Warning: Permanently added '[localhost]:5569' (ED25519) to the list of known hosts.
2025/09/25 15:10:53 parsed 1 programs
syzkaller login: [ 84.972117][ T5345] cgroup: Unknown subsys name 'net'
[ 85.041632][ T5345] cgroup: Unknown subsys name 'cpuset'
[ 85.047520][ T5345] cgroup: Unknown subsys name 'rlimit'
[ 86.686074][ T5345] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 90.934332][ T5360] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 91.883735][ T54] cfg80211: failed to load regulatory.db
[ 93.819260][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.822792][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.859509][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.863537][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.912448][ T5424] chnl_net:caif_netlink_parms(): no params data found
[ 94.980557][ T5424] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.984351][ T5424] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.987432][ T5424] bridge_slave_0: entered allmulticast mode
[ 94.991858][ T5424] bridge_slave_0: entered promiscuous mode
[ 94.997494][ T5424] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.001226][ T5424] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.004099][ T5424] bridge_slave_1: entered allmulticast mode
[ 95.007107][ T5424] bridge_slave_1: entered promiscuous mode
[ 95.029918][ T5424] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 95.035884][ T5424] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 95.059828][ T5424] team0: Port device team_slave_0 added
[ 95.063967][ T5424] team0: Port device team_slave_1 added
[ 95.086449][ T5424] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 95.089657][ T5424] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 95.100388][ T5424] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 95.106569][ T5424] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 95.110105][ T5424] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 95.121389][ T5424] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 95.156293][ T5424] hsr_slave_0: entered promiscuous mode
[ 95.161577][ T5424] hsr_slave_1: entered promiscuous mode
[ 95.305410][ T5424] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.316044][ T5424] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.323128][ T5424] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.329674][ T5424] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.362055][ T5424] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.365272][ T5424] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.368971][ T5424] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.372002][ T5424] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.433635][ T5424] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.447979][ T14] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.453671][ T14] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.464577][ T5424] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.474485][ T3040] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.477652][ T3040] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.490168][ T3040] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.493239][ T3040] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.673959][ T5424] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.716789][ T5424] veth0_vlan: entered promiscuous mode
[ 95.726492][ T5424] veth1_vlan: entered promiscuous mode
[ 95.756950][ T5424] veth0_macvtap: entered promiscuous mode
[ 95.764327][ T5424] veth1_macvtap: entered promiscuous mode
