Warning: Permanently added '[localhost]:44089' (ED25519) to the list of known hosts.
2026/01/22 19:08:31 parsed 1 programs
[  134.229629][ T5578] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  140.358301][ T5605] chnl_net:caif_netlink_parms(): no params data found
[  140.492941][ T5605] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.496116][ T5605] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.500248][ T5605] bridge_slave_0: entered allmulticast mode
[  140.504066][ T5605] bridge_slave_0: entered promiscuous mode
[  140.508955][ T5605] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.512120][ T5605] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.515274][ T5605] bridge_slave_1: entered allmulticast mode
[  140.519522][ T5605] bridge_slave_1: entered promiscuous mode
[  140.539762][ T5605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.545647][ T5605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.566416][ T5605] team0: Port device team_slave_0 added
[  140.571347][ T5605] team0: Port device team_slave_1 added
[  140.588976][ T5605] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.592009][ T5605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.603968][ T5605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.614273][ T5605] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.617220][ T5605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.628946][ T5605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.661173][ T5605] hsr_slave_0: entered promiscuous mode
[  140.664329][ T5605] hsr_slave_1: entered promiscuous mode
[  141.152712][ T5605] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  141.164459][ T5605] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  141.189913][ T5605] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  141.220563][ T5605] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  141.290768][ T5605] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.294339][ T5605] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.297842][ T5605] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.301187][ T5605] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.349863][ T4648] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.353767][ T4648] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.454547][ T5605] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.483579][ T5605] 8021q: adding VLAN 0 to HW filter on device team0
[  141.497377][ T4648] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.500445][ T4648] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.521900][ T4648] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.525038][ T4648] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.824865][ T5605] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.896998][ T5605] veth0_vlan: entered promiscuous mode
[  141.920962][ T5605] veth1_vlan: entered promiscuous mode
[  141.960966][ T5605] veth0_macvtap: entered promiscuous mode
[  141.972568][ T5605] veth1_macvtap: entered promiscuous mode
[  142.001489][ T5605] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.021487][ T5605] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.040684][ T3049] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.044568][ T3049] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.069131][ T3049] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.073022][ T3049] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.321213][  T722] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.416017][  T722] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.500710][  T722] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.609448][  T722] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.999492][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  143.002654][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  144.144674][  T722] bridge_slave_1: left allmulticast mode
[  144.147257][  T722] bridge_slave_1: left promiscuous mode
[  144.176334][  T722] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.215775][  T722] bridge_slave_0: left allmulticast mode
[  144.218354][  T722] bridge_slave_0: left promiscuous mode
