Warning: Permanently added '10.128.1.178' (ED25519) to the list of known hosts.
2025/12/22 22:20:57 parsed 1 programs
[ 58.294555][ T4270] cgroup: Unknown subsys name 'net'
[ 58.427843][ T4270] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 59.682007][ T4270] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 61.432963][ T4286] chnl_net:caif_netlink_parms(): no params data found
[ 61.478106][ T4286] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.485428][ T4286] bridge0: port 1(bridge_slave_0) entered disabled state
[ 61.494231][ T4286] device bridge_slave_0 entered promiscuous mode
[ 61.506465][ T4286] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.513963][ T4286] bridge0: port 2(bridge_slave_1) entered disabled state
[ 61.521702][ T4286] device bridge_slave_1 entered promiscuous mode
[ 61.542899][ T4286] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 61.556878][ T4286] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 61.578370][ T4286] team0: Port device team_slave_0 added
[ 61.586463][ T4286] team0: Port device team_slave_1 added
[ 61.605959][ T4286] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 61.613019][ T4286] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.638968][ T4286] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 61.651254][ T4286] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 61.658292][ T4286] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.684345][ T4286] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 61.714174][ T4286] device hsr_slave_0 entered promiscuous mode
[ 61.720897][ T4286] device hsr_slave_1 entered promiscuous mode
[ 61.807332][ T4286] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 61.819240][ T4286] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 61.828939][ T4286] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 61.839117][ T4286] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 61.869480][ T4286] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.876784][ T4286] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.884695][ T4286] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.891817][ T4286] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.931081][ T4286] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.959901][ T1309] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.971236][ T1309] bridge0: port 1(bridge_slave_0) entered disabled state
[ 61.980837][ T1309] bridge0: port 2(bridge_slave_1) entered disabled state
[ 61.989617][ T1309] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 62.004534][ T4286] 8021q: adding VLAN 0 to HW filter on device team0
[ 62.020149][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 62.028655][ T56] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.035918][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 62.048595][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 62.057626][ T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.064745][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 62.085621][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 62.094135][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 62.107094][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 62.122453][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 62.133735][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 62.146138][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 62.286419][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 62.294802][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 62.310298][ T4286] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 62.327421][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 62.348340][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 62.357047][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 62.365536][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 62.377900][ T4286] device veth0_vlan entered promiscuous mode
[ 62.388688][ T4286] device veth1_vlan entered promiscuous mode
[ 62.396916][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 62.419628][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 62.428458][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 62.440074][ T4286] device veth0_macvtap entered promiscuous mode
[ 62.450805][ T4286] device veth1_macvtap entered promiscuous mode
