Warning: Permanently added '10.128.1.170' (ED25519) to the list of known hosts.
2025/07/27 17:52:37 ignoring optional flag "sandboxArg"="0"
2025/07/27 17:52:38 parsed 1 programs
[   69.408240][ T5790] cgroup: Unknown subsys name 'net'
[   69.541732][ T5790] cgroup: Unknown subsys name 'rlimit'
[   70.923076][ T5790] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.609896][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[   71.616526][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[   73.164633][ T5824] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.176277][ T5824] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.184125][ T5824] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.193203][ T5824] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.200971][ T5824] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   73.208439][ T5824] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.497799][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   73.575585][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.582939][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.592642][ T5830] bridge_slave_0: entered allmulticast mode
[   73.601554][ T5830] bridge_slave_0: entered promiscuous mode
[   73.617197][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.624344][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.631985][ T5830] bridge_slave_1: entered allmulticast mode
[   73.638820][ T5830] bridge_slave_1: entered promiscuous mode
[   73.662213][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.681726][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.710977][ T5830] team0: Port device team_slave_0 added
[   73.718439][ T5830] team0: Port device team_slave_1 added
[   73.750636][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.757898][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.785623][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.806974][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.813944][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.841156][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.883418][ T5830] hsr_slave_0: entered promiscuous mode
[   73.889785][ T5830] hsr_slave_1: entered promiscuous mode
[   74.021746][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   74.033342][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   74.042873][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   74.052978][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   74.093347][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.101137][ T5830] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.109394][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.116631][ T5830] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.164204][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.174865][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.208639][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.231206][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   74.258042][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.265232][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.281745][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.288919][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.450526][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.490672][ T5830] veth0_vlan: entered promiscuous mode
[   74.502429][ T5830] veth1_vlan: entered promiscuous mode
[   74.535567][ T5830] veth0_macvtap: entered promiscuous mode
[   74.544801][ T5830] veth1_macvtap: entered promiscuous mode
[   74.562303][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.580298][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.596957][ T5830] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.606627][ T5830] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.616014][ T5830] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.624726][ T5830] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.758421][ T5830] syz-executor (5830) used greatest stack depth: 20904 bytes left
