Warning: Permanently added '10.128.1.85' (ED25519) to the list of known hosts.
2025/10/05 20:17:59 parsed 1 programs
[   81.627522][  T993] cfg80211: failed to load regulatory.db
[   84.047398][ T5819] cgroup: Unknown subsys name 'net'
[   84.260433][ T5819] cgroup: Unknown subsys name 'cpuset'
[   84.324164][ T5819] cgroup: Unknown subsys name 'rlimit'
[   86.090988][ T5819] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   88.786975][   T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   88.788358][   T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   88.789003][   T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   88.790101][   T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   88.791064][   T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.516649][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.516674][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.582819][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.582839][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.531822][ T5886] chnl_net:caif_netlink_parms(): no params data found
[   93.904233][ T5886] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.905805][ T5886] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.905968][ T5886] bridge_slave_0: entered allmulticast mode
[   93.907691][ T5886] bridge_slave_0: entered promiscuous mode
[   93.946752][ T5886] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.946846][ T5886] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.946979][ T5886] bridge_slave_1: entered allmulticast mode
[   93.948484][ T5886] bridge_slave_1: entered promiscuous mode
[   94.091657][ T5886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.095722][ T5886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.257886][ T5886] team0: Port device team_slave_0 added
[   94.262183][ T5886] team0: Port device team_slave_1 added
[   94.476582][ T5886] batman_adv: batadv0: Adding interface: batadv_slave_0
[   94.476594][ T5886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.476608][ T5886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.478965][ T5886] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.478978][ T5886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.478998][ T5886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.929040][ T5886] hsr_slave_0: entered promiscuous mode
[   94.930059][ T5886] hsr_slave_1: entered promiscuous mode
[   95.338848][ T5886] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   95.360514][ T5886] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   95.398438][ T5886] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   95.436604][ T5886] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   95.639074][ T5886] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.656893][ T5886] 8021q: adding VLAN 0 to HW filter on device team0
[   95.672431][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.672938][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.697308][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.697388][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.909330][ T5886] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.951395][ T5886] veth0_vlan: entered promiscuous mode
[   95.965614][ T5886] veth1_vlan: entered promiscuous mode
[   95.996216][ T5886] veth0_macvtap: entered promiscuous mode
[   95.999796][ T5886] veth1_macvtap: entered promiscuous mode
[   96.020079][ T5886] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.031192][ T5886] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.046115][ T1148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.047340][ T1148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.047805][ T1148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.047844][ T1148] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.828379][   T69] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.087157][   T69] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.295626][   T69] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.521589][   T69] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/10/05 20:18:16 executed programs: 0
