Warning: Permanently added '10.128.1.186' (ED25519) to the list of known hosts.
2026/04/17 09:40:26 parsed 1 programs
[ 72.214723][ T4189] cgroup: Unknown subsys name 'net'
[ 72.397563][ T4189] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 74.406922][ T4189] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 76.343868][ T4208] chnl_net:caif_netlink_parms(): no params data found
[ 76.415571][ T4208] bridge0: port 1(bridge_slave_0) entered blocking state
[ 76.426099][ T4208] bridge0: port 1(bridge_slave_0) entered disabled state
[ 76.437364][ T4208] device bridge_slave_0 entered promiscuous mode
[ 76.451265][ T4208] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.462471][ T4208] bridge0: port 2(bridge_slave_1) entered disabled state
[ 76.472405][ T4208] device bridge_slave_1 entered promiscuous mode
[ 76.499336][ T4208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 76.514612][ T4208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 76.545599][ T4208] team0: Port device team_slave_0 added
[ 76.555862][ T4208] team0: Port device team_slave_1 added
[ 76.577893][ T4208] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 76.586088][ T4208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 76.619875][ T4208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 76.645443][ T4208] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 76.655022][ T4208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 76.690277][ T4208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 76.732239][ T4208] device hsr_slave_0 entered promiscuous mode
[ 76.747546][ T4208] device hsr_slave_1 entered promiscuous mode
[ 76.898354][ T4208] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 76.913993][ T4208] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 76.925690][ T4208] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 76.943074][ T4208] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 76.974338][ T4208] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.986707][ T4208] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 76.996886][ T4208] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.007716][ T4208] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 77.090010][ T4208] 8021q: adding VLAN 0 to HW filter on device bond0
[ 77.110710][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 77.130884][ T1544] bridge0: port 1(bridge_slave_0) entered disabled state
[ 77.144410][ T1544] bridge0: port 2(bridge_slave_1) entered disabled state
[ 77.154886][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 77.175181][ T4208] 8021q: adding VLAN 0 to HW filter on device team0
[ 77.192599][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 77.203887][ T1544] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.217173][ T1544] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 77.253536][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 77.266846][ T1544] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.275400][ T1544] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 77.303154][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 77.314652][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 77.327524][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 77.340905][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 77.351568][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 77.368995][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 77.384357][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 77.405708][ T4208] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 77.565072][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 77.574608][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 77.592082][ T4208] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 77.625733][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 77.639692][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 77.663869][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 77.678622][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 77.695520][ T4208] device veth0_vlan entered promiscuous mode
[ 77.705628][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 77.722223][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 77.740085][ T4208] device veth1_vlan entered promiscuous mode
[ 77.775934][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 77.787999][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 77.800427][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 77.811550][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 77.825460][ T4208] device veth0_macvtap entered promiscuous mode
[ 77.848831][ T4208] device veth1_macvtap entered promiscuous mode
