Warning: Permanently added '10.128.0.30' (ED25519) to the list of known hosts.
2025/09/15 14:47:52 parsed 1 programs
[ 132.093643][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.100164][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 136.169524][ T6191] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 139.385185][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 139.397574][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 139.454196][ T187] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 139.463008][ T187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 140.697239][ T6238] chnl_net:caif_netlink_parms(): no params data found
[ 140.791597][ T6238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 140.799316][ T6238] bridge0: port 1(bridge_slave_0) entered disabled state
[ 140.806431][ T6238] bridge_slave_0: entered allmulticast mode
[ 140.814445][ T6238] bridge_slave_0: entered promiscuous mode
[ 140.822390][ T6238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 140.830553][ T6238] bridge0: port 2(bridge_slave_1) entered disabled state
[ 140.837672][ T6238] bridge_slave_1: entered allmulticast mode
[ 140.845815][ T6238] bridge_slave_1: entered promiscuous mode
[ 140.880948][ T6238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 140.893148][ T6238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 140.929712][ T6238] team0: Port device team_slave_0 added
[ 140.937600][ T6238] team0: Port device team_slave_1 added
[ 140.970050][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 140.976974][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 141.002916][ T6238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 141.015126][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 141.022118][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 141.048789][ T6238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 141.097223][ T6238] hsr_slave_0: entered promiscuous mode
[ 141.103916][ T6238] hsr_slave_1: entered promiscuous mode
[ 141.611913][ T6238] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 141.624018][ T6238] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 141.635025][ T6238] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 141.647449][ T6238] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 141.764540][ T6238] 8021q: adding VLAN 0 to HW filter on device bond0
[ 141.798369][ T6238] 8021q: adding VLAN 0 to HW filter on device team0
[ 141.815095][ T187] bridge0: port 1(bridge_slave_0) entered blocking state
[ 141.822244][ T187] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 141.840851][ T187] bridge0: port 2(bridge_slave_1) entered blocking state
[ 141.848300][ T187] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 142.136448][ T6238] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 142.185810][ T6238] veth0_vlan: entered promiscuous mode
[ 142.203522][ T6238] veth1_vlan: entered promiscuous mode
[ 142.244745][ T6238] veth0_macvtap: entered promiscuous mode
[ 142.256328][ T6238] veth1_macvtap: entered promiscuous mode
[ 142.280253][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 142.299759][ T6238] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 142.318367][ T3486] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 142.331495][ T3486] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 142.342903][ T3486] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 142.359522][ T3486] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 142.493474][ T1162] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 142.515706][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 142.525267][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 142.535256][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 142.545664][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 142.554831][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 142.592698][ T1162] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 142.688463][ T1162] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 142.761996][ T1162] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 144.774601][ T1162] bridge_slave_1: left allmulticast mode
[ 144.781987][ T1162] bridge_slave_1: left promiscuous mode
[ 144.788145][ T1162] bridge0: port 2(bridge_slave_1) entered disabled state
[ 144.809697][ T1162] bridge_slave_0: left allmulticast mode
[ 144.817588][ T1162] bridge_slave_0: left promiscuous mode
[ 144.825812][ T1162] bridge0: port 1(bridge_slave_0) entered disabled state
2025/09/15 14:48:06 executed programs: 0
[ 144.972656][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 144.985584][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 145.000985][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 145.023948][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 145.032158][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 145.224563][ T1162] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 145.236064][ T1162] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 145.260798][ T1162] bond0 (unregistering): Released all slaves
[ 145.419535][ T1162] hsr_slave_0: left promiscuous mode
[ 145.425583][ T1162] hsr_slave_1: left promiscuous mode
[ 145.439171][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 145.446546][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 145.469867][ T1162] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 145.477241][ T1162] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 145.517574][ T1162] veth1_macvtap: left promiscuous mode
