[ 132.999084][ T1334] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.999158][ T1334] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '10.128.1.239' (ED25519) to the list of known hosts.
2026/05/08 12:47:36 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[ 139.719592][ T6094] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 142.580981][ T5637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 142.583832][ T5637] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 142.585876][ T5637] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 142.603313][ T5637] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 142.604010][ T5637] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 143.175741][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 143.175760][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 143.229415][ T55] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 143.229435][ T55] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 147.752291][ T6151] bridge0: port 1(bridge_slave_0) entered blocking state
[ 147.752419][ T6151] bridge0: port 1(bridge_slave_0) entered disabled state
[ 147.752683][ T6151] bridge_slave_0: entered allmulticast mode
[ 147.754042][ T6151] bridge_slave_0: entered promiscuous mode
[ 147.767931][ T6151] bridge0: port 2(bridge_slave_1) entered blocking state
[ 147.768134][ T6151] bridge0: port 2(bridge_slave_1) entered disabled state
[ 147.768287][ T6151] bridge_slave_1: entered allmulticast mode
[ 147.770645][ T6151] bridge_slave_1: entered promiscuous mode
[ 147.819482][ T6151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 147.826348][ T6151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 147.869335][ T6151] team0: Port device team_slave_0 added
[ 147.872181][ T6151] team0: Port device team_slave_1 added
[ 147.907129][ T6151] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 147.907145][ T6151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 147.907164][ T6151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 147.908419][ T6151] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 147.908430][ T6151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 147.908446][ T6151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 147.970137][ T6151] hsr_slave_0: entered promiscuous mode
[ 147.971255][ T6151] hsr_slave_1: entered promiscuous mode
[ 149.943234][ T6151] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 149.980109][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 149.981504][ T6151] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 150.033767][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 150.036556][ T6151] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 150.093838][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 150.097367][ T6151] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 150.130549][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 150.270491][ T6151] 8021q: adding VLAN 0 to HW filter on device bond0
[ 150.326514][ T6151] 8021q: adding VLAN 0 to HW filter on device team0
[ 150.342066][ T3527] bridge0: port 1(bridge_slave_0) entered blocking state
[ 150.342277][ T3527] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 150.406606][ T55] bridge0: port 2(bridge_slave_1) entered blocking state
[ 150.406736][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 151.101650][ T6151] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 151.206409][ T6151] veth0_vlan: entered promiscuous mode
[ 151.219304][ T6151] veth1_vlan: entered promiscuous mode
[ 151.270419][ T6151] veth0_macvtap: entered promiscuous mode
[ 151.282654][ T6151] veth1_macvtap: entered promiscuous mode
