Warning: Permanently added '10.128.1.173' (ED25519) to the list of known hosts.
2024/11/30 15:11:14 ignoring optional flag "sandboxArg"="0"
2024/11/30 15:11:14 parsed 1 programs
[ 74.759434][ T4250] cgroup: Unknown subsys name 'net'
[ 74.920384][ T4250] cgroup: Unknown subsys name 'rlimit'
[ 76.442876][ T4250] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 78.495723][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.509496][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.525724][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 78.548520][ T1242] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.557568][ T1242] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 78.569821][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 79.756963][ T4306] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 79.767150][ T4308] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 79.775445][ T4308] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 79.788557][ T4308] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 79.796586][ T4308] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 79.804415][ T4308] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 80.113473][ T4314] chnl_net:caif_netlink_parms(): no params data found
[ 80.173408][ T4314] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.181262][ T4314] bridge0: port 1(bridge_slave_0) entered disabled state
[ 80.189614][ T4314] device bridge_slave_0 entered promiscuous mode
[ 80.199962][ T4314] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.207481][ T4314] bridge0: port 2(bridge_slave_1) entered disabled state
[ 80.215621][ T4314] device bridge_slave_1 entered promiscuous mode
[ 80.249279][ T4314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 80.260983][ T4314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 80.296924][ T4314] team0: Port device team_slave_0 added
[ 80.305289][ T4314] team0: Port device team_slave_1 added
[ 80.326150][ T4314] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 80.333178][ T4314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.359274][ T4314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 80.377815][ T4314] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 80.384982][ T4314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 80.411546][ T4314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 80.451780][ T4314] device hsr_slave_0 entered promiscuous mode
[ 80.458892][ T4314] device hsr_slave_1 entered promiscuous mode
[ 80.640357][ T4314] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 80.655097][ T4314] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 80.672826][ T4314] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 80.692211][ T4314] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 80.717460][ T4314] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.724844][ T4314] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 80.732915][ T4314] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.740233][ T4314] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 80.807430][ T4314] 8021q: adding VLAN 0 to HW filter on device bond0
[ 80.827423][ T1242] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 80.837884][ T1242] bridge0: port 1(bridge_slave_0) entered disabled state
[ 80.847173][ T1242] bridge0: port 2(bridge_slave_1) entered disabled state
[ 80.861165][ T1242] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 80.880573][ T4314] 8021q: adding VLAN 0 to HW filter on device team0
[ 80.898598][ T1242] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 80.908376][ T1242] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.915571][ T1242] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 80.931220][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 80.940739][ T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.947906][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 80.970697][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 80.980146][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 81.011037][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 81.043503][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 81.053187][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 81.206434][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 81.214655][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 81.234373][ T4314] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 81.255125][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 81.265414][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 81.283477][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 81.292855][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 81.302223][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 81.310694][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 81.328016][ T4314] device veth0_vlan entered promiscuous mode
[ 81.340023][ T4314] device veth1_vlan entered promiscuous mode
[ 81.361510][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 81.369817][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 81.379237][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 81.388029][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 81.399286][ T4314] device veth0_macvtap entered promiscuous mode
[ 81.416552][ T4314] device veth1_macvtap entered promiscuous mode
