Warning: Permanently added '10.128.0.123' (ED25519) to the list of known hosts.
2026/01/15 09:47:15 parsed 1 programs
[ 53.630109][ T4187] cgroup: Unknown subsys name 'net'
[ 53.790785][ T4187] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 55.013104][ T4187] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 56.377276][ T4199] chnl_net:caif_netlink_parms(): no params data found
[ 56.423433][ T4199] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.431037][ T4199] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.439105][ T4199] device bridge_slave_0 entered promiscuous mode
[ 56.447734][ T4199] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.454816][ T4199] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.463113][ T4199] device bridge_slave_1 entered promiscuous mode
[ 56.484305][ T4199] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 56.494907][ T4199] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 56.516608][ T4199] team0: Port device team_slave_0 added
[ 56.524373][ T4199] team0: Port device team_slave_1 added
[ 56.542976][ T4199] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 56.549978][ T4199] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.576118][ T4199] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 56.588352][ T4199] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 56.595671][ T4199] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 56.622358][ T4199] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 56.652574][ T4199] device hsr_slave_0 entered promiscuous mode
[ 56.659711][ T4199] device hsr_slave_1 entered promiscuous mode
[ 56.743656][ T4199] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 56.753711][ T4199] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 56.762823][ T4199] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 56.774192][ T4199] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 56.797717][ T4199] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.804867][ T4199] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 56.812898][ T4199] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.819985][ T4199] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.859703][ T4199] 8021q: adding VLAN 0 to HW filter on device bond0
[ 56.873350][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 56.883298][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 56.893069][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 56.901879][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 56.916177][ T4199] 8021q: adding VLAN 0 to HW filter on device team0
[ 56.929697][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 56.939429][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 56.946682][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 56.966256][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 56.977378][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 56.984448][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 57.011457][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 57.021457][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 57.030466][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 57.040002][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 57.050748][ T4199] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 57.059554][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 57.175433][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 57.182966][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 57.198557][ T4199] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 57.220921][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 57.242812][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 57.252725][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 57.262250][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 57.274767][ T4199] device veth0_vlan entered promiscuous mode
[ 57.289814][ T4199] device veth1_vlan entered promiscuous mode
[ 57.313806][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 57.323823][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 57.333908][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 57.346035][ T4199] device veth0_macvtap entered promiscuous mode
[ 57.357083][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 57.366690][ T4199] device veth1_macvtap entered promiscuous mode
