[   71.427067][  T626] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.47' (ED25519) to the list of known hosts.
2025/08/24 03:11:28 parsed 1 programs
[   76.822756][ T3493] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2025/08/24 03:11:39 executed programs: 0
[   85.905025][ T3963] loop0: detected capacity change from 0 to 32768
[   85.911726][ T3963] =======================================================
[   85.911726][ T3963] WARNING: The mand mount option has been deprecated and
[   85.911726][ T3963]          and is ignored by this kernel. Remove the mand
[   85.911726][ T3963]          option from the mount to silence this warning.
[   85.911726][ T3963] =======================================================
[   85.945352][ T3963] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   86.005793][ T3556] ==================================================================
[   86.005816][ T3556] BUG: KASAN: slab-out-of-bounds in ocfs2_get_system_file_inode+0x179/0x630
[   86.005838][ T3556] Read of size 8 at addr ffff888035583f90 by task syz-executor/3556
[   86.005843][ T3556] 
[   86.005856][[   86.005856][ T3556] CPU: 0 UID: 0 PID: 3556 Comm: syz-executor Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[   86.005867][ T3556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   86.005878][ T3556] Call Trace:
[   86.005882][ T3556]  <TASK>
[   86.005885][ T3556]  dump_stack_lvl+0xf4/0x170
[   86.005894][ T3556]  ? __pfx_dump_stack_lvl+0x10/0x10
[   86.005902][ T3556]  ? rcu_is_watching+0x1f/0xa0
[   86.005908][ T3556]  ? __virt_addr_valid+0x176/0x2b0
[   86.005917][ T3556]  ? lock_release+0x42/0x2f0
[   86.005923][ T3556]  ? lock_acquire+0x69/0x210
[   86.005928][ T3556]  ? __virt_addr_valid+0x176/0x2b0
[   86.005935][ T3556]  ? __virt_addr_valid+0x262/0x2b0
[   86.005942][ T3556]  print_report+0xca/0x220
[   86.005950][ T3556]  ? ocfs2_get_system_file_inode+0x179/0x630
[   86.005956][ T3556]  kasan_report+0x118/0x150
[   86.005964][ T3556]  ? ocfs2_get_system_file_inode+0x179/0x630
[   86.005972][ T3556]  ocfs2_get_system_file_inode+0x179/0x630
[   86.005978][ T3556]  ? __pfx_ocfs2_remove_refcount_tree+0x10/0x10
[   86.005987][ T3556]  ? __pfx_ocfs2_get_system_file_inode+0x10/0x10
[   86.005993][ T3556]  ? _raw_spin_unlock_irqrestore+0xa0/0x100
[   86.006002][ T3556]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   86.006012][ T3556]  ? rwbase_write_lock+0x4d6/0x8d0
[   86.006019][ T3556]  ocfs2_evict_inode+0xe00/0x3030
[   86.006029][ T3556]  ? __pfx_ocfs2_evict_inode+0x10/0x10
[   86.006036][ T3556]  ? rtlock_slowlock_locked+0xd0/0x3a60
[   86.006045][ T3556]  ? try_to_take_rt_mutex+0x810/0xa80
[   86.006054][ T3556]  ? rtlock_slowlock_locked+0xd0/0x3a60
[   86.006060][ T3556]  ? is_module_text_address+0x1d/0x150
[   86.006067][ T3556]  ? is_module_text_address+0x1d/0x150
[   86.006073][ T3556]  ? do_raw_spin_lock+0x121/0x2c0
[   86.006084][ T3556]  ? try_to_take_rt_mutex+0x810/0xa80
[   86.006091][ T3556]  ? rtlock_slowlock_locked+0xd0/0x3a60
[   86.006099][ T3556]  ? try_to_take_rt_mutex+0x810/0xa80
[   86.006107][ T3556]  ? do_raw_spin_lock+0x121/0x2c0
[   86.006115][ T3556]  ? do_raw_spin_unlock+0x122/0x240
[   86.006126][ T3556]  ? _raw_spin_unlock_irqrestore+0xa0/0x100
[   86.006132][ T3556]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   86.006139][ T3556]  ? rt_mutex_slowunlock+0x445/0x710
[   86.006145][ T3556]  ? __pfx_migrate_enable+0x10/0x10
[   86.006154][ T3556]  ? __pfx_rt_mutex_slowunlock+0x10/0x10
[   86.006162][ T3556]  evict+0x3ed/0x8e0
[   86.006170][ T3556]  ? __pfx_evict+0x10/0x10
[   86.006176][ T3556]  ? iput+0x476/0x6a0
[   86.006183][ T3556]  vfs_rmdir+0x34f/0x400
