Warning: Permanently added '10.128.0.56' (ED25519) to the list of known hosts.
2026/04/05 17:22:55 parsed 1 programs
[   92.089355][    T9] cfg80211: failed to load regulatory.db
[   94.400807][ T5802] cgroup: Unknown subsys name 'net'
[   94.650791][ T5802] cgroup: Unknown subsys name 'cpuset'
[   94.715738][ T5802] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   96.689834][ T5802] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  100.277974][ T1457] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.277996][ T1457] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.337887][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.337910][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.228008][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  102.229384][ T5117] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  102.230085][ T5117] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  102.231334][ T5117] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  102.232288][ T5117] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  104.714524][ T5873] chnl_net:caif_netlink_parms(): no params data found
[  104.942986][ T5873] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.944530][ T5873] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.944657][ T5873] bridge_slave_0: entered allmulticast mode
[  104.962046][ T5873] bridge_slave_0: entered promiscuous mode
[  104.982825][ T5873] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.982966][ T5873] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.983091][ T5873] bridge_slave_1: entered allmulticast mode
[  104.984931][ T5873] bridge_slave_1: entered promiscuous mode
[  105.041618][ T5873] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.055306][ T5873] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.099521][ T5873] team0: Port device team_slave_0 added
[  105.102409][ T5873] team0: Port device team_slave_1 added
[  105.148045][ T5873] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.148060][ T5873] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.148079][ T5873] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.150695][ T5873] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.150707][ T5873] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  105.150725][ T5873] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.275855][ T5873] hsr_slave_0: entered promiscuous mode
[  105.276973][ T5873] hsr_slave_1: entered promiscuous mode
[  105.981207][ T5873] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  106.004062][ T5873] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.039514][ T5873] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.079230][ T5873] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.212915][ T5873] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.237188][ T5873] 8021q: adding VLAN 0 to HW filter on device team0
[  106.244217][   T70] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.261726][   T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.279816][ T1399] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.279969][ T1399] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.514465][ T5873] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.574187][ T5873] veth0_vlan: entered promiscuous mode
[  106.587413][ T5873] veth1_vlan: entered promiscuous mode
[  106.625787][ T5873] veth0_macvtap: entered promiscuous mode
[  106.630034][ T5873] veth1_macvtap: entered promiscuous mode
[  106.660111][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_0
[  106.679277][ T5873] batman_adv: batadv0: Interface activated: batadv_slave_1
[  106.696799][ T1399] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.697335][ T1399] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.698719][ T1399] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.699029][ T1399] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.500163][ T1383] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.767562][ T1383] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.030248][ T1383] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.439975][ T1383] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.555487][ T1383] bridge_slave_1: left allmulticast mode
[  109.555677][ T1383] bridge_slave_1: left promiscuous mode