[  144.228733][  T722] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.422316][   T47] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  144.426304][   T47] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  144.437083][   T47] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  144.442005][   T47] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  144.445343][   T47] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  144.648063][  T722] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  144.653961][  T722] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  144.659599][  T722] bond0 (unregistering): Released all slaves
[  144.759624][  T722] hsr_slave_0: left promiscuous mode
[  144.767621][  T722] hsr_slave_1: left promiscuous mode
[  144.771205][  T722] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  144.774628][  T722] batman_adv: batadv0: Removing interface: batadv_slave_0
[  144.790165][  T722] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  144.793443][  T722] batman_adv: batadv0: Removing interface: batadv_slave_1
[  144.817414][  T722] veth1_macvtap: left promiscuous mode
[  144.830844][  T722] veth0_macvtap: left promiscuous mode
[  144.833392][  T722] veth1_vlan: left promiscuous mode
[  144.835814][  T722] veth0_vlan: left promiscuous mode
[  145.359535][  T722] team0 (unregistering): Port device team_slave_1 removed
[  145.399798][  T722] team0 (unregistering): Port device team_slave_0 removed
[  146.861010][ T1815] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.864398][ T1815] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.924448][ T1815] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.927844][ T1815] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/22 19:08:49 executed programs: 0
[  148.791639][ T4688] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  148.801096][ T4688] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  148.804563][ T4688] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  148.808203][ T4688] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  148.811809][ T4688] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  148.981777][ T5776] chnl_net:caif_netlink_parms(): no params data found
[  149.036513][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.039935][ T5776] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.043025][ T5776] bridge_slave_0: entered allmulticast mode
[  149.046928][ T5776] bridge_slave_0: entered promiscuous mode
[  149.052671][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.056501][ T5776] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.060707][ T5776] bridge_slave_1: entered allmulticast mode
[  149.064262][ T5776] bridge_slave_1: entered promiscuous mode
[  149.086094][ T5776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.092599][ T5776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.115167][ T5776] team0: Port device team_slave_0 added
[  149.120084][ T5776] team0: Port device team_slave_1 added
[  149.138961][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.142014][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.156610][ T5776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.163814][ T5776] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.167018][ T5776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.179704][ T5776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.210798][ T5776] hsr_slave_0: entered promiscuous mode
[  149.214043][ T5776] hsr_slave_1: entered promiscuous mode
[  149.620450][ T5776] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  149.629583][ T5776] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  149.643566][ T5776] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  149.664156][ T5776] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  149.709258][ T5776] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.712376][ T5776] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.715787][ T5776] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.719027][ T5776] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.840876][ T5776] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.860384][ T4023] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.864029][ T4023] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.883797][ T5776] 8021q: adding VLAN 0 to HW filter on device team0
