Warning: Permanently added '10.128.1.183' (ED25519) to the list of known hosts.
2026/05/31 22:56:24 parsed 1 programs
[ 104.649130][ T5634] cgroup: Unknown subsys name 'net'
[ 104.907424][ T5634] cgroup: Unknown subsys name 'cpuset'
[ 104.972149][ T5634] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 106.980214][ T5634] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 111.349167][ T1031] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.349198][ T1031] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.525836][ T1031] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.525859][ T1031] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.068383][ T5676] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.070143][ T5676] bridge0: port 1(bridge_slave_0) entered disabled state
[ 115.070359][ T5676] bridge_slave_0: entered allmulticast mode
[ 115.095491][ T5676] bridge_slave_0: entered promiscuous mode
[ 115.114367][ T5676] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.114676][ T5676] bridge0: port 2(bridge_slave_1) entered disabled state
[ 115.114890][ T5676] bridge_slave_1: entered allmulticast mode
[ 115.117390][ T5676] bridge_slave_1: entered promiscuous mode
[ 115.191878][ T5676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 115.197121][ T5676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 115.258426][ T5676] team0: Port device team_slave_0 added
[ 115.265561][ T5676] team0: Port device team_slave_1 added
[ 115.307936][ T5676] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 115.307950][ T5676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 115.307970][ T5676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 115.314024][ T5676] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 115.314041][ T5676] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 115.314070][ T5676] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 115.463898][ T5676] hsr_slave_0: entered promiscuous mode
[ 115.465990][ T5676] hsr_slave_1: entered promiscuous mode
[ 115.880124][ T5676] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 115.939318][ T5676] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 115.951853][ T5676] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 115.988805][ T5676] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 116.262410][ T5676] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 116.288846][ T5676] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 116.305019][ T5676] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 116.338947][ T5676] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 116.630202][ T5676] 8021q: adding VLAN 0 to HW filter on device bond0
[ 116.741537][ T5676] 8021q: adding VLAN 0 to HW filter on device team0
[ 116.780251][ T44] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.780471][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 116.857763][ T44] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.857929][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 117.411740][ T5676] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 117.536324][ T5676] veth0_vlan: entered promiscuous mode
[ 117.566852][ T5676] veth1_vlan: entered promiscuous mode
[ 117.640357][ T5676] veth0_macvtap: entered promiscuous mode
[ 117.656281][ T5676] veth1_macvtap: entered promiscuous mode
[ 117.718696][ T5676] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 117.750531][ T5676] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 117.787427][ T44] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.809220][ T44] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.813119][ T44] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 117.835935][ T44] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.587965][ T44] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 119.158057][ T44] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 119.717793][ T44] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 120.090832][ T44] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 120.636255][ T4929] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 120.639677][ T4929] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 120.649027][ T4929] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 120.676940][ T4929] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 120.693378][ T4929] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 121.093552][ T44] bridge_slave_1: left allmulticast mode
[ 121.093754][ T44] bridge_slave_1: left promiscuous mode
[ 121.124222][ T44] bridge0: port 2(bridge_slave_1) entered disabled state
[ 121.313046][ T44] bridge_slave_0: left allmulticast mode
[ 121.313177][ T44] bridge_slave_0: left promiscuous mode
[ 121.313450][ T44] bridge0: port 1(bridge_slave_0) entered disabled state
[ 122.222094][ T44] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 122.282271][ T44] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 122.323655][ T44] bond0 (unregistering): Released all slaves