[ 62.468914][ T4286] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 62.477702][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 62.486260][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 62.494902][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 62.503576][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 62.514975][ T4286] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 62.527133][ T4286] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 62.536948][ T4286] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 62.545850][ T4286] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 62.555160][ T4286] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 62.565972][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 62.575331][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 62.710069][ T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.711290][ T4308] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 62.731201][ T4308] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 62.739208][ T4308] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 62.747264][ T4308] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 62.755064][ T4308] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 62.765149][ T4308] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 62.937545][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 62.951592][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 62.965153][ T1309] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 62.975637][ T1309] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 62.985306][ T1309] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 62.994065][ T1309] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/12/22 22:21:05 executed programs: 0
[ 64.879484][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 64.887437][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 64.897440][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 64.905978][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 64.913990][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 64.921266][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 65.027316][ T4360] chnl_net:caif_netlink_parms(): no params data found
[ 65.065119][ T4360] bridge0: port 1(bridge_slave_0) entered blocking state
[ 65.072338][ T4360] bridge0: port 1(bridge_slave_0) entered disabled state
[ 65.080103][ T4360] device bridge_slave_0 entered promiscuous mode
[ 65.089402][ T4360] bridge0: port 2(bridge_slave_1) entered blocking state
[ 65.096719][ T4360] bridge0: port 2(bridge_slave_1) entered disabled state
[ 65.105108][ T4360] device bridge_slave_1 entered promiscuous mode
[ 65.125681][ T4360] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 65.136479][ T4360] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 65.159345][ T4360] team0: Port device team_slave_0 added
[ 65.166886][ T4360] team0: Port device team_slave_1 added
[ 65.195106][ T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 65.206875][ T4360] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 65.214242][ T4360] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 65.240549][ T4360] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 65.252743][ T4360] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 65.259697][ T4360] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 65.286114][ T4360] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 65.313514][ T4360] device hsr_slave_0 entered promiscuous mode
[ 65.320251][ T4360] device hsr_slave_1 entered promiscuous mode
[ 65.327323][ T4360] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 65.336765][ T4360] Cannot create hsr debugfs directory
[ 67.002812][ T48] Bluetooth: hci0: command 0x0409 tx timeout
[ 67.571563][ T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 67.644322][ T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 68.509548][ T46] device hsr_slave_0 left promiscuous mode
[ 68.518633][ T46] device hsr_slave_1 left promiscuous mode
[ 68.526253][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 68.535837][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 68.544576][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 68.552897][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 68.560832][ T46] device bridge_slave_1 left promiscuous mode
[ 68.567857][ T46] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.577895][ T46] device bridge_slave_0 left promiscuous mode
[ 68.585224][ T46] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.603918][ T46] device veth1_macvtap left promiscuous mode
[ 68.610113][ T46] device veth0_macvtap left promiscuous mode
[ 68.616311][ T46] device veth1_vlan left promiscuous mode
[ 68.622363][ T46] device veth0_vlan left promiscuous mode
[ 68.894770][ T46] team0 (unregistering): Port device team_slave_1 removed
[ 68.920749][ T46] team0 (unregistering): Port device team_slave_0 removed
[ 68.950236][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 68.979368][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 69.085325][ T48] Bluetooth: hci0: command 0x041b tx timeout
[ 69.220355][ T46] bond0 (unregistering): Released all slaves
