Warning: Permanently added '10.128.1.204' (ED25519) to the list of known hosts.
[ 132.921750][ T1334] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.921837][ T1334] ieee802154 phy1 wpan1: encryption failed: -22
2026/05/08 19:20:07 parsed 1 programs
[ 138.840301][ T6116] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 145.066271][ T6156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 145.066486][ T6156] bridge0: port 1(bridge_slave_0) entered disabled state
[ 145.066592][ T6156] bridge_slave_0: entered allmulticast mode
[ 145.067928][ T6156] bridge_slave_0: entered promiscuous mode
[ 145.070057][ T6156] bridge0: port 2(bridge_slave_1) entered blocking state
[ 145.070171][ T6156] bridge0: port 2(bridge_slave_1) entered disabled state
[ 145.070259][ T6156] bridge_slave_1: entered allmulticast mode
[ 145.071644][ T6156] bridge_slave_1: entered promiscuous mode
[ 145.244344][ T6156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 145.248824][ T6156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 145.407536][ T6156] team0: Port device team_slave_0 added
[ 145.409484][ T6156] team0: Port device team_slave_1 added
[ 145.526369][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 145.526385][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 145.526400][ T6156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 145.527764][ T6156] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 145.527776][ T6156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 145.527794][ T6156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 145.820256][ T6156] hsr_slave_0: entered promiscuous mode
[ 145.820976][ T6156] hsr_slave_1: entered promiscuous mode
[ 147.596594][ T6156] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 147.631928][ T6156] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 147.633324][ T6156] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 147.668433][ T6156] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 147.684514][ T6156] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 147.709212][ T6156] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 147.710642][ T6156] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 147.762148][ T6156] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 147.895151][ T6156] 8021q: adding VLAN 0 to HW filter on device bond0
[ 147.921502][ T6156] 8021q: adding VLAN 0 to HW filter on device team0
[ 147.933650][ T1399] bridge0: port 1(bridge_slave_0) entered blocking state
[ 147.933848][ T1399] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 147.990285][ T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 147.990413][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 148.702490][ T6156] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 148.789205][ T6156] veth0_vlan: entered promiscuous mode
[ 148.811973][ T6156] veth1_vlan: entered promiscuous mode
[ 148.870800][ T6156] veth0_macvtap: entered promiscuous mode
[ 148.878111][ T6156] veth1_macvtap: entered promiscuous mode
[ 148.901418][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 148.959935][ T6156] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 148.975890][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.976353][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.976390][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.976420][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 149.727785][ T1904] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.393236][ T3311] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 150.393256][ T3311] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 150.655389][ T1904] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.813330][ T1399] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 150.813349][ T1399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 151.112201][ T5780] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 151.125956][ T5780] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 151.158524][ T5780] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 151.160441][ T5780] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 151.162684][ T5780] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 151.658885][ T1904] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 152.058177][ T1904] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 153.005028][ T1904] bridge_slave_1: left allmulticast mode
