syzkaller login: [ 91.822229][ T54] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:5271' (ED25519) to the list of known hosts.
2025/08/01 11:56:51 ignoring optional flag "sandboxArg"="0"
2025/08/01 11:56:53 parsed 1 programs
[ 105.591835][ T5338] cgroup: Unknown subsys name 'net'
[ 105.665329][ T5338] cgroup: Unknown subsys name 'cpuset'
[ 105.671146][ T5338] cgroup: Unknown subsys name 'rlimit'
[ 107.340343][ T5338] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 112.062848][ T5347] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 112.658983][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 112.663997][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 112.667925][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 112.672808][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 112.676323][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 113.306600][ T1040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.318157][ T1040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.372975][ T1040] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.376911][ T1040] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.078232][ T5407] chnl_net:caif_netlink_parms(): no params data found
[ 117.228402][ T5407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.240087][ T5407] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.243066][ T5407] bridge_slave_0: entered allmulticast mode
[ 117.260092][ T5407] bridge_slave_0: entered promiscuous mode
[ 117.267397][ T5407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.279711][ T5407] bridge0: port 2(bridge_slave_1) entered disabled state
[ 117.282851][ T5407] bridge_slave_1: entered allmulticast mode
[ 117.300669][ T5407] bridge_slave_1: entered promiscuous mode
[ 117.347617][ T5407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 117.362439][ T5407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 117.414645][ T5407] team0: Port device team_slave_0 added
[ 117.442705][ T5407] team0: Port device team_slave_1 added
[ 117.490799][ T5407] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 117.493980][ T5407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 117.530144][ T5407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 117.537713][ T5407] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 117.550155][ T5407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 117.570282][ T5407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 117.650779][ T5407] hsr_slave_0: entered promiscuous mode
[ 117.654193][ T5407] hsr_slave_1: entered promiscuous mode
[ 117.959067][ T5407] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 118.001291][ T5407] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 118.028996][ T5407] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 118.047142][ T5407] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 118.137906][ T5407] 8021q: adding VLAN 0 to HW filter on device bond0
[ 118.171514][ T5407] 8021q: adding VLAN 0 to HW filter on device team0
[ 118.213328][ T1040] bridge0: port 1(bridge_slave_0) entered blocking state
[ 118.216740][ T1040] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 118.244931][ T1040] bridge0: port 2(bridge_slave_1) entered blocking state
[ 118.248194][ T1040] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 118.591520][ T5407] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 118.635965][ T5407] veth0_vlan: entered promiscuous mode
[ 118.647764][ T5407] veth1_vlan: entered promiscuous mode
[ 118.677171][ T5407] veth0_macvtap: entered promiscuous mode
[ 118.684380][ T5407] veth1_macvtap: entered promiscuous mode
