Warning: Permanently added '[localhost]:23015' (ED25519) to the list of known hosts.
2025/03/05 23:15:48 ignoring optional flag "sandboxArg"="0"
2025/03/05 23:15:50 parsed 1 programs
[ 81.708090][ T5311] cgroup: Unknown subsys name 'net'
[ 81.779806][ T5311] cgroup: Unknown subsys name 'cpuset'
[ 81.787588][ T5311] cgroup: Unknown subsys name 'rlimit'
[ 83.377904][ T5311] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 86.866016][ T9] cfg80211: failed to load regulatory.db
[ 88.558087][ T5319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 89.306848][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.310277][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.358706][ T30] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.363034][ T30] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.822193][ T5337] chnl_net:caif_netlink_parms(): no params data found
[ 89.930562][ T5337] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.936507][ T5337] bridge0: port 1(bridge_slave_0) entered disabled state
[ 89.939491][ T5337] bridge_slave_0: entered allmulticast mode
[ 89.956356][ T5337] bridge_slave_0: entered promiscuous mode
[ 89.961468][ T5337] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.964036][ T5337] bridge0: port 2(bridge_slave_1) entered disabled state
[ 89.978122][ T5337] bridge_slave_1: entered allmulticast mode
[ 89.981301][ T5337] bridge_slave_1: entered promiscuous mode
[ 90.021567][ T5337] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 90.038146][ T5337] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 90.088261][ T5337] team0: Port device team_slave_0 added
[ 90.093474][ T5337] team0: Port device team_slave_1 added
[ 90.137252][ T5337] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 90.140223][ T5337] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.165786][ T5337] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 90.186013][ T5337] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 90.189582][ T5337] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.216843][ T5337] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 90.287746][ T5337] hsr_slave_0: entered promiscuous mode
[ 90.291652][ T5337] hsr_slave_1: entered promiscuous mode
[ 90.529023][ T5337] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 90.549881][ T5337] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 90.560374][ T5337] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 90.579696][ T5337] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 90.732387][ T5337] 8021q: adding VLAN 0 to HW filter on device bond0
[ 90.770716][ T5337] 8021q: adding VLAN 0 to HW filter on device team0
[ 90.796065][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 90.800117][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 90.820650][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.823887][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 90.883140][ T5337] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 90.900744][ T5337] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 91.144061][ T5337] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 91.202909][ T5337] veth0_vlan: entered promiscuous mode
[ 91.231078][ T5337] veth1_vlan: entered promiscuous mode
[ 91.274402][ T5337] veth0_macvtap: entered promiscuous mode
[ 91.290727][ T5337] veth1_macvtap: entered promiscuous mode
[ 91.314381][ T5337] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 91.340793][ T5337] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 91.352342][ T5337] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.366673][ T5337] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.370391][ T5337] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.373912][ T5337] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.668358][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.766919][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.848217][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 92.819816][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 93.239537][ T5375] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 93.244739][ T5375] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 93.249816][ T5375] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 93.253327][ T5375] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 93.265105][ T5375] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 93.268626][ T5375] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 94.470605][ T12] bridge_slave_1: left allmulticast mode
