Warning: Permanently added '[localhost]:9610' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
[ 70.867697][ T5308] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 70.906692][ T5314] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 70.910215][ T5314] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 70.913308][ T5314] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 70.917229][ T5314] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 70.920347][ T5314] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 70.923387][ T5314] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 71.025131][ T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 71.028101][ T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 71.053756][ T3030] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 71.057011][ T3030] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[ 71.141949][ T5318] loop0: detected capacity change from 0 to 4096
[ 71.158814][ T5318] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
executing program
[ 71.278058][ T5319] loop0: detected capacity change from 0 to 4096
[ 71.285341][ T5319] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
executing program
[ 71.395930][ T5320] loop0: detected capacity change from 0 to 4096
[ 71.405442][ T5320] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
executing program
[ 71.513358][ T5321] loop0: detected capacity change from 0 to 4096
[ 71.523926][ T5321] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
executing program
[ 71.634200][ T5322] loop0: detected capacity change from 0 to 4096
[ 71.645372][ T5322] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 71.675410][ T54] ==================================================================
[ 71.678326][ T54] BUG: KASAN: stack-out-of-bounds in end_buffer_read_sync+0xc1/0xd0
[ 71.681277][ T54] Write of size 4 at addr ffffc9000cf1e340 by task kworker/u4:4/54
[ 71.685191][ T54]
[ 71.686027][ T54] CPU: 0 UID: 0 PID: 54 Comm: kworker/u4:4 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[ 71.689725][ T54] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 71.693738][ T54] Workqueue: loop0 loop_rootcg_workfn
[ 71.695693][ T54] Call Trace:
[ 71.696968][ T54]
[ 71.698125][ T54] dump_stack_lvl+0x241/0x360
[ 71.699937][ T54] ? __pfx_dump_stack_lvl+0x10/0x10
[ 71.701943][ T54] ? __pfx__printk+0x10/0x10
[ 71.703637][ T54] ? _printk+0xd5/0x120
[ 71.705196][ T54] print_report+0x169/0x550
[ 71.706928][ T54] ? wake_bit_function+0xee/0x220
[ 71.708780][ T54] ? __virt_addr_valid+0xbd/0x530
[ 71.710583][ T54] ? end_buffer_read_sync+0xc1/0xd0
[ 71.712376][ T54] kasan_report+0x143/0x180
[ 71.714053][ T54] ? end_buffer_read_sync+0xc1/0xd0
[ 71.715983][ T54] kasan_check_range+0x282/0x290
[ 71.717821][ T54] ? __pfx_end_buffer_read_sync+0x10/0x10
[ 71.719827][ T54] end_buffer_read_sync+0xc1/0xd0
[ 71.721506][ T54] end_bio_bh_io_sync+0xbf/0x120
[ 71.723159][ T54] blk_update_request+0x5e5/0x1160
[ 71.725004][ T54] blk_mq_end_request+0x3e/0x70
[ 71.726846][ T54] loop_process_work+0x1c10/0x2170
[ 71.728717][ T54] ? __pfx_loop_process_work+0x10/0x10
[ 71.730827][ T54] ? register_lock_class+0x102/0x980
[ 71.732771][ T54] ? __pfx_register_lock_class+0x10/0x10
[ 71.734891][ T54] ? mark_lock+0x9a/0x360
[ 71.736539][ T54] ? debug_object_deactivate+0x2d5/0x390
[ 71.738619][ T54] ? __lock_acquire+0x1384/0x2050
[ 71.740625][ T54] ? __pfx_lock_acquire+0x10/0x10
[ 71.742581][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 71.744811][ T54] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.747097][ T54] ? process_scheduled_works+0x976/0x1850
