Warning: Permanently added '[localhost]:42532' (ED25519) to the list of known hosts.
2025/10/07 19:22:37 parsed 1 programs
[  131.606394][ T5567] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  136.817380][ T4671] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  136.822007][ T4671] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  136.843943][ T4671] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  136.850260][ T4671] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  136.856437][ T4671] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  137.288649][ T1046] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.292042][ T1046] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.325551][   T54] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.328534][   T54] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.946298][ T1314] ieee802154 phy0 wpan0: encryption failed: -22
[  137.949192][ T1314] ieee802154 phy1 wpan1: encryption failed: -22
[  138.616786][ T5608] chnl_net:caif_netlink_parms(): no params data found
[  138.674515][ T5608] bridge0: port 1(bridge_slave_0) entered blocking state
[  138.677673][ T5608] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.680805][ T5608] bridge_slave_0: entered allmulticast mode
[  138.685121][ T5608] bridge_slave_0: entered promiscuous mode
[  138.690256][ T5608] bridge0: port 2(bridge_slave_1) entered blocking state
[  138.694127][ T5608] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.697295][ T5608] bridge_slave_1: entered allmulticast mode
[  138.701067][ T5608] bridge_slave_1: entered promiscuous mode
[  138.725312][ T5608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  138.731644][ T5608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  138.752622][ T5608] team0: Port device team_slave_0 added
[  138.757387][ T5608] team0: Port device team_slave_1 added
[  138.776378][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_0
[  138.779493][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  138.792067][ T5608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  138.799366][ T5608] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.802568][ T5608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  138.814392][ T5608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.847592][ T5608] hsr_slave_0: entered promiscuous mode
[  138.850834][ T5608] hsr_slave_1: entered promiscuous mode
[  139.289030][ T5608] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  139.309631][ T5608] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  139.317730][ T5608] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  139.331169][ T5608] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  139.385013][ T5608] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.388099][ T5608] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.391559][ T5608] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.394712][ T5608] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.425798][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.429932][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.526224][ T5608] 8021q: adding VLAN 0 to HW filter on device bond0
[  139.550511][ T5608] 8021q: adding VLAN 0 to HW filter on device team0
[  139.572714][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.576056][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.600646][   T54] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.603896][   T54] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.669176][ T5608] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  139.975161][ T5608] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.035058][ T5608] veth0_vlan: entered promiscuous mode
[  140.048978][ T5608] veth1_vlan: entered promiscuous mode
[  140.097582][ T5608] veth0_macvtap: entered promiscuous mode
[  140.111443][ T5608] veth1_macvtap: entered promiscuous mode
[  140.146089][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_0
[  140.160757][ T5608] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.180822][ T1046] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.196089][ T1046] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.199773][ T1046] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.219073][ T1046] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.398216][ T5608] syz-executor (5608) used greatest stack depth: 19800 bytes left