[ 122.359880][ T5275] 8021q: adding VLAN 0 to HW filter on device eth1
[ 122.766772][ T4929] Bluetooth: hci0: command tx timeout
[ 122.869058][ T44] hsr_slave_0: left promiscuous mode
[ 122.901874][ T44] hsr_slave_1: left promiscuous mode
[ 122.903196][ T44] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 122.903284][ T44] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 122.943654][ T44] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 122.943694][ T44] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 123.053253][ T44] veth1_macvtap: left promiscuous mode
[ 123.053507][ T44] veth0_macvtap: left promiscuous mode
[ 123.053841][ T44] veth1_vlan: left promiscuous mode
[ 123.054165][ T44] veth0_vlan: left promiscuous mode
[ 123.901999][ T44] team0 (unregistering): Port device team_slave_1 removed
[ 123.963550][ T44] team0 (unregistering): Port device team_slave_0 removed
[ 124.189826][ T5275] 8021q: adding VLAN 0 to HW filter on device eth2
[ 125.155816][ T5275] 8021q: adding VLAN 0 to HW filter on device eth3
[ 125.940439][ T5275] 8021q: adding VLAN 0 to HW filter on device eth4
2026/05/31 22:56:49 executed programs: 0
[ 126.188450][ T60] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 126.215565][ T60] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 126.216671][ T60] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 126.235258][ T60] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 126.242698][ T60] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 127.545080][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[ 127.545449][ T5811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 127.545642][ T5811] bridge_slave_0: entered allmulticast mode
[ 127.550204][ T5811] bridge_slave_0: entered promiscuous mode
[ 127.568399][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[ 127.569461][ T5811] bridge0: port 2(bridge_slave_1) entered disabled state
[ 127.570293][ T5811] bridge_slave_1: entered allmulticast mode
[ 127.591836][ T5811] bridge_slave_1: entered promiscuous mode
[ 127.655150][ T5811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 127.660247][ T5811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 127.740808][ T5811] team0: Port device team_slave_0 added
[ 127.749774][ T5811] team0: Port device team_slave_1 added
[ 127.797752][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 127.797766][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.797786][ T5811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 127.800445][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 127.800457][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 127.800477][ T5811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 127.995337][ T5811] hsr_slave_0: entered promiscuous mode
[ 127.997045][ T5811] hsr_slave_1: entered promiscuous mode
[ 128.281260][ T4929] Bluetooth: hci0: command tx timeout
[ 130.362132][ T4929] Bluetooth: hci0: command tx timeout
[ 130.886536][ T5811] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 130.957488][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 130.970370][ T5811] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 131.003346][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 131.006845][ T5811] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 131.048102][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 131.058522][ T5811] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 131.097335][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 131.279693][ T5811] 8021q: adding VLAN 0 to HW filter on device bond0
[ 131.343552][ T5811] 8021q: adding VLAN 0 to HW filter on device team0
[ 131.403429][ T44] bridge0: port 1(bridge_slave_0) entered blocking state
[ 131.405518][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 131.455336][ T44] bridge0: port 2(bridge_slave_1) entered blocking state
[ 131.455569][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 132.303544][ T5811] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 132.441141][ T4929] Bluetooth: hci0: command tx timeout
[ 132.506781][ T5811] veth0_vlan: entered promiscuous mode
[ 132.548015][ T5811] veth1_vlan: entered promiscuous mode
[ 132.636665][ T5811] veth0_macvtap: entered promiscuous mode
[ 132.662119][ T5811] veth1_macvtap: entered promiscuous mode
[ 132.746870][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 132.796680][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 132.868815][ T1031] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 132.882561][ T1031] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 132.890289][ T1031] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 132.908814][ T1031] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 133.166599][ T1337] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.166747][ T1337] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.558513][ T1031] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 133.558537][ T1031] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 133.677368][ T1031] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 133.677391][ T1031] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/31 22:56:57 executed programs: 2