[ 57.388440][ T4199] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 57.397715][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 57.407925][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 57.420504][ T4199] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 57.428420][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 57.437756][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 57.450301][ T4199] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.460199][ T4199] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.479388][ T4199] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 57.488633][ T4199] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 58.112511][ T1279] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 60.411278][ T1279] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.672501][ T1279] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 62.731179][ T1279] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 63.794227][ T1279] device hsr_slave_0 left promiscuous mode
[ 63.806896][ T1279] device hsr_slave_1 left promiscuous mode
[ 63.813831][ T1279] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 63.833933][ T1279] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 63.844111][ T1279] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 63.851932][ T1279] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 63.861080][ T1279] device bridge_slave_1 left promiscuous mode
[ 63.868648][ T1279] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.886460][ T1279] device bridge_slave_0 left promiscuous mode
[ 63.892842][ T1279] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.914785][ T1279] device veth1_macvtap left promiscuous mode
[ 63.922229][ T1279] device veth0_macvtap left promiscuous mode
[ 63.929754][ T1279] device veth1_vlan left promiscuous mode
[ 63.937376][ T1279] device veth0_vlan left promiscuous mode
[ 64.099483][ T1279] team0 (unregistering): Port device team_slave_1 removed
[ 64.111094][ T1279] team0 (unregistering): Port device team_slave_0 removed
[ 64.122574][ T1279] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 64.135938][ T1279] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 64.181996][ T1279] bond0 (unregistering): Released all slaves
[ 64.582931][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 64.602944][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 64.627915][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 64.676215][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 64.684239][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 64.706732][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
2026/01/15 09:47:29 executed programs: 0
[ 66.183989][ T4371] chnl_net:caif_netlink_parms(): no params data found
[ 66.441515][ T4371] bridge0: port 1(bridge_slave_0) entered blocking state
[ 66.448968][ T4371] bridge0: port 1(bridge_slave_0) entered disabled state
[ 66.457335][ T4371] device bridge_slave_0 entered promiscuous mode
[ 66.478829][ T4371] bridge0: port 2(bridge_slave_1) entered blocking state
[ 66.486232][ T4371] bridge0: port 2(bridge_slave_1) entered disabled state
[ 66.494201][ T4371] device bridge_slave_1 entered promiscuous mode
[ 66.540204][ T4371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 66.551640][ T4371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 66.590596][ T4371] team0: Port device team_slave_0 added
[ 66.598440][ T4371] team0: Port device team_slave_1 added
[ 66.622980][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 66.631299][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 66.658152][ T4371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 66.670903][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 66.678230][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 66.704515][ T4371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 66.741470][ T4371] device hsr_slave_0 entered promiscuous mode
[ 66.748624][ T4371] device hsr_slave_1 entered promiscuous mode
[ 67.260569][ T4371] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 67.273517][ T4371] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 67.284010][ T4371] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 67.326586][ T4371] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 67.425553][ T4371] 8021q: adding VLAN 0 to HW filter on device bond0
[ 67.442669][ T1183] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 67.454650][ T1183] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 67.463932][ T1183] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 67.476567][ T4371] 8021q: adding VLAN 0 to HW filter on device team0