[ 153.005061][ T1904] bridge_slave_1: left promiscuous mode
[ 153.005304][ T1904] bridge0: port 2(bridge_slave_1) entered disabled state
[ 153.088345][ T1904] bridge_slave_0: left allmulticast mode
[ 153.088375][ T1904] bridge_slave_0: left promiscuous mode
[ 153.091790][ T1904] bridge0: port 1(bridge_slave_0) entered disabled state
[ 153.695234][ T1904] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 153.775432][ T1904] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 153.796581][ T1904] bond0 (unregistering): Released all slaves
[ 154.095933][ T1904] hsr_slave_0: left promiscuous mode
[ 154.135888][ T1904] hsr_slave_1: left promiscuous mode
[ 154.136979][ T1904] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 154.137003][ T1904] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 154.196097][ T1904] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 154.196123][ T1904] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 154.291031][ T1904] veth1_macvtap: left promiscuous mode
[ 154.291757][ T1904] veth0_macvtap: left promiscuous mode
[ 154.291994][ T1904] veth1_vlan: left promiscuous mode
[ 154.292151][ T1904] veth0_vlan: left promiscuous mode
[ 154.855268][ T1904] team0 (unregistering): Port device team_slave_1 removed
[ 154.876743][ T1904] team0 (unregistering): Port device team_slave_0 removed
[ 155.257664][ T5258] 8021q: adding VLAN 0 to HW filter on device eth1
[ 155.933097][ T5258] 8021q: adding VLAN 0 to HW filter on device eth2
2026/05/08 19:20:29 executed programs: 0
[ 156.593198][ T5258] 8021q: adding VLAN 0 to HW filter on device eth3
[ 156.606338][ T60] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 156.612284][ T60] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 156.613077][ T60] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 156.625675][ T60] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 156.627659][ T60] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 157.779518][ T5258] 8021q: adding VLAN 0 to HW filter on device eth4
[ 158.546665][ T6441] bridge0: port 1(bridge_slave_0) entered blocking state
[ 158.546852][ T6441] bridge0: port 1(bridge_slave_0) entered disabled state
[ 158.547029][ T6441] bridge_slave_0: entered allmulticast mode
[ 158.553419][ T6441] bridge_slave_0: entered promiscuous mode
[ 158.625969][ T6441] bridge0: port 2(bridge_slave_1) entered blocking state
[ 158.626064][ T6441] bridge0: port 2(bridge_slave_1) entered disabled state
[ 158.626230][ T6441] bridge_slave_1: entered allmulticast mode
[ 158.644957][ T6441] bridge_slave_1: entered promiscuous mode
[ 158.676575][ T5780] Bluetooth: hci0: command tx timeout
[ 159.148790][ T6441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 159.247478][ T6441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 159.388798][ T6441] team0: Port device team_slave_0 added
[ 159.391867][ T6441] team0: Port device team_slave_1 added
[ 159.526629][ T6441] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 159.526645][ T6441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 159.526661][ T6441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 159.527865][ T6441] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 159.527876][ T6441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 159.527897][ T6441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 159.694091][ T6441] hsr_slave_0: entered promiscuous mode
[ 159.695448][ T6441] hsr_slave_1: entered promiscuous mode
[ 160.755177][ T5780] Bluetooth: hci0: command tx timeout