[ 94.473497][ T12] bridge_slave_1: left promiscuous mode
[ 94.499868][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.516237][ T12] bridge_slave_0: left allmulticast mode
[ 94.518472][ T12] bridge_slave_0: left promiscuous mode
[ 94.521185][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.505360][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 95.519654][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 95.536117][ T12] bond0 (unregistering): Released all slaves
[ 95.670421][ T12] hsr_slave_0: left promiscuous mode
[ 95.673327][ T12] hsr_slave_1: left promiscuous mode
[ 95.686861][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 95.689962][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 95.699135][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 95.702253][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 95.723520][ T12] veth1_macvtap: left promiscuous mode
[ 95.737453][ T12] veth0_macvtap: left promiscuous mode
[ 95.739891][ T12] veth1_vlan: left promiscuous mode
[ 95.743306][ T12] veth0_vlan: left promiscuous mode
[ 96.327232][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 96.354731][ T12] team0 (unregistering): Port device team_slave_0 removed
2025/03/05 23:16:10 executed programs: 0
[ 99.904262][ T4663] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 99.909209][ T4663] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 99.912454][ T4663] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 99.918138][ T4663] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 99.921620][ T4663] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 99.925156][ T4663] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 100.178485][ T5464] chnl_net:caif_netlink_parms(): no params data found
[ 100.270072][ T5464] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.277099][ T5464] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.280150][ T5464] bridge_slave_0: entered allmulticast mode
[ 100.299691][ T5464] bridge_slave_0: entered promiscuous mode
[ 100.307745][ T5464] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.317067][ T5464] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.320421][ T5464] bridge_slave_1: entered allmulticast mode
[ 100.336492][ T5464] bridge_slave_1: entered promiscuous mode
[ 100.378771][ T5464] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.384184][ T5464] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.431833][ T5464] team0: Port device team_slave_0 added
[ 100.441767][ T5464] team0: Port device team_slave_1 added
[ 100.471506][ T5464] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.474348][ T5464] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.503987][ T5464] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.513923][ T5464] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.520038][ T5464] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.532775][ T5464] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.582119][ T5464] hsr_slave_0: entered promiscuous mode
[ 100.585190][ T5464] hsr_slave_1: entered promiscuous mode
[ 101.172144][ T5464] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 101.192009][ T5464] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 101.204556][ T5464] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 101.227651][ T5464] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.348456][ T5464] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.378506][ T5464] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.398026][ T46] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.401189][ T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.423626][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.426924][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.485183][ T5464] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 101.506641][ T5464] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 101.734472][ T5464] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.795272][ T5464] veth0_vlan: entered promiscuous mode
[ 101.810578][ T5464] veth1_vlan: entered promiscuous mode
[ 101.855023][ T5464] veth0_macvtap: entered promiscuous mode
[ 101.870931][ T5464] veth1_macvtap: entered promiscuous mode