[ 118.702666][ T5407] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 118.715948][ T5407] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 118.728886][ T1041] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.742098][ T1041] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.746010][ T1041] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.761319][ T1041] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.905834][ T1090] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 118.974966][ T1090] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 119.081897][ T1090] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 119.192938][ T1090] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/08/01 11:57:11 executed programs: 0
[ 121.172481][ T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 121.177104][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 121.194844][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 121.216286][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 121.222041][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 121.261628][ T1090] bridge_slave_1: left allmulticast mode
[ 121.264362][ T1090] bridge_slave_1: left promiscuous mode
[ 121.267878][ T1090] bridge0: port 2(bridge_slave_1) entered disabled state
[ 121.318187][ T1090] bridge_slave_0: left allmulticast mode
[ 121.331067][ T1090] bridge_slave_0: left promiscuous mode
[ 121.345219][ T1090] bridge0: port 1(bridge_slave_0) entered disabled state
[ 121.796874][ T1090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 121.803814][ T1090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 121.808758][ T1090] bond0 (unregistering): Released all slaves
[ 121.895355][ T1090] hsr_slave_0: left promiscuous mode
[ 121.898441][ T1090] hsr_slave_1: left promiscuous mode
[ 121.903470][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 121.906708][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 121.912848][ T1090] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 121.916450][ T1090] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 121.928722][ T1090] veth1_macvtap: left promiscuous mode
[ 121.932690][ T1090] veth0_macvtap: left promiscuous mode
[ 121.935690][ T1090] veth1_vlan: left promiscuous mode
[ 121.938226][ T1090] veth0_vlan: left promiscuous mode
[ 122.253837][ T1090] team0 (unregistering): Port device team_slave_1 removed
[ 122.274174][ T1090] team0 (unregistering): Port device team_slave_0 removed
[ 122.874712][ T5443] chnl_net:caif_netlink_parms(): no params data found
[ 123.260925][ T45] Bluetooth: hci0: command tx timeout
[ 123.325545][ T5443] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.328484][ T5443] bridge0: port 1(bridge_slave_0) entered disabled state
[ 123.354833][ T5443] bridge_slave_0: entered allmulticast mode
[ 123.379819][ T5443] bridge_slave_0: entered promiscuous mode
[ 123.398961][ T5443] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.411882][ T5443] bridge0: port 2(bridge_slave_1) entered disabled state
[ 123.416410][ T5443] bridge_slave_1: entered allmulticast mode
[ 123.437741][ T5443] bridge_slave_1: entered promiscuous mode
[ 123.494028][ T5443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 123.511490][ T5443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 123.557577][ T5443] team0: Port device team_slave_0 added
[ 123.573909][ T5443] team0: Port device team_slave_1 added
[ 123.623070][ T5443] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 123.626606][ T5443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 123.663401][ T5443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 123.682712][ T5443] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 123.685993][ T5443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 123.710026][ T5443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 123.858584][ T5443] hsr_slave_0: entered promiscuous mode
[ 123.863162][ T5443] hsr_slave_1: entered promiscuous mode
[ 124.522317][ T5443] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 124.542342][ T5443] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 124.547846][ T5443] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 124.561688][ T5443] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 124.717533][ T5443] 8021q: adding VLAN 0 to HW filter on device bond0