[ 145.527341][ T1162] veth0_macvtap: left promiscuous mode
[ 145.534181][ T1162] veth1_vlan: left promiscuous mode
[ 145.543594][ T1162] veth0_vlan: left promiscuous mode
[ 145.892130][ T1162] team0 (unregistering): Port device team_slave_1 removed
[ 145.918896][ T1162] team0 (unregistering): Port device team_slave_0 removed
[ 146.314673][ T6364] chnl_net:caif_netlink_parms(): no params data found
[ 146.434571][ T6364] bridge0: port 1(bridge_slave_0) entered blocking state
[ 146.441833][ T6364] bridge0: port 1(bridge_slave_0) entered disabled state
[ 146.449560][ T6364] bridge_slave_0: entered allmulticast mode
[ 146.457436][ T6364] bridge_slave_0: entered promiscuous mode
[ 146.469320][ T6364] bridge0: port 2(bridge_slave_1) entered blocking state
[ 146.476554][ T6364] bridge0: port 2(bridge_slave_1) entered disabled state
[ 146.485061][ T6364] bridge_slave_1: entered allmulticast mode
[ 146.493372][ T6364] bridge_slave_1: entered promiscuous mode
[ 146.540462][ T6364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 146.553321][ T6364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 146.620695][ T6364] team0: Port device team_slave_0 added
[ 146.629765][ T6364] team0: Port device team_slave_1 added
[ 146.929409][ T6364] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 146.936377][ T6364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 146.965344][ T6364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 147.007884][ T6364] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 147.023933][ T6364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 147.059290][ T6364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 147.131247][ T51] Bluetooth: hci0: command tx timeout
[ 147.221766][ T6364] hsr_slave_0: entered promiscuous mode
[ 147.228355][ T6364] hsr_slave_1: entered promiscuous mode
[ 147.853500][ T6364] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 147.875791][ T6364] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 147.900011][ T6364] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 147.921832][ T6364] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 148.037568][ T6364] 8021q: adding VLAN 0 to HW filter on device bond0
[ 148.062224][ T6364] 8021q: adding VLAN 0 to HW filter on device team0
[ 148.076799][ T1162] bridge0: port 1(bridge_slave_0) entered blocking state
[ 148.083957][ T1162] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 148.098501][ T3503] bridge0: port 2(bridge_slave_1) entered blocking state
[ 148.105617][ T3503] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 148.387695][ T6364] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 148.445931][ T6364] veth0_vlan: entered promiscuous mode
[ 148.462278][ T6364] veth1_vlan: entered promiscuous mode
[ 148.502519][ T6364] veth0_macvtap: entered promiscuous mode
[ 148.514870][ T6364] veth1_macvtap: entered promiscuous mode
[ 148.541344][ T6364] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 148.559651][ T6364] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 148.584277][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.596781][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.610296][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.632101][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 148.710081][ T3503] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 148.717905][ T3503] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 148.763777][ T1162] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 148.771634][ T1162] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 148.830098][ T6454] loop0: detected capacity change from 0 to 1024
[ 148.838006][ T6454] =======================================================
[ 148.838006][ T6454] WARNING: The mand mount option has been deprecated and
[ 148.838006][ T6454] and is ignored by this kernel. Remove the mand
[ 148.838006][ T6454] option from the mount to silence this warning.
[ 148.838006][ T6454] =======================================================
[ 148.912138][ T6454] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 148.941277][ T6454] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 148.962845][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 3)
[ 148.983110][ T6454] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 148.995752][ T6454] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 148.995752][ T6454]
[ 149.009533][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.026039][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.042253][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.070332][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.085771][ T6454] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.17: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.104653][ T6464] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.17: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 149.125648][ T6464] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 149.153861][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 149.209117][ T51] Bluetooth: hci0: command tx timeout
[ 149.256085][ T6468] loop0: detected capacity change from 0 to 1024