[   74.912119][   T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.453064][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.476715][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.506316][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.514177][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/07/27 17:52:47 executed programs: 0
[   77.022934][ T5824] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.032876][ T5824] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.041319][ T5824] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.051623][ T5824] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.059487][ T5824] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.067795][ T5824] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.264718][ T5894] chnl_net:caif_netlink_parms(): no params data found
[   77.322438][ T5894] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.329930][ T5894] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.337241][ T5894] bridge_slave_0: entered allmulticast mode
[   77.343945][ T5894] bridge_slave_0: entered promiscuous mode
[   77.351756][ T5894] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.359247][ T5894] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.367771][ T5894] bridge_slave_1: entered allmulticast mode
[   77.374985][ T5894] bridge_slave_1: entered promiscuous mode
[   77.399361][ T5894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.411072][ T5894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.438321][ T5894] team0: Port device team_slave_0 added
[   77.448342][ T5894] team0: Port device team_slave_1 added
[   77.474768][ T5894] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.482427][ T5894] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.508424][ T5894] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.520324][ T5894] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.528584][ T5894] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.554543][ T5894] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.591332][ T5894] hsr_slave_0: entered promiscuous mode
[   77.598563][ T5894] hsr_slave_1: entered promiscuous mode
[   77.604570][ T5894] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   77.612586][ T5894] Cannot create hsr debugfs directory
[   77.700634][   T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.116191][ T5824] Bluetooth: hci0: command tx timeout
[   79.854291][   T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.939724][   T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.767606][ T5894] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   80.787619][ T5894] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   80.797078][ T5894] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   80.806663][ T5894] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   80.852252][   T42] hsr_slave_0: left promiscuous mode
[   80.858904][   T42] hsr_slave_1: left promiscuous mode
[   80.864741][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.873138][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[   80.881414][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.888892][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.897575][   T42] bridge_slave_1: left allmulticast mode
[   80.903216][   T42] bridge_slave_1: left promiscuous mode
[   80.909852][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.921137][   T42] bridge_slave_0: left allmulticast mode
[   80.928011][   T42] bridge_slave_0: left promiscuous mode
[   80.933686][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.954603][   T42] veth1_macvtap: left promiscuous mode
[   80.960503][   T42] veth0_macvtap: left promiscuous mode
[   80.966191][   T42] veth1_vlan: left promiscuous mode
[   80.972063][   T42] veth0_vlan: left promiscuous mode
[   81.208671][ T5824] Bluetooth: hci0: command tx timeout
[   81.330159][   T42] team0 (unregistering): Port device team_slave_1 removed
[   81.361624][   T42] team0 (unregistering): Port device team_slave_0 removed
[   81.393577][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.427366][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.707433][   T42] bond0 (unregistering): Released all slaves
