no interfaces have a carrier
[   63.118617][ T5460] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.124908][ T5460] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting crond: OK
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.37' (ED25519) to the list of known hosts.
syzkaller login: [   91.967100][    T9] cfg80211: failed to load regulatory.db
2026/04/10 08:10:25 parsed 1 programs
[   96.467794][ T5802] cgroup: Unknown subsys name 'net'
[   96.709030][ T5802] cgroup: Unknown subsys name 'cpuset'
[   96.743444][ T5802] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   98.769173][ T5802] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  101.923591][ T5815] chnl_net:caif_netlink_parms(): no params data found
[  102.041115][ T5815] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.042409][ T5815] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.044566][ T5815] bridge_slave_0: entered allmulticast mode
[  102.052601][ T5815] bridge_slave_0: entered promiscuous mode
[  102.070873][ T5815] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.071013][ T5815] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.071185][ T5815] bridge_slave_1: entered allmulticast mode
[  102.077938][ T5815] bridge_slave_1: entered promiscuous mode
[  102.129350][ T5815] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  102.132586][ T5815] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  102.177217][ T5815] team0: Port device team_slave_0 added
[  102.180005][ T5815] team0: Port device team_slave_1 added
[  102.220127][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_0
[  102.220141][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.220160][ T5815] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  102.227446][ T5815] batman_adv: batadv0: Adding interface: batadv_slave_1
[  102.227491][ T5815] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  102.227565][ T5815] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.345320][ T5815] hsr_slave_0: entered promiscuous mode
[  102.346421][ T5815] hsr_slave_1: entered promiscuous mode
[  102.585388][ T5815] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  102.631100][ T5815] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  102.647562][ T5815] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  102.687287][ T5815] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  102.741505][ T5815] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.742158][ T5815] bridge0: port 2(bridge_slave_1) entered forwarding state
[  102.748455][ T5815] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.748882][ T5815] bridge0: port 1(bridge_slave_0) entered forwarding state
[  102.838481][ T5815] 8021q: adding VLAN 0 to HW filter on device bond0
[  102.894156][ T1488] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.933202][ T1488] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.121321][ T5815] 8021q: adding VLAN 0 to HW filter on device team0
[  103.137266][ T1420] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.137526][ T1420] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.149885][ T1488] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.167666][ T1488] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.401267][ T5815] 8021q: adding VLAN 0 to HW filter on device batadv0
[  103.455364][ T5815] veth0_vlan: entered promiscuous mode
[  103.462524][ T5815] veth1_vlan: entered promiscuous mode
[  103.509689][ T5815] veth0_macvtap: entered promiscuous mode
[  103.520081][ T5815] veth1_macvtap: entered promiscuous mode
[  103.541712][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_0
[  103.562002][ T5815] batman_adv: batadv0: Interface activated: batadv_slave_1
[  103.585038][ T1420] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.586610][ T1420] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.587539][ T1420] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.588142][ T1420] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.418388][   T68] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.626394][   T68] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.015609][   T68] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.912385][   T68] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.520958][   T68] bridge_slave_1: left allmulticast mode
[  106.521051][   T68] bridge_slave_1: left promiscuous mode
[  106.522253][   T68] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.624940][   T68] bridge_slave_0: left allmulticast mode
[  106.624981][   T68] bridge_slave_0: left promiscuous mode
[  106.625255][   T68] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.293696][   T68] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.373566][   T68] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  107.396484][   T68] bond0 (unregistering): Released all slaves
[  107.773736][   T68] hsr_slave_0: left promiscuous mode
[  107.814155][   T68] hsr_slave_1: left promiscuous mode
[  107.815178][   T68] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  107.815229][   T68] batman_adv: batadv0: Removing interface: batadv_slave_0
[  107.865068][   T68] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  107.865100][   T68] batman_adv: batadv0: Removing interface: batadv_slave_1
[  107.966552][   T68] veth1_macvtap: left promiscuous mode
[  107.966690][   T68] veth0_macvtap: left promiscuous mode
[  107.966878][   T68] veth1_vlan: left promiscuous mode
[  107.967053][   T68] veth0_vlan: left promiscuous mode
[  108.710298][   T68] team0 (unregistering): Port device team_slave_1 removed
[  108.768991][   T68] team0 (unregistering): Port device team_slave_0 removed