[   98.788553][ T5134] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   98.790305][ T5134] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   98.791867][ T5134] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   98.792929][ T5134] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   98.804532][ T5134] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.026494][ T5928] chnl_net:caif_netlink_parms(): no params data found
[   99.326012][ T5928] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.326138][ T5928] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.326619][ T5928] bridge_slave_0: entered allmulticast mode
[   99.329477][ T5928] bridge_slave_0: entered promiscuous mode
[   99.338307][ T5928] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.338428][ T5928] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.338657][ T5928] bridge_slave_1: entered allmulticast mode
[   99.341428][ T5928] bridge_slave_1: entered promiscuous mode
[   99.600522][ T5928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.607447][ T5928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.684889][   T69] bridge_slave_1: left allmulticast mode
[   99.685079][   T69] bridge_slave_1: left promiscuous mode
[   99.686502][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.744803][   T69] bridge_slave_0: left allmulticast mode
[   99.744828][   T69] bridge_slave_0: left promiscuous mode
[   99.744981][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.815538][ T5134] Bluetooth: hci0: command tx timeout
[  101.544346][   T69] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.605756][   T69] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.645845][   T69] bond0 (unregistering): Released all slaves
[  101.836151][ T5928] team0: Port device team_slave_0 added
[  101.839781][ T5928] team0: Port device team_slave_1 added
[  101.963774][   T69] hsr_slave_0: left promiscuous mode
[  101.983771][   T69] hsr_slave_1: left promiscuous mode
[  101.984609][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.984672][   T69] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.034985][   T69] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.035011][   T69] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.129613][   T69] veth1_macvtap: left promiscuous mode
[  102.129764][   T69] veth0_macvtap: left promiscuous mode
[  102.129922][   T69] veth1_vlan: left promiscuous mode
[  102.130087][   T69] veth0_vlan: left promiscuous mode
[  102.893773][ T5134] Bluetooth: hci0: command tx timeout
[  104.016589][   T69] team0 (unregistering): Port device team_slave_1 removed
[  104.264426][   T69] team0 (unregistering): Port device team_slave_0 removed
[  104.973728][ T5134] Bluetooth: hci0: command tx timeout
[  106.459010][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.459026][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.459049][ T5928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.461341][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.461353][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.461376][ T5928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.715744][ T5928] hsr_slave_0: entered promiscuous mode
[  106.717115][ T5928] hsr_slave_1: entered promiscuous mode
[  107.053738][ T5134] Bluetooth: hci0: command tx timeout
[  108.242539][ T5928] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  108.276183][ T5928] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.308854][ T5928] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.356462][ T5928] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.542617][ T5928] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.572188][ T5928] 8021q: adding VLAN 0 to HW filter on device team0
[  108.682155][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.682404][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.698193][ T2198] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.699035][ T2198] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.161362][ T5928] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.201965][ T5928] veth0_vlan: entered promiscuous mode
[  109.209044][ T5928] veth1_vlan: entered promiscuous mode
[  109.235580][ T5928] veth0_macvtap: entered promiscuous mode
[  109.238713][ T5928] veth1_macvtap: entered promiscuous mode