[   81.782338][ T5894] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.811243][ T5894] 8021q: adding VLAN 0 to HW filter on device team0
[   81.828458][ T2960] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.835621][ T2960] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.866583][ T3062] cfg80211: failed to load regulatory.db
[   81.874592][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.881774][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.081726][ T5894] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.123305][ T5894] veth0_vlan: entered promiscuous mode
[   82.134363][ T5894] veth1_vlan: entered promiscuous mode
[   82.160037][ T5894] veth0_macvtap: entered promiscuous mode
[   82.171305][ T5894] veth1_macvtap: entered promiscuous mode
[   82.193519][ T5894] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.213047][ T5894] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.229468][ T5894] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.240141][ T5894] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.249301][ T5894] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.258202][ T5894] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.399444][ T1001] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.415850][ T1001] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/07/27 17:52:53 executed programs: 2
[   82.458993][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.468020][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.521303][ T5940] syz.0.16[5940]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   82.537626][ T5940] loop0: detected capacity change from 0 to 128
[   82.546667][ T5940] =======================================================
[   82.546667][ T5940] WARNING: The mand mount option has been deprecated and
[   82.546667][ T5940]          and is ignored by this kernel. Remove the mand
[   82.546667][ T5940]          option from the mount to silence this warning.
[   82.546667][ T5940] =======================================================
[   82.601525][ T5940] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   82.614467][ T5940] hpfs: filesystem error: improperly stopped
[   82.621347][ T5940] hpfs: You really don't want any checks? You are crazy...
[   82.629897][ T5940] hpfs: hpfs_map_sector(): read error
[   82.638283][ T5940] hpfs: code page support is disabled
[   82.644242][ T5940] ==================================================================
[   82.652304][ T5940] BUG: KASAN: use-after-free in strcmp+0x6f/0xb0
[   82.658647][ T5940] Read of size 1 at addr ffff88806bec88a6 by task syz.0.16/5940
[   82.666263][ T5940] 
[   82.668583][ T5940] CPU: 1 PID: 5940 Comm: syz.0.16 Not tainted 6.6.100-syzkaller #0
[   82.676455][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   82.686500][ T5940] Call Trace:
[   82.689766][ T5940]  <TASK>
[   82.692707][ T5940]  dump_stack_lvl+0x16c/0x230
[   82.697437][ T5940]  ? __lock_acquire+0x7c80/0x7c80
[   82.702452][ T5940]  ? show_regs_print_info+0x20/0x20
[   82.707638][ T5940]  ? load_image+0x3b0/0x3b0
[   82.712595][ T5940]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[   82.717984][ T5940]  ? __virt_addr_valid+0x18c/0x540
[   82.723175][ T5940]  ? __virt_addr_valid+0x469/0x540
[   82.728290][ T5940]  print_report+0xac/0x200
[   82.732707][ T5940]  ? strcmp+0x6f/0xb0
[   82.736716][ T5940]  kasan_report+0x117/0x150
[   82.741231][ T5940]  ? strcmp+0x6f/0xb0
[   82.745240][ T5940]  strcmp+0x6f/0xb0
[   82.749077][ T5940]  hpfs_get_ea+0x115/0xda0
[   82.753496][ T5940]  ? hpfs_read_ea+0xba0/0xba0
[   82.758165][ T5940]  ? __getblk_gfp+0x54/0x660
[   82.762749][ T5940]  ? __bread_gfp+0x64/0x330
[   82.767325][ T5940]  ? hpfs_map_sector+0x14f/0x370
[   82.772275][ T5940]  ? hpfs_map_fnode+0x27e/0x690
[   82.777115][ T5940]  hpfs_read_inode+0x19e/0x1010
[   82.781951][ T5940]  ? iget_locked+0x733/0x840
[   82.786526][ T5940]  ? hpfs_init_inode+0x2d0/0x2d0
[   82.791444][ T5940]  ? security_inode_alloc+0xc1/0x110
