Warning: Permanently added '10.128.10.39' (ED25519) to the list of known hosts.
2025/07/07 22:31:36 ignoring optional flag "sandboxArg"="0"
2025/07/07 22:31:37 parsed 1 programs
[ 72.027314][ T4189] cgroup: Unknown subsys name 'net'
[ 72.165955][ T4189] cgroup: Unknown subsys name 'rlimit'
[ 73.640083][ T4189] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 75.046181][ T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.069297][ T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.075471][ T440] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.078307][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 75.087874][ T440] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.105374][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 75.913944][ T4224] chnl_net:caif_netlink_parms(): no params data found
[ 75.972699][ T4224] bridge0: port 1(bridge_slave_0) entered blocking state
[ 75.981792][ T4224] bridge0: port 1(bridge_slave_0) entered disabled state
[ 75.990311][ T4224] device bridge_slave_0 entered promiscuous mode
[ 76.000638][ T4224] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.007799][ T4224] bridge0: port 2(bridge_slave_1) entered disabled state
[ 76.017570][ T4224] device bridge_slave_1 entered promiscuous mode
[ 76.050046][ T4224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 76.064052][ T4224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 76.097186][ T4224] team0: Port device team_slave_0 added
[ 76.106521][ T4224] team0: Port device team_slave_1 added
[ 76.134022][ T4224] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 76.142467][ T4224] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 76.170273][ T4224] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 76.183867][ T4224] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 76.192485][ T4224] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 76.224031][ T4224] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 76.269349][ T4224] device hsr_slave_0 entered promiscuous mode
[ 76.276382][ T4224] device hsr_slave_1 entered promiscuous mode
[ 76.426931][ T4224] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 76.442931][ T4224] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 76.452999][ T4224] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 76.464764][ T4224] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 76.557445][ T4224] 8021q: adding VLAN 0 to HW filter on device bond0
[ 76.578169][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 76.590809][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 76.603976][ T4224] 8021q: adding VLAN 0 to HW filter on device team0
[ 76.617223][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 76.627991][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 76.637478][ T162] bridge0: port 1(bridge_slave_0) entered blocking state
[ 76.644887][ T162] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 76.670195][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 76.678780][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 76.687844][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 76.698098][ T162] bridge0: port 2(bridge_slave_1) entered blocking state
[ 76.705257][ T162] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 76.716603][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 76.726249][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 76.744802][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 76.755457][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 76.777558][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 76.786774][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 76.796329][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 76.808356][ T4224] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 76.940306][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 76.947869][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 76.964525][ T4224] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 76.989453][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 77.014291][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 77.024644][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 77.033223][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 77.046317][ T4224] device veth0_vlan entered promiscuous mode
[ 77.062718][ T4224] device veth1_vlan entered promiscuous mode
[ 77.071832][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 77.102102][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 77.111159][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 77.123611][ T4224] device veth0_macvtap entered promiscuous mode
[ 77.136606][ T4224] device veth1_macvtap entered promiscuous mode
[ 77.156370][ T4224] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 77.165489][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 77.174026][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 77.183004][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 77.192369][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 77.205805][ T4224] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 77.213809][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 77.222610][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 77.236834][ T4224] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.246273][ T4224] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.255506][ T4224] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 77.267431][ T4224] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/07/07 22:31:46 executed programs: 0