[ 134.123945][ T5973] loop0: detected capacity change from 0 to 32768
[ 134.270679][ T5973]
[ 134.270679][ T5973] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 134.270679][ T5973]
[ 134.359889][ T5811]
[ 134.359889][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 134.359889][ T5811]
[ 134.422693][ T5811]
[ 134.422693][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 134.422693][ T5811]
[ 134.521634][ T4929] Bluetooth: hci0: command tx timeout
[ 134.980169][ T5974] loop0: detected capacity change from 0 to 32768
[ 135.000272][ T5974]
[ 135.000272][ T5974] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.000272][ T5974]
[ 135.065348][ T5811]
[ 135.065348][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.065348][ T5811]
[ 135.065652][ T5811]
[ 135.065652][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.065652][ T5811]
[ 135.508106][ T5975] loop0: detected capacity change from 0 to 32768
[ 135.564144][ T5975]
[ 135.564144][ T5975] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.564144][ T5975]
[ 135.635056][ T5811]
[ 135.635056][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.635056][ T5811]
[ 135.647363][ T5811]
[ 135.647363][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 135.647363][ T5811]
[ 136.060930][ T5976] loop0: detected capacity change from 0 to 32768
[ 136.090052][ T5976]
[ 136.090052][ T5976] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.090052][ T5976]
[ 136.133393][ T5811]
[ 136.133393][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.133393][ T5811]
[ 136.134051][ T5811]
[ 136.134051][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.134051][ T5811]
[ 136.540879][ T5977] loop0: detected capacity change from 0 to 32768
[ 136.569105][ T5977]
[ 136.569105][ T5977] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.569105][ T5977]
[ 136.621569][ T5811]
[ 136.621569][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.621569][ T5811]
[ 136.621902][ T5811]
[ 136.621902][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 136.621902][ T5811]
[ 136.990832][ T5978] loop0: detected capacity change from 0 to 32768
[ 137.011248][ T5978]
[ 137.011248][ T5978] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.011248][ T5978]
[ 137.064745][ T5811]
[ 137.064745][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.064745][ T5811]
[ 137.065575][ T5811]
[ 137.065575][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.065575][ T5811]
[ 137.436759][ T5979] loop0: detected capacity change from 0 to 32768
[ 137.463970][ T5979]
[ 137.463970][ T5979] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.463970][ T5979]
[ 137.523931][ T5811]
[ 137.523931][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.523931][ T5811]
[ 137.548866][ T5811]
[ 137.548866][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 137.548866][ T5811]
[ 138.061762][ T5980] loop0: detected capacity change from 0 to 32768
[ 138.084369][ T5980]
[ 138.084369][ T5980] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.084369][ T5980]
[ 138.133324][ T5811]
[ 138.133324][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.133324][ T5811]
[ 138.133616][ T5811]
[ 138.133616][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.133616][ T5811]
[ 138.520737][ T5981] loop0: detected capacity change from 0 to 32768
[ 138.539362][ T5981]
[ 138.539362][ T5981] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.539362][ T5981]
[ 138.592965][ T5811]
[ 138.592965][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.592965][ T5811]
[ 138.593226][ T5811]
[ 138.593226][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.593226][ T5811]
[ 138.969971][ T5982] loop0: detected capacity change from 0 to 32768
[ 138.998415][ T5982]
[ 138.998415][ T5982] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 138.998415][ T5982]
2026/05/31 22:57:03 executed programs: 12
[ 139.065112][ T5811]
[ 139.065112][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 139.065112][ T5811]
[ 139.066301][ T5811]
[ 139.066301][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 139.066301][ T5811]
[ 139.450246][ T5983] loop0: detected capacity change from 0 to 32768
[ 139.466941][ T5983]
[ 139.466941][ T5983] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 139.466941][ T5983]
[ 139.521512][ T5811]
[ 139.521512][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 139.521512][ T5811]
[ 139.521770][ T5811]
[ 139.521770][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 139.521770][ T5811]