[   82.796717][ T5940]  ? do_raw_spin_unlock+0x121/0x230
[   82.801989][ T5940]  ? hpfs_init_inode+0x1d0/0x2d0
[   82.806917][ T5940]  hpfs_fill_super+0x12d5/0x1ec0
[   82.811846][ T5940]  ? hpfs_mount+0x40/0x40
[   82.816610][ T5940]  ? vscnprintf+0x80/0x80
[   82.820944][ T5940]  ? down_read_killable+0x340/0x340
[   82.826131][ T5940]  ? setup_bdev_super+0x56b/0x660
[   82.831250][ T5940]  mount_bdev+0x22b/0x2d0
[   82.835565][ T5940]  ? hpfs_mount+0x40/0x40
[   82.839879][ T5940]  ? get_tree_bdev+0x510/0x510
[   82.844728][ T5940]  ? vfs_parse_fs_param+0x420/0x420
[   82.849915][ T5940]  legacy_get_tree+0xea/0x180
[   82.854577][ T5940]  ? hpfs_ioctl+0x240/0x240
[   82.859070][ T5940]  vfs_get_tree+0x8c/0x280
[   82.863472][ T5940]  do_new_mount+0x24b/0xa40
[   82.867959][ T5940]  __se_sys_mount+0x2da/0x3c0
[   82.872618][ T5940]  ? __x64_sys_mount+0xc0/0xc0
[   82.877387][ T5940]  ? lockdep_hardirqs_on+0x98/0x150
[   82.882581][ T5940]  ? __x64_sys_mount+0x20/0xc0
[   82.887324][ T5940]  do_syscall_64+0x55/0xb0
[   82.891723][ T5940]  ? clear_bhb_loop+0x40/0x90
[   82.896379][ T5940]  ? clear_bhb_loop+0x40/0x90
[   82.901040][ T5940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   82.906919][ T5940] RIP: 0033:0x7f4af719014a
[   82.911328][ T5940] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.930922][ T5940] RSP: 002b:00007ffc6e100d38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   82.939323][ T5940] RAX: ffffffffffffffda RBX: 00007ffc6e100dc0 RCX: 00007f4af719014a
[   82.947374][ T5940] RDX: 0000200000009e80 RSI: 0000200000009ec0 RDI: 00007ffc6e100d80
[   82.955330][ T5940] RBP: 0000200000009e80 R08: 00007ffc6e100dc0 R09: 0000000000000041
[   82.963286][ T5940] R10: 0000000000000041 R11: 0000000000000246 R12: 0000200000009ec0
[   82.971248][ T5940] R13: 00007ffc6e100d80 R14: 0000000000009e05 R15: 0000200000009f00
[   82.979473][ T5940]  </TASK>
[   82.982470][ T5940] 
[   82.984771][ T5940] The buggy address belongs to the physical page:
[   82.991170][ T5940] page:ffffea0001afb200 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6bec8
[   83.001307][ T5940] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.008402][ T5940] page_type: 0xffffff7f(buddy)
[   83.013143][ T5940] raw: 00fff00000000000 ffff88813fffa988 ffffea0001afb608 0000000000000000
[   83.021707][ T5940] raw: 0000000000000001 0000000000000003 00000000ffffff7f 0000000000000000
[   83.030273][ T5940] page dumped because: kasan: bad access detected
[   83.036681][ T5940] page_owner tracks the page as freed
[   83.042026][ T5940] page last allocated via order 0, migratetype Movable, gfp_mask 0x140dca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_ZERO), pid 5909, tgid 5909 (sed), ts 80232672028, free_ts 80242281790
[   83.059921][ T5940]  post_alloc_hook+0x1cd/0x210
[   83.064678][ T5940]  get_page_from_freelist+0x195c/0x19f0
[   83.070296][ T5940]  __alloc_pages+0x1e3/0x460
[   83.074875][ T5940]  __folio_alloc+0x10/0x20
[   83.079274][ T5940]  vma_alloc_folio+0x47a/0x8f0
[   83.084020][ T5940]  handle_mm_fault+0x1a38/0x4920
[   83.088944][ T5940]  do_user_addr_fault+0xad0/0x12e0
[   83.094033][ T5940]  exc_page_fault+0x67/0x110
[   83.098612][ T5940]  asm_exc_page_fault+0x26/0x30
[   83.103444][ T5940] page last free stack trace:
[   83.108092][ T5940]  free_unref_page_prepare+0x7ce/0x8e0
[   83.113556][ T5940]  free_unref_page_list+0xbe/0x860
[   83.118671][ T5940]  release_pages+0x1fa0/0x2220
[   83.123422][ T5940]  tlb_flush_mmu+0x368/0x4f0
[   83.127999][ T5940]  tlb_finish_mmu+0xc3/0x1d0
[   83.132581][ T5940]  exit_mmap+0x3f0/0xb50
[   83.136802][ T5940]  __mmput+0x118/0x3c0
[   83.140937][ T5940]  exit_mm+0x1da/0x2c0
[   83.145035][ T5940]  do_exit+0x88e/0x23c0
[   83.149191][ T5940]  do_group_exit+0x21b/0x2d0
[   83.153780][ T5940]  __x64_sys_exit_group+0x3f/0x40
[   83.158791][ T5940]  do_syscall_64+0x55/0xb0
[   83.163186][ T5940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   83.169064][ T5940] 
[   83.171364][ T5940] Memory state around the buggy address:
