Warning: Permanently added '10.128.1.70' (ED25519) to the list of known hosts.
1970/01/01 00:00:26 parsed 1 programs
[   27.280127][ T6552] cgroup: Unknown subsys name 'net'
[   27.421465][ T6552] cgroup: Unknown subsys name 'cpuset'
[   27.423343][ T6552] cgroup: Unknown subsys name 'rlimit'
[   27.574642][ T6552] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SS
[   33.498958][ T6568] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   33.500832][ T6568] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   33.502214][ T6568] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   33.504089][ T6568] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   33.505477][ T6568] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   33.552629][ T6565] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   34.131601][ T6600] chnl_net:caif_netlink_parms(): no params data found
[   34.153967][ T6600] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.154166][ T6600] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.154237][ T6600] bridge_slave_0: entered allmulticast mode
[   34.154671][ T6600] bridge_slave_0: entered promiscuous mode
[   34.155646][ T6600] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.155685][ T6600] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.155725][ T6600] bridge_slave_1: entered allmulticast mode
[   34.156107][ T6600] bridge_slave_1: entered promiscuous mode
[   34.166042][ T6600] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.166836][ T6600] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.173047][ T6600] team0: Port device team_slave_0 added
[   34.173694][ T6600] team0: Port device team_slave_1 added
[   34.181777][ T6600] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.181794][ T6600] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.181805][ T6600] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.182492][ T6600] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.182500][ T6600] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.182512][ T6600] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.222700][ T6600] hsr_slave_0: entered promiscuous mode
[   34.223040][ T6600] hsr_slave_1: entered promiscuous mode
[   34.264925][ T6600] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   34.268155][ T6600] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   34.271285][ T6600] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   34.274826][ T6600] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   34.285086][ T6600] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.285130][ T6600] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.285299][ T6600] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.285331][ T6600] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.305697][ T6600] 8021q: adding VLAN 0 to HW filter on device bond0
[   34.309925][ T1923] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.311755][ T1923] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.315949][ T6600] 8021q: adding VLAN 0 to HW filter on device team0
[   34.319609][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.319655][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[   34.371431][ T1923] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.371466][ T1923] bridge0: port 2(bridge_slave_1) entered forwarding state
[   34.417061][ T6600] 8021q: adding VLAN 0 to HW filter on device batadv0
[   34.427113][ T6600] veth0_vlan: entered promiscuous mode
[   34.428632][ T6600] veth1_vlan: entered promiscuous mode
[   34.437042][ T6600] veth0_macvtap: entered promiscuous mode
[   34.437906][ T6600] veth1_macvtap: entered promiscuous mode
[   34.440932][ T6600] batman_adv: batadv0: Interface activated: batadv_slave_0
[   34.441936][ T6600] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.446258][   T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.447008][   T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.447025][   T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.447039][   T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.704264][   T42] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.744298][   T42] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.805713][   T42] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.834115][   T42] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   34.968999][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   34.969022][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   34.979344][   T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   34.980982][   T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
