Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
2026/02/12 22:44:23 parsed 1 programs
[ 92.765581][ T4786] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 94.362471][ T4810] chnl_net:caif_netlink_parms(): no params data found
[ 94.397255][ T4810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.405245][ T4810] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.413029][ T4810] device bridge_slave_0 entered promiscuous mode
[ 94.421082][ T4810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.428359][ T4810] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.436284][ T4810] device bridge_slave_1 entered promiscuous mode
[ 94.455781][ T4810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 94.466425][ T4810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 94.489092][ T4810] team0: Port device team_slave_0 added
[ 94.496433][ T4810] team0: Port device team_slave_1 added
[ 94.511473][ T4810] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 94.518862][ T4810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.544911][ T4810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 94.559806][ T4810] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 94.566889][ T4810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.593144][ T4810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 94.618876][ T4810] device hsr_slave_0 entered promiscuous mode
[ 94.626740][ T4810] device hsr_slave_1 entered promiscuous mode
[ 95.220631][ T4810] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.246707][ T4810] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.266208][ T4810] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.295960][ T4810] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.360359][ T4810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.367526][ T4810] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.374968][ T4810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.382361][ T4810] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.435157][ T422] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.452577][ T422] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.469453][ T4810] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.484404][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 95.502855][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 95.514217][ T4810] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.532495][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.541192][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.550571][ T1238] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.557764][ T1238] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.570307][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.593091][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.613362][ T1238] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.620460][ T1238] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.647672][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.683232][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.692995][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.711013][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.720440][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.730363][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.740972][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.759232][ T4810] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 95.792402][ T4810] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 95.814532][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.825167][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.845078][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.864610][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.884466][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 96.114445][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 96.121983][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 96.149847][ T4810] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.171267][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 96.193711][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 96.236192][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 96.251306][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 96.264117][ T4810] device veth0_vlan entered promiscuous mode
[ 96.279736][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 96.293381][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 96.306318][ T4810] device veth1_vlan entered promiscuous mode
[ 96.355613][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 96.373290][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 96.385098][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 96.403051][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 96.426275][ T4810] device veth0_macvtap entered promiscuous mode
