Warning: Permanently added '10.128.0.255' (ED25519) to the list of known hosts.
2026/05/19 03:14:06 parsed 1 programs
[ 90.470200][ T4646] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 91.866778][ T448] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 91.878758][ T448] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 91.897630][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 91.907119][ T448] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 91.915403][ T448] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 91.923599][ T448] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 92.205669][ T4675] chnl_net:caif_netlink_parms(): no params data found
[ 92.241529][ T4675] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.249248][ T4675] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.257404][ T4675] device bridge_slave_0 entered promiscuous mode
[ 92.267270][ T4675] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.274544][ T4675] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.282982][ T4675] device bridge_slave_1 entered promiscuous mode
[ 92.305433][ T4675] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.316570][ T4675] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.338055][ T4675] team0: Port device team_slave_0 added
[ 92.348814][ T4675] team0: Port device team_slave_1 added
[ 92.365900][ T4675] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.373396][ T4675] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.399718][ T4675] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.411838][ T4675] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.419303][ T4675] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.445420][ T4675] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.481590][ T4675] device hsr_slave_0 entered promiscuous mode
[ 92.489838][ T4675] device hsr_slave_1 entered promiscuous mode
[ 93.043104][ T4675] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 93.065372][ T4675] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 93.081027][ T4675] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 93.090813][ T4675] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 93.163301][ T4675] 8021q: adding VLAN 0 to HW filter on device bond0
[ 93.184083][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 93.194332][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 93.205261][ T4675] 8021q: adding VLAN 0 to HW filter on device team0
[ 93.218254][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 93.237905][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 93.257257][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.264480][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 93.308460][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 93.330917][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 93.340512][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 93.358055][ T1226] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.365857][ T1226] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 93.399883][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 93.418521][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 93.439322][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 93.461042][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 93.480124][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 93.502159][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 93.513047][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 93.522908][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 93.534581][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 93.552609][ T4675] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 93.574377][ T4675] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 93.583786][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 93.594138][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 93.774814][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 93.783407][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 93.796951][ T4675] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 93.819427][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 93.831240][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 93.855241][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 93.864701][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 93.878861][ T4675] device veth0_vlan entered promiscuous mode
[ 93.887905][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 93.898361][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 93.916968][ T4675] device veth1_vlan entered promiscuous mode
[ 93.925695][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 94.018634][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 94.039191][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 94.060741][ T4675] device veth0_macvtap entered promiscuous mode
[ 94.072945][ T4675] device veth1_macvtap entered promiscuous mode
[ 94.092034][ T4675] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 94.101802][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 94.111349][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 94.119646][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 94.128759][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 94.141447][ T4675] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 94.155948][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 94.164993][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 94.177269][ T4675] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.188741][ T4675] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.198202][ T4675] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.207000][ T4675] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.572299][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/19 03:14:15 executed programs: 0
