Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts.
2025/12/27 22:28:25 parsed 1 programs
[ 62.603758][ T4187] cgroup: Unknown subsys name 'net'
[ 62.764157][ T4187] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 64.173636][ T4187] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 67.200478][ T4240] chnl_net:caif_netlink_parms(): no params data found
[ 67.257507][ T4240] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.265610][ T4240] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.274157][ T4240] device bridge_slave_0 entered promiscuous mode
[ 67.284484][ T4240] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.292104][ T4240] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.300445][ T4240] device bridge_slave_1 entered promiscuous mode
[ 67.327965][ T4240] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 67.339622][ T4240] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 67.368067][ T4240] team0: Port device team_slave_0 added
[ 67.375855][ T4240] team0: Port device team_slave_1 added
[ 67.398950][ T4240] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 67.405944][ T4240] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 67.432208][ T4240] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 67.445788][ T4240] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 67.453061][ T4240] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 67.479392][ T4240] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 67.520244][ T4240] device hsr_slave_0 entered promiscuous mode
[ 67.527442][ T4240] device hsr_slave_1 entered promiscuous mode
[ 67.637166][ T4240] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 67.648725][ T4240] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 67.659510][ T4240] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 67.672607][ T4240] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 67.720141][ T4240] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.727379][ T4240] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.735156][ T4240] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.742245][ T4240] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.839848][ T4240] 8021q: adding VLAN 0 to HW filter on device bond0
[ 67.856681][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 67.870402][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.886183][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.906761][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 67.948480][ T4240] 8021q: adding VLAN 0 to HW filter on device team0
[ 67.960512][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 67.970273][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.977375][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.988886][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 67.997315][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.004395][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 68.023057][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 68.031897][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 68.043713][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 68.059614][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 68.069190][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 68.079626][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 68.163017][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 68.170971][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 68.183095][ T4240] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 68.200672][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 68.209552][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 68.227108][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 68.235952][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 68.244840][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 68.253074][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 68.262994][ T4240] device veth0_vlan entered promiscuous mode
[ 68.274073][ T4240] device veth1_vlan entered promiscuous mode
[ 68.292729][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 68.302401][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 68.311080][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 68.320082][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 68.331693][ T4240] device veth0_macvtap entered promiscuous mode
[ 68.362973][ T4240] device veth1_macvtap entered promiscuous mode
[ 68.378428][ T4240] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 68.385943][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 68.394311][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 68.403378][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 68.414364][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 68.442740][ T4240] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 68.450567][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 68.460779][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 68.473448][ T4240] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.482880][ T4240] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.491724][ T4240] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.501470][ T4240] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.696368][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.704688][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.716167][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 68.736814][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.746140][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.755837][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/12/27 22:28:34 executed programs: 0