[ 149.314769][ T6468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 149.361346][ T6468] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 149.404065][ T6468] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 3)
[ 149.419883][ T6468] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 149.432569][ T6468] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 149.432569][ T6468]
[ 149.446797][ T6476] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.470718][ T6476] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.486082][ T6476] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.502134][ T6476] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.517262][ T6476] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.18: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.542034][ T6468] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.18: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 149.562540][ T6468] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 149.585884][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 149.682645][ T6483] loop0: detected capacity change from 0 to 1024
[ 149.755272][ T6483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 149.768104][ T6483] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 149.791822][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 3)
[ 149.807046][ T6483] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 149.821057][ T6483] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 149.821057][ T6483]
[ 149.832697][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.847933][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.864720][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.883827][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.898979][ T6483] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.19: lblock 3 mapped to illegal pblock 3 (length 1)
[ 149.914589][ T6488] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.19: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 149.933649][ T6488] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
2025/09/15 14:48:12 executed programs: 5
[ 149.951707][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 150.018158][ T6490] loop0: detected capacity change from 0 to 1024
[ 150.063783][ T6490] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 150.078069][ T6490] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 150.096918][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 3)
[ 150.111626][ T6490] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 150.124013][ T6490] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 150.124013][ T6490]
[ 150.135580][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.150622][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.165000][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.180519][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.195876][ T6490] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.20: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.212319][ T6493] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.20: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 150.230896][ T6493] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 150.248137][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 150.296929][ T6495] loop0: detected capacity change from 0 to 1024
[ 150.340026][ T6495] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 150.353686][ T6495] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 150.372870][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 3)
[ 150.389562][ T6495] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 150.401938][ T6495] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 150.401938][ T6495]
[ 150.413902][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.429832][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.444672][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.459099][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.473527][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.488054][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.503710][ T6495] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.21: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.520447][ T6498] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.21: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 150.539326][ T6498] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 150.556226][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 150.602903][ T6500] loop0: detected capacity change from 0 to 1024
[ 150.651321][ T6500] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 150.665618][ T6500] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 150.705246][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 3)
[ 150.720631][ T6500] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 150.733156][ T6500] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 150.733156][ T6500]
[ 150.745076][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.759366][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.773959][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.789264][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.803727][ T6500] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.22: lblock 3 mapped to illegal pblock 3 (length 1)
