Warning: Permanently added '10.128.0.130' (ED25519) to the list of known hosts.
2025/09/10 20:02:21 parsed 1 programs
[ 54.736977][ T4189] cgroup: Unknown subsys name 'net'
[ 54.868040][ T4189] cgroup: Unknown subsys name 'rlimit'
[ 56.102446][ T4189] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 58.235125][ T4223] chnl_net:caif_netlink_parms(): no params data found
[ 58.296151][ T4223] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.304948][ T4223] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.313414][ T4223] device bridge_slave_0 entered promiscuous mode
[ 58.324114][ T4223] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.331254][ T4223] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.339673][ T4223] device bridge_slave_1 entered promiscuous mode
[ 58.368999][ T4223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 58.380345][ T4223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 58.411608][ T4223] team0: Port device team_slave_0 added
[ 58.419416][ T4223] team0: Port device team_slave_1 added
[ 58.442518][ T4223] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 58.450708][ T4223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.477872][ T4223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 58.490943][ T4223] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 58.499117][ T4223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 58.526179][ T4223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 58.565060][ T4223] device hsr_slave_0 entered promiscuous mode
[ 58.571845][ T4223] device hsr_slave_1 entered promiscuous mode
[ 58.697047][ T4223] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 58.709358][ T4223] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 58.719003][ T4223] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 58.730151][ T4223] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 58.761456][ T4223] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.768683][ T4223] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.776465][ T4223] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.783576][ T4223] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.840493][ T4223] 8021q: adding VLAN 0 to HW filter on device bond0
[ 58.855706][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 58.866661][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 58.874717][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 58.882384][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 58.895243][ T4223] 8021q: adding VLAN 0 to HW filter on device team0
[ 58.907190][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 58.916034][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 58.923122][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 58.945969][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 58.956311][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 58.963402][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 58.972447][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 58.981295][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 58.994190][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 59.004908][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 59.020212][ T4223] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 59.031404][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 59.040071][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 59.145036][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 59.152496][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 59.164644][ T4223] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 59.185898][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 59.218682][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 59.236300][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 59.250589][ T4223] device veth0_vlan entered promiscuous mode
[ 59.260122][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 59.268733][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 59.288030][ T4223] device veth1_vlan entered promiscuous mode
[ 59.309138][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 59.317865][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 59.326030][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 59.334520][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 59.346221][ T4223] device veth0_macvtap entered promiscuous mode
[ 59.356157][ T4223] device veth1_macvtap entered promiscuous mode