[ 79.221170][ T4284] chnl_net:caif_netlink_parms(): no params data found
[ 79.293166][ T4284] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.300478][ T4284] bridge0: port 1(bridge_slave_0) entered disabled state
[ 79.308766][ T4284] device bridge_slave_0 entered promiscuous mode
[ 79.320450][ T4284] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.327631][ T4284] bridge0: port 2(bridge_slave_1) entered disabled state
[ 79.336163][ T4284] device bridge_slave_1 entered promiscuous mode
[ 79.365070][ T4284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 79.376984][ T4284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 79.411750][ T4284] team0: Port device team_slave_0 added
[ 79.420152][ T4284] team0: Port device team_slave_1 added
[ 79.454188][ T4284] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 79.461321][ T4284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.490699][ T4284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 79.505149][ T4284] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 79.513829][ T4284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.542558][ T4284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 79.585456][ T4284] device hsr_slave_0 entered promiscuous mode
[ 79.595046][ T4284] device hsr_slave_1 entered promiscuous mode
[ 79.602250][ T4284] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 79.613027][ T4284] Cannot create hsr debugfs directory
[ 79.709931][ T4284] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 81.099990][ T4247] Bluetooth: hci0: command 0x0409 tx timeout
[ 82.268664][ T4284] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 82.366340][ T4284] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 82.428701][ T4284] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 82.659504][ T4284] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 82.669889][ T4284] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 82.682762][ T4284] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 82.714356][ T4284] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 82.755855][ T440] device hsr_slave_0 left promiscuous mode
[ 82.763953][ T440] device hsr_slave_1 left promiscuous mode
[ 82.770667][ T440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 82.778117][ T440] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 82.786678][ T440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 82.794550][ T440] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 82.802701][ T440] device bridge_slave_1 left promiscuous mode
[ 82.809963][ T440] bridge0: port 2(bridge_slave_1) entered disabled state
[ 82.823907][ T440] device bridge_slave_0 left promiscuous mode
[ 82.830311][ T440] bridge0: port 1(bridge_slave_0) entered disabled state
[ 82.848753][ T440] device veth1_macvtap left promiscuous mode
[ 82.856240][ T440] device veth0_macvtap left promiscuous mode
[ 82.862795][ T440] device veth1_vlan left promiscuous mode
[ 82.868737][ T440] device veth0_vlan left promiscuous mode
[ 83.043159][ T440] team0 (unregistering): Port device team_slave_1 removed
[ 83.058468][ T440] team0 (unregistering): Port device team_slave_0 removed
[ 83.072110][ T440] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 83.085761][ T440] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 83.148169][ T440] bond0 (unregistering): Released all slaves
[ 83.179458][ T4236] Bluetooth: hci0: command 0x041b tx timeout
[ 83.213410][ T4284] 8021q: adding VLAN 0 to HW filter on device bond0
[ 83.225584][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 83.234535][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 83.245704][ T4284] 8021q: adding VLAN 0 to HW filter on device team0
[ 83.257591][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 83.268707][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 83.280027][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.287119][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.295929][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 83.309529][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 83.318449][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 83.327369][ T154] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.334835][ T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 83.355157][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 83.375376][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 83.385001][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 83.394381][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 83.403098][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 83.412675][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 83.421628][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 83.433611][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 83.442366][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 83.466541][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 83.475309][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 83.485777][ T4284] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 83.586473][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 83.594118][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 83.606410][ T4284] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 83.639144][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 83.648163][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 83.668264][ T4284] device veth0_vlan entered promiscuous mode
