Warning: Permanently added '[localhost]:29058' (ED25519) to the list of known hosts.
2025/12/26 03:46:47 parsed 1 programs
[  139.192029][ T5621] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  143.183938][ T1313] ieee802154 phy0 wpan0: encryption failed: -22
[  143.186786][ T1313] ieee802154 phy1 wpan1: encryption failed: -22
[  145.207875][ T4682] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  145.215275][ T4682] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  145.218992][ T4682] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  145.226076][ T4682] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  145.231112][ T4682] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  146.381524][  T119] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.385310][  T119] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.415194][  T119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.418876][  T119] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.774813][ T5697] chnl_net:caif_netlink_parms(): no params data found
[  147.838814][ T5697] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.842747][ T5697] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.846046][ T5697] bridge_slave_0: entered allmulticast mode
[  147.850039][ T5697] bridge_slave_0: entered promiscuous mode
[  147.858620][ T5697] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.862310][ T5697] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.865486][ T5697] bridge_slave_1: entered allmulticast mode
[  147.869361][ T5697] bridge_slave_1: entered promiscuous mode
[  147.898325][ T5697] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.904773][ T5697] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.928301][ T5697] team0: Port device team_slave_0 added
[  147.933416][ T5697] team0: Port device team_slave_1 added
[  147.953346][ T5697] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.957023][ T5697] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  147.970974][ T5697] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.977297][ T5697] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.984180][ T5697] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  147.995377][ T5697] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  148.028772][ T5697] hsr_slave_0: entered promiscuous mode
[  148.032409][ T5697] hsr_slave_1: entered promiscuous mode
[  148.532240][ T5697] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  148.539386][ T5697] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  148.563333][ T5697] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  148.573616][ T5697] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  148.714935][ T5697] 8021q: adding VLAN 0 to HW filter on device bond0
[  148.745225][ T5697] 8021q: adding VLAN 0 to HW filter on device team0
[  148.779934][ T3764] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.783171][ T3764] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.793096][ T3764] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.796611][ T3764] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.113044][ T5697] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.177272][ T5697] veth0_vlan: entered promiscuous mode
[  149.202927][ T5697] veth1_vlan: entered promiscuous mode
[  149.244848][ T5697] veth0_macvtap: entered promiscuous mode
[  149.262355][ T5697] veth1_macvtap: entered promiscuous mode
[  149.296113][ T5697] batman_adv: batadv0: Interface activated: batadv_slave_0
[  149.320183][ T5697] batman_adv: batadv0: Interface activated: batadv_slave_1
[  149.346570][  T119] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  149.367459][  T119] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  149.379157][  T119] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  149.401526][  T119] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  149.663533][ T3764] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.745532][ T3764] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.817349][ T3764] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.873478][ T3764] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/26 03:47:03 executed programs: 0