[  140.451895][ T1042] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.535118][ T1042] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.595451][ T1042] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.657718][ T1042] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.206758][ T1042] bridge_slave_1: left allmulticast mode
[  142.209047][ T1042] bridge_slave_1: left promiscuous mode
[  142.211584][ T1042] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.296925][ T1042] bridge_slave_0: left allmulticast mode
[  142.299442][ T1042] bridge_slave_0: left promiscuous mode
[  142.301988][ T1042] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.074372][ T1042] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  143.079872][ T1042] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  143.093331][ T1042] bond0 (unregistering): Released all slaves
[  143.231826][ T1042] hsr_slave_0: left promiscuous mode
[  143.237311][ T1042] hsr_slave_1: left promiscuous mode
[  143.253181][ T1042] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  143.263693][ T1042] batman_adv: batadv0: Removing interface: batadv_slave_0
[  143.270159][ T1042] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  143.273389][ T1042] batman_adv: batadv0: Removing interface: batadv_slave_1
[  143.368069][ T1042] veth1_macvtap: left promiscuous mode
[  143.370660][ T1042] veth0_macvtap: left promiscuous mode
[  143.397527][ T1042] veth1_vlan: left promiscuous mode
[  143.399979][ T1042] veth0_vlan: left promiscuous mode
[  144.221952][ T1042] team0 (unregistering): Port device team_slave_1 removed
[  144.254416][ T1042] team0 (unregistering): Port device team_slave_0 removed
2025/10/07 19:22:57 executed programs: 0
[  147.220251][ T5359] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  147.227880][ T5359] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  147.231597][ T5359] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  147.237472][ T5359] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  147.240911][ T5359] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  147.442925][ T5758] chnl_net:caif_netlink_parms(): no params data found
[  147.506907][ T5758] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.510105][ T5758] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.513273][ T5758] bridge_slave_0: entered allmulticast mode
[  147.525216][ T5758] bridge_slave_0: entered promiscuous mode
[  147.532909][ T5758] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.536564][ T5758] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.539632][ T5758] bridge_slave_1: entered allmulticast mode
[  147.544898][ T5758] bridge_slave_1: entered promiscuous mode
[  147.568251][ T5758] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.575471][ T5758] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.598011][ T5758] team0: Port device team_slave_0 added
[  147.602565][ T5758] team0: Port device team_slave_1 added
[  147.622338][ T5758] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.628384][ T5758] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  147.639933][ T5758] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.645751][ T5758] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.648611][ T5758] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  147.660492][ T5758] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.697326][ T5758] hsr_slave_0: entered promiscuous mode
[  147.700565][ T5758] hsr_slave_1: entered promiscuous mode
[  148.175367][ T5758] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  148.197347][ T5758] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  148.218645][ T5758] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  148.225735][ T5758] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  148.276740][ T5758] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.279980][ T5758] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.283677][ T5758] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.287148][ T5758] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.397185][ T5758] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.429981][   T69] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.435495][   T69] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.448274][ T5758] 8021q: adding VLAN 0 to HW filter on device team0
[  148.470324][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.473504][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.485514][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.488711][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.530834][ T5758] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  148.555702][ T5758] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  148.845218][ T5758] 8021q: adding VLAN 0 to HW filter on device batadv0