[ 59.370150][ T4223] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 59.377945][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 59.386381][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 59.394364][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 59.402847][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 59.413721][ T4223] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 59.424547][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 59.433476][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 59.444274][ T4223] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.453337][ T4223] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.462006][ T4223] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.471093][ T4223] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 59.557782][ T4223] syz-executor (4223) used greatest stack depth: 20800 bytes left
[ 60.308151][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.325884][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 60.343487][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 60.356128][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 60.365196][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 60.374697][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2025/09/10 20:02:29 executed programs: 0
[ 61.327031][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 61.386383][ T4289] chnl_net:caif_netlink_parms(): no params data found
[ 61.420151][ T4289] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.427718][ T4289] bridge0: port 1(bridge_slave_0) entered disabled state
[ 61.435974][ T4289] device bridge_slave_0 entered promiscuous mode
[ 61.445186][ T4289] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.452287][ T4289] bridge0: port 2(bridge_slave_1) entered disabled state
[ 61.460473][ T4289] device bridge_slave_1 entered promiscuous mode
[ 61.479464][ T4289] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 61.490197][ T4289] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 61.510907][ T4289] team0: Port device team_slave_0 added
[ 61.518388][ T4289] team0: Port device team_slave_1 added
[ 61.534589][ T4289] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 61.541545][ T4289] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.567775][ T4289] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 61.580730][ T4289] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 61.588452][ T4289] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.614506][ T4289] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 61.640794][ T4289] device hsr_slave_0 entered promiscuous mode
[ 61.648048][ T4289] device hsr_slave_1 entered promiscuous mode
[ 61.654825][ T4289] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 61.662607][ T4289] Cannot create hsr debugfs directory
[ 63.353372][ T1108] Bluetooth: hci0: command 0x0409 tx timeout
[ 64.239301][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 64.294845][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 64.349327][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 65.264508][ T4289] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 65.273397][ T4289] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 65.282271][ T4289] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 65.291442][ T4289] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 65.357830][ T4289] 8021q: adding VLAN 0 to HW filter on device bond0
[ 65.390885][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 65.398843][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 65.409196][ T4289] 8021q: adding VLAN 0 to HW filter on device team0
[ 65.418665][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 65.427640][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 65.436164][ T4304] Bluetooth: hci0: command 0x041b tx timeout
[ 65.443666][ T422] bridge0: port 1(bridge_slave_0) entered blocking state