[ 150.819401][ T6503] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.22: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 150.837922][ T6503] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 150.854830][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 150.903446][ T6505] loop0: detected capacity change from 0 to 1024
[ 150.935050][ T6505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 150.947689][ T6505] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 150.964060][ T6505] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.23: lblock 3 mapped to illegal pblock 3 (length 3)
[ 150.983067][ T6505] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 150.995609][ T6505] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 150.995609][ T6505]
[ 151.010340][ T6505] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.23: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.025968][ T6505] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.23: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.040668][ T6505] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.23: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.057366][ T6505] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.23: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.072875][ T6508] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.23: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 151.091381][ T6508] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 151.108974][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 151.167969][ T6510] loop0: detected capacity change from 0 to 1024
[ 151.183760][ T6510] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 151.196222][ T6510] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 151.214976][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 3)
[ 151.230975][ T6510] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 151.243616][ T6510] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 151.243616][ T6510]
[ 151.255459][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.270260][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.285150][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.299157][ T51] Bluetooth: hci0: command tx timeout
[ 151.300574][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.319300][ T6510] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.24: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.334727][ T6513] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.24: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 151.353251][ T6513] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 151.370787][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 151.417854][ T6515] loop0: detected capacity change from 0 to 1024
[ 151.445032][ T6515] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 151.459628][ T6515] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 151.477892][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 3)
[ 151.493318][ T6515] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 151.506320][ T6515] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 151.506320][ T6515]
[ 151.519761][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.535016][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.550979][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.565335][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.581726][ T6515] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.25: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.598175][ T6518] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.25: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 151.616592][ T6518] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 151.634478][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 151.695181][ T6520] loop0: detected capacity change from 0 to 1024
[ 151.717272][ T6520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 151.730364][ T6520] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 151.745307][ T6520] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.26: lblock 3 mapped to illegal pblock 3 (length 3)
[ 151.759772][ T6520] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 151.772944][ T6520] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 151.772944][ T6520]
[ 151.784525][ T6520] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.26: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.799946][ T6520] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.26: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.814443][ T6520] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.26: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.829589][ T6520] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.26: lblock 3 mapped to illegal pblock 3 (length 1)
[ 151.845009][ T6523] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.26: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 151.863631][ T6523] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 151.880744][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 151.943704][ T6525] loop0: detected capacity change from 0 to 1024
[ 151.966111][ T6525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 151.978726][ T6525] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 151.996871][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 3)
[ 152.011801][ T6525] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 152.024738][ T6525] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 152.024738][ T6525]
