[ 132.999009][ T1334] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.999091][ T1334] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
2026/05/08 12:24:58 parsed 1 programs
[ 141.188921][ T6122] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 144.112502][ T159] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 144.112522][ T159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 144.152255][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 144.152275][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 147.744976][ T4918] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 147.765217][ T4918] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 147.766822][ T4918] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 147.770381][ T4918] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 147.773710][ T4918] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 150.522990][ T6196] bridge0: port 1(bridge_slave_0) entered blocking state
[ 150.523126][ T6196] bridge0: port 1(bridge_slave_0) entered disabled state
[ 150.523263][ T6196] bridge_slave_0: entered allmulticast mode
[ 150.524726][ T6196] bridge_slave_0: entered promiscuous mode
[ 150.530934][ T6196] bridge0: port 2(bridge_slave_1) entered blocking state
[ 150.531565][ T6196] bridge0: port 2(bridge_slave_1) entered disabled state
[ 150.531682][ T6196] bridge_slave_1: entered allmulticast mode
[ 150.534790][ T6196] bridge_slave_1: entered promiscuous mode
[ 150.696206][ T6196] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 150.699375][ T6196] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 150.844590][ T6196] team0: Port device team_slave_0 added
[ 150.846530][ T6196] team0: Port device team_slave_1 added
[ 151.003674][ T6196] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 151.003685][ T6196] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 151.003697][ T6196] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 151.004933][ T6196] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 151.004945][ T6196] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 151.004962][ T6196] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 151.422818][ T6196] hsr_slave_0: entered promiscuous mode
[ 151.423576][ T6196] hsr_slave_1: entered promiscuous mode
[ 153.309919][ T6196] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 153.346169][ T6196] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 153.347529][ T6196] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 153.385636][ T6196] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 153.386976][ T6196] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 153.426212][ T6196] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 153.432731][ T6196] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 153.480194][ T6196] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 153.680051][ T6196] 8021q: adding VLAN 0 to HW filter on device bond0
[ 153.699628][ T6196] 8021q: adding VLAN 0 to HW filter on device team0
[ 153.709468][ T3397] bridge0: port 1(bridge_slave_0) entered blocking state
[ 153.709692][ T3397] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 153.730403][ T3397] bridge0: port 2(bridge_slave_1) entered blocking state
[ 153.730602][ T3397] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 154.332346][ T6196] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 154.409693][ T6196] veth0_vlan: entered promiscuous mode
[ 154.427238][ T6196] veth1_vlan: entered promiscuous mode
[ 154.486051][ T6196] veth0_macvtap: entered promiscuous mode
[ 154.491201][ T6196] veth1_macvtap: entered promiscuous mode
[ 154.558048][ T6196] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 154.580206][ T6196] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 154.618039][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.618303][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.618338][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.618370][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 155.437697][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/08 12:25:17 executed programs: 0
[ 156.314909][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.428969][ T4918] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 156.466055][ T4918] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 156.467048][ T4918] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 156.468204][ T4918] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 156.468999][ T4918] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 157.149157][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 157.521146][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 158.582164][ T13] bridge_slave_1: left allmulticast mode