[ 140.014110][ T5984] loop0: detected capacity change from 0 to 32768
[ 140.036711][ T5984]
[ 140.036711][ T5984] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.036711][ T5984]
[ 140.091543][ T5811]
[ 140.091543][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.091543][ T5811]
[ 140.091789][ T5811]
[ 140.091789][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.091789][ T5811]
[ 140.514935][ T5985] loop0: detected capacity change from 0 to 32768
[ 140.530371][ T5985]
[ 140.530371][ T5985] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.530371][ T5985]
[ 140.595675][ T5811]
[ 140.595675][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.595675][ T5811]
[ 140.596079][ T5811]
[ 140.596079][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 140.596079][ T5811]
[ 141.069591][ T5986] loop0: detected capacity change from 0 to 32768
[ 141.095867][ T5986]
[ 141.095867][ T5986] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.095867][ T5986]
[ 141.151642][ T5811]
[ 141.151642][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.151642][ T5811]
[ 141.152037][ T5811]
[ 141.152037][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.152037][ T5811]
[ 141.505650][ T5987] loop0: detected capacity change from 0 to 32768
[ 141.518760][ T5987]
[ 141.518760][ T5987] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.518760][ T5987]
[ 141.582287][ T5811]
[ 141.582287][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.582287][ T5811]
[ 141.587772][ T5811]
[ 141.587772][ T5811] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 141.587772][ T5811]
[ 141.614091][ C1] ==================================================================
[ 141.614135][ C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 141.614251][ C1] Read of size 4 at addr ffff888031088c08 by task ksoft[ 141.614251][ C1] Read of size 4 at addr ffff888031088c08 by task ksoftirqd/1/31
[ 141.614297][ C1]
[ 141.614348][ C1] CPU: 1 UID: 0 PID: 31 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 141.614416][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 141.614465][ C1] Call Trace:
[ 141.614498][ C1]
[ 141.614521][ C1] dump_stack_lvl+0xe8/0x150
[ 141.614584][ C1] print_address_description+0x55/0x1e0
[ 141.614667][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.614739][ C1] print_report+0x58/0x70
[ 141.614805][ C1] kasan_report+0x117/0x150
[ 141.614915][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.615041][ C1] lbmIODone+0x1312/0x16c0
[ 141.615127][ C1] ? blkg_put+0x22/0x240
[ 141.615201][ C1] ? blkg_put+0x22/0x240
[ 141.615273][ C1] ? blkg_put+0x18d/0x240
[ 141.615350][ C1] ? bio_endio+0x989/0x9d0
[ 141.615437][ C1] blk_update_request+0x57e/0xe60
[ 141.615553][ C1] blk_mq_end_request+0x3e/0x70
[ 141.615639][ C1] blk_done_softirq+0x10a/0x160
[ 141.615722][ C1] handle_softirqs+0x1de/0x6d0
[ 141.615789][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 141.615854][ C1] run_ksoftirqd+0x52/0x180
[ 141.615918][ C1] smpboot_thread_fn+0x541/0xa50
[ 141.615975][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 141.616041][ C1] kthread+0x388/0x470
[ 141.616106][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 141.616161][ C1] ? __pfx_kthread+0x10/0x10
[ 141.616234][ C1] ret_from_fork+0x514/0xb70
[ 141.616321][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 141.616395][ C1] ? __switch_to+0xc79/0x1410
[ 141.616460][ C1] ? __pfx_kthread+0x10/0x10
[ 141.616543][ C1] ret_from_fork_asm+0x1a/0x30
[ 141.616642][ C1]
[ 141.616663][ C1]
[ 141.616674][ C1] Allocated by task 5987:
[ 141.616696][ C1] kasan_save_track+0x3e/0x80
[ 141.616762][ C1] __kasan_kmalloc+0x93/0xb0
[ 141.616834][ C1] __kmalloc_cache_noprof+0x3a6/0x690
[ 141.616886][ C1] lmLogInit+0x3e5/0x1a00
[ 141.616914][ C1] lmLogOpen+0x4e1/0xfa0
[ 141.616980][ C1] jfs_mount_rw+0xee/0x670
[ 141.617081][ C1] jfs_fill_super+0x75a/0xd70
[ 141.617149][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 141.617195][ C1] vfs_get_tree+0x92/0x2a0
[ 141.617239][ C1] do_new_mount+0x341/0xd30
[ 141.617302][ C1] __se_sys_mount+0x31d/0x420
[ 141.617365][ C1] do_syscall_64+0x174/0x580
[ 141.617436][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.617507][ C1]
[ 141.617525][ C1] Freed by task 5811:
[ 141.617547][ C1] kasan_save_track+0x3e/0x80
[ 141.617611][ C1] kasan_save_free_info+0x46/0x50
[ 141.617664][ C1] __kasan_slab_free+0x5c/0x80
[ 141.617729][ C1] kfree+0x1c5/0x6c0
[ 141.617792][ C1] lmLogShutdown+0x456/0x850
[ 141.617869][ C1] lmLogClose+0x28a/0x520
[ 141.617942][ C1] jfs_umount+0x2fb/0x3d0
[ 141.618008][ C1] jfs_put_super+0x8c/0x190
[ 141.618063][ C1] generic_shutdown_super+0x13d/0x2d0
[ 141.618138][ C1] kill_block_super+0x44/0x90
[ 141.618182][ C1] deactivate_locked_super+0xbc/0x130
[ 141.618254][ C1] cleanup_mnt+0x437/0x4d0
[ 141.618328][ C1] task_work_run+0x1d9/0x270
[ 141.618354][ C1] exit_to_user_mode_loop+0x193/0x680