[  109.557560][ T1383] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.658945][ T1383] bridge_slave_0: left allmulticast mode
[  109.658976][ T1383] bridge_slave_0: left promiscuous mode
[  109.659237][ T1383] bridge0: port 1(bridge_slave_0) entered disabled state
2026/04/05 17:23:14 executed programs: 0
[  110.028122][ T5117] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  110.031343][ T5117] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  110.032090][ T5117] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  110.033197][ T5117] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  110.034202][ T5117] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  110.568332][ T1383] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  110.648040][ T1383] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  110.668721][ T1383] bond0 (unregistering): Released all slaves
[  111.074539][ T1383] hsr_slave_0: left promiscuous mode
[  111.105564][ T1383] hsr_slave_1: left promiscuous mode
[  111.106989][ T1383] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.107064][ T1383] batman_adv: batadv0: Removing interface: batadv_slave_0
[  111.167623][ T1383] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.167657][ T1383] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.279879][ T1383] veth1_macvtap: left promiscuous mode
[  111.280127][ T1383] veth0_macvtap: left promiscuous mode
[  111.281370][ T1383] veth1_vlan: left promiscuous mode
[  111.281692][ T1383] veth0_vlan: left promiscuous mode
[  112.035743][ T1383] team0 (unregistering): Port device team_slave_1 removed
[  112.076058][ T1383] team0 (unregistering): Port device team_slave_0 removed
[  112.167015][   T60] Bluetooth: hci0: command tx timeout
[  112.392713][ T5921] chnl_net:caif_netlink_parms(): no params data found
[  112.604479][ T5921] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.604703][ T5921] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.604875][ T5921] bridge_slave_0: entered allmulticast mode
[  112.630703][ T5921] bridge_slave_0: entered promiscuous mode
[  112.634242][ T5921] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.634447][ T5921] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.634624][ T5921] bridge_slave_1: entered allmulticast mode
[  112.664596][ T5921] bridge_slave_1: entered promiscuous mode
[  112.714126][ T5921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  112.731201][ T5921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  112.785755][ T5921] team0: Port device team_slave_0 added
[  112.789370][ T5921] team0: Port device team_slave_1 added
[  112.841440][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_0
[  112.841459][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  112.841486][ T5921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  112.844129][ T5921] batman_adv: batadv0: Adding interface: batadv_slave_1
[  112.844144][ T5921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  112.844171][ T5921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  112.998795][ T5921] hsr_slave_0: entered promiscuous mode
[  113.000199][ T5921] hsr_slave_1: entered promiscuous mode
[  114.255153][   T60] Bluetooth: hci0: command tx timeout
[  115.082439][ T5921] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  115.120112][ T5921] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  115.162384][ T5921] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  115.201229][ T5921] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  115.403796][ T5921] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.440691][ T5921] 8021q: adding VLAN 0 to HW filter on device team0
[  115.461026][ T1383] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.462073][ T1383] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.489887][ T1357] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.490048][ T1357] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.834399][ T5921] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.908353][ T5921] veth0_vlan: entered promiscuous mode
[  115.922581][ T5921] veth1_vlan: entered promiscuous mode
[  115.965164][ T5921] veth0_macvtap: entered promiscuous mode
[  115.970349][ T5921] veth1_macvtap: entered promiscuous mode