[ 65.450734][ T422] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 65.459504][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 65.470830][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 65.479824][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 65.488249][ T154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 65.495363][ T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 65.507468][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 65.537586][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 65.549925][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 65.559314][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 65.570513][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 65.581625][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 65.590722][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 65.617548][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 65.627029][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 65.637807][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 65.646838][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 65.657212][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 65.748027][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 65.757023][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 65.777679][ T4289] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 65.794706][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 65.803895][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 65.827250][ T9] device hsr_slave_0 left promiscuous mode
[ 65.834009][ T9] device hsr_slave_1 left promiscuous mode
[ 65.840245][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 65.848146][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 65.856292][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 65.864189][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 65.872113][ T9] device bridge_slave_1 left promiscuous mode
[ 65.879386][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 65.891961][ T9] device bridge_slave_0 left promiscuous mode
[ 65.899324][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 65.915745][ T9] device veth1_macvtap left promiscuous mode
[ 65.921935][ T9] device veth0_macvtap left promiscuous mode
[ 65.928194][ T9] device veth1_vlan left promiscuous mode
[ 65.934173][ T9] device veth0_vlan left promiscuous mode
[ 66.067957][ T9] team0 (unregistering): Port device team_slave_1 removed
[ 66.079339][ T9] team0 (unregistering): Port device team_slave_0 removed
[ 66.092602][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 66.107532][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 66.155063][ T9] bond0 (unregistering): Released all slaves
[ 66.237125][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 66.245470][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 66.254058][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 66.261718][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 66.271230][ T4289] device veth0_vlan entered promiscuous mode
[ 66.283772][ T4289] device veth1_vlan entered promiscuous mode
[ 66.307301][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 66.317945][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 66.326017][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 66.335468][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 66.348168][ T4289] device veth0_macvtap entered promiscuous mode
[ 66.358012][ T4289] device veth1_macvtap entered promiscuous mode
[ 66.374448][ T4289] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 66.381815][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 66.389808][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 66.398166][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 66.407132][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 66.419880][ T4289] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 66.430592][ T4289] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.441656][ T4289] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.451577][ T4289] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.460359][ T4289] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 66.470651][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 66.479636][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 66.525694][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.535255][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.544912][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 66.562216][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.571390][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.582124][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 66.856097][ T4346] loop0: detected capacity change from 0 to 32768
[ 67.032204][ T4346] ==================================================================
[ 67.040511][ T4346] BUG: KASAN: use-after-free in jfs_readdir+0x11ca/0x3c10
[ 67.047646][ T4346] Read of size 8 at addr ffff888021b9bbd0 by task syz.0.17/4346
[ 67.055283][ T4346]
[ 67.057616][ T4346] CPU: 1 PID: 4346 Comm: syz.0.17 Not tainted syzkaller #0