[ 67.516002][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 67.526484][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 67.534989][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.542107][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.553156][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 67.563486][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 67.573622][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.580787][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.632976][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 67.642029][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 67.651752][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 67.669705][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 67.680315][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 67.689470][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 67.700005][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 67.709033][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 67.752291][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 67.761854][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 67.778865][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 67.792034][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 67.803023][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 67.974285][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 67.983750][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 67.997276][ T4371] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 68.025559][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 68.036191][ T4198] Bluetooth: hci0: command 0x0409 tx timeout
[ 68.044491][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 68.074889][ T4371] device veth0_vlan entered promiscuous mode
[ 68.082722][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 68.091528][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 68.102129][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 68.112078][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 68.125128][ T4371] device veth1_vlan entered promiscuous mode
[ 68.200153][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 68.209084][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 68.220858][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 68.230218][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 68.242228][ T4371] device veth0_macvtap entered promiscuous mode
[ 68.275070][ T4371] device veth1_macvtap entered promiscuous mode
[ 68.316907][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 68.324358][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 68.336967][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 68.358823][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 68.376758][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 68.400671][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 68.416654][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 68.431663][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 68.446971][ T4371] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.461515][ T4371] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.470779][ T4371] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.479764][ T4371] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.548899][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.560608][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.579302][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 68.600914][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 68.615467][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 68.624395][ T1183] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 69.166641][ T4520] loop0: detected capacity change from 0 to 32768
[ 69.190500][ T4520] =======================================================
[ 69.190500][ T4520] WARNING: The mand mount option has been deprecated and
[ 69.190500][ T4520] and is ignored by this kernel. Remove the mand
[ 69.190500][ T4520] option from the mount to silence this warning.
[ 69.190500][ T4520] =======================================================
[ 69.348606][ T4520] JBD2: Ignoring recovery information on journal
[ 69.406230][ T4520] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 69.435806][ T4520] ==================================================================
[ 69.444089][ T4520] BUG: KASAN: use-after-free in ocfs2_fault+0xd3/0x3c0
[ 69.450964][ T4520] Read of size 8 at addr ffff8880757a4e08 by task syz.0.17/4520
[ 69.458602][ T4520]
[ 69.460942][ T4520] CPU: 1 PID: 4520 Comm: syz.0.17 Not tainted syzkaller #0
[ 69.468142][ T4520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 69.478220][ T4520] Call Trace:
[ 69.481506][ T4520]
[ 69.484456][ T4520] dump_stack_lvl+0x168/0x230
[ 69.489152][ T4520] ? show_regs_print_info+0x20/0x20
[ 69.494368][ T4520] ? load_image+0x3b0/0x3b0
[ 69.498885][ T4520] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 69.504285][ T4520] ? recalc_sigpending+0x1a0/0x230
[ 69.509422][ T4520] print_address_description+0x60/0x2d0
[ 69.514981][ T4520] ? ocfs2_fault+0xd3/0x3c0
[ 69.519496][ T4520] kasan_report+0xdf/0x130
[ 69.523921][ T4520] ? ocfs2_fault+0xd3/0x3c0
[ 69.528439][ T4520] ocfs2_fault+0xd3/0x3c0
[ 69.532798][ T4520] ? ocfs2_mmap+0x220/0x220