[ 69.294252][ T4360] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 69.303812][ T4360] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.313169][ T4360] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.322721][ T4360] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.384299][ T4360] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.411192][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 69.419959][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 69.430526][ T4360] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.440363][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 69.449886][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 69.458626][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.465754][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.474466][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 69.498664][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 69.508033][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 69.516909][ T4318] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.524057][ T4318] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.532536][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 69.544732][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 69.564159][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 69.573507][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 69.582005][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 69.591097][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 69.609116][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 69.617920][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 69.626811][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 69.643388][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 69.653008][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 69.664121][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 69.889896][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 69.898950][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 69.925868][ T4360] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 69.951361][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 69.960464][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 69.989014][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 69.997670][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 70.008149][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 70.016142][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 70.028918][ T4360] device veth0_vlan entered promiscuous mode
[ 70.046166][ T4360] device veth1_vlan entered promiscuous mode
[ 70.078750][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 70.087970][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 70.096701][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 70.105308][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 70.115930][ T4360] device veth0_macvtap entered promiscuous mode
[ 70.126106][ T4360] device veth1_macvtap entered promiscuous mode
[ 70.139699][ T4360] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 70.148901][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 70.157246][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 70.166073][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 70.175324][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 70.187022][ T4360] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 70.194540][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 70.203489][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 70.215224][ T4360] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.224679][ T4360] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.233537][ T4360] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.242722][ T4360] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.288199][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.299094][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.311278][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 70.323829][ T4318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.332520][ T4318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.341182][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 70.541206][ T4431] loop0: detected capacity change from 0 to 32768
[ 70.570782][ T4431]
[ 70.570782][ T4431] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.570782][ T4431]
[ 70.588478][ T4431]
[ 70.588478][ T4431] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.588478][ T4431]
[ 70.622634][ T4431]
[ 70.622634][ T4431] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.622634][ T4431]
[ 70.648651][ T4431]
[ 70.648651][ T4431] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.648651][ T4431]
[ 70.661371][ T4431]
[ 70.661371][ T4431] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.661371][ T4431]