1970/01/01 00:00:35 executed programs: 0
[   35.201822][ T6568] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   35.202136][ T6568] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   35.202285][ T6568] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   35.202587][ T6568] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   35.202763][ T6568] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   35.249705][ T6657] chnl_net:caif_netlink_parms(): no params data found
[   35.267598][ T6657] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.267657][ T6657] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.267710][ T6657] bridge_slave_0: entered allmulticast mode
[   35.268116][ T6657] bridge_slave_0: entered promiscuous mode
[   35.268909][ T6657] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.268953][ T6657] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.269002][ T6657] bridge_slave_1: entered allmulticast mode
[   35.269410][ T6657] bridge_slave_1: entered promiscuous mode
[   35.279886][ T6657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.282115][ T6657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.288296][ T6657] team0: Port device team_slave_0 added
[   35.291776][ T6657] team0: Port device team_slave_1 added
[   35.297755][ T6657] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.297777][ T6657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.297790][ T6657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.298278][ T6657] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.298285][ T6657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.298297][ T6657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.316344][ T6657] hsr_slave_0: entered promiscuous mode
[   35.316635][ T6657] hsr_slave_1: entered promiscuous mode
[   35.316823][ T6657] debugfs: 'hsr0' already exists in 'hsr'
[   35.316863][ T6657] Cannot create hsr debugfs directory
[   37.220673][   T52] Bluetooth: hci0: command tx timeout
[   37.798675][   T42] bridge_slave_1: left allmulticast mode
[   37.799887][   T42] bridge_slave_1: left promiscuous mode
[   37.801470][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.805437][   T42] bridge_slave_0: left allmulticast mode
[   37.805455][   T42] bridge_slave_0: left promiscuous mode
[   37.807765][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.942382][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   37.971198][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   37.990882][   T42] bond0 (unregistering): Released all slaves
[   38.073689][   T42] hsr_slave_0: left promiscuous mode
[   38.074617][   T42] hsr_slave_1: left promiscuous mode
[   38.074853][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   38.074865][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[   38.075797][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   38.075808][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[   38.086490][   T42] veth1_macvtap: left promiscuous mode
[   38.086669][   T42] veth0_macvtap: left promiscuous mode
[   38.086713][   T42] veth1_vlan: left promiscuous mode
[   38.086756][   T42] veth0_vlan: left promiscuous mode
[   38.194034][   T42] team0 (unregistering): Port device team_slave_1 removed
[   38.199590][   T42] team0 (unregistering): Port device team_slave_0 removed
[   38.421330][ T6657] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   38.426065][ T6657] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   38.429229][ T6657] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   38.440166][ T6657] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   38.461700][ T6657] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.466178][ T6657] 8021q: adding VLAN 0 to HW filter on device team0
[   38.469330][ T1923] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.469362][ T1923] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.494259][ T4709] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.494293][ T4709] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.508692][ T6657] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   38.639936][ T6657] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.650034][ T6657] veth0_vlan: entered promiscuous mode
[   38.653056][ T6657] veth1_vlan: entered promiscuous mode
[   38.663984][ T6657] veth0_macvtap: entered promiscuous mode
[   38.666518][ T6657] veth1_macvtap: entered promiscuous mode