[ 69.853558][ T4300] chnl_net:caif_netlink_parms(): no params data found
[ 69.918759][ T4300] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.925945][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.936690][ T4300] device bridge_slave_0 entered promiscuous mode
[ 69.945921][ T4300] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.953851][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.962298][ T4300] device bridge_slave_1 entered promiscuous mode
[ 69.992856][ T4300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 70.005506][ T4300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 70.038633][ T4300] team0: Port device team_slave_0 added
[ 70.046256][ T4300] team0: Port device team_slave_1 added
[ 70.074191][ T4300] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 70.081290][ T4300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.109956][ T4300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 70.123070][ T4300] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 70.132611][ T4300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.159971][ T4300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 70.204315][ T4300] device hsr_slave_0 entered promiscuous mode
[ 70.211535][ T4300] device hsr_slave_1 entered promiscuous mode
[ 70.218472][ T4300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 70.226356][ T4300] Cannot create hsr debugfs directory
[ 70.311042][ T4300] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 71.250864][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.257609][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.728374][ T4273] Bluetooth: hci0: command 0x0409 tx timeout
[ 73.084789][ T4300] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.312479][ T4300] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.355575][ T4300] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 73.467470][ T4300] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 73.493007][ T4300] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 73.501834][ T4300] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 73.511390][ T4300] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 73.576274][ T4300] 8021q: adding VLAN 0 to HW filter on device bond0
[ 73.601485][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 73.609486][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 73.619234][ T4300] 8021q: adding VLAN 0 to HW filter on device team0
[ 73.628941][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 73.637574][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 73.646444][ T155] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.653605][ T155] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 73.665441][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 73.682695][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 73.691659][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 73.700879][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.707989][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 73.723387][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 73.733676][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 73.742933][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 73.751806][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 73.778703][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 73.786895][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 73.796056][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 73.804867][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 73.814760][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 73.820791][ T1108] Bluetooth: hci0: command 0x041b tx timeout
[ 73.824919][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 73.837069][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 73.849087][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.949799][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.957272][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.981782][ T4300] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 74.001631][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 74.010416][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 74.031028][ T4300] device veth0_vlan entered promiscuous mode
[ 74.037425][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 74.046443][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 74.055394][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 74.063570][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 74.075600][ T4300] device veth1_vlan entered promiscuous mode
[ 74.105614][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 74.114036][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 74.122317][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 74.132273][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 74.142655][ T4300] device veth0_macvtap entered promiscuous mode
[ 74.169608][ T4300] device veth1_macvtap entered promiscuous mode
[ 74.183863][ T4300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 74.195537][ T4300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.207052][ T4300] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.215517][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 74.223874][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 74.232368][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 74.241186][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.252851][ T4300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 74.263682][ T4300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.274901][ T4300] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.288708][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.304498][ T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.316501][ T4300] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.325809][ T4300] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.334784][ T4300] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.344302][ T4300] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.402897][ T155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.414069][ T155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.441202][ T1235] device hsr_slave_0 left promiscuous mode
