Warning: Permanently added '10.128.0.18' (ED25519) to the list of known hosts.
2025/12/22 05:36:15 parsed 1 programs
[   80.637409][ T4269] cgroup: Unknown subsys name 'net'
[   80.774358][ T4269] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.297811][ T4269] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   84.078622][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.086632][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.102336][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   84.121518][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.129583][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.142240][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   85.659514][ T4327] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.667425][ T4327] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.675958][ T4329] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.685551][ T4329] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.693577][ T4329] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   85.701197][ T4329] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.404622][ T4350] chnl_net:caif_netlink_parms(): no params data found
[   86.454747][ T4350] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.463011][ T4350] bridge0: port 1(bridge_slave_0) entered disabled state
[   86.471230][ T4350] device bridge_slave_0 entered promiscuous mode
[   86.495363][ T4350] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.502533][ T4350] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.510545][ T4350] device bridge_slave_1 entered promiscuous mode
[   86.534780][ T4350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   86.546211][ T4350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   86.571647][ T4350] team0: Port device team_slave_0 added
[   86.592958][ T4350] team0: Port device team_slave_1 added
[   86.612993][ T4350] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.620341][ T4350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.646317][ T4350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.659153][ T4350] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.666120][ T4350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.692080][ T4350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.742293][ T4350] device hsr_slave_0 entered promiscuous mode
[   86.749109][ T4350] device hsr_slave_1 entered promiscuous mode
[   86.878532][ T4350] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   86.889093][  T129] cfg80211: failed to load regulatory.db
[   86.893282][ T4350] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   86.927326][ T4350] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   86.940421][ T4350] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   86.997555][ T4350] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.004862][ T4350] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.012789][ T4350] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.019974][ T4350] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.109065][ T4350] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.128365][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   87.148520][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.168074][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.189603][ T4350] 8021q: adding VLAN 0 to HW filter on device team0
[   87.213103][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   87.225103][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   87.239166][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.246306][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.278668][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   87.298121][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   87.306619][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.313793][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.331756][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   87.341018][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   87.351351][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   87.363476][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   87.388697][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   87.396747][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   87.410077][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   87.419137][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   87.430731][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   87.452304][ T4350] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.473842][ T4350] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   87.482801][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   87.492358][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   87.720323][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   87.728654][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   87.746947][ T4350] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.765146][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   87.774226][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   87.800101][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   87.808694][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   87.818572][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   87.826352][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   87.835614][ T4350] device veth0_vlan entered promiscuous mode