[ 151.317632][ T6151] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 151.340143][ T6151] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 151.359415][ T141] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.360283][ T141] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.360322][ T141] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.360351][ T141] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.232344][ T3527] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 153.123787][ T3527] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 154.150759][ T3527] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 154.484135][ T3527] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/08 12:47:55 executed programs: 0
[ 155.242262][ T5637] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 155.271713][ T5637] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 155.285690][ T5637] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 155.287407][ T3527] bridge_slave_1: left allmulticast mode
[ 155.287439][ T3527] bridge_slave_1: left promiscuous mode
[ 155.287869][ T5637] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 155.289950][ T5637] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 155.291034][ T3527] bridge0: port 2(bridge_slave_1) entered disabled state
[ 155.400376][ T3527] bridge_slave_0: left allmulticast mode
[ 155.400410][ T3527] bridge_slave_0: left promiscuous mode
[ 155.400679][ T3527] bridge0: port 1(bridge_slave_0) entered disabled state
[ 156.254986][ T3527] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 156.315246][ T3527] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 156.356337][ T3527] bond0 (unregistering): Released all slaves
[ 156.376497][ T5260] 8021q: adding VLAN 0 to HW filter on device eth1
[ 156.734420][ T3527] hsr_slave_0: left promiscuous mode
[ 156.774417][ T3527] hsr_slave_1: left promiscuous mode
[ 156.780964][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 156.780992][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 156.835902][ T3527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 156.835937][ T3527] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 156.925577][ T3527] veth1_macvtap: left promiscuous mode
[ 156.925638][ T3527] veth0_macvtap: left promiscuous mode
[ 156.926982][ T3527] veth1_vlan: left promiscuous mode
[ 156.927080][ T3527] veth0_vlan: left promiscuous mode
[ 157.314486][ T4915] Bluetooth: hci0: command tx timeout
[ 157.616182][ T3527] team0 (unregistering): Port device team_slave_1 removed
[ 157.654921][ T3527] team0 (unregistering): Port device team_slave_0 removed
[ 157.811372][ T5260] 8021q: adding VLAN 0 to HW filter on device eth2
[ 158.388001][ T6383] bridge0: port 1(bridge_slave_0) entered blocking state
[ 158.388184][ T6383] bridge0: port 1(bridge_slave_0) entered disabled state
[ 158.388341][ T6383] bridge_slave_0: entered allmulticast mode
[ 158.390883][ T6383] bridge_slave_0: entered promiscuous mode
[ 158.423513][ T6383] bridge0: port 2(bridge_slave_1) entered blocking state
[ 158.423783][ T6383] bridge0: port 2(bridge_slave_1) entered disabled state
[ 158.423973][ T6383] bridge_slave_1: entered allmulticast mode
[ 158.448857][ T6383] bridge_slave_1: entered promiscuous mode
[ 158.502874][ T6383] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 158.522281][ T6383] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 158.567240][ T6383] team0: Port device team_slave_0 added
[ 158.570433][ T6383] team0: Port device team_slave_1 added
[ 158.629843][ T6383] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 158.629858][ T6383] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 158.629879][ T6383] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 158.656822][ T6383] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 158.656837][ T6383] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 158.656860][ T6383] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 158.662217][ T5260] 8021q: adding VLAN 0 to HW filter on device eth3
[ 158.799333][ T6383] hsr_slave_0: entered promiscuous mode
[ 158.800631][ T6383] hsr_slave_1: entered promiscuous mode
