Warning: Permanently added '10.128.0.212' (ED25519) to the list of known hosts.
2025/12/05 08:20:08 parsed 1 programs
[   90.435895][ T5798] cgroup: Unknown subsys name 'net'
[   90.604180][ T5798] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   92.227952][    T9] cfg80211: failed to load regulatory.db
[   92.367071][ T5798] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   94.924999][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   94.933256][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   94.944657][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   94.952961][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   94.961853][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   94.969387][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.147536][ T3431] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.160137][ T3431] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.220160][ T3431] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.228962][ T3431] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.759092][ T5872] chnl_net:caif_netlink_parms(): no params data found
[   97.844619][ T5872] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.852452][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.859826][ T5872] bridge_slave_0: entered allmulticast mode
[   97.867815][ T5872] bridge_slave_0: entered promiscuous mode
[   97.877824][ T5872] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.885272][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.892708][ T5872] bridge_slave_1: entered allmulticast mode
[   97.900246][ T5872] bridge_slave_1: entered promiscuous mode
[   97.944417][ T5872] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   97.956821][ T5872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.009934][ T5872] team0: Port device team_slave_0 added
[   98.018937][ T5872] team0: Port device team_slave_1 added
[   98.066768][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_0
[   98.074633][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.101677][ T5872] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   98.115765][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_1
[   98.122758][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   98.148728][ T5872] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   98.214711][ T5872] hsr_slave_0: entered promiscuous mode
[   98.222163][ T5872] hsr_slave_1: entered promiscuous mode
[   98.402291][ T5872] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   98.425056][ T5872] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   98.436691][ T5872] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   98.449184][ T5872] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   98.582819][ T5872] 8021q: adding VLAN 0 to HW filter on device bond0
[   98.625945][ T5872] 8021q: adding VLAN 0 to HW filter on device team0
[   98.662490][ T3557] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.669999][ T3557] bridge0: port 1(bridge_slave_0) entered forwarding state
[   98.690199][ T3557] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.697428][ T3557] bridge0: port 2(bridge_slave_1) entered forwarding state
[   98.978302][ T5872] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.025243][ T5872] veth0_vlan: entered promiscuous mode
[   99.038852][ T5872] veth1_vlan: entered promiscuous mode
[   99.070412][ T5872] veth0_macvtap: entered promiscuous mode
[   99.080527][ T5872] veth1_macvtap: entered promiscuous mode
[   99.105668][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.121559][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_1
[   99.136012][ T5872] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.146113][ T5872] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.155000][ T5872] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.164188][ T5872] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.359173][ T3501] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/05 08:20:20 executed programs: 0
