Warning: Permanently added '10.128.1.13' (ED25519) to the list of known hosts.
2026/06/19 18:27:18 parsed 1 programs
2026/06/19 18:27:18 serving rpc on tcp://45771
[  109.357098][ T5609] cgroup: Unknown subsys name 'net'
[  109.578346][ T5609] cgroup: Unknown subsys name 'cpuset'
[  109.635693][ T5609] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  111.098265][ T5609] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  115.580457][ T5657] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.580587][ T5657] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.580666][ T5657] bridge_slave_0: entered allmulticast mode
[  115.581639][ T5657] bridge_slave_0: entered promiscuous mode
[  115.583318][ T5657] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.583422][ T5657] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.583496][ T5657] bridge_slave_1: entered allmulticast mode
[  115.584470][ T5657] bridge_slave_1: entered promiscuous mode
[  115.642428][ T5657] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  115.655907][ T5657] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  115.757043][ T5657] team0: Port device team_slave_0 added
[  115.758728][ T5657] team0: Port device team_slave_1 added
[  115.782800][ T5657] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.782813][ T5657] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  115.782834][ T5657] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.783893][ T5657] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.783910][ T5657] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  115.783930][ T5657] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.874529][ T5657] hsr_slave_0: entered promiscuous mode
[  115.875896][ T5657] hsr_slave_1: entered promiscuous mode
[  115.982090][ T5657] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  116.007741][ T5657] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  116.008496][ T5657] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  116.057593][ T5657] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  116.058353][ T5657] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  116.097468][ T5657] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  116.155476][ T5657] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  116.197282][ T5657] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  116.248984][ T5657] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.319322][ T5657] 8021q: adding VLAN 0 to HW filter on device team0
[  116.323152][ T1024] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.323243][ T1024] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.335025][ T4758] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.336140][ T4758] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.622964][ T5657] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.656262][ T5657] veth0_vlan: entered promiscuous mode
[  116.660646][ T5657] veth1_vlan: entered promiscuous mode
[  116.721403][ T5657] veth0_macvtap: entered promiscuous mode
[  116.724137][ T5657] veth1_macvtap: entered promiscuous mode
[  116.744688][ T5657] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.755912][ T5657] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.760323][ T1024] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.760545][   T66] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.760584][   T66] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.760619][   T66] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.227535][  T152] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.269825][ T1449] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.269852][ T1449] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.300908][ T1024] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.300941][ T1024] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.507650][  T152] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.807288][  T152] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.644797][ T5727] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  118.645083][ T4905] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  118.647119][ T4905] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  118.649080][ T4905] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  118.650387][ T4905] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  118.797115][  T152] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/06/19 18:27:32 executed programs: 0
