Warning: Permanently added '10.128.0.62' (ED25519) to the list of known hosts.
1970/01/01 00:00:31 parsed 1 programs
[   33.250773][ T6574] cgroup: Unknown subsys name 'net'
[   33.400622][ T6574] cgroup: Unknown subsys name 'cpuset'
[   33.402643][ T6574] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   33.587581][ T6574] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SS
[   38.821935][ T6582] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.977533][ T2116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.979286][ T2116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.014335][ T2034] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.015656][ T2034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.360104][ T6170] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   39.361891][ T6170] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   39.363395][ T6170] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   39.364907][ T6170] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   39.366300][ T6170] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   39.871241][ T6634] chnl_net:caif_netlink_parms(): no params data found
[   39.980856][ T6634] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.981124][ T6634] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.981192][ T6634] bridge_slave_0: entered allmulticast mode
[   39.981985][ T6634] bridge_slave_0: entered promiscuous mode
[   39.983190][ T6634] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.983206][ T6634] bridge0: port 2(bridge_slave_1) entered disabled state
[   39.983248][ T6634] bridge_slave_1: entered allmulticast mode
[   39.983638][ T6634] bridge_slave_1: entered promiscuous mode
[   39.996754][ T6634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   39.997613][ T6634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   40.006268][ T6634] team0: Port device team_slave_0 added
[   40.006955][ T6634] team0: Port device team_slave_1 added
[   40.015136][ T6634] batman_adv: batadv0: Adding interface: batadv_slave_0
[   40.015161][ T6634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   40.015170][ T6634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   40.015927][ T6634] batman_adv: batadv0: Adding interface: batadv_slave_1
[   40.015934][ T6634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   40.015946][ T6634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   40.036921][ T6634] hsr_slave_0: entered promiscuous mode
[   40.038512][ T6634] hsr_slave_1: entered promiscuous mode
[   40.131035][ T6634] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   40.134570][ T6634] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   40.137441][ T6634] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   40.139896][ T6634] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   40.165684][ T6634] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.177707][ T6634] 8021q: adding VLAN 0 to HW filter on device team0
[   40.181864][ T5496] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.181925][ T5496] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.185584][ T5496] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.185624][ T5496] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.345523][ T6634] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.360967][ T6634] veth0_vlan: entered promiscuous mode
[   40.362665][ T6634] veth1_vlan: entered promiscuous mode
[   40.368804][ T6634] veth0_macvtap: entered promiscuous mode
[   40.371200][ T6634] veth1_macvtap: entered promiscuous mode
[   40.374843][ T6634] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.376634][ T6634] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.380589][   T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.384092][   T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.384397][   T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.384415][   T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.647788][ T2034] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.697265][ T2034] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.764271][ T2034] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.830073][ T2034] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:00:41 executed programs: 0
[   41.139951][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   41.141406][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   41.143108][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   41.144849][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   41.146476][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   41.194674][ T6681] chnl_net:caif_netlink_parms(): no params data found
[   41.217030][ T6681] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.217099][ T6681] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.217157][ T6681] bridge_slave_0: entered allmulticast mode
[   41.217588][ T6681] bridge_slave_0: entered promiscuous mode