[  148.916191][ T5758] veth0_vlan: entered promiscuous mode
[  148.936590][ T5758] veth1_vlan: entered promiscuous mode
[  148.978170][ T5758] veth0_macvtap: entered promiscuous mode
[  148.994544][ T5758] veth1_macvtap: entered promiscuous mode
[  149.022398][ T5758] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.046434][ T5758] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.068227][   T54] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.072195][   T54] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.098106][   T54] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.103434][   T54] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.184478][   T54] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.188135][   T54] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.236629][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  149.240217][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  149.304886][ T5359] Bluetooth: hci0: command tx timeout
[  149.805153][ T5803] loop0: detected capacity change from 0 to 32768
[  149.819757][ T5803] =======================================================
[  149.819757][ T5803] WARNING: The mand mount option has been deprecated and
[  149.819757][ T5803]          and is ignored by this kernel. Remove the mand
[  149.819757][ T5803]          option from the mount to silence this warning.
[  149.819757][ T5803] =======================================================
[  149.966364][ T5803] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  150.095737][ T5803] ==================================================================
[  150.099341][ T5803] BUG: KASAN: slab-out-of-bounds in crc32c+0xcd/0x480
[  150.102292][ T5803] Read of size 8 at addr ffff88804eaafa00 by task syz.0.17/5803
[  150.106451][ T5803] 
[  150.107560][ T5803] CPU: 0 UID: 0 PID: 5803 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  150.107574][ T5803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.107581][ T5803] Call Trace:
[  150.107588][ T5803]  <TASK>
[  150.107594][ T5803]  dump_stack_lvl+0x189/0x250
[  150.107610][ T5803]  ? __virt_addr_valid+0x1c8/0x5c0
[  150.107625][ T5803]  ? rcu_is_watching+0x15/0xb0
[  150.107637][ T5803]  ? __kasan_check_byte+0x12/0x40
[  150.107653][ T5803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.107663][ T5803]  ? rcu_is_watching+0x15/0xb0
[  150.107673][ T5803]  ? lock_release+0x4b/0x3e0
[  150.107685][ T5803]  ? __virt_addr_valid+0x1c8/0x5c0
[  150.107699][ T5803]  ? __virt_addr_valid+0x4a5/0x5c0
[  150.107713][ T5803]  print_report+0xca/0x240
[  150.107726][ T5803]  ? crc32c+0xcd/0x480
[  150.107738][ T5803]  kasan_report+0x118/0x150
[  150.107748][ T5803]  ? crc32c+0xcd/0x480
[  150.107760][ T5803]  crc32c+0xcd/0x480
[  150.107771][ T5803]  ? xlog_cksum+0x6a/0xf0
[  150.107784][ T5803]  xlog_cksum+0x91/0xf0
[  150.107797][ T5803]  xlog_recover_process+0x90/0x2f0
[  150.107810][ T5803]  xlog_do_recovery_pass+0x9cd/0xc30
[  150.107824][ T5803]  ? __pfx_xlog_do_recovery_pass+0x10/0x10
[  150.107838][ T5803]  ? kfree+0x19a/0x6d0
[  150.107847][ T5803]  xlog_verify_head+0x136/0x440
[  150.107855][ T5803]  xlog_find_tail+0x5ca/0x840
[  150.107869][ T5803]  xlog_recover+0x4b/0x3e0
[  150.107884][ T5803]  xfs_log_mount+0x253/0x3e0
[  150.107895][ T5803]  xfs_mountfs+0xe5e/0x22c0
[  150.107912][ T5803]  ? __pfx_xfs_mountfs+0x10/0x10
[  150.107927][ T5803]  ? trace_xfs_inode_timestamp_range+0x84/0x200
[  150.107943][ T5803]  xfs_fs_fill_super+0x11b3/0x1600
[  150.107957][ T5803]  get_tree_bdev_flags+0x40e/0x4d0
[  150.107971][ T5803]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  150.107984][ T5803]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  150.108005][ T5803]  vfs_get_tree+0x92/0x2b0
[  150.108018][ T5803]  do_new_mount+0x302/0xa10
[  150.108033][ T5803]  ? __pfx_do_new_mount+0x10/0x10
[  150.108045][ T5803]  ? kmem_cache_free+0x19b/0x690
[  150.108060][ T5803]  __se_sys_mount+0x313/0x410
[  150.108074][ T5803]  ? __pfx___se_sys_mount+0x10/0x10
[  150.108088][ T5803]  ? do_syscall_64+0xbe/0xfa0
[  150.108143][ T5803]  ? __x64_sys_mount+0x20/0xc0
[  150.108157][ T5803]  do_syscall_64+0xfa/0xfa0
[  150.108169][ T5803]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.108180][ T5803]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.108188][ T5803]  ? clear_bhb_loop+0x60/0xb0