[  116.003001][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.021627][ T5921] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.050083][ T1357] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.050972][ T1357] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.051017][ T1357] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.051055][ T1357] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.321568][ T1383] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.321591][ T1383] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.335499][   T60] Bluetooth: hci0: command tx timeout
[  116.399411][   T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.399433][   T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/05 17:23:21 executed programs: 2
[  116.813237][ T6042] loop0: detected capacity change from 0 to 32768
[  116.898015][ T6042] non-latin1 character 0xffff found in JFS file name
[  116.898035][ T6042] mount with iocharset=utf8 to access
[  117.902915][ T6044] loop0: detected capacity change from 0 to 32768
[  117.941440][ T6044] ==================================================================
[  117.941458][ T6044] BUG: KASAN: slab-use-after-free in diWrite+0x1209/0x1f40
[  117.941500][ T6044] Write of size 32 at addr ffff888033681400 by task syz.0.18/6044
[  117.941518][ T6044] 
[  117.941548][ T6044] CPU: 0 UID: 0 PID: 6044 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  117.941571][ T6044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  117.941594][ T6044] Call Trace:
[  117.941606][ T6044]  <TASK>
[  117.941615][ T6044]  dump_stack_lvl+0xe8/0x150
[  117.941650][ T6044]  print_report+0xba/0x230
[  117.941681][ T6044]  ? diWrite+0x1209/0x1f40
[  117.941701][ T6044]  kasan_report+0x117/0x150
[  117.941725][ T6044]  ? diWrite+0x1209/0x1f40
[  117.941750][ T6044]  kasan_check_range+0x264/0x2c0
[  117.941772][ T6044]  ? diWrite+0x1209/0x1f40
[  117.941794][ T6044]  __asan_memcpy+0x40/0x70
[  117.941823][ T6044]  diWrite+0x1209/0x1f40
[  117.941851][ T6044]  txCommit+0x869/0x5410
[  117.941875][ T6044]  ? __pfx_add_index+0x10/0x10
[  117.941902][ T6044]  ? rt_spin_unlock+0x160/0x200
[  117.941939][ T6044]  ? __pfx_txCommit+0x10/0x10
[  117.941965][ T6044]  ? rcu_is_watching+0x15/0xb0
[  117.941990][ T6044]  ? __mark_inode_dirty+0x4cf/0x1470
[  117.942013][ T6044]  add_missing_indices+0x8cb/0xcd0
[  117.942049][ T6044]  ? __pfx_add_missing_indices+0x10/0x10
[  117.942076][ T6044]  ? set_page_refcounted+0xa0/0x1e0
[  117.942100][ T6044]  ? alloc_pages_noprof+0xe3/0x1e0
[  117.942125][ T6044]  jfs_readdir+0x1e34/0x3c10
[  117.942168][ T6044]  ? __lock_acquire+0x6b5/0x2cf0
[  117.942189][ T6044]  ? __pfx_jfs_readdir+0x10/0x10
[  117.942235][ T6044]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  117.942260][ T6044]  ? lockdep_hardirqs_on+0x7a/0x110
[  117.942285][ T6044]  ? rwbase_write_lock+0x568/0x730
[  117.942315][ T6044]  ? __pfx_jfs_readdir+0x10/0x10
[  117.942343][ T6044]  wrap_directory_iterator+0x99/0xe0
[  117.942368][ T6044]  iterate_dir+0x3a5/0x580
[  117.942392][ T6044]  __se_sys_getdents64+0xf1/0x280
[  117.942416][ T6044]  ? __pfx___se_sys_getdents64+0x10/0x10
[  117.942438][ T6044]  ? __pfx_filldir64+0x10/0x10
[  117.942461][ T6044]  ? rcu_is_watching+0x15/0xb0
[  117.942491][ T6044]  do_syscall_64+0x14d/0xf80
[  117.942525][ T6044]  ? trace_irq_disable+0x3b/0x150
[  117.942552][ T6044]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.942574][ T6044]  ? clear_bhb_loop+0x40/0x90
[  117.942600][ T6044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.942616][ T6044] RIP: 0033:0x7fd32cfdc819
[  117.942636][ T6044] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  117.942653][ T6044] RSP: 002b:00007fd32c63e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  117.942673][ T6044] RAX: ffffffffffffffda RBX: 00007fd32d255fa0 RCX: 00007fd32cfdc819
[  117.942684][ T6044] RDX: 0000000000000ff1 RSI: 0000200000000f80 RDI: 0000000000000005
[  117.942694][ T6044] RBP: 00007fd32d072c91 R08: 0000000000000000 R09: 0000000000000000
[  117.942704][ T6044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  117.942713][ T6044] R13: 00007fd32d256038 R14: 00007fd32d255fa0 R15: 00007ffe78c5bc48
[  117.942731][ T6044]  </TASK>
[  117.942736][ T6044] 
[  117.942740][ T6044] Allocated by task 5818:
[  117.942747][ T6044]  kasan_save_track+0x3e/0x80
[  117.942769][ T6044]  __kasan_kmalloc+0x93/0xb0