[ 67.064817][ T4346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 67.074891][ T4346] Call Trace:
[ 67.078168][ T4346]
[ 67.081095][ T4346] dump_stack_lvl+0x168/0x230
[ 67.085793][ T4346] ? show_regs_print_info+0x20/0x20
[ 67.091001][ T4346] ? load_image+0x3b0/0x3b0
[ 67.095512][ T4346] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 67.100894][ T4346] ? unlock_page+0x17c/0x1f0
[ 67.105482][ T4346] print_address_description+0x60/0x2d0
[ 67.111026][ T4346] ? jfs_readdir+0x11ca/0x3c10
[ 67.115792][ T4346] kasan_report+0xdf/0x130
[ 67.120204][ T4346] ? jfs_readdir+0x11ca/0x3c10
[ 67.124965][ T4346] jfs_readdir+0x11ca/0x3c10
[ 67.129581][ T4346] ? dtInitRoot+0x660/0x660
[ 67.134089][ T4346] ? end_current_label_crit_section+0x14b/0x170
[ 67.140327][ T4346] ? common_file_perm+0x171/0x1c0
[ 67.145363][ T4346] iterate_dir+0x218/0x560
[ 67.149782][ T4346] __se_sys_getdents+0xe5/0x250
[ 67.154629][ T4346] ? __x64_sys_getdents+0x80/0x80
[ 67.159648][ T4346] ? fillonedir+0x4c0/0x4c0
[ 67.164144][ T4346] ? vtime_user_exit+0x2dc/0x400
[ 67.169083][ T4346] ? lockdep_hardirqs_on+0x94/0x140
[ 67.174279][ T4346] do_syscall_64+0x4c/0xa0
[ 67.178684][ T4346] ? clear_bhb_loop+0x30/0x80
[ 67.183379][ T4346] ? clear_bhb_loop+0x30/0x80
[ 67.188051][ T4346] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 67.194047][ T4346] RIP: 0033:0x7f5a9d3e3ba9
[ 67.198459][ T4346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 67.218053][ T4346] RSP: 002b:00007fff0bf1c6f8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 67.226465][ T4346] RAX: ffffffffffffffda RBX: 00007f5a9d62afa0 RCX: 00007f5a9d3e3ba9
[ 67.234439][ T4346] RDX: fffffffffffffd90 RSI: 0000000000000000 RDI: 0000000000000004
[ 67.242406][ T4346] RBP: 00007f5a9d466e19 R08: 0000000000000000 R09: 0000000000000000
[ 67.250369][ T4346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 67.258336][ T4346] R13: 00007f5a9d62afa0 R14: 00007f5a9d62afa0 R15: 0000000000000003
[ 67.266318][ T4346]
[ 67.269332][ T4346]
[ 67.271646][ T4346] Allocated by task 4346:
[ 67.275956][ T4346] __kasan_slab_alloc+0x9c/0xd0
[ 67.280805][ T4346] slab_post_alloc_hook+0x4c/0x380
[ 67.285911][ T4346] kmem_cache_alloc+0x100/0x290
[ 67.290767][ T4346] mempool_alloc+0x18f/0x4e0
[ 67.295354][ T4346] __get_metapage+0x5e8/0x1060
[ 67.300111][ T4346] dtSplitRoot+0x1e5/0x1510
[ 67.304602][ T4346] dtInsert+0xe20/0x57a0
[ 67.308837][ T4346] jfs_symlink+0x70f/0xe60
[ 67.313355][ T4346] vfs_symlink+0x247/0x3d0
[ 67.317773][ T4346] do_symlinkat+0x1be/0x6c0
[ 67.322269][ T4346] __x64_sys_symlink+0x7a/0x90
[ 67.327028][ T4346] do_syscall_64+0x4c/0xa0
[ 67.331440][ T4346] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 67.337326][ T4346]
[ 67.339668][ T4346] Freed by task 4346:
[ 67.343634][ T4346] kasan_set_track+0x4b/0x70
[ 67.348217][ T4346] kasan_set_free_info+0x1f/0x40
[ 67.353148][ T4346] ____kasan_slab_free+0xd5/0x110
[ 67.358176][ T4346] slab_free_freelist_hook+0xea/0x170
[ 67.363534][ T4346] kmem_cache_free+0x8f/0x210
[ 67.368201][ T4346] release_metapage+0x97b/0xe10
[ 67.373053][ T4346] jfs_readdir+0xf6f/0x3c10
[ 67.377557][ T4346] iterate_dir+0x218/0x560
[ 67.381964][ T4346] __se_sys_getdents+0xe5/0x250
[ 67.386823][ T4346] do_syscall_64+0x4c/0xa0
[ 67.391237][ T4346] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 67.397123][ T4346]
[ 67.399437][ T4346] The buggy address belongs to the object at ffff888021b9bba0
[ 67.399437][ T4346] which belongs to the cache jfs_mp of size 184
[ 67.413043][ T4346] The buggy address is located 48 bytes inside of
[ 67.413043][ T4346] 184-byte region [ffff888021b9bba0, ffff888021b9bc58)
[ 67.426221][ T4346] The buggy address belongs to the page:
[ 67.431849][ T4346] page:ffffea000086e6c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x21b9b
[ 67.442001][ T4346] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 67.449644][ T4346] raw: 00fff00000000200 0000000000000000 dead000000000122 ffff88801daa43c0
[ 67.458223][ T4346] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[ 67.466793][ T4346] page dumped because: kasan: bad access detected
[ 67.473200][ T4346] page_owner tracks the page as allocated
[ 67.478895][ T4346] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192800(GFP_NOWAIT|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4346, ts 66991114679, free_ts 66982210162
[ 67.497797][ T4346] get_page_from_freelist+0x1b77/0x1c60
[ 67.503333][ T4346] __alloc_pages+0x1e1/0x470
[ 67.507903][ T4346] new_slab+0xc0/0x4b0
[ 67.511953][ T4346] ___slab_alloc+0x81e/0xdf0