[ 158.582198][ T13] bridge_slave_1: left promiscuous mode
[ 158.582461][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 158.601876][ T4918] Bluetooth: hci0: command tx timeout
[ 158.683525][ T13] bridge_slave_0: left allmulticast mode
[ 158.683558][ T13] bridge_slave_0: left promiscuous mode
[ 158.683818][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 159.332474][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 159.392990][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 159.433940][ T13] bond0 (unregistering): Released all slaves
[ 159.608521][ T6347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 159.608711][ T6347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 159.608972][ T6347] bridge_slave_0: entered allmulticast mode
[ 159.611115][ T6347] bridge_slave_0: entered promiscuous mode
[ 159.632649][ T6347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 159.632745][ T6347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 159.632928][ T6347] bridge_slave_1: entered allmulticast mode
[ 159.638516][ T6347] bridge_slave_1: entered promiscuous mode
[ 159.807333][ T6347] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 159.942009][ T13] hsr_slave_0: left promiscuous mode
[ 159.992132][ T13] hsr_slave_1: left promiscuous mode
[ 159.993121][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 159.993145][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 160.032852][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 160.032879][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 160.113345][ T13] veth1_macvtap: left promiscuous mode
[ 160.113402][ T13] veth0_macvtap: left promiscuous mode
[ 160.113527][ T13] veth1_vlan: left promiscuous mode
[ 160.113759][ T13] veth0_vlan: left promiscuous mode
[ 160.671963][ T4918] Bluetooth: hci0: command tx timeout
[ 160.692404][ T13] team0 (unregistering): Port device team_slave_1 removed
[ 160.732806][ T13] team0 (unregistering): Port device team_slave_0 removed
[ 160.885609][ T6347] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 161.176697][ T6347] team0: Port device team_slave_0 added
[ 161.180133][ T6347] team0: Port device team_slave_1 added
[ 161.389710][ T5263] 8021q: adding VLAN 0 to HW filter on device eth1
[ 161.390706][ T6347] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 161.390720][ T6347] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 161.390750][ T6347] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 161.394420][ T6347] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 161.394434][ T6347] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 161.394457][ T6347] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 161.630529][ T6347] hsr_slave_0: entered promiscuous mode
[ 161.631586][ T6347] hsr_slave_1: entered promiscuous mode
[ 162.329205][ T5263] 8021q: adding VLAN 0 to HW filter on device eth2
[ 162.770820][ T4918] Bluetooth: hci0: command tx timeout
[ 163.607642][ T6347] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 163.639343][ T6347] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 163.641007][ T6347] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 163.675555][ T6347] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 163.676926][ T6347] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 163.728998][ T6347] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 163.730165][ T6347] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 163.781434][ T6347] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 163.938635][ T6347] 8021q: adding VLAN 0 to HW filter on device bond0
[ 163.980790][ T6347] 8021q: adding VLAN 0 to HW filter on device team0
[ 164.005135][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 164.005320][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 164.029839][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 164.030000][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 164.559379][ T6347] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 164.618720][ T6347] veth0_vlan: entered promiscuous mode
[ 164.635631][ T6347] veth1_vlan: entered promiscuous mode
[ 164.670743][ T6347] veth0_macvtap: entered promiscuous mode
[ 164.682430][ T6347] veth1_macvtap: entered promiscuous mode