[ 161.757082][ T6441] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 161.799853][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 161.801256][ T6441] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 161.839088][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 161.840272][ T6441] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 161.893974][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 161.902186][ T6441] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 161.953199][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 162.096919][ T6441] 8021q: adding VLAN 0 to HW filter on device bond0
[ 162.119025][ T6441] 8021q: adding VLAN 0 to HW filter on device team0
[ 162.137686][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 162.137887][ T3311] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 162.166689][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state
[ 162.166807][ T3311] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 162.835025][ T5780] Bluetooth: hci0: command tx timeout
[ 162.864914][ T6441] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 162.968045][ T6441] veth0_vlan: entered promiscuous mode
[ 162.982705][ T6441] veth1_vlan: entered promiscuous mode
[ 163.048652][ T6441] veth0_macvtap: entered promiscuous mode
[ 163.057340][ T6441] veth1_macvtap: entered promiscuous mode
[ 163.081554][ T6441] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 163.095202][ T6441] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 163.118367][ T68] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 163.118616][ T68] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 163.118651][ T68] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 163.118684][ T68] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 163.566258][ T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 163.566277][ T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 163.633344][ T1399] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 163.633364][ T1399] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 19:20:36 executed programs: 2
[ 164.000399][ T6601] loop0: detected capacity change from 0 to 32768
[ 164.208197][ T6601] UFO tlock:0xffffc900033aa1f8
[ 164.914732][ T5780] Bluetooth: hci0: command tx timeout
[ 164.970142][ T6603] loop0: detected capacity change from 0 to 32768
[ 165.069738][ T6603] UFO tlock:0xffffc900033aa090
[ 165.470307][ T6605] loop0: detected capacity change from 0 to 32768
[ 165.528260][ T6605] UFO tlock:0xffffc900033aa1f8
[ 165.889725][ T6607] loop0: detected capacity change from 0 to 32768
[ 165.934460][ T6607] UFO tlock:0xffffc900033aa090
[ 166.323774][ T6609] loop0: detected capacity change from 0 to 32768
[ 166.388126][ T6609] UFO tlock:0xffffc900033aa1f8
[ 166.992727][ T6611] loop0: detected capacity change from 0 to 32768
[ 167.065427][ T6611] UFO tlock:0xffffc900033aa090
[ 167.660837][ T6613] loop0: detected capacity change from 0 to 32768
[ 167.745953][ T6613] UFO tlock:0xffffc900033aa1f8
[ 168.600607][ T6615] loop0: detected capacity change from 0 to 32768
[ 168.657217][ T6615] UFO tlock:0xffffc900033aa090
[ 169.039869][ T6617] loop0: detected capacity change from 0 to 32768
[ 169.091221][ T6617] UFO tlock:0xffffc900033aa1f8
2026/05/08 19:20:42 executed programs: 11
[ 169.680780][ T6619] loop0: detected capacity change from 0 to 32768
[ 169.751041][ T6619] UFO tlock:0xffffc900033aa090
[ 170.132942][ T6621] loop0: detected capacity change from 0 to 32768
[ 170.178807][ T6621] UFO tlock:0xffffc900033aa1f8
[ 170.531067][ T6623] loop0: detected capacity change from 0 to 32768
[ 170.577103][ T6623] UFO tlock:0xffffc900033aa090
[ 171.193776][ T6625] loop0: detected capacity change from 0 to 32768
[ 171.246076][ T6625] UFO tlock:0xffffc900033aa1f8
[ 171.614358][ T6627] loop0: detected capacity change from 0 to 32768
[ 171.659904][ T6627] UFO tlock:0xffffc900033aa090
[ 172.002080][ T6629] loop0: detected capacity change from 0 to 32768
[ 172.040612][ T6629] UFO tlock:0xffffc900033aa1f8
[ 172.421868][ T6631] loop0: detected capacity change from 0 to 32768
[ 172.467454][ T6631] UFO tlock:0xffffc900033aa090