[  150.921418][   T46] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  150.926617][   T46] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  150.930465][   T46] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  150.935320][   T46] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  150.939139][   T46] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  151.333112][ T5766] chnl_net:caif_netlink_parms(): no params data found
[  151.541851][ T5766] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.544972][ T5766] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.548185][ T5766] bridge_slave_0: entered allmulticast mode
[  151.560163][ T5766] bridge_slave_0: entered promiscuous mode
[  151.573065][ T5766] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.576402][ T5766] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.579616][ T5766] bridge_slave_1: entered allmulticast mode
[  151.597006][ T5766] bridge_slave_1: entered promiscuous mode
[  151.658688][ T5766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.673607][ T5766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.736737][ T5766] team0: Port device team_slave_0 added
[  151.759287][ T5766] team0: Port device team_slave_1 added
[  151.869653][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.874197][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  151.899887][ T5766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.934321][ T5766] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.937519][ T5766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  151.970883][ T5766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.016865][ T3764] bridge_slave_1: left allmulticast mode
[  152.019523][ T3764] bridge_slave_1: left promiscuous mode
[  152.040793][ T3764] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.047152][ T3764] bridge_slave_0: left allmulticast mode
[  152.049737][ T3764] bridge_slave_0: left promiscuous mode
[  152.054339][ T3764] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.521842][ T3764] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.528143][ T3764] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.533453][ T3764] bond0 (unregistering): Released all slaves
[  152.589052][ T5766] hsr_slave_0: entered promiscuous mode
[  152.598308][ T5766] hsr_slave_1: entered promiscuous mode
[  152.607395][ T5766] debugfs: 'hsr0' already exists in 'hsr'
[  152.610061][ T5766] Cannot create hsr debugfs directory
[  152.616771][ T3764] hsr_slave_0: left promiscuous mode
[  152.619705][ T3764] hsr_slave_1: left promiscuous mode
[  152.623508][ T3764] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.626906][ T3764] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.632248][ T3764] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.635633][ T3764] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.646044][ T3764] veth1_macvtap: left promiscuous mode
[  152.648891][ T3764] veth0_macvtap: left promiscuous mode
[  152.652417][ T3764] veth1_vlan: left promiscuous mode
[  152.655064][ T3764] veth0_vlan: left promiscuous mode
[  152.915416][ T3764] team0 (unregistering): Port device team_slave_1 removed
[  152.937648][ T3764] team0 (unregistering): Port device team_slave_0 removed
[  153.025459][   T46] Bluetooth: hci0: command tx timeout
[  153.847863][ T5766] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  153.866633][ T5766] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  153.882908][ T5766] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  153.901708][ T5766] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  154.027771][ T5766] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.043349][ T5766] 8021q: adding VLAN 0 to HW filter on device team0
[  154.051944][ T3764] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.054955][ T3764] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.066788][ T1076] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.069736][ T1076] bridge0: port 2(bridge_slave_1) entered forwarding state
[  154.238212][ T5766] 8021q: adding VLAN 0 to HW filter on device batadv0
[  154.273844][ T5766] veth0_vlan: entered promiscuous mode