[ 74.450108][ T1235] device hsr_slave_1 left promiscuous mode
[ 74.456468][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 74.464264][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 74.472826][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 74.480483][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 74.488598][ T1235] device bridge_slave_1 left promiscuous mode
[ 74.495491][ T1235] bridge0: port 2(bridge_slave_1) entered disabled state
[ 74.509136][ T1235] device bridge_slave_0 left promiscuous mode
[ 74.515309][ T1235] bridge0: port 1(bridge_slave_0) entered disabled state
[ 74.534472][ T1235] device veth1_macvtap left promiscuous mode
[ 74.541081][ T1235] device veth0_macvtap left promiscuous mode
[ 74.547378][ T1235] device veth1_vlan left promiscuous mode
[ 74.554034][ T1235] device veth0_vlan left promiscuous mode
[ 74.713006][ T1235] team0 (unregistering): Port device team_slave_1 removed
[ 74.726246][ T1235] team0 (unregistering): Port device team_slave_0 removed
[ 74.740687][ T1235] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 74.754182][ T1235] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 74.813718][ T1235] bond0 (unregistering): Released all slaves
[ 74.867082][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 74.884663][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.895915][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.905830][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/12/27 22:28:39 executed programs: 2
[ 75.143247][ T4326] loop0: detected capacity change from 0 to 32768
[ 75.213302][ T4326] =======================================================
[ 75.213302][ T4326] WARNING: The mand mount option has been deprecated and
[ 75.213302][ T4326] and is ignored by this kernel. Remove the mand
[ 75.213302][ T4326] option from the mount to silence this warning.
[ 75.213302][ T4326] =======================================================
[ 75.300187][ T4300] ==================================================================
[ 75.308531][ T4300] BUG: KASAN: use-after-free in jfs_readdir+0x11ca/0x3c10
[ 75.315683][ T4300] Read of size 8 at addr ffff888073aad030 by task syz-executor/4300
[ 75.323764][ T4300]
[ 75.326111][ T4300] CPU: 1 PID: 4300 Comm: syz-executor Not tainted syzkaller #0
[ 75.333665][ T4300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 75.343751][ T4300] Call Trace:
[ 75.347051][ T4300]
[ 75.350013][ T4300] dump_stack_lvl+0x168/0x230
[ 75.354720][ T4300] ? show_regs_print_info+0x20/0x20
[ 75.359948][ T4300] ? load_image+0x3b0/0x3b0
[ 75.364487][ T4300] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 75.369890][ T4300] ? unlock_page+0x17c/0x1f0
[ 75.374518][ T4300] print_address_description+0x60/0x2d0
[ 75.380100][ T4300] ? jfs_readdir+0x11ca/0x3c10
[ 75.384900][ T4300] kasan_report+0xdf/0x130
[ 75.389352][ T4300] ? jfs_readdir+0x11ca/0x3c10
[ 75.394153][ T4300] jfs_readdir+0x11ca/0x3c10
[ 75.398818][ T4300] ? dtInitRoot+0x660/0x660
[ 75.403374][ T4300] ? end_current_label_crit_section+0x14b/0x170
[ 75.409654][ T4300] ? common_file_perm+0x171/0x1c0
[ 75.414734][ T4300] iterate_dir+0x218/0x560
[ 75.419189][ T4300] __se_sys_getdents64+0xe5/0x260
[ 75.424260][ T4300] ? __x64_sys_getdents64+0x80/0x80
[ 75.429633][ T4300] ? filldir+0x720/0x720
[ 75.433917][ T4300] ? vtime_user_exit+0x2dc/0x400
[ 75.438906][ T4300] ? lockdep_hardirqs_on+0x94/0x140
[ 75.444183][ T4300] do_syscall_64+0x4c/0xa0
[ 75.448622][ T4300] ? clear_bhb_loop+0x30/0x80
[ 75.453318][ T4300] ? clear_bhb_loop+0x30/0x80
[ 75.458018][ T4300] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 75.463955][ T4300] RIP: 0033:0x7f88654570b3
[ 75.468393][ T4300] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[ 75.488023][ T4300] RSP: 002b:00007ffe04fab1a8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 75.496462][ T4300] RAX: ffffffffffffffda RBX: 0000555573a81600 RCX: 00007f88654570b3
[ 75.504472][ T4300] RDX: 0000000000008000 RSI: 0000555573a81600 RDI: 0000000000000005
[ 75.512473][ T4300] RBP: 0000555573a815d4 R08: 0000000000028a41 R09: 0000000000000000
[ 75.520464][ T4300] R10: 00007f886564fcc0 R11: 0000000000000293 R12: ffffffffffffffa8
[ 75.528454][ T4300] R13: 0000000000000010 R14: 0000555573a815d0 R15: 00007ffe04fad460
[ 75.536463][ T4300]
[ 75.539503][ T4300]
[ 75.541860][ T4300] Allocated by task 4300:
[ 75.546201][ T4300] __kasan_slab_alloc+0x9c/0xd0
[ 75.551082][ T4300] slab_post_alloc_hook+0x4c/0x380
[ 75.556218][ T4300] kmem_cache_alloc+0x100/0x290
[ 75.561097][ T4300] mempool_alloc+0x18f/0x4e0
[ 75.565706][ T4300] __get_metapage+0x5e8/0x1060
[ 75.570488][ T4300] dtReadFirst+0xd5/0x8f0
[ 75.574835][ T4300] jfs_readdir+0x908/0x3c10
[ 75.579353][ T4300] iterate_dir+0x218/0x560
[ 75.583790][ T4300] __se_sys_getdents64+0xe5/0x260
[ 75.588838][ T4300] do_syscall_64+0x4c/0xa0
[ 75.593273][ T4300] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 75.599215][ T4300]
[ 75.601558][ T4300] Freed by task 4300:
[ 75.605550][ T4300] kasan_set_track+0x4b/0x70
[ 75.610190][ T4300] kasan_set_free_info+0x1f/0x40
[ 75.615160][ T4300] ____kasan_slab_free+0xd5/0x110
[ 75.620207][ T4300] slab_free_freelist_hook+0xea/0x170