[  109.995533][ T5115] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  110.001337][ T5115] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  110.002516][ T5115] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  110.026448][ T5115] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  110.029443][ T5115] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  111.895679][ T1488] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.895711][ T1488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.993170][ T1488] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.993193][ T1488] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/10 08:10:47 executed programs: 0
[  114.676022][ T5115] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  114.679412][ T5115] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  114.680686][ T5115] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  114.692583][ T5115] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  114.707065][ T5115] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  115.540638][ T5976] chnl_net:caif_netlink_parms(): no params data found
[  115.777717][ T5976] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.777929][ T5976] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.778100][ T5976] bridge_slave_0: entered allmulticast mode
[  115.780769][ T5976] bridge_slave_0: entered promiscuous mode
[  115.791618][ T5976] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.791888][ T5976] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.792072][ T5976] bridge_slave_1: entered allmulticast mode
[  115.800166][ T5976] bridge_slave_1: entered promiscuous mode
[  115.876258][ T5976] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.881324][ T5976] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.928746][ T5976] team0: Port device team_slave_0 added
[  115.931300][ T5976] team0: Port device team_slave_1 added
[  115.970184][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.970198][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  115.970217][ T5976] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.971829][ T5976] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.971840][ T5976] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  115.971858][ T5976] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  116.099165][ T5976] hsr_slave_0: entered promiscuous mode
[  116.100092][ T5976] hsr_slave_1: entered promiscuous mode
[  116.764722][   T60] Bluetooth: hci0: command tx timeout
[  118.034966][ T5976] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  118.068366][ T5976] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  118.110634][ T5976] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  118.149987][ T5976] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  118.323408][ T5976] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.361899][ T5976] 8021q: adding VLAN 0 to HW filter on device team0
[  118.386495][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.386623][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.409139][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.409437][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.769002][ T5976] 8021q: adding VLAN 0 to HW filter on device batadv0
[  118.844785][   T60] Bluetooth: hci0: command tx timeout
[  118.857057][ T5976] veth0_vlan: entered promiscuous mode
[  118.875425][ T5976] veth1_vlan: entered promiscuous mode
[  118.954976][ T5976] veth0_macvtap: entered promiscuous mode
[  118.961031][ T5976] veth1_macvtap: entered promiscuous mode
[  118.995457][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_0
[  119.013067][ T5976] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.037140][   T68] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.037695][   T68] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.038138][   T68] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.038697][   T68] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.310226][ T1488] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.310250][ T1488] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.400912][   T44] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.400936][   T44] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.619969][ T6063] loop0: detected capacity change from 0 to 128
[  119.638580][ T6063] =======================================================
[  119.638580][ T6063] WARNING: The mand mount option has been deprecated and
[  119.638580][ T6063]          and is ignored by this kernel. Remove the mand
[  119.638580][ T6063]          option from the mount to silence this warning.
[  119.638580][ T6063] =======================================================
[  119.700826][ T6063] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  119.700991][ T6063] hpfs: filesystem error: improperly stopped
[  119.701007][ T6063] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  119.701022][ T6063] hpfs: You really don't want any checks? You are crazy...
[  119.701577][ T6063] hpfs: hpfs_map_sector(): read error
[  119.701588][ T6063] hpfs: code page support is disabled
[  119.702573][ T6063] hpfs: hpfs_map_sector(): read error
[  119.702608][ T6063] hpfs: hpfs_map_sector(): read error
[  119.702630][ T6063] hpfs: hpfs_map_sector(): read error
[  119.702650][ T6063] hpfs: hpfs_map_sector(): read error
[  119.702672][ T6063] hpfs: hpfs_map_4sectors(): unaligned read
[  119.711241][ T6063] hpfs: hpfs_map_4sectors(): unaligned read
[  119.711294][ T6063] hpfs: filesystem error: unable to find root dir
2026/04/10 08:10:52 executed programs: 3
[  119.887309][ T6067] loop0: detected capacity change from 0 to 128
[  119.902934][ T6067] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  119.902988][ T6067] hpfs: filesystem error: improperly stopped
[  119.903003][ T6067] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  119.903015][ T6067] hpfs: You really don't want any checks? You are crazy...