[  109.256734][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.267816][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.283069][ T1148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.287488][ T1148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.287532][ T1148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.287567][ T1148] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.479016][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.479036][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.516994][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.517014][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/05 20:18:27 executed programs: 2
[  109.619602][ T6006] loop0: detected capacity change from 0 to 256
[  109.621279][ T6006] exfat: Deprecated parameter 'utf8'
[  109.665823][ T6006] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  109.672401][   T37] audit: type=1800 audit(1759695507.103:2): pid=6006 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.17" name="file1" dev="loop0" ino=1048665 res=0 errno=0
[  109.681878][ T6006] ==================================================================
[  109.681891][ T6006] BUG: KASAN: stack-out-of-[  109.681891][ T6006] BUG: KASAN: stack-out-of-bounds in exfat_nls_to_utf16+0xac8/0xc10
[  109.681926][ T6006] Read of size 1 at addr ffffc90003d2f710 by task syz.0.17/6006
[  109.681942][ T6006] 
[  109.681958][ T6006] CPU: 1 UID: 0 PID: 6006 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  109.681979][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  109.681997][ T6006] Call Trace:
[  109.682004][ T6006]  <TASK>
[  109.682015][ T6006]  dump_stack_lvl+0x189/0x250
[  109.682041][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.682061][ T6006]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.682085][ T6006]  ? __pfx__printk+0x10/0x10
[  109.682107][ T6006]  ? __virt_addr_valid+0xdc/0x5c0
[  109.682125][ T6006]  ? __virt_addr_valid+0xdc/0x5c0
[  109.682143][ T6006]  print_report+0xca/0x240
[  109.682164][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.682183][ T6006]  kasan_report+0x118/0x150
[  109.682207][ T6006]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  109.682231][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.682253][ T6006]  exfat_nls_to_utf16+0xac8/0xc10
[  109.682277][ T6006]  ? __pfx_exfat_nls_to_utf16+0x10/0x10
[  109.682320][ T6006]  ? do_raw_spin_lock+0x121/0x290
[  109.682346][ T6006]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  109.682368][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.682393][ T6006]  ? __lock_acquire+0xab9/0xd20
[  109.682422][ T6006]  ? __might_fault+0xb0/0x130
[  109.682455][ T6006]  exfat_ioctl+0x818/0x1100
[  109.682476][ T6006]  ? __lock_acquire+0xab9/0xd20
[  109.682501][ T6006]  ? __pfx_exfat_ioctl+0x10/0x10
[  109.682533][ T6006]  ? is_bpf_text_address+0x26/0x2b0
[  109.682572][ T6006]  ? kfree+0x197/0x950
[  109.682590][ T6006]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  109.682614][ T6006]  ? security_file_ioctl+0xcb/0x2d0
[  109.682638][ T6006]  ? __se_sys_ioctl+0x47/0x170
[  109.682657][ T6006]  ? do_syscall_64+0xfa/0x3b0
[  109.682679][ T6006]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.682705][ T6006]  ? file_ioctl+0x233/0x780
[  109.682725][ T6006]  ? __pfx_file_ioctl+0x10/0x10
[  109.682749][ T6006]  ? kasan_quarantine_put+0xdd/0x220
[  109.682770][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.682794][ T6006]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.682824][ T6006]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.682849][ T6006]  ? do_vfs_ioctl+0xb36/0x1440
[  109.682869][ T6006]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.682888][ T6006]  ? __pfx_smack_log+0x10/0x10
[  109.682908][ T6006]  ? smk_access+0x14c/0x4e0
[  109.682930][ T6006]  ? smk_tskacc+0x2fc/0x370
[  109.682951][ T6006]  ? smack_file_ioctl+0x24d/0x340
[  109.682975][ T6006]  ? __pfx_smack_file_ioctl+0x10/0x10
[  109.683002][ T6006]  ? __pfx___se_sys_futex+0x10/0x10
[  109.683026][ T6006]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.683043][ T6006]  ? __pfx_exfat_ioctl+0x10/0x10
[  109.683063][ T6006]  __se_sys_ioctl+0xff/0x170
[  109.683083][ T6006]  do_syscall_64+0xfa/0x3b0