[  117.942790][ T6044]  __kmalloc_noprof+0x3e7/0x7b0
[  117.942803][ T6044]  __register_sysctl_table+0xba1/0x1340
[  117.942823][ T6044]  nf_lwtunnel_net_init+0x53/0xf0
[  117.942842][ T6044]  ops_init+0x35c/0x5c0
[  117.942854][ T6044]  setup_net+0x118/0x340
[  117.942875][ T6044]  copy_net_ns+0x50e/0x730
[  117.942895][ T6044]  create_new_namespaces+0x3e7/0x6a0
[  117.942916][ T6044]  unshare_nsproxy_namespaces+0x11a/0x160
[  117.942936][ T6044]  ksys_unshare+0x51d/0x930
[  117.942949][ T6044]  __x64_sys_unshare+0x38/0x50
[  117.942962][ T6044]  do_syscall_64+0x14d/0xf80
[  117.942977][ T6044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.942991][ T6044] 
[  117.942994][ T6044] Freed by task 1357:
[  117.943001][ T6044]  kasan_save_track+0x3e/0x80
[  117.943021][ T6044]  kasan_save_free_info+0x46/0x50
[  117.943039][ T6044]  __kasan_slab_free+0x5c/0x80
[  117.943061][ T6044]  kmem_cache_free_bulk+0x313/0x1220
[  117.943076][ T6044]  kvfree_rcu_bulk+0xe5/0x1b0
[  117.943093][ T6044]  kfree_rcu_work+0xed/0x170
[  117.943107][ T6044]  process_scheduled_works+0xb6e/0x18c0
[  117.943127][ T6044]  worker_thread+0xa53/0xfc0
[  117.943147][ T6044]  kthread+0x388/0x470
[  117.943160][ T6044]  ret_from_fork+0x51e/0xb90
[  117.943180][ T6044]  ret_from_fork_asm+0x1a/0x30
[  117.943193][ T6044] 
[  117.943197][ T6044] Last potentially related work creation:
[  117.943202][ T6044]  kasan_save_stack+0x3e/0x60
[  117.943227][ T6044]  kasan_record_aux_stack+0xbd/0xd0
[  117.943245][ T6044]  kvfree_call_rcu+0x90/0x3c0
[  117.943259][ T6044]  drop_sysctl_table+0x404/0x5e0
[  117.943277][ T6044]  drop_sysctl_table+0x3f2/0x5e0
[  117.943295][ T6044]  drop_sysctl_table+0x3f2/0x5e0
[  117.943314][ T6044]  unregister_sysctl_table+0x41/0x60
[  117.943333][ T6044]  nf_lwtunnel_net_exit+0x5e/0x90
[  117.943351][ T6044]  ops_undo_list+0x49f/0x940
[  117.943363][ T6044]  cleanup_net+0x56e/0x800
[  117.943375][ T6044]  process_scheduled_works+0xb6e/0x18c0
[  117.943395][ T6044]  worker_thread+0xa53/0xfc0
[  117.943415][ T6044]  kthread+0x388/0x470
[  117.943428][ T6044]  ret_from_fork+0x51e/0xb90
[  117.943447][ T6044]  ret_from_fork_asm+0x1a/0x30
[  117.943460][ T6044] 
[  117.943463][ T6044] The buggy address belongs to the object at ffff888033681400
[  117.943463][ T6044]  which belongs to the cache kmalloc-192 of size 192
[  117.943477][ T6044] The buggy address is located 0 bytes inside of
[  117.943477][ T6044]  freed 192-byte region [ffff888033681400, ffff8880336814c0)
[  117.943493][ T6044] 
[  117.943496][ T6044] The buggy address belongs to the physical page:
[  117.943510][ T6044] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33681
[  117.943529][ T6044] flags: 0x80000000000000(node=0|zone=1)
[  117.943543][ T6044] page_type: f5(slab)
[  117.943557][ T6044] raw: 0080000000000000 ffff88813fe1a3c0 dead000000000100 dead000000000122
[  117.943571][ T6044] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  117.943579][ T6044] page dumped because: kasan: bad access detected
[  117.943589][ T6044] page_owner tracks the page as allocated
[  117.943595][ T6044] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25544486147, free_ts 25512467763
[  117.943623][ T6044]  post_alloc_hook+0x231/0x280
[  117.943646][ T6044]  get_page_from_freelist+0x28bb/0x2950
[  117.943662][ T6044]  __alloc_frozen_pages_noprof+0x18d/0x380
[  117.943677][ T6044]  allocate_slab+0x77/0x660
[  117.943695][ T6044]  refill_objects+0x334/0x3c0
[  117.943711][ T6044]  __pcs_replace_empty_main+0x35c/0x710
[  117.943730][ T6044]  __kmalloc_cache_noprof+0x44e/0x690
[  117.943742][ T6044]  call_usermodehelper_setup+0x8e/0x270
[  117.943762][ T6044]  kobject_uevent_env+0x65b/0x9e0
[  117.943782][ T6044]  version_sysfs_builtin+0x6a/0xa0
[  117.943804][ T6044]  param_sysfs_builtin_init+0x1e/0x30
[  117.943826][ T6044]  do_one_initcall+0x250/0x8d0
[  117.943847][ T6044]  do_initcall_level+0x104/0x190
[  117.943862][ T6044]  do_initcalls+0x59/0xa0
[  117.943876][ T6044]  kernel_init_freeable+0x2a6/0x3e0
[  117.943890][ T6044]  kernel_init+0x1d/0x1d0
[  117.943909][ T6044] page last free pid 48 tgid 48 stack trace:
[  117.943917][ T6044]  __free_frozen_pages+0xfe3/0x1170
[  117.943930][ T6044]  vfree+0x2ac/0x470
[  117.943950][ T6044]  delayed_vfree_work+0x55/0x80
[  117.943963][ T6044]  process_scheduled_works+0xb6e/0x18c0