[ 101.897941][ T5464] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.918146][ T5464] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.923403][ T5464] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.940998][ T5464] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.944360][ T5464] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.955699][ T5464] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.978857][ T4663] Bluetooth: hci0: command tx timeout
[ 102.073157][ T30] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.087466][ T30] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.128681][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.132331][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.700110][ T5514] loop0: detected capacity change from 0 to 32768
[ 102.717075][ T5514] =======================================================
[ 102.717075][ T5514] WARNING: The mand mount option has been deprecated and
[ 102.717075][ T5514] and is ignored by this kernel. Remove the mand
[ 102.717075][ T5514] option from the mount to silence this warning.
[ 102.717075][ T5514] =======================================================
[ 102.915435][ T5514] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[ 102.943074][ T5514] invalid journal entry, version=1.7: mi_btree_bitmap type=btree_root in superblock: invalid btree root journal entry: wrong number of keys, fixing
[ 102.965957][ T5514] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[ 102.969548][ T5514] bcachefs (loop0): superblock requires following recovery passes to be run:
[ 102.969548][ T5514] recovery_pass_empty,accounting_read
[ 102.974931][ T5514] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.20: directory_size
[ 102.974931][ T5514] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[ 103.026550][ T5514] bcachefs (loop0): error validating btree node on loop0 at btree extents level 0/0
[ 103.026577][ T5514] u64s 11 type btree_ptr_v2 U64_MAX:U64_MAX:4278190080 len 0 ver 0: seq c6c25c03258c59c5 written 16 min_key POS_MIN durability: 1 ptr: 0:27:0 gen 0
[ 103.026586][ T5514] node offset 0/16 bset u64s 0: incorrect max key SPOS_MAX
[ 103.066970][ T5514] bcachefs (loop0): running explicit recovery pass check_topology (2), currently at recovery_pass_empty (0)
[ 103.072783][ T5514] bcachefs (loop0): flagging btree extents lost data
[ 103.087717][ T5514] bcachefs (loop0): running explicit recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[ 103.091989][ T5514] bcachefs (loop0): running explicit recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[ 103.116283][ T5514] bcachefs (loop0): running explicit recovery pass scan_for_btree_nodes (1), currently at recovery_pass_empty (0)
[ 103.139691][ T5514] error reading btree root btree=extents level=0: btree_node_read_error, fixing
[ 103.146668][ T5514] ==================================================================
[ 103.150131][ T5514] BUG: KASAN: use-after-free in bch2_btree_node_read_done+0x1118/0x6180
[ 103.154216][ T5514] Read of size 8 at addr ffff88803f8d0c10 by task syz.0.16/5514
[ 103.158730][ T5514]
[ 103.159979][ T5514] CPU: 0 UID: 0 PID: 5514 Comm: syz.0.16 Not tainted 6.14.0-rc5-syzkaller-00025-gcfced12f5100 #0
[ 103.159995][ T5514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.160002][ T5514] Call Trace:
[ 103.160010][ T5514]
[ 103.160016][ T5514] dump_stack_lvl+0x241/0x360
[ 103.160033][ T5514] ? __pfx_dump_stack_lvl+0x10/0x10
[ 103.160044][ T5514] ? __pfx__printk+0x10/0x10
[ 103.160053][ T5514] ? _printk+0xd5/0x120
[ 103.160060][ T5514] ? __virt_addr_valid+0x183/0x530
[ 103.160071][ T5514] ? __virt_addr_valid+0x183/0x530
[ 103.160080][ T5514] print_report+0x16e/0x5b0
[ 103.160094][ T5514] ? __virt_addr_valid+0x183/0x530
[ 103.160102][ T5514] ? __virt_addr_valid+0x183/0x530
[ 103.160111][ T5514] ? __virt_addr_valid+0x45f/0x530
[ 103.160119][ T5514] ? __phys_addr+0xba/0x170
[ 103.160128][ T5514] ? bch2_btree_node_read_done+0x1118/0x6180
[ 103.160141][ T5514] kasan_report+0x143/0x180
[ 103.160153][ T5514] ? bch2_btree_node_read_done+0x1118/0x6180
[ 103.160165][ T5514] bch2_btree_node_read_done+0x1118/0x6180
[ 103.160185][ T5514] ? __pfx_bch2_btree_node_read_done+0x10/0x10
[ 103.160196][ T5514] ? __pfx_lock_acquire+0x10/0x10
[ 103.160211][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.160224][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.160237][ T5514] ? __lock_acquire+0x1397/0x2100