[   83.176971][ T5940]  ffff88806bec8780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   83.185016][ T5940]  ffff88806bec8800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   83.193055][ T5940] >ffff88806bec8880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   83.201104][ T5940]                                ^
[   83.206191][ T5940]  ffff88806bec8900: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   83.214235][ T5940]  ffff88806bec8980: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   83.222304][ T5940] ==================================================================
[   83.243347][ T5940] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   83.250579][ T5940] CPU: 1 PID: 5940 Comm: syz.0.16 Not tainted 6.6.100-syzkaller #0
[   83.258476][ T5940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   83.268540][ T5940] Call Trace:
[   83.271828][ T5940]  <TASK>
[   83.274854][ T5940]  dump_stack_lvl+0x16c/0x230
[   83.279550][ T5940]  ? show_regs_print_info+0x20/0x20
[   83.284767][ T5940]  ? load_image+0x3b0/0x3b0
[   83.289284][ T5940]  panic+0x2c0/0x710
[   83.293165][ T5940]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   83.299305][ T5940]  ? bpf_jit_dump+0xd0/0xd0
[   83.303794][ T5940]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[   83.309684][ T5940]  ? _raw_spin_unlock+0x40/0x40
[   83.314546][ T5940]  ? strcmp+0x6f/0xb0
[   83.318532][ T5940]  check_panic_on_warn+0x84/0xa0
[   83.323458][ T5940]  ? strcmp+0x6f/0xb0
[   83.327428][ T5940]  end_report+0x6f/0x140
[   83.331662][ T5940]  kasan_report+0x128/0x150
[   83.336168][ T5940]  ? strcmp+0x6f/0xb0
[   83.340176][ T5940]  strcmp+0x6f/0xb0
[   83.343996][ T5940]  hpfs_get_ea+0x115/0xda0
[   83.348457][ T5940]  ? hpfs_read_ea+0xba0/0xba0
[   83.353126][ T5940]  ? __getblk_gfp+0x54/0x660
[   83.357720][ T5940]  ? __bread_gfp+0x64/0x330
[   83.362220][ T5940]  ? hpfs_map_sector+0x14f/0x370
[   83.367145][ T5940]  ? hpfs_map_fnode+0x27e/0x690
[   83.371998][ T5940]  hpfs_read_inode+0x19e/0x1010
[   83.376898][ T5940]  ? iget_locked+0x733/0x840
[   83.381482][ T5940]  ? hpfs_init_inode+0x2d0/0x2d0
[   83.386404][ T5940]  ? security_inode_alloc+0xc1/0x110
[   83.391682][ T5940]  ? do_raw_spin_unlock+0x121/0x230
[   83.396870][ T5940]  ? hpfs_init_inode+0x1d0/0x2d0
[   83.401796][ T5940]  hpfs_fill_super+0x12d5/0x1ec0
[   83.406750][ T5940]  ? hpfs_mount+0x40/0x40
[   83.411067][ T5940]  ? vscnprintf+0x80/0x80
[   83.415399][ T5940]  ? down_read_killable+0x340/0x340
[   83.420587][ T5940]  ? setup_bdev_super+0x56b/0x660
[   83.425598][ T5940]  mount_bdev+0x22b/0x2d0
[   83.430083][ T5940]  ? hpfs_mount+0x40/0x40
[   83.434403][ T5940]  ? get_tree_bdev+0x510/0x510
[   83.439151][ T5940]  ? vfs_parse_fs_param+0x420/0x420
[   83.444338][ T5940]  legacy_get_tree+0xea/0x180
[   83.449000][ T5940]  ? hpfs_ioctl+0x240/0x240
[   83.453498][ T5940]  vfs_get_tree+0x8c/0x280
[   83.457906][ T5940]  do_new_mount+0x24b/0xa40
[   83.462397][ T5940]  __se_sys_mount+0x2da/0x3c0
[   83.467062][ T5940]  ? __x64_sys_mount+0xc0/0xc0
[   83.471811][ T5940]  ? lockdep_hardirqs_on+0x98/0x150
[   83.477003][ T5940]  ? __x64_sys_mount+0x20/0xc0
[   83.481754][ T5940]  do_syscall_64+0x55/0xb0
[   83.486159][ T5940]  ? clear_bhb_loop+0x40/0x90
[   83.490825][ T5940]  ? clear_bhb_loop+0x40/0x90
[   83.495486][ T5940]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   83.501370][ T5940] RIP: 0033:0x7f4af719014a
[   83.505771][ T5940] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.525376][ T5940] RSP: 002b:00007ffc6e100d38 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   83.533779][ T5940] RAX: ffffffffffffffda RBX: 00007ffc6e100dc0 RCX: 00007f4af719014a
[   83.541739][ T5940] RDX: 0000200000009e80 RSI: 0000200000009ec0 RDI: 00007ffc6e100d80
[   83.549694][ T5940] RBP: 0000200000009e80 R08: 00007ffc6e100dc0 R09: 0000000000000041
[   83.557737][ T5940] R10: 0000000000000041 R11: 0000000000000246 R12: 0000200000009ec0
[   83.565712][ T5940] R13: 00007ffc6e100d80 R14: 0000000000009e05 R15: 0000200000009f00
[   83.573688][ T5940]  </TASK>
[   83.576920][ T5940] Kernel Offset: disabled
[   83.581239][ T5940] Rebooting in 86400 seconds..