[ 95.784332][ T5424] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 95.800884][ T5424] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 95.815185][ T1042] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.835234][ T1042] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.851659][ T1042] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 95.867185][ T1042] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.002975][ T1042] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 96.022797][ T5446] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 96.026976][ T5446] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 96.031990][ T5446] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 96.036076][ T5446] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 96.040848][ T5446] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 96.080892][ T1042] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 96.132503][ T1042] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 96.203119][ T1042] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/09/25 15:11:07 executed programs: 0
[ 96.987600][ T4702] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 96.991968][ T4702] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 96.995338][ T4702] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 97.007512][ T4702] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 97.011534][ T4702] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 97.185558][ T5458] chnl_net:caif_netlink_parms(): no params data found
[ 97.256597][ T5458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.261156][ T5458] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.264556][ T5458] bridge_slave_0: entered allmulticast mode
[ 97.270575][ T5458] bridge_slave_0: entered promiscuous mode
[ 97.276372][ T5458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.280336][ T5458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.283344][ T5458] bridge_slave_1: entered allmulticast mode
[ 97.287203][ T5458] bridge_slave_1: entered promiscuous mode
[ 97.312895][ T5458] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 97.320912][ T5458] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 97.347636][ T5458] team0: Port device team_slave_0 added
[ 97.352751][ T5458] team0: Port device team_slave_1 added
[ 97.375007][ T5458] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 97.383037][ T5458] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 97.394617][ T5458] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 97.405984][ T5458] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 97.410206][ T5458] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 97.421938][ T5458] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 97.463821][ T5458] hsr_slave_0: entered promiscuous mode
[ 97.467047][ T5458] hsr_slave_1: entered promiscuous mode
[ 97.471642][ T5458] debugfs: 'hsr0' already exists in 'hsr'
[ 97.474207][ T5458] Cannot create hsr debugfs directory
[ 98.540627][ T1042] bridge_slave_1: left allmulticast mode
[ 98.542841][ T1042] bridge_slave_1: left promiscuous mode
[ 98.545811][ T1042] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.564475][ T1042] bridge_slave_0: left allmulticast mode
[ 98.566753][ T1042] bridge_slave_0: left promiscuous mode
[ 98.578739][ T1042] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.947022][ T1042] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 98.954470][ T1042] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 98.960012][ T1042] bond0 (unregistering): Released all slaves
[ 99.053900][ T1042] hsr_slave_0: left promiscuous mode
[ 99.068219][ T1042] hsr_slave_1: left promiscuous mode
[ 99.072965][ T1042] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 99.076146][ T1042] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 99.083599][ T5446] Bluetooth: hci0: command tx timeout
[ 99.097548][ T1042] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 99.103185][ T1042] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 99.129941][ T1042] veth1_macvtap: left promiscuous mode
[ 99.132522][ T1042] veth0_macvtap: left promiscuous mode
[ 99.134901][ T1042] veth1_vlan: left promiscuous mode
[ 99.137084][ T1042] veth0_vlan: left promiscuous mode
[ 99.559511][ T1042] team0 (unregistering): Port device team_slave_1 removed
[ 99.577519][ T1042] team0 (unregistering): Port device team_slave_0 removed