[  149.903756][ T4023] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.908864][ T4023] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.962488][ T4023] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.965751][ T4023] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.243233][ T5776] 8021q: adding VLAN 0 to HW filter on device batadv0
[  150.313629][ T5776] veth0_vlan: entered promiscuous mode
[  150.331429][ T5776] veth1_vlan: entered promiscuous mode
[  150.381585][ T5776] veth0_macvtap: entered promiscuous mode
[  150.392163][ T5776] veth1_macvtap: entered promiscuous mode
[  150.424731][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.443882][ T5776] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.463846][ T1815] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.473327][ T1815] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.477248][ T1815] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.495290][ T1815] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.603983][ T3049] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.607561][ T3049] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.680894][ T3049] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.684167][ T3049] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.828713][ T4688] Bluetooth: hci0: command tx timeout
[  151.127645][ T5823] loop0: detected capacity change from 0 to 32768
[  151.190802][ T5823] ==================================================================
[  151.194295][ T5823] BUG: KASAN: slab-use-after-free in diWrite+0x1209/0x1f40
[  151.197552][ T5823] Write of size 32 at addr ffff88804db850c0 by task syz.0.17/5823
[  151.201873][ T5823] 
[  151.203161][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  151.203174][ T5823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  151.203180][ T5823] Call Trace:
[  151.203188][ T5823]  <TASK>
[  151.203193][ T5823]  dump_stack_lvl+0xe8/0x150
[  151.203211][ T5823]  print_report+0xba/0x230
[  151.203221][ T5823]  ? diWrite+0x1209/0x1f40
[  151.203233][ T5823]  kasan_report+0x117/0x150
[  151.203245][ T5823]  ? diWrite+0x1209/0x1f40
[  151.203257][ T5823]  kasan_check_range+0x264/0x2c0
[  151.203267][ T5823]  ? diWrite+0x1209/0x1f40
[  151.203277][ T5823]  __asan_memcpy+0x40/0x70
[  151.203287][ T5823]  diWrite+0x1209/0x1f40
[  151.203296][ T5823]  txCommit+0x869/0x5410
[  151.203304][ T5823]  ? __pfx_add_index+0x10/0x10
[  151.203314][ T5823]  ? __pfx_txCommit+0x10/0x10
[  151.203322][ T5823]  ? rcu_is_watching+0x15/0xb0
[  151.203330][ T5823]  ? __mark_inode_dirty+0x45c/0x1320
[  151.203345][ T5823]  add_missing_indices+0x8cb/0xcd0
[  151.203359][ T5823]  ? __pfx_add_missing_indices+0x10/0x10
[  151.203372][ T5823]  ? alloc_pages_noprof+0xbd/0x190
[  151.203384][ T5823]  jfs_readdir+0x1e31/0x3c10
[  151.203397][ T5823]  ? check_noncircular+0xc0/0x150
[  151.203415][ T5823]  ? __pfx_jfs_readdir+0x10/0x10
[  151.203433][ T5823]  ? down_write+0x16d/0x200
[  151.203494][ T5823]  ? __pfx_down_write+0x10/0x10
[  151.203507][ T5823]  ? wrap_directory_iterator+0x52/0xe0
[  151.203521][ T5823]  ? __pfx_jfs_readdir+0x10/0x10
[  151.203534][ T5823]  wrap_directory_iterator+0x96/0xe0
[  151.203547][ T5823]  iterate_dir+0x399/0x570
[  151.203560][ T5823]  __se_sys_getdents64+0xf1/0x280
[  151.203574][ T5823]  ? __pfx___se_sys_getdents64+0x10/0x10
[  151.203587][ T5823]  ? __pfx_filldir64+0x10/0x10
[  151.203599][ T5823]  ? rcu_is_watching+0x15/0xb0
[  151.203612][ T5823]  do_syscall_64+0xe2/0xf80
[  151.203626][ T5823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.203635][ T5823]  ? trace_irq_disable+0x37/0x100
[  151.203648][ T5823]  ? clear_bhb_loop+0x60/0xb0
[  151.203659][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.203668][ T5823] RIP: 0033:0x7f59c699a679
[  151.203685][ T5823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  151.203692][ T5823] RSP: 002b:00007f59c7845028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  151.203703][ T5823] RAX: ffffffffffffffda RBX: 00007f59c6c05fa0 RCX: 00007f59c699a679
[  151.203709][ T5823] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000005
[  151.203715][ T5823] RBP: 00007f59c6a2dee0 R08: 0000000000000000 R09: 0000000000000000
[  151.203721][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  151.203726][ T5823] R13: 00007f59c6c06038 R14: 00007f59c6c05fa0 R15: 00007ffe0c0bd868