[  154.283722][ T5766] veth1_vlan: entered promiscuous mode
[  154.311062][ T5766] veth0_macvtap: entered promiscuous mode
[  154.317854][ T5766] veth1_macvtap: entered promiscuous mode
[  154.332919][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.342285][ T5766] batman_adv: batadv0: Interface activated: batadv_slave_1
[  154.353065][ T1076] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  154.363434][ T1076] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  154.367560][ T1076] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  154.381495][ T1076] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  154.436906][ T3482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.449055][ T3482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.473771][ T1076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.477188][ T1076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.702296][ T5820] loop0: detected capacity change from 0 to 32768
[  154.706691][ T5820] =======================================================
[  154.706691][ T5820] WARNING: The mand mount option has been deprecated and
[  154.706691][ T5820]          and is ignored by this kernel. Remove the mand
[  154.706691][ T5820]          option from the mount to silence this warning.
[  154.706691][ T5820] =======================================================
[  154.804412][ T5820] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.873656][ T5820] ==================================================================
[  154.876969][ T5820] BUG: KASAN: slab-out-of-bounds in crc32c+0xcd/0x480
[  154.879687][ T5820] Read of size 8 at addr ffff8880124dde00 by task syz.0.17/5820
[  154.883809][ T5820] 
[  154.884846][ T5820] CPU: 0 UID: 0 PID: 5820 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  154.884859][ T5820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.884865][ T5820] Call Trace:
[  154.884872][ T5820]  <TASK>
[  154.884878][ T5820]  dump_stack_lvl+0xe8/0x150
[  154.884894][ T5820]  print_report+0xca/0x240
[  154.884903][ T5820]  ? crc32c+0xcd/0x480
[  154.884917][ T5820]  kasan_report+0x118/0x150
[  154.884928][ T5820]  ? crc32c+0xcd/0x480
[  154.884943][ T5820]  crc32c+0xcd/0x480
[  154.884956][ T5820]  ? xlog_cksum+0x6a/0x100
[  154.884970][ T5820]  xlog_cksum+0x93/0x100
[  154.884981][ T5820]  xlog_recover_process+0x90/0x2f0
[  154.884993][ T5820]  xlog_do_recovery_pass+0x9cd/0xc30
[  154.885007][ T5820]  ? __pfx_xlog_do_recovery_pass+0x10/0x10
[  154.885022][ T5820]  ? kfree+0x1c0/0x660
[  154.885036][ T5820]  xlog_verify_head+0x136/0x440
[  154.885050][ T5820]  xlog_find_tail+0x5ca/0x840
[  154.885064][ T5820]  xlog_recover+0x4b/0x3e0
[  154.885072][ T5820]  xfs_log_mount+0x253/0x3e0
[  154.885081][ T5820]  xfs_mountfs+0xe5e/0x22c0
[  154.885090][ T5820]  ? __pfx_xfs_mountfs+0x10/0x10
[  154.885100][ T5820]  ? trace_xfs_inode_timestamp_range+0x84/0x1e0
[  154.885110][ T5820]  xfs_fs_fill_super+0x11f1/0x1640
[  154.885121][ T5820]  get_tree_bdev_flags+0x40e/0x4d0
[  154.885136][ T5820]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  154.885145][ T5820]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  154.885161][ T5820]  vfs_get_tree+0x92/0x2a0
[  154.885173][ T5820]  do_new_mount+0x302/0xa10
[  154.885181][ T5820]  ? __pfx_do_new_mount+0x10/0x10
[  154.885187][ T5820]  ? kmem_cache_free+0x197/0x620
[  154.885197][ T5820]  __se_sys_mount+0x313/0x410
[  154.885204][ T5820]  ? __pfx___se_sys_mount+0x10/0x10
[  154.885211][ T5820]  ? __x64_sys_mount+0x20/0xc0
[  154.885217][ T5820]  do_syscall_64+0xec/0xf80
[  154.885235][ T5820]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.885242][ T5820]  ? trace_irq_disable+0x37/0x100
[  154.885254][ T5820]  ? clear_bhb_loop+0x60/0xb0
[  154.885264][ T5820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.885275][ T5820] RIP: 0033:0x7f9b5a79066a
[  154.885285][ T5820] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.885294][ T5820] RSP: 002b:00007f9b5b6c3e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  154.885306][ T5820] RAX: ffffffffffffffda RBX: 00007f9b5b6c3ef0 RCX: 00007f9b5a79066a
[  154.885314][ T5820] RDX: 0000200000000500 RSI: 0000200000000200 RDI: 00007f9b5b6c3eb0