[ 77.875844][ T4208] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 77.887955][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 77.903623][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 77.914737][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 77.926692][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 77.952923][ T4208] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 77.964623][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 77.976388][ T247] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 77.990025][ T4208] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.005631][ T4208] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.021669][ T4208] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.035651][ T4208] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.583114][ T247] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.599289][ T247] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.621203][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 78.654927][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.666331][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.682042][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 78.991406][ T154] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/17 09:40:38 executed programs: 0
[ 81.436632][ T4283] chnl_net:caif_netlink_parms(): no params data found
[ 81.465473][ T154] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 81.515265][ T4283] bridge0: port 1(bridge_slave_0) entered blocking state
[ 81.523445][ T4283] bridge0: port 1(bridge_slave_0) entered disabled state
[ 81.533670][ T4283] device bridge_slave_0 entered promiscuous mode
[ 81.543193][ T4283] bridge0: port 2(bridge_slave_1) entered blocking state
[ 81.552683][ T4283] bridge0: port 2(bridge_slave_1) entered disabled state
[ 81.563040][ T4283] device bridge_slave_1 entered promiscuous mode
[ 81.586516][ T4283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 81.601446][ T4283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 81.630833][ T4283] team0: Port device team_slave_0 added
[ 81.640178][ T4283] team0: Port device team_slave_1 added
[ 81.663558][ T4283] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 81.675911][ T4283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 81.706340][ T4283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 81.722449][ T4283] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 81.729706][ T4283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 81.765654][ T4283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 81.804203][ T4283] device hsr_slave_0 entered promiscuous mode
[ 81.813739][ T4283] device hsr_slave_1 entered promiscuous mode
[ 81.822037][ T4283] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 81.830822][ T4283] Cannot create hsr debugfs directory
[ 83.126176][ T154] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.197261][ T154] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 83.405499][ T4209] Bluetooth: hci0: command 0x0409 tx timeout
[ 84.010548][ T4283] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 84.024784][ T4283] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 84.054630][ T4283] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 84.067541][ T4283] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 84.164113][ T4283] 8021q: adding VLAN 0 to HW filter on device bond0
[ 84.178158][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 84.189035][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 84.216273][ T4283] 8021q: adding VLAN 0 to HW filter on device team0
[ 84.227272][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 84.236706][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 84.247088][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.254729][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 84.264552][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 84.298905][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 84.310601][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 84.320226][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.327614][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.347625][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 84.356922][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 84.381623][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 84.398201][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 84.408936][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 84.422749][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 84.431939][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 84.456769][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 84.465793][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 84.477822][ T4283] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 84.491516][ T4283] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 84.500160][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 84.509078][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 84.536762][ T154] device hsr_slave_0 left promiscuous mode