[ 67.516517][ T4346] kmem_cache_alloc+0x195/0x290
[ 67.521345][ T4346] mempool_alloc+0x18f/0x4e0
[ 67.525914][ T4346] __get_metapage+0x5e8/0x1060
[ 67.530665][ T4346] diReadSpecial+0x257/0x700
[ 67.535234][ T4346] jfs_mount+0x6f/0x860
[ 67.539368][ T4346] jfs_fill_super+0x50b/0xaf0
[ 67.544024][ T4346] mount_bdev+0x287/0x3c0
[ 67.548333][ T4346] legacy_get_tree+0xe6/0x180
[ 67.552988][ T4346] vfs_get_tree+0x88/0x270
[ 67.557389][ T4346] do_new_mount+0x24a/0xa40
[ 67.561882][ T4346] __se_sys_mount+0x2d6/0x3c0
[ 67.566536][ T4346] do_syscall_64+0x4c/0xa0
[ 67.571030][ T4346] page last free stack trace:
[ 67.575681][ T4346] free_unref_page_prepare+0x637/0x6c0
[ 67.581128][ T4346] free_unref_page+0x94/0x280
[ 67.585782][ T4346] __unfreeze_partials+0x1a5/0x200
[ 67.590875][ T4346] put_cpu_partial+0x12d/0x190
[ 67.595616][ T4346] qlist_free_all+0x35/0x90
[ 67.600101][ T4346] kasan_quarantine_reduce+0x150/0x160
[ 67.605539][ T4346] __kasan_slab_alloc+0x2f/0xd0
[ 67.610367][ T4346] slab_post_alloc_hook+0x4c/0x380
[ 67.615453][ T4346] kmem_cache_alloc+0x100/0x290
[ 67.620282][ T4346] getname_flags+0xb5/0x500
[ 67.624763][ T4346] do_sys_openat2+0xcf/0x4a0
[ 67.629330][ T4346] __x64_sys_openat+0x135/0x160
[ 67.634161][ T4346] do_syscall_64+0x4c/0xa0
[ 67.638559][ T4346] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 67.644440][ T4346]
[ 67.646746][ T4346] Memory state around the buggy address:
[ 67.652351][ T4346] ffff888021b9ba80: fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00 00
[ 67.660390][ T4346] ffff888021b9bb00: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc
[ 67.668426][ T4346] >ffff888021b9bb80: fc fc fc fc fa fb fb fb fb fb fb fb fb fb fb fb
[ 67.676459][ T4346] ^
[ 67.683109][ T4346] ffff888021b9bc00: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[ 67.691146][ T4346] ffff888021b9bc80: fc fc fc 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 67.699180][ T4346] ==================================================================
[ 67.707214][ T4346] Disabling lock debugging due to kernel taint
[ 67.715152][ T4243] Bluetooth: hci0: command 0x040f tx timeout
[ 67.717961][ T4346] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 67.728330][ T4346] CPU: 0 PID: 4346 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 67.736913][ T4346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 67.746964][ T4346] Call Trace:
[ 67.750239][ T4346]
[ 67.753164][ T4346] dump_stack_lvl+0x168/0x230
[ 67.757842][ T4346] ? show_regs_print_info+0x20/0x20
[ 67.763042][ T4346] ? load_image+0x3b0/0x3b0
[ 67.767584][ T4346] panic+0x2c9/0x7f0
[ 67.771478][ T4346] ? bpf_jit_dump+0xd0/0xd0
[ 67.775970][ T4346] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 67.781841][ T4346] ? _raw_spin_unlock+0x40/0x40
[ 67.786670][ T4346] ? jfs_readdir+0x11ca/0x3c10
[ 67.791414][ T4346] check_panic_on_warn+0x80/0xa0
[ 67.796327][ T4346] ? jfs_readdir+0x11ca/0x3c10
[ 67.801090][ T4346] end_report+0x6d/0xf0
[ 67.805219][ T4346] kasan_report+0x102/0x130
[ 67.809708][ T4346] ? jfs_readdir+0x11ca/0x3c10
[ 67.814447][ T4346] jfs_readdir+0x11ca/0x3c10
[ 67.819034][ T4346] ? dtInitRoot+0x660/0x660
[ 67.823532][ T4346] ? end_current_label_crit_section+0x14b/0x170
[ 67.829764][ T4346] ? common_file_perm+0x171/0x1c0
[ 67.834772][ T4346] iterate_dir+0x218/0x560
[ 67.839167][ T4346] __se_sys_getdents+0xe5/0x250
[ 67.844000][ T4346] ? __x64_sys_getdents+0x80/0x80
[ 67.849007][ T4346] ? fillonedir+0x4c0/0x4c0
[ 67.853484][ T4346] ? vtime_user_exit+0x2dc/0x400
[ 67.858398][ T4346] ? lockdep_hardirqs_on+0x94/0x140
[ 67.863583][ T4346] do_syscall_64+0x4c/0xa0
[ 67.867981][ T4346] ? clear_bhb_loop+0x30/0x80
[ 67.872648][ T4346] ? clear_bhb_loop+0x30/0x80
[ 67.877298][ T4346] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 67.883168][ T4346] RIP: 0033:0x7f5a9d3e3ba9
[ 67.887564][ T4346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 67.907162][ T4346] RSP: 002b:00007fff0bf1c6f8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 67.915555][ T4346] RAX: ffffffffffffffda RBX: 00007f5a9d62afa0 RCX: 00007f5a9d3e3ba9
[ 67.923504][ T4346] RDX: fffffffffffffd90 RSI: 0000000000000000 RDI: 0000000000000004
[ 67.931451][ T4346] RBP: 00007f5a9d466e19 R08: 0000000000000000 R09: 0000000000000000
[ 67.939397][ T4346] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 67.947344][ T4346] R13: 00007f5a9d62afa0 R14: 00007f5a9d62afa0 R15: 0000000000000003
[ 67.955308][ T4346]
[ 67.958533][ T4346] Kernel Offset: disabled
[ 67.962845][ T4346] Rebooting in 86400 seconds..