[ 172.788352][ T6633] loop0: detected capacity change from 0 to 32768
[ 172.822992][ T6633] UFO tlock:0xffffc900033aa1f8
[ 173.413292][ T6635] loop0: detected capacity change from 0 to 32768
[ 173.468189][ T6635] UFO tlock:0xffffc900033aa090
[ 173.831595][ T6637] UFO tlock:0xffffc900033aa1f8
[ 174.173116][ T6639] set_capacity_and_notify: 1 callbacks suppressed
[ 174.173129][ T6639] loop0: detected capacity change from 0 to 32768
[ 174.206721][ T6639] UFO tlock:0xffffc900033aa090
2026/05/08 19:20:47 executed programs: 22
[ 175.048418][ T6641] loop0: detected capacity change from 0 to 32768
[ 175.077044][ T6641] UFO tlock:0xffffc900033aa1f8
[ 175.408746][ T6643] loop0: detected capacity change from 0 to 32768
[ 175.460674][ T6643] UFO tlock:0xffffc900033aa090
[ 176.025854][ T6645] loop0: detected capacity change from 0 to 32768
[ 176.055666][ T6645] UFO tlock:0xffffc900033aa1f8
[ 176.413252][ T6647] loop0: detected capacity change from 0 to 32768
[ 176.449981][ T6647] UFO tlock:0xffffc900033aa090
[ 176.782051][ T6649] loop0: detected capacity change from 0 to 32768
[ 176.818178][ T6649] UFO tlock:0xffffc900033aa1f8
[ 177.420901][ T6651] loop0: detected capacity change from 0 to 32768
[ 177.468003][ T6651] UFO tlock:0xffffc900033aa090
[ 177.799405][ T6653] loop0: detected capacity change from 0 to 32768
[ 177.836542][ T6653] UFO tlock:0xffffc900033aa1f8
[ 178.432114][ T6655] loop0: detected capacity change from 0 to 32768
[ 178.461454][ T6655] UFO tlock:0xffffc900033aa090
[ 178.815792][ T6657] loop0: detected capacity change from 0 to 32768
[ 178.873558][ T6657] UFO tlock:0xffffc900033aa1f8
[ 179.208649][ T6660] loop0: detected capacity change from 0 to 32768
[ 179.241706][ T6660] UFO tlock:0xffffc900033aa090
2026/05/08 19:20:52 executed programs: 32
[ 179.602734][ T6662] loop0: detected capacity change from 0 to 32768
[ 179.636198][ T6662] UFO tlock:0xffffc900033aa1f8
[ 179.980088][ T6664] loop0: detected capacity change from 0 to 32768
[ 180.021792][ T6664] UFO tlock:0xffffc900033aa090
[ 180.366091][ T6667] loop0: detected capacity change from 0 to 32768
[ 180.415963][ T6667] UFO tlock:0xffffc900033aa1f8
[ 180.757793][ T6669] loop0: detected capacity change from 0 to 32768
[ 180.794199][ T6669] UFO tlock:0xffffc900033aa090
[ 181.403805][ T6673] loop0: detected capacity change from 0 to 32768
[ 181.449006][ T6673] UFO tlock:0xffffc900033aa1f8
[ 182.031397][ T6677] loop0: detected capacity change from 0 to 32768
[ 182.056272][ T6677] UFO tlock:0xffffc900033aa090
[ 182.379000][ T6679] loop0: detected capacity change from 0 to 32768
[ 182.417172][ T6679] UFO tlock:0xffffc900033aa1f8
[ 182.777301][ T6681] loop0: detected capacity change from 0 to 32768
[ 182.819485][ T6681] UFO tlock:0xffffc900033aa090
[ 183.401955][ T6683] loop0: detected capacity change from 0 to 32768
[ 183.459708][ T6683] UFO tlock:0xffffc900033aa1f8
[ 183.514021][ T68] =========================================[ 183.514021][ T68] ==================================================================
[ 183.514036][ T68] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.514069][ T68] Read of size 4096 at addr ffff888035960000 by task kworker/u8:5/68
[ 183.514084][ T68]
[ 183.514107][ T68] CPU: 0 UID: 0 PID: 68 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 183.514125][ T68] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 183.514136][ T68] Workqueue: loop0 loop_workfn
[ 183.514170][ T68] Call Trace:
[ 183.514177][ T68]
[ 183.514184][ T68] dump_stack_lvl+0xe8/0x150
[ 183.514205][ T68] print_address_description+0x55/0x1e0
[ 183.514224][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.514241][ T68] print_report+0x58/0x70
[ 183.514257][ T68] kasan_report+0x117/0x150
[ 183.514276][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.514296][ T68] kasan_check_range+0x264/0x2c0
[ 183.514315][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.514332][ T68] __asan_memcpy+0x29/0x70