[  100.295509][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.307088][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.316349][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.325853][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.334258][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  100.342029][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  100.518413][ T5907] chnl_net:caif_netlink_parms(): no params data found
[  100.598278][ T5907] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.605570][ T5907] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.612959][ T5907] bridge_slave_0: entered allmulticast mode
[  100.620567][ T5907] bridge_slave_0: entered promiscuous mode
[  100.631115][ T5907] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.638796][ T5907] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.646178][ T5907] bridge_slave_1: entered allmulticast mode
[  100.653199][ T5907] bridge_slave_1: entered promiscuous mode
[  100.687753][ T5907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.700285][ T5907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.738008][ T5907] team0: Port device team_slave_0 added
[  100.748252][ T5907] team0: Port device team_slave_1 added
[  100.785557][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_0
[  100.792564][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.819376][ T5907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  100.834845][ T5907] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.841853][ T5907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.869933][ T5907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.917138][ T5907] hsr_slave_0: entered promiscuous mode
[  100.924499][ T5907] hsr_slave_1: entered promiscuous mode
[  100.930786][ T5907] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  100.939539][ T5907] Cannot create hsr debugfs directory
[  101.748533][ T3501] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.384447][ T5109] Bluetooth: hci0: command tx timeout
[  104.336639][ T3501] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.409283][ T3501] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.465774][ T5109] Bluetooth: hci0: command tx timeout
[  105.352078][ T5907] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  105.374623][ T3501] hsr_slave_0: left promiscuous mode
[  105.381128][ T3501] hsr_slave_1: left promiscuous mode
[  105.390143][ T3501] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.397733][ T3501] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.409205][ T3501] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.417289][ T3501] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.429964][ T3501] bridge_slave_1: left allmulticast mode
[  105.436040][ T3501] bridge_slave_1: left promiscuous mode
[  105.442938][ T3501] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.459772][ T3501] bridge_slave_0: left allmulticast mode
[  105.465764][ T3501] bridge_slave_0: left promiscuous mode
[  105.471580][ T3501] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.508924][ T3501] veth1_macvtap: left promiscuous mode
[  105.520617][ T3501] veth0_macvtap: left promiscuous mode
[  105.526728][ T3501] veth1_vlan: left promiscuous mode
[  105.532357][ T3501] veth0_vlan: left promiscuous mode
[  105.980032][ T3501] team0 (unregistering): Port device team_slave_1 removed
[  106.017574][ T3501] team0 (unregistering): Port device team_slave_0 removed
[  106.051251][ T3501] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.093665][ T3501] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  106.456207][ T3501] bond0 (unregistering): Released all slaves
[  106.543553][ T5109] Bluetooth: hci0: command tx timeout
[  106.561159][ T5907] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  106.572222][ T5907] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  106.582269][ T5907] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  106.698147][ T5907] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.720457][ T5907] 8021q: adding VLAN 0 to HW filter on device team0