[ 96.436968][ T4810] device veth1_macvtap entered promiscuous mode
[ 96.454137][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 96.462218][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 96.473696][ T4810] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.482253][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 96.492233][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 96.506142][ T4810] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.515885][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 96.528032][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 96.575601][ T4810] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.584745][ T4810] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.593886][ T4810] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.602976][ T4810] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 98.744963][ T1238] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.762373][ T1238] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.803620][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 98.813544][ T1238] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.821386][ T1238] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.845605][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 99.802355][ T3118] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/02/12 22:44:33 executed programs: 0
[ 100.235929][ T5023] chnl_net:caif_netlink_parms(): no params data found
[ 100.294905][ T5023] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.302494][ T5023] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.310631][ T5023] device bridge_slave_0 entered promiscuous mode
[ 100.320096][ T5023] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.327637][ T5023] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.336232][ T5023] device bridge_slave_1 entered promiscuous mode
[ 100.365895][ T5023] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.378534][ T5023] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.409094][ T5023] team0: Port device team_slave_0 added
[ 100.418346][ T5023] team0: Port device team_slave_1 added
[ 100.444138][ T5023] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.451128][ T5023] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.478358][ T5023] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.491102][ T5023] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.498361][ T5023] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.524777][ T5023] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.564335][ T5023] device hsr_slave_0 entered promiscuous mode
[ 100.573672][ T5023] device hsr_slave_1 entered promiscuous mode
[ 100.580386][ T5023] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 100.588759][ T5023] Cannot create hsr debugfs directory
[ 101.690663][ T3118] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.752844][ T3118] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.811854][ T3118] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.142706][ T4441] Bluetooth: hci0: command 0x0409 tx timeout
[ 102.614708][ T5023] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 102.626440][ T5023] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 102.640050][ T5023] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 102.650304][ T5023] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 102.791385][ T5023] 8021q: adding VLAN 0 to HW filter on device bond0
[ 102.809806][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 102.819074][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 102.830947][ T5023] 8021q: adding VLAN 0 to HW filter on device team0
[ 102.843705][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 102.852775][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 102.861441][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.868577][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 102.922652][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 102.931316][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 102.945415][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 102.957837][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.965248][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 102.975633][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 102.994780][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 103.005775][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 103.015994][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 103.030092][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 