[ 124.748708][ T5443] 8021q: adding VLAN 0 to HW filter on device team0
[ 124.767541][ T70] bridge0: port 1(bridge_slave_0) entered blocking state
[ 124.771086][ T70] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 124.801385][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[ 124.804522][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.213147][ T5443] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 125.290470][ T5443] veth0_vlan: entered promiscuous mode
[ 125.304086][ T5443] veth1_vlan: entered promiscuous mode
[ 125.341951][ T45] Bluetooth: hci0: command tx timeout
[ 125.371281][ T5443] veth0_macvtap: entered promiscuous mode
[ 125.378803][ T5443] veth1_macvtap: entered promiscuous mode
[ 125.411803][ T5443] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 125.434495][ T5443] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 125.452925][ T70] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.457324][ T70] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.471582][ T70] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.475400][ T70] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 125.592360][ T1041] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.595769][ T1041] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 125.651839][ T70] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 125.655252][ T70] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.281290][ T5510] loop0: detected capacity change from 0 to 32768
[ 126.431021][ T103] BUG: spinlock bad magic on CPU#0, jfsCommit/103
[ 126.433706][ T103] ==================================================================
[ 126.438473][ T103] BUG: KASAN: slab-out-of-bounds in string+0x231/0x2b0
[ 126.441964][ T103] Read of size 1 at addr ffff88800dd9ca00 by task jfsCommit/103
[ 126.445433][ T103]
[ 126.446456][ T103] CPU: 0 UID: 0 PID: 103 Comm: jfsCommit Not tainted 6.16.0-syzkaller-09014-gd6084bb815c4 #0 PREEMPT(full)
[ 126.446469][ T103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 126.446474][ T103] Call Trace:
[ 126.446480][ T103]
[ 126.446484][ T103] dump_stack_lvl+0x189/0x250
[ 126.446540][ T103] ? __pfx_dump_stack_lvl+0x10/0x10
[ 126.446551][ T103] ? lock_release+0x4b/0x3e0
[ 126.446567][ T103] ? __virt_addr_valid+0x4a5/0x5c0
[ 126.446581][ T103] print_report+0xca/0x240
[ 126.446596][ T103] ? string+0x231/0x2b0
[ 126.446606][ T103] kasan_report+0x118/0x150
[ 126.446660][ T103] ? number+0x91/0xf60
[ 126.446676][ T103] ? string+0x231/0x2b0
[ 126.446686][ T103] string+0x231/0x2b0
[ 126.446696][ T103] vsnprintf+0x739/0xf00
[ 126.446713][ T103] vprintk_store+0x3c7/0xd00
[ 126.446730][ T103] ? __pfx_vprintk_store+0x10/0x10
[ 126.446745][ T103] ? __console_unlock+0x136/0x1a0
[ 126.446756][ T103] ? __pfx___console_unlock+0x10/0x10
[ 126.446768][ T103] ? __irq_work_queue_local+0x1de/0x550
[ 126.446783][ T103] ? __pfx___irq_work_queue_local+0x10/0x10
[ 126.446793][ T103] ? console_unlock+0x21b/0x270
[ 126.446800][ T103] ? is_printk_cpu_sync_owner+0x32/0x40
[ 126.446809][ T103] vprintk_emit+0x21e/0x7a0
[ 126.446815][ T103] ? __pfx_vprintk_emit+0x10/0x10
[ 126.446820][ T103] ? __is_module_percpu_address+0x28/0x3f0
[ 126.446828][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.446838][ T103] ? __kasan_check_byte+0x12/0x40
[ 126.446845][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.446855][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.446864][ T103] ? __kasan_check_byte+0x12/0x40
[ 126.446872][ T103] _printk+0xcf/0x120
[ 126.446881][ T103] ? __pfx__printk+0x10/0x10
[ 126.446890][ T103] ? __lock_acquire+0x99/0xd20
[ 126.446899][ T103] spin_dump+0x102/0x1a0
[ 126.446907][ T103] do_raw_spin_lock+0x1ca/0x290
[ 126.446914][ T103] ? __wake_up_common_lock+0x2f/0x1f0
[ 126.446924][ T103] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 126.446936][ T103] _raw_spin_lock_irqsave+0xb3/0xf0
[ 126.446948][ T103] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 126.446959][ T103] ? dbFree+0x4d1/0x650