[  106.738611][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.745948][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  106.767416][ T3431] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.775011][ T3431] bridge0: port 2(bridge_slave_1) entered forwarding state
[  106.990942][ T5907] 8021q: adding VLAN 0 to HW filter on device batadv0
[  107.039532][ T5907] veth0_vlan: entered promiscuous mode
[  107.054679][ T5907] veth1_vlan: entered promiscuous mode
[  107.108424][ T5907] veth0_macvtap: entered promiscuous mode
[  107.126377][ T5907] veth1_macvtap: entered promiscuous mode
[  107.164371][ T5907] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.179721][ T5907] batman_adv: batadv0: Interface activated: batadv_slave_1
[  107.191800][ T5907] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.201098][ T5907] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.210436][ T5907] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.219960][ T5907] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  107.310506][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.319758][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.370357][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.378598][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.439952][ T5954] syz.0.17[5954]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[  107.702712][ T5954] loop0: detected capacity change from 0 to 32768
[  107.762986][ T5954] ==================================================================
[  107.771135][ T5954] BUG: KASAN: slab-use-after-free in jfs_readdir+0x1173/0x3a90
[  107.778831][ T5954] Read of size 8 at addr ffff8880798a86f8 by task syz.0.17/5954
[  107.786499][ T5954] 
[  107.788869][ T5954] CPU: 0 PID: 5954 Comm: syz.0.17 Not tainted syzkaller #0
[  107.796100][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  107.806197][ T5954] Call Trace:
[  107.809544][ T5954]  <TASK>
[  107.812495][ T5954]  dump_stack_lvl+0x16c/0x230
[  107.817213][ T5954]  ? __lock_acquire+0x7c80/0x7c80
[  107.822274][ T5954]  ? show_regs_print_info+0x20/0x20
[  107.827509][ T5954]  ? load_image+0x3b0/0x3b0
[  107.832021][ T5954]  ? __virt_addr_valid+0x469/0x540
[  107.837150][ T5954]  print_report+0xac/0x220
[  107.841591][ T5954]  ? jfs_readdir+0x1173/0x3a90
[  107.846374][ T5954]  kasan_report+0x117/0x150
[  107.850891][ T5954]  ? jfs_readdir+0x1173/0x3a90
[  107.855681][ T5954]  jfs_readdir+0x1173/0x3a90
[  107.860296][ T5954]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  107.866301][ T5954]  ? dtInitRoot+0x670/0x670
[  107.870830][ T5954]  ? __up_read+0x280/0x670
[  107.875270][ T5954]  ? down_write+0x162/0x1f0
[  107.879812][ T5954]  ? down_read_killable+0x340/0x340
[  107.885019][ T5954]  ? end_current_label_crit_section+0x149/0x170
[  107.891275][ T5954]  ? dtInitRoot+0x670/0x670
[  107.895795][ T5954]  wrap_directory_iterator+0x92/0xd0
[  107.901096][ T5954]  iterate_dir+0x1c2/0x580
[  107.905538][ T5954]  __se_sys_getdents64+0xe9/0x260
[  107.910605][ T5954]  ? __x64_sys_getdents64+0x80/0x80
[  107.915838][ T5954]  ? filldir+0x680/0x680
[  107.920100][ T5954]  ? lockdep_hardirqs_on+0x98/0x150
[  107.925326][ T5954]  do_syscall_64+0x55/0xb0
[  107.929775][ T5954]  ? clear_bhb_loop+0x40/0x90
[  107.934474][ T5954]  ? clear_bhb_loop+0x40/0x90
[  107.939182][ T5954]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  107.945149][ T5954] RIP: 0033:0x7f656478f749
[  107.949584][ T5954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  107.969286][ T5954] RSP: 002b:00007fffd4861148 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  107.977725][ T5954] RAX: ffffffffffffffda RBX: 00007f65649e5fa0 RCX: 00007f656478f749
[  107.985724][ T5954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  107.993725][ T5954] RBP: 00007f6564813f91 R08: 0000000000000000 R09: 0000000000000000
[  108.001709][ T5954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.009711][ T5954] R13: 00007f65649e5fa0 R14: 00007f65649e5fa0 R15: 0000000000000003