[ 83.675994][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 83.686140][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 83.696812][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 83.706135][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 83.721237][ T4284] device veth1_vlan entered promiscuous mode
[ 83.744120][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 83.754776][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 83.763621][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 83.774010][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 83.786204][ T4284] device veth0_macvtap entered promiscuous mode
[ 83.797728][ T4284] device veth1_macvtap entered promiscuous mode
[ 83.815207][ T4284] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 83.823268][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 83.832905][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 83.841831][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 83.852100][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 83.865242][ T4284] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 83.874223][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 83.883581][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 83.897433][ T4284] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.906616][ T4284] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.915722][ T4284] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.924878][ T4284] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.991633][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 84.004598][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 84.027900][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
2025/07/07 22:31:51 executed programs: 2
[ 84.031440][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 84.040642][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 84.052991][ T162] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 84.121887][ T4304] loop0: detected capacity change from 0 to 2048
[ 84.191575][ T4304] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 84.565157][ T4284] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry at pos 0 with incorrect tag 0
[ 84.589348][ T4284] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry at pos 0 with incorrect tag 0
[ 84.617449][ T4284] ==================================================================
[ 84.625807][ T4284] BUG: KASAN: use-after-free in crc_itu_t+0x1ad/0x280
[ 84.632623][ T4284] Read of size 1 at addr ffff88806a085000 by task syz-executor/4284
[ 84.640626][ T4284]
[ 84.642978][ T4284] CPU: 1 PID: 4284 Comm: syz-executor Not tainted 5.15.186-syzkaller #0
[ 84.651322][ T4284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 84.661419][ T4284] Call Trace:
[ 84.664727][ T4284]
[ 84.667766][ T4284] dump_stack_lvl+0x168/0x230
[ 84.672506][ T4284] ? show_regs_print_info+0x20/0x20
[ 84.677743][ T4284] ? load_image+0x3b0/0x3b0
[ 84.682272][ T4284] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 84.687680][ T4284] print_address_description+0x60/0x2d0
[ 84.693255][ T4284] ? crc_itu_t+0x1ad/0x280
[ 84.697696][ T4284] kasan_report+0xdf/0x130
[ 84.702140][ T4284] ? crc_itu_t+0x1ad/0x280
[ 84.706581][ T4284] crc_itu_t+0x1ad/0x280
[ 84.710864][ T4284] udf_sync_fs+0x194/0x350
[ 84.715313][ T4284] ? udf_put_super+0x160/0x160
[ 84.720113][ T4284] ? cpumask_next+0xb3/0xd0
[ 84.724644][ T4284] ? get_nr_dirty_inodes+0x248/0x2d0
[ 84.729967][ T4284] sync_filesystem+0xe6/0x220
[ 84.734674][ T4284] generic_shutdown_super+0x6b/0x300
[ 84.739989][ T4284] kill_block_super+0x7c/0xe0
[ 84.744693][ T4284] deactivate_locked_super+0x93/0xf0
[ 84.750006][ T4284] cleanup_mnt+0x418/0x4d0
[ 84.754445][ T4284] ? lockdep_hardirqs_on+0x94/0x140
[ 84.759673][ T4284] task_work_run+0x125/0x1a0
[ 84.764294][ T4284] do_exit+0x61e/0x20a0
[ 84.768482][ T4284] ? put_task_struct+0x80/0x80
[ 84.773277][ T4284] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 84.779290][ T4284] ? lock_chain_count+0x20/0x20
[ 84.784188][ T4284] do_group_exit+0x12e/0x300
[ 84.788817][ T4284] __x64_sys_exit_group+0x3b/0x40
[ 84.793914][ T4284] do_syscall_64+0x4c/0xa0
[ 84.798358][ T4284] ? clear_bhb_loop+0x30/0x80
[ 84.803063][ T4284] ? clear_bhb_loop+0x30/0x80
[ 84.807769][ T4284] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 84.813705][ T4284] RIP: 0033:0x7f42eff79929
[ 84.818146][ T4284] Code: Unable to access opcode bytes at RIP 0x7f42eff798ff.
[ 84.825534][ T4284] RSP: 002b:00007fff35993398 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 84.833985][ T4284] RAX: ffffffffffffffda RBX: 00007f42efffb997 RCX: 00007f42eff79929
[ 84.841978][ T4284] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 84.849972][ T4284] RBP: 0000000000000010 R08: 00007fff35991136 R09: 00007fff35994650
[ 84.857965][ T4284] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff35994650