[ 103.160252][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.160263][ T5514] ? bch2_bkey_pick_read_device+0x1561/0x1850
[ 103.160276][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.160288][ T5514] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[ 103.160330][ T5514] ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[ 103.160344][ T5514] ? __pfx_bch2_btree_ptr_v2_to_text+0x10/0x10
[ 103.160358][ T5514] btree_node_read_work+0x6dc/0x1380
[ 103.160375][ T5514] ? __pfx_btree_node_read_work+0x10/0x10
[ 103.160386][ T5514] ? bch2_latency_acct+0x47b/0x550
[ 103.160398][ T5514] ? __pfx_bch2_latency_acct+0x10/0x10
[ 103.160410][ T5514] ? bio_associate_blkg+0x6c/0x230
[ 103.160425][ T5514] bch2_btree_node_read+0x2433/0x29f0
[ 103.160442][ T5514] ? bch2_trans_unlock+0x35e/0x480
[ 103.160455][ T5514] ? __pfx_bch2_btree_node_read+0x10/0x10
[ 103.160466][ T5514] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10
[ 103.160482][ T5514] ? bch2_trans_unlock+0x3b5/0x480
[ 103.160497][ T5514] bch2_btree_root_read+0x626/0x7b0
[ 103.160510][ T5514] ? __pfx_bch2_btree_root_read+0x10/0x10
[ 103.160523][ T5514] ? bch2_current_has_btree_trans+0x142/0x180
[ 103.160534][ T5514] read_btree_roots+0x3d3/0xa70
[ 103.160550][ T5514] ? __pfx_read_btree_roots+0x10/0x10
[ 103.160562][ T5514] ? journal_replay_entry_early+0x4d/0xb70
[ 103.160576][ T5514] ? bch2_sb_upgrade+0x1d0/0x250
[ 103.160590][ T5514] ? bch2_recovery_passes_from_stable+0x104/0x120
[ 103.160602][ T5514] bch2_fs_recovery+0x260f/0x3de0
[ 103.160617][ T5514] ? __pfx_bch2_fs_recovery+0x10/0x10
[ 103.160636][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.160650][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.160662][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.160690][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.160697][ T5514] ? bch2_get_next_online_dev+0x4b9/0x4f0
[ 103.160703][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.160711][ T5514] ? llist_reverse_order+0x72/0x90
[ 103.160731][ T5514] bch2_fs_start+0x37c/0x610
[ 103.160742][ T5514] bch2_fs_get_tree+0xdb7/0x17a0
[ 103.160757][ T5514] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 103.160771][ T5514] ? vfs_parse_monolithic_sep+0x423/0x460
[ 103.160786][ T5514] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 103.160798][ T5514] ? vfs_parse_fs_string+0x190/0x230
[ 103.160811][ T5514] ? rcu_is_watching+0x15/0xb0
[ 103.160823][ T5514] ? apparmor_capable+0x13b/0x1b0
[ 103.160834][ T5514] vfs_get_tree+0x90/0x2b0
[ 103.160846][ T5514] do_new_mount+0x2be/0xb40
[ 103.160860][ T5514] ? __pfx_do_new_mount+0x10/0x10
[ 103.160874][ T5514] __se_sys_mount+0x2d6/0x3c0
[ 103.160887][ T5514] ? __pfx___se_sys_mount+0x10/0x10
[ 103.160900][ T5514] ? exc_page_fault+0x590/0x8b0
[ 103.160964][ T5514] ? __x64_sys_mount+0x20/0xc0
[ 103.160977][ T5514] do_syscall_64+0xf3/0x230
[ 103.160990][ T5514] ? clear_bhb_loop+0x35/0x90
[ 103.161005][ T5514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.161019][ T5514] RIP: 0033:0x7fa09db8e90a
[ 103.161031][ T5514] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 103.161039][ T5514] RSP: 002b:00007fffd91d5ff8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 103.161052][ T5514] RAX: ffffffffffffffda RBX: 00007fffd91d6080 RCX: 00007fa09db8e90a
[ 103.161059][ T5514] RDX: 0000400000000100 RSI: 0000400000000080 RDI: 00007fffd91d6040
[ 103.161066][ T5514] RBP: 0000400000000100 R08: 00007fffd91d6080 R09: 00000000022100c0
[ 103.161073][ T5514] R10: 00000000022100c0 R11: 0000000000000246 R12: 0000400000000080
[ 103.161079][ T5514] R13: 00007fffd91d6040 R14: 0000000000005aa0 R15: 00004000000001c0
[ 103.161090][ T5514]
[ 103.161094][ T5514]
[ 103.367674][ T5514] The buggy address belongs to the physical page:
[ 103.370216][ T5514] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803f8d0000 pfn:0x3f8d0
[ 103.374060][ T5514] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 103.376968][ T5514] page_type: f0(buddy)
[ 103.378692][ T5514] raw: 04fff00000000000 ffffea0000fee188 ffffea0000fe2d08 0000000000000000
[ 103.382685][ T5514] raw: ffff88803f8d0000 0000000000000001 00000000f0000000 0000000000000000
[ 103.386647][ T5514] page dumped because: kasan: bad access detected
[ 103.389260][ T5514] page_owner tracks the page as freed