[   87.853123][ T4350] device veth1_vlan entered promiscuous mode
[   87.875352][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   87.884202][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   87.892740][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   87.901467][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   87.916728][ T4350] device veth0_macvtap entered promiscuous mode
[   87.927821][ T4350] device veth1_macvtap entered promiscuous mode
[   87.945297][ T4350] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.953140][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   87.961906][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   87.970801][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   87.979788][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   87.997324][ T4350] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.005154][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   88.014113][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   88.026455][ T4350] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.035637][ T4350] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.044391][ T4350] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.053564][ T4350] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.428839][   T29] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/22 05:36:26 executed programs: 0
[   88.958108][ T4329] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.965826][ T4329] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.974267][ T4329] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.983824][ T4329] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.991848][ T4329] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   89.000219][ T4329] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.135407][ T4377] chnl_net:caif_netlink_parms(): no params data found
[   89.182966][ T4377] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.190292][ T4377] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.198279][ T4377] device bridge_slave_0 entered promiscuous mode
[   89.206685][ T4377] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.214272][ T4377] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.222442][ T4377] device bridge_slave_1 entered promiscuous mode
[   89.252574][ T4377] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.263638][ T4377] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.290242][ T4377] team0: Port device team_slave_0 added
[   89.300594][ T4377] team0: Port device team_slave_1 added
[   89.321138][ T4377] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.329070][ T4377] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.355792][ T4377] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.368123][ T4377] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.375096][ T4377] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   89.401483][ T4377] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.437774][ T4377] device hsr_slave_0 entered promiscuous mode
[   89.444440][ T4377] device hsr_slave_1 entered promiscuous mode
[   89.451492][ T4377] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   89.459696][ T4377] Cannot create hsr debugfs directory
[   90.558417][   T29] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.048534][   T48] Bluetooth: hci0: command 0x0409 tx timeout
[   92.519615][   T29] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.589459][   T29] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.128068][   T48] Bluetooth: hci0: command 0x041b tx timeout
[   93.461615][ T4377] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   93.471903][ T4377] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   93.484728][ T4377] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.495428][ T4377] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.513297][   T29] device hsr_slave_0 left promiscuous mode
[   93.522957][   T29] device hsr_slave_1 left promiscuous mode
[   93.532525][   T29] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.542288][   T29] batman_adv: batadv0: Removing interface: batadv_slave_0
[   93.551237][   T29] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.561062][   T29] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.569305][   T29] device bridge_slave_1 left promiscuous mode
[   93.576408][   T29] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.590852][   T29] device bridge_slave_0 left promiscuous mode
[   93.597117][   T29] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.630850][   T29] device veth1_macvtap left promiscuous mode