[ 69.537310][ T4520] ? count_memcg_event_mm+0x311/0x360
[ 69.542752][ T4520] ? remove_device_exclusive_entry+0xa70/0xa70
[ 69.548908][ T4520] ? mark_lock+0x94/0x320
[ 69.553426][ T4520] __do_fault+0x141/0x330
[ 69.557764][ T4520] handle_mm_fault+0x2946/0x43b0
[ 69.562724][ T4520] ? get_page+0xe0/0xe0
[ 69.566878][ T4520] ? follow_page_mask+0x5dc/0x12d0
[ 69.572079][ T4520] ? check_vma_flags+0x3f5/0x480
[ 69.577020][ T4520] __get_user_pages+0x93e/0x11c0
[ 69.581963][ T4520] ? populate_vma_page_range+0x290/0x290
[ 69.587599][ T4520] ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 69.593496][ T4520] ? read_lock_is_recursive+0x10/0x10
[ 69.598887][ T4520] populate_vma_page_range+0x213/0x290
[ 69.604359][ T4520] __mm_populate+0x26f/0x3a0
[ 69.608945][ T4520] ? wake_up_q+0x8c/0xc0
[ 69.613184][ T4520] ? check_vma_flags+0x480/0x480
[ 69.618118][ T4520] ? up_write+0x1bb/0x420
[ 69.622443][ T4520] vm_mmap_pgoff+0x203/0x2b0
[ 69.627040][ T4520] ? account_locked_vm+0xe0/0xe0
[ 69.631975][ T4520] ? __fget_files+0x40f/0x480
[ 69.636652][ T4520] ksys_mmap_pgoff+0x542/0x780
[ 69.641426][ T4520] ? mmap_region+0x1660/0x1660
[ 69.646189][ T4520] ? lockdep_hardirqs_on+0x94/0x140
[ 69.651397][ T4520] do_syscall_64+0x4c/0xa0
[ 69.656166][ T4520] ? clear_bhb_loop+0x30/0x80
[ 69.660851][ T4520] ? clear_bhb_loop+0x30/0x80
[ 69.665523][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 69.671433][ T4520] RIP: 0033:0x7f1732588749
[ 69.675858][ T4520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 69.695644][ T4520] RSP: 002b:00007f1731bf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 69.704272][ T4520] RAX: ffffffffffffffda RBX: 00007f17327defa0 RCX: 00007f1732588749
[ 69.712271][ T4520] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000200000000000
[ 69.720250][ T4520] RBP: 00007f173260cf91 R08: 0000000000000004 R09: 0000000000000000
[ 69.728220][ T4520] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000000
[ 69.736198][ T4520] R13: 00007f17327df038 R14: 00007f17327defa0 R15: 00007ffebee0e888
[ 69.744272][ T4520]
[ 69.747300][ T4520]
[ 69.749629][ T4520] Allocated by task 4520:
[ 69.753951][ T4520] __kasan_slab_alloc+0x9c/0xd0
[ 69.758817][ T4520] slab_post_alloc_hook+0x4c/0x380
[ 69.763929][ T4520] kmem_cache_alloc+0x100/0x290
[ 69.768775][ T4520] vm_area_alloc+0x20/0xe0
[ 69.773185][ T4520] mmap_region+0xac7/0x1660
[ 69.777681][ T4520] do_mmap+0x81f/0xea0
[ 69.781744][ T4520] vm_mmap_pgoff+0x1b2/0x2b0
[ 69.786332][ T4520] ksys_mmap_pgoff+0x542/0x780
[ 69.791097][ T4520] do_syscall_64+0x4c/0xa0
[ 69.795496][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 69.801468][ T4520]
[ 69.803784][ T4520] Freed by task 4554:
[ 69.807737][ T4520] kasan_set_track+0x4b/0x70
[ 69.812393][ T4520] kasan_set_free_info+0x1f/0x40
[ 69.817307][ T4520] ____kasan_slab_free+0xd5/0x110
[ 69.822309][ T4520] slab_free_freelist_hook+0xea/0x170
[ 69.827701][ T4520] kmem_cache_free+0x8f/0x210
[ 69.832360][ T4520] __do_munmap+0xc54/0xdc0
[ 69.836853][ T4520] mmap_region+0x8bb/0x1660
[ 69.841348][ T4520] do_mmap+0x81f/0xea0
[ 69.845395][ T4520] vm_mmap_pgoff+0x1b2/0x2b0
[ 69.850053][ T4520] ksys_mmap_pgoff+0x542/0x780
[ 69.854794][ T4520] do_syscall_64+0x4c/0xa0
[ 69.859196][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 69.865242][ T4520]
[ 69.867546][ T4520] The buggy address belongs to the object at ffff8880757a4d68
[ 69.867546][ T4520] which belongs to the cache vm_area_struct of size 200
[ 69.881837][ T4520] The buggy address is located 160 bytes inside of
[ 69.881837][ T4520] 200-byte region [ffff8880757a4d68, ffff8880757a4e30)
[ 69.895089][ T4520] The buggy address belongs to the page:
[ 69.900968][ T4520] page:ffffea0001d5e900 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x757a4
[ 69.911192][ T4520] memcg:ffff88805c6f2e01
[ 69.915415][ T4520] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[ 69.922960][ T4520] raw: 00fff00000000200 ffffea0001d5ff00 0000000600000006 ffff888140007a00
[ 69.931530][ T4520] raw: 0000000000000000 00000000800f000f 00000001ffffffff ffff88805c6f2e01
[ 69.940087][ T4520] page dumped because: kasan: bad access detected
[ 69.946480][ T4520] page_owner tracks the page as allocated
[ 69.952170][ T4520] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 3693, ts 20484920719, free_ts 20458344389
[ 69.968381][ T4520] get_page_from_freelist+0x1b77/0x1c60
[ 69.973908][ T4520] __alloc_pages+0x1e1/0x470
[ 69.978477][ T4520] new_slab+0xc0/0x4b0
[ 69.982526][ T4520] ___slab_alloc+0x81e/0xdf0
[ 69.987618][ T4520] kmem_cache_alloc+0x195/0x290
[ 69.992446][ T4520] vm_area_dup+0x1e/0xb0
[ 69.996769][ T4520] __split_vma+0xb1/0x410
[ 70.001163][ T4520] __do_munmap+0x3eb/0xdc0
[ 70.005555][ T4520] mmap_region+0x8bb/0x1660
[ 70.010037][ T4520] do_mmap+0x81f/0xea0