[ 84.865954][ T4284] R13: 00007f42efffb925 R14: 00005555650754a8 R15: 00007fff35995720
[ 84.873973][ T4284]
[ 84.877015][ T4284]
[ 84.879353][ T4284] The buggy address belongs to the page:
[ 84.885007][ T4284] page:ffffea0001a82140 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6a085
[ 84.895182][ T4284] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 84.902317][ T4284] raw: 00fff00000000000 ffffea0001a3abc8 ffffea0001a4bc08 0000000000000000
[ 84.911089][ T4284] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 84.919684][ T4284] page dumped because: kasan: bad access detected
[ 84.926124][ T4284] page_owner tracks the page as freed
[ 84.931495][ T4284] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 4284, ts 84100289477, free_ts 84612708019
[ 84.946091][ T4284] get_page_from_freelist+0x1b77/0x1c60
[ 84.951657][ T4284] __alloc_pages+0x1e1/0x470
[ 84.956259][ T4284] alloc_pages_vma+0x393/0x7c0
[ 84.961034][ T4284] wp_page_copy+0x235/0x1fd0
[ 84.965644][ T4284] handle_mm_fault+0x1eca/0x43c0
[ 84.970604][ T4284] do_user_addr_fault+0x489/0xc80
[ 84.975645][ T4284] exc_page_fault+0x60/0x100
[ 84.980338][ T4284] asm_exc_page_fault+0x22/0x30
[ 84.985213][ T4284] page last free stack trace:
[ 84.989907][ T4284] free_unref_page_prepare+0x637/0x6c0
[ 84.995390][ T4284] free_unref_page_list+0x122/0x7e0
[ 85.000607][ T4284] release_pages+0x184b/0x1bb0
[ 85.005400][ T4284] tlb_finish_mmu+0x164/0x2e0
[ 85.010220][ T4284] exit_mmap+0x3a6/0x5f0
[ 85.014509][ T4284] __mmput+0x115/0x3b0
[ 85.018598][ T4284] exit_mm+0x567/0x6c0
[ 85.022678][ T4284] do_exit+0x5a1/0x20a0
[ 85.026843][ T4284] do_group_exit+0x12e/0x300
[ 85.031448][ T4284] __x64_sys_exit_group+0x3b/0x40
[ 85.036486][ T4284] do_syscall_64+0x4c/0xa0
[ 85.040910][ T4284] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 85.046820][ T4284]
[ 85.049149][ T4284] Memory state around the buggy address:
[ 85.054791][ T4284] ffff88806a084f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.062948][ T4284] ffff88806a084f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 85.071020][ T4284] >ffff88806a085000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 85.079085][ T4284] ^
[ 85.083159][ T4284] ffff88806a085080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 85.091231][ T4284] ffff88806a085100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 85.099510][ T4284] ==================================================================
[ 85.107588][ T4284] Disabling lock debugging due to kernel taint
[ 85.119285][ T4284] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 85.126638][ T4284] CPU: 0 PID: 4284 Comm: syz-executor Tainted: G B 5.15.186-syzkaller #0
[ 85.136380][ T4284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 85.146463][ T4284] Call Trace:
[ 85.149772][ T4284]
[ 85.152718][ T4284] dump_stack_lvl+0x168/0x230
[ 85.157419][ T4284] ? show_regs_print_info+0x20/0x20
[ 85.162637][ T4284] ? load_image+0x3b0/0x3b0
[ 85.167177][ T4284] panic+0x2c9/0x7f0
[ 85.171109][ T4284] ? bpf_jit_dump+0xd0/0xd0
[ 85.175644][ T4284] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 85.181570][ T4284] ? _raw_spin_unlock+0x40/0x40
[ 85.186448][ T4284] ? crc_itu_t+0x1ad/0x280
[ 85.190884][ T4284] check_panic_on_warn+0x80/0xa0
[ 85.195841][ T4284] ? crc_itu_t+0x1ad/0x280
[ 85.200262][ T4284] end_report+0x6d/0xf0
[ 85.204415][ T4284] kasan_report+0x102/0x130
[ 85.208923][ T4284] ? crc_itu_t+0x1ad/0x280
[ 85.213351][ T4284] crc_itu_t+0x1ad/0x280
[ 85.217592][ T4284] udf_sync_fs+0x194/0x350
[ 85.222012][ T4284] ? udf_put_super+0x160/0x160
[ 85.226866][ T4284] ? cpumask_next+0xb3/0xd0
[ 85.231369][ T4284] ? get_nr_dirty_inodes+0x248/0x2d0
[ 85.236743][ T4284] sync_filesystem+0xe6/0x220
[ 85.241428][ T4284] generic_shutdown_super+0x6b/0x300
[ 85.246718][ T4284] kill_block_super+0x7c/0xe0
[ 85.251393][ T4284] deactivate_locked_super+0x93/0xf0
[ 85.256681][ T4284] cleanup_mnt+0x418/0x4d0
[ 85.259932][ T4244] Bluetooth: hci0: command 0x040f tx timeout
[ 85.261098][ T4284] ? lockdep_hardirqs_on+0x94/0x140
[ 85.272270][ T4284] task_work_run+0x125/0x1a0
[ 85.276862][ T4284] do_exit+0x61e/0x20a0
[ 85.281016][ T4284] ? put_task_struct+0x80/0x80
[ 85.285783][ T4284] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 85.291767][ T4284] ? lock_chain_count+0x20/0x20
[ 85.296659][ T4284] do_group_exit+0x12e/0x300
[ 85.301252][ T4284] __x64_sys_exit_group+0x3b/0x40
[ 85.306276][ T4284] do_syscall_64+0x4c/0xa0
[ 85.310691][ T4284] ? clear_bhb_loop+0x30/0x80
[ 85.315365][ T4284] ? clear_bhb_loop+0x30/0x80
[ 85.320037][ T4284] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 85.325930][ T4284] RIP: 0033:0x7f42eff79929
[ 85.330344][ T4284] Code: Unable to access opcode bytes at RIP 0x7f42eff798ff.
[ 85.337790][ T4284] RSP: 002b:00007fff35993398 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 85.346834][ T4284] RAX: ffffffffffffffda RBX: 00007f42efffb997 RCX: 00007f42eff79929
[ 85.354812][ T4284] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 85.362787][ T4284] RBP: 0000000000000010 R08: 00007fff35991136 R09: 00007fff35994650
[ 85.370769][ T4284] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff35994650
[ 85.378744][ T4284] R13: 00007f42efffb925 R14: 00005555650754a8 R15: 00007fff35995720
[ 85.386730][ T4284]
[ 85.390031][ T4284] Kernel Offset: disabled
[ 85.394373][ T4284] Rebooting in 86400 seconds..