[ 75.625597][ T4300] kmem_cache_free+0x8f/0x210
[ 75.630286][ T4300] release_metapage+0x97b/0xe10
[ 75.635168][ T4300] jfs_readdir+0xf6f/0x3c10
[ 75.639689][ T4300] iterate_dir+0x218/0x560
[ 75.644130][ T4300] __se_sys_getdents64+0xe5/0x260
[ 75.649184][ T4300] do_syscall_64+0x4c/0xa0
[ 75.653622][ T4300] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 75.659532][ T4300]
[ 75.661873][ T4300] The buggy address belongs to the object at ffff888073aad000
[ 75.661873][ T4300] which belongs to the cache jfs_mp of size 184
[ 75.675591][ T4300] The buggy address is located 48 bytes inside of
[ 75.675591][ T4300] 184-byte region [ffff888073aad000, ffff888073aad0b8)
[ 75.688792][ T4300] The buggy address belongs to the page:
[ 75.694444][ T4300] page:ffffea0001ceab40 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x73aad
[ 75.704609][ T4300] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 75.712196][ T4300] raw: 00fff00000000200 0000000000000000 dead000000000122 ffff88801dd0c780
[ 75.720800][ T4300] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 75.729402][ T4300] page dumped because: kasan: bad access detected
[ 75.735829][ T4300] page_owner tracks the page as allocated
[ 75.741551][ T4300] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192800(GFP_NOWAIT|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4300, ts 75299922870, free_ts 75298103396
[ 75.760497][ T4300] get_page_from_freelist+0x1b77/0x1c60
[ 75.766074][ T4300] __alloc_pages+0x1e1/0x470
[ 75.770684][ T4300] new_slab+0xc0/0x4b0
[ 75.774761][ T4300] ___slab_alloc+0x81e/0xdf0
[ 75.779361][ T4300] kmem_cache_alloc+0x195/0x290
[ 75.784232][ T4300] mempool_alloc+0x18f/0x4e0
[ 75.788834][ T4300] __get_metapage+0x5e8/0x1060
[ 75.793614][ T4300] dtReadFirst+0xd5/0x8f0
[ 75.797964][ T4300] jfs_readdir+0x908/0x3c10
[ 75.802487][ T4300] iterate_dir+0x218/0x560
[ 75.806944][ T4300] __se_sys_getdents64+0xe5/0x260
[ 75.811994][ T4300] do_syscall_64+0x4c/0xa0
[ 75.816440][ T4300] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 75.822362][ T4300] page last free stack trace:
[ 75.827060][ T4300] free_unref_page_prepare+0x637/0x6c0
[ 75.832534][ T4300] free_unref_page+0x94/0x280
[ 75.837236][ T4300] __vunmap+0x8ab/0xa40
[ 75.841404][ T4300] free_work+0x56/0x80
[ 75.845489][ T4300] process_one_work+0x863/0x1000
[ 75.850440][ T4300] worker_thread+0xaa8/0x12a0
[ 75.855129][ T4300] kthread+0x436/0x520
[ 75.859210][ T4300] ret_from_fork+0x1f/0x30
[ 75.863650][ T4300]
[ 75.865984][ T4300] Memory state around the buggy address:
[ 75.871626][ T4300] ffff888073aacf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 75.879700][ T4300] ffff888073aacf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 75.887767][ T4300] >ffff888073aad000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 75.895837][ T4300] ^
[ 75.901480][ T4300] ffff888073aad080: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 75.909274][ T1108] Bluetooth: hci0: command 0x040f tx timeout
[ 75.909556][ T4300] ffff888073aad100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 75.923616][ T4300] ==================================================================
[ 75.931777][ T4300] Disabling lock debugging due to kernel taint
[ 75.954036][ T4300] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 75.961281][ T4300] CPU: 1 PID: 4300 Comm: syz-executor Tainted: G B syzkaller #0
[ 75.970231][ T4300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 75.980291][ T4300] Call Trace:
[ 75.983581][ T4300]
[ 75.986526][ T4300] dump_stack_lvl+0x168/0x230
[ 75.991229][ T4300] ? show_regs_print_info+0x20/0x20
[ 75.996446][ T4300] ? load_image+0x3b0/0x3b0
[ 76.000969][ T4300] panic+0x2c9/0x7f0
[ 76.004881][ T4300] ? bpf_jit_dump+0xd0/0xd0
[ 76.009427][ T4300] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 76.015346][ T4300] ? _raw_spin_unlock+0x40/0x40
[ 76.020214][ T4300] ? jfs_readdir+0x11ca/0x3c10
[ 76.024990][ T4300] check_panic_on_warn+0x80/0xa0
[ 76.029939][ T4300] ? jfs_readdir+0x11ca/0x3c10
[ 76.034722][ T4300] end_report+0x6d/0xf0
[ 76.038914][ T4300] kasan_report+0x102/0x130
[ 76.043431][ T4300] ? jfs_readdir+0x11ca/0x3c10
[ 76.048215][ T4300] jfs_readdir+0x11ca/0x3c10
[ 76.052833][ T4300] ? dtInitRoot+0x660/0x660
[ 76.057363][ T4300] ? end_current_label_crit_section+0x14b/0x170
[ 76.063621][ T4300] ? common_file_perm+0x171/0x1c0
[ 76.068671][ T4300] iterate_dir+0x218/0x560
[ 76.073130][ T4300] __se_sys_getdents64+0xe5/0x260
[ 76.078174][ T4300] ? __x64_sys_getdents64+0x80/0x80
[ 76.083402][ T4300] ? filldir+0x720/0x720
[ 76.087660][ T4300] ? vtime_user_exit+0x2dc/0x400
[ 76.092613][ T4300] ? lockdep_hardirqs_on+0x94/0x140
[ 76.097840][ T4300] do_syscall_64+0x4c/0xa0
[ 76.102288][ T4300] ? clear_bhb_loop+0x30/0x80
[ 76.106974][ T4300] ? clear_bhb_loop+0x30/0x80
[ 76.111666][ T4300] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 76.117578][ T4300] RIP: 0033:0x7f88654570b3
[ 76.122007][ T4300] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 62 3d f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[ 76.141632][ T4300] RSP: 002b:00007ffe04fab1a8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 76.150100][ T4300] RAX: ffffffffffffffda RBX: 0000555573a81600 RCX: 00007f88654570b3
[ 76.158087][ T4300] RDX: 0000000000008000 RSI: 0000555573a81600 RDI: 0000000000000005
[ 76.166081][ T4300] RBP: 0000555573a815d4 R08: 0000000000028a41 R09: 0000000000000000
[ 76.174173][ T4300] R10: 00007f886564fcc0 R11: 0000000000000293 R12: ffffffffffffffa8
[ 76.182167][ T4300] R13: 0000000000000010 R14: 0000555573a815d0 R15: 00007ffe04fad460
[ 76.190173][ T4300]
[ 76.193554][ T4300] Kernel Offset: disabled
[ 76.197900][ T4300] Rebooting in 86400 seconds..