[  154.885320][ T5820] RBP: 0000200000000500 R08: 00007f9b5b6c3ef0 R09: 0000000002218a5d
[  154.885324][ T5820] R10: 0000000002218a5d R11: 0000000000000246 R12: 0000200000000200
[  154.885329][ T5820] R13: 00007f9b5b6c3eb0 R14: 0000000000009706 R15: 0000200000000100
[  154.885336][ T5820]  </TASK>
[  154.885338][ T5820] 
[  155.004276][ T5820] Allocated by task 5820:
[  155.005972][ T5820]  kasan_save_track+0x3e/0x80
[  155.007808][ T5820]  __kasan_kmalloc+0x93/0xb0
[  155.009630][ T5820]  __kvmalloc_node_noprof+0x5d5/0x920
[  155.011846][ T5820]  xlog_do_recovery_pass+0x106/0xc30
[  155.013874][ T5820]  xlog_verify_head+0x136/0x440
[  155.015800][ T5820]  xlog_find_tail+0x5ca/0x840
[  155.017775][ T5820]  xlog_recover+0x4b/0x3e0
[  155.019759][ T5820]  xfs_log_mount+0x253/0x3e0
[  155.021812][ T5820]  xfs_mountfs+0xe5e/0x22c0
[  155.023735][ T5820]  xfs_fs_fill_super+0x11f1/0x1640
[  155.025795][ T5820]  get_tree_bdev_flags+0x40e/0x4d0
[  155.028005][ T5820]  vfs_get_tree+0x92/0x2a0
[  155.029681][ T5820]  do_new_mount+0x302/0xa10
[  155.031486][ T5820]  __se_sys_mount+0x313/0x410
[  155.033211][ T5820]  do_syscall_64+0xec/0xf80
[  155.035213][ T5820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.037709][ T5820] 
[  155.038912][ T5820] The buggy address belongs to the object at ffff8880124ddc00
[  155.038912][ T5820]  which belongs to the cache kmalloc-512 of size 512
[  155.044552][ T5820] The buggy address is located 0 bytes to the right of
[  155.044552][ T5820]  allocated 512-byte region [ffff8880124ddc00, ffff8880124dde00)
[  155.050075][ T5820] 
[  155.051157][ T5820] The buggy address belongs to the physical page:
[  155.053812][ T5820] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x124dc
[  155.057219][ T5820] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  155.060808][ T5820] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  155.064308][ T5820] page_type: f5(slab)
[  155.066065][ T5820] raw: 00fff00000000040 ffff88801a441c80 dead000000000100 dead000000000122
[  155.069796][ T5820] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  155.073478][ T5820] head: 00fff00000000040 ffff88801a441c80 dead000000000100 dead000000000122
[  155.077217][ T5820] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  155.080799][ T5820] head: 00fff00000000001 ffffea0000493701 00000000ffffffff 00000000ffffffff
[  155.084340][ T5820] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[  155.087850][ T5820] page dumped because: kasan: bad access detected
[  155.090319][ T5820] page_owner tracks the page as allocated
[  155.092738][ T5820] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 2, tgid 2 (kthreadd), ts 144638357950, free_ts 112134002371
[  155.100607][ T5820]  post_alloc_hook+0x234/0x290
[  155.103297][ T5820]  get_page_from_freelist+0x24e0/0x2580
[  155.106284][ T5820]  __alloc_frozen_pages_noprof+0x181/0x370
[  155.109330][ T5820]  alloc_pages_mpol+0x232/0x4a0
[  155.111877][ T5820]  allocate_slab+0x86/0x3b0
[  155.113922][ T5820]  ___slab_alloc+0xe53/0x1820
[  155.115958][ T5820]  __slab_alloc+0x65/0x100
[  155.117892][ T5820]  __kmalloc_cache_noprof+0x41e/0x700
[  155.120034][ T5820]  set_kthread_struct+0xbb/0x340
[  155.122132][ T5820]  copy_process+0x1036/0x3950
[  155.124261][ T5820]  kernel_clone+0x21e/0x820
[  155.126562][ T5820]  kernel_thread+0x10d/0x160
[  155.128569][ T5820]  kthreadd+0x4fa/0x6f0
[  155.130816][ T5820]  ret_from_fork+0x510/0xa50
[  155.133077][ T5820]  ret_from_fork_asm+0x1a/0x30
[  155.135369][ T5820] page last free pid 5324 tgid 5320 stack trace:
[  155.138090][ T5820]  __free_frozen_pages+0xbc8/0xd30
[  155.140357][ T5820]  __folio_put+0x21b/0x2c0
[  155.142398][ T5820]  __free_zspage+0x338/0x5b0
[  155.144377][ T5820]  zs_free+0x395/0x510
[  155.146420][ T5820]  zswap_entry_free+0x345/0x500
[  155.148532][ T5820]  swap_entries_free+0x304/0x820
[  155.150579][ T5820]  swap_entries_put_map+0x342/0x6f0
[  155.152708][ T5820]  free_swap_and_cache_nr+0x15d/0x3b0
[  155.155551][ T5820]  unmap_page_range+0x179a/0x4170
[  155.158214][ T5820]  unmap_vmas+0x399/0x580
[  155.160248][ T5820]  exit_mmap+0x239/0xb10
[  155.162195][ T5820]  __mmput+0x118/0x430
[  155.163887][ T5820]  exit_mm+0x169/0x230