[ 96.966720][ T4866] chnl_net:caif_netlink_parms(): no params data found
[ 97.026562][ T4866] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.035157][ T4866] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.044735][ T4866] device bridge_slave_0 entered promiscuous mode
[ 97.056507][ T4866] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.065041][ T4866] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.074555][ T4866] device bridge_slave_1 entered promiscuous mode
[ 97.104273][ T4866] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 97.117052][ T4866] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 97.147151][ T4866] team0: Port device team_slave_0 added
[ 97.158361][ T4866] team0: Port device team_slave_1 added
[ 97.181959][ T4866] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 97.191585][ T4866] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 97.221361][ T4866] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 97.234912][ T4866] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 97.244278][ T4866] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 97.273328][ T4866] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 97.315607][ T4866] device hsr_slave_0 entered promiscuous mode
[ 97.322652][ T4866] device hsr_slave_1 entered promiscuous mode
[ 97.331572][ T4866] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 97.339395][ T4866] Cannot create hsr debugfs directory
[ 98.783343][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.834169][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.888036][ T1326] Bluetooth: hci0: command 0x0409 tx timeout
[ 98.902965][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 99.763506][ T4866] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 99.773157][ T4866] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 99.783442][ T4866] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 99.807938][ T4866] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 99.866099][ T4866] 8021q: adding VLAN 0 to HW filter on device bond0
[ 99.881297][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 99.889999][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 99.898938][ T4866] 8021q: adding VLAN 0 to HW filter on device team0
[ 99.912385][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 99.921595][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 99.930344][ T1264] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.937392][ T1264] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.945409][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 99.970386][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 99.979672][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 99.988505][ T1264] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.995871][ T1264] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 100.025501][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 100.037375][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 100.048298][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 100.058468][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 100.069671][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 100.097841][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 100.106531][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 100.117749][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 100.126405][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 100.153912][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 100.163361][ T1226] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 100.173390][ T4866] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 100.243181][ T9] device hsr_slave_0 left promiscuous mode
[ 100.249868][ T9] device hsr_slave_1 left promiscuous mode
[ 100.256338][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 100.264183][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 100.272218][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 100.281036][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 100.289426][ T9] device bridge_slave_1 left promiscuous mode
[ 100.295652][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.304308][ T9] device bridge_slave_0 left promiscuous mode
[ 100.310995][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.321805][ T9] device veth1_macvtap left promiscuous mode
[ 100.328052][ T9] device veth0_macvtap left promiscuous mode
[ 100.334103][ T9] device veth1_vlan left promiscuous mode
[ 100.340126][ T9] device veth0_vlan left promiscuous mode
[ 100.468496][ T9] team0 (unregistering): Port device team_slave_1 removed
[ 100.479875][ T9] team0 (unregistering): Port device team_slave_0 removed
[ 100.492511][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 100.505781][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 100.554084][ T9] bond0 (unregistering): Released all slaves
[ 100.593977][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 100.602092][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 100.614644][ T4866] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 100.631477][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 100.640425][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 100.662798][ T4866] device veth0_vlan entered promiscuous mode
[ 100.676373][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 100.684775][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 100.694516][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 100.703361][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 100.713738][ T4866] device veth1_vlan entered promiscuous mode
