5/0xcc0
[   99.909649][ T5878]  do_dentry_open+0x8c6/0x1500
[   99.914429][ T5878]  path_openat+0x274b/0x3190
[   99.919051][ T5878]  do_filp_open+0x1c5/0x3d0
[   99.923580][ T5878]  do_sys_openat2+0x12c/0x1c0
[   99.928283][ T5878]  __x64_sys_openat+0x139/0x160
[   99.933165][ T5878]  do_syscall_64+0x55/0xb0
[   99.937619][ T5878]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   99.943527][ T5878] page last free stack trace:
[   99.948209][ T5878]  free_unref_page_prepare+0x7ce/0x8e0
[   99.953685][ T5878]  free_unref_page+0x32/0x2e0
[   99.958380][ T5878]  __slab_free+0x35e/0x410
[   99.962823][ T5878]  qlist_free_all+0x75/0xe0
[   99.967347][ T5878]  kasan_quarantine_reduce+0x143/0x160
[   99.972820][ T5878]  __kasan_slab_alloc+0x22/0x80
[   99.977683][ T5878]  slab_post_alloc_hook+0x6e/0x4d0
[   99.982805][ T5878]  kmem_cache_alloc+0x11e/0x2e0
[   99.987700][ T5878]  getname_flags+0xbb/0x500
[   99.992242][ T5878]  do_sys_openat2+0xcb/0x1c0
[   99.996848][ T5878]  __x64_sys_openat+0x139/0x160
[  100.001712][ T5878]  do_syscall_64+0x55/0xb0
[  100.006154][ T5878]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  100.012086][ T5878] 
[  100.014424][ T5878] Memory state around the buggy address:
[  100.020080][ T5878]  ffff888024302080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  100.028173][ T5878]  ffff888024302100: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  100.036288][ T5878] >ffff888024302180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.044373][ T5878]                             ^
[  100.049256][ T5878]  ffff888024302200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.057328][ T5878]  ffff888024302280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  100.065408][ T5878] ==================================================================
[  100.093815][ T5878] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  100.101165][ T5878] CPU: 1 PID: 5878 Comm: syz-executor Not tainted syzkaller #0
[  100.108752][ T5878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  100.118846][ T5878] Call Trace:
[  100.122150][ T5878]  <TASK>
[  100.125118][ T5878]  dump_stack_lvl+0x16c/0x230
[  100.129841][ T5878]  ? show_regs_print_info+0x20/0x20
[  100.135092][ T5878]  ? load_image+0x3b0/0x3b0
[  100.139669][ T5878]  panic+0x2c0/0x710
[  100.143605][ T5878]  ? bpf_jit_dump+0xd0/0xd0
[  100.148156][ T5878]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  100.154095][ T5878]  ? _raw_spin_unlock+0x40/0x40
[  100.158981][ T5878]  ? print_memory_metadata+0x314/0x400
[  100.164510][ T5878]  ? ntfs_readdir+0xd6f/0x2970
[  100.169333][ T5878]  check_panic_on_warn+0x84/0xa0
[  100.174310][ T5878]  ? ntfs_readdir+0xd6f/0x2970
[  100.179135][ T5878]  end_report+0x6f/0x140
[  100.183438][ T5878]  kasan_report+0x128/0x150
[  100.187980][ T5878]  ? filldir64+0x462/0x680
[  100.192474][ T5878]  ? ntfs_readdir+0xd6f/0x2970
[  100.197293][ T5878]  ntfs_readdir+0xd6f/0x2970
[  100.201939][ T5878]  ? __might_sleep+0xe0/0xe0
[  100.206583][ T5878]  ? ntfs_dir_fsync+0x410/0x410
[  100.211484][ T5878]  ? down_write+0x162/0x1f0
[  100.216024][ T5878]  ? down_read_killable+0x340/0x340
[  100.221258][ T5878]  ? end_current_label_crit_section+0x149/0x170
[  100.227538][ T5878]  ? ntfs_dir_fsync+0x410/0x410
[  100.232446][ T5878]  wrap_directory_iterator+0x92/0xd0
[  100.237774][ T5878]  iterate_dir+0x1c2/0x580
[  100.242233][ T5878]  __se_sys_getdents64+0xe9/0x260
[  100.247304][ T5878]  ? __x64_sys_getdents64+0x80/0x80
[  100.252547][ T5878]  ? filldir+0x680/0x680
[  100.256837][ T5878]  ? lock_chain_count+0x20/0x20
[  100.261725][ T5878]  ? lockdep_hardirqs_on+0x98/0x150
[  100.266962][ T5878]  do_syscall_64+0x55/0xb0
[  100.271409][ T5878]  ? clear_bhb_loop+0x40/0x90
[  100.276145][ T5878]  ? clear_bhb_loop+0x40/0x90
[  100.280865][ T5878]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  100.283048][ T5826] Bluetooth: hci0: command tx timeout
[  100.292180][ T5878] RIP: 0033:0x7fd8d21c20b3
[  100.296632][ T5878] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  100.316271][ T5878] RSP: 002b:00007ffc1eb6be88 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  100.324714][ T5878] RAX: ffffffffffffffda RBX: 0000555555d32640 RCX: 00007fd8d21c20b3
[  100.332716][ T5878] RDX: 0000000000008000 RSI: 0000555555d32640 RDI: 0000000000000006
[  100.340714][ T5878] RBP: 0000555555d32614 R08: 0000000000000000 R09: 0000000000000000
[  100.348714][ T5878] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  100.356728][ T5878] R13: 0000000000000016 R14: 0000555555d32610 R15: 00007ffc1eb6f230
[  100.364732][ T5878]  </TASK>
[  100.368344][ T5878] Kernel Offset: disabled
[  100.372675][ T5878] Rebooting in 86400 seconds..