[ 70.677792][ T26] audit: type=1800 audit(1766442071.412:2): pid=4431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="file2" dev="loop0" ino=7 res=0 errno=0
[ 70.702413][ T108]
[ 70.702413][ T108] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 70.702413][ T108]
[ 70.715051][ T4431] ==================================================================
[ 70.723678][ T4431] BUG: KASAN: slab-out-of-bounds in diWrite+0xbe6/0x1600
[ 70.730826][ T4431] Read of size 32 at addr ffff88805b4ac130 by task syz.0.17/4431
[ 70.738643][ T4431]
[ 70.740992][ T4431] CPU: 0 PID: 4431 Comm: syz.0.17 Not tainted syzkaller #0
[ 70.748209][ T4431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 70.758404][ T4431] Call Trace:
[ 70.761672][ T4431]
[ 70.764588][ T4431] dump_stack_lvl+0x168/0x22e
[ 70.769266][ T4431] ? __lock_acquire+0x7c50/0x7c50
[ 70.774284][ T4431] ? show_regs_print_info+0x12/0x12
[ 70.779477][ T4431] ? load_image+0x3b0/0x3b0
[ 70.783971][ T4431] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 70.789329][ T4431] ? __virt_addr_valid+0x188/0x540
[ 70.794425][ T4431] ? __virt_addr_valid+0x465/0x540
[ 70.799518][ T4431] ? diWrite+0xbe6/0x1600
[ 70.803830][ T4431] print_report+0xa8/0x210
[ 70.808231][ T4431] kasan_report+0x10b/0x140
[ 70.812718][ T4431] ? diWrite+0xbe6/0x1600
[ 70.817129][ T4431] ? diWrite+0xbe6/0x1600
[ 70.821442][ T4431] kasan_check_range+0x27b/0x290
[ 70.826373][ T4431] memcpy+0x25/0x60
[ 70.830173][ T4431] diWrite+0xbe6/0x1600
[ 70.834328][ T4431] txCommit+0x84b/0x51c0
[ 70.838559][ T4431] ? dtTruncateEntry+0x840/0x840
[ 70.843490][ T4431] ? txLinelock+0x160/0x160
[ 70.847981][ T4431] ? rcu_is_watching+0x11/0xa0
[ 70.852734][ T4431] ? __mark_inode_dirty+0x3de/0xe90
[ 70.857922][ T4431] add_missing_indices+0x791/0xaa0
[ 70.863039][ T4431] ? dtReadFirst+0x8f0/0x8f0
[ 70.867635][ T4431] ? alloc_pages+0x4d8/0x740
[ 70.872233][ T4431] jfs_readdir+0x1da7/0x3b40
[ 70.876822][ T4431] ? dtInitRoot+0x660/0x660
[ 70.881317][ T4431] ? end_current_label_crit_section+0x14b/0x170
[ 70.887555][ T4431] ? common_file_perm+0x171/0x1c0
[ 70.892575][ T4431] ? iterate_dir+0x133/0x560
[ 70.897175][ T4431] iterate_dir+0x218/0x560
[ 70.901595][ T4431] __se_sys_getdents64+0xe5/0x260
[ 70.906614][ T4431] ? __x64_sys_getdents64+0x80/0x80
[ 70.911802][ T4431] ? filldir+0x700/0x700
[ 70.916039][ T4431] ? lockdep_hardirqs_on+0x94/0x140
[ 70.921242][ T4431] do_syscall_64+0x4c/0xa0
[ 70.925651][ T4431] ? clear_bhb_loop+0x60/0xb0
[ 70.930345][ T4431] ? clear_bhb_loop+0x60/0xb0
[ 70.935016][ T4431] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 70.940907][ T4431] RIP: 0033:0x7fd27778f749
[ 70.945427][ T4431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 70.965198][ T4431] RSP: 002b:00007fff5ec292b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 70.973612][ T4431] RAX: ffffffffffffffda RBX: 00007fd2779e5fa0 RCX: 00007fd27778f749
[ 70.981576][ T4431] RDX: 00000000000000ea RSI: 0000200000000080 RDI: 0000000000000005
[ 70.989539][ T4431] RBP: 00007fd277813f91 R08: 0000000000000000 R09: 0000000000000000
[ 70.997502][ T4431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 71.005908][ T4431] R13: 00007fd2779e5fa0 R14: 00007fd2779e5fa0 R15: 0000000000000003
[ 71.013891][ T4431]
[ 71.016904][ T4431]
[ 71.019212][ T4431] The buggy address belongs to the object at ffff88805b4ac0c0
[ 71.019212][ T4431] which belongs to the cache jfs_ip of size 2240
[ 71.032994][ T4431] The buggy address is located 112 bytes inside of
[ 71.032994][ T4431] 2240-byte region [ffff88805b4ac0c0, ffff88805b4ac980)
[ 71.046349][ T4431]
[ 71.048660][ T4431] The buggy address belongs to the physical page:
[ 71.055081][ T4431] page:ffffea00016d2a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5b4a8
[ 71.065238][ T4431] head:ffffea00016d2a00 order:3 compound_mapcount:0 compound_pincount:0
[ 71.073550][ T4431] memcg:ffff88807d5a6201
[ 71.077776][ T4431] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 71.085762][ T4431] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff8881462b88c0
[ 71.094332][ T4431] raw: 0000000000000000 00000000800d000d 00000001ffffffff ffff88807d5a6201
[ 71.102991][ T4431] page dumped because: kasan: bad access detected
[ 71.109403][ T4431] page_owner tracks the page as allocated
[ 71.115108][ T4431] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 4431, tgid 4431 (syz.0.17), ts 70561684562, free_ts 12832166653
[ 71.138564][ T4431] post_alloc_hook+0x173/0x1a0
[ 71.143445][ T4431] get_page_from_freelist+0x1a26/0x1ac0
[ 71.149004][ T4431] __alloc_pages+0x1df/0x4e0
[ 71.153594][ T4431] alloc_slab_page+0x5d/0x160
[ 71.158266][ T4431] new_slab+0x87/0x2c0
[ 71.162328][ T4431] ___slab_alloc+0xbc6/0x1230
[ 71.167008][ T4431] kmem_cache_alloc_lru+0x1ae/0x2e0