[ 103.391450][ T5514] page last allocated via order 1, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 4727, tgid 4727 (udevd), ts 28432960265, free_ts 89265322305
[ 103.401663][ T5514] post_alloc_hook+0x1f4/0x240
[ 103.403577][ T5514] get_page_from_freelist+0x365c/0x37a0
[ 103.405748][ T5514] __alloc_frozen_pages_noprof+0x292/0x710
[ 103.408105][ T5514] alloc_pages_mpol+0x311/0x660
[ 103.410285][ T5514] allocate_slab+0x8f/0x3a0
[ 103.412344][ T5514] ___slab_alloc+0xc27/0x14a0
[ 103.414620][ T5514] __slab_alloc+0x58/0xa0
[ 103.416574][ T5514] kmem_cache_alloc_lru_noprof+0x26c/0x390
[ 103.418943][ T5514] __d_alloc+0x31/0x740
[ 103.420610][ T5514] d_alloc_parallel+0xdf/0x1630
[ 103.422556][ T5514] __lookup_slow+0x117/0x400
[ 103.424479][ T5514] lookup_slow+0x53/0x70
[ 103.426650][ T5514] link_path_walk+0x99b/0xea0
[ 103.429106][ T5514] path_openat+0x266/0x3590
[ 103.431209][ T5514] do_filp_open+0x27f/0x4e0
[ 103.433292][ T5514] do_sys_openat2+0x13e/0x1d0
[ 103.435050][ T5514] page last free pid 5331 tgid 5331 stack trace:
[ 103.437548][ T5514] free_frozen_pages+0xe0d/0x10e0
[ 103.439601][ T5514] __slab_free+0x2c2/0x380
[ 103.441544][ T5514] qlist_free_all+0x9a/0x140
[ 103.443443][ T5514] kasan_quarantine_reduce+0x14f/0x170
[ 103.445436][ T5514] __kasan_slab_alloc+0x23/0x80
[ 103.447201][ T5514] __kmalloc_cache_noprof+0x1d9/0x390
[ 103.449545][ T5514] ref_tracker_alloc+0x14b/0x490
[ 103.451824][ T5514] register_netdevice+0x1522/0x1b60
[ 103.454115][ T5514] cfg80211_register_netdevice+0x149/0x2f0
[ 103.456419][ T5514] ieee80211_if_add+0x119d/0x1780
[ 103.458349][ T5514] ieee80211_register_hw+0x3708/0x42e0
[ 103.460666][ T5514] mac80211_hwsim_new_radio+0x2ae8/0x4a40
[ 103.463415][ T5514] hwsim_new_radio_nl+0xece/0x2290
[ 103.466160][ T5514] genl_rcv_msg+0xb1f/0xec0
[ 103.468359][ T5514] netlink_rcv_skb+0x206/0x480
[ 103.470434][ T5514] genl_rcv+0x28/0x40
[ 103.472051][ T5514]
[ 103.473078][ T5514] Memory state around the buggy address:
[ 103.475186][ T5514] ffff88803f8d0b00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 103.478273][ T5514] ffff88803f8d0b80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 103.481395][ T5514] >ffff88803f8d0c00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 103.484815][ T5514] ^
[ 103.486963][ T5514] ffff88803f8d0c80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 103.490812][ T5514] ffff88803f8d0d00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 103.493297][ T5514] ==================================================================
[ 103.659475][ T5514] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 103.662564][ T5514] CPU: 0 UID: 0 PID: 5514 Comm: syz.0.16 Not tainted 6.14.0-rc5-syzkaller-00025-gcfced12f5100 #0
[ 103.666794][ T5514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.671817][ T5514] Call Trace:
[ 103.673835][ T5514]
[ 103.675288][ T5514] dump_stack_lvl+0x241/0x360
[ 103.677014][ T5514] ? __pfx_dump_stack_lvl+0x10/0x10
[ 103.678981][ T5514] ? __pfx__printk+0x10/0x10
[ 103.680832][ T5514] ? preempt_schedule+0xe1/0xf0
[ 103.682735][ T5514] ? vscnprintf+0x5d/0x90
[ 103.684401][ T5514] panic+0x349/0x880
[ 103.686133][ T5514] ? check_panic_on_warn+0x21/0xb0
[ 103.688391][ T5514] ? __pfx_panic+0x10/0x10
[ 103.690526][ T5514] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 103.693096][ T5514] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 103.695497][ T5514] ? print_report+0x519/0x5b0
[ 103.697279][ T5514] check_panic_on_warn+0x86/0xb0
[ 103.699093][ T5514] ? bch2_btree_node_read_done+0x1118/0x6180
[ 103.701463][ T5514] end_report+0x77/0x160
[ 103.703214][ T5514] kasan_report+0x154/0x180
[ 103.705426][ T5514] ? bch2_btree_node_read_done+0x1118/0x6180
[ 103.708168][ T5514] bch2_btree_node_read_done+0x1118/0x6180
[ 103.710617][ T5514] ? __pfx_bch2_btree_node_read_done+0x10/0x10
[ 103.713279][ T5514] ? __pfx_lock_acquire+0x10/0x10
[ 103.715420][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.717884][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.719927][ T5514] ? __lock_acquire+0x1397/0x2100
[ 103.721962][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.724169][ T5514] ? bch2_bkey_pick_read_device+0x1561/0x1850
[ 103.726589][ T5514] ? bch2_bkey_pick_read_device+0x221/0x1850
[ 103.729055][ T5514] ? __pfx_bch2_bkey_pick_read_device+0x10/0x10
[ 103.731492][ T5514] ? bch2_btree_ptr_v2_to_text+0x209/0x2f0
[ 103.733857][ T5514] ? __pfx_bch2_btree_ptr_v2_to_text+0x10/0x10