[   38.671008][ T6657] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.673747][ T6657] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.679533][ T4709] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.679662][ T4709] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.679712][ T4709] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.679733][ T4709] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.720966][ T1923] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.720993][ T1923] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.732294][ T1923] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.732320][ T1923] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.834987][ T6723] loop0: detected capacity change from 0 to 32768
[   38.835972][ T6723] =======================================================
[   38.835972][ T6723] WARNING: The mand mount option has been deprecated and
[   38.835972][ T6723]          and is ignored by this kernel. Remove the mand
[   38.835972][ T6723]          option from the mount to silence this warning.
[   38.835972][ T6723] =======================================================
[   38.852415][ T6723] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   38.869030][ T6657] ==================================================================
[   38.869042][ T6657] BUG: KASAN: slab-use-after-free in ocfs2_get_system_file_inode+0x17c/0x650
[   38.869059][ T6657] Read of size 8 at addr ffff0000c6ea7310 by task syz-executor/6657
[   38.869064][ T6657] 
[   38.869068][ T6657] CPU: 1 UID: 0 PID: 6657 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT 
[   38.869075][ T6657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   38.869079][ T6657] Call trace:
[   38.869081][ T6657]  show_stack+0x2c/0x3c (C)
[   38.869090][ T6657]  __dump_stack+0x30/0x40
[   38.869095][ T6657]  dump_stack_lvl+0xd8/0x12c
[   38.869100][ T6657]  print_address_description+0xa8/0x238
[   38.869108][ T6657]  print_report+0x68/0x84
[   38.869114][ T6657]  kasan_report+0xb0/0x110
[   38.869121][ T6657]  __asan_report_load8_noabort+0x20/0x2c
[   38.869127][ T6657]  ocfs2_get_system_file_inode+0x17c/0x650
[   38.869133][ T6657]  ocfs2_evict_inode+0x12e8/0x3bf8
[   38.869140][ T6657]  evict+0x414/0x928
[   38.869146][ T6657]  iput+0x6e4/0x83c
[   38.869150][ T6657]  vfs_rmdir+0x358/0x464
[   38.869157][ T6657]  do_rmdir+0x214/0x4c4
[   38.869164][ T6657]  __arm64_sys_unlinkat+0xc8/0xf8
[   38.869168][ T6657]  invoke_syscall+0x98/0x2b8
[   38.869174][ T6657]  el0_svc_common+0x130/0x23c
[   38.869178][ T6657]  do_el0_svc+0x48/0x58
[   38.869183][ T6657]  el0_svc+0x58/0x180
[   38.869190][ T6657]  el0t_64_sync_handler+0x84/0x12c
[   38.869196][ T6657]  el0t_64_sync+0x198/0x19c
[   38.869201][ T6657] 
[   38.869203][ T6657] Allocated by task 42:
[   38.869206][ T6657]  kasan_save_track+0x40/0x78
[   38.869212][ T6657]  kasan_save_alloc_info+0x44/0x54
[   38.869216][ T6657]  __kasan_kmalloc+0x9c/0xb4
[   38.869221][ T6657]  __kmalloc_node_track_caller_noprof+0x304/0x4d0
[   38.869227][ T6657]  kmalloc_reserve+0x124/0x268
[   38.869233][ T6657]  __alloc_skb+0x170/0x2ec
[   38.869237][ T6657]  rtmsg_ifinfo_build_skb+0x90/0x24c
[   38.869243][ T6657]  unregister_netdevice_many_notify+0x1274/0x1de0
[   38.869249][ T6657]  unregister_netdevice_many+0x28/0x38
[   38.869255][ T6657]  ops_undo_list+0x32c/0x7ec
[   38.869259][ T6657]  cleanup_net+0x3e4/0x6c0
[   38.869264][ T6657]  process_one_work+0x7e8/0x155c
[   38.869268][ T6657]  worker_thread+0x958/0xed8
[   38.869272][ T6657]  kthread+0x5fc/0x75c
[   38.869277][ T6657]  ret_from_fork+0x10/0x20
[   38.869282][ T6657] 
[   38.869283][ T6657] Freed by task 42:
[   38.869286][ T6657]  kasan_save_track+0x40/0x78
[   38.869291][ T6657]  kasan_save_free_info+0x58/0x70
[   38.869295][ T6657]  __kasan_slab_free+0x74/0x98
[   38.869300][ T6657]  kfree+0x17c/0x474
[   38.869305][ T6657]  skb_free_head+0xe4/0x198
[   38.869310][ T6657]  skb_release_data+0x4d4/0x664
[   38.869314][ T6657]  consume_skb+0xb0/0x130
[   38.869319][ T6657]  netlink_broadcast_filtered+0xfdc/0x1164
[   38.869325][ T6657]  nlmsg_notify+0xfc/0x1e0
[   38.869330][ T6657]  rtmsg_ifinfo_send+0xb8/0xec
[   38.869336][ T6657]  unregister_netdevice_many_notify+0x16a4/0x1de0
[   38.869341][ T6657]  unregister_netdevice_many+0x28/0x38
[   38.869347][ T6657]  ops_undo_list+0x32c/0x7ec
[   38.869351][ T6657]  cleanup_net+0x3e4/0x6c0
[   38.869355][ T6657]  process_one_work+0x7e8/0x155c
[   38.869359][ T6657]  worker_thread+0x958/0xed8
[   38.869363][ T6657]  kthread+0x5fc/0x75c
[   38.869368][ T6657]  ret_from_fork+0x10/0x20
[   38.869373][ T6657] 
[   38.869374][ T6657] The buggy address belongs to the object at ffff0000c6ea7000
[   38.869374][ T6657]  which belongs to the cache kmalloc-2k of size 2048