[ 81.432112][ T4314] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 81.443160][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 81.451746][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 81.461167][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 81.470752][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 81.482830][ T4314] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 81.499547][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 81.509337][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 81.525381][ T4314] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.535932][ T4314] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.545807][ T4314] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 81.556480][ T4314] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2024/11/30 15:11:24 executed programs: 0
[ 81.988948][ T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 82.000768][ T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 82.015753][ T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 82.024673][ T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 82.032851][ T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 82.040709][ T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 82.102599][ T56] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 82.220151][ T4335] chnl_net:caif_netlink_parms(): no params data found
[ 82.275171][ T4335] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.282343][ T4335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 82.290826][ T4335] device bridge_slave_0 entered promiscuous mode
[ 82.299254][ T4335] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.306815][ T4335] bridge0: port 2(bridge_slave_1) entered disabled state
[ 82.315341][ T4335] device bridge_slave_1 entered promiscuous mode
[ 82.342046][ T4335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 82.354038][ T4335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 82.381275][ T4335] team0: Port device team_slave_0 added
[ 82.389124][ T4335] team0: Port device team_slave_1 added
[ 82.412909][ T4335] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 82.420124][ T4335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.446935][ T4335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 82.459197][ T4335] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 82.466620][ T4335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.493684][ T4335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 82.529396][ T4335] device hsr_slave_0 entered promiscuous mode
[ 82.536246][ T4335] device hsr_slave_1 entered promiscuous mode
[ 82.543119][ T4335] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 82.551094][ T4335] Cannot create hsr debugfs directory
[ 84.074425][ T4308] Bluetooth: hci0: command 0x0409 tx timeout
[ 84.074783][ T56] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 86.164211][ T48] Bluetooth: hci0: command 0x041b tx timeout
[ 86.315575][ T56] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 86.386793][ T56] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 86.635728][ T1191] cfg80211: failed to load regulatory.db
[ 87.258493][ T4335] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 87.273120][ T4335] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 87.327709][ T4335] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 87.374058][ T56] device hsr_slave_0 left promiscuous mode
[ 87.387293][ T56] device hsr_slave_1 left promiscuous mode
[ 87.394714][ T56] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 87.404019][ T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 87.435022][ T56] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 87.442726][ T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 87.477206][ T56] device bridge_slave_1 left promiscuous mode
[ 87.484486][ T56] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.536708][ T56] device bridge_slave_0 left promiscuous mode
[ 87.543005][ T56] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.574231][ T56] device veth1_macvtap left promiscuous mode
[ 87.580669][ T56] device veth0_macvtap left promiscuous mode
[ 87.589772][ T56] device veth1_vlan left promiscuous mode
[ 87.596147][ T56] device veth0_vlan left promiscuous mode
[ 87.917268][ T56] team0 (unregistering): Port device team_slave_1 removed
[ 87.948260][ T56] team0 (unregistering): Port device team_slave_0 removed
[ 87.977499][ T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 88.007294][ T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 88.244897][ T48] Bluetooth: hci0: command 0x040f tx timeout
[ 88.286807][ T56] bond0 (unregistering): Released all slaves
[ 88.342221][ T4335] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 88.419911][ T4335] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.448820][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 88.456782][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 88.467986][ T4335] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.480308][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 88.489936][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 88.498552][ T33] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.505709][ T33] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.513998][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 88.529633][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 88.543220][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 88.554359][ T33] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.561451][ T33] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.571068][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 88.584883][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 