[  109.683104][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.683124][ T6006]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.683142][ T6006]  ? clear_bhb_loop+0x60/0xb0
[  109.683161][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.683178][ T6006] RIP: 0033:0x7fd45b22eec9
[  109.683198][ T6006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.683214][ T6006] RSP: 002b:00007ffd11d3e078 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.683233][ T6006] RAX: ffffffffffffffda RBX: 00007fd45b485fa0 RCX: 00007fd45b22eec9
[  109.683247][ T6006] RDX: 00002000000007c0 RSI: 0000000041009432 RDI: 0000000000000004
[  109.683259][ T6006] RBP: 00007fd45b2b1f91 R08: 0000000000000000 R09: 0000000000000000
[  109.683271][ T6006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  109.683282][ T6006] R13: 00007fd45b485fa0 R14: 00007fd45b485fa0 R15: 0000000000000003
[  109.683301][ T6006]  </TASK>
[  109.683308][ T6006] 
[  109.683312][ T6006] The buggy address belongs to stack of task syz.0.17/6006
[  109.683322][ T6006]  and is located at offset 304 in frame:
[  109.683329][ T6006]  exfat_ioctl+0x0/0x1100
[  109.683348][ T6006] 
[  109.683352][ T6006] This frame has 7 objects:
[  109.683362][ T6006]  [32, 36) 'lossy.i'
[  109.683370][ T6006]  [48, 304) 'label.i50'
[  109.683381][ T6006]  [368, 888) 'uniname.i51'
[  109.683391][ T6006]  [1024, 1280) 'label.i'
[  109.683401][ T6006]  [1344, 1864) 'uniname.i'
[  109.683411][ T6006]  [2000, 2024) 'range.i'
[  109.683421][ T6006]  [2064, 2144) 'ia.i'
[  109.683430][ T6006] 
[  109.683435][ T6006] The buggy address belongs to a vmalloc virtual mapping
[  109.683450][ T6006] The buggy address belongs to the physical page:
[  109.683465][ T6006] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880324e1fc0 pfn:0x324e1
[  109.683482][ T6006] memcg:ffff8880305dcf02
[  109.683490][ T6006] flags: 0x80000000000000(node=0|zone=1)
[  109.683517][ T6006] raw: 0080000000000000 0000000000000000 dead000000000122 0000000000000000
[  109.683531][ T6006] raw: ffff8880324e1fc0 0000000000000000 00000001ffffffff ffff8880305dcf02
[  109.683539][ T6006] page dumped because: kasan: bad access detected
[  109.683550][ T6006] page_owner tracks the page as allocated
[  109.683556][ T6006] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2dc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), pid 5988, tgid 5988 (dhcpcd-run-hook), ts 108653123352, free_ts 108605315121
[  109.683583][ T6006]  post_alloc_hook+0x240/0x2a0
[  109.683603][ T6006]  get_page_from_freelist+0x28c0/0x2960
[  109.683618][ T6006]  __alloc_frozen_pages_noprof+0x181/0x370
[  109.683632][ T6006]  alloc_pages_mpol+0xd1/0x380
[  109.683653][ T6006]  alloc_pages_noprof+0xcf/0x1e0
[  109.683675][ T6006]  __vmalloc_node_range_noprof+0x96c/0x12d0
[  109.683697][ T6006]  __vmalloc_node_noprof+0xc2/0x110
[  109.683718][ T6006]  dup_task_struct+0x3d4/0x830
[  109.683738][ T6006]  copy_process+0x545/0x3ae0
[  109.683758][ T6006]  kernel_clone+0x224/0x7c0
[  109.683779][ T6006]  __x64_sys_clone+0x18b/0x1e0
[  109.683801][ T6006]  do_syscall_64+0xfa/0x3b0
[  109.683827][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.683843][ T6006] page last free pid 28 tgid 28 stack trace:
[  109.683853][ T6006]  __free_frozen_pages+0xfb6/0x1140
[  109.683874][ T6006]  tlb_remove_table_rcu+0x85/0x100
[  109.683890][ T6006]  rcu_cpu_kthread+0xbf3/0x1b50
[  109.683904][ T6006]  smpboot_thread_fn+0x542/0xa60
[  109.683925][ T6006]  kthread+0x711/0x8a0
[  109.683939][ T6006]  ret_from_fork+0x436/0x7d0
[  109.683959][ T6006]  ret_from_fork_asm+0x1a/0x30
[  109.683975][ T6006] 
[  109.683979][ T6006] Memory state around the buggy address:
[  109.683988][ T6006]  ffffc90003d2f600: 04 f2 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  109.684000][ T6006]  ffffc90003d2f680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  109.684011][ T6006] >ffffc90003d2f700: 00 00 f2 f2 f2 f2 f2 f2 f2 f2 00 00 00 00 00 00
[  109.684020][ T6006]                          ^
[  109.684029][ T6006]  ffffc90003d2f780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  109.684041][ T6006]  ffffc90003d2f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  109.684050][ T6006] ==================================================================