[ 126.446973][ T103] __wake_up_common_lock+0x2f/0x1f0
[ 126.446987][ T103] release_metapage+0x13c/0xac0
[ 126.446998][ T103] ? txFreeMap+0xb19/0xde0
[ 126.447010][ T103] ? do_raw_spin_unlock+0x4d/0x240
[ 126.447018][ T103] xtTruncate+0xe84/0x2e70
[ 126.447029][ T103] ? __pfx_xtTruncate+0x10/0x10
[ 126.447038][ T103] ? reacquire_held_locks+0x127/0x1d0
[ 126.447051][ T103] ? __mark_inode_dirty+0x4a6/0xdf0
[ 126.447066][ T103] ? __asan_memset+0x22/0x50
[ 126.447080][ T103] ? __dquot_initialize+0x218/0xcb0
[ 126.447095][ T103] jfs_free_zero_link+0x33a/0x4a0
[ 126.447106][ T103] ? __pfx_jfs_free_zero_link+0x10/0x10
[ 126.447115][ T103] ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 126.447130][ T103] jfs_evict_inode+0x363/0x440
[ 126.447145][ T103] ? evict+0x4f8/0x9c0
[ 126.447160][ T103] ? __pfx_jfs_evict_inode+0x10/0x10
[ 126.447201][ T103] evict+0x501/0x9c0
[ 126.447218][ T103] ? __pfx_evict+0x10/0x10
[ 126.447232][ T103] ? do_raw_spin_unlock+0x4d/0x240
[ 126.447244][ T103] ? _raw_spin_unlock+0x28/0x50
[ 126.447254][ T103] ? iput+0x6d8/0x9d0
[ 126.447267][ T103] jfs_lazycommit+0x43f/0xa90
[ 126.447281][ T103] ? __pfx_jfs_lazycommit+0x10/0x10
[ 126.447293][ T103] ? __pfx_default_wake_function+0x10/0x10
[ 126.447302][ T103] ? __kthread_parkme+0x7b/0x200
[ 126.447308][ T103] ? __kthread_parkme+0x1a1/0x200
[ 126.447316][ T103] kthread+0x70e/0x8a0
[ 126.447328][ T103] ? __pfx_jfs_lazycommit+0x10/0x10
[ 126.447339][ T103] ? __pfx_kthread+0x10/0x10
[ 126.447350][ T103] ? _raw_spin_unlock_irq+0x23/0x50
[ 126.447361][ T103] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.447372][ T103] ? __pfx_kthread+0x10/0x10
[ 126.447384][ T103] ret_from_fork+0x3f9/0x770
[ 126.447399][ T103] ? __pfx_ret_from_fork+0x10/0x10
[ 126.447423][ T103] ? __pfx_kthread+0x10/0x10
[ 126.447434][ T103] ret_from_fork_asm+0x1a/0x30
[ 126.447450][ T103]
[ 126.447455][ T103]
[ 126.621218][ T103] The buggy address belongs to the object at ffff88800dd9c9c0
[ 126.621218][ T103] which belongs to the cache jfs_ip of size 2232
[ 126.627003][ T103] The buggy address is located 64 bytes inside of
[ 126.627003][ T103] allocated 2232-byte region [ffff88800dd9c9c0, ffff88800dd9d278)
[ 126.632993][ T103]
[ 126.633898][ T103] The buggy address belongs to the physical page:
[ 126.636757][ T103] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0xdd98
[ 126.640809][ T103] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 126.644502][ T103] memcg:ffff888011a3bf01
[ 126.646324][ T103] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 126.650232][ T103] page_type: f5(slab)
[ 126.652556][ T103] raw: 00fff00000000040 ffff88801c7bcb40 dead000000000122 0000000000000000
[ 126.656659][ T103] raw: 0000000000000000 00000000800d000d 00000000f5000000 ffff888011a3bf01
[ 126.660341][ T103] head: 00fff00000000040 ffff88801c7bcb40 dead000000000122 0000000000000000
[ 126.664215][ T103] head: 0000000000000000 00000000800d000d 00000000f5000000 ffff888011a3bf01
[ 126.667718][ T103] head: 00fff00000000003 ffffea0000376601 00000000ffffffff 00000000ffffffff
[ 126.671538][ T103] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 126.675413][ T103] page dumped because: kasan: bad access detected
[ 126.678300][ T103] page_owner tracks the page as allocated
[ 126.680855][ T103] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5510, tgid 5510 (syz.0.17), ts 126287216096, free_ts 109621277654
[ 126.690277][ T103] post_alloc_hook+0x240/0x2a0
[ 126.692542][ T103] get_page_from_freelist+0x21e4/0x22c0
[ 126.694982][ T103] __alloc_frozen_pages_noprof+0x181/0x370
[ 126.697608][ T103] alloc_pages_mpol+0x232/0x4a0
[ 126.699782][ T103] allocate_slab+0x8a/0x370
[ 126.701940][ T103] ___slab_alloc+0xbeb/0x1410
[ 126.704347][ T103] kmem_cache_alloc_lru_noprof+0x288/0x3d0
[ 126.707061][ T103] jfs_alloc_inode+0x28/0x70
[ 126.709102][ T103] alloc_inode+0x67/0x1b0
[ 126.710979][ T103] new_inode+0x22/0x170