[  151.203736][ T5823]  </TASK>
[  151.203740][ T5823] 
[  151.324448][ T5823] Allocated by task 5814:
[  151.326324][ T5823]  kasan_save_track+0x3e/0x80
[  151.328422][ T5823]  __kasan_slab_alloc+0x6c/0x80
[  151.330588][ T5823]  kmem_cache_alloc_noprof+0x370/0x6e0
[  151.332951][ T5823]  vm_area_dup+0x2b/0x680
[  151.334885][ T5823]  dup_mmap+0x896/0x1bb0
[  151.336774][ T5823]  copy_mm+0x13b/0x4b0
[  151.338495][ T5823]  copy_process+0x166e/0x3980
[  151.340403][ T5823]  kernel_clone+0x248/0x870
[  151.342395][ T5823]  __x64_sys_clone+0x1b6/0x230
[  151.344460][ T5823]  do_syscall_64+0xe2/0xf80
[  151.346511][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.349050][ T5823] 
[  151.350134][ T5823] Freed by task 15:
[  151.351803][ T5823]  kasan_save_track+0x3e/0x80
[  151.353791][ T5823]  kasan_save_free_info+0x46/0x50
[  151.355812][ T5823]  __kasan_slab_free+0x5c/0x80
[  151.357949][ T5823]  slab_free_after_rcu_debug+0x127/0x250
[  151.360239][ T5823]  rcu_core+0xc9e/0x1750
[  151.361926][ T5823]  handle_softirqs+0x22a/0x7c0
[  151.363936][ T5823]  run_ksoftirqd+0x36/0x60
[  151.365967][ T5823]  smpboot_thread_fn+0x541/0xa50
[  151.368282][ T5823]  kthread+0x726/0x8b0
[  151.370108][ T5823]  ret_from_fork+0x51b/0xa40
[  151.372143][ T5823]  ret_from_fork_asm+0x1a/0x30
[  151.374202][ T5823] 
[  151.375284][ T5823] Last potentially related work creation:
[  151.377664][ T5823]  kasan_save_stack+0x3e/0x60
[  151.379724][ T5823]  kasan_record_aux_stack+0xbd/0xd0
[  151.382003][ T5823]  kmem_cache_free+0x46e/0x610
[  151.384153][ T5823]  exit_mmap+0x544/0xb30
[  151.386123][ T5823]  __mmput+0x118/0x430
[  151.388109][ T5823]  exit_mm+0x168/0x220
[  151.390024][ T5823]  do_exit+0x62e/0x2310
[  151.391818][ T5823]  do_group_exit+0x21b/0x2d0
[  151.393790][ T5823]  __x64_sys_exit_group+0x3f/0x40
[  151.396086][ T5823]  __pfx_syscall_get_nr+0x0/0x10
[  151.398362][ T5823]  do_syscall_64+0xe2/0xf80
[  151.400427][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.403069][ T5823] 
[  151.404169][ T5823] The buggy address belongs to the object at ffff88804db85000
[  151.404169][ T5823]  which belongs to the cache vm_area_struct of size 256
[  151.410209][ T5823] The buggy address is located 192 bytes inside of
[  151.410209][ T5823]  freed 256-byte region [ffff88804db85000, ffff88804db85100)
[  151.416372][ T5823] 
[  151.417589][ T5823] The buggy address belongs to the physical page:
[  151.420546][ T5823] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4db85
[  151.424590][ T5823] memcg:ffff88803926fa81
[  151.426814][ T5823] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  151.430003][ T5823] page_type: f5(slab)
[  151.431699][ T5823] raw: 04fff00000000000 ffff88803040ab40 dead000000000122 0000000000000000
[  151.435427][ T5823] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff88803926fa81
[  151.439145][ T5823] page dumped because: kasan: bad access detected
[  151.441794][ T5823] page_owner tracks the page as allocated
[  151.444377][ T5823] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5814, tgid 5814 (dhcpcd-run-hook), ts 150457053178, free_ts 148146585252
[  151.453220][ T5823]  post_alloc_hook+0x228/0x280
[  151.455269][ T5823]  get_page_from_freelist+0x24dc/0x2580
[  151.457736][ T5823]  __alloc_frozen_pages_noprof+0x18d/0x380
[  151.460334][ T5823]  alloc_pages_mpol+0x232/0x4a0
[  151.462437][ T5823]  allocate_slab+0x86/0x3a0
[  151.464325][ T5823]  ___slab_alloc+0xd82/0x1760
[  151.466338][ T5823]  __kmem_cache_alloc_bulk+0x1ab/0x4d0
[  151.468633][ T5823]  __pcs_replace_empty_main+0x296/0x560
[  151.471072][ T5823]  kmem_cache_alloc_noprof+0x454/0x6e0
[  151.473356][ T5823]  vm_area_dup+0x2b/0x680
[  151.475161][ T5823]  dup_mmap+0x896/0x1bb0
[  151.476867][ T5823]  copy_mm+0x13b/0x4b0
[  151.478651][ T5823]  copy_process+0x166e/0x3980
[  151.480712][ T5823]  kernel_clone+0x248/0x870
[  151.482791][ T5823]  __x64_sys_clone+0x1b6/0x230
[  151.484941][ T5823]  do_syscall_64+0xe2/0xf80
[  151.487014][ T5823] page last free pid 5753 tgid 5753 stack trace:
[  151.489818][ T5823]  __free_frozen_pages+0xbb0/0xd10
[  151.492095][ T5823]  vfree+0x25a/0x400
[  151.493817][ T5823]  kcov_close+0x28/0x50
[  151.495693][ T5823]  __fput+0x44f/0xa70