[  109.717347][ T6006] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  109.717366][ T6006] CPU: 1 UID: 0 PID: 6006 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  109.717387][ T6006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  109.717397][ T6006] Call Trace:
[  109.717404][ T6006]  <TASK>
[  109.717412][ T6006]  dump_stack_lvl+0x99/0x250
[  109.717442][ T6006]  ? __asan_memcpy+0x40/0x70
[  109.717464][ T6006]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.717488][ T6006]  ? __pfx__printk+0x10/0x10
[  109.717512][ T6006]  vpanic+0x237/0x6d0
[  109.717528][ T6006]  ? __pfx_vpanic+0x10/0x10
[  109.717543][ T6006]  ? preempt_schedule+0xae/0xc0
[  109.717563][ T6006]  ? __pfx_preempt_schedule+0x10/0x10
[  109.717586][ T6006]  panic+0xb9/0xc0
[  109.717601][ T6006]  ? __pfx_panic+0x10/0x10
[  109.717618][ T6006]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  109.717644][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.717664][ T6006]  check_panic_on_warn+0x89/0xb0
[  109.717684][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.717703][ T6006]  end_report+0x78/0x160
[  109.717726][ T6006]  kasan_report+0x129/0x150
[  109.717747][ T6006]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  109.717770][ T6006]  ? exfat_nls_to_utf16+0xac8/0xc10
[  109.717793][ T6006]  exfat_nls_to_utf16+0xac8/0xc10
[  109.717823][ T6006]  ? __pfx_exfat_nls_to_utf16+0x10/0x10
[  109.717865][ T6006]  ? do_raw_spin_lock+0x121/0x290
[  109.717891][ T6006]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  109.717912][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.717938][ T6006]  ? __lock_acquire+0xab9/0xd20
[  109.717965][ T6006]  ? __might_fault+0xb0/0x130
[  109.717999][ T6006]  exfat_ioctl+0x818/0x1100
[  109.718020][ T6006]  ? __lock_acquire+0xab9/0xd20
[  109.718045][ T6006]  ? __pfx_exfat_ioctl+0x10/0x10
[  109.718076][ T6006]  ? is_bpf_text_address+0x26/0x2b0
[  109.718116][ T6006]  ? kfree+0x197/0x950
[  109.718135][ T6006]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  109.718159][ T6006]  ? security_file_ioctl+0xcb/0x2d0
[  109.718182][ T6006]  ? __se_sys_ioctl+0x47/0x170
[  109.718201][ T6006]  ? do_syscall_64+0xfa/0x3b0
[  109.718222][ T6006]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.718248][ T6006]  ? file_ioctl+0x233/0x780
[  109.718267][ T6006]  ? __pfx_file_ioctl+0x10/0x10
[  109.718291][ T6006]  ? kasan_quarantine_put+0xdd/0x220
[  109.718311][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.718335][ T6006]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.718359][ T6006]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  109.718384][ T6006]  ? do_vfs_ioctl+0xb36/0x1440
[  109.718404][ T6006]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  109.718423][ T6006]  ? __pfx_smack_log+0x10/0x10
[  109.718443][ T6006]  ? smk_access+0x14c/0x4e0
[  109.718465][ T6006]  ? smk_tskacc+0x2fc/0x370
[  109.718486][ T6006]  ? smack_file_ioctl+0x24d/0x340
[  109.718510][ T6006]  ? __pfx_smack_file_ioctl+0x10/0x10
[  109.718537][ T6006]  ? __pfx___se_sys_futex+0x10/0x10
[  109.718560][ T6006]  ? bpf_lsm_file_ioctl+0x9/0x20
[  109.718578][ T6006]  ? __pfx_exfat_ioctl+0x10/0x10
[  109.718598][ T6006]  __se_sys_ioctl+0xff/0x170
[  109.718619][ T6006]  do_syscall_64+0xfa/0x3b0
[  109.718640][ T6006]  ? lockdep_hardirqs_on+0x9c/0x150
[  109.718660][ T6006]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.718678][ T6006]  ? clear_bhb_loop+0x60/0xb0
[  109.718697][ T6006]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.718714][ T6006] RIP: 0033:0x7fd45b22eec9
[  109.718731][ T6006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.718746][ T6006] RSP: 002b:00007ffd11d3e078 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  109.718765][ T6006] RAX: ffffffffffffffda RBX: 00007fd45b485fa0 RCX: 00007fd45b22eec9
[  109.718778][ T6006] RDX: 00002000000007c0 RSI: 0000000041009432 RDI: 0000000000000004
[  109.718791][ T6006] RBP: 00007fd45b2b1f91 R08: 0000000000000000 R09: 0000000000000000
[  109.718803][ T6006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  109.718819][ T6006] R13: 00007fd45b485fa0 R14: 00007fd45b485fa0 R15: 0000000000000003
[  109.718838][ T6006]  </TASK>
[  109.718984][ T6006] Kernel Offset: disabled