[ 183.514356][ T68] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.514382][ T68] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 183.514401][ T68] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 183.514425][ T68] ? shmem_write_begin+0x1ce/0x320
[ 183.514445][ T68] generic_perform_write+0x5b1/0x8b0
[ 183.514471][ T68] ? __pfx_generic_perform_write+0x10/0x10
[ 183.514492][ T68] ? file_update_time_flags+0x3b9/0x4b0
[ 183.514512][ T68] shmem_file_write_iter+0xfb/0x120
[ 183.514537][ T68] lo_rw_aio+0xc80/0xf00
[ 183.514560][ T68] ? __pfx_lo_rw_aio+0x10/0x10
[ 183.514582][ T68] ? kthread_associate_blkcg+0x490/0x600
[ 183.514610][ T68] ? rt_spin_unlock+0x160/0x200
[ 183.514627][ T68] loop_process_work+0x637/0x11b0
[ 183.514654][ T68] ? __pfx_loop_process_work+0x10/0x10
[ 183.514674][ T68] ? __lock_acquire+0x6b5/0x2cf0
[ 183.514693][ T68] ? look_up_lock_class+0x57/0x110
[ 183.514713][ T68] ? register_lock_class+0x31/0x2e0
[ 183.514735][ T68] ? __lock_acquire+0x6b5/0x2cf0
[ 183.514757][ T68] ? trace_hrtimer_start+0x82/0x200
[ 183.514784][ T68] ? do_raw_spin_lock+0x12b/0x2f0
[ 183.514800][ T68] ? lock_acquire+0x106/0x350
[ 183.514821][ T68] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 183.514839][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.514856][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.514876][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.514892][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.514909][ T68] process_scheduled_works+0xb5d/0x1860
[ 183.514939][ T68] ? __pfx_process_scheduled_works+0x10/0x10
[ 183.514959][ T68] ? assign_work+0x3d5/0x5e0
[ 183.514978][ T68] worker_thread+0xa53/0xfc0
[ 183.515006][ T68] kthread+0x388/0x470
[ 183.515026][ T68] ? __pfx_worker_thread+0x10/0x10
[ 183.515041][ T68] ? __pfx_kthread+0x10/0x10
[ 183.515061][ T68] ret_from_fork+0x514/0xb70
[ 183.515081][ T68] ? __pfx_ret_from_fork+0x10/0x10
[ 183.515098][ T68] ? __switch_to+0xc79/0x1410
[ 183.515121][ T68] ? __pfx_kthread+0x10/0x10
[ 183.515142][ T68] ret_from_fork_asm+0x1a/0x30
[ 183.515168][ T68]
[ 183.515175][ T68]
[ 183.515179][ T68] The buggy address belongs to the physical page:
[ 183.515200][ T68] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888035960000 pfn:0x35960
[ 183.515217][ T68] flags: 0x80000000000000(node=0|zone=1)
[ 183.515240][ T68] raw: 0080000000000000 ffffea00010a6708 ffffea0001706408 0000000000000000
[ 183.515253][ T68] raw: ffff888035960000 0000000000000000 00000000ffffffff 0000000000000000
[ 183.515261][ T68] page dumped because: kasan: bad access detected
[ 183.515276][ T68] page_owner tracks the page as freed
[ 183.515282][ T68] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 6683, tgid 6682 (syz.0.55), ts 183422660583, free_ts 183512470145
[ 183.515308][ T68] post_alloc_hook+0x231/0x280
[ 183.515326][ T68] get_page_from_freelist+0x27c8/0x2840
[ 183.515344][ T68] __alloc_frozen_pages_noprof+0x18d/0x380
[ 183.515362][ T68] alloc_pages_mpol+0xd1/0x380
[ 183.515379][ T68] alloc_pages_noprof+0xd2/0x2f0
[ 183.515396][ T68] lmLogInit+0x357/0x1a00
[ 183.515413][ T68] lmLogOpen+0x4e1/0xfa0
[ 183.515429][ T68] jfs_mount_rw+0xee/0x670
[ 183.515455][ T68] jfs_fill_super+0x754/0xd80
[ 183.515468][ T68] get_tree_bdev_flags+0x431/0x4f0
[ 183.515484][ T68] vfs_get_tree+0x92/0x2a0
[ 183.515499][ T68] do_new_mount+0x341/0xd30
[ 183.515519][ T68] __se_sys_mount+0x31d/0x420
[ 183.515539][ T68] do_syscall_64+0x15f/0xf80
[ 183.515556][ T68] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 183.515571][ T68] page last free pid 6441 tgid 6441 stack trace:
[ 183.515581][ T68] __free_frozen_pages+0xfa6/0x10f0
[ 183.515597][ T68] lmLogShutdown+0x44e/0x850
[ 183.515613][ T68] lmLogClose+0x28a/0x520
[ 183.515630][ T68] jfs_umount+0x2fb/0x3d0
[ 183.515647][ T68] jfs_put_super+0x8c/0x190
[ 183.515660][ T68] generic_shutdown_super+0x13d/0x2d0
[ 183.515674][ T68] kill_block_super+0x44/0x90
[ 183.515690][ T68] deactivate_locked_super+0xbc/0x130
[ 183.515704][ T68] cleanup_mnt+0x437/0x4d0
[ 183.515719][ T68] task_work_run+0x1d9/0x270
[ 183.515738][ T68] exit_to_user_mode_loop+0xed/0x480
[ 183.515756][ T68] do_syscall_64+0x33e/0xf80