[ 159.148810][ T5260] 8021q: adding VLAN 0 to HW filter on device eth4
[ 159.394383][ T4915] Bluetooth: hci0: command tx timeout
[ 161.163624][ T6383] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 161.188692][ T6383] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 161.190019][ T6383] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 161.241103][ T6383] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 161.242407][ T6383] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 161.283038][ T6383] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 161.302310][ T6383] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 161.340920][ T6383] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 161.474868][ T4915] Bluetooth: hci0: command tx timeout
[ 161.475356][ T6383] 8021q: adding VLAN 0 to HW filter on device bond0
[ 161.522808][ T6383] 8021q: adding VLAN 0 to HW filter on device team0
[ 161.543539][ T3527] bridge0: port 1(bridge_slave_0) entered blocking state
[ 161.543888][ T3527] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 161.584681][ T3527] bridge0: port 2(bridge_slave_1) entered blocking state
[ 161.584898][ T3527] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 162.173604][ T6383] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 162.272116][ T6383] veth0_vlan: entered promiscuous mode
[ 162.295752][ T6383] veth1_vlan: entered promiscuous mode
[ 162.352811][ T6383] veth0_macvtap: entered promiscuous mode
[ 162.370469][ T6383] veth1_macvtap: entered promiscuous mode
[ 162.394009][ T6383] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 162.427685][ T6383] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 162.450059][ T41] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 162.451906][ T41] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 162.452441][ T41] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 162.452478][ T41] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 162.833648][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 162.833668][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 162.891751][ T141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 162.891771][ T141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 12:48:03 executed programs: 2
[ 163.241708][ T6535] loop0: detected capacity change from 0 to 32768
[ 163.375899][ T6535] Bad index:0 in slot in dtroot
[ 163.375899][ T6535]
[ 163.375920][ T6535] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.375920][ T6535]
[ 163.376989][ T6535] ERROR: (device loop0): remounting filesystem as read-only
[ 163.554385][ T4915] Bluetooth: hci0: command tx timeout
[ 163.806134][ T6537] loop0: detected capacity change from 0 to 32768
[ 163.843649][ T6537] Bad index:0 in slot in dtroot
[ 163.843649][ T6537]
[ 163.843668][ T6537] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.843668][ T6537]
[ 163.843877][ T6537] ERROR: (device loop0): remounting filesystem as read-only
[ 164.223093][ T6539] loop0: detected capacity change from 0 to 32768
[ 164.258718][ T6539] Bad index:0 in slot in dtroot
[ 164.258718][ T6539]
[ 164.258736][ T6539] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 164.258736][ T6539]
[ 164.259044][ T6539] ERROR: (device loop0): remounting filesystem as read-only
[ 164.627372][ T6541] loop0: detected capacity change from 0 to 32768
[ 164.651150][ T6541] Bad index:0 in slot in dtroot
[ 164.651150][ T6541]
[ 164.651167][ T6541] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 164.651167][ T6541]
[ 164.651422][ T6541] ERROR: (device loop0): remounting filesystem as read-only
[ 164.998570][ T6543] loop0: detected capacity change from 0 to 32768
[ 165.035032][ T6543] Bad index:0 in slot in dtroot
[ 165.035032][ T6543]
[ 165.035050][ T6543] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 165.035050][ T6543]
[ 165.036775][ T6543] ERROR: (device loop0): remounting filesystem as read-only