[  108.017703][ T5954]  </TASK>
[  108.020725][ T5954] 
[  108.023071][ T5954] Allocated by task 5954:
[  108.027416][ T5954]  kasan_set_track+0x4e/0x70
[  108.032017][ T5954]  __kasan_slab_alloc+0x6c/0x80
[  108.036903][ T5954]  slab_post_alloc_hook+0x6e/0x4d0
[  108.042031][ T5954]  kmem_cache_alloc+0x11e/0x2e0
[  108.046892][ T5954]  mempool_alloc+0x1a1/0x4f0
[  108.051485][ T5954]  __get_metapage+0x54c/0xfa0
[  108.056163][ T5954]  dtSplitRoot+0x203/0x16b0
[  108.060682][ T5954]  dtInsert+0xeec/0x5f40
[  108.064954][ T5954]  jfs_create+0x6a1/0xa40
[  108.069365][ T5954]  path_openat+0x1277/0x3190
[  108.073978][ T5954]  do_filp_open+0x1c5/0x3d0
[  108.078497][ T5954]  do_sys_openat2+0x12c/0x1c0
[  108.083180][ T5954]  __x64_sys_openat+0x139/0x160
[  108.088035][ T5954]  do_syscall_64+0x55/0xb0
[  108.092464][ T5954]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.098394][ T5954] 
[  108.100732][ T5954] Freed by task 5954:
[  108.104720][ T5954]  kasan_set_track+0x4e/0x70
[  108.109335][ T5954]  kasan_save_free_info+0x2e/0x50
[  108.114369][ T5954]  ____kasan_slab_free+0x126/0x1e0
[  108.119487][ T5954]  slab_free_freelist_hook+0x130/0x1b0
[  108.124957][ T5954]  kmem_cache_free+0xf8/0x280
[  108.129649][ T5954]  release_metapage+0x6ed/0x870
[  108.134506][ T5954]  jfs_readdir+0xeb2/0x3a90
[  108.139018][ T5954]  wrap_directory_iterator+0x92/0xd0
[  108.144321][ T5954]  iterate_dir+0x1c2/0x580
[  108.148768][ T5954]  __se_sys_getdents64+0xe9/0x260
[  108.153831][ T5954]  do_syscall_64+0x55/0xb0
[  108.158283][ T5954]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.164196][ T5954] 
[  108.166534][ T5954] The buggy address belongs to the object at ffff8880798a86c8
[  108.166534][ T5954]  which belongs to the cache jfs_mp of size 184
[  108.180244][ T5954] The buggy address is located 48 bytes inside of
[  108.180244][ T5954]  freed 184-byte region [ffff8880798a86c8, ffff8880798a8780)
[  108.193968][ T5954] 
[  108.196300][ T5954] The buggy address belongs to the physical page:
[  108.202721][ T5954] page:ffffea0001e62a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x798a8
[  108.212880][ T5954] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[  108.220443][ T5954] page_type: 0xffffffff()
[  108.224794][ T5954] raw: 00fff00000000800 ffff888142e91500 dead000000000122 0000000000000000
[  108.233436][ T5954] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  108.242065][ T5954] page dumped because: kasan: bad access detected
[  108.248577][ T5954] page_owner tracks the page as allocated
[  108.254342][ T5954] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192800(GFP_NOWAIT|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5954, tgid 5954 (syz.0.17), ts 107719545844, free_ts 107701247059
[  108.275393][ T5954]  post_alloc_hook+0x1cd/0x210
[  108.280210][ T5954]  get_page_from_freelist+0x195c/0x19f0
[  108.285790][ T5954]  __alloc_pages+0x1e3/0x460
[  108.290423][ T5954]  alloc_slab_page+0x5d/0x170
[  108.295130][ T5954]  new_slab+0x87/0x2e0
[  108.299261][ T5954]  ___slab_alloc+0xc6d/0x1300
[  108.303974][ T5954]  kmem_cache_alloc+0x1b7/0x2e0
[  108.308868][ T5954]  mempool_alloc+0x1a1/0x4f0
[  108.313512][ T5954]  __get_metapage+0x54c/0xfa0
[  108.318223][ T5954]  diReadSpecial+0x25b/0x710
[  108.322845][ T5954]  jfs_mount+0x73/0x860
[  108.327023][ T5954]  jfs_fill_super+0x4e2/0xac0
[  108.331741][ T5954]  mount_bdev+0x22b/0x2d0
[  108.336090][ T5954]  legacy_get_tree+0xea/0x180
[  108.340785][ T5954]  vfs_get_tree+0x8c/0x280
[  108.345226][ T5954]  do_new_mount+0x24b/0xa40
[  108.349850][ T5954] page last free stack trace:
[  108.354538][ T5954]  free_unref_page_prepare+0x7ce/0x8e0
[  108.360025][ T5954]  free_unref_page+0x32/0x2e0
[  108.364733][ T5954]  __unfreeze_partials+0x1cf/0x210
[  108.369884][ T5954]  put_cpu_partial+0x17c/0x250
[  108.374681][ T5954]  __slab_free+0x31d/0x410
[  108.379148][ T5954]  qlist_free_all+0x75/0xe0