[ 126.712930][ T103] jfs_fill_super+0x569/0xd80
[ 126.715059][ T103] get_tree_bdev_flags+0x40b/0x4d0
[ 126.717437][ T103] vfs_get_tree+0x8f/0x2b0
[ 126.719515][ T103] do_new_mount+0x2a2/0x9e0
[ 126.721486][ T103] __se_sys_mount+0x317/0x410
[ 126.723562][ T103] do_syscall_64+0xfa/0x3b0
[ 126.725638][ T103] page last free pid 5338 tgid 5338 stack trace:
[ 126.728533][ T103] free_unref_folios+0xc66/0x14d0
[ 126.730694][ T103] folios_put_refs+0x559/0x640
[ 126.732746][ T103] free_pages_and_swap_cache+0x277/0x520
[ 126.735417][ T103] tlb_flush_mmu+0x3a0/0x680
[ 126.737710][ T103] tlb_finish_mmu+0xc3/0x1d0
[ 126.739752][ T103] vms_clear_ptes+0x42c/0x540
[ 126.741843][ T103] vms_complete_munmap_vmas+0x206/0x8a0
[ 126.744200][ T103] do_vmi_align_munmap+0x358/0x420
[ 126.746687][ T103] do_vmi_munmap+0x253/0x2e0
[ 126.749055][ T103] __vm_munmap+0x23b/0x3d0
[ 126.751321][ T103] __x64_sys_munmap+0x60/0x70
[ 126.753646][ T103] do_syscall_64+0xfa/0x3b0
[ 126.755707][ T103] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 126.758281][ T103]
[ 126.759387][ T103] Memory state around the buggy address:
[ 126.761994][ T103] ffff88800dd9c900: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 126.765837][ T103] ffff88800dd9c980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 126.769538][ T103] >ffff88800dd9ca00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 126.773143][ T103] ^
[ 126.774932][ T103] ffff88800dd9ca80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 126.778645][ T103] ffff88800dd9cb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 126.782081][ T103] ==================================================================
[ 126.785988][ T103] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 126.789497][ T103] CPU: 0 UID: 0 PID: 103 Comm: jfsCommit Not tainted 6.16.0-syzkaller-09014-gd6084bb815c4 #0 PREEMPT(full)
[ 126.794614][ T103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 126.799192][ T103] Call Trace:
[ 126.800598][ T103]
[ 126.801968][ T103] dump_stack_lvl+0x99/0x250
[ 126.804417][ T103] ? __asan_memcpy+0x40/0x70
[ 126.806988][ T103] ? __pfx_dump_stack_lvl+0x10/0x10
[ 126.809986][ T103] ? __pfx__printk+0x10/0x10
[ 126.812043][ T103] vpanic+0x27a/0x730
[ 126.813787][ T103] ? __pfx_print_hex_dump+0x10/0x10
[ 126.816024][ T103] ? __pfx_vpanic+0x10/0x10
[ 126.817898][ T103] panic+0xb9/0xc0
[ 126.819602][ T103] ? __pfx_panic+0x10/0x10
[ 126.821508][ T103] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 126.824028][ T103] ? string+0x231/0x2b0
[ 126.825861][ T103] check_panic_on_warn+0x89/0xb0
[ 126.828018][ T103] ? string+0x231/0x2b0
[ 126.829972][ T103] end_report+0x78/0x160
[ 126.832093][ T103] kasan_report+0x129/0x150
[ 126.834348][ T103] ? number+0x91/0xf60
[ 126.836575][ T103] ? string+0x231/0x2b0
[ 126.838512][ T103] string+0x231/0x2b0
[ 126.840249][ T103] vsnprintf+0x739/0xf00
[ 126.842028][ T103] vprintk_store+0x3c7/0xd00
[ 126.844282][ T103] ? __pfx_vprintk_store+0x10/0x10
[ 126.846884][ T103] ? __console_unlock+0x136/0x1a0
[ 126.849528][ T103] ? __pfx___console_unlock+0x10/0x10
[ 126.851897][ T103] ? __irq_work_queue_local+0x1de/0x550
[ 126.854325][ T103] ? __pfx___irq_work_queue_local+0x10/0x10
[ 126.856899][ T103] ? console_unlock+0x21b/0x270
[ 126.859205][ T103] ? is_printk_cpu_sync_owner+0x32/0x40
[ 126.861918][ T103] vprintk_emit+0x21e/0x7a0
[ 126.864206][ T103] ? __pfx_vprintk_emit+0x10/0x10
[ 126.866971][ T103] ? __is_module_percpu_address+0x28/0x3f0
[ 126.869612][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.871901][ T103] ? __kasan_check_byte+0x12/0x40
[ 126.873928][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.876111][ T103] ? rcu_is_watching+0x15/0xb0
[ 126.878267][ T103] ? __kasan_check_byte+0x12/0x40
[ 126.880599][ T103] _printk+0xcf/0x120
[ 126.882594][ T103] ? __pfx__printk+0x10/0x10
[ 126.884802][ T103] ? __lock_acquire+0x99/0xd20
[ 126.887098][ T103] spin_dump+0x102/0x1a0
[ 126.889035][ T103] do_raw_spin_lock+0x1ca/0x290