[   41.218341][ T6681] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.218392][ T6681] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.218454][ T6681] bridge_slave_1: entered allmulticast mode
[   41.218861][ T6681] bridge_slave_1: entered promiscuous mode
[   41.232531][ T6681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   41.233427][ T6681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   41.240668][ T6681] team0: Port device team_slave_0 added
[   41.241389][ T6681] team0: Port device team_slave_1 added
[   41.248515][ T6681] batman_adv: batadv0: Adding interface: batadv_slave_0
[   41.248543][ T6681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   41.248556][ T6681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   41.249331][ T6681] batman_adv: batadv0: Adding interface: batadv_slave_1
[   41.249337][ T6681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   41.249353][ T6681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   41.267481][ T6681] hsr_slave_0: entered promiscuous mode
[   41.267811][ T6681] hsr_slave_1: entered promiscuous mode
[   41.268033][ T6681] debugfs: 'hsr0' already exists in 'hsr'
[   41.268081][ T6681] Cannot create hsr debugfs directory
[   43.209560][   T53] Bluetooth: hci0: command tx timeout
[   43.975991][ T2034] bridge_slave_1: left allmulticast mode
[   43.976036][ T2034] bridge_slave_1: left promiscuous mode
[   43.976331][ T2034] bridge0: port 2(bridge_slave_1) entered disabled state
[   43.983905][ T2034] bridge_slave_0: left allmulticast mode
[   43.985027][ T2034] bridge_slave_0: left promiscuous mode
[   43.985169][ T2034] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.162536][ T2034] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   44.170866][ T2034] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   44.200598][ T2034] bond0 (unregistering): Released all slaves
[   44.312982][ T2034] hsr_slave_0: left promiscuous mode
[   44.314050][ T2034] hsr_slave_1: left promiscuous mode
[   44.314337][ T2034] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   44.314359][ T2034] batman_adv: batadv0: Removing interface: batadv_slave_0
[   44.317582][ T2034] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   44.317837][ T2034] batman_adv: batadv0: Removing interface: batadv_slave_1
[   44.325171][ T2034] veth1_macvtap: left promiscuous mode
[   44.325229][ T2034] veth0_macvtap: left promiscuous mode
[   44.325276][ T2034] veth1_vlan: left promiscuous mode
[   44.325322][ T2034] veth0_vlan: left promiscuous mode
[   44.435967][ T2034] team0 (unregistering): Port device team_slave_1 removed
[   44.442194][ T2034] team0 (unregistering): Port device team_slave_0 removed
[   44.701847][ T6681] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   44.704785][ T6681] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   44.707836][ T6681] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   44.713511][ T6681] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   44.739538][ T6681] 8021q: adding VLAN 0 to HW filter on device bond0
[   44.744214][ T6681] 8021q: adding VLAN 0 to HW filter on device team0
[   44.747590][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.747628][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   44.781088][  T266] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.781137][  T266] bridge0: port 2(bridge_slave_1) entered forwarding state
[   44.913167][ T6681] 8021q: adding VLAN 0 to HW filter on device batadv0
[   44.934924][ T6681] veth0_vlan: entered promiscuous mode
[   44.938422][ T6681] veth1_vlan: entered promiscuous mode
[   44.949388][ T6681] veth0_macvtap: entered promiscuous mode
[   44.951659][ T6681] veth1_macvtap: entered promiscuous mode
[   44.957803][ T6681] batman_adv: batadv0: Interface activated: batadv_slave_0
[   44.965575][ T6681] batman_adv: batadv0: Interface activated: batadv_slave_1
[   44.971417][   T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   44.971452][   T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   44.971467][   T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   44.971482][   T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   45.008257][  T266] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.010295][  T266] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.016483][  T266] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   45.016674][  T266] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   45.126581][ T6760] loop0: detected capacity change from 0 to 32768
[   45.138214][ T6760] ==================================================================
[   45.138233][ T6760] BUG: KASAN: slab-out-of-bounds in dtSearch+0x13a8/0x1d00
[   45.138255][ T6760] Read of size 1 at addr ffff0000e5febfe0 by task syz.0.17/6760
[   45.138262][ T6760] 
[   45.138267][ T6760] CPU: 0 UID: 0 PID: 6760 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT 