[ 71.172215][ T4431] jfs_alloc_inode+0x24/0x60
[ 71.176808][ T4431] new_inode_pseudo+0x5f/0x1c0
[ 71.181566][ T4431] new_inode+0x25/0x1c0
[ 71.185724][ T4431] jfs_fill_super+0x392/0xac0
[ 71.190395][ T4431] mount_bdev+0x287/0x3c0
[ 71.194711][ T4431] legacy_get_tree+0xe6/0x180
[ 71.199376][ T4431] vfs_get_tree+0x88/0x270
[ 71.203781][ T4431] do_new_mount+0x24a/0xa40
[ 71.208273][ T4431] __se_sys_mount+0x2d6/0x3c0
[ 71.212948][ T4431] page last free stack trace:
[ 71.217605][ T4431] free_unref_page_prepare+0x8b4/0x9a0
[ 71.223144][ T4431] free_unref_page+0x2e/0x3f0
[ 71.227811][ T4431] free_contig_range+0x9d/0x150
[ 71.232667][ T4431] destroy_args+0x100/0xa31
[ 71.237157][ T4431] debug_vm_pgtable+0x32a/0x37e
[ 71.242002][ T4431] do_one_initcall+0x214/0x7a0
[ 71.246753][ T4431] do_initcall_level+0x137/0x1e4
[ 71.251680][ T4431] do_initcalls+0x4b/0x8a
[ 71.255998][ T4431] kernel_init_freeable+0x3fa/0x5ac
[ 71.261192][ T4431] kernel_init+0x19/0x1b0
[ 71.265505][ T4431] ret_from_fork+0x1f/0x30
[ 71.269953][ T4431]
[ 71.272272][ T4431] Memory state around the buggy address:
[ 71.277885][ T4431] ffff88805b4ac000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.285941][ T4431] ffff88805b4ac080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.293988][ T4431] >ffff88805b4ac100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.302030][ T4431] ^
[ 71.307644][ T4431] ffff88805b4ac180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.315690][ T4431] ffff88805b4ac200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 71.323929][ T4431] ==================================================================
[ 71.342907][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.349465][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.351348][ T4431] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 71.351359][ T4431] CPU: 1 PID: 4431 Comm: syz.0.17 Not tainted syzkaller #0
[ 71.351376][ T4431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 71.351384][ T4431] Call Trace:
[ 71.351391][ T4431]
[ 71.351397][ T4431] dump_stack_lvl+0x168/0x22e
[ 71.351425][ T4431] ? memcpy+0x3c/0x60
[ 71.351439][ T4431] ? show_regs_print_info+0x12/0x12
[ 71.351460][ T4431] ? load_image+0x3b0/0x3b0
[ 71.351482][ T4431] panic+0x2c9/0x710
[ 71.351497][ T4431] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 71.351518][ T4431] ? bpf_jit_dump+0xd0/0xd0
[ 71.351536][ T4431] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 71.351552][ T4431] ? _raw_spin_unlock+0x40/0x40
[ 71.351569][ T4431] check_panic_on_warn+0x80/0xa0
[ 71.351587][ T4431] ? diWrite+0xbe6/0x1600
[ 71.351607][ T4431] end_report+0x66/0x110
[ 71.351626][ T4431] kasan_report+0x118/0x140
[ 71.351646][ T4431] ? diWrite+0xbe6/0x1600
[ 71.351667][ T4431] ? diWrite+0xbe6/0x1600
[ 71.351686][ T4431] kasan_check_range+0x27b/0x290
[ 71.351707][ T4431] memcpy+0x25/0x60
[ 71.351721][ T4431] diWrite+0xbe6/0x1600
[ 71.351745][ T4431] txCommit+0x84b/0x51c0
[ 71.351764][ T4431] ? dtTruncateEntry+0x840/0x840
[ 71.351782][ T4431] ? txLinelock+0x160/0x160
[ 71.351800][ T4431] ? rcu_is_watching+0x11/0xa0
[ 71.351841][ T4431] ? __mark_inode_dirty+0x3de/0xe90
[ 71.351862][ T4431] add_missing_indices+0x791/0xaa0
[ 71.351880][ T4431] ? dtReadFirst+0x8f0/0x8f0
[ 71.351894][ T4431] ? alloc_pages+0x4d8/0x740
[ 71.351914][ T4431] jfs_readdir+0x1da7/0x3b40
[ 71.351933][ T4431] ? dtInitRoot+0x660/0x660
[ 71.351952][ T4431] ? end_current_label_crit_section+0x14b/0x170
[ 71.351977][ T4431] ? common_file_perm+0x171/0x1c0
[ 71.351999][ T4431] ? iterate_dir+0x133/0x560
[ 71.352018][ T4431] iterate_dir+0x218/0x560
[ 71.352038][ T4431] __se_sys_getdents64+0xe5/0x260
[ 71.352059][ T4431] ? __x64_sys_getdents64+0x80/0x80
[ 71.352078][ T4431] ? filldir+0x700/0x700
[ 71.352098][ T4431] ? lockdep_hardirqs_on+0x94/0x140
[ 71.352116][ T4431] do_syscall_64+0x4c/0xa0
[ 71.352136][ T4431] ? clear_bhb_loop+0x60/0xb0
[ 71.352153][ T4431] ? clear_bhb_loop+0x60/0xb0
[ 71.352178][ T4431] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 71.352196][ T4431] RIP: 0033:0x7fd27778f749
[ 71.352210][ T4431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 71.352222][ T4431] RSP: 002b:00007fff5ec292b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 71.352240][ T4431] RAX: ffffffffffffffda RBX: 00007fd2779e5fa0 RCX: 00007fd27778f749
[ 71.352251][ T4431] RDX: 00000000000000ea RSI: 0000200000000080 RDI: 0000000000000005
[ 71.352261][ T4431] RBP: 00007fd277813f91 R08: 0000000000000000 R09: 0000000000000000
[ 71.352271][ T4431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 71.352280][ T4431] R13: 00007fd2779e5fa0 R14: 00007fd2779e5fa0 R15: 0000000000000003
[ 71.352296][ T4431]
[ 71.356044][ T4431] Kernel Offset: disabled
[ 71.654926][ T4431] Rebooting in 86400 seconds..