[ 100.041934][ T5458] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 100.065285][ T5458] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 100.086096][ T5458] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 100.104731][ T5458] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 100.459431][ T5458] 8021q: adding VLAN 0 to HW filter on device bond0
[ 100.484437][ T5458] 8021q: adding VLAN 0 to HW filter on device team0
[ 100.500231][ T1042] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.503125][ T1042] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 100.529354][ T3040] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.532954][ T3040] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 100.855575][ T5458] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 100.896292][ T5458] veth0_vlan: entered promiscuous mode
[ 100.904738][ T5458] veth1_vlan: entered promiscuous mode
[ 100.934402][ T5458] veth0_macvtap: entered promiscuous mode
[ 100.941689][ T5458] veth1_macvtap: entered promiscuous mode
[ 100.955853][ T5458] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 100.967279][ T5458] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 100.979029][ T1042] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.991843][ T1042] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.995538][ T1042] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.011547][ T1042] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.064577][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.078654][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.105752][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.111310][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.159003][ T5446] Bluetooth: hci0: command tx timeout
[ 101.378782][ T5499] loop0: detected capacity change from 0 to 32768
[ 101.447703][ T102] BUG: spinlock bad magic on CPU#0, jfsCommit/102
[ 101.450582][ T102] ==================================================================
[ 101.454911][ T102] BUG: KASAN: slab-out-of-bounds in string+0x231/0x2b0
[ 101.458219][ T102] Read of size 1 at addr ffff888041a64a00 by task jfsCommit/102
[ 101.461380][ T102]
[ 101.462467][ T102] CPU: 0 UID: 0 PID: 102 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full)
[ 101.462482][ T102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.462490][ T102] Call Trace:
[ 101.462498][ T102]
[ 101.462504][ T102] dump_stack_lvl+0x189/0x250
[ 101.462522][ T102] ? __pfx_dump_stack_lvl+0x10/0x10
[ 101.462534][ T102] ? lock_release+0x4b/0x3e0
[ 101.462595][ T102] ? __virt_addr_valid+0x4a5/0x5c0
[ 101.462610][ T102] print_report+0xca/0x240
[ 101.462620][ T102] ? string+0x231/0x2b0
[ 101.462633][ T102] kasan_report+0x118/0x150
[ 101.462647][ T102] ? number+0x41/0xf60
[ 101.462659][ T102] ? string+0x231/0x2b0
[ 101.462671][ T102] string+0x231/0x2b0
[ 101.462685][ T102] vsnprintf+0x739/0xf00
[ 101.462699][ T102] vprintk_store+0x3c7/0xd00
[ 101.462712][ T102] ? __pfx_vprintk_store+0x10/0x10
[ 101.462723][ T102] ? __console_unlock+0x136/0x1a0
[ 101.462734][ T102] ? __pfx___console_unlock+0x10/0x10
[ 101.462747][ T102] ? __irq_work_queue_local+0x1de/0x550
[ 101.462762][ T102] ? __pfx___irq_work_queue_local+0x10/0x10
[ 101.462775][ T102] ? console_unlock+0x21b/0x270
[ 101.462787][ T102] ? is_printk_cpu_sync_owner+0x32/0x40
[ 101.462801][ T102] vprintk_emit+0x21e/0x7a0
[ 101.462813][ T102] ? __pfx_vprintk_emit+0x10/0x10
[ 101.462824][ T102] ? __is_module_percpu_address+0x28/0x3f0
[ 101.462836][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.462845][ T102] ? __kasan_check_byte+0x12/0x40
[ 101.462858][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.462868][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.462878][ T102] ? __kasan_check_byte+0x12/0x40
[ 101.462891][ T102] _printk+0xcf/0x120
[ 101.462907][ T102] ? __pfx__printk+0x10/0x10
[ 101.462921][ T102] ? __lock_acquire+0x99/0xd20
[ 101.462938][ T102] spin_dump+0x102/0x1a0
[ 101.462960][ T102] do_raw_spin_lock+0x1ca/0x290