[  119.419074][   T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  119.419397][   T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  119.419676][   T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  119.420461][   T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  119.420937][   T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  119.805963][ T5736] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.806064][ T5736] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.806280][ T5736] bridge_slave_0: entered allmulticast mode
[  119.807357][ T5736] bridge_slave_0: entered promiscuous mode
[  119.808969][ T5736] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.809062][ T5736] bridge0: port 2(bridge_slave_1) entered disabled state
[  119.809149][ T5736] bridge_slave_1: entered allmulticast mode
[  119.810156][ T5736] bridge_slave_1: entered promiscuous mode
[  119.871242][ T5736] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  119.873479][ T5736] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  119.903875][ T5736] team0: Port device team_slave_0 added
[  119.907866][ T5736] team0: Port device team_slave_1 added
[  119.932202][ T5736] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.932221][ T5736] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  119.932250][ T5736] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.933597][ T5736] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.933608][ T5736] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  119.933628][ T5736] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  120.026913][ T5736] hsr_slave_0: entered promiscuous mode
[  120.027588][ T5736] hsr_slave_1: entered promiscuous mode
[  120.028110][ T5736] debugfs: 'hsr0' already exists in 'hsr'
[  120.028137][ T5736] Cannot create hsr debugfs directory
[  120.335654][  T152] bridge_slave_1: left allmulticast mode
[  120.335683][  T152] bridge_slave_1: left promiscuous mode
[  120.335879][  T152] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.485783][  T152] bridge_slave_0: left allmulticast mode
[  120.485806][  T152] bridge_slave_0: left promiscuous mode
[  120.485958][  T152] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.135952][  T152] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  121.215790][  T152] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  121.237406][  T152] bond0 (unregistering): Released all slaves
[  121.336709][ T5251] 8021q: adding VLAN 0 to HW filter on device eth1
[  121.465329][ T4905] Bluetooth: hci0: command tx timeout
[  121.755353][  T152] hsr_slave_0: left promiscuous mode
[  121.795353][  T152] hsr_slave_1: left promiscuous mode
[  121.796811][  T152] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.796828][  T152] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.828854][  T152] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.828871][  T152] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.915688][  T152] veth1_macvtap: left promiscuous mode
[  121.915737][  T152] veth0_macvtap: left promiscuous mode
[  121.915830][  T152] veth1_vlan: left promiscuous mode
[  121.915895][  T152] veth0_vlan: left promiscuous mode
[  122.395756][  T152] team0 (unregistering): Port device team_slave_1 removed
[  122.435653][  T152] team0 (unregistering): Port device team_slave_0 removed
[  122.548333][ T5251] 8021q: adding VLAN 0 to HW filter on device eth2
[  123.240279][ T5736] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  123.268210][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  123.269271][ T5736] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  123.317265][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  123.317990][ T5736] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  123.357520][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  123.358330][ T5736] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  123.397597][ T5736] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  123.460052][ T5736] 8021q: adding VLAN 0 to HW filter on device bond0
[  123.479191][ T5736] 8021q: adding VLAN 0 to HW filter on device team0
[  123.482938][   T66] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.483022][   T66] bridge0: port 1(bridge_slave_0) entered forwarding state