103.040147][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 103.057144][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 103.065836][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 103.074594][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 103.083320][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 103.091523][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 103.104721][ T5023] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 103.231281][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 103.239315][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 103.250563][ T5023] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 103.269285][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 103.278643][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 103.298704][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 103.307382][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 103.316574][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 103.325094][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 103.348905][ T5023] device veth0_vlan entered promiscuous mode
[ 103.358863][ T5023] device veth1_vlan entered promiscuous mode
[ 103.374477][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 103.383930][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 103.391799][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 103.401151][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 103.413546][ T5023] device veth0_macvtap entered promiscuous mode
[ 103.439937][ T5023] device veth1_macvtap entered promiscuous mode
[ 103.452026][ T5023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 103.463041][ T5023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 103.475729][ T5023] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 103.484175][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 103.492249][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 103.500241][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 103.509400][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 103.520178][ T5023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 103.531319][ T5023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 103.543244][ T5023] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 103.552771][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 103.562172][ T422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 103.574336][ T5023] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.583768][ T5023] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.592824][ T5023] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.601519][ T5023] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.667991][ T422] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.678714][ T422] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.687726][ T1238] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 103.720652][ T422] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.728931][ T422] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.737329][ T3080] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 103.944032][ T5245] loop0: detected capacity change from 0 to 32768
[ 103.972756][ T3118] device hsr_slave_0 left promiscuous mode
[ 103.979186][ T3118] device hsr_slave_1 left promiscuous mode
[ 104.002062][ T3118] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 104.012538][ T3118] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 104.020686][ T3118] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 104.029056][ T3118] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 104.041531][ T3118] device bridge_slave_1 left promiscuous mode
[ 104.053203][ T3118] bridge0: port 2(bridge_slave_1) entered disabled state
[ 104.066808][ T3118] device bridge_slave_0 left promiscuous mode
[ 104.074730][ T3118] bridge0: port 1(bridge_slave_0) entered disabled state
[ 104.089123][ T3118] device veth1_macvtap left promiscuous mode
[ 104.096362][ T3118] device veth0_macvtap left promiscuous mode
[ 104.102538][ T3118] device veth1_vlan left promiscuous mode
[ 104.109019][ T3118] device veth0_vlan left promiscuous mode
[ 104.224317][ T4439] Bluetooth: hci0: command 0x041b tx timeout
[ 104.241182][ T3118] team0 (unregistering): Port device team_slave_1 removed
[ 104.256498][ T3118] team0 (unregistering): Port device team_slave_0 removed
[ 104.268053][ T3118] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 104.280053][ T3118] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 104.327958][ T3118] bond0 (unregistering): Released all slaves
[ 105.079593][ T5248] loop0: detected capacity change from 0 to 32768