[ 84.544063][ T154] device hsr_slave_1 left promiscuous mode
[ 84.553516][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 84.562334][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 84.573105][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 84.583290][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 84.593527][ T154] device bridge_slave_1 left promiscuous mode
[ 84.601881][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.618297][ T154] device bridge_slave_0 left promiscuous mode
[ 84.626795][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.648520][ T154] device veth1_macvtap left promiscuous mode
[ 84.655818][ T154] device veth0_macvtap left promiscuous mode
[ 84.662755][ T154] device veth1_vlan left promiscuous mode
[ 84.669296][ T154] device veth0_vlan left promiscuous mode
[ 84.858609][ T154] team0 (unregistering): Port device team_slave_1 removed
[ 84.875453][ T154] team0 (unregistering): Port device team_slave_0 removed
[ 84.892347][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 84.908095][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 84.972150][ T154] bond0 (unregistering): Released all slaves
[ 85.138367][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 85.146806][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 85.160050][ T4283] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 85.193319][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 85.203328][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 85.222523][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 85.232326][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 85.241886][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 85.251351][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 85.268350][ T4283] device veth0_vlan entered promiscuous mode
[ 85.289050][ T4283] device veth1_vlan entered promiscuous mode
[ 85.312316][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 85.322079][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 85.330662][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 85.341947][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 85.355155][ T4283] device veth0_macvtap entered promiscuous mode
[ 85.367049][ T4283] device veth1_macvtap entered promiscuous mode
[ 85.385665][ T4283] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 85.394193][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 85.403749][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 85.413259][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 85.423111][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 85.435178][ T4283] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 85.452672][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 85.463864][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 85.473592][ T4209] Bluetooth: hci0: command 0x041b tx timeout
[ 85.481784][ T4283] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.491587][ T4283] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.503329][ T4283] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.515668][ T4283] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.606068][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.625005][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.645666][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 85.666437][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.680340][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.688337][ T1544] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 86.251749][ T4326] loop0: detected capacity change from 0 to 32768
[ 86.377292][ T26] audit: type=1800 audit(1776418843.389:2): pid=4326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="bus" dev="loop0" ino=9 res=0 errno=0
[ 86.416156][ T4326] ==================================================================
[ 86.424658][ T4326] BUG: KASAN: slab-out-of-bounds in dtInsertEntry+0x8a5/0x1270
[ 86.432891][ T4326] Read of size 1 at addr ffff88801feb5fe0 by task syz.0.17/4326
[ 86.440835][ T4326]
[ 86.443226][ T4326] CPU: 1 PID: 4326 Comm: syz.0.17 Not tainted syzkaller #0
[ 86.450548][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 86.461267][ T4326] Call Trace:
[ 86.464600][ T4326]
[ 86.467578][ T4326] dump_stack_lvl+0x188/0x250
[ 86.472311][ T4326] ? show_regs_print_info+0x20/0x20
[ 86.477556][ T4326] ? _printk+0xda/0x130
[ 86.481779][ T4326] ? load_image+0x400/0x400
[ 86.486323][ T4326] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 86.491862][ T4326] print_address_description+0x60/0x2d0
[ 86.497448][ T4326] ? dtInsertEntry+0x8a5/0x1270
[ 86.502346][ T4326] kasan_report+0xdf/0x130
[ 86.506886][ T4326] ? dtInsertEntry+0x8a5/0x1270
[ 86.511890][ T4326] dtInsertEntry+0x8a5/0x1270
[ 86.516629][ T4326] ? dtSplitPage+0x16a9/0x3200