[   93.637225][   T29] device veth0_macvtap left promiscuous mode
[   93.645906][   T29] device veth1_vlan left promiscuous mode
[   93.652026][   T29] device veth0_vlan left promiscuous mode
[   93.985851][   T29] team0 (unregistering): Port device team_slave_1 removed
[   94.012175][   T29] team0 (unregistering): Port device team_slave_0 removed
[   94.040824][   T29] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   94.068865][   T29] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   94.317904][   T29] bond0 (unregistering): Released all slaves
[   94.468574][ T4377] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.481829][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   94.490300][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.500856][ T4377] 8021q: adding VLAN 0 to HW filter on device team0
[   94.515808][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   94.525358][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   94.536709][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.543892][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.552297][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   94.563704][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   94.572722][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   94.581662][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.588842][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.607704][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   94.630728][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   94.640085][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   94.649345][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   94.658462][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   94.679150][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   94.688495][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   94.696923][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   94.705712][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   94.719769][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   94.728645][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   94.743892][ T4377] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   94.952414][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   94.961259][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   94.979875][ T4377] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.998636][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   95.007296][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   95.032110][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   95.040434][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   95.050159][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   95.058175][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   95.072911][ T4377] device veth0_vlan entered promiscuous mode
[   95.083912][ T4377] device veth1_vlan entered promiscuous mode
[   95.103699][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   95.112183][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   95.121151][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   95.129982][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   95.140632][ T4377] device veth0_macvtap entered promiscuous mode
[   95.156019][ T4377] device veth1_macvtap entered promiscuous mode
[   95.172827][ T4377] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.181553][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   95.189890][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   95.198471][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   95.207025][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   95.218295][   T48] Bluetooth: hci0: command 0x040f tx timeout
[   95.224632][ T4377] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.233480][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   95.242426][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   95.253666][ T4377] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.262708][ T4377] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.271864][ T4377] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.280665][ T4377] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.336629][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.351016][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.371029][ T1105] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   95.384589][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.393105][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.402342][   T65] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   95.725101][ T4423] loop0: detected capacity change from 0 to 32768
[   95.801086][ T4423] 
[   95.801086][ T4423]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.801086][ T4423] 
[   95.836583][ T4423] 
[   95.836583][ T4423]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.836583][ T4423] 
[   95.852096][ T4423] 
[   95.852096][ T4423]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.852096][ T4423] 