[   38.869378][ T6657] The buggy address is located 784 bytes inside of
[   38.869378][ T6657]  freed 2048-byte region [ffff0000c6ea7000, ffff0000c6ea7800)
[   38.869384][ T6657] 
[   38.869385][ T6657] The buggy address belongs to the physical page:
[   38.869389][ T6657] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106ea0
[   38.869394][ T6657] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   38.869398][ T6657] flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff)
[   38.869404][ T6657] page_type: f5(slab)
[   38.869410][ T6657] raw: 05ffc00000000040 ffff0000c0002000 dead000000000122 0000000000000000
[   38.869414][ T6657] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   38.869418][ T6657] head: 05ffc00000000040 ffff0000c0002000 dead000000000122 0000000000000000
[   38.869422][ T6657] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   38.869426][ T6657] head: 05ffc00000000003 fffffdffc31ba801 00000000ffffffff 00000000ffffffff
[   38.869430][ T6657] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[   38.869432][ T6657] page dumped because: kasan: bad access detected
[   38.869434][ T6657] 
[   38.869435][ T6657] Memory state around the buggy address:
[   38.869438][ T6657]  ffff0000c6ea7200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   38.869441][ T6657]  ffff0000c6ea7280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   38.869445][ T6657] >ffff0000c6ea7300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   38.869447][ T6657]                          ^
[   38.869450][ T6657]  ffff0000c6ea7380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   38.869453][ T6657]  ffff0000c6ea7400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   38.869455][ T6657] ==================================================================
[   38.869474][ T6657] Disabling lock debugging due to kernel taint
[   38.869491][ T6657] (syz-executor,6657,1):ocfs2_remove_inode:727 ERROR: status = -2
[   38.869498][ T6657] (syz-executor,6657,1):ocfs2_wipe_inode:897 ERROR: status = -2
[   38.869505][ T6657] (syz-executor,6657,1):ocfs2_delete_inode:1158 ERROR: status = -2
[   38.881772][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   38.965371][ T6726] loop0: detected capacity change from 0 to 32768
[   38.975033][ T6726] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   38.985440][ T6657] (syz-executor,6657,1):ocfs2_remove_inode:727 ERROR: status = -2
[   38.985460][ T6657] (syz-executor,6657,1):ocfs2_wipe_inode:897 ERROR: status = -2
[   38.985470][ T6657] (syz-executor,6657,1):ocfs2_delete_inode:1158 ERROR: status = -2
[   38.992231][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.054734][ T6729] loop0: detected capacity change from 0 to 32768
[   39.076162][ T6729] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.081408][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.082704][ T6657] (syz-executor,6657,0):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.084074][ T6657] (syz-executor,6657,0):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.090182][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.157437][ T6732] loop0: detected capacity change from 0 to 32768
[   39.170749][ T6732] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.176286][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.177678][ T6657] (syz-executor,6657,0):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.178868][ T6657] (syz-executor,6657,0):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.185993][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.236906][ T6737] loop0: detected capacity change from 0 to 32768
[   39.241101][ T6737] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.246701][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.248243][ T6657] (syz-executor,6657,0):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.249678][ T6657] (syz-executor,6657,0):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.254106][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.300803][   T52] Bluetooth: hci0: command tx timeout
[   39.306087][ T6741] loop0: detected capacity change from 0 to 32768
[   39.310610][ T6741] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.315579][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.316632][ T6657] (syz-executor,6657,1):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.316656][ T6657] (syz-executor,6657,1):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.338254][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.402725][ T6744] loop0: detected capacity change from 0 to 32768