[ 152.036669][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.052157][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.066731][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.081100][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.095853][ T6525] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.27: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.111387][ T6528] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.27: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 152.130623][ T6528] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 152.146704][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 152.208169][ T6530] loop0: detected capacity change from 0 to 1024
[ 152.222849][ T6530] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 152.235990][ T6530] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 152.254801][ T6530] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.28: lblock 3 mapped to illegal pblock 3 (length 3)
[ 152.269534][ T6530] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 152.281838][ T6530] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 152.281838][ T6530]
[ 152.292613][ T6530] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.28: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.306883][ T6530] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.28: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.321178][ T6530] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.28: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.336268][ T6530] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.28: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.351721][ T6533] EXT4-fs error (device loop0): ext4_ext_remove_space:2955: inode #15: comm syz.0.28: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[ 152.371103][ T6533] EXT4-fs error (device loop0) in ext4_setattr:6071: Corrupt filesystem
[ 152.387241][ T6364] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 152.445483][ T6535] loop0: detected capacity change from 0 to 1024
[ 152.473654][ T6535] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 152.486867][ T6535] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 152.506998][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 3)
[ 152.528553][ T6535] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[ 152.542004][ T6535] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 152.542004][ T6535]
[ 152.553241][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.567847][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.582230][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.596667][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.611734][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.626284][ T6535] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #15: block 3: comm syz.0.29: lblock 3 mapped to illegal pblock 3 (length 1)
[ 152.640541][ T6535] ==================================================================
[ 152.648588][ T6535] BUG: KASAN: slab-use-after-free in filemap_map_pages+0xc95/0x1740
[ 152.656558][ T6535] Read of size 8 at addr ffff888075439000 by task syz.0.29/6535
[ 152.664161][ T6535]
[ 152.666466][ T6535] CPU: 0 UID: 0 PID: 6535 Comm: syz.0.29 Not tainted syzkaller #0 PREEMPT(full)
[ 152.666486][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 152.666496][ T6535] Call Trace:
[ 152.666503][ T6535]
[ 152.666511][ T6535] dump_stack_lvl+0x189/0x250
[ 152.666534][ T6535] ? __kasan_check_byte+0x12/0x40
[ 152.666561][ T6535] ? __pfx_dump_stack_lvl+0x10/0x10
[ 152.666582][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.666603][ T6535] ? lock_release+0x4b/0x3e0
[ 152.666632][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.666652][ T6535] ? __virt_addr_valid+0x4a5/0x5c0
[ 152.666677][ T6535] print_report+0xca/0x240
[ 152.666695][ T6535] ? filemap_map_pages+0xc95/0x1740
[ 152.666713][ T6535] kasan_report+0x118/0x150
[ 152.666740][ T6535] ? filemap_map_pages+0xc95/0x1740
[ 152.666763][ T6535] filemap_map_pages+0xc95/0x1740
[ 152.666790][ T6535] ? filemap_map_pages+0x150/0x1740
[ 152.666812][ T6535] ? __pfx_filemap_map_pages+0x10/0x10
[ 152.666834][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.666856][ T6535] ? __handle_mm_fault+0x27b7/0x5440
[ 152.666880][ T6535] ? __handle_mm_fault+0x27b7/0x5440
[ 152.666905][ T6535] __handle_mm_fault+0x34ac/0x5440
[ 152.666936][ T6535] ? __pfx___handle_mm_fault+0x10/0x10
[ 152.666966][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.666986][ T6535] ? follow_page_pte+0x7ef/0x13e0
[ 152.667013][ T6535] handle_mm_fault+0x40a/0x8e0
[ 152.667042][ T6535] __get_user_pages+0x1699/0x2ce0
[ 152.667079][ T6535] populate_vma_page_range+0x29f/0x3a0
[ 152.667102][ T6535] ? __pfx_populate_vma_page_range+0x10/0x10
[ 152.667123][ T6535] ? userfaultfd_unmap_complete+0x278/0x2d0
[ 152.667151][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.667171][ T6535] ? down_read+0x1ad/0x2e0
[ 152.667193][ T6535] __mm_populate+0x24c/0x380
[ 152.667215][ T6535] ? __pfx___mm_populate+0x10/0x10
[ 152.667237][ T6535] ? up_write+0x1c4/0x420
[ 152.667259][ T6535] vm_mmap_pgoff+0x387/0x4d0
[ 152.667283][ T6535] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 152.667318][ T6535] ? __fget_files+0x2a/0x420