[ 126.891151][ T103] ? __wake_up_common_lock+0x2f/0x1f0
[ 126.893749][ T103] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 126.896140][ T103] _raw_spin_lock_irqsave+0xb3/0xf0
[ 126.898466][ T103] ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 126.900978][ T103] ? dbFree+0x4d1/0x650
[ 126.902876][ T103] __wake_up_common_lock+0x2f/0x1f0
[ 126.905383][ T103] release_metapage+0x13c/0xac0
[ 126.907971][ T103] ? txFreeMap+0xb19/0xde0
[ 126.910293][ T103] ? do_raw_spin_unlock+0x4d/0x240
[ 126.912509][ T103] xtTruncate+0xe84/0x2e70
[ 126.914470][ T103] ? __pfx_xtTruncate+0x10/0x10
[ 126.916654][ T103] ? reacquire_held_locks+0x127/0x1d0
[ 126.919108][ T103] ? __mark_inode_dirty+0x4a6/0xdf0
[ 126.921528][ T103] ? __asan_memset+0x22/0x50
[ 126.923699][ T103] ? __dquot_initialize+0x218/0xcb0
[ 126.926312][ T103] jfs_free_zero_link+0x33a/0x4a0
[ 126.929032][ T103] ? __pfx_jfs_free_zero_link+0x10/0x10
[ 126.931756][ T103] ? __pfx_inode_wait_for_writeback+0x10/0x10
[ 126.934461][ T103] jfs_evict_inode+0x363/0x440
[ 126.936567][ T103] ? evict+0x4f8/0x9c0
[ 126.938314][ T103] ? __pfx_jfs_evict_inode+0x10/0x10
[ 126.940678][ T103] evict+0x501/0x9c0
[ 126.942428][ T103] ? __pfx_evict+0x10/0x10
[ 126.944461][ T103] ? do_raw_spin_unlock+0x4d/0x240
[ 126.946727][ T103] ? _raw_spin_unlock+0x28/0x50
[ 126.948957][ T103] ? iput+0x6d8/0x9d0
[ 126.950819][ T103] jfs_lazycommit+0x43f/0xa90
[ 126.953071][ T103] ? __pfx_jfs_lazycommit+0x10/0x10
[ 126.955448][ T103] ? __pfx_default_wake_function+0x10/0x10
[ 126.957955][ T103] ? __kthread_parkme+0x7b/0x200
[ 126.960476][ T103] ? __kthread_parkme+0x1a1/0x200
[ 126.962957][ T103] kthread+0x70e/0x8a0
[ 126.964855][ T103] ? __pfx_jfs_lazycommit+0x10/0x10
[ 126.967093][ T103] ? __pfx_kthread+0x10/0x10
[ 126.969164][ T103] ? _raw_spin_unlock_irq+0x23/0x50
[ 126.971576][ T103] ? lockdep_hardirqs_on+0x9c/0x150
[ 126.973839][ T103] ? __pfx_kthread+0x10/0x10
[ 126.975900][ T103] ret_from_fork+0x3f9/0x770
[ 126.978014][ T103] ? __pfx_ret_from_fork+0x10/0x10
[ 126.980527][ T103] ? __pfx_kthread+0x10/0x10
[ 126.983046][ T103] ret_from_fork_asm+0x1a/0x30
[ 126.985262][ T103]
[ 126.986911][ T103] Kernel Offset: disabled
[ 126.988857][ T103] Rebooting in 86400 seconds..
VM DIAGNOSIS:
11:57:16 Registers:
info registers vcpu 0
CPU#0
RAX=000000000000003d RBX=000000000000003d RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900018ce8f0
R8 =ffff888033980237 R9 =1ffff11006730046 R10=dffffc0000000000 R11=ffffffff854da480
R12=dffffc0000000000 R13=ffffffff99aaa909 R14=ffffffff99daf840 R15=0000000000000000
RIP=ffffffff854da4fc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808d26b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000000c000251d70 CR3=0000000043884000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4010628c32761c32
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f2686ee8f2686ee8 f2686ee8f2686ee8
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 81e43b4f81e43b4f 81e43b4f81e43b4f
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f02e666d9648090 39d6e5c2ebc7382a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4800f8cf391deb37 cb3d29ec660f4f38
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7b0168e8ea1070df dcdaed37af6e56fe
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 10f47a07def01d2b aaaf5903379d8605
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7b1609b6bac7905 688181370b876fe5
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3de17d5e1f61949b 12efdb13bf5ffcc6
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 047a7c1aae433464 5b3e5f72e6380222
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b19416c2b1dfbe2f 5966225f628f573e
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e426de34e426de34 e426de34e426de34
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 63f22c2163f22c21 63f22c2163f22c21
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a3052ccba3052ccb a3052ccba3052ccb
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000