[ 165.364177][ T6545] loop0: detected capacity change from 0 to 32768
[ 165.411187][ T6545] Bad index:0 in slot in dtroot
[ 165.411187][ T6545]
[ 165.411206][ T6545] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 165.411206][ T6545]
[ 165.411440][ T6545] ERROR: (device loop0): remounting filesystem as read-only
[ 165.729706][ T6547] loop0: detected capacity change from 0 to 32768
[ 165.755478][ T6547] Bad index:0 in slot in dtroot
[ 165.755478][ T6547]
[ 165.755494][ T6547] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 165.755494][ T6547]
[ 165.755858][ T6547] ERROR: (device loop0): remounting filesystem as read-only
[ 166.092103][ T6549] loop0: detected capacity change from 0 to 32768
[ 166.109585][ T6549] Bad index:0 in slot in dtroot
[ 166.109585][ T6549]
[ 166.109600][ T6549] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.109600][ T6549]
[ 166.109795][ T6549] ERROR: (device loop0): remounting filesystem as read-only
[ 166.443960][ T6551] loop0: detected capacity change from 0 to 32768
[ 166.461453][ T6551] Bad index:0 in slot in dtroot
[ 166.461453][ T6551]
[ 166.461468][ T6551] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.461468][ T6551]
[ 166.461696][ T6551] ERROR: (device loop0): remounting filesystem as read-only
[ 166.799756][ T6553] loop0: detected capacity change from 0 to 32768
[ 166.823503][ T6553] Bad index:0 in slot in dtroot
[ 166.823503][ T6553]
[ 166.823520][ T6553] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.823520][ T6553]
[ 166.823731][ T6553] ERROR: (device loop0): remounting filesystem as read-only
[ 167.207209][ T6555] Bad index:0 in slot in dtroot
[ 167.207209][ T6555]
[ 167.207225][ T6555] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 167.207225][ T6555]
[ 167.209288][ T6555] ERROR: (device loop0): remounting filesystem as read-only
[ 167.543984][ T6557] Bad index:0 in slot in dtroot
[ 167.543984][ T6557]
[ 167.543999][ T6557] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 167.543999][ T6557]
[ 167.544408][ T6557] ERROR: (device loop0): remounting filesystem as read-only
[ 167.865274][ T6559] Bad index:0 in slot in dtroot
[ 167.865274][ T6559]
[ 167.865290][ T6559] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 167.865290][ T6559]
[ 167.865528][ T6559] ERROR: (device loop0): remounting filesystem as read-only
[ 168.241394][ T6561] Bad index:0 in slot in dtroot
[ 168.241394][ T6561]
[ 168.241408][ T6561] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.241408][ T6561]
[ 168.241673][ T6561] ERROR: (device loop0): remounting filesystem as read-only
2026/05/08 12:48:08 executed programs: 16
[ 168.597038][ T6563] set_capacity_and_notify: 4 callbacks suppressed
[ 168.597053][ T6563] loop0: detected capacity change from 0 to 32768
[ 168.604052][ T6563] Bad index:0 in slot in dtroot
[ 168.604052][ T6563]
[ 168.604066][ T6563] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.604066][ T6563]
[ 168.604353][ T6563] ERROR: (device loop0): remounting filesystem as read-only
[ 168.940891][ T6565] loop0: detected capacity change from 0 to 32768
[ 168.959957][ T6565] Bad index:0 in slot in dtroot
[ 168.959957][ T6565]
[ 168.959973][ T6565] ERROR: (device loop0): c[ 168.959973][ T6565] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.959973][ T6565]
[ 168.960216][ T6565] ERROR: (device loop0): remounting filesystem as read-only
[ 168.971575][ C0] ==================================================================
[ 168.971591][ C0] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 168.971622][ C0] Read of size 4 at addr ffff8880455a6e08 by task ksoftirqd/0/15
[ 168.971637][ C0]
[ 168.971662][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 168.971684][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 168.971702][ C0] Call Trace:
[ 168.971709][ C0]
[ 168.971717][ C0] dump_stack_lvl+0xe8/0x150
[ 168.971738][ C0] print_address_description+0x55/0x1e0