[ 105.178661][ T5248] ==================================================================
[ 105.187022][ T5248] BUG: KASAN: use-after-free in jfs_readdir+0x129f/0x3cf0
[ 105.194168][ T5248] Read of size 8 at addr ffff8880793219e0 by task syz.0.18/5248
[ 105.201808][ T5248]
[ 105.204152][ T5248] CPU: 0 PID: 5248 Comm: syz.0.18 Not tainted syzkaller #0
[ 105.211359][ T5248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 105.221518][ T5248] Call Trace:
[ 105.224811][ T5248]
[ 105.227757][ T5248] dump_stack_lvl+0x188/0x250
[ 105.232541][ T5248] ? show_regs_print_info+0x20/0x20
[ 105.237763][ T5248] ? load_image+0x400/0x400
[ 105.242289][ T5248] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 105.247777][ T5248] ? unlock_page+0x17c/0x1f0
[ 105.252400][ T5248] print_address_description+0x60/0x2d0
[ 105.257981][ T5248] ? jfs_readdir+0x129f/0x3cf0
[ 105.262764][ T5248] kasan_report+0xdf/0x130
[ 105.267251][ T5248] ? jfs_readdir+0x129f/0x3cf0
[ 105.272031][ T5248] jfs_readdir+0x129f/0x3cf0
[ 105.276671][ T5248] ? dtInitRoot+0x660/0x660
[ 105.281269][ T5248] ? end_current_label_crit_section+0x14b/0x170
[ 105.287539][ T5248] ? common_file_perm+0x171/0x1c0
[ 105.292595][ T5248] iterate_dir+0x218/0x560
[ 105.297041][ T5248] __se_sys_getdents+0xf2/0x260
[ 105.302002][ T5248] ? __x64_sys_getdents+0x80/0x80
[ 105.307131][ T5248] ? fillonedir+0x4e0/0x4e0
[ 105.311751][ T5248] ? vtime_user_exit+0x2c8/0x3e0
[ 105.316729][ T5248] ? lockdep_hardirqs_on+0x94/0x140
[ 105.321949][ T5248] do_syscall_64+0x4c/0xa0
[ 105.326389][ T5248] ? clear_bhb_loop+0x30/0x80
[ 105.331188][ T5248] ? clear_bhb_loop+0x30/0x80
[ 105.335888][ T5248] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.341807][ T5248] RIP: 0033:0x7fc8dc459379
[ 105.346245][ T5248] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 105.365889][ T5248] RSP: 002b:00007fc8dbabd028 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 105.374331][ T5248] RAX: ffffffffffffffda RBX: 00007fc8dc6b4fa0 RCX: 00007fc8dc459379
[ 105.382319][ T5248] RDX: fffffffffffffd90 RSI: 0000000000000000 RDI: 0000000000000004
[ 105.390315][ T5248] RBP: 00007fc8dc4ecd68 R08: 0000000000000000 R09: 0000000000000000
[ 105.398301][ T5248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.406296][ T5248] R13: 00007fc8dc6b5038 R14: 00007fc8dc6b4fa0 R15: 00007ffda24929d8
[ 105.414306][ T5248]
[ 105.417338][ T5248]
[ 105.420102][ T5248] Allocated by task 5248:
[ 105.424438][ T5248] __kasan_slab_alloc+0x9c/0xd0
[ 105.429409][ T5248] slab_post_alloc_hook+0x4c/0x380
[ 105.434539][ T5248] kmem_cache_alloc+0x100/0x290
[ 105.439485][ T5248] mempool_alloc+0x18d/0x4e0
[ 105.444088][ T5248] __get_metapage+0x5e8/0x1060
[ 105.448863][ T5248] dtSplitRoot+0x1e5/0x1510
[ 105.453375][ T5248] dtInsert+0xe67/0x5830
[ 105.457636][ T5248] jfs_symlink+0x8b2/0xfb0
[ 105.462072][ T5248] vfs_symlink+0x247/0x3d0
[ 105.466504][ T5248] do_symlinkat+0x1ab/0x6b0
[ 105.471022][ T5248] __x64_sys_symlink+0x7a/0x90
[ 105.475793][ T5248] do_syscall_64+0x4c/0xa0
[ 105.480249][ T5248] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.486172][ T5248]
[ 105.488696][ T5248] Freed by task 5248:
[ 105.492814][ T5248] kasan_set_track+0x4b/0x70
[ 105.497437][ T5248] kasan_set_free_info+0x1f/0x40
[ 105.502478][ T5248] ____kasan_slab_free+0xd5/0x110
[ 105.507518][ T5248] slab_free_freelist_hook+0xea/0x170
[ 105.512907][ T5248] kmem_cache_free+0x8f/0x210
[ 105.517608][ T5248] release_metapage+0x97b/0xe10
[ 105.522474][ T5248] jfs_readdir+0x103b/0x3cf0
[ 105.527089][ T5248] iterate_dir+0x218/0x560
[ 105.531532][ T5248] __se_sys_getdents+0xf2/0x260
[ 105.536593][ T5248] do_syscall_64+0x4c/0xa0
[ 105.541222][ T5248] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.547138][ T5248]
[ 105.549480][ T5248] The buggy address belongs to the object at ffff8880793219b0
[ 105.549480][ T5248] which belongs to the cache jfs_mp of size 184
[ 105.563107][ T5248] The buggy address is located 48 bytes inside of
[ 105.563107][ T5248] 184-byte region [ffff8880793219b0, ffff888079321a68)
[ 105.576408][ T5248] The buggy address belongs to the page:
[ 105.582053][ T5248] page:ffffea0001e4c840 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x79321
[ 105.592227][ T5248] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 105.599886][ T5248] raw: 00fff00000000200 0000000000000000 dead000000000122 ffff8881461b6640
[ 105.608480][ T5248] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 105.617068][ T5248] page dumped because: kasan: bad access detected
[ 105.623482][ T5248] page_owner tracks the page as allocated
[ 105.629217][ T5248] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192800(GFP_NOWAIT|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5248, ts 105137183813, free_ts 104784114587