[  123.509982][   T66] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.510037][   T66] bridge0: port 2(bridge_slave_1) entered forwarding state
[  123.545237][ T4905] Bluetooth: hci0: command tx timeout
[  124.020106][ T5736] 8021q: adding VLAN 0 to HW filter on device batadv0
[  124.070174][ T5736] veth0_vlan: entered promiscuous mode
[  124.081437][ T5736] veth1_vlan: entered promiscuous mode
[  124.113333][ T5736] veth0_macvtap: entered promiscuous mode
[  124.122163][ T5736] veth1_macvtap: entered promiscuous mode
[  124.138823][ T5736] batman_adv: batadv0: Interface activated: batadv_slave_0
[  124.144185][ T5736] batman_adv: batadv0: Interface activated: batadv_slave_1
[  124.164306][ T5829] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.164555][ T4758] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.164594][ T4758] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.164630][ T4758] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.318432][ T5829] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  124.318454][ T5829] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  124.349202][ T4758] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  124.349224][ T4758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/06/19 18:27:37 executed programs: 2
[  124.601659][ T5835] loop0: detected capacity change from 0 to 32768
[  124.617766][ T5835] 
[  124.617766][ T5835]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.617766][ T5835] 
[  124.675851][ T5736] 
[  124.675851][ T5736]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.675851][ T5736] 
[  124.676097][ T5736] 
[  124.676097][ T5736]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.676097][ T5736] 
[  124.896219][ T5836] loop0: detected capacity change from 0 to 32768
[  124.901168][ T5836] 
[  124.901168][ T5836]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.901168][ T5836] 
[  124.935579][ T5736] 
[  124.935579][ T5736]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.935579][ T5736] 
[  124.935902][ T5736] 
[  124.935902][ T5736]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  124.935902][ T5736] 
[  124.939984][ T4758] ==================================================================
[  124.940000][ T4758] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.940046][ T4758] Read of size 4096 at addr ffff888033e34000 by task kworker/u8:11/4758
[  124.940065][ T4758] 
[  124.940086][ T4758] CPU: 1 UID: 0 PID: 4758 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  124.940112][ T4758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  124.940127][ T4758] Workqueue: loop0 loop_workfn
[  124.940169][ T4758] Call Trace:
[  124.940178][ T4758]  <TASK>
[  124.940187][ T4758]  dump_stack_lvl+0xe8/0x150
[  124.940214][ T4758]  print_address_description+0x55/0x1e0
[  124.940242][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.940272][ T4758]  print_report+0x58/0x70
[  124.940296][ T4758]  kasan_report+0x117/0x150
[  124.940322][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.940356][ T4758]  kasan_check_range+0x264/0x2c0
[  124.940381][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.940412][ T4758]  __asan_memcpy+0x29/0x70
[  124.940446][ T4758]  copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.940487][ T4758]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[  124.940517][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.940550][ T4758]  ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[  124.940584][ T4758]  ? shmem_write_begin+0x1ce/0x320
[  124.940612][ T4758]  generic_perform_write+0x5a8/0x8b0
[  124.940645][ T4758]  ? __pfx_generic_perform_write+0x10/0x10
[  124.940671][ T4758]  ? generic_write_checks_count+0x426/0x530
[  124.940705][ T4758]  ? file_update_time_flags+0x3b9/0x4b0
[  124.940732][ T4758]  shmem_file_write_iter+0xfb/0x120
[  124.940777][ T4758]  lo_rw_aio+0xc78/0xf30
[  124.940806][ T4758]  ? kthread_associate_blkcg+0x30f/0x600
[  124.940830][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.940864][ T4758]  ? __pfx_lo_rw_aio+0x10/0x10
[  124.940887][ T4758]  ? kthread_associate_blkcg+0x30f/0x600
[  124.940916][ T4758]  ? kthread_associate_blkcg+0x490/0x600
[  124.940940][ T4758]  ? rt_spin_unlock+0x160/0x200
[  124.940963][ T4758]  loop_process_work+0x638/0x11d0
[  124.940997][ T4758]  ? __pfx_loop_process_work+0x10/0x10