[  151.497493][ T5823]  task_work_run+0x1d9/0x270
[  151.499544][ T5823]  do_exit+0x69b/0x2310
[  151.501326][ T5823]  do_group_exit+0x21b/0x2d0
[  151.503384][ T5823]  get_signal+0x1284/0x1330
[  151.505291][ T5823]  arch_do_signal_or_restart+0xbc/0x830
[  151.507684][ T5823]  exit_to_user_mode_loop+0x86/0x480
[  151.509790][ T5823]  do_syscall_64+0x2b7/0xf80
[  151.511890][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.514469][ T5823] 
[  151.515550][ T5823] Memory state around the buggy address:
[  151.517974][ T5823]  ffff88804db84f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  151.521282][ T5823]  ffff88804db85000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  151.524827][ T5823] >ffff88804db85080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  151.528666][ T5823]                                            ^
[  151.531699][ T5823]  ffff88804db85100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  151.534988][ T5823]  ffff88804db85180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  151.538657][ T5823] ==================================================================
[  151.715982][ T5823] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  151.719186][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  151.723026][ T5823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  151.727370][ T5823] Call Trace:
[  151.728792][ T5823]  <TASK>
[  151.730097][ T5823]  vpanic+0x1e0/0x670
[  151.731960][ T5823]  panic+0xc5/0xd0
[  151.733618][ T5823]  ? __pfx_panic+0x10/0x10
[  151.735613][ T5823]  ? preempt_schedule_common+0x82/0xd0
[  151.738015][ T5823]  ? diWrite+0x1209/0x1f40
[  151.739710][ T5823]  check_panic_on_warn+0x89/0xb0
[  151.741746][ T5823]  ? diWrite+0x1209/0x1f40
[  151.743611][ T5823]  end_report+0x6f/0x140
[  151.745318][ T5823]  kasan_report+0x128/0x150
[  151.747362][ T5823]  ? diWrite+0x1209/0x1f40
[  151.749270][ T5823]  kasan_check_range+0x264/0x2c0
[  151.751416][ T5823]  ? diWrite+0x1209/0x1f40
[  151.753383][ T5823]  __asan_memcpy+0x40/0x70
[  151.755339][ T5823]  diWrite+0x1209/0x1f40
[  151.757324][ T5823]  txCommit+0x869/0x5410
[  151.759298][ T5823]  ? __pfx_add_index+0x10/0x10
[  151.761464][ T5823]  ? __pfx_txCommit+0x10/0x10
[  151.763455][ T5823]  ? rcu_is_watching+0x15/0xb0
[  151.765495][ T5823]  ? __mark_inode_dirty+0x45c/0x1320
[  151.767867][ T5823]  add_missing_indices+0x8cb/0xcd0
[  151.770025][ T5823]  ? __pfx_add_missing_indices+0x10/0x10
[  151.772284][ T5823]  ? alloc_pages_noprof+0xbd/0x190
[  151.774443][ T5823]  jfs_readdir+0x1e31/0x3c10
[  151.776429][ T5823]  ? check_noncircular+0xc0/0x150
[  151.778463][ T5823]  ? __pfx_jfs_readdir+0x10/0x10
[  151.780593][ T5823]  ? down_write+0x16d/0x200
[  151.782576][ T5823]  ? __pfx_down_write+0x10/0x10
[  151.784672][ T5823]  ? wrap_directory_iterator+0x52/0xe0
[  151.786965][ T5823]  ? __pfx_jfs_readdir+0x10/0x10
[  151.789094][ T5823]  wrap_directory_iterator+0x96/0xe0
[  151.791324][ T5823]  iterate_dir+0x399/0x570
[  151.793221][ T5823]  __se_sys_getdents64+0xf1/0x280
[  151.795339][ T5823]  ? __pfx___se_sys_getdents64+0x10/0x10
[  151.797710][ T5823]  ? __pfx_filldir64+0x10/0x10
[  151.799705][ T5823]  ? rcu_is_watching+0x15/0xb0
[  151.801665][ T5823]  do_syscall_64+0xe2/0xf80
[  151.803504][ T5823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.806001][ T5823]  ? trace_irq_disable+0x37/0x100
[  151.808170][ T5823]  ? clear_bhb_loop+0x60/0xb0
[  151.810163][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.812702][ T5823] RIP: 0033:0x7f59c699a679
[  151.814547][ T5823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  151.822342][ T5823] RSP: 002b:00007f59c7845028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  151.825685][ T5823] RAX: ffffffffffffffda RBX: 00007f59c6c05fa0 RCX: 00007f59c699a679
[  151.829033][ T5823] RDX: 0000000000001000 RSI: 0000200000000f80 RDI: 0000000000000005
[  151.832384][ T5823] RBP: 00007f59c6a2dee0 R08: 0000000000000000 R09: 0000000000000000
[  151.835760][ T5823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  151.839117][ T5823] R13: 00007f59c6c06038 R14: 00007f59c6c05fa0 R15: 00007ffe0c0bd868
[  151.842328][ T5823]  </TASK>
[  151.843927][ T5823] Kernel Offset: disabled
[  151.845760][ T5823] Rebooting in 86400 seconds..