[ 101.462974][ T102] ? __wake_up_common_lock+0x2f/0x1f0
[ 101.462988][ T102] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 101.463003][ T102] _raw_spin_lock_irqsave+0xb3/0xf0
[ 101.463019][ T102] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 101.463033][ T102] ? dbFree+0x4d1/0x650
[ 101.463046][ T102] __wake_up_common_lock+0x2f/0x1f0
[ 101.463061][ T102] release_metapage+0x13c/0xac0
[ 101.463076][ T102] ? txFreeMap+0xb19/0xde0
[ 101.463086][ T102] ? do_raw_spin_unlock+0x4d/0x240
[ 101.463101][ T102] xtTruncate+0xe84/0x2e70
[ 101.463121][ T102] ? __pfx_xtTruncate+0x10/0x10
[ 101.463139][ T102] ? reacquire_held_locks+0x127/0x1d0
[ 101.463148][ T102] ? __mark_inode_dirty+0x4cc/0xe10
[ 101.463164][ T102] ? __asan_memset+0x22/0x50
[ 101.463174][ T102] ? __dquot_initialize+0x218/0xcb0
[ 101.463189][ T102] jfs_free_zero_link+0x33a/0x4a0
[ 101.463204][ T102] ? __pfx_jfs_free_zero_link+0x10/0x10
[ 101.463219][ T102] ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 101.463238][ T102] jfs_evict_inode+0x363/0x440
[ 101.463250][ T102] ? evict+0x4f8/0x9c0
[ 101.463261][ T102] ? __pfx_jfs_evict_inode+0x10/0x10
[ 101.463275][ T102] evict+0x501/0x9c0
[ 101.463288][ T102] ? __pfx_evict+0x10/0x10
[ 101.463298][ T102] ? do_raw_spin_unlock+0x4d/0x240
[ 101.463313][ T102] ? _raw_spin_unlock+0x28/0x50
[ 101.463328][ T102] ? iput+0x6d8/0x9d0
[ 101.463343][ T102] jfs_lazycommit+0x43f/0xa90
[ 101.463356][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 101.463367][ T102] ? __pfx_default_wake_function+0x10/0x10
[ 101.463381][ T102] ? __kthread_parkme+0x7b/0x200
[ 101.463392][ T102] ? __kthread_parkme+0x1a1/0x200
[ 101.463405][ T102] kthread+0x70e/0x8a0
[ 101.463418][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 101.463429][ T102] ? __pfx_kthread+0x10/0x10
[ 101.463442][ T102] ? _raw_spin_unlock_irq+0x23/0x50
[ 101.463458][ T102] ? lockdep_hardirqs_on+0x9c/0x150
[ 101.463467][ T102] ? __pfx_kthread+0x10/0x10
[ 101.463479][ T102] ret_from_fork+0x439/0x7d0
[ 101.463491][ T102] ? __pfx_ret_from_fork+0x10/0x10
[ 101.463503][ T102] ? __pfx_kthread+0x10/0x10
[ 101.463516][ T102] ret_from_fork_asm+0x1a/0x30
[ 101.463532][ T102]
[ 101.463535][ T102]
[ 101.628042][ T102] The buggy address belongs to the object at ffff888041a649c0
[ 101.628042][ T102] which belongs to the cache jfs_ip of size 2232
[ 101.633701][ T102] The buggy address is located 64 bytes inside of
[ 101.633701][ T102] allocated 2232-byte region [ffff888041a649c0, ffff888041a65278)
[ 101.639569][ T102]
[ 101.640664][ T102] The buggy address belongs to the physical page:
[ 101.643408][ T102] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41a60
[ 101.647025][ T102] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 101.650557][ T102] memcg:ffff88804b9c8b01
[ 101.652143][ T102] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[ 101.655288][ T102] page_type: f5(slab)
[ 101.657100][ T102] raw: 04fff00000000040 ffff888000116c80 dead000000000122 0000000000000000
[ 101.660780][ T102] raw: 0000000000000000 00000000800d000d 00000000f5000000 ffff88804b9c8b01
[ 101.664396][ T102] head: 04fff00000000040 ffff888000116c80 dead000000000122 0000000000000000
[ 101.667825][ T102] head: 0000000000000000 00000000800d000d 00000000f5000000 ffff88804b9c8b01
[ 101.673144][ T102] head: 04fff00000000003 ffffea0001069801 00000000ffffffff 00000000ffffffff
[ 101.676677][ T102] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 101.680187][ T102] page dumped because: kasan: bad access detected
[ 101.682804][ T102] page_owner tracks the page as allocated
[ 101.685153][ T102] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5499, tgid 5499 (syz.0.17), ts 101390633191, free_ts 91971864630
[ 101.693866][ T102] post_alloc_hook+0x240/0x2a0
[ 101.695959][ T102] get_page_from_freelist+0x21e4/0x22c0
[ 101.698297][ T102] __alloc_frozen_pages_noprof+0x181/0x370
[ 101.700800][ T102] alloc_pages_mpol+0x232/0x4a0
[ 101.703211][ T102] allocate_slab+0x8a/0x370
[ 101.705266][ T102] ___slab_alloc+0xbeb/0x1420