[  119.903475][ T6067] hpfs: hpfs_map_sector(): read error
[  119.903486][ T6067] hpfs: code page support is disabled
[  119.903912][ T6067] ==================================================================
[  119.903925][ T6067] BUG: KASAN: use-after-free in strcmp+0x6b/0xc0
[  119.903968][ T6067] Read of size 1 at addr ffff888056294160 by task syz.0.18/6067
[  119.903985][ T6067] 
[  119.904014][ T6067] CPU: 0 UID: 0 PID: 6067 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  119.904062][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  119.904092][ T6067] Call Trace:
[  119.904101][ T6067]  <TASK>
[  119.904110][ T6067]  dump_stack_lvl+0xe8/0x150
[  119.904151][ T6067]  print_report+0xba/0x230
[  119.904186][ T6067]  ? strcmp+0x6b/0xc0
[  119.904210][ T6067]  kasan_report+0x117/0x150
[  119.904233][ T6067]  ? strcmp+0x6b/0xc0
[  119.904261][ T6067]  strcmp+0x6b/0xc0
[  119.904286][ T6067]  hpfs_get_ea+0x134/0xee0
[  119.904314][ T6067]  ? out_of_line_wait_on_bit+0x13b/0x190
[  119.904340][ T6067]  ? __pfx_bit_wait_io+0x10/0x10
[  119.904364][ T6067]  ? __pfx_hpfs_get_ea+0x10/0x10
[  119.904388][ T6067]  ? __pfx_wake_bit_function+0x10/0x10
[  119.904421][ T6067]  ? __bread_gfp+0x260/0x3b0
[  119.904442][ T6067]  ? __bread_gfp+0x2ff/0x3b0
[  119.904462][ T6067]  ? hpfs_map_sector+0x167/0x3a0
[  119.904486][ T6067]  ? hpfs_map_fnode+0x27e/0x6a0
[  119.904513][ T6067]  ? set_normalized_timespec64+0xf0/0x1a0
[  119.904551][ T6067]  hpfs_read_inode+0x1a6/0x1050
[  119.904581][ T6067]  ? __pfx_hpfs_read_inode+0x10/0x10
[  119.904608][ T6067]  ? inode_set_ctime_to_ts+0x116/0x310
[  119.904629][ T6067]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  119.904651][ T6067]  ? rt_spin_unlock+0x160/0x200
[  119.904686][ T6067]  ? hpfs_init_inode+0x216/0x350
[  119.904714][ T6067]  hpfs_fill_super+0x123d/0x1fa0
[  119.904755][ T6067]  ? __pfx_hpfs_fill_super+0x10/0x10
[  119.904787][ T6067]  ? __pfx_snprintf+0x10/0x10
[  119.904817][ T6067]  ? set_blocksize+0x1c8/0x3d0
[  119.904841][ T6067]  ? rt_spin_unlock+0x14f/0x200
[  119.904874][ T6067]  ? sb_set_blocksize+0x11b/0x210
[  119.904901][ T6067]  ? setup_bdev_super+0x4c1/0x5b0
[  119.904935][ T6067]  get_tree_bdev_flags+0x431/0x4f0
[  119.904968][ T6067]  ? __pfx_hpfs_fill_super+0x10/0x10
[  119.904999][ T6067]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  119.905032][ T6067]  ? cap_capable+0x123/0x490
[  119.905054][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  119.905081][ T6067]  vfs_get_tree+0x92/0x2a0
[  119.905101][ T6067]  do_new_mount+0x341/0xd30
[  119.905127][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  119.905160][ T6067]  ? __pfx_do_new_mount+0x10/0x10
[  119.905186][ T6067]  ? ns_capable+0x89/0xe0
[  119.905229][ T6067]  ? user_path_at+0xd4/0x160
[  119.905260][ T6067]  __se_sys_mount+0x31d/0x420
[  119.905302][ T6067]  ? __pfx___se_sys_mount+0x10/0x10
[  119.905332][ T6067]  ? __x64_sys_mount+0x20/0xc0
[  119.905361][ T6067]  do_syscall_64+0x14d/0xf80
[  119.905384][ T6067]  ? trace_irq_disable+0x3b/0x150
[  119.905416][ T6067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.905438][ T6067]  ? clear_bhb_loop+0x40/0x90
[  119.905463][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.905484][ T6067] RIP: 0033:0x7f85491cda8a
[  119.905511][ T6067] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  119.905529][ T6067] RSP: 002b:00007ffdad1d57f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  119.905552][ T6067] RAX: ffffffffffffffda RBX: 00007ffdad1d5880 RCX: 00007f85491cda8a