[  124.941021][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.941045][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.941078][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.941110][ T4758]  ? trace_hrtimer_start+0x82/0x200
[  124.941135][ T4758]  ? hrtimer_start_range_ns_common+0x841/0xb90
[  124.941170][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.941194][ T4758]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  124.941220][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.941253][ T4758]  ? process_scheduled_works+0xa20/0x14e0
[  124.941290][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.941322][ T4758]  ? lock_acquire+0x5f/0x350
[  124.941351][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.941385][ T4758]  ? process_scheduled_works+0xa20/0x14e0
[  124.941416][ T4758]  process_scheduled_works+0xa8e/0x14e0
[  124.941461][ T4758]  ? __pfx_process_scheduled_works+0x10/0x10
[  124.941492][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.941517][ T4758]  ? assign_work+0x3cf/0x5d0
[  124.941550][ T4758]  worker_thread+0xa47/0xfb0
[  124.941590][ T4758]  ? __kthread_parkme+0x71/0x1f0
[  124.941629][ T4758]  kthread+0x388/0x470
[  124.941652][ T4758]  ? __pfx_worker_thread+0x10/0x10
[  124.941683][ T4758]  ? __pfx_kthread+0x10/0x10
[  124.941706][ T4758]  ret_from_fork+0x514/0xb70
[  124.941733][ T4758]  ? __pfx_ret_from_fork+0x10/0x10
[  124.941768][ T4758]  ? __switch_to+0xc89/0x1420
[  124.941802][ T4758]  ? __pfx_kthread+0x10/0x10
[  124.941826][ T4758]  ret_from_fork_asm+0x1a/0x30
[  124.941863][ T4758]  </TASK>
[  124.941871][ T4758] 
[  124.941876][ T4758] The buggy address belongs to the physical page:
[  124.941901][ T4758] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888033e34000 pfn:0x33e34
[  124.941924][ T4758] flags: 0x80000000000000(node=0|zone=1)
[  124.941950][ T4758] raw: 0080000000000000 ffffea0000dedb08 ffffea0000d2bd08 0000000000000000
[  124.941969][ T4758] raw: ffff888033e34000 0000000000000000 00000000ffffffff 0000000000000000
[  124.941981][ T4758] page dumped because: kasan: bad access detected
[  124.941999][ T4758] page_owner tracks the page as freed
[  124.942007][ T4758] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 5836, tgid 5836 (syz.0.18), ts 124900148177, free_ts 124938478706
[  124.942046][ T4758]  post_alloc_hook+0x22d/0x280
[  124.942068][ T4758]  get_page_from_freelist+0x2877/0x28f0
[  124.942094][ T4758]  __alloc_frozen_pages_noprof+0x18d/0x380
[  124.942120][ T4758]  alloc_pages_mpol+0xce/0x280
[  124.942143][ T4758]  alloc_pages_noprof+0xd2/0x2f0
[  124.942168][ T4758]  lmLogInit+0x357/0x1a20
[  124.942194][ T4758]  lmLogOpen+0x4e3/0xf90
[  124.942219][ T4758]  jfs_mount_rw+0xf3/0x670
[  124.942243][ T4758]  jfs_fill_super+0x769/0xda0
[  124.942261][ T4758]  get_tree_bdev_flags+0x430/0x4f0
[  124.942282][ T4758]  vfs_get_tree+0x92/0x2a0
[  124.942303][ T4758]  do_new_mount+0x319/0xdc0
[  124.942333][ T4758]  __se_sys_mount+0x31d/0x420
[  124.942363][ T4758]  do_syscall_64+0x174/0x580
[  124.942390][ T4758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.942411][ T4758] page last free pid 5736 tgid 5736 stack trace:
[  124.942424][ T4758]  __free_frozen_pages+0x1019/0x1100
[  124.942445][ T4758]  lmLogShutdown+0x44e/0x850
[  124.942472][ T4758]  lmLogClose+0x28c/0x530
[  124.942498][ T4758]  jfs_umount+0x2da/0x3b0
[  124.942522][ T4758]  jfs_put_super+0x8c/0x190
[  124.942539][ T4758]  generic_shutdown_super+0x13d/0x2d0
[  124.942572][ T4758]  kill_block_super+0x44/0x90
[  124.942593][ T4758]  deactivate_locked_super+0xbc/0x130
[  124.942626][ T4758]  cleanup_mnt+0x3d3/0x460
[  124.942645][ T4758]  task_work_run+0x1d9/0x270
[  124.942668][ T4758]  exit_to_user_mode_loop+0x1fa/0x730
[  124.942693][ T4758]  do_syscall_64+0x353/0x580
[  124.942720][ T4758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.942741][ T4758] 
[  124.942746][ T4758] Memory state around the buggy address:
[  124.942764][ T4758]  ffff888033e33f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  124.942780][ T4758]  ffff888033e33f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  124.942795][ T4758] >ffff888033e34000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  124.942807][ T4758]                    ^