[ 86.521535][ T4326] dtSplitPage+0x2501/0x3200
[ 86.526308][ T4326] dtInsert+0xff4/0x5830
[ 86.531108][ T4326] ? lockdep_hardirqs_on+0x94/0x140
[ 86.536564][ T4326] ? __lock_acquire+0x7d10/0x7d10
[ 86.541647][ T4326] ? do_raw_spin_lock+0x128/0x2f0
[ 86.546816][ T4326] ? UniStrupr+0x2e0/0x2e0
[ 86.551320][ T4326] ? __rwlock_init+0x140/0x140
[ 86.556258][ T4326] ? txLock+0xcb1/0x1b10
[ 86.560584][ T4326] ? dtInitRoot+0x226/0x660
[ 86.567040][ T4326] jfs_mkdir+0x758/0xad0
[ 86.571433][ T4326] ? jfs_symlink+0xfb0/0xfb0
[ 86.576093][ T4326] ? make_kgid+0x660/0x660
[ 86.580548][ T4326] ? apparmor_path_mkdir+0x1ac/0x230
[ 86.585999][ T4326] ? generic_permission+0x230/0x510
[ 86.591420][ T4326] ? inode_permission+0xef/0x480
[ 86.596524][ T4326] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 86.601857][ T4326] ? security_inode_mkdir+0xb3/0x100
[ 86.607225][ T4326] vfs_mkdir+0x387/0x570
[ 86.611637][ T4326] do_mkdirat+0x1df/0x5b0
[ 86.616007][ T4326] ? vfs_mkdir+0x570/0x570
[ 86.621445][ T4326] ? getname_flags+0x1fe/0x500
[ 86.626570][ T4326] __x64_sys_mkdirat+0x85/0x90
[ 86.631565][ T4326] do_syscall_64+0x4c/0xa0
[ 86.636362][ T4326] ? clear_bhb_loop+0x30/0x80
[ 86.641448][ T4326] ? clear_bhb_loop+0x30/0x80
[ 86.646317][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.652581][ T4326] RIP: 0033:0x7f3f0bbc1687
[ 86.657145][ T4326] Code: 00 66 90 48 89 f2 b9 00 01 00 00 48 89 fe bf 9c ff ff ff e9 db f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 86.677412][ T4326] RSP: 002b:00007ffd5720f4a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 86.685981][ T4326] RAX: ffffffffffffffda RBX: 00007ffd5720f530 RCX: 00007f3f0bbc1687
[ 86.694015][ T4326] RDX: 00000000000001ff RSI: 00002000000003c0 RDI: 00000000ffffff9c
[ 86.702290][ T4326] RBP: 0000000000000000 R08: 0000200000000140 R09: 0000000000000000
[ 86.710299][ T4326] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000003c0
[ 86.718497][ T4326] R13: 00007ffd5720f4f0 R14: 0000000000000000 R15: 0000000000000000
[ 86.726829][ T4326]
[ 86.729893][ T4326]
[ 86.732473][ T4326] Allocated by task 4296:
[ 86.737015][ T4326] __kasan_slab_alloc+0x9c/0xd0
[ 86.742006][ T4326] slab_post_alloc_hook+0x4c/0x380
[ 86.747511][ T4326] kmem_cache_alloc+0x100/0x290
[ 86.752421][ T4326] anon_vma_clone+0xbd/0x4f0
[ 86.757062][ T4326] anon_vma_fork+0x7e/0x500
[ 86.761615][ T4326] copy_mm+0xa06/0x13f0
[ 86.765984][ T4326] copy_process+0x17eb/0x3e20
[ 86.770699][ T4326] kernel_clone+0x23f/0x990
[ 86.775240][ T4326] __x64_sys_clone+0x19a/0x210
[ 86.780217][ T4326] do_syscall_64+0x4c/0xa0
[ 86.784766][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.790804][ T4326]
[ 86.793159][ T4326] Freed by task 4308:
[ 86.797300][ T4326] kasan_set_track+0x4b/0x70
[ 86.801927][ T4326] kasan_set_free_info+0x1f/0x40
[ 86.806908][ T4326] ____kasan_slab_free+0xd5/0x110
[ 86.811965][ T4326] slab_free_freelist_hook+0xea/0x170
[ 86.817510][ T4326] kmem_cache_free+0x8f/0x210
[ 86.822688][ T4326] unlink_anon_vmas+0x2c8/0x660
[ 86.827587][ T4326] free_pgtables+0x177/0x2a0
[ 86.832213][ T4326] exit_mmap+0x3c8/0x640
[ 86.836592][ T4326] __mmput+0x115/0x3b0
[ 86.840727][ T4326] exec_mmap+0x51d/0x610
[ 86.846684][ T4326] begin_new_exec+0x7e8/0x1160
[ 86.852400][ T4326] load_elf_binary+0x99c/0x28e0
[ 86.858125][ T4326] bprm_execve+0xaee/0x1840
[ 86.863601][ T4326] do_execveat_common+0x51e/0x6d0
[ 86.869023][ T4326] __x64_sys_execve+0x8e/0xa0
[ 86.874586][ T4326] do_syscall_64+0x4c/0xa0
[ 86.879638][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 86.885986][ T4326]
[ 86.888370][ T4326] The buggy address belongs to the object at ffff88801feb5f50
[ 86.888370][ T4326] which belongs to the cache anon_vma_chain of size 80
[ 86.903122][ T4326] The buggy address is located 64 bytes to the right of
[ 86.903122][ T4326] 80-byte region [ffff88801feb5f50, ffff88801feb5fa0)
[ 86.916876][ T4326] The buggy address belongs to the page:
[ 86.923117][ T4326] page:ffffea00007fad40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1feb5
[ 86.934506][ T4326] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 86.942354][ T4326] raw: 00fff00000000200 ffffea0001d7df80 0000000400000004 ffff888140007140
[ 86.951677][ T4326] raw: 0000000000000000 0000000000240024 00000001ffffffff 0000000000000000
[ 86.960389][ T4326] page dumped because: kasan: bad access detected
[ 86.966948][ T4326] page_owner tracks the page as allocated
[ 86.973371][ T4326] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 3914, ts 44134988667, free_ts 44013786193
[ 86.989965][ T4326] get_page_from_freelist+0x1bbd/0x1ca0
[ 86.991255][ T13] cfg80211: failed to load regulatory.db
[ 86.995774][ T4326] __alloc_pages+0x1ee/0x480
[ 86.995826][ T4326] new_slab+0xc0/0x4b0
[ 87.010473][ T4326] ___slab_alloc+0x80a/0xdd0
[ 87.015105][ T4326] kmem_cache_alloc+0x195/0x290
[ 87.019989][ T4326] anon_vma_fork+0x1f6/0x500