[ 105.648644][ T5248] get_page_from_freelist+0x1bbd/0x1ca0
[ 105.654227][ T5248] __alloc_pages+0x1ee/0x480
[ 105.658889][ T5248] new_slab+0xc0/0x4b0
[ 105.663046][ T5248] ___slab_alloc+0x80a/0xdd0
[ 105.667634][ T5248] kmem_cache_alloc+0x195/0x290
[ 105.672494][ T5248] mempool_alloc+0x18d/0x4e0
[ 105.677088][ T5248] __get_metapage+0x5e8/0x1060
[ 105.681846][ T5248] diReadSpecial+0x257/0x700
[ 105.686432][ T5248] jfs_mount+0x170/0x860
[ 105.690944][ T5248] jfs_fill_super+0x511/0xb00
[ 105.695634][ T5248] mount_bdev+0x287/0x3c0
[ 105.699960][ T5248] legacy_get_tree+0xe6/0x180
[ 105.704718][ T5248] vfs_get_tree+0x88/0x270
[ 105.709128][ T5248] do_new_mount+0x24a/0xa40
[ 105.713628][ T5248] __se_sys_mount+0x2e3/0x3d0
[ 105.718303][ T5248] do_syscall_64+0x4c/0xa0
[ 105.722719][ T5248] page last free stack trace:
[ 105.727381][ T5248] free_unref_page_prepare+0x637/0x6c0
[ 105.732838][ T5248] free_unref_page+0x8f/0x2a0
[ 105.737506][ T5248] __unfreeze_partials+0x1a5/0x200
[ 105.742615][ T5248] put_cpu_partial+0x12d/0x190
[ 105.747388][ T5248] qlist_free_all+0x35/0x90
[ 105.751902][ T5248] kasan_quarantine_reduce+0x150/0x160
[ 105.757360][ T5248] __kasan_slab_alloc+0x2f/0xd0
[ 105.762210][ T5248] slab_post_alloc_hook+0x4c/0x380
[ 105.767331][ T5248] kmem_cache_alloc+0x100/0x290
[ 105.772175][ T5248] getname_flags+0xb5/0x500
[ 105.776673][ T5248] do_sys_openat2+0xdd/0x4b0
[ 105.781259][ T5248] __x64_sys_openat+0x135/0x160
[ 105.786101][ T5248] do_syscall_64+0x4c/0xa0
[ 105.790513][ T5248] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.796405][ T5248]
[ 105.798722][ T5248] Memory state around the buggy address:
[ 105.804342][ T5248] ffff888079321880: fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00 00
[ 105.812396][ T5248] ffff888079321900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc fc
[ 105.820449][ T5248] >ffff888079321980: fc fc fc fc fc fc fa fb fb fb fb fb fb fb fb fb
[ 105.828497][ T5248] ^
[ 105.835682][ T5248] ffff888079321a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc
[ 105.843735][ T5248] ffff888079321a80: fc fc fc fc fc 00 00 00 00 00 00 00 00 00 00 00
[ 105.851785][ T5248] ==================================================================
[ 105.859835][ T5248] Disabling lock debugging due to kernel taint
[ 105.871260][ T5248] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 105.878493][ T5248] CPU: 1 PID: 5248 Comm: syz.0.18 Tainted: G B syzkaller #0
[ 105.887102][ T5248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[ 105.897169][ T5248] Call Trace:
[ 105.900459][ T5248]
[ 105.903412][ T5248] dump_stack_lvl+0x188/0x250
[ 105.908115][ T5248] ? show_regs_print_info+0x20/0x20
[ 105.913333][ T5248] ? load_image+0x400/0x400
[ 105.917854][ T5248] panic+0x2e5/0x810
[ 105.921842][ T5248] ? bpf_jit_dump+0xd0/0xd0
[ 105.926322][ T5248] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 105.932280][ T5248] ? _raw_spin_unlock+0x40/0x40
[ 105.937107][ T5248] ? jfs_readdir+0x129f/0x3cf0
[ 105.941851][ T5248] check_panic_on_warn+0x80/0xa0
[ 105.946792][ T5248] ? jfs_readdir+0x129f/0x3cf0
[ 105.951549][ T5248] end_report+0x6d/0xf0
[ 105.955686][ T5248] kasan_report+0x102/0x130
[ 105.960166][ T5248] ? jfs_readdir+0x129f/0x3cf0
[ 105.964906][ T5248] jfs_readdir+0x129f/0x3cf0
[ 105.969484][ T5248] ? dtInitRoot+0x660/0x660
[ 105.973970][ T5248] ? end_current_label_crit_section+0x14b/0x170
[ 105.980198][ T5248] ? common_file_perm+0x171/0x1c0
[ 105.985211][ T5248] iterate_dir+0x218/0x560
[ 105.989601][ T5248] __se_sys_getdents+0xf2/0x260
[ 105.994431][ T5248] ? __x64_sys_getdents+0x80/0x80
[ 105.999441][ T5248] ? fillonedir+0x4e0/0x4e0
[ 106.003916][ T5248] ? vtime_user_exit+0x2c8/0x3e0
[ 106.008828][ T5248] ? lockdep_hardirqs_on+0x94/0x140
[ 106.013998][ T5248] do_syscall_64+0x4c/0xa0
[ 106.018387][ T5248] ? clear_bhb_loop+0x30/0x80
[ 106.023039][ T5248] ? clear_bhb_loop+0x30/0x80
[ 106.027686][ T5248] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 106.033551][ T5248] RIP: 0033:0x7fc8dc459379
[ 106.037943][ T5248] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 106.057522][ T5248] RSP: 002b:00007fc8dbabd028 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 106.065922][ T5248] RAX: ffffffffffffffda RBX: 00007fc8dc6b4fa0 RCX: 00007fc8dc459379
[ 106.073956][ T5248] RDX: fffffffffffffd90 RSI: 0000000000000000 RDI: 0000000000000004
[ 106.081902][ T5248] RBP: 00007fc8dc4ecd68 R08: 0000000000000000 R09: 0000000000000000
[ 106.089845][ T5248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 106.097790][ T5248] R13: 00007fc8dc6b5038 R14: 00007fc8dc6b4fa0 R15: 00007ffda24929d8
[ 106.105745][ T5248]
[ 106.109053][ T5248] Kernel Offset: disabled
[ 106.113537][ T5248] Rebooting in 86400 seconds..