[ 168.971759][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.971780][ C0] print_report+0x58/0x70
[ 168.971798][ C0] kasan_report+0x117/0x150
[ 168.971820][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.971845][ C0] lbmIODone+0x1312/0x16c0
[ 168.971867][ C0] ? blkg_put+0x22/0x240
[ 168.971884][ C0] ? blkg_put+0x22/0x240
[ 168.971901][ C0] ? blkg_put+0x18d/0x240
[ 168.971918][ C0] ? bio_endio+0x989/0x9d0
[ 168.971939][ C0] blk_update_request+0x57e/0xe60
[ 168.971965][ C0] blk_mq_end_request+0x3e/0x70
[ 168.971992][ C0] blk_done_softirq+0x10a/0x160
[ 168.972012][ C0] handle_softirqs+0x1de/0x6d0
[ 168.972037][ C0] ? smpboot_thread_fn+0x4d/0xa50
[ 168.972057][ C0] run_ksoftirqd+0x52/0x180
[ 168.972076][ C0] smpboot_thread_fn+0x541/0xa50
[ 168.972097][ C0] ? smpboot_thread_fn+0x4d/0xa50
[ 168.972121][ C0] kthread+0x388/0x470
[ 168.972143][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 168.972163][ C0] ? __pfx_kthread+0x10/0x10
[ 168.972185][ C0] ret_from_fork+0x514/0xb70
[ 168.972206][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 168.972224][ C0] ? __switch_to+0xc79/0x1410
[ 168.972250][ C0] ? __pfx_kthread+0x10/0x10
[ 168.972271][ C0] ret_from_fork_asm+0x1a/0x30
[ 168.972299][ C0]
[ 168.972306][ C0]
[ 168.972315][ C0] Allocated by task 6565:
[ 168.972323][ C0] kasan_save_track+0x3e/0x80
[ 168.972340][ C0] __kasan_kmalloc+0x93/0xb0
[ 168.972355][ C0] __kmalloc_cache_noprof+0x3a6/0x690
[ 168.972373][ C0] lmLogInit+0x3e5/0x1a00
[ 168.972392][ C0] lmLogOpen+0x4e1/0xfa0
[ 168.972411][ C0] jfs_mount_rw+0xee/0x670
[ 168.972429][ C0] jfs_fill_super+0x754/0xd80
[ 168.972444][ C0] get_tree_bdev_flags+0x431/0x4f0
[ 168.972462][ C0] vfs_get_tree+0x92/0x2a0
[ 168.972478][ C0] do_new_mount+0x341/0xd30
[ 168.972500][ C0] __se_sys_mount+0x31d/0x420
[ 168.972521][ C0] do_syscall_64+0x15f/0xf80
[ 168.972541][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.972558][ C0]
[ 168.972561][ C0] Freed by task 6565:
[ 168.972569][ C0] kasan_save_track+0x3e/0x80
[ 168.972584][ C0] kasan_save_free_info+0x46/0x50
[ 168.972605][ C0] __kasan_slab_free+0x5c/0x80
[ 168.972621][ C0] kfree+0x1c5/0x6c0
[ 168.972635][ C0] lmLogShutdown+0x456/0x850
[ 168.972654][ C0] lmLogClose+0x28a/0x520
[ 168.972673][ C0] jfs_umount+0x2fb/0x3d0
[ 168.972691][ C0] jfs_fill_super+0x9c5/0xd80
[ 168.972705][ C0] get_tree_bdev_flags+0x431/0x4f0
[ 168.972723][ C0] vfs_get_tree+0x92/0x2a0
[ 168.972739][ C0] do_new_mount+0x341/0xd30
[ 168.972761][ C0] __se_sys_mount+0x31d/0x420
[ 168.972782][ C0] do_syscall_64+0x15f/0xf80
[ 168.972800][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.972816][ C0]
[ 168.972820][ C0] The buggy address belongs to the object at ffff8880455a6e00
[ 168.972820][ C0] which belongs to the cache kmalloc-256 of size 256
[ 168.972836][ C0] The buggy address is located 8 bytes inside of
[ 168.972836][ C0] freed 256-byte region [ffff8880455a6e00, ffff8880455a6f00)
[ 168.972855][ C0]
[ 168.972859][ C0] The buggy address belongs to the physical page:
[ 168.972878][ C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x455a6
[ 168.972896][ C0] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 168.972911][ C0] flags: 0x80000000000040(head|node=0|zone=1)
[ 168.972930][ C0] page_type: f5(slab)
[ 168.972947][ C0] raw: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[ 168.972962][ C0] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 168.972978][ C0] head: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[ 168.972999][ C0] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 168.973014][ C0] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 168.973028][ C0] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 168.973037][ C0] page dumped because: kasan: bad access detected
[ 168.973052][ C0] page_owner tracks the page as allocated
[ 168.973059][ C0] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6099, tgid 6099 (udevd), ts 168531016448, free_ts 168377573309