[ 100.742679][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 100.751182][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 100.759461][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 100.768094][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 100.777955][ T4866] device veth0_macvtap entered promiscuous mode
[ 100.786803][ T4866] device veth1_macvtap entered promiscuous mode
[ 100.804949][ T4866] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 100.815940][ T4866] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 100.825867][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 100.834882][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 100.844025][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 100.853177][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 100.862109][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 100.871310][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 100.881896][ T4866] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.891516][ T4866] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.900437][ T4866] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.910094][ T4866] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.956025][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.965803][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.973912][ T4306] Bluetooth: hci0: command 0x041b tx timeout
[ 100.984110][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 101.002584][ T1226] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 101.010666][ T1226] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 101.020674][ T1264] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 101.116619][ T5085] loop0: detected capacity change from 0 to 4096
[ 101.262076][ T5085] ntfs: (device loop0): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 101.314447][ T5085] ntfs: volume version 3.1.
[ 101.338693][ T5085] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup.
[ 101.357716][ T5085] ntfs: (device loop0): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[ 101.371718][ T5085] ntfs: (device loop0): load_system_files(): Failed to load $UsnJrnl. Mounting read-only. Run chkdsk.
[ 101.419626][ T4866] ntfs: (device loop0): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set maccenteuro. You might want to try to use the mount option nls=utf8.
[ 101.448220][ T4866] ntfs: (device loop0): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[ 101.470265][ T4866] ==================================================================
[ 101.478764][ T4866] BUG: KASAN: slab-out-of-bounds in ntfs_readdir+0xe19/0x35e0
[ 101.486244][ T4866] Read of size 1 at addr ffff8880247d8999 by task syz-executor/4866
[ 101.494408][ T4866]
[ 101.496905][ T4866] CPU: 1 PID: 4866 Comm: syz-executor Not tainted syzkaller #0
[ 101.504470][ T4866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 101.514740][ T4866] Call Trace:
[ 101.518117][ T4866]
[ 101.521053][ T4866] dump_stack_lvl+0x188/0x250
[ 101.525795][ T4866] ? show_regs_print_info+0x20/0x20
[ 101.531398][ T4866] ? load_image+0x400/0x400
[ 101.536044][ T4866] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 101.541529][ T4866] print_address_description+0x60/0x2d0
[ 101.547087][ T4866] ? ntfs_readdir+0xe19/0x35e0
[ 101.552035][ T4866] kasan_report+0xdf/0x130
[ 101.556469][ T4866] ? ntfs_readdir+0xe19/0x35e0
[ 101.561237][ T4866] ntfs_readdir+0xe19/0x35e0
[ 101.566103][ T4866] ? rwsem_write_trylock+0x135/0x1c0
[ 101.571399][ T4866] ? clear_nonspinnable+0x60/0x60
[ 101.576421][ T4866] ? ntfs_unmap_page+0x200/0x200
[ 101.581380][ T4866] iterate_dir+0x218/0x560
[ 101.585806][ T4866] __se_sys_getdents64+0xf2/0x270
[ 101.590936][ T4866] ? __x64_sys_getdents64+0x80/0x80
[ 101.596132][ T4866] ? filldir+0x720/0x720
[ 101.600457][ T4866] ? vtime_user_exit+0x2c8/0x3e0
[ 101.605483][ T4866] ? lockdep_hardirqs_on+0x94/0x140
[ 101.610680][ T4866] do_syscall_64+0x4c/0xa0
[ 101.615091][ T4866] ? clear_bhb_loop+0x30/0x80
[ 101.619762][ T4866] ? clear_bhb_loop+0x30/0x80
[ 101.624437][ T4866] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 101.630629][ T4866] RIP: 0033:0x7f8fca8f2a73
[ 101.635056][ T4866] Code: c7 c0 e8 ff ff ff 64 c7 00 16 00 00 00 31 c0 eb 9e e8 81 9b fd ff 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 e8 ff ff ff f7 d8
[ 101.654933][ T4866] RSP: 002b:00007ffcf00a7cf8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 101.663451][ T4866] RAX: ffffffffffffffda RBX: 00005555659eda80 RCX: 00007f8fca8f2a73
[ 101.671427][ T4866] RDX: 0000000000008000 RSI: 00005555659edab0 RDI: 0000000000000006
[ 101.679395][ T4866] RBP: 00005555659edab0 R08: 00007f8fcaacdca0 R09: 0000000000000001
[ 101.687363][ T4866] R10: 0000000000000000 R11: 0000000000000293 R12: 00005555659eda84
[ 101.695334][ T4866] R13: ffffffffffffffe8 R14: 0000000000000016 R15: 00007ffcf00ab090
[ 101.703418][ T4866]
[ 101.706519][ T4866]
[ 101.708922][ T4866] Allocated by task 4866:
[ 101.713237][ T4866] __kasan_kmalloc+0xb5/0xf0
[ 101.717828][ T4866] ntfs_readdir+0x765/0x35e0
[ 101.722635][ T4866] iterate_dir+0x218/0x560
[ 101.727063][ T4866] __se_sys_getdents64+0xf2/0x270
[ 101.732183][ T4866] do_syscall_64+0x4c/0xa0
[ 101.736616][ T4866] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 101.742524][ T4866]
[ 101.744848][ T4866] Last potentially related work creation:
[ 101.750549][ T4866] kasan_save_stack+0x35/0x60
[ 101.755226][ T4866] kasan_record_aux_stack+0xb8/0x100
[ 101.760510][ T4866] call_rcu+0x189/0x950
[ 101.764694][ T4866] ip6_route_info_create+0x9c5/0x1210
[ 101.770146][ T4866] ip6_route_add+0x24/0x130
[ 101.774643][ T4866] addrconf_prefix_route+0x249/0x320