[ 152.667335][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.667355][ T6535] ? __fget_files+0x3a0/0x420
[ 152.667370][ T6535] ? __fget_files+0x2a/0x420
[ 152.667387][ T6535] ksys_mmap_pgoff+0x51f/0x760
[ 152.667414][ T6535] do_syscall_64+0xfa/0x3b0
[ 152.667436][ T6535] ? lockdep_hardirqs_on+0x9c/0x150
[ 152.667453][ T6535] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.667470][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 152.667490][ T6535] ? exc_page_fault+0x9f/0xf0
[ 152.667508][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.667525][ T6535] RIP: 0033:0x7f32e298ebe9
[ 152.667540][ T6535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 152.667555][ T6535] RSP: 002b:00007f32e1ffe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 152.667573][ T6535] RAX: ffffffffffffffda RBX: 00007f32e2bb5fa0 RCX: 00007f32e298ebe9
[ 152.667586][ T6535] RDX: 00000000027ffff7 RSI: 0000000000600000 RDI: 0000200000000000
[ 152.667598][ T6535] RBP: 00007f32e2a11e19 R08: 0000000000000004 R09: 0000000000000000
[ 152.667609][ T6535] R10: 0000000004012011 R11: 0000000000000246 R12: 0000000000000000
[ 152.667620][ T6535] R13: 00007f32e2bb6038 R14: 00007f32e2bb5fa0 R15: 00007ffc864c5ed8
[ 152.667641][ T6535]
[ 152.667647][ T6535]
[ 152.993731][ T6535] Allocated by task 6364:
[ 152.998031][ T6535] kasan_save_track+0x3e/0x80
[ 153.002694][ T6535] __kasan_slab_alloc+0x6c/0x80
[ 153.007529][ T6535] kmem_cache_alloc_node_noprof+0x1bb/0x3c0
[ 153.013406][ T6535] __alloc_skb+0x112/0x2d0
[ 153.017807][ T6535] rtmsg_fib+0xea/0x4c0
[ 153.021949][ T6535] fib_table_insert+0xd64/0x1b50
[ 153.026865][ T6535] fib_magic+0x2c4/0x390
[ 153.031109][ T6535] fib_add_ifaddr+0x38d/0x5f0
[ 153.035770][ T6535] fib_netdev_event+0x382/0x490
[ 153.040606][ T6535] notifier_call_chain+0x1b6/0x3e0
[ 153.045696][ T6535] __dev_notify_flags+0x18d/0x2e0
[ 153.050705][ T6535] netif_change_flags+0xe8/0x1a0
[ 153.055637][ T6535] do_setlink+0xc55/0x41c0
[ 153.060035][ T6535] rtnl_newlink+0x160b/0x1c70
[ 153.064690][ T6535] rtnetlink_rcv_msg+0x7cf/0xb70
[ 153.069604][ T6535] netlink_rcv_skb+0x208/0x470
[ 153.074346][ T6535] netlink_unicast+0x82f/0x9e0
[ 153.079097][ T6535] netlink_sendmsg+0x805/0xb30
[ 153.083843][ T6535] __sock_sendmsg+0x21c/0x270
[ 153.088511][ T6535] __sys_sendto+0x3bd/0x520
[ 153.092998][ T6535] __x64_sys_sendto+0xde/0x100
[ 153.097739][ T6535] do_syscall_64+0xfa/0x3b0
[ 153.102222][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.108095][ T6535]
[ 153.110394][ T6535] Freed by task 6364:
[ 153.114347][ T6535] kasan_save_track+0x3e/0x80
[ 153.119006][ T6535] kasan_save_free_info+0x46/0x50
[ 153.124018][ T6535] __kasan_slab_free+0x5b/0x80
[ 153.128775][ T6535] kmem_cache_free+0x18f/0x400
[ 153.133532][ T6535] netlink_broadcast_filtered+0x1188/0x12c0
[ 153.139414][ T6535] nlmsg_notify+0xf0/0x1a0
[ 153.143811][ T6535] fib_table_insert+0xd64/0x1b50
[ 153.148730][ T6535] fib_magic+0x2c4/0x390
[ 153.152966][ T6535] fib_add_ifaddr+0x38d/0x5f0
[ 153.157643][ T6535] fib_netdev_event+0x382/0x490
[ 153.162480][ T6535] notifier_call_chain+0x1b6/0x3e0
[ 153.167593][ T6535] __dev_notify_flags+0x18d/0x2e0
[ 153.172598][ T6535] netif_change_flags+0xe8/0x1a0
[ 153.177515][ T6535] do_setlink+0xc55/0x41c0
[ 153.181930][ T6535] rtnl_newlink+0x160b/0x1c70
[ 153.186583][ T6535] rtnetlink_rcv_msg+0x7cf/0xb70
[ 153.191498][ T6535] netlink_rcv_skb+0x208/0x470
[ 153.196240][ T6535] netlink_unicast+0x82f/0x9e0
[ 153.200991][ T6535] netlink_sendmsg+0x805/0xb30
[ 153.205735][ T6535] __sock_sendmsg+0x21c/0x270
[ 153.210399][ T6535] __sys_sendto+0x3bd/0x520
[ 153.214885][ T6535] __x64_sys_sendto+0xde/0x100
[ 153.219625][ T6535] do_syscall_64+0xfa/0x3b0
[ 153.224107][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.229976][ T6535]
[ 153.232276][ T6535] The buggy address belongs to the object at ffff888075439000
[ 153.232276][ T6535] which belongs to the cache skbuff_head_cache of size 240
[ 153.246914][ T6535] The buggy address is located 0 bytes inside of
[ 153.246914][ T6535] freed 240-byte region [ffff888075439000, ffff8880754390f0)
[ 153.260515][ T6535]
[ 153.262817][ T6535] The buggy address belongs to the physical page:
[ 153.269199][ T6535] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x75439
[ 153.277939][ T6535] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 153.285021][ T6535] page_type: f5(slab)
[ 153.288984][ T6535] raw: 00fff00000000000 ffff888140ea18c0 dead000000000122 0000000000000000
[ 153.297546][ T6535] raw: 0000000000000000 00000000000c000c 00000000f5000000 0000000000000000
[ 153.306100][ T6535] page dumped because: kasan: bad access detected
[ 153.312486][ T6535] page_owner tracks the page as allocated
[ 153.318171][ T6535] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6364, tgid 6364 (syz-executor), ts 148437974292, free_ts 148396943502
[ 153.337595][ T6535] post_alloc_hook+0x240/0x2a0
[ 153.342351][ T6535] get_page_from_freelist+0x21e4/0x22c0
[ 153.347877][ T6535] __alloc_frozen_pages_noprof+0x181/0x370
[ 153.353659][ T6535] alloc_pages_mpol+0x232/0x4a0
[ 153.358506][ T6535] allocate_slab+0x8a/0x370
[ 153.363004][ T6535] ___slab_alloc+0xbeb/0x1420
[ 153.367668][ T6535] kmem_cache_alloc_node_noprof+0x280/0x3c0
[ 153.373544][ T6535] __alloc_skb+0x112/0x2d0
[ 153.377939][ T6535] rtmsg_fib+0xea/0x4c0
[ 153.382080][ T6535] fib_table_insert+0xd64/0x1b50
[ 153.386996][ T6535] fib_magic+0x2c4/0x390
[ 153.391221][ T6535] fib_add_ifaddr+0x38d/0x5f0