[  155.165676][ T5820]  do_exit+0x627/0x22f0
[  155.167570][ T5820]  do_group_exit+0x21c/0x2d0
[  155.169607][ T5820]  get_signal+0x1285/0x1340
[  155.171565][ T5820] 
[  155.172623][ T5820] Memory state around the buggy address:
[  155.175036][ T5820]  ffff8880124ddd00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  155.178652][ T5820]  ffff8880124ddd80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  155.182224][ T5820] >ffff8880124dde00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  155.186044][ T5820]                    ^
[  155.187892][ T5820]  ffff8880124dde80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  155.191173][ T5820]  ffff8880124ddf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  155.194542][ T5820] ==================================================================
[  155.230259][   T46] Bluetooth: hci0: command tx timeout
[  155.238715][ T5820] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  155.242727][ T5820] CPU: 0 UID: 0 PID: 5820 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  155.246523][ T5820] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.251033][ T5820] Call Trace:
[  155.252405][ T5820]  <TASK>
[  155.253615][ T5820]  vpanic+0x1e0/0x670
[  155.255274][ T5820]  panic+0xb9/0xc0
[  155.256867][ T5820]  ? __pfx_panic+0x10/0x10
[  155.258890][ T5820]  ? preempt_schedule_thunk+0x16/0x30
[  155.261248][ T5820]  ? crc32c+0xcd/0x480
[  155.263022][ T5820]  ? preempt_schedule_thunk+0x16/0x30
[  155.265341][ T5820]  ? crc32c+0xcd/0x480
[  155.267181][ T5820]  check_panic_on_warn+0x89/0xb0
[  155.269363][ T5820]  ? crc32c+0xcd/0x480
[  155.271205][ T5820]  end_report+0x6f/0x140
[  155.273075][ T5820]  kasan_report+0x129/0x150
[  155.275104][ T5820]  ? crc32c+0xcd/0x480
[  155.276958][ T5820]  crc32c+0xcd/0x480
[  155.278721][ T5820]  ? xlog_cksum+0x6a/0x100
[  155.280717][ T5820]  xlog_cksum+0x93/0x100
[  155.282880][ T5820]  xlog_recover_process+0x90/0x2f0
[  155.285211][ T5820]  xlog_do_recovery_pass+0x9cd/0xc30
[  155.287674][ T5820]  ? __pfx_xlog_do_recovery_pass+0x10/0x10
[  155.291272][ T5820]  ? kfree+0x1c0/0x660
[  155.293720][ T5820]  xlog_verify_head+0x136/0x440
[  155.296384][ T5820]  xlog_find_tail+0x5ca/0x840
[  155.298560][ T5820]  xlog_recover+0x4b/0x3e0
[  155.300593][ T5820]  xfs_log_mount+0x253/0x3e0
[  155.302597][ T5820]  xfs_mountfs+0xe5e/0x22c0
[  155.304711][ T5820]  ? __pfx_xfs_mountfs+0x10/0x10
[  155.306863][ T5820]  ? trace_xfs_inode_timestamp_range+0x84/0x1e0
[  155.309682][ T5820]  xfs_fs_fill_super+0x11f1/0x1640
[  155.311954][ T5820]  get_tree_bdev_flags+0x40e/0x4d0
[  155.314300][ T5820]  ? __pfx_xfs_fs_fill_super+0x10/0x10
[  155.316733][ T5820]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  155.319197][ T5820]  vfs_get_tree+0x92/0x2a0
[  155.321187][ T5820]  do_new_mount+0x302/0xa10
[  155.323226][ T5820]  ? __pfx_do_new_mount+0x10/0x10
[  155.325561][ T5820]  ? kmem_cache_free+0x197/0x620
[  155.327878][ T5820]  __se_sys_mount+0x313/0x410
[  155.330046][ T5820]  ? __pfx___se_sys_mount+0x10/0x10
[  155.333025][ T5820]  ? __x64_sys_mount+0x20/0xc0
[  155.335497][ T5820]  do_syscall_64+0xec/0xf80
[  155.337519][ T5820]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.340126][ T5820]  ? trace_irq_disable+0x37/0x100
[  155.342354][ T5820]  ? clear_bhb_loop+0x60/0xb0
[  155.344243][ T5820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.346272][ T5820] RIP: 0033:0x7f9b5a79066a
[  155.347856][ T5820] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.356186][ T5820] RSP: 002b:00007f9b5b6c3e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  155.359939][ T5820] RAX: ffffffffffffffda RBX: 00007f9b5b6c3ef0 RCX: 00007f9b5a79066a
[  155.363560][ T5820] RDX: 0000200000000500 RSI: 0000200000000200 RDI: 00007f9b5b6c3eb0
[  155.367204][ T5820] RBP: 0000200000000500 R08: 00007f9b5b6c3ef0 R09: 0000000002218a5d
[  155.370753][ T5820] R10: 0000000002218a5d R11: 0000000000000246 R12: 0000200000000200
[  155.374222][ T5820] R13: 00007f9b5b6c3eb0 R14: 0000000000009706 R15: 0000200000000100
[  155.377647][ T5820]  </TASK>
[  155.379330][ T5820] Kernel Offset: disabled
[  155.381311][ T5820] Rebooting in 86400 seconds..