[ 71.749185][ T54] process_scheduled_works+0xa63/0x1850
[ 71.751262][ T54] ? __pfx_process_scheduled_works+0x10/0x10
[ 71.753560][ T54] ? assign_work+0x364/0x3d0
[ 71.755318][ T54] worker_thread+0x870/0xd30
[ 71.757042][ T54] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 71.759169][ T54] ? __kthread_parkme+0x169/0x1d0
[ 71.761055][ T54] ? __pfx_worker_thread+0x10/0x10
[ 71.762886][ T54] kthread+0x2f0/0x390
[ 71.764390][ T54] ? __pfx_worker_thread+0x10/0x10
[ 71.766257][ T54] ? __pfx_kthread+0x10/0x10
[ 71.767960][ T54] ret_from_fork+0x4b/0x80
[ 71.769589][ T54] ? __pfx_kthread+0x10/0x10
[ 71.771269][ T54] ret_from_fork_asm+0x1a/0x30
[ 71.773037][ T54]
[ 71.774189][ T54]
[ 71.775190][ T54] The buggy address belongs to the virtual mapping at
[ 71.775190][ T54] [ffffc9000cf18000, ffffc9000cf21000) created by:
[ 71.775190][ T54] copy_process+0x5d1/0x3d50
[ 71.781456][ T54]
[ 71.782344][ T54] The buggy address belongs to the physical page:
[ 71.784734][ T54] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4495f
[ 71.787817][ T54] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 71.790414][ T54] raw: 04fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 71.793574][ T54] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[ 71.796677][ T54] page dumped because: kasan: bad access detected
[ 71.798908][ T54] page_owner tracks the page as allocated
[ 71.801005][ T54] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), pid 5311, tgid 5311 (syz-executor219), ts 71084718810, free_ts 64932015657
[ 71.807748][ T54] post_alloc_hook+0x1f3/0x230
[ 71.809497][ T54] get_page_from_freelist+0x303f/0x3190
[ 71.811395][ T54] __alloc_pages_noprof+0x292/0x710
[ 71.813202][ T54] alloc_pages_mpol_noprof+0x3e8/0x680
[ 71.815089][ T54] __vmalloc_node_range_noprof+0xa2b/0x13f0
[ 71.817120][ T54] dup_task_struct+0x444/0x8c0
[ 71.818780][ T54] copy_process+0x5d1/0x3d50
[ 71.820351][ T54] kernel_clone+0x226/0x8f0
[ 71.822046][ T54] __x64_sys_clone+0x258/0x2a0
[ 71.823817][ T54] do_syscall_64+0xf3/0x230
[ 71.825560][ T54] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.827844][ T54] page last free pid 5294 tgid 5294 stack trace:
[ 71.830135][ T54] free_unref_page+0xcfb/0xf20
[ 71.831867][ T54] skb_release_data+0x6dc/0x8a0
[ 71.833682][ T54] kfree_skb_list_reason+0x2ee/0x750
[ 71.835581][ T54] skb_release_data+0x5cc/0x8a0
[ 71.837421][ T54] skb_attempt_defer_free+0x42f/0x5c0
[ 71.839312][ T54] tcp_recvmsg_locked+0x2995/0x3c80
[ 71.841238][ T54] tcp_recvmsg+0x25d/0x920
[ 71.842874][ T54] inet_recvmsg+0x150/0x2d0
[ 71.844587][ T54] sock_recvmsg+0x1ae/0x280
[ 71.846359][ T54] sock_read_iter+0x2c4/0x3d0
[ 71.848197][ T54] vfs_read+0x991/0xb70
[ 71.849750][ T54] ksys_read+0x183/0x2b0
[ 71.851326][ T54] do_syscall_64+0xf3/0x230
[ 71.853109][ T54] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 71.855325][ T54]
[ 71.856276][ T54] Memory state around the buggy address:
[ 71.858412][ T54] ffffc9000cf1e200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 71.862064][ T54] ffffc9000cf1e280: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 f2
[ 71.865194][ T54] >ffffc9000cf1e300: f2 f2 f2 f2 04 f2 00 f2 f2 f2 00 00 f3 f3 f3 f3
[ 71.868339][ T54] ^
[ 71.870600][ T54] ffffc9000cf1e380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 71.873453][ T54] ffffc9000cf1e400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 71.876379][ T54] ==================================================================
[ 71.887849][ T54] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 71.890666][ T54] CPU: 0 UID: 0 PID: 54 Comm: kworker/u4:4 Not tainted 6.12.0-rc5-syzkaller-00308-g3e5e6c9900c3 #0