[ 101.707425][ T102] kmem_cache_alloc_lru_noprof+0x288/0x3d0
[ 101.709994][ T102] jfs_alloc_inode+0x28/0x70
[ 101.712050][ T102] alloc_inode+0x67/0x1b0
[ 101.713912][ T102] new_inode+0x22/0x170
[ 101.715725][ T102] jfs_fill_super+0x569/0xd80
[ 101.717739][ T102] get_tree_bdev_flags+0x40b/0x4d0
[ 101.719812][ T102] vfs_get_tree+0x8f/0x2b0
[ 101.721736][ T102] do_new_mount+0x2a2/0x9e0
[ 101.723750][ T102] __se_sys_mount+0x317/0x410
[ 101.725829][ T102] do_syscall_64+0xfa/0x3b0
[ 101.727842][ T102] page last free pid 14 tgid 14 stack trace:
[ 101.730393][ T102] __free_frozen_pages+0xbc4/0xd30
[ 101.732654][ T102] __slab_free+0x303/0x3c0
[ 101.734577][ T102] qlist_free_all+0x97/0x140
[ 101.736614][ T102] kasan_quarantine_reduce+0x148/0x160
[ 101.739012][ T102] __kasan_slab_alloc+0x22/0x80
[ 101.741594][ T102] kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[ 101.744908][ T102] __alloc_skb+0x112/0x2d0
[ 101.746917][ T102] inet6_netconf_notify_devconf+0x10f/0x1d0
[ 101.749523][ T102] addrconf_ifdown+0x1543/0x1880
[ 101.751681][ T102] addrconf_notify+0x1bc/0x1010
[ 101.753739][ T102] notifier_call_chain+0x1b3/0x3e0
[ 101.755963][ T102] unregister_netdevice_many_notify+0x14d7/0x1ff0
[ 101.758816][ T102] ops_undo_list+0x3dc/0x990
[ 101.760887][ T102] cleanup_net+0x4c5/0x800
[ 101.762730][ T102] process_scheduled_works+0xae1/0x17b0
[ 101.764986][ T102] worker_thread+0x8a0/0xda0
[ 101.766915][ T102]
[ 101.767956][ T102] Memory state around the buggy address:
[ 101.770317][ T102] ffff888041a64900: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 101.773525][ T102] ffff888041a64980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 101.776871][ T102] >ffff888041a64a00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 101.780192][ T102] ^
[ 101.781938][ T102] ffff888041a64a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 101.785292][ T102] ffff888041a64b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 101.788655][ T102] ==================================================================
[ 101.792039][ T102] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 101.795041][ T102] CPU: 0 UID: 0 PID: 102 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full)
[ 101.798766][ T102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.803263][ T102] Call Trace:
[ 101.804749][ T102]
[ 101.805976][ T102] dump_stack_lvl+0x99/0x250
[ 101.807965][ T102] ? __asan_memcpy+0x40/0x70
[ 101.809945][ T102] ? __pfx_dump_stack_lvl+0x10/0x10
[ 101.812309][ T102] ? __pfx__printk+0x10/0x10
[ 101.814342][ T102] vpanic+0x281/0x750
[ 101.816181][ T102] ? __pfx_print_hex_dump+0x10/0x10
[ 101.818380][ T102] ? __pfx_vpanic+0x10/0x10
[ 101.820339][ T102] panic+0xb9/0xc0
[ 101.821936][ T102] ? __pfx_panic+0x10/0x10
[ 101.823802][ T102] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 101.826389][ T102] ? string+0x231/0x2b0
[ 101.828275][ T102] check_panic_on_warn+0x89/0xb0
[ 101.830397][ T102] ? string+0x231/0x2b0
[ 101.832172][ T102] end_report+0x78/0x160
[ 101.834001][ T102] kasan_report+0x129/0x150
[ 101.835930][ T102] ? number+0x41/0xf60
[ 101.837705][ T102] ? string+0x231/0x2b0
[ 101.839492][ T102] string+0x231/0x2b0
[ 101.841269][ T102] vsnprintf+0x739/0xf00
[ 101.843092][ T102] vprintk_store+0x3c7/0xd00
[ 101.845151][ T102] ? __pfx_vprintk_store+0x10/0x10
[ 101.847417][ T102] ? __console_unlock+0x136/0x1a0
[ 101.849711][ T102] ? __pfx___console_unlock+0x10/0x10
[ 101.852071][ T102] ? __irq_work_queue_local+0x1de/0x550
[ 101.854398][ T102] ? __pfx___irq_work_queue_local+0x10/0x10
[ 101.856985][ T102] ? console_unlock+0x21b/0x270
[ 101.859149][ T102] ? is_printk_cpu_sync_owner+0x32/0x40
[ 101.861605][ T102] vprintk_emit+0x21e/0x7a0
[ 101.863567][ T102] ? __pfx_vprintk_emit+0x10/0x10
[ 101.865750][ T102] ? __is_module_percpu_address+0x28/0x3f0
[ 101.868217][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.870149][ T102] ? __kasan_check_byte+0x12/0x40
[ 101.872206][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.874202][ T102] ? rcu_is_watching+0x15/0xb0