[  108.383695][ T5954]  kasan_quarantine_reduce+0x143/0x160
[  108.389210][ T5954]  __kasan_slab_alloc+0x22/0x80
[  108.394109][ T5954]  slab_post_alloc_hook+0x6e/0x4d0
[  108.399256][ T5954]  __kmem_cache_alloc_node+0x13e/0x260
[  108.404748][ T5954]  __kmalloc+0xa4/0x240
[  108.408931][ T5954]  tomoyo_realpath_from_path+0xe3/0x5d0
[  108.414514][ T5954]  tomoyo_path_number_perm+0x1ea/0x590
[  108.419990][ T5954]  security_file_ioctl+0x70/0xa0
[  108.425161][ T5954]  __se_sys_ioctl+0x48/0x170
[  108.429765][ T5954]  do_syscall_64+0x55/0xb0
[  108.434201][ T5954] 
[  108.436535][ T5954] Memory state around the buggy address:
[  108.442171][ T5954]  ffff8880798a8580: 00 00 fc fc fc fc fc fc fc fc 00 00 00 00 00 00
[  108.450245][ T5954]  ffff8880798a8600: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  108.458407][ T5954] >ffff8880798a8680: 00 fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb
[  108.466485][ T5954]                                                                 ^
[  108.474493][ T5954]  ffff8880798a8700: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  108.482597][ T5954]  ffff8880798a8780: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[  108.490756][ T5954] ==================================================================
[  108.534540][ T5954] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  108.541894][ T5954] CPU: 0 PID: 5954 Comm: syz.0.17 Not tainted syzkaller #0
[  108.549129][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  108.559211][ T5954] Call Trace:
[  108.562502][ T5954]  <TASK>
[  108.565445][ T5954]  dump_stack_lvl+0x16c/0x230
[  108.570234][ T5954]  ? show_regs_print_info+0x20/0x20
[  108.575478][ T5954]  ? load_image+0x3b0/0x3b0
[  108.580004][ T5954]  panic+0x2c0/0x710
[  108.583919][ T5954]  ? bpf_jit_dump+0xd0/0xd0
[  108.588523][ T5954]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  108.594561][ T5954]  ? _raw_spin_unlock+0x40/0x40
[  108.599423][ T5954]  ? print_memory_metadata+0x314/0x400
[  108.604912][ T5954]  ? jfs_readdir+0x1173/0x3a90
[  108.609708][ T5954]  check_panic_on_warn+0x84/0xa0
[  108.614749][ T5954]  ? jfs_readdir+0x1173/0x3a90
[  108.619532][ T5954]  end_report+0x6f/0x140
[  108.623819][ T5954]  kasan_report+0x128/0x150
[  108.628382][ T5954]  ? jfs_readdir+0x1173/0x3a90
[  108.633181][ T5954]  jfs_readdir+0x1173/0x3a90
[  108.637803][ T5954]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  108.643850][ T5954]  ? dtInitRoot+0x670/0x670
[  108.648381][ T5954]  ? __up_read+0x280/0x670
[  108.652815][ T5954]  ? down_write+0x162/0x1f0
[  108.657330][ T5954]  ? down_read_killable+0x340/0x340
[  108.662544][ T5954]  ? end_current_label_crit_section+0x149/0x170
[  108.668799][ T5954]  ? dtInitRoot+0x670/0x670
[  108.673321][ T5954]  wrap_directory_iterator+0x92/0xd0
[  108.678632][ T5954]  iterate_dir+0x1c2/0x580
[  108.683067][ T5954]  __se_sys_getdents64+0xe9/0x260
[  108.688119][ T5954]  ? __x64_sys_getdents64+0x80/0x80
[  108.693349][ T5954]  ? filldir+0x680/0x680
[  108.697648][ T5954]  ? lockdep_hardirqs_on+0x98/0x150
[  108.702865][ T5954]  do_syscall_64+0x55/0xb0
[  108.707297][ T5954]  ? clear_bhb_loop+0x40/0x90
[  108.711988][ T5954]  ? clear_bhb_loop+0x40/0x90
[  108.716689][ T5954]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  108.722597][ T5954] RIP: 0033:0x7f656478f749
[  108.727033][ T5954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.746660][ T5954] RSP: 002b:00007fffd4861148 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  108.755092][ T5954] RAX: ffffffffffffffda RBX: 00007f65649e5fa0 RCX: 00007f656478f749
[  108.763089][ T5954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  108.771509][ T5954] RBP: 00007f6564813f91 R08: 0000000000000000 R09: 0000000000000000
[  108.779621][ T5954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  108.787714][ T5954] R13: 00007f65649e5fa0 R14: 00007f65649e5fa0 R15: 0000000000000003
[  108.795745][ T5954]  </TASK>
[  108.799031][ T5954] Kernel Offset: disabled
[  108.803373][ T5954] Rebooting in 86400 seconds..