[   95.867931][ T4423] 
[   95.867931][ T4423]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.867931][ T4423] 
[   95.882406][ T4423] 
[   95.882406][ T4423]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.882406][ T4423] 
[   95.922652][  T108] 
[   95.922652][  T108]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.922652][  T108] 
[   95.933771][   T26] audit: type=1800 audit(1766381793.262:2): pid=4423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17" name="file2" dev="loop0" ino=7 res=0 errno=0
[   95.958711][ T4424] ==================================================================
[   95.966827][ T4424] BUG: KASAN: slab-out-of-bounds in diWrite+0xbe6/0x1600
[   95.973909][ T4424] Read of size 32 at addr ffff888068b4c130 by task syz.0.17/4424
[   95.981657][ T4424] 
[   95.984022][ T4424] CPU: 0 PID: 4424 Comm: syz.0.17 Not tainted syzkaller #0
[   95.991244][ T4424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.001333][ T4424] Call Trace:
[   96.004652][ T4424]  <TASK>
[   96.007612][ T4424]  dump_stack_lvl+0x168/0x22e
[   96.012333][ T4424]  ? __lock_acquire+0x7c50/0x7c50
[   96.017424][ T4424]  ? show_regs_print_info+0x12/0x12
[   96.022666][ T4424]  ? load_image+0x3b0/0x3b0
[   96.027188][ T4424]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[   96.032587][ T4424]  ? __virt_addr_valid+0x188/0x540
[   96.037733][ T4424]  ? __virt_addr_valid+0x465/0x540
[   96.042866][ T4424]  ? diWrite+0xbe6/0x1600
[   96.047240][ T4424]  print_report+0xa8/0x210
[   96.051676][ T4424]  kasan_report+0x10b/0x140
[   96.056207][ T4424]  ? diWrite+0xbe6/0x1600
[   96.060562][ T4424]  ? diWrite+0xbe6/0x1600
[   96.064914][ T4424]  kasan_check_range+0x27b/0x290
[   96.069871][ T4424]  memcpy+0x25/0x60
[   96.073692][ T4424]  diWrite+0xbe6/0x1600
[   96.077880][ T4424]  txCommit+0x84b/0x51c0
[   96.082147][ T4424]  ? dtTruncateEntry+0x840/0x840
[   96.087102][ T4424]  ? txLinelock+0x160/0x160
[   96.091624][ T4424]  ? rcu_is_watching+0x11/0xa0
[   96.096430][ T4424]  ? __mark_inode_dirty+0x3de/0xe90
[   96.101656][ T4424]  add_missing_indices+0x791/0xaa0
[   96.106781][ T4424]  ? dtReadFirst+0x8f0/0x8f0
[   96.111382][ T4424]  ? alloc_pages+0x4d8/0x740
[   96.115993][ T4424]  jfs_readdir+0x1da7/0x3b40
[   96.120610][ T4424]  ? dtInitRoot+0x660/0x660
[   96.125135][ T4424]  ? end_current_label_crit_section+0x14b/0x170
[   96.131405][ T4424]  ? common_file_perm+0x171/0x1c0
[   96.136468][ T4424]  ? iterate_dir+0x133/0x560
[   96.141087][ T4424]  iterate_dir+0x218/0x560
[   96.145532][ T4424]  __se_sys_getdents64+0xe5/0x260
[   96.150584][ T4424]  ? __x64_sys_getdents64+0x80/0x80
[   96.155805][ T4424]  ? filldir+0x700/0x700
[   96.160070][ T4424]  ? lockdep_hardirqs_on+0x94/0x140
[   96.165284][ T4424]  do_syscall_64+0x4c/0xa0
[   96.169720][ T4424]  ? clear_bhb_loop+0x60/0xb0
[   96.174414][ T4424]  ? clear_bhb_loop+0x60/0xb0
[   96.179115][ T4424]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   96.185026][ T4424] RIP: 0033:0x7fa428f8f749
[   96.189481][ T4424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.209109][ T4424] RSP: 002b:00007fa429d5e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   96.217541][ T4424] RAX: ffffffffffffffda RBX: 00007fa4291e6090 RCX: 00007fa428f8f749
[   96.225547][ T4424] RDX: 00000000000000ea RSI: 0000200000000080 RDI: 0000000000000005
[   96.233535][ T4424] RBP: 00007fa429013f91 R08: 0000000000000000 R09: 0000000000000000
[   96.241521][ T4424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.249512][ T4424] R13: 00007fa4291e6128 R14: 00007fa4291e6090 R15: 00007ffd14870fa8
[   96.257504][ T4424]  </TASK>
[   96.260541][ T4424] 
[   96.262874][ T4424] The buggy address belongs to the object at ffff888068b4c0c0
[   96.262874][ T4424]  which belongs to the cache jfs_ip of size 2240
[   96.276591][ T4424] The buggy address is located 112 bytes inside of
[   96.276591][ T4424]  2240-byte region [ffff888068b4c0c0, ffff888068b4c980)
[   96.289965][ T4424] 
[   96.292307][ T4424] The buggy address belongs to the physical page:
[   96.298738][ T4424] page:ffffea0001a2d200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68b48
[   96.308903][ T4424] head:ffffea0001a2d200 order:3 compound_mapcount:0 compound_pincount:0
[   96.317241][ T4424] memcg:ffff88802eb95001
[   96.321491][ T4424] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   96.329535][ T4424] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff888147adac80
[   96.338138][ T4424] raw: 0000000000000000 00000000800d000d 00000001ffffffff ffff88802eb95001
[   96.346731][ T4424] page dumped because: kasan: bad access detected
[   96.353163][ T4424] page_owner tracks the page as allocated
[   96.358887][ T4424] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 4423, tgid 4422 (syz.0.17), ts 95760357695, free_ts 24893445282
[   96.382267][ T4424]  post_alloc_hook+0x173/0x1a0
[   96.387066][ T4424]  get_page_from_freelist+0x1a26/0x1ac0
[   96.392652][ T4424]  __alloc_pages+0x1df/0x4e0
[   96.397265][ T4424]  alloc_slab_page+0x5d/0x160