[  150.108196][ T5803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.108203][ T5803] RIP: 0033:0x7f05f059034a
[  150.108212][ T5803] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.108218][ T5803] RSP: 002b:00007f05f14d3e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  150.108227][ T5803] RAX: ffffffffffffffda RBX: 00007f05f14d3ef0 RCX: 00007f05f059034a
[  150.108232][ T5803] RDX: 0000200000000500 RSI: 0000200000000200 RDI: 00007f05f14d3eb0
[  150.108237][ T5803] RBP: 0000200000000500 R08: 00007f05f14d3ef0 R09: 0000000002218a5d
[  150.108242][ T5803] R10: 0000000002218a5d R11: 0000000000000246 R12: 0000200000000200
[  150.108246][ T5803] R13: 00007f05f14d3eb0 R14: 00000000000096bf R15: 0000200000000380
[  150.108255][ T5803]  </TASK>
[  150.108258][ T5803] 
[  150.245512][ T5803] Allocated by task 5803:
[  150.247383][ T5803]  kasan_save_track+0x3e/0x80
[  150.249443][ T5803]  __kasan_kmalloc+0x93/0xb0
[  150.251519][ T5803]  __kvmalloc_node_noprof+0x5cd/0x910
[  150.253853][ T5803]  xlog_do_recovery_pass+0x106/0xc30
[  150.256127][ T5803]  xlog_verify_head+0x136/0x440
[  150.258246][ T5803]  xlog_find_tail+0x5ca/0x840
[  150.260281][ T5803]  xlog_recover+0x4b/0x3e0
[  150.262187][ T5803]  xfs_log_mount+0x253/0x3e0
[  150.264035][ T5803]  xfs_mountfs+0xe5e/0x22c0
[  150.266039][ T5803]  xfs_fs_fill_super+0x11b3/0x1600
[  150.268193][ T5803]  get_tree_bdev_flags+0x40e/0x4d0
[  150.270353][ T5803]  vfs_get_tree+0x92/0x2b0
[  150.272377][ T5803]  do_new_mount+0x302/0xa10
[  150.274395][ T5803]  __se_sys_mount+0x313/0x410
[  150.276385][ T5803]  do_syscall_64+0xfa/0xfa0
[  150.278206][ T5803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.280702][ T5803] 
[  150.281728][ T5803] The buggy address belongs to the object at ffff88804eaaf800
[  150.281728][ T5803]  which belongs to the cache kmalloc-512 of size 512
[  150.287576][ T5803] The buggy address is located 0 bytes to the right of
[  150.287576][ T5803]  allocated 512-byte region [ffff88804eaaf800, ffff88804eaafa00)
[  150.293553][ T5803] 
[  150.294618][ T5803] The buggy address belongs to the physical page:
[  150.297316][ T5803] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4eaae
[  150.301299][ T5803] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  150.304899][ T5803] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  150.308182][ T5803] page_type: f5(slab)
[  150.309939][ T5803] raw: 04fff00000000040 ffff88801a441c80 ffffea0000fc1e80 0000000000000002
[  150.313551][ T5803] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  150.317222][ T5803] head: 04fff00000000040 ffff88801a441c80 ffffea0000fc1e80 0000000000000002
[  150.320899][ T5803] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  150.324628][ T5803] head: 04fff00000000001 ffffea00013aab81 00000000ffffffff 00000000ffffffff
[  150.328283][ T5803] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  150.331983][ T5803] page dumped because: kasan: bad access detected
[  150.334767][ T5803] page_owner tracks the page as allocated
[  150.337218][ T5803] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5758, tgid 5758 (syz-executor), ts 148526623126, free_ts 143792161476
[  150.345357][ T5803]  post_alloc_hook+0x240/0x2a0
[  150.347502][ T5803]  get_page_from_freelist+0x2365/0x2440
[  150.349854][ T5803]  __alloc_frozen_pages_noprof+0x181/0x370
[  150.352427][ T5803]  alloc_pages_mpol+0x232/0x4a0
[  150.354508][ T5803]  allocate_slab+0x96/0x3a0
[  150.356495][ T5803]  ___slab_alloc+0xe94/0x1920
[  150.358503][ T5803]  __slab_alloc+0x65/0x100
[  150.360465][ T5803]  __kmalloc_noprof+0x471/0x7f0
[  150.362599][ T5803]  fib6_info_alloc+0x30/0xf0
[  150.364689][ T5803]  ip6_route_info_create+0x142/0x860
[  150.367006][ T5803]  ip6_route_add+0x49/0x1b0
[  150.369073][ T5803]  addrconf_permanent_addr+0x67f/0x9d0
[  150.371494][ T5803]  addrconf_notify+0x887/0x1010
[  150.373618][ T5803]  notifier_call_chain+0x1b6/0x3e0
[  150.375888][ T5803]  __dev_notify_flags+0x18d/0x2e0
[  150.378112][ T5803]  netif_change_flags+0xe8/0x1a0
[  150.380321][ T5803] page last free pid 5683 tgid 5683 stack trace:
[  150.383237][ T5803]  __free_frozen_pages+0xbc4/0xd30
[  150.385551][ T5803]  vfree+0x25a/0x400
[  150.387314][ T5803]  kcov_close+0x28/0x50
[  150.389174][ T5803]  __fput+0x44c/0xa70
[  150.390918][ T5803]  task_work_run+0x1d4/0x260
[  150.392944][ T5803]  do_exit+0x6b5/0x2300
[  150.394845][ T5803]  do_group_exit+0x21c/0x2d0
[  150.396809][ T5803]  get_signal+0x1285/0x1340
[  150.398856][ T5803]  arch_do_signal_or_restart+0xa0/0x790