[ 153.395882][ T6535] fib_netdev_event+0x382/0x490
[ 153.400719][ T6535] notifier_call_chain+0x1b6/0x3e0
[ 153.405837][ T6535] __dev_notify_flags+0x18d/0x2e0
[ 153.410843][ T6535] netif_change_flags+0xe8/0x1a0
[ 153.415763][ T6535] page last free pid 976 tgid 976 stack trace:
[ 153.421888][ T6535] __free_frozen_pages+0xbc4/0xd30
[ 153.426993][ T6535] vfree+0x25a/0x400
[ 153.430871][ T6535] delayed_vfree_work+0x55/0x80
[ 153.435710][ T6535] process_scheduled_works+0xae1/0x17b0
[ 153.441229][ T6535] worker_thread+0x8a0/0xda0
[ 153.445796][ T6535] kthread+0x711/0x8a0
[ 153.449846][ T6535] ret_from_fork+0x439/0x7d0
[ 153.454414][ T6535] ret_from_fork_asm+0x1a/0x30
[ 153.459164][ T6535]
[ 153.461472][ T6535] Memory state around the buggy address:
[ 153.467074][ T6535] ffff888075438f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 153.475110][ T6535] ffff888075438f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 153.483150][ T6535] >ffff888075439000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 153.491185][ T6535] ^
[ 153.495223][ T6535] ffff888075439080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc
[ 153.503257][ T6535] ffff888075439100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[ 153.511291][ T6535] ==================================================================
[ 153.520233][ T6535] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 153.527411][ T6535] CPU: 0 UID: 0 PID: 6535 Comm: syz.0.29 Not tainted syzkaller #0 PREEMPT(full)
[ 153.536499][ T6535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 153.546532][ T6535] Call Trace:
[ 153.549792][ T6535]
[ 153.552701][ T6535] dump_stack_lvl+0x99/0x250
[ 153.557276][ T6535] ? __asan_memcpy+0x40/0x70
[ 153.561849][ T6535] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.567032][ T6535] ? __pfx__printk+0x10/0x10
[ 153.571618][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.577241][ T6535] vpanic+0x281/0x750
[ 153.581219][ T6535] ? __pfx_vpanic+0x10/0x10
[ 153.585706][ T6535] ? irqentry_exit+0x74/0x90
[ 153.590275][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.595898][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.601515][ T6535] panic+0xb9/0xc0
[ 153.605218][ T6535] ? __pfx_panic+0x10/0x10
[ 153.609617][ T6535] ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 153.615505][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.621126][ T6535] ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 153.627017][ T6535] ? filemap_map_pages+0xc95/0x1740
[ 153.632198][ T6535] check_panic_on_warn+0x89/0xb0
[ 153.637124][ T6535] ? filemap_map_pages+0xc95/0x1740
[ 153.642303][ T6535] end_report+0x78/0x160
[ 153.646534][ T6535] kasan_report+0x129/0x150
[ 153.651026][ T6535] ? filemap_map_pages+0xc95/0x1740
[ 153.656227][ T6535] filemap_map_pages+0xc95/0x1740
[ 153.661242][ T6535] ? filemap_map_pages+0x150/0x1740
[ 153.666446][ T6535] ? __pfx_filemap_map_pages+0x10/0x10
[ 153.671906][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.677521][ T6535] ? __handle_mm_fault+0x27b7/0x5440
[ 153.682789][ T6535] ? __handle_mm_fault+0x27b7/0x5440
[ 153.688061][ T6535] __handle_mm_fault+0x34ac/0x5440
[ 153.693164][ T6535] ? __pfx___handle_mm_fault+0x10/0x10
[ 153.698616][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.704235][ T6535] ? follow_page_pte+0x7ef/0x13e0
[ 153.709249][ T6535] handle_mm_fault+0x40a/0x8e0
[ 153.714023][ T6535] __get_user_pages+0x1699/0x2ce0
[ 153.719047][ T6535] populate_vma_page_range+0x29f/0x3a0
[ 153.724497][ T6535] ? __pfx_populate_vma_page_range+0x10/0x10
[ 153.730465][ T6535] ? userfaultfd_unmap_complete+0x278/0x2d0
[ 153.736354][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.741972][ T6535] ? down_read+0x1ad/0x2e0
[ 153.746373][ T6535] __mm_populate+0x24c/0x380
[ 153.750946][ T6535] ? __pfx___mm_populate+0x10/0x10
[ 153.756040][ T6535] ? up_write+0x1c4/0x420
[ 153.760355][ T6535] vm_mmap_pgoff+0x387/0x4d0
[ 153.764931][ T6535] ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 153.770026][ T6535] ? __fget_files+0x2a/0x420
[ 153.774597][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.780211][ T6535] ? __fget_files+0x3a0/0x420
[ 153.784865][ T6535] ? __fget_files+0x2a/0x420
[ 153.789443][ T6535] ksys_mmap_pgoff+0x51f/0x760
[ 153.794201][ T6535] do_syscall_64+0xfa/0x3b0
[ 153.798688][ T6535] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.803871][ T6535] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.809934][ T6535] ? srso_alias_return_thunk+0x5/0xfbef5
[ 153.815549][ T6535] ? exc_page_fault+0x9f/0xf0
[ 153.820207][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.826105][ T6535] RIP: 0033:0x7f32e298ebe9
[ 153.830504][ T6535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 153.850088][ T6535] RSP: 002b:00007f32e1ffe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 153.858486][ T6535] RAX: ffffffffffffffda RBX: 00007f32e2bb5fa0 RCX: 00007f32e298ebe9
[ 153.866447][ T6535] RDX: 00000000027ffff7 RSI: 0000000000600000 RDI: 0000200000000000
[ 153.874397][ T6535] RBP: 00007f32e2a11e19 R08: 0000000000000004 R09: 0000000000000000
[ 153.882354][ T6535] R10: 0000000004012011 R11: 0000000000000246 R12: 0000000000000000
[ 153.890306][ T6535] R13: 00007f32e2bb6038 R14: 00007f32e2bb5fa0 R15: 00007ffc864c5ed8
[ 153.898264][ T6535]
[ 153.901467][ T6535] Kernel Offset: disabled
[ 153.905774][ T6535] Rebooting in 86400 seconds..