[   45.138274][ T6760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   45.138278][ T6760] Call trace:
[   45.138280][ T6760]  show_stack+0x2c/0x3c (C)
[   45.138291][ T6760]  __dump_stack+0x30/0x40
[   45.138300][ T6760]  dump_stack_lvl+0xd8/0x12c
[   45.138305][ T6760]  print_address_description+0xa8/0x238
[   45.138312][ T6760]  print_report+0x68/0x84
[   45.138317][ T6760]  kasan_report+0xb0/0x110
[   45.138323][ T6760]  __asan_report_load1_noabort+0x20/0x2c
[   45.138330][ T6760]  dtSearch+0x13a8/0x1d00
[   45.138336][ T6760]  jfs_lookup+0x13c/0x32c
[   45.138341][ T6760]  path_openat+0x1038/0x3114
[   45.138355][ T6760]  do_filp_open+0x18c/0x36c
[   45.138361][ T6760]  do_sys_openat2+0x11c/0x1f0
[   45.138366][ T6760]  __arm64_sys_openat+0x120/0x158
[   45.138371][ T6760]  invoke_syscall+0x98/0x254
[   45.138378][ T6760]  el0_svc_common+0xe8/0x23c
[   45.138383][ T6760]  do_el0_svc+0x48/0x58
[   45.138389][ T6760]  el0_svc+0x5c/0x26c
[   45.138396][ T6760]  el0t_64_sync_handler+0x84/0x12c
[   45.138402][ T6760]  el0t_64_sync+0x198/0x19c
[   45.138408][ T6760] 
[   45.138410][ T6760] Allocated by task 6760:
[   45.138413][ T6760]  kasan_save_track+0x40/0x78
[   45.138417][ T6760]  kasan_save_alloc_info+0x44/0x54
[   45.138422][ T6760]  __kasan_slab_alloc+0x70/0x88
[   45.138426][ T6760]  kmem_cache_alloc_lru_noprof+0x348/0x684
[   45.138431][ T6760]  jfs_alloc_inode+0x2c/0x68
[   45.138435][ T6760]  alloc_inode+0x68/0x19c
[   45.138441][ T6760]  new_inode+0x2c/0x130
[   45.138446][ T6760]  ialloc+0x54/0x78c
[   45.138452][ T6760]  jfs_create+0x170/0x8c4
[   45.138456][ T6760]  path_openat+0x143c/0x3114
[   45.138461][ T6760]  do_filp_open+0x18c/0x36c
[   45.138466][ T6760]  do_sys_openat2+0x11c/0x1f0
[   45.138470][ T6760]  __arm64_sys_openat+0x120/0x158
[   45.138473][ T6760]  invoke_syscall+0x98/0x254
[   45.138478][ T6760]  el0_svc_common+0xe8/0x23c
[   45.138482][ T6760]  do_el0_svc+0x48/0x58
[   45.138486][ T6760]  el0_svc+0x5c/0x26c
[   45.138491][ T6760]  el0t_64_sync_handler+0x84/0x12c
[   45.138495][ T6760]  el0t_64_sync+0x198/0x19c
[   45.138499][ T6760] 
[   45.138500][ T6760] The buggy address belongs to the object at ffff0000e5feb6f0
[   45.138500][ T6760]  which belongs to the cache jfs_ip of size 2216
[   45.138504][ T6760] The buggy address is located 72 bytes to the right of
[   45.138504][ T6760]  allocated 2216-byte region [ffff0000e5feb6f0, ffff0000e5febf98)
[   45.138510][ T6760] 
[   45.138512][ T6760] The buggy address belongs to the physical page:
[   45.138515][ T6760] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x125fe8
[   45.138520][ T6760] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   45.138524][ T6760] memcg:ffff0000cdb13001
[   45.138527][ T6760] flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff)
[   45.138533][ T6760] page_type: f5(slab)
[   45.138538][ T6760] raw: 05ffc00000000040 ffff0000c4bc9b40 dead000000000122 0000000000000000
[   45.138543][ T6760] raw: 0000000000000000 00000000800d000d 00000000f5000000 ffff0000cdb13001
[   45.138547][ T6760] head: 05ffc00000000040 ffff0000c4bc9b40 dead000000000122 0000000000000000
[   45.138551][ T6760] head: 0000000000000000 00000000800d000d 00000000f5000000 ffff0000cdb13001
[   45.138554][ T6760] head: 05ffc00000000003 fffffdffc397fa01 00000000ffffffff 00000000ffffffff
[   45.138558][ T6760] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[   45.138560][ T6760] page dumped because: kasan: bad access detected
[   45.138563][ T6760] 
[   45.138564][ T6760] Memory state around the buggy address:
[   45.138566][ T6760]  ffff0000e5febe80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   45.138569][ T6760]  ffff0000e5febf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   45.138572][ T6760] >ffff0000e5febf80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
SYZFAIL: failed to recv rpc
[   45.138575][ T6760]                                                        ^
[   45.138578][ T6760]  ffff0000e5fec000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   45.138580][ T6760]  ffff0000e5fec080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   45.138583][ T6760] ==================================================================
[   45.138881][ T6760] Disabling lock debugging due to kernel taint
[   45.138895][ T6760] ERROR: (device loop0): dtSearch: stack overrun!
[   45.138895][ T6760] 
[   45.139010][ T6760] ERROR: (device loop0): remounting filesystem as read-only
[   45.139014][ T6760] btstack dump:
[   45.139017][ T6760] bn = 0, index = 0
[   45.139022][ T6760] bn = 0, index = 0
[   45.139026][ T6760] bn = 0, index = 0
[   45.139030][ T6760] bn = 0, index = 0
[   45.139034][ T6760] bn = 0, index = 0
[   45.139037][ T6760] bn = 0, index = 0
[   45.139040][ T6760] bn = 0, index = 0
[   45.139042][ T6760] bn = 0, index = 0
[   45.139051][ T6760] jfs_lookup: dtSearch returned -5
[   45.289064][   T53] Bluetooth: hci0: command tx timeout