[  119.905567][ T6067] RDX: 0000200000000100 RSI: 0000200000000040 RDI: 00007ffdad1d5840
[  119.905582][ T6067] RBP: 0000200000000100 R08: 00007ffdad1d5880 R09: 0000000003200041
[  119.905596][ T6067] R10: 0000000003200041 R11: 0000000000000246 R12: 0000200000000040
[  119.905609][ T6067] R13: 00007ffdad1d5840 R14: 0000000000009e15 R15: 000020000000a040
[  119.905633][ T6067]  </TASK>
[  119.905641][ T6067] 
[  119.905646][ T6067] The buggy address belongs to the physical page:
[  119.905661][ T6067] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2 pfn:0x56294
[  119.905680][ T6067] flags: 0x80000000000000(node=0|zone=1)
[  119.905709][ T6067] raw: 0080000000000000 ffffea00012904c8 ffffea000128fd08 0000000000000000
[  119.905725][ T6067] raw: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000
[  119.905735][ T6067] page dumped because: kasan: bad access detected
[  119.905749][ T6067] page_owner tracks the page as freed
[  119.905756][ T6067] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 5987, tgid 5987 (sed), ts 116607188650, free_ts 116645826510
[  119.905788][ T6067]  post_alloc_hook+0x231/0x280
[  119.905820][ T6067]  get_page_from_freelist+0x28bb/0x2950
[  119.905842][ T6067]  __alloc_frozen_pages_noprof+0x18d/0x380
[  119.905862][ T6067]  alloc_pages_mpol+0xd1/0x380
[  119.905880][ T6067]  vma_alloc_folio_noprof+0xea/0x290
[  119.905899][ T6067]  do_wp_page+0x127a/0x49d0
[  119.905926][ T6067]  handle_mm_fault+0x9f5/0x13c0
[  119.905953][ T6067]  do_user_addr_fault+0xa73/0x1340
[  119.905979][ T6067]  exc_page_fault+0x6a/0xc0
[  119.905998][ T6067]  asm_exc_page_fault+0x26/0x30
[  119.906016][ T6067] page last free pid 5987 tgid 5987 stack trace:
[  119.906027][ T6067]  free_unref_folios+0xe7b/0x1c70
[  119.906044][ T6067]  folios_put_refs+0x56f/0x680
[  119.906062][ T6067]  free_pages_and_swap_cache+0x537/0x5b0
[  119.906087][ T6067]  tlb_flush_mmu+0x6d3/0xa30
[  119.906105][ T6067]  tlb_finish_mmu+0xf9/0x230
[  119.906124][ T6067]  exit_mmap+0x498/0xa10
[  119.906147][ T6067]  __mmput+0xcb/0x3d0
[  119.906171][ T6067]  exit_mm+0x168/0x220
[  119.906189][ T6067]  do_exit+0x6a2/0x23c0
[  119.906207][ T6067]  do_group_exit+0x21b/0x2d0
[  119.906226][ T6067]  __x64_sys_exit_group+0x3f/0x40
[  119.906245][ T6067]  x64_sys_call+0x221a/0x2240
[  119.906263][ T6067]  do_syscall_64+0x14d/0xf80
[  119.906284][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.906303][ T6067] 
[  119.906308][ T6067] Memory state around the buggy address:
[  119.906319][ T6067]  ffff888056294000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  119.906332][ T6067]  ffff888056294080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  119.906346][ T6067] >ffff888056294100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  119.906357][ T6067]                                                        ^
[  119.906367][ T6067]  ffff888056294180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  119.906381][ T6067]  ffff888056294200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  119.906391][ T6067] ==================================================================
[  119.906413][ T6067] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  119.906429][ T6067] CPU: 0 UID: 0 PID: 6067 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  119.906451][ T6067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  119.906464][ T6067] Call Trace:
[  119.906471][ T6067]  <TASK>
[  119.906479][ T6067]  vpanic+0x56c/0xa60
[  119.906513][ T6067]  ? __pfx_vpanic+0x10/0x10
[  119.906551][ T6067]  panic+0xc5/0xd0
[  119.906583][ T6067]  ? __pfx_panic+0x10/0x10