[  124.942818][ T4758]  ffff888033e34080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  124.942834][ T4758]  ffff888033e34100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  124.942845][ T4758] ==================================================================
[  124.944409][ T4758] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  124.944430][ T4758] CPU: 1 UID: 0 PID: 4758 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  124.944457][ T4758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  124.944471][ T4758] Workqueue: loop0 loop_workfn
[  124.944499][ T4758] Call Trace:
[  124.944507][ T4758]  <TASK>
[  124.944516][ T4758]  vpanic+0x56c/0xa60
[  124.944546][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.944585][ T4758]  ? __pfx_vpanic+0x10/0x10
[  124.944613][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.944649][ T4758]  panic+0xc5/0xd0
[  124.944676][ T4758]  ? __pfx_panic+0x10/0x10
[  124.944705][ T4758]  ? preempt_schedule_thunk+0x16/0x40
[  124.944767][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.944797][ T4758]  ? preempt_schedule_thunk+0x16/0x40
[  124.944833][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.944862][ T4758]  check_panic_on_warn+0x89/0xb0
[  124.944888][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.944917][ T4758]  end_report+0x73/0x170
[  124.944942][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.944971][ T4758]  kasan_report+0x128/0x150
[  124.944998][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.945032][ T4758]  kasan_check_range+0x264/0x2c0
[  124.945057][ T4758]  ? copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.945088][ T4758]  __asan_memcpy+0x29/0x70
[  124.945122][ T4758]  copy_folio_from_iter_atomic+0xbbf/0x1a30
[  124.945166][ T4758]  ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[  124.945195][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945227][ T4758]  ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[  124.945259][ T4758]  ? shmem_write_begin+0x1ce/0x320
[  124.945286][ T4758]  generic_perform_write+0x5a8/0x8b0
[  124.945318][ T4758]  ? __pfx_generic_perform_write+0x10/0x10
[  124.945343][ T4758]  ? generic_write_checks_count+0x426/0x530
[  124.945385][ T4758]  ? file_update_time_flags+0x3b9/0x4b0
[  124.945411][ T4758]  shmem_file_write_iter+0xfb/0x120
[  124.945443][ T4758]  lo_rw_aio+0xc78/0xf30
[  124.945471][ T4758]  ? kthread_associate_blkcg+0x30f/0x600
[  124.945495][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945527][ T4758]  ? __pfx_lo_rw_aio+0x10/0x10
[  124.945549][ T4758]  ? kthread_associate_blkcg+0x30f/0x600
[  124.945577][ T4758]  ? kthread_associate_blkcg+0x490/0x600
[  124.945602][ T4758]  ? rt_spin_unlock+0x160/0x200
[  124.945626][ T4758]  loop_process_work+0x638/0x11d0
[  124.945659][ T4758]  ? __pfx_loop_process_work+0x10/0x10
[  124.945685][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.945709][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945742][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945780][ T4758]  ? trace_hrtimer_start+0x82/0x200
[  124.945804][ T4758]  ? hrtimer_start_range_ns_common+0x841/0xb90
[  124.945841][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.945865][ T4758]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  124.945888][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945920][ T4758]  ? process_scheduled_works+0xa20/0x14e0
[  124.945950][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.945982][ T4758]  ? lock_acquire+0x5f/0x350
[  124.946011][ T4758]  ? rcu_is_watching+0x15/0xb0
[  124.946044][ T4758]  ? process_scheduled_works+0xa20/0x14e0
[  124.946074][ T4758]  process_scheduled_works+0xa8e/0x14e0
[  124.946118][ T4758]  ? __pfx_process_scheduled_works+0x10/0x10
[  124.946147][ T4758]  ? do_raw_spin_lock+0x12b/0x2f0
[  124.946172][ T4758]  ? assign_work+0x3cf/0x5d0
[  124.946202][ T4758]  worker_thread+0xa47/0xfb0
[  124.946238][ T4758]  ? __kthread_parkme+0x71/0x1f0
[  124.946274][ T4758]  kthread+0x388/0x470
[  124.946294][ T4758]  ? __pfx_worker_thread+0x10/0x10
[  124.946324][ T4758]  ? __pfx_kthread+0x10/0x10
[  124.946347][ T4758]  ret_from_fork+0x514/0xb70
[  124.946371][ T4758]  ? __pfx_ret_from_fork+0x10/0x10
[  124.946394][ T4758]  ? __switch_to+0xc89/0x1420
[  124.946428][ T4758]  ? __pfx_kthread+0x10/0x10
[  124.946449][ T4758]  ret_from_fork_asm+0x1a/0x30
[  124.946482][ T4758]  </TASK>
[  124.947086][ T4758] Kernel Offset: disabled