[  117.943982][ T6044]  worker_thread+0xa53/0xfc0
[  117.944002][ T6044]  kthread+0x388/0x470
[  117.944016][ T6044]  ret_from_fork+0x51e/0xb90
[  117.944035][ T6044]  ret_from_fork_asm+0x1a/0x30
[  117.944048][ T6044] 
[  117.944051][ T6044] Memory state around the buggy address:
[  117.944058][ T6044]  ffff888033681300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  117.944068][ T6044]  ffff888033681380: 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  117.944079][ T6044] >ffff888033681400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  117.944086][ T6044]                    ^
[  117.944094][ T6044]  ffff888033681480: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  117.944104][ T6044]  ffff888033681500: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  117.944112][ T6044] ==================================================================
[  117.944169][ T6044] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  117.944180][ T6044] CPU: 0 UID: 0 PID: 6044 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  117.944197][ T6044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  117.944207][ T6044] Call Trace:
[  117.944213][ T6044]  <TASK>
[  117.944218][ T6044]  vpanic+0x56c/0xa60
[  117.944248][ T6044]  ? __pfx_vpanic+0x10/0x10
[  117.944275][ T6044]  panic+0xc5/0xd0
[  117.944297][ T6044]  ? __pfx_panic+0x10/0x10
[  117.944320][ T6044]  ? preempt_schedule_thunk+0x16/0x30
[  117.944340][ T6044]  ? preempt_schedule_thunk+0x16/0x30
[  117.944359][ T6044]  ? diWrite+0x1209/0x1f40
[  117.944374][ T6044]  check_panic_on_warn+0x89/0xb0
[  117.944391][ T6044]  ? diWrite+0x1209/0x1f40
[  117.944405][ T6044]  end_report+0x73/0x180
[  117.944420][ T6044]  ? diWrite+0x1209/0x1f40
[  117.944433][ T6044]  kasan_report+0x128/0x150
[  117.944449][ T6044]  ? diWrite+0x1209/0x1f40
[  117.944466][ T6044]  kasan_check_range+0x264/0x2c0
[  117.944483][ T6044]  ? diWrite+0x1209/0x1f40
[  117.944498][ T6044]  __asan_memcpy+0x40/0x70
[  117.944519][ T6044]  diWrite+0x1209/0x1f40
[  117.944539][ T6044]  txCommit+0x869/0x5410
[  117.944556][ T6044]  ? __pfx_add_index+0x10/0x10
[  117.944576][ T6044]  ? rt_spin_unlock+0x160/0x200
[  117.944603][ T6044]  ? __pfx_txCommit+0x10/0x10
[  117.944621][ T6044]  ? rcu_is_watching+0x15/0xb0
[  117.944638][ T6044]  ? __mark_inode_dirty+0x4cf/0x1470
[  117.944654][ T6044]  add_missing_indices+0x8cb/0xcd0
[  117.944679][ T6044]  ? __pfx_add_missing_indices+0x10/0x10
[  117.944699][ T6044]  ? set_page_refcounted+0xa0/0x1e0
[  117.944716][ T6044]  ? alloc_pages_noprof+0xe3/0x1e0
[  117.944733][ T6044]  jfs_readdir+0x1e34/0x3c10
[  117.944764][ T6044]  ? __lock_acquire+0x6b5/0x2cf0
[  117.944778][ T6044]  ? __pfx_jfs_readdir+0x10/0x10
[  117.944804][ T6044]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  117.944821][ T6044]  ? lockdep_hardirqs_on+0x7a/0x110
[  117.944838][ T6044]  ? rwbase_write_lock+0x568/0x730
[  117.944860][ T6044]  ? __pfx_jfs_readdir+0x10/0x10
[  117.944880][ T6044]  wrap_directory_iterator+0x99/0xe0
[  117.944897][ T6044]  iterate_dir+0x3a5/0x580
[  117.944914][ T6044]  __se_sys_getdents64+0xf1/0x280
[  117.944931][ T6044]  ? __pfx___se_sys_getdents64+0x10/0x10
[  117.944947][ T6044]  ? __pfx_filldir64+0x10/0x10
[  117.944963][ T6044]  ? rcu_is_watching+0x15/0xb0
[  117.945015][ T6044]  do_syscall_64+0x14d/0xf80
[  117.945038][ T6044]  ? trace_irq_disable+0x3b/0x150
[  117.945062][ T6044]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.945083][ T6044]  ? clear_bhb_loop+0x40/0x90
[  117.945106][ T6044]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.945127][ T6044] RIP: 0033:0x7fd32cfdc819
[  117.945144][ T6044] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  117.945162][ T6044] RSP: 002b:00007fd32c63e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  117.945183][ T6044] RAX: ffffffffffffffda RBX: 00007fd32d255fa0 RCX: 00007fd32cfdc819
[  117.945199][ T6044] RDX: 0000000000000ff1 RSI: 0000200000000f80 RDI: 0000000000000005
[  117.945212][ T6044] RBP: 00007fd32d072c91 R08: 0000000000000000 R09: 0000000000000000
[  117.945233][ T6044] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  117.945246][ T6044] R13: 00007fd32d256038 R14: 00007fd32d255fa0 R15: 00007ffe78c5bc48
[  117.945270][ T6044]  </TASK>
[  117.945856][ T6044] Kernel Offset: disabled