88.596250][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 88.608231][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 88.617740][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 88.629248][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 88.638294][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 88.653166][ T4335] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 88.666069][ T4335] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 88.681026][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 88.690047][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 88.702111][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 88.711560][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 88.720157][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 88.883338][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 88.891480][ T33] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 88.905257][ T4335] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.922888][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 88.932021][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 88.952045][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 88.961228][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 88.970865][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 88.979154][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 88.989537][ T4335] device veth0_vlan entered promiscuous mode
[ 89.000723][ T4335] device veth1_vlan entered promiscuous mode
[ 89.019382][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 89.028009][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 89.036457][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 89.046206][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 89.058243][ T4335] device veth0_macvtap entered promiscuous mode
[ 89.068354][ T4335] device veth1_macvtap entered promiscuous mode
[ 89.083465][ T4335] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.091959][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 89.100517][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 89.109590][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 89.118593][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 89.130727][ T4335] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.138766][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 89.148260][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 89.159586][ T4335] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.169098][ T4335] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.178082][ T4335] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.187104][ T4335] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.240380][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.259241][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.269595][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 89.281227][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.289457][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.298944][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 89.347153][ T4378] loop0: detected capacity change from 0 to 128
[ 89.361021][ T4378] VFS: Found a Xenix FS (block size = 1024) on device loop0
[ 89.375215][ T4378] syz.0.15: attempt to access beyond end of device
[ 89.375215][ T4378] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128
[ 89.390523][ T4378] Buffer I/O error on dev loop0, logical block 3245768, async page read
[ 89.400443][ T4378] ==================================================================
[ 89.408525][ T4378] BUG: KASAN: use-after-free in sysv_new_inode+0x107e/0x1210
[ 89.415917][ T4378] Read of size 2 at addr ffff88806ab781ce by task syz.0.15/4378
[ 89.423554][ T4378]
[ 89.425891][ T4378] CPU: 0 PID: 4378 Comm: syz.0.15 Not tainted 6.1.119-syzkaller #0
[ 89.433794][ T4378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 89.443854][ T4378] Call Trace:
[ 89.447143][ T4378]
[ 89.450088][ T4378] dump_stack_lvl+0x1e3/0x2cb
[ 89.454794][ T4378] ? nf_tcp_handle_invalid+0x642/0x642
[ 89.460347][ T4378] ? panic+0x764/0x764
[ 89.464425][ T4378] ? _printk+0xd1/0x111
[ 89.468584][ T4378] ? __virt_addr_valid+0x17f/0x530
[ 89.473703][ T4378] ? __virt_addr_valid+0x17f/0x530
[ 89.478818][ T4378] print_report+0x15f/0x4f0
[ 89.483329][ T4378] ? __virt_addr_valid+0x17f/0x530
[ 89.488468][ T4378] ? __virt_addr_valid+0x17f/0x530
[ 89.493623][ T4378] ? __virt_addr_valid+0x45b/0x530
[ 89.498805][ T4378] ? __phys_addr+0xb6/0x170
[ 89.503497][ T4378] ? sysv_new_inode+0x107e/0x1210
[ 89.508535][ T4378] kasan_report+0x136/0x160
[ 89.513049][ T4378] ? sysv_new_inode+0x107e/0x1210
[ 89.518081][ T4378] sysv_new_inode+0x107e/0x1210
[ 89.522954][ T4378] ? from_kgid+0x1a3/0x730
[ 89.527420][ T4378] ? make_kgid+0x6f0/0x6f0
[ 89.531853][ T4378] ? sysv_free_inode+0x840/0x840
[ 89.536829][ T4378] ? generic_permission+0x27c/0x4f0
[ 89.542052][ T4378] sysv_symlink+0x9b/0x180
[ 89.546520][ T4378] vfs_symlink+0x247/0x3d0
[ 89.551128][ T4378] do_symlinkat+0x21e/0x390
[ 89.555659][ T4378] ? __check_object_size+0x4dd/0xa30
[ 89.561063][ T4378] ? vfs_symlink+0x3d0/0x3d0
[ 89.565675][ T4378] ? getname_flags+0x1f9/0x4f0
[ 89.570436][ T4378] ? lockdep_hardirqs_on+0x94/0x130
[ 89.575631][ T4378] __x64_sys_symlink+0x7a/0x90
[ 89.580399][ T4378] do_syscall_64+0x3b/0xb0
[ 89.584828][ T4378] ? clear_bhb_loop+0x45/0xa0
[ 89.589527][ T4378] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 89.595484][ T4378] RIP: 0033:0x7fac5d180849