[  119.906614][ T6067]  ? strcmp+0x6b/0xc0
[  119.906638][ T6067]  ? rcu_is_watching+0x15/0xb0
[  119.906666][ T6067]  ? strcmp+0x6b/0xc0
[  119.906690][ T6067]  check_panic_on_warn+0x89/0xb0
[  119.906715][ T6067]  ? strcmp+0x6b/0xc0
[  119.906739][ T6067]  end_report+0x73/0x180
[  119.906760][ T6067]  ? strcmp+0x6b/0xc0
[  119.906783][ T6067]  kasan_report+0x128/0x150
[  119.906805][ T6067]  ? strcmp+0x6b/0xc0
[  119.906835][ T6067]  strcmp+0x6b/0xc0
[  119.906862][ T6067]  hpfs_get_ea+0x134/0xee0
[  119.906889][ T6067]  ? out_of_line_wait_on_bit+0x13b/0x190
[  119.906915][ T6067]  ? __pfx_bit_wait_io+0x10/0x10
[  119.906940][ T6067]  ? __pfx_hpfs_get_ea+0x10/0x10
[  119.906966][ T6067]  ? __pfx_wake_bit_function+0x10/0x10
[  119.907001][ T6067]  ? __bread_gfp+0x260/0x3b0
[  119.907022][ T6067]  ? __bread_gfp+0x2ff/0x3b0
[  119.907043][ T6067]  ? hpfs_map_sector+0x167/0x3a0
[  119.907068][ T6067]  ? hpfs_map_fnode+0x27e/0x6a0
[  119.907101][ T6067]  ? set_normalized_timespec64+0xf0/0x1a0
[  119.907144][ T6067]  hpfs_read_inode+0x1a6/0x1050
[  119.907174][ T6067]  ? __pfx_hpfs_read_inode+0x10/0x10
[  119.907201][ T6067]  ? inode_set_ctime_to_ts+0x116/0x310
[  119.907221][ T6067]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  119.907243][ T6067]  ? rt_spin_unlock+0x160/0x200
[  119.907277][ T6067]  ? hpfs_init_inode+0x216/0x350
[  119.907306][ T6067]  hpfs_fill_super+0x123d/0x1fa0
[  119.907349][ T6067]  ? __pfx_hpfs_fill_super+0x10/0x10
[  119.907382][ T6067]  ? __pfx_snprintf+0x10/0x10
[  119.907414][ T6067]  ? set_blocksize+0x1c8/0x3d0
[  119.907436][ T6067]  ? rt_spin_unlock+0x14f/0x200
[  119.907470][ T6067]  ? sb_set_blocksize+0x11b/0x210
[  119.907495][ T6067]  ? setup_bdev_super+0x4c1/0x5b0
[  119.907529][ T6067]  get_tree_bdev_flags+0x431/0x4f0
[  119.907563][ T6067]  ? __pfx_hpfs_fill_super+0x10/0x10
[  119.907594][ T6067]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  119.907626][ T6067]  ? cap_capable+0x123/0x490
[  119.907647][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  119.907672][ T6067]  vfs_get_tree+0x92/0x2a0
[  119.907692][ T6067]  do_new_mount+0x341/0xd30
[  119.907717][ T6067]  ? safesetid_security_capable+0xa9/0x1a0
[  119.907740][ T6067]  ? __pfx_do_new_mount+0x10/0x10
[  119.907767][ T6067]  ? ns_capable+0x89/0xe0
[  119.907801][ T6067]  ? user_path_at+0xd4/0x160
[  119.907833][ T6067]  __se_sys_mount+0x31d/0x420
[  119.907864][ T6067]  ? __pfx___se_sys_mount+0x10/0x10
[  119.907895][ T6067]  ? __x64_sys_mount+0x20/0xc0
[  119.907924][ T6067]  do_syscall_64+0x14d/0xf80
[  119.907948][ T6067]  ? trace_irq_disable+0x3b/0x150
[  119.907973][ T6067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.907995][ T6067]  ? clear_bhb_loop+0x40/0x90
[  119.908019][ T6067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.908041][ T6067] RIP: 0033:0x7f85491cda8a
[  119.908059][ T6067] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  119.908076][ T6067] RSP: 002b:00007ffdad1d57f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  119.908097][ T6067] RAX: ffffffffffffffda RBX: 00007ffdad1d5880 RCX: 00007f85491cda8a
[  119.908113][ T6067] RDX: 0000200000000100 RSI: 0000200000000040 RDI: 00007ffdad1d5840
[  119.908128][ T6067] RBP: 0000200000000100 R08: 00007ffdad1d5880 R09: 0000000003200041
[  119.908150][ T6067] R10: 0000000003200041 R11: 0000000000000246 R12: 0000200000000040
[  119.908165][ T6067] R13: 00007ffdad1d5840 R14: 0000000000009e15 R15: 000020000000a040
[  119.908189][ T6067]  </TASK>
[  119.908344][ T6067] Kernel Offset: disabled