[ 183.515779][ T68] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 183.515795][ T68]
[ 183.515799][ T68] Memory state around the buggy address:
[ 183.515808][ T68] ffff88803595ff00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 183.515818][ T68] ffff88803595ff80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 183.515829][ T68] >ffff888035960000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 183.515836][ T68] ^
[ 183.515844][ T68] ffff888035960080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 183.515855][ T68] ffff888035960100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 183.515862][ T68] ==================================================================
[ 183.519793][ T68] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 183.519812][ T68] CPU: 0 UID: 0 PID: 68 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 183.519832][ T68] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 183.519842][ T68] Workqueue: loop0 loop_workfn
[ 183.519867][ T68] Call Trace:
[ 183.519874][ T68]
[ 183.519881][ T68] vpanic+0x56c/0xa60
[ 183.519902][ T68] ? __pfx_vpanic+0x10/0x10
[ 183.519926][ T68] panic+0xc5/0xd0
[ 183.519943][ T68] ? __pfx_panic+0x10/0x10
[ 183.519962][ T68] ? preempt_schedule_thunk+0x16/0x30
[ 183.519986][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520003][ T68] ? preempt_schedule_thunk+0x16/0x30
[ 183.520025][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520041][ T68] check_panic_on_warn+0x89/0xb0
[ 183.520063][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520079][ T68] end_report+0x73/0x170
[ 183.520097][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520113][ T68] kasan_report+0x128/0x150
[ 183.520132][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520151][ T68] kasan_check_range+0x264/0x2c0
[ 183.520169][ T68] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520187][ T68] __asan_memcpy+0x29/0x70
[ 183.520209][ T68] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 183.520235][ T68] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 183.520253][ T68] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 183.520276][ T68] ? shmem_write_begin+0x1ce/0x320
[ 183.520296][ T68] generic_perform_write+0x5b1/0x8b0
[ 183.520320][ T68] ? __pfx_generic_perform_write+0x10/0x10
[ 183.520341][ T68] ? file_update_time_flags+0x3b9/0x4b0
[ 183.520362][ T68] shmem_file_write_iter+0xfb/0x120
[ 183.520384][ T68] lo_rw_aio+0xc80/0xf00
[ 183.520409][ T68] ? __pfx_lo_rw_aio+0x10/0x10
[ 183.520432][ T68] ? kthread_associate_blkcg+0x490/0x600
[ 183.520454][ T68] ? rt_spin_unlock+0x160/0x200
[ 183.520471][ T68] loop_process_work+0x637/0x11b0
[ 183.520498][ T68] ? __pfx_loop_process_work+0x10/0x10
[ 183.520517][ T68] ? __lock_acquire+0x6b5/0x2cf0
[ 183.520537][ T68] ? look_up_lock_class+0x57/0x110
[ 183.520557][ T68] ? register_lock_class+0x31/0x2e0
[ 183.520578][ T68] ? __lock_acquire+0x6b5/0x2cf0
[ 183.520599][ T68] ? trace_hrtimer_start+0x82/0x200
[ 183.520636][ T68] ? do_raw_spin_lock+0x12b/0x2f0
[ 183.520653][ T68] ? lock_acquire+0x106/0x350
[ 183.520672][ T68] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 183.520691][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.520708][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.520727][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.520743][ T68] ? process_scheduled_works+0xa70/0x1860
[ 183.520761][ T68] process_scheduled_works+0xb5d/0x1860
[ 183.520796][ T68] ? __pfx_process_scheduled_works+0x10/0x10
[ 183.520815][ T68] ? assign_work+0x3d5/0x5e0
[ 183.520836][ T68] worker_thread+0xa53/0xfc0
[ 183.520865][ T68] kthread+0x388/0x470
[ 183.520885][ T68] ? __pfx_worker_thread+0x10/0x10
[ 183.520901][ T68] ? __pfx_kthread+0x10/0x10
[ 183.520920][ T68] ret_from_fork+0x514/0xb70
[ 183.520940][ T68] ? __pfx_ret_from_fork+0x10/0x10
[ 183.520957][ T68] ? __switch_to+0xc79/0x1410
[ 183.520981][ T68] ? __pfx_kthread+0x10/0x10
[ 183.521001][ T68] ret_from_fork_asm+0x1a/0x30
[ 183.521026][ T68]
[ 183.521525][ T68] Kernel Offset: disabled