[   86.006191][ T3556]  do_rmdir+0x212/0x4d0
[   86.006196][ T3556]  ? __pfx_do_rmdir+0x10/0x10
[   86.006203][ T3556]  ? getname_flags+0x151/0x490
[   86.006211][ T3556]  __x64_sys_unlinkat+0x92/0xb0
[   86.006218][ T3556]  do_syscall_64+0x8f/0x180
[   86.006224][ T3556]  ? fpregs_assert_state_consistent+0x48/0x60
[   86.006231][ T3556]  ? clear_bhb_loop+0x25/0x80
[   86.006239][ T3556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.006246][ T3556] RIP: 0033:0x7f7943bae1c7
[   86.006258][ T3556] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.006263][ T3556] RSP: 002b:00007ffd9fc9fff8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[   86.006272][ T3556] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f7943bae1c7
[   86.006278][ T3556] RDX: 0000000000000200 RSI: 00007ffd9fca11a0 RDI: 00000000ffffff9c
[   86.006282][ T3556] RBP: 00007f7943c31c05 R08: 0000555574e6254b R09: 0000000000000000
[   86.006286][ T3556] R10: 0000000000001000 R11: 0000000000000207 R12: 00007ffd9fca11a0
[   86.006290][ T3556] R13: 00007f7943c31c05 R14: 0000000000014ee9 R15: 00007ffd9fca3360
[   86.006297][ T3556]  </TASK>
[   86.006300][ T3556] 
[   86.006303][ T3556] Allocated by task 3508:
[   86.006315][ T3556]  kasan_save_track+0x3e/0x80
[   86.006321][ T3556]  __kasan_kmalloc+0x93/0xb0
[   86.006327][ T3556]  __kmalloc_noprof+0x1dc/0x470
[   86.006333][ T3556]  __register_sysctl_table+0x67/0x1270
[   86.006339][ T3556]  __devinet_sysctl_register+0x379/0x450
[   86.006345][ T3556]  devinet_init_net+0x30c/0x720
[   86.006350][ T3556]  ops_init+0x27f/0x3f0
[   86.006357][ T3556]  setup_net+0x29f/0x6a0
[   86.006362][ T3556]  copy_net_ns+0x289/0x470
[   86.006367][ T3556]  create_new_namespaces+0x3b1/0x6b0
[   86.006373][ T3556]  unshare_nsproxy_namespaces+0xe0/0x120
[   86.006378][ T3556]  ksys_unshare+0x3b6/0x720
[   86.006386][ T3556]  __x64_sys_unshare+0x33/0x40
[   86.006391][ T3556]  do_syscall_64+0x8f/0x180
[   86.006396][ T3556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.006400][ T3556] 
[   86.006402][ T3556] Freed by task 153:
[   86.006406][ T3556]  kasan_save_track+0x3e/0x80
[   86.006411][ T3556]  kasan_save_free_info+0x46/0x50
[   86.006418][ T3556]  __kasan_slab_free+0x62/0x70
[   86.006427][ T3556]  kmem_cache_free_bulk+0x358/0x5b0
[   86.006433][ T3556]  kvfree_rcu_bulk+0xc6/0x1a0
[   86.006439][ T3556]  kfree_rcu_work+0xed/0x160
[   86.006444][ T3556]  process_scheduled_works+0x987/0x12d0
[   86.006450][ T3556]  worker_thread+0x850/0xc60
[   86.006455][ T3556]  kthread+0x598/0x690
[   86.006462][ T3556]  ret_from_fork+0x32/0x70
[   86.006468][ T3556]  ret_from_fork_asm+0x1a/0x30
[   86.006475][ T3556] 
[   86.006477][ T3556] Last potentially related work creation:
[   86.006480][ T3556]  kasan_save_stack+0x3e/0x60
[   86.006486][ T3556]  kasan_record_aux_stack+0xbd/0xd0
[   86.006493][ T3556]  kvfree_call_rcu+0x66/0x380
[   86.006498][ T3556]  drop_sysctl_table+0x2ff/0x480
[   86.006502][ T3556]  unregister_sysctl_table+0x26/0x40
[   86.006507][ T3556]  devinet_exit_net+0x195/0x240
[   86.006512][ T3556]  cleanup_net+0x6c9/0xa30
[   86.006518][ T3556]  process_scheduled_works+0x987/0x12d0
[   86.006523][ T3556]  worker_thread+0x850/0xc60
[   86.006528][ T3556]  kthread+0x598/0x690
[   86.006534][ T3556]  ret_from_fork+0x32/0x70
[   86.006540][ T3556]  ret_from_fork_asm+0x1a/0x30
[   86.006547][ T3556] 
[   86.006549][ T3556] The buggy address belongs to the object at ffff888035583000
[   86.006549][ T3556]  which belongs to the cache kmalloc-cg-2k of size 2048
[   86.006554][ T3556] The buggy address is located 1936 bytes to the right of
[   86.006554][ T3556]  allocated 2048-byte region [ffff888035583000, ffff888035583800)