[   96.401962][ T4424]  new_slab+0x87/0x2c0
[   96.406057][ T4424]  ___slab_alloc+0xbc6/0x1230
[   96.410751][ T4424]  kmem_cache_alloc_lru+0x1ae/0x2e0
[   96.415963][ T4424]  jfs_alloc_inode+0x24/0x60
[   96.420575][ T4424]  new_inode_pseudo+0x5f/0x1c0
[   96.425355][ T4424]  new_inode+0x25/0x1c0
[   96.429533][ T4424]  jfs_fill_super+0x392/0xac0
[   96.434229][ T4424]  mount_bdev+0x287/0x3c0
[   96.438571][ T4424]  legacy_get_tree+0xe6/0x180
[   96.443265][ T4424]  vfs_get_tree+0x88/0x270
[   96.447696][ T4424]  do_new_mount+0x24a/0xa40
[   96.452217][ T4424]  __se_sys_mount+0x2d6/0x3c0
[   96.456911][ T4424] page last free stack trace:
[   96.461621][ T4424]  free_unref_page_prepare+0x8b4/0x9a0
[   96.467106][ T4424]  free_unref_page+0x2e/0x3f0
[   96.471805][ T4424]  free_contig_range+0x9d/0x150
[   96.476683][ T4424]  destroy_args+0x100/0xa31
[   96.481209][ T4424]  debug_vm_pgtable+0x32a/0x37e
[   96.486072][ T4424]  do_one_initcall+0x214/0x7a0
[   96.490852][ T4424]  do_initcall_level+0x137/0x1e4
[   96.495810][ T4424]  do_initcalls+0x4b/0x8a
[   96.500168][ T4424]  kernel_init_freeable+0x3fa/0x5ac
[   96.505388][ T4424]  kernel_init+0x19/0x1b0
[   96.509733][ T4424]  ret_from_fork+0x1f/0x30
[   96.514202][ T4424] 
[   96.516541][ T4424] Memory state around the buggy address:
[   96.522191][ T4424]  ffff888068b4c000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   96.530270][ T4424]  ffff888068b4c080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   96.538348][ T4424] >ffff888068b4c100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   96.546420][ T4424]                                      ^
[   96.552063][ T4424]  ffff888068b4c180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   96.560140][ T4424]  ffff888068b4c200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   96.568210][ T4424] ==================================================================
[   96.608300][ T4424] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   96.615560][ T4424] CPU: 0 PID: 4424 Comm: syz.0.17 Not tainted syzkaller #0
[   96.622797][ T4424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.632880][ T4424] Call Trace:
[   96.636194][ T4424]  <TASK>
[   96.639162][ T4424]  dump_stack_lvl+0x168/0x22e
[   96.643891][ T4424]  ? memcpy+0x3c/0x60
[   96.647899][ T4424]  ? show_regs_print_info+0x12/0x12
[   96.653155][ T4424]  ? load_image+0x3b0/0x3b0
[   96.657698][ T4424]  panic+0x2c9/0x710
[   96.661626][ T4424]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   96.667822][ T4424]  ? bpf_jit_dump+0xd0/0xd0
[   96.672364][ T4424]  ? _raw_spin_unlock_irqrestore+0xf6/0x100
[   96.678261][ T4424]  ? _raw_spin_unlock+0x40/0x40
[   96.683121][ T4424]  check_panic_on_warn+0x80/0xa0
[   96.688080][ T4424]  ? diWrite+0xbe6/0x1600
[   96.692449][ T4424]  end_report+0x66/0x110
[   96.696704][ T4424]  kasan_report+0x118/0x140
[   96.701230][ T4424]  ? diWrite+0xbe6/0x1600
[   96.705580][ T4424]  ? diWrite+0xbe6/0x1600
[   96.709935][ T4424]  kasan_check_range+0x27b/0x290
[   96.714935][ T4424]  memcpy+0x25/0x60
[   96.718765][ T4424]  diWrite+0xbe6/0x1600
[   96.722943][ T4424]  txCommit+0x84b/0x51c0
[   96.727204][ T4424]  ? dtTruncateEntry+0x840/0x840
[   96.732169][ T4424]  ? txLinelock+0x160/0x160
[   96.736709][ T4424]  ? rcu_is_watching+0x11/0xa0
[   96.741518][ T4424]  ? __mark_inode_dirty+0x3de/0xe90
[   96.746725][ T4424]  add_missing_indices+0x791/0xaa0
[   96.751852][ T4424]  ? dtReadFirst+0x8f0/0x8f0
[   96.756448][ T4424]  ? alloc_pages+0x4d8/0x740
[   96.761049][ T4424]  jfs_readdir+0x1da7/0x3b40
[   96.765654][ T4424]  ? dtInitRoot+0x660/0x660
[   96.770173][ T4424]  ? end_current_label_crit_section+0x14b/0x170
[   96.776442][ T4424]  ? common_file_perm+0x171/0x1c0
[   96.781481][ T4424]  ? iterate_dir+0x133/0x560
[   96.786098][ T4424]  iterate_dir+0x218/0x560
[   96.790525][ T4424]  __se_sys_getdents64+0xe5/0x260
[   96.795577][ T4424]  ? __x64_sys_getdents64+0x80/0x80
[   96.800797][ T4424]  ? filldir+0x700/0x700
[   96.805054][ T4424]  ? lockdep_hardirqs_on+0x94/0x140
[   96.810273][ T4424]  do_syscall_64+0x4c/0xa0
[   96.814727][ T4424]  ? clear_bhb_loop+0x60/0xb0
[   96.819436][ T4424]  ? clear_bhb_loop+0x60/0xb0
[   96.824168][ T4424]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   96.830108][ T4424] RIP: 0033:0x7fa428f8f749
[   96.834540][ T4424] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.854160][ T4424] RSP: 002b:00007fa429d5e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   96.862678][ T4424] RAX: ffffffffffffffda RBX: 00007fa4291e6090 RCX: 00007fa428f8f749
[   96.870657][ T4424] RDX: 00000000000000ea RSI: 0000200000000080 RDI: 0000000000000005
[   96.878633][ T4424] RBP: 00007fa429013f91 R08: 0000000000000000 R09: 0000000000000000
[   96.886639][ T4424] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.894624][ T4424] R13: 00007fa4291e6128 R14: 00007fa4291e6090 R15: 00007ffd14870fa8
[   96.902693][ T4424]  </TASK>
[   96.906309][ T4424] Kernel Offset: disabled
[   96.910646][ T4424] Rebooting in 86400 seconds..