[ 70.014100][ T4520] vm_mmap_pgoff+0x1b2/0x2b0
[ 70.018672][ T4520] ksys_mmap_pgoff+0x542/0x780
[ 70.023416][ T4520] do_syscall_64+0x4c/0xa0
[ 70.027816][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 70.033692][ T4520] page last free stack trace:
[ 70.038342][ T4520] free_unref_page_prepare+0x637/0x6c0
[ 70.043782][ T4520] free_unref_page_list+0x122/0x7e0
[ 70.048959][ T4520] release_pages+0x184b/0x1bb0
[ 70.053701][ T4520] tlb_finish_mmu+0x164/0x2e0
[ 70.058359][ T4520] exit_mmap+0x3a6/0x5f0
[ 70.062579][ T4520] __mmput+0x115/0x3b0
[ 70.066628][ T4520] exit_mm+0x567/0x6c0
[ 70.070674][ T4520] do_exit+0x5a1/0x20a0
[ 70.074815][ T4520] do_group_exit+0x12e/0x300
[ 70.079386][ T4520] __x64_sys_exit_group+0x3b/0x40
[ 70.084391][ T4520] do_syscall_64+0x4c/0xa0
[ 70.088787][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 70.094665][ T4520]
[ 70.096978][ T4520] Memory state around the buggy address:
[ 70.102585][ T4520] ffff8880757a4d00: fb fb fb fb fb fc fc fc fc fc fc fc fc fa fb fb
[ 70.110627][ T4520] ffff8880757a4d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 70.118664][ T4520] >ffff8880757a4e00: fb fb fb fb fb fb fc fc fc fc fc fc fc fc fb fb
[ 70.126700][ T4520] ^
[ 70.131004][ T4520] ffff8880757a4e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 70.139040][ T4520] ffff8880757a4f00: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fc
[ 70.147077][ T4520] ==================================================================
[ 70.155268][ T4520] Disabling lock debugging due to kernel taint
[ 70.162641][ T4213] Bluetooth: hci0: command 0x041b tx timeout
[ 70.178875][ T4520] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 70.186107][ T4520] CPU: 0 PID: 4520 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 70.194788][ T4520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 70.204920][ T4520] Call Trace:
[ 70.208213][ T4520]
[ 70.211153][ T4520] dump_stack_lvl+0x168/0x230
[ 70.215848][ T4520] ? show_regs_print_info+0x20/0x20
[ 70.221057][ T4520] ? load_image+0x3b0/0x3b0
[ 70.225573][ T4520] panic+0x2c9/0x7f0
[ 70.229480][ T4520] ? bpf_jit_dump+0xd0/0xd0
[ 70.233981][ T4520] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 70.239963][ T4520] ? _raw_spin_unlock+0x40/0x40
[ 70.244819][ T4520] ? ocfs2_fault+0xd3/0x3c0
[ 70.249319][ T4520] check_panic_on_warn+0x80/0xa0
[ 70.254268][ T4520] ? ocfs2_fault+0xd3/0x3c0
[ 70.258775][ T4520] end_report+0x6d/0xf0
[ 70.262934][ T4520] kasan_report+0x102/0x130
[ 70.267442][ T4520] ? ocfs2_fault+0xd3/0x3c0
[ 70.271946][ T4520] ocfs2_fault+0xd3/0x3c0
[ 70.276278][ T4520] ? ocfs2_mmap+0x220/0x220
[ 70.280793][ T4520] ? count_memcg_event_mm+0x311/0x360
[ 70.286167][ T4520] ? remove_device_exclusive_entry+0xa70/0xa70
[ 70.292324][ T4520] ? mark_lock+0x94/0x320
[ 70.296664][ T4520] __do_fault+0x141/0x330
[ 70.301015][ T4520] handle_mm_fault+0x2946/0x43b0
[ 70.305974][ T4520] ? get_page+0xe0/0xe0
[ 70.310142][ T4520] ? follow_page_mask+0x5dc/0x12d0
[ 70.315261][ T4520] ? check_vma_flags+0x3f5/0x480
[ 70.320220][ T4520] __get_user_pages+0x93e/0x11c0
[ 70.325178][ T4520] ? populate_vma_page_range+0x290/0x290
[ 70.330828][ T4520] ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 70.336837][ T4520] ? read_lock_is_recursive+0x10/0x10
[ 70.342240][ T4520] populate_vma_page_range+0x213/0x290
[ 70.347861][ T4520] __mm_populate+0x26f/0x3a0
[ 70.352464][ T4520] ? wake_up_q+0x8c/0xc0
[ 70.356725][ T4520] ? check_vma_flags+0x480/0x480
[ 70.361678][ T4520] ? up_write+0x1bb/0x420
[ 70.366016][ T4520] vm_mmap_pgoff+0x203/0x2b0
[ 70.370633][ T4520] ? account_locked_vm+0xe0/0xe0
[ 70.375579][ T4520] ? __fget_files+0x40f/0x480
[ 70.380268][ T4520] ksys_mmap_pgoff+0x542/0x780
[ 70.385050][ T4520] ? mmap_region+0x1660/0x1660
[ 70.389824][ T4520] ? lockdep_hardirqs_on+0x94/0x140
[ 70.395031][ T4520] do_syscall_64+0x4c/0xa0
[ 70.399475][ T4520] ? clear_bhb_loop+0x30/0x80
[ 70.404181][ T4520] ? clear_bhb_loop+0x30/0x80
[ 70.408874][ T4520] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 70.414776][ T4520] RIP: 0033:0x7f1732588749
[ 70.419201][ T4520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 70.438904][ T4520] RSP: 002b:00007f1731bf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 70.447416][ T4520] RAX: ffffffffffffffda RBX: 00007f17327defa0 RCX: 00007f1732588749
[ 70.455409][ T4520] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000200000000000
[ 70.463384][ T4520] RBP: 00007f173260cf91 R08: 0000000000000004 R09: 0000000000000000
[ 70.471447][ T4520] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000000
[ 70.479594][ T4520] R13: 00007f17327df038 R14: 00007f17327defa0 R15: 00007ffebee0e888
[ 70.487580][ T4520]
[ 70.490900][ T4520] Kernel Offset: disabled
[ 70.495239][ T4520] Rebooting in 86400 seconds..