[   86.006560][ T3556] 
[   86.006563][ T3556] The buggy address belongs to the physical page:
[   86.006566][ T3556] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x35580
[   86.006577][ T3556] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   86.006582][ T3556] flags: 0x80000000000040(head|node=0|zone=1)
[   86.006592][ T3556] page_type: f5(slab)
[   86.006599][ T3556] raw: 0080000000000040 ffff88800ec4b3c0 ffffea0000693c00 dead000000000002
[   86.006604][ T3556] raw: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   86.006609][ T3556] head: 0080000000000040 ffff88800ec4b3c0 ffffea0000693c00 dead000000000002
[   86.006614][ T3556] head: 0000000000000000 0000000000080008 00000000f5000000 0000000000000000
[   86.006619][ T3556] head: 0080000000000003 ffffea0000d56001 00000000ffffffff 00000000ffffffff
[   86.006623][ T3556] head: 00000007f8d06f17 0000000000000000 00000000ffffffff 0000000000000008
[   86.006626][ T3556] page dumped because: kasan: bad access detected
[   86.006634][ T3556] page_owner tracks the page as allocated
[   86.006636][ T3556] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 2629, tgid 2629 (syz-executor), ts 39225590425, free_ts 38972629539
[   86.006648][ T3556]  post_alloc_hook+0x168/0x1a0
[   86.006655][ T3556]  get_page_from_freelist+0x2856/0x28f0
[   86.006661][ T3556]  __alloc_frozen_pages_noprof+0x26b/0x460
[   86.006668][ T3556]  alloc_pages_mpol+0xcb/0x270
[   86.006675][ T3556]  allocate_slab+0x8a/0x350
[   86.006681][ T3556]  ___slab_alloc+0x7fc/0xc60
[   86.006687][ T3556]  __kmalloc_node_track_caller_noprof+0x12c/0x480
[   86.006693][ T3556]  kmemdup_noprof+0x21/0x50
[   86.006700][ T3556]  neigh_sysctl_register+0x9a/0xa30
[   86.006707][ T3556]  devinet_sysctl_register+0xa0/0x190
[   86.006712][ T3556]  inetdev_init+0x232/0x3e0
[   86.006720][ T3556]  inetdev_event+0x3b7/0xf90
[   86.006724][ T3556]  notifier_call_chain+0x12b/0x220
[   86.006730][ T3556]  call_netdevice_notifiers+0xc8/0x100
[   86.006736][ T3556]  register_netdevice+0x1209/0x1680
[   86.006743][ T3556]  register_netdev+0x25/0x40
[   86.006749][ T3556] page last free pid 2617 tgid 2617 stack trace:
[   86.006753][ T3556]  free_unref_folios+0xc89/0x13f0
[   86.006759][ T3556]  folios_put_refs+0x3ab/0x490
[   86.006765][ T3556]  free_pages_and_swap_cache+0x20d/0x3c0
[   86.006772][ T3556]  tlb_flush_mmu+0x2ba/0x500
[   86.006779][ T3556]  tlb_finish_mmu+0xaa/0x190
[   86.006786][ T3556]  vms_clear_ptes+0x45e/0x5a0
[   86.006791][ T3556]  vms_complete_munmap_vmas+0x1ad/0x680
[   86.006798][ T3556]  do_vmi_align_munmap+0x308/0x350
[   86.006805][ T3556]  do_vmi_munmap+0x192/0x210
[   86.006811][ T3556]  __vm_munmap+0x1bc/0x330
[   86.006816][ T3556]  __x64_sys_munmap+0x5b/0x70
[   86.006822][ T3556]  do_syscall_64+0x8f/0x180
[   86.006827][ T3556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.006832][ T3556] 
[   86.006834][ T3556] Memory state around the buggy address:
[   86.006838][ T3556]  ffff888035583e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.006842][ T3556]  ffff888035583f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.006846][ T3556] >ffff888035583f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   86.006849][ T3556]                          ^
[   86.006853][ T3556]  ffff888035584000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   86.006857][ T3556]  ffff888035584080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   86.006859][ T3556] ==================================================================
[   86.036239][ T3556] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   86.036676][ T3556] Kernel Offset: disabled