[ 71.894578][ T54] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 71.898211][ T54] Workqueue: loop0 loop_rootcg_workfn
[ 71.900119][ T54] Call Trace:
[ 71.901300][ T54]
[ 71.902514][ T54] dump_stack_lvl+0x241/0x360
[ 71.904259][ T54] ? __pfx_dump_stack_lvl+0x10/0x10
[ 71.906190][ T54] ? __pfx__printk+0x10/0x10
[ 71.907920][ T54] ? preempt_schedule+0xe1/0xf0
[ 71.909742][ T54] ? vscnprintf+0x5d/0x90
[ 71.911372][ T54] panic+0x349/0x880
[ 71.912887][ T54] ? check_panic_on_warn+0x21/0xb0
[ 71.914772][ T54] ? __pfx_panic+0x10/0x10
[ 71.916428][ T54] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 71.918631][ T54] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 71.920955][ T54] ? print_report+0x502/0x550
[ 71.922675][ T54] check_panic_on_warn+0x86/0xb0
[ 71.924458][ T54] ? end_buffer_read_sync+0xc1/0xd0
[ 71.926374][ T54] end_report+0x77/0x160
[ 71.927908][ T54] kasan_report+0x154/0x180
[ 71.929633][ T54] ? end_buffer_read_sync+0xc1/0xd0
[ 71.931486][ T54] kasan_check_range+0x282/0x290
[ 71.933356][ T54] ? __pfx_end_buffer_read_sync+0x10/0x10
[ 71.935522][ T54] end_buffer_read_sync+0xc1/0xd0
[ 71.937645][ T54] end_bio_bh_io_sync+0xbf/0x120
[ 71.939429][ T54] blk_update_request+0x5e5/0x1160
[ 71.941447][ T54] blk_mq_end_request+0x3e/0x70
[ 71.943229][ T54] loop_process_work+0x1c10/0x2170
[ 71.945188][ T54] ? __pfx_loop_process_work+0x10/0x10
[ 71.947115][ T54] ? register_lock_class+0x102/0x980
[ 71.949037][ T54] ? __pfx_register_lock_class+0x10/0x10
[ 71.951096][ T54] ? mark_lock+0x9a/0x360
[ 71.952691][ T54] ? debug_object_deactivate+0x2d5/0x390
[ 71.954786][ T54] ? __lock_acquire+0x1384/0x2050
[ 71.956781][ T54] ? __pfx_lock_acquire+0x10/0x10
[ 71.958557][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 71.960678][ T54] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 71.962965][ T54] ? process_scheduled_works+0x976/0x1850
[ 71.965162][ T54] process_scheduled_works+0xa63/0x1850
[ 71.967108][ T54] ? __pfx_process_scheduled_works+0x10/0x10
[ 71.969209][ T54] ? assign_work+0x364/0x3d0
[ 71.970807][ T54] worker_thread+0x870/0xd30
[ 71.972517][ T54] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 71.974781][ T54] ? __kthread_parkme+0x169/0x1d0
[ 71.976612][ T54] ? __pfx_worker_thread+0x10/0x10
[ 71.978562][ T54] kthread+0x2f0/0x390
[ 71.980068][ T54] ? __pfx_worker_thread+0x10/0x10
[ 71.981959][ T54] ? __pfx_kthread+0x10/0x10
[ 71.983640][ T54] ret_from_fork+0x4b/0x80
[ 71.985313][ T54] ? __pfx_kthread+0x10/0x10
[ 71.987040][ T54] ret_from_fork_asm+0x1a/0x30
[ 71.988827][ T54]
[ 71.990186][ T54] Kernel Offset: disabled
[ 71.991724][ T54] Rebooting in 86400 seconds..
VM DIAGNOSIS:
12:34:06 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000061 RBX=ffffffff9a719ec0 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc90000e26db0
R8 =ffffffff854adacb R9 =1ffff110067af046 R10=dffffc0000000000 R11=ffffffff854ada80
R12=dffffc0000000000 R13=ffffffff9a414f0b R14=0000000000000061 R15=00000000000003f8
RIP=ffffffff854adafe RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88801fc00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000088 CR3=000000003ef28000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000ffffff80 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323 2323232323232323 2323232323232323
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0032656c69662f2e
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0011464f4a450c0d
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000