[ 141.618410][ C1] do_syscall_64+0x353/0x580
[ 141.618473][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 141.618540][ C1]
[ 141.618557][ C1] The buggy address belongs to the object at ffff888031088c00
[ 141.618557][ C1] which belongs to the cache kmalloc-256 of size 256
[ 141.618602][ C1] The buggy address is located 8 bytes inside of
[ 141.618602][ C1] freed 256-byte region [ffff888031088c00, ffff888031088d00)
[ 141.618664][ C1]
[ 141.618676][ C1] The buggy address belongs to the physical page:
[ 141.618725][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31088
[ 141.618771][ C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 141.618822][ C1] flags: 0x80000000000040(head|node=0|zone=1)
[ 141.618866][ C1] page_type: f5(slab)
[ 141.618920][ C1] raw: 0080000000000040 ffff88813fe21b40 dead000000000100 dead000000000122
[ 141.618971][ C1] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 141.619011][ C1] head: 0080000000000040 ffff88813fe21b40 dead000000000100 dead000000000122
[ 141.619062][ C1] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 141.619112][ C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 141.619157][ C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 141.619188][ C1] page dumped because: kasan: bad access detected
[ 141.619220][ C1] page_owner tracks the page as allocated
[ 141.619240][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 25791392788, free_ts 0
[ 141.619334][ C1] post_alloc_hook+0x1f9/0x250
[ 141.619399][ C1] get_page_from_freelist+0x265c/0x26e0
[ 141.619482][ C1] __alloc_frozen_pages_noprof+0x18d/0x380
[ 141.619569][ C1] allocate_slab+0x74/0x5e0
[ 141.619621][ C1] refill_objects+0x33c/0x3d0
[ 141.619666][ C1] __pcs_replace_empty_main+0x373/0x720
[ 141.619720][ C1] __kvmalloc_node_noprof+0x6f4/0x8e0
[ 141.619802][ C1] v4l2_ctrl_new+0xa60/0x1860
[ 141.619844][ C1] v4l2_ctrl_new_std+0x24e/0x300
[ 141.619926][ C1] handler_new_ref+0x153/0x9c0
[ 141.619988][ C1] v4l2_ctrl_add_handler+0x19f/0x290
[ 141.620049][ C1] vivid_create_controls+0x2b93/0x3bd0
[ 141.620094][ C1] vivid_probe+0x4233/0x72d0
[ 141.620160][ C1] platform_probe+0xf9/0x190
[ 141.620236][ C1] really_probe+0x267/0xaf0
[ 141.620290][ C1] __driver_probe_device+0x1e2/0x350
[ 141.620344][ C1] page_owner free stack trace missing
[ 141.620366][ C1]
[ 141.620377][ C1] Memory state around the buggy address:
[ 141.620403][ C1] ffff888031088b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 141.620445][ C1] ffff888031088b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 141.620480][ C1] >ffff888031088c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.620511][ C1] ^
[ 141.620542][ C1] ffff888031088c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 141.620583][ C1] ffff888031088d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 141.620607][ C1] ==================================================================
[ 141.637867][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 141.637903][ C1] CPU: 1 UID: 0 PID: 31 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 141.637988][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 141.638034][ C1] Call Trace:
[ 141.638064][ C1]
[ 141.638091][ C1] vpanic+0x56c/0xa60
[ 141.638190][ C1] ? __pfx_vpanic+0x10/0x10
[ 141.638272][ C1] ? __pfx___schedule+0x10/0x10
[ 141.638368][ C1] panic+0xc5/0xd0
[ 141.638455][ C1] ? __pfx_panic+0x10/0x10
[ 141.638541][ C1] ? preempt_schedule_thunk+0x16/0x40
[ 141.638614][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.638701][ C1] check_panic_on_warn+0x89/0xb0
[ 141.638783][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.638871][ C1] end_report+0x73/0x170
[ 141.638949][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.639015][ C1] kasan_report+0x128/0x150
[ 141.639100][ C1] ? lbmIODone+0x1312/0x16c0
[ 141.639188][ C1] lbmIODone+0x1312/0x16c0
[ 141.639274][ C1] ? blkg_put+0x22/0x240
[ 141.639347][ C1] ? blkg_put+0x22/0x240
[ 141.639390][ C1] ? blkg_put+0x18d/0x240
[ 141.639486][ C1] ? bio_endio+0x989/0x9d0
[ 141.639587][ C1] blk_update_request+0x57e/0xe60
[ 141.639693][ C1] blk_mq_end_request+0x3e/0x70
[ 141.639787][ C1] blk_done_softirq+0x10a/0x160
[ 141.639872][ C1] handle_softirqs+0x1de/0x6d0
[ 141.639935][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 141.639990][ C1] run_ksoftirqd+0x52/0x180
[ 141.640054][ C1] smpboot_thread_fn+0x541/0xa50
[ 141.640118][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 141.640185][ C1] kthread+0x388/0x470
[ 141.640257][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 141.640313][ C1] ? __pfx_kthread+0x10/0x10
[ 141.640386][ C1] ret_from_fork+0x514/0xb70
[ 141.640463][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 141.640547][ C1] ? __switch_to+0xc79/0x1410
[ 141.640611][ C1] ? __pfx_kthread+0x10/0x10
[ 141.640677][ C1] ret_from_fork_asm+0x1a/0x30
[ 141.640795][ C1]
[ 141.641434][ C1] Kernel Offset: disabled