[ 87.024628][ T4326] copy_mm+0xa06/0x13f0
[ 87.028909][ T4326] copy_process+0x17eb/0x3e20
[ 87.033637][ T4326] kernel_clone+0x23f/0x990
[ 87.038305][ T4326] __x64_sys_clone+0x19a/0x210
[ 87.043202][ T4326] do_syscall_64+0x4c/0xa0
[ 87.047658][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 87.053603][ T4326] page last free stack trace:
[ 87.058763][ T4326] free_unref_page_prepare+0x637/0x6c0
[ 87.064469][ T4326] free_unref_page_list+0x119/0x820
[ 87.069794][ T4326] release_pages+0x186c/0x1be0
[ 87.074752][ T4326] tlb_finish_mmu+0x176/0x300
[ 87.079489][ T4326] exit_mmap+0x3d0/0x640
[ 87.083887][ T4326] __mmput+0x115/0x3b0
[ 87.088005][ T4326] exit_mm+0x588/0x6e0
[ 87.092117][ T4326] do_exit+0x5a9/0x20c0
[ 87.096511][ T4326] do_group_exit+0x12e/0x300
[ 87.101867][ T4326] __x64_sys_exit_group+0x3b/0x40
[ 87.107048][ T4326] do_syscall_64+0x4c/0xa0
[ 87.111599][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 87.117540][ T4326]
[ 87.120000][ T4326] Memory state around the buggy address:
[ 87.125758][ T4326] ffff88801feb5e80: fb fb fb fb fb fb fb fb fc fc fc fc fa fb fb fb
[ 87.134261][ T4326] ffff88801feb5f00: fb fb fb fb fb fb fc fc fc fc fa fb fb fb fb fb
[ 87.142385][ T4326] >ffff88801feb5f80: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[ 87.150490][ T4326] ^
[ 87.157868][ T4326] ffff88801feb6000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 87.165982][ T4326] ffff88801feb6080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 87.174170][ T4326] ==================================================================
[ 87.182448][ T4326] Disabling lock debugging due to kernel taint
[ 87.309358][ T4326] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 87.316884][ T4326] CPU: 0 PID: 4326 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 87.325511][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 87.335735][ T4326] Call Trace:
[ 87.339046][ T4326]
[ 87.342005][ T4326] dump_stack_lvl+0x188/0x250
[ 87.346733][ T4326] ? show_regs_print_info+0x20/0x20
[ 87.351982][ T4326] ? load_image+0x400/0x400
[ 87.356561][ T4326] panic+0x2e5/0x810
[ 87.360661][ T4326] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 87.366891][ T4326] ? bpf_jit_dump+0xd0/0xd0
[ 87.371622][ T4326] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 87.377649][ T4326] ? _raw_spin_unlock+0x40/0x40
[ 87.382544][ T4326] ? dtInsertEntry+0x8a5/0x1270
[ 87.387476][ T4326] check_panic_on_warn+0x80/0xa0
[ 87.392448][ T4326] ? dtInsertEntry+0x8a5/0x1270
[ 87.397331][ T4326] end_report+0x6d/0xf0
[ 87.401720][ T4326] kasan_report+0x102/0x130
[ 87.406361][ T4326] ? dtInsertEntry+0x8a5/0x1270
[ 87.411256][ T4326] dtInsertEntry+0x8a5/0x1270
[ 87.416136][ T4326] ? dtSplitPage+0x16a9/0x3200
[ 87.420944][ T4326] dtSplitPage+0x2501/0x3200
[ 87.425608][ T4326] dtInsert+0xff4/0x5830
[ 87.429898][ T4326] ? lockdep_hardirqs_on+0x94/0x140
[ 87.435240][ T4326] ? __lock_acquire+0x7d10/0x7d10
[ 87.440319][ T4326] ? do_raw_spin_lock+0x128/0x2f0
[ 87.445474][ T4326] ? UniStrupr+0x2e0/0x2e0
[ 87.449951][ T4326] ? __rwlock_init+0x140/0x140
[ 87.454752][ T4326] ? txLock+0xcb1/0x1b10
[ 87.459146][ T4326] ? dtInitRoot+0x226/0x660
[ 87.463752][ T4326] jfs_mkdir+0x758/0xad0
[ 87.468041][ T4326] ? jfs_symlink+0xfb0/0xfb0
[ 87.472676][ T4326] ? make_kgid+0x660/0x660
[ 87.477522][ T4326] ? apparmor_path_mkdir+0x1ac/0x230
[ 87.482856][ T4326] ? generic_permission+0x230/0x510
[ 87.488112][ T4326] ? inode_permission+0xef/0x480
[ 87.493087][ T4326] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 87.498519][ T4326] ? security_inode_mkdir+0xb3/0x100
[ 87.503841][ T4326] vfs_mkdir+0x387/0x570
[ 87.508403][ T4326] do_mkdirat+0x1df/0x5b0
[ 87.512795][ T4326] ? vfs_mkdir+0x570/0x570
[ 87.517278][ T4326] ? getname_flags+0x1fe/0x500
[ 87.522192][ T4326] __x64_sys_mkdirat+0x85/0x90
[ 87.527371][ T4326] do_syscall_64+0x4c/0xa0
[ 87.531837][ T4326] ? clear_bhb_loop+0x30/0x80
[ 87.536562][ T4326] ? clear_bhb_loop+0x30/0x80
[ 87.541394][ T4326] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 87.547429][ T4326] RIP: 0033:0x7f3f0bbc1687
[ 87.551895][ T4326] Code: 00 66 90 48 89 f2 b9 00 01 00 00 48 89 fe bf 9c ff ff ff e9 db f7 ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 87.571638][ T4326] RSP: 002b:00007ffd5720f4a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 87.580579][ T4326] RAX: ffffffffffffffda RBX: 00007ffd5720f530 RCX: 00007f3f0bbc1687
[ 87.588754][ T4326] RDX: 00000000000001ff RSI: 00002000000003c0 RDI: 00000000ffffff9c
[ 87.597606][ T4326] RBP: 0000000000000000 R08: 0000200000000140 R09: 0000000000000000
[ 87.606093][ T4326] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000003c0
[ 87.614455][ T4326] R13: 00007ffd5720f4f0 R14: 0000000000000000 R15: 0000000000000000
[ 87.622790][ T4326]
[ 87.626327][ T4326] Kernel Offset: disabled
[ 87.631229][ T4326] Rebooting in 86400 seconds..