[   39.408465][ T6744] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.414712][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.416204][ T6657] (syz-executor,6657,0):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.417382][ T6657] (syz-executor,6657,0):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.430405][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.497217][ T6747] loop0: detected capacity change from 0 to 32768
[   39.507258][ T6747] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.516732][ T6657] (syz-executor,6657,0):ocfs2_remove_inode:727 ERROR: status = -2
[   39.518184][ T6657] (syz-executor,6657,0):ocfs2_wipe_inode:897 ERROR: status = -2
[   39.519542][ T6657] (syz-executor,6657,0):ocfs2_delete_inode:1158 ERROR: status = -2
[   39.525709][ T6657] ocfs2: Unmounting device (7,0) on (node local)
[   39.598527][ T6750] loop0: detected capacity change from 0 to 32768
[   39.613078][ T6750] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   39.617828][ T6657] Unable to handle kernel paging request at virtual address dfff800000000010
[   39.617849][ T6657] KASAN: null-ptr-deref in range [0x0000000000000080-0x0000000000000087]
[   39.617859][ T6657] Mem abort info:
[   39.617872][ T6657]   ESR = 0x0000000096000005
[   39.617880][ T6657]   EC = 0x25: DABT (current EL), IL = 32 bits
[   39.617889][ T6657]   SET = 0, FnV = 0
[   39.617896][ T6657]   EA = 0, S1PTW = 0
[   39.617902][ T6657]   FSC = 0x05: level 1 translation fault
[   39.617908][ T6657] Data abort info:
[   39.617912][ T6657]   ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000
[   39.617918][ T6657]   CM = 0, WnR = 0, TnD = 0, TagAccess = 0
[   39.617924][ T6657]   GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0
[   39.617931][ T6657] [dfff800000000010] address between user and kernel address ranges
[   39.617938][ T6657] Internal error: Oops: 0000000096000005 [#1]  SMP
[   39.630425][ T6657] Modules linked in:
[   39.631058][ T6657] CPU: 0 UID: 0 PID: 6657 Comm: syz-executor Tainted: G    B               6.17.0-rc1-syzkaller-g8f5ae30d69d7 #0 PREEMPT 
[   39.633063][ T6657] Tainted: [B]=BAD_PAGE
[   39.633723][ T6657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   39.635211][ T6657] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--)
[   39.636388][ T6657] pc : do_raw_spin_lock+0x84/0x2cc
[   39.637117][ T6657] lr : _raw_spin_lock+0x50/0x60
[   39.637844][ T6657] sp : ffff80009e327040
[   39.638470][ T6657] x29: ffff80009e3270c0 x28: 0000000000000000 x27: ffff80009e327180
[   39.639658][ T6657] x26: dfff800000000000 x25: ffff700013c64e30 x24: dfff800000000000
[   39.640880][ T6657] x23: 0000000000000800 x22: ffff0000d150a690 x21: ffff0000c8bcc000
[   39.642091][ T6657] x20: 0000000000000085 x19: 0000000000000081 x18: 0000000000000000
[   39.643351][ T6657] x17: ffff0001fea8c8b0 x16: ffff8000805354d8 x15: 0000000000000001
[   39.644691][ T6657] x14: 1ffff00013c64dcc x13: 0000000000000000 x12: 0000000000000000
[   39.645977][ T6657] x11: 1ffff00013c64e0c x10: ffff80008efad53b x9 : f3f3f304f1f1f1f1
[   39.647212][ T6657] x8 : 0000000000000010 x7 : 0000000000000000 x6 : ffff800080dd7c18
[   39.648440][ T6657] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000
[   39.649685][ T6657] x2 : 0000000000000000 x1 : ffff80008b6577c0 x0 : 0000000000000081
[   39.650987][ T6657] Call trace:
[   39.651508][ T6657]  do_raw_spin_lock+0x84/0x2cc (P)
[   39.652334][ T6657]  _raw_spin_lock+0x50/0x60
[   39.653030][ T6657]  igrab+0x20/0xd8
[   39.653643][ T6657]  ocfs2_get_system_file_inode+0x188/0x650
[   39.654518][ T6657]  ocfs2_evict_inode+0x12e8/0x3bf8
[   39.655329][ T6657]  evict+0x414/0x928
[   39.655956][ T6657]  iput+0x6e4/0x83c
[   39.656568][ T6657]  vfs_rmdir+0x358/0x464
[   39.657217][ T6657]  do_rmdir+0x214/0x4c4
[   39.657796][ T6657]  __arm64_sys_unlinkat+0xc8/0xf8
[   39.658581][ T6657]  invoke_syscall+0x98/0x2b8
[   39.659305][ T6657]  el0_svc_common+0x130/0x23c
[   39.660023][ T6657]  do_el0_svc+0x48/0x58
[   39.660632][ T6657]  el0_svc+0x58/0x180
[   39.661239][ T6657]  el0t_64_sync_handler+0x84/0x12c
[   39.662058][ T6657]  el0t_64_sync+0x198/0x19c
[   39.662729][ T6657] Code: aa0003f3 f9000feb f2fe7e69 f8386969 (38f86908) 
[   39.663751][ T6657] ---[ end trace 0000000000000000 ]---
[   39.906858][ T6657] Kernel panic - not syncing: Oops: Fatal exception
[   39.907968][ T6657] SMP: stopping secondary CPUs
[   39.908777][ T6657] Kernel Offset: disabled
[   39.909462][ T6657] CPU features: 0x40000,00007800,109c1141,5427fea7
[   39.910516][ T6657] Memory Limit: none
[   40.150211][ T6657] Rebooting in 86400 seconds..