[ 101.779935][ T4866] inet6_addr_add+0x4ff/0x9c0
[ 101.784706][ T4866] inet6_rtm_newaddr+0x64c/0x8f0
[ 101.789640][ T4866] rtnetlink_rcv_msg+0x844/0xf30
[ 101.795013][ T4866] netlink_rcv_skb+0x1f5/0x440
[ 101.800049][ T4866] netlink_unicast+0x774/0x920
[ 101.804822][ T4866] netlink_sendmsg+0x8ba/0xbe0
[ 101.809712][ T4866] __sys_sendto+0x46d/0x620
[ 101.814468][ T4866] __x64_sys_sendto+0xda/0xf0
[ 101.819150][ T4866] do_syscall_64+0x4c/0xa0
[ 101.823645][ T4866] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 101.829534][ T4866]
[ 101.831870][ T4866] The buggy address belongs to the object at ffff8880247d8800
[ 101.831870][ T4866] which belongs to the cache kmalloc-512 of size 512
[ 101.846007][ T4866] The buggy address is located 409 bytes inside of
[ 101.846007][ T4866] 512-byte region [ffff8880247d8800, ffff8880247d8a00)
[ 101.859476][ T4866] The buggy address belongs to the page:
[ 101.865379][ T4866] page:ffffea000091f600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x247d8
[ 101.875549][ T4866] head:ffffea000091f600 order:2 compound_mapcount:0 compound_pincount:0
[ 101.884151][ T4866] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.892412][ T4866] raw: 00fff00000010200 ffffea00016c0100 0000000200000002 ffff888016c41c80
[ 101.901535][ T4866] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 101.910117][ T4866] page dumped because: kasan: bad access detected
[ 101.916706][ T4866] page_owner tracks the page as allocated
[ 101.922973][ T4866] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, ts 8298918772, free_ts 0
[ 101.941543][ T4866] get_page_from_freelist+0x1bbd/0x1ca0
[ 101.947095][ T4866] __alloc_pages+0x1ee/0x480
[ 101.951668][ T4866] alloc_page_interleave+0x24/0x1e0
[ 101.957120][ T4866] new_slab+0xc0/0x4b0
[ 101.961214][ T4866] ___slab_alloc+0x80a/0xdd0
[ 101.965931][ T4866] kmem_cache_alloc_trace+0x1a5/0x2a0
[ 101.971303][ T4866] device_add+0xba/0xfb0
[ 101.975724][ T4866] usb_add_gadget+0x17f/0x720
[ 101.980592][ T4866] usb_add_gadget_udc_release+0x17d/0x1d0
[ 101.986310][ T4866] dummy_udc_probe+0x6a1/0x7a0
[ 101.991147][ T4866] platform_probe+0x137/0x1c0
[ 101.996031][ T4866] really_probe+0x284/0xc80
[ 102.000660][ T4866] __driver_probe_device+0x18c/0x330
[ 102.005932][ T4866] driver_probe_device+0x4f/0x420
[ 102.011570][ T4866] __device_attach_driver+0x2b0/0x500
[ 102.017211][ T4866] bus_for_each_drv+0x184/0x210
[ 102.022051][ T4866] page_owner free stack trace missing
[ 102.027400][ T4866]
[ 102.029712][ T4866] Memory state around the buggy address:
[ 102.035599][ T4866] ffff8880247d8880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 102.043761][ T4866] ffff8880247d8900: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[ 102.052006][ T4866] >ffff8880247d8980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 102.060306][ T4866] ^
[ 102.065151][ T4866] ffff8880247d8a00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 102.073858][ T4866] ffff8880247d8a80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 102.082255][ T4866] ==================================================================
[ 102.090475][ T4866] Disabling lock debugging due to kernel taint
[ 102.114888][ T4866] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 102.122634][ T4866] CPU: 1 PID: 4866 Comm: syz-executor Tainted: G B syzkaller #0
[ 102.131833][ T4866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 102.142484][ T4866] Call Trace:
[ 102.145765][ T4866]
[ 102.148686][ T4866] dump_stack_lvl+0x188/0x250
[ 102.153943][ T4866] ? show_regs_print_info+0x20/0x20
[ 102.159368][ T4866] ? load_image+0x400/0x400
[ 102.163871][ T4866] panic+0x2e5/0x810
[ 102.167957][ T4866] ? bpf_jit_dump+0xd0/0xd0
[ 102.172607][ T4866] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 102.178697][ T4866] ? _raw_spin_unlock+0x40/0x40
[ 102.184154][ T4866] ? ntfs_readdir+0xe19/0x35e0
[ 102.188921][ T4866] check_panic_on_warn+0x80/0xa0
[ 102.193941][ T4866] ? ntfs_readdir+0xe19/0x35e0
[ 102.198707][ T4866] end_report+0x6d/0xf0
[ 102.202867][ T4866] kasan_report+0x102/0x130
[ 102.207531][ T4866] ? ntfs_readdir+0xe19/0x35e0
[ 102.212284][ T4866] ntfs_readdir+0xe19/0x35e0
[ 102.216901][ T4866] ? rwsem_write_trylock+0x135/0x1c0
[ 102.222188][ T4866] ? clear_nonspinnable+0x60/0x60
[ 102.227745][ T4866] ? ntfs_unmap_page+0x200/0x200
[ 102.232779][ T4866] iterate_dir+0x218/0x560
[ 102.237185][ T4866] __se_sys_getdents64+0xf2/0x270
[ 102.242281][ T4866] ? __x64_sys_getdents64+0x80/0x80
[ 102.247462][ T4866] ? filldir+0x720/0x720
[ 102.251682][ T4866] ? vtime_user_exit+0x2c8/0x3e0
[ 102.256976][ T4866] ? lockdep_hardirqs_on+0x94/0x140
[ 102.262410][ T4866] do_syscall_64+0x4c/0xa0
[ 102.266819][ T4866] ? clear_bhb_loop+0x30/0x80
[ 102.271618][ T4866] ? clear_bhb_loop+0x30/0x80
[ 102.276292][ T4866] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 102.282170][ T4866] RIP: 0033:0x7f8fca8f2a73
[ 102.286661][ T4866] Code: c7 c0 e8 ff ff ff 64 c7 00 16 00 00 00 31 c0 eb 9e e8 81 9b fd ff 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 e8 ff ff ff f7 d8
[ 102.307375][ T4866] RSP: 002b:00007ffcf00a7cf8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 102.315769][ T4866] RAX: ffffffffffffffda RBX: 00005555659eda80 RCX: 00007f8fca8f2a73
[ 102.323807][ T4866] RDX: 0000000000008000 RSI: 00005555659edab0 RDI: 0000000000000006
[ 102.332105][ T4866] RBP: 00005555659edab0 R08: 00007f8fcaacdca0 R09: 0000000000000001
[ 102.340105][ T4866] R10: 0000000000000000 R11: 0000000000000293 R12: 00005555659eda84
[ 102.348148][ T4866] R13: ffffffffffffffe8 R14: 0000000000000016 R15: 00007ffcf00ab090
[ 102.356121][ T4866]
[ 102.359438][ T4866] Kernel Offset: disabled
[ 102.363767][ T4866] Rebooting in 86400 seconds..