[ 103.736199][ T5514] btree_node_read_work+0x6dc/0x1380
[ 103.738311][ T5514] ? __pfx_btree_node_read_work+0x10/0x10
[ 103.740633][ T5514] ? bch2_latency_acct+0x47b/0x550
[ 103.742756][ T5514] ? __pfx_bch2_latency_acct+0x10/0x10
[ 103.744999][ T5514] ? bio_associate_blkg+0x6c/0x230
[ 103.747021][ T5514] bch2_btree_node_read+0x2433/0x29f0
[ 103.749179][ T5514] ? bch2_trans_unlock+0x35e/0x480
[ 103.751288][ T5514] ? __pfx_bch2_btree_node_read+0x10/0x10
[ 103.753689][ T5514] ? __pfx___bch2_btree_node_hash_insert+0x10/0x10
[ 103.756244][ T5514] ? bch2_trans_unlock+0x3b5/0x480
[ 103.758310][ T5514] bch2_btree_root_read+0x626/0x7b0
[ 103.760405][ T5514] ? __pfx_bch2_btree_root_read+0x10/0x10
[ 103.762642][ T5514] ? bch2_current_has_btree_trans+0x142/0x180
[ 103.765061][ T5514] read_btree_roots+0x3d3/0xa70
[ 103.767034][ T5514] ? __pfx_read_btree_roots+0x10/0x10
[ 103.769158][ T5514] ? journal_replay_entry_early+0x4d/0xb70
[ 103.771500][ T5514] ? bch2_sb_upgrade+0x1d0/0x250
[ 103.773494][ T5514] ? bch2_recovery_passes_from_stable+0x104/0x120
[ 103.776310][ T5514] bch2_fs_recovery+0x260f/0x3de0
[ 103.779131][ T5514] ? __pfx_bch2_fs_recovery+0x10/0x10
[ 103.781553][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.783195][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.785298][ T5514] ? __pfx_lock_release+0x10/0x10
[ 103.787669][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.790365][ T5514] ? bch2_get_next_online_dev+0x4b9/0x4f0
[ 103.792831][ T5514] ? bch2_get_next_online_dev+0x2b/0x4f0
[ 103.795170][ T5514] ? llist_reverse_order+0x72/0x90
[ 103.797438][ T5514] bch2_fs_start+0x37c/0x610
[ 103.799786][ T5514] bch2_fs_get_tree+0xdb7/0x17a0
[ 103.802285][ T5514] ? __pfx_bch2_fs_get_tree+0x10/0x10
[ 103.804593][ T5514] ? vfs_parse_monolithic_sep+0x423/0x460
[ 103.806943][ T5514] ? __pfx_vfs_parse_comma_sep+0x10/0x10
[ 103.809063][ T5514] ? vfs_parse_fs_string+0x190/0x230
[ 103.811030][ T5514] ? rcu_is_watching+0x15/0xb0
[ 103.812951][ T5514] ? apparmor_capable+0x13b/0x1b0
[ 103.815778][ T5514] vfs_get_tree+0x90/0x2b0
[ 103.817959][ T5514] do_new_mount+0x2be/0xb40
[ 103.820052][ T5514] ? __pfx_do_new_mount+0x10/0x10
[ 103.822107][ T5514] __se_sys_mount+0x2d6/0x3c0
[ 103.823924][ T5514] ? __pfx___se_sys_mount+0x10/0x10
[ 103.825924][ T5514] ? exc_page_fault+0x590/0x8b0
[ 103.827964][ T5514] ? __x64_sys_mount+0x20/0xc0
[ 103.830218][ T5514] do_syscall_64+0xf3/0x230
[ 103.832258][ T5514] ? clear_bhb_loop+0x35/0x90
[ 103.834548][ T5514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.837070][ T5514] RIP: 0033:0x7fa09db8e90a
[ 103.838907][ T5514] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 103.847167][ T5514] RSP: 002b:00007fffd91d5ff8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 103.850946][ T5514] RAX: ffffffffffffffda RBX: 00007fffd91d6080 RCX: 00007fa09db8e90a
[ 103.854213][ T5514] RDX: 0000400000000100 RSI: 0000400000000080 RDI: 00007fffd91d6040
[ 103.857134][ T5514] RBP: 0000400000000100 R08: 00007fffd91d6080 R09: 00000000022100c0
[ 103.860618][ T5514] R10: 00000000022100c0 R11: 0000000000000246 R12: 0000400000000080
[ 103.864142][ T5514] R13: 00007fffd91d6040 R14: 0000000000005aa0 R15: 00004000000001c0
[ 103.867737][ T5514]
[ 103.869348][ T5514] Kernel Offset: disabled
[ 103.871176][ T5514] Rebooting in 86400 seconds..
VM DIAGNOSIS:
23:16:14 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000020 RBX=ffffffff9a9960a0 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=0000000000000000 RSP=ffffc9000287e0d0
R8 =ffffffff8584000b R9 =1ffff11006874046 R10=dffffc0000000000 R11=ffffffff8583ffc0
R12=dffffc0000000000 R13=0000000000000020 R14=0000000000000020 R15=00000000000003f8
RIP=ffffffff8584003e RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555573192500 ffffffff 00c00000
GS =0000 ffff88801fc00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffb3c022378 CR3=0000000033e54000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000003 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffd91d64a0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa09dc0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000009 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002d4
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000009 0000000000000000 0000000000000000 00000000000002d4
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000