[  150.401357][ T5803]  exit_to_user_mode_loop+0x72/0x130
[  150.403742][ T5803]  do_syscall_64+0x2bd/0xfa0
[  150.405790][ T5803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.408504][ T5803] 
[  150.409584][ T5803] Memory state around the buggy address:
[  150.412109][ T5803]  ffff88804eaaf900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  150.415505][ T5803]  ffff88804eaaf980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  150.418996][ T5803] >ffff88804eaafa00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  150.422544][ T5803]                    ^
[  150.424342][ T5803]  ffff88804eaafa80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  150.427856][ T5803]  ffff88804eaafb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  150.431172][ T5803] ==================================================================
[  150.740320][ T5803] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  150.743628][ T5803] CPU: 0 UID: 0 PID: 5803 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  150.747927][ T5803] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  150.752882][ T5803] Call Trace:
[  150.754356][ T5803]  <TASK>
[  150.755682][ T5803]  dump_stack_lvl+0x99/0x250
[  150.757665][ T5803]  ? __asan_memcpy+0x40/0x70
[  150.759652][ T5803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.762026][ T5803]  ? __pfx__printk+0x10/0x10
[  150.764202][ T5803]  vpanic+0x237/0x6d0
[  150.766016][ T5803]  ? __pfx_vpanic+0x10/0x10
[  150.768061][ T5803]  ? preempt_schedule_common+0x83/0xd0
[  150.770487][ T5803]  ? preempt_schedule+0xae/0xc0
[  150.772602][ T5803]  panic+0xb9/0xc0
[  150.774274][ T5803]  ? __pfx_panic+0x10/0x10
[  150.776267][ T5803]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  150.779073][ T5803]  ? crc32c+0xcd/0x480
[  150.780860][ T5803]  check_panic_on_warn+0x89/0xb0
[  150.783080][ T5803]  ? crc32c+0xcd/0x480
[  150.784919][ T5803]  end_report+0x78/0x160
[  150.786858][ T5803]  kasan_report+0x129/0x150
[  150.788879][ T5803]  ? crc32c+0xcd/0x480
[  150.790779][ T5803]  crc32c+0xcd/0x480
[  150.792493][ T5803]  ? xlog_cksum+0x6a/0xf0
[  150.794370][ T5803]  xlog_cksum+0x91/0xf0
[  150.796135][ T5803]  xlog_recover_process+0x90/0x2f0
[  150.798355][ T5803]  xlog_do_recovery_pass+0x9cd/0xc30
[  150.800577][ T5803]  ? __pfx_xlog_do_recovery_pass+0x10/0x10
[  150.803112][ T5803]  ? kfree+0x19a/0x6d0
[  150.804804][ T5803]  xlog_verify_head+0x136/0x440
[  150.806912][ T5803]  xlog_find_tail+0x5ca/0x840
[  150.808956][ T5803]  xlog_recover+0x4b/0x3e0
[  150.810927][ T5803]  xfs_log_mount+0x253/0x3e0
[  150.812896][ T5803]  xfs_mountfs+0xe5e/0x22c0
[  150.814868][ T5803]  ? __pfx_xfs_mountfs+0x10/0x10
[  150.817049][ T5803]  ? trace_xfs_inode_timestamp_range+0x84/0x200
[  150.819750][ T5803]  xfs_fs_fill_super+0x11b3/0x1600
[  150.821987][ T5803]  get_tree_bdev_flags+0x40e/0x4d0
[  150.824217][ T5803]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  150.826559][ T5803]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  150.829075][ T5803]  vfs_get_tree+0x92/0x2b0
[  150.831041][ T5803]  do_new_mount+0x302/0xa10
[  150.832990][ T5803]  ? __pfx_do_new_mount+0x10/0x10
[  150.835109][ T5803]  ? kmem_cache_free+0x19b/0x690
[  150.837226][ T5803]  __se_sys_mount+0x313/0x410
[  150.839215][ T5803]  ? __pfx___se_sys_mount+0x10/0x10
[  150.841507][ T5803]  ? do_syscall_64+0xbe/0xfa0
[  150.843633][ T5803]  ? __x64_sys_mount+0x20/0xc0
[  150.845700][ T5803]  do_syscall_64+0xfa/0xfa0
[  150.847642][ T5803]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.849891][ T5803]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.852514][ T5803]  ? clear_bhb_loop+0x60/0xb0
[  150.854540][ T5803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.857060][ T5803] RIP: 0033:0x7f05f059034a
[  150.859023][ T5803] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.867602][ T5803] RSP: 002b:00007f05f14d3e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  150.871255][ T5803] RAX: ffffffffffffffda RBX: 00007f05f14d3ef0 RCX: 00007f05f059034a
[  150.874707][ T5803] RDX: 0000200000000500 RSI: 0000200000000200 RDI: 00007f05f14d3eb0
[  150.878001][ T5803] RBP: 0000200000000500 R08: 00007f05f14d3ef0 R09: 0000000002218a5d
[  150.881458][ T5803] R10: 0000000002218a5d R11: 0000000000000246 R12: 0000200000000200
[  150.884977][ T5803] R13: 00007f05f14d3eb0 R14: 00000000000096bf R15: 0000200000000380
[  150.888490][ T5803]  </TASK>
[  150.890193][ T5803] Kernel Offset: disabled
[  150.892176][ T5803] Rebooting in 86400 seconds..