[ 89.599906][ T4378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 89.619627][ T4378] RSP: 002b:00007ffc7bf27f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[ 89.628055][ T4378] RAX: ffffffffffffffda RBX: 00007fac5d345fa0 RCX: 00007fac5d180849
[ 89.636111][ T4378] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 00000000200049c0
[ 89.644076][ T4378] RBP: 00007fac5d1f3986 R08: 0000000000000000 R09: 0000000000000000
[ 89.652047][ T4378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 89.660110][ T4378] R13: 00007fac5d345fa0 R14: 00007fac5d345fa0 R15: 0000000000001318
[ 89.668114][ T4378]
[ 89.671127][ T4378]
[ 89.673439][ T4378] The buggy address belongs to the physical page:
[ 89.679852][ T4378] page:ffffea0001aade00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6ab78
[ 89.690010][ T4378] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 89.697124][ T4378] raw: 00fff00000000000 ffffea0001aac408 ffffea0001a7c488 0000000000000000
[ 89.705717][ T4378] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 89.714325][ T4378] page dumped because: kasan: bad access detected
[ 89.720735][ T4378] page_owner tracks the page as freed
[ 89.726095][ T4378] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 4373, tgid 4373 (rm), ts 87498850572, free_ts 87530127477
[ 89.743074][ T4378] post_alloc_hook+0x18d/0x1b0
[ 89.747846][ T4378] get_page_from_freelist+0x3731/0x38d0
[ 89.753385][ T4378] __alloc_pages+0x28d/0x770
[ 89.757980][ T4378] __folio_alloc+0xf/0x30
[ 89.762334][ T4378] vma_alloc_folio+0x486/0x990
[ 89.767113][ T4378] handle_mm_fault+0x210c/0x5340
[ 89.772049][ T4378] exc_page_fault+0x26f/0x620
[ 89.776722][ T4378] asm_exc_page_fault+0x22/0x30
[ 89.781592][ T4378] page last free stack trace:
[ 89.786266][ T4378] free_unref_page_prepare+0xf63/0x1120
[ 89.791811][ T4378] free_unref_page_list+0x663/0x900
[ 89.797008][ T4378] release_pages+0x2836/0x2b40
[ 89.801797][ T4378] tlb_flush_mmu+0xfc/0x210
[ 89.806317][ T4378] tlb_finish_mmu+0xce/0x1f0
[ 89.810925][ T4378] exit_mmap+0x3b3/0x980
[ 89.815165][ T4378] __mmput+0x115/0x3c0
[ 89.819263][ T4378] exit_mm+0x226/0x300
[ 89.823346][ T4378] do_exit+0x9f6/0x26a0
[ 89.827511][ T4378] do_group_exit+0x202/0x2b0
[ 89.832103][ T4378] __x64_sys_exit_group+0x3b/0x40
[ 89.837125][ T4378] do_syscall_64+0x3b/0xb0
[ 89.841544][ T4378] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 89.847436][ T4378]
[ 89.849749][ T4378] Memory state around the buggy address:
[ 89.855385][ T4378] ffff88806ab78080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 89.863464][ T4378] ffff88806ab78100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 89.871537][ T4378] >ffff88806ab78180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 89.879607][ T4378] ^
[ 89.886020][ T4378] ffff88806ab78200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 89.894076][ T4378] ffff88806ab78280: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 89.902122][ T4378] ==================================================================
[ 89.921645][ T4378] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 89.928881][ T4378] CPU: 0 PID: 4378 Comm: syz.0.15 Not tainted 6.1.119-syzkaller #0
[ 89.936782][ T4378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 89.946847][ T4378] Call Trace:
[ 89.950118][ T4378]
[ 89.953056][ T4378] dump_stack_lvl+0x1e3/0x2cb
[ 89.957748][ T4378] ? nf_tcp_handle_invalid+0x642/0x642
[ 89.963308][ T4378] ? panic+0x764/0x764
[ 89.967372][ T4378] ? preempt_schedule_common+0xa6/0xd0
[ 89.972841][ T4378] ? vscnprintf+0x59/0x80
[ 89.977171][ T4378] panic+0x318/0x764
[ 89.981063][ T4378] ? check_panic_on_warn+0x1d/0xa0
[ 89.986170][ T4378] ? memcpy_page_flushcache+0xfc/0xfc
[ 89.991538][ T4378] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 89.997516][ T4378] ? _raw_spin_unlock+0x40/0x40
[ 90.002366][ T4378] ? print_report+0x4a3/0x4f0
[ 90.007057][ T4378] check_panic_on_warn+0x7e/0xa0
[ 90.011988][ T4378] ? sysv_new_inode+0x107e/0x1210
[ 90.017027][ T4378] end_report+0x66/0x110
[ 90.021263][ T4378] kasan_report+0x143/0x160
[ 90.025766][ T4378] ? sysv_new_inode+0x107e/0x1210
[ 90.030803][ T4378] sysv_new_inode+0x107e/0x1210
[ 90.035666][ T4378] ? from_kgid+0x1a3/0x730
[ 90.040087][ T4378] ? make_kgid+0x6f0/0x6f0
[ 90.044507][ T4378] ? sysv_free_inode+0x840/0x840
[ 90.049451][ T4378] ? generic_permission+0x27c/0x4f0
[ 90.054660][ T4378] sysv_symlink+0x9b/0x180
[ 90.059082][ T4378] vfs_symlink+0x247/0x3d0
[ 90.063505][ T4378] do_symlinkat+0x21e/0x390
[ 90.068018][ T4378] ? __check_object_size+0x4dd/0xa30
[ 90.073310][ T4378] ? vfs_symlink+0x3d0/0x3d0
[ 90.077957][ T4378] ? getname_flags+0x1f9/0x4f0
[ 90.082724][ T4378] ? lockdep_hardirqs_on+0x94/0x130
[ 90.087945][ T4378] __x64_sys_symlink+0x7a/0x90
[ 90.092720][ T4378] do_syscall_64+0x3b/0xb0
[ 90.097148][ T4378] ? clear_bhb_loop+0x45/0xa0
[ 90.101842][ T4378] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 90.107763][ T4378] RIP: 0033:0x7fac5d180849
[ 90.112177][ T4378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 90.131882][ T4378] RSP: 002b:00007ffc7bf27f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[ 90.140305][ T4378] RAX: ffffffffffffffda RBX: 00007fac5d345fa0 RCX: 00007fac5d180849
[ 90.148280][ T4378] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 00000000200049c0
[ 90.156254][ T4378] RBP: 00007fac5d1f3986 R08: 0000000000000000 R09: 0000000000000000
[ 90.164226][ T4378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 90.172203][ T4378] R13: 00007fac5d345fa0 R14: 00007fac5d345fa0 R15: 0000000000001318
[ 90.180216][ T4378]
[ 90.183542][ T4378] Kernel Offset: disabled
[ 90.187892][ T4378] Rebooting in 86400 seconds..