[ 168.973090][ C0] post_alloc_hook+0x231/0x280
[ 168.973108][ C0] get_page_from_freelist+0x27c8/0x2840
[ 168.973128][ C0] __alloc_frozen_pages_noprof+0x18d/0x380
[ 168.973148][ C0] allocate_slab+0x77/0x660
[ 168.973169][ C0] refill_objects+0x33c/0x3d0
[ 168.973189][ C0] __pcs_replace_empty_main+0x373/0x720
[ 168.973211][ C0] __kmalloc_noprof+0x530/0x7b0
[ 168.973227][ C0] security_inode_init_security+0x102/0x3d0
[ 168.973246][ C0] shmem_mknod+0x1fe/0x360
[ 168.973267][ C0] path_openat+0x13b4/0x38a0
[ 168.973285][ C0] do_file_open+0x23e/0x4a0
[ 168.973301][ C0] do_sys_openat2+0x113/0x200
[ 168.973323][ C0] __x64_sys_openat+0x138/0x170
[ 168.973345][ C0] do_syscall_64+0x15f/0xf80
[ 168.973363][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.973380][ C0] page last free pid 6099 tgid 6099 stack trace:
[ 168.973390][ C0] free_unref_folios+0xc50/0x1970
[ 168.973407][ C0] folios_put_refs+0x7cb/0x8d0
[ 168.973425][ C0] truncate_inode_pages_range+0x3e0/0xe30
[ 168.973445][ C0] blkdev_flush_mapping+0x10c/0x2f0
[ 168.973468][ C0] bdev_release+0x422/0x660
[ 168.973490][ C0] blkdev_release+0x15/0x20
[ 168.973511][ C0] __fput+0x461/0xa70
[ 168.973532][ C0] fput_close_sync+0x11f/0x240
[ 168.973554][ C0] __x64_sys_close+0x7e/0x110
[ 168.973568][ C0] do_syscall_64+0x15f/0xf80
[ 168.973586][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 168.973603][ C0]
[ 168.973607][ C0] Memory state around the buggy address:
[ 168.973616][ C0] ffff8880455a6d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 168.973628][ C0] ffff8880455a6d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 168.973640][ C0] >ffff8880455a6e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 168.973648][ C0] ^
[ 168.973657][ C0] ffff8880455a6e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 168.973668][ C0] ffff8880455a6f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 168.973677][ C0] ==================================================================
[ 168.973692][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 168.973705][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 168.973724][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 168.973734][ C0] Call Trace:
[ 168.973740][ C0]
[ 168.973747][ C0] vpanic+0x56c/0xa60
[ 168.973770][ C0] ? __pfx_vpanic+0x10/0x10
[ 168.973794][ C0] panic+0xc5/0xd0
[ 168.973813][ C0] ? __pfx_panic+0x10/0x10
[ 168.973834][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.973856][ C0] ? rcu_is_watching+0x15/0xb0
[ 168.973883][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.973904][ C0] check_panic_on_warn+0x89/0xb0
[ 168.973929][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.973951][ C0] end_report+0x73/0x170
[ 168.973970][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.973997][ C0] kasan_report+0x128/0x150
[ 168.974017][ C0] ? lbmIODone+0x1312/0x16c0
[ 168.974043][ C0] lbmIODone+0x1312/0x16c0
[ 168.974066][ C0] ? blkg_put+0x22/0x240
[ 168.974082][ C0] ? blkg_put+0x22/0x240
[ 168.974099][ C0] ? blkg_put+0x18d/0x240
[ 168.974116][ C0] ? bio_endio+0x989/0x9d0
[ 168.974138][ C0] blk_update_request+0x57e/0xe60
[ 168.974163][ C0] blk_mq_end_request+0x3e/0x70
[ 168.974184][ C0] blk_done_softirq+0x10a/0x160
[ 168.974206][ C0] handle_softirqs+0x1de/0x6d0
[ 168.974225][ C0] ? smpboot_thread_fn+0x4d/0xa50
[ 168.974245][ C0] run_ksoftirqd+0x52/0x180
[ 168.974263][ C0] smpboot_thread_fn+0x541/0xa50
[ 168.974283][ C0] ? smpboot_thread_fn+0x4d/0xa50
[ 168.974304][ C0] kthread+0x388/0x470
[ 168.974325][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 168.974344][ C0] ? __pfx_kthread+0x10/0x10
[ 168.974363][ C0] ret_from_fork+0x514/0xb70
[ 168.974383][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 168.974402][ C0] ? __switch_to+0xc79/0x1410
[ 168.974426][ C0] ? __pfx_kthread+0x10/0x10
[ 168.974448][ C0] ret_from_fork_asm+0x1a/0x30
[ 168.974476][ C0]
[ 168.975132][ C0] Kernel Offset: disabled