[ 164.704696][ T6347] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 164.721080][ T6347] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 164.746960][ T1728] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 164.747741][ T1728] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 164.747781][ T1728] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 164.747811][ T1728] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 164.835796][ T4918] Bluetooth: hci0: command tx timeout
[ 165.077130][ T3552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 165.077153][ T3552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 165.139755][ T3397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 165.139775][ T3397] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 12:25:26 executed programs: 2
[ 165.506010][ T6524] loop0: detected capacity change from 0 to 32768
[ 165.671403][ T6524] Bad index:0 in slot in dtroot
[ 165.671403][ T6524]
[ 165.671425][ T6524] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 165.671425][ T6524]
[ 165.700972][ T6524] ERROR: (device loop0): remounting filesystem as read-only
[ 166.115443][ T6526] loop0: detected capacity change from 0 to 32768
[ 166.133749][ T6526] Bad index:0 in slot in dtroot
[ 166.133749][ T6526]
[ 166.133763][ T6526] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.133763][ T6526]
[ 166.134055][ T6526] ERROR: (device loop0): remounting filesystem as read-only
[ 166.535587][ T6528] loop0: detected capacity change from 0 to 32768
[ 166.547864][ T6528] Bad index:0 in slot in dtroot
[ 166.547864][ T6528]
[ 166.547881][ T6528] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.547881][ T6528]
[ 166.548141][ T6528] ERROR: (device loop0): remounting filesystem as read-only
[ 166.905815][ T6530] loop0: detected capacity change from 0 to 32768
[ 166.937300][ T6530] Bad index:0 in slot in dtroot
[ 166.937300][ T6530]
[ 166.937317][ T6530] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 166.937317][ T6530]
[ 166.937604][ T6530] ERROR: (device loop0): remounting filesystem as read-only
[ 167.335411][ T6532] loop0: detected capacity change from 0 to 32768
[ 167.359812][ T6532] Bad index:0 in slot in dtroot
[ 167.359812][ T6532]
[ 167.359827][ T6532] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 167.359827][ T6532]
[ 167.360033][ T6532] ERROR: (device loop0): remounting filesystem as read-only
[ 167.720964][ T6534] loop0: detected capacity change from 0 to 32768
[ 167.767954][ T6534] Bad index:0 in slot in dtroot
[ 167.767954][ T6534]
[ 167.767971][ T6534] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 167.767971][ T6534]
[ 167.768422][ T6534] ERROR: (device loop0): remounting filesystem as read-only
[ 168.128201][ T6536] loop0: detected capacity change from 0 to 32768
[ 168.159631][ T6536] Bad index:0 in slot in dtroot
[ 168.159631][ T6536]
[ 168.159648][ T6536] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.159648][ T6536]
[ 168.160865][ T6536] ERROR: (device loop0): remounting filesystem as read-only
[ 168.503891][ T6538] loop0: detected capacity change from 0 to 32768
[ 168.532684][ T6538] Bad index:0 in slot in dtroot
[ 168.532684][ T6538]
[ 168.532701][ T6538] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.532701][ T6538]
[ 168.533705][ T6538] ERROR: (device loop0): remounting filesystem as read-only
[ 168.867697][ T6540] loop0: detected capacity change from 0 to 32768
[ 168.898733][ T6540] Bad index:0 in slot in dtroot
[ 168.898733][ T6540]
[ 168.898750][ T6540] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 168.898750][ T6540]
[ 168.900010][ T6540] ERROR: (device loop0): remounting filesystem as read-only
[ 169.239081][ T6542] loop0: detected capacity change from 0 to 32768
[ 169.254454][ T6542] Bad index:0 in slot in dtroot
[ 169.254454][ T6542]
[ 169.254469][ T6542] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 169.254469][ T6542]
[ 169.254763][ T6542] ERROR: (device loop0): remounting filesystem as read-only
[ 169.617800][ T6544] Bad index:0 in slot in dtroot
[ 169.617800][ T6544]
[ 169.617826][ T6544] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 169.617826][ T6544]
[ 169.618103][ T6544] ERROR: (device loop0): remounting filesystem as read-only
[ 169.985910][ T6546] Bad index:0 in slot in dtroot
[ 169.985910][ T6546]
[ 169.985927][ T6546] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 169.985927][ T6546]
[ 169.986136][ T6546] ERROR: (device loop0): remounting filesystem as read-only
[ 170.029073][ T3444] ==================================================================
[ 170.029090][ T3444] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.029118][ T3444] Read of size 4096 at addr ffff888045e97000 by task kworker/u8:16/3444