[ 101.876341][ T102] ? __kasan_check_byte+0x12/0x40
[ 101.878660][ T102] _printk+0xcf/0x120
[ 101.880492][ T102] ? __pfx__printk+0x10/0x10
[ 101.882572][ T102] ? __lock_acquire+0x99/0xd20
[ 101.884660][ T102] spin_dump+0x102/0x1a0
[ 101.886535][ T102] do_raw_spin_lock+0x1ca/0x290
[ 101.888685][ T102] ? __wake_up_common_lock+0x2f/0x1f0
[ 101.891234][ T102] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 101.893591][ T102] _raw_spin_lock_irqsave+0xb3/0xf0
[ 101.895809][ T102] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 101.898347][ T102] ? dbFree+0x4d1/0x650
[ 101.900166][ T102] __wake_up_common_lock+0x2f/0x1f0
[ 101.902289][ T102] release_metapage+0x13c/0xac0
[ 101.904273][ T102] ? txFreeMap+0xb19/0xde0
[ 101.905961][ T102] ? do_raw_spin_unlock+0x4d/0x240
[ 101.908019][ T102] xtTruncate+0xe84/0x2e70
[ 101.909830][ T102] ? __pfx_xtTruncate+0x10/0x10
[ 101.911819][ T102] ? reacquire_held_locks+0x127/0x1d0
[ 101.913991][ T102] ? __mark_inode_dirty+0x4cc/0xe10
[ 101.916213][ T102] ? __asan_memset+0x22/0x50
[ 101.918275][ T102] ? __dquot_initialize+0x218/0xcb0
[ 101.920608][ T102] jfs_free_zero_link+0x33a/0x4a0
[ 101.922871][ T102] ? __pfx_jfs_free_zero_link+0x10/0x10
[ 101.925159][ T102] ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 101.927704][ T102] jfs_evict_inode+0x363/0x440
[ 101.929816][ T102] ? evict+0x4f8/0x9c0
[ 101.931601][ T102] ? __pfx_jfs_evict_inode+0x10/0x10
[ 101.933938][ T102] evict+0x501/0x9c0
[ 101.935572][ T102] ? __pfx_evict+0x10/0x10
[ 101.937559][ T102] ? do_raw_spin_unlock+0x4d/0x240
[ 101.939862][ T102] ? _raw_spin_unlock+0x28/0x50
[ 101.942103][ T102] ? iput+0x6d8/0x9d0
[ 101.943882][ T102] jfs_lazycommit+0x43f/0xa90
[ 101.945996][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 101.948130][ T102] ? __pfx_default_wake_function+0x10/0x10
[ 101.950601][ T102] ? __kthread_parkme+0x7b/0x200
[ 101.952794][ T102] ? __kthread_parkme+0x1a1/0x200
[ 101.954894][ T102] kthread+0x70e/0x8a0
[ 101.956685][ T102] ? __pfx_jfs_lazycommit+0x10/0x10
[ 101.958857][ T102] ? __pfx_kthread+0x10/0x10
[ 101.960881][ T102] ? _raw_spin_unlock_irq+0x23/0x50
[ 101.963077][ T102] ? lockdep_hardirqs_on+0x9c/0x150
[ 101.965311][ T102] ? __pfx_kthread+0x10/0x10
[ 101.967358][ T102] ret_from_fork+0x439/0x7d0
[ 101.969413][ T102] ? __pfx_ret_from_fork+0x10/0x10
[ 101.971650][ T102] ? __pfx_kthread+0x10/0x10
[ 101.973636][ T102] ret_from_fork_asm+0x1a/0x30
[ 101.975651][ T102]
[ 101.977337][ T102] Kernel Offset: disabled
[ 101.979237][ T102] Rebooting in 86400 seconds..
VM DIAGNOSIS:
15:11:12 Registers:
info registers vcpu 0
CPU#0
RAX=000000000000003d RBX=000000000000003d RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900018868f0
R8 =ffff888034098237 R9 =1ffff11006813046 R10=dffffc0000000000 R11=ffffffff85513da0
R12=dffffc0000000000 R13=ffffffff99d0e8ee R14=ffffffff9a003860 R15=0000000000000000
RIP=ffffffff85513e1c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808d007000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffc41ff5ff8 CR3=0000000058ec5000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000020081 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc41ff67e0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc41ff7a56
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc41ff7a56 00007ffc41ff7a5c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a12fbe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a12fcb
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a12fc5
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a12fd9
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a1305f
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9d33a1313d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 2074657365720064 656c696166202973 2528746174736c00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 47414c46585f5346 0551405640570041 40494c4443050c56 000d514451564900
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000