[ 170.029133][ T3444]
[ 170.029158][ T3444] CPU: 0 UID: 0 PID: 3444 Comm: kworker/u8:16 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 170.029178][ T3444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 170.029188][ T3444] Workqueue: loop0 loop_workfn
[ 170.029221][ T3444] Call Trace:
[ 170.029228][ T3444]
[ 170.029236][ T3444] dump_stack_lvl+0xe8/0x150
[ 170.029256][ T3444] print_address_description+0x55/0x1e0
[ 170.029275][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.029292][ T3444] print_report+0x58/0x70
[ 170.029309][ T3444] kasan_report+0x117/0x150
[ 170.029329][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.029350][ T3444] kasan_check_range+0x264/0x2c0
[ 170.029368][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.029386][ T3444] __asan_memcpy+0x29/0x70
[ 170.029408][ T3444] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.029434][ T3444] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 170.029453][ T3444] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 170.029475][ T3444] ? shmem_write_begin+0x1ce/0x320
[ 170.029496][ T3444] generic_perform_write+0x5b1/0x8b0
[ 170.029519][ T3444] ? __pfx_generic_perform_write+0x10/0x10
[ 170.029545][ T3444] ? file_update_time_flags+0x3b9/0x4b0
[ 170.029564][ T3444] shmem_file_write_iter+0xfb/0x120
[ 170.029586][ T3444] lo_rw_aio+0xc80/0xf00
[ 170.029611][ T3444] ? __pfx_lo_rw_aio+0x10/0x10
[ 170.029633][ T3444] ? kthread_associate_blkcg+0x490/0x600
[ 170.029652][ T3444] ? rt_spin_unlock+0x160/0x200
[ 170.029668][ T3444] loop_process_work+0x637/0x11b0
[ 170.029691][ T3444] ? __pfx_loop_process_work+0x10/0x10
[ 170.029706][ T3444] ? __lock_acquire+0x6b5/0x2cf0
[ 170.029729][ T3444] ? look_up_lock_class+0x57/0x110
[ 170.029744][ T3444] ? register_lock_class+0x31/0x2e0
[ 170.029761][ T3444] ? __lock_acquire+0x6b5/0x2cf0
[ 170.029778][ T3444] ? finish_task_switch+0x15f/0xbe0
[ 170.029796][ T3444] ? lock_acquire+0x106/0x350
[ 170.029812][ T3444] ? do_raw_spin_lock+0x12b/0x2f0
[ 170.029825][ T3444] ? lock_acquire+0x106/0x350
[ 170.029840][ T3444] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 170.029855][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.029870][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.029887][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.029899][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.029914][ T3444] process_scheduled_works+0xb5d/0x1860
[ 170.029941][ T3444] ? __pfx_process_scheduled_works+0x10/0x10
[ 170.029959][ T3444] ? assign_work+0x3d5/0x5e0
[ 170.029976][ T3444] worker_thread+0xa53/0xfc0
[ 170.029998][ T3444] kthread+0x388/0x470
[ 170.030013][ T3444] ? __pfx_worker_thread+0x10/0x10
[ 170.030025][ T3444] ? __pfx_kthread+0x10/0x10
[ 170.030040][ T3444] ret_from_fork+0x514/0xb70
[ 170.030055][ T3444] ? __pfx_ret_from_fork+0x10/0x10
[ 170.030068][ T3444] ? __switch_to+0xc79/0x1410
[ 170.030088][ T3444] ? __pfx_kthread+0x10/0x10
[ 170.030104][ T3444] ret_from_fork_asm+0x1a/0x30
[ 170.030124][ T3444]
[ 170.030130][ T3444]
[ 170.030134][ T3444] The buggy address belongs to the physical page:
[ 170.030154][ T3444] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x37 pfn:0x45e97
[ 170.030168][ T3444] flags: 0x80000000000000(node=0|zone=1)
[ 170.030187][ T3444] raw: 0080000000000000 ffffea0001150e48 ffffea000108f648 0000000000000000
[ 170.030198][ T3444] raw: 0000000000000037 0000000000000000 00000000ffffffff 0000000000000000
[ 170.030203][ T3444] page dumped because: kasan: bad access detected
[ 170.030216][ T3444] page_owner tracks the page as freed
[ 170.030221][ T3444] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 6546, tgid 6545 (syz.0.28), ts 169977852501, free_ts 170029016416
[ 170.030241][ T3444] post_alloc_hook+0x231/0x280
[ 170.030255][ T3444] get_page_from_freelist+0x27c8/0x2840
[ 170.030270][ T3444] __alloc_frozen_pages_noprof+0x18d/0x380
[ 170.030285][ T3444] alloc_pages_mpol+0xd1/0x380
[ 170.030298][ T3444] alloc_pages_noprof+0xd2/0x2f0
[ 170.030312][ T3444] lmLogInit+0x357/0x1a00
[ 170.030327][ T3444] lmLogOpen+0x4e1/0xfa0
[ 170.030341][ T3444] jfs_mount_rw+0xee/0x670
[ 170.030353][ T3444] jfs_fill_super+0x754/0xd80
[ 170.030363][ T3444] get_tree_bdev_flags+0x431/0x4f0
[ 170.030375][ T3444] vfs_get_tree+0x92/0x2a0
[ 170.030387][ T3444] do_new_mount+0x341/0xd30
[ 170.030402][ T3444] __se_sys_mount+0x31d/0x420
[ 170.030417][ T3444] do_syscall_64+0x15f/0xf80
[ 170.030432][ T3444] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 170.030445][ T3444] page last free pid 6546 tgid 6545 stack trace:
[ 170.030453][ T3444] __free_frozen_pages+0xfa6/0x10f0
[ 170.030466][ T3444] lmLogShutdown+0x44e/0x850
[ 170.030480][ T3444] lmLogClose+0x28a/0x520
[ 170.030493][ T3444] jfs_umount+0x2fb/0x3d0
[ 170.030506][ T3444] jfs_fill_super+0x9c5/0xd80
[ 170.030516][ T3444] get_tree_bdev_flags+0x431/0x4f0
[ 170.030528][ T3444] vfs_get_tree+0x92/0x2a0
[ 170.030540][ T3444] do_new_mount+0x341/0xd30
[ 170.030555][ T3444] __se_sys_mount+0x31d/0x420
[ 170.030570][ T3444] do_syscall_64+0x15f/0xf80
[ 170.030584][ T3444] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 170.030596][ T3444]
[ 170.030600][ T3444] Memory state around the buggy address:
[ 170.030608][ T3444] ffff888045e96f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 170.030616][ T3444] ffff888045e96f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 170.030624][ T3444] >ffff888045e97000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 170.030629][ T3444] ^
[ 170.030636][ T3444] ffff888045e97080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 170.030645][ T3444] ffff888045e97100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 170.030652][ T3444] ==================================================================
[ 170.030680][ T3444] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 170.030691][ T3444] CPU: 0 UID: 0 PID: 3444 Comm: kworker/u8:16 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 170.030706][ T3444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 170.030722][ T3444] Workqueue: loop0 loop_workfn
[ 170.030740][ T3444] Call Trace:
[ 170.030746][ T3444]
[ 170.030752][ T3444] vpanic+0x56c/0xa60
[ 170.030770][ T3444] ? __pfx_vpanic+0x10/0x10
[ 170.030789][ T3444] panic+0xc5/0xd0
[ 170.030804][ T3444] ? __pfx_panic+0x10/0x10
[ 170.030820][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030838][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030849][ T3444] check_panic_on_warn+0x89/0xb0
[ 170.030867][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030879][ T3444] end_report+0x73/0x170
[ 170.030894][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030907][ T3444] kasan_report+0x128/0x150
[ 170.030933][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030948][ T3444] kasan_check_range+0x264/0x2c0
[ 170.030962][ T3444] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.030976][ T3444] __asan_memcpy+0x29/0x70
[ 170.030994][ T3444] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 170.031014][ T3444] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 170.031029][ T3444] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 170.031048][ T3444] ? shmem_write_begin+0x1ce/0x320
[ 170.031064][ T3444] generic_perform_write+0x5b1/0x8b0
[ 170.031085][ T3444] ? __pfx_generic_perform_write+0x10/0x10
[ 170.031102][ T3444] ? file_update_time_flags+0x3b9/0x4b0
[ 170.031117][ T3444] shmem_file_write_iter+0xfb/0x120
[ 170.031135][ T3444] lo_rw_aio+0xc80/0xf00
[ 170.031158][ T3444] ? __pfx_lo_rw_aio+0x10/0x10
[ 170.031176][ T3444] ? kthread_associate_blkcg+0x490/0x600
[ 170.031192][ T3444] ? rt_spin_unlock+0x160/0x200
[ 170.031205][ T3444] loop_process_work+0x637/0x11b0
[ 170.031227][ T3444] ? __pfx_loop_process_work+0x10/0x10
[ 170.031242][ T3444] ? __lock_acquire+0x6b5/0x2cf0
[ 170.031259][ T3444] ? look_up_lock_class+0x57/0x110
[ 170.031276][ T3444] ? register_lock_class+0x31/0x2e0
[ 170.031294][ T3444] ? __lock_acquire+0x6b5/0x2cf0
[ 170.031313][ T3444] ? finish_task_switch+0x15f/0xbe0
[ 170.031329][ T3444] ? lock_acquire+0x106/0x350
[ 170.031345][ T3444] ? do_raw_spin_lock+0x12b/0x2f0
[ 170.031358][ T3444] ? lock_acquire+0x106/0x350
[ 170.031373][ T3444] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 170.031387][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.031401][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.031417][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.031429][ T3444] ? process_scheduled_works+0xa70/0x1860
[ 170.031442][ T3444] process_scheduled_works+0xb5d/0x1860
[ 170.031465][ T3444] ? __pfx_process_scheduled_works+0x10/0x10
[ 170.031480][ T3444] ? assign_work+0x3d5/0x5e0
[ 170.031494][ T3444] worker_thread+0xa53/0xfc0
[ 170.031516][ T3444] kthread+0x388/0x470
[ 170.031533][ T3444] ? __pfx_worker_thread+0x10/0x10
[ 170.031545][ T3444] ? __pfx_kthread+0x10/0x10
[ 170.031562][ T3444] ret_from_fork+0x514/0xb70
[ 170.031577][ T3444] ? __pfx_ret_from_fork+0x10/0x10
[ 170.031590][ T3444] ? __switch_to+0xc79/0x1410
[ 170.031612][ T3444] ? __pfx_kthread+0x10/0x10
[ 170.031628][ T3444] ret_from_fork_asm+0x1a/0x30
[ 170.031648][ T3444]
[ 170.033570][ T3444] Kernel Offset: disabled