Warning: Permanently added '10.128.1.27' (ED25519) to the list of known hosts.
1970/01/01 00:01:05 ignoring optional flag "type"="gce"
1970/01/01 00:01:05 parsed 1 programs
[   66.933977][ T4480] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   69.624485][ T2065] ieee802154 phy0 wpan0: encryption failed: -22
[   69.625059][    T7] cfg80211: failed to load regulatory.db
[   69.625506][ T2065] ieee802154 phy1 wpan1: encryption failed: -22
[   70.450750][  T351] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.452005][  T351] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.455992][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   70.460366][  T351] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.461597][  T351] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.463884][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.777569][ T4580] chnl_net:caif_netlink_parms(): no params data found
[   70.843896][ T4580] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.845061][ T4580] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.846674][ T4580] device bridge_slave_0 entered promiscuous mode
[   70.848739][ T4580] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.849779][ T4580] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.851315][ T4580] device bridge_slave_1 entered promiscuous mode
[   70.860000][ T4580] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.862536][ T4580] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.871273][ T4580] team0: Port device team_slave_0 added
[   70.873047][ T4580] team0: Port device team_slave_1 added
[   70.880219][ T4580] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.881320][ T4580] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.886444][ T4580] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.889054][ T4580] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.890122][ T4580] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.894595][ T4580] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.964962][ T4580] device hsr_slave_0 entered promiscuous mode
[   71.033488][ T4580] device hsr_slave_1 entered promiscuous mode
[   71.633906][ T4580] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.684409][ T4580] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.704339][ T4580] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.735339][ T4580] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.796162][ T4580] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.799672][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   71.801087][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   71.804015][ T4580] 8021q: adding VLAN 0 to HW filter on device team0
[   71.806298][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   71.807945][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   71.809292][  T351] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.810360][  T351] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.811829][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   71.814903][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   71.816389][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   71.817775][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.818899][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.822206][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   71.825509][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   71.832004][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   71.835880][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   71.840139][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   71.841728][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   71.843522][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   71.845008][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   71.846484][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   71.849972][ T4580] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   71.851890][ T4580] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   71.855280][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   71.856779][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   71.897715][ T4580] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.904829][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   71.906087][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   71.907235][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   71.909583][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   71.915027][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   71.916537][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   71.918032][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   71.919253][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   71.921873][ T4580] device veth0_vlan entered promiscuous mode
[   71.926223][ T4580] device veth1_vlan entered promiscuous mode
[   71.932939][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   71.935508][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   71.936771][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   71.938309][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   71.940858][ T4580] device veth0_macvtap entered promiscuous mode
[   71.942995][ T4580] device veth1_macvtap entered promiscuous mode
[   71.951181][ T4580] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.952399][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   71.954787][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   71.956177][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   71.958045][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   71.960883][ T4580] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.962996][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   71.965605][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   71.967439][ T4580] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.968719][ T4580] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.970093][ T4580] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.971465][ T4580] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:01:12 executed programs: 0
[   72.137773][ T4730] chnl_net:caif_netlink_parms(): no params data found
[   72.154929][ T4730] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.156112][ T4730] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.157691][ T4730] device bridge_slave_0 entered promiscuous mode
[   72.159850][ T4730] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.160992][ T4730] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.162446][ T4730] device bridge_slave_1 entered promiscuous mode
[   72.171185][ T4730] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.174050][ T4730] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.181480][ T4730] team0: Port device team_slave_0 added
[   72.183112][ T4730] team0: Port device team_slave_1 added
[   72.190724][ T4730] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.191617][ T4730] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.196326][ T4730] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.199481][ T4730] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.200585][ T4730] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.204830][ T4730] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.254410][ T4730] device hsr_slave_0 entered promiscuous mode
[   72.294521][ T4730] device hsr_slave_1 entered promiscuous mode
[   72.323451][ T4730] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   72.324658][ T4730] Cannot create hsr debugfs directory
[   72.355195][ T4730] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.103485][ T4637] Bluetooth: hci0: command 0x0409 tx timeout
[   75.456891][ T4730] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.183394][ T4637] Bluetooth: hci0: command 0x041b tx timeout
[   77.636784][ T4730] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.689281][ T4730] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.857627][ T4730] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   77.885349][ T4730] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   77.930441][ T4730] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   77.965553][ T4730] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   78.039862][ T4730] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.043536][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.044939][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.047324][ T4730] 8021q: adding VLAN 0 to HW filter on device team0
[   78.049648][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   78.051060][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   78.052553][  T136] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.053655][  T136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.056193][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   78.058649][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   78.060162][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   78.061629][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.062677][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.065835][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.068428][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.071022][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.073050][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.076371][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.078920][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.080484][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.083115][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.085435][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.087981][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.089444][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.091844][ T4730] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.132534][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   78.134714][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   78.141857][ T4730] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.147808][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   78.149460][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   78.155287][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   78.156759][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   78.158306][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   78.159638][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   78.162027][ T4730] device veth0_vlan entered promiscuous mode
[   78.165416][ T4730] device veth1_vlan entered promiscuous mode
[   78.171813][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   78.174154][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   78.175597][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   78.177114][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   78.179880][ T4730] device veth0_macvtap entered promiscuous mode
[   78.186948][ T4730] device veth1_macvtap entered promiscuous mode
[   78.191903][ T4730] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   78.194388][ T4730] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.196368][ T4730] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.197663][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   78.199181][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   78.200576][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   78.202069][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   78.208271][ T4730] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.209941][ T4730] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.212020][ T4730] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.213170][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   78.214789][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   78.217370][ T4730] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.218703][ T4730] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.220102][ T4730] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.221420][ T4730] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.238859][  T351] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.240099][  T351] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.241564][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   78.250452][  T351] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.251715][  T351] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.253744][  T351] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:18 executed programs: 2
[   78.264615][ T4635] Bluetooth: hci0: command 0x040f tx timeout
[   78.368378][ T4985] loop0: detected capacity change from 0 to 32768
[   78.456492][  T248] BUG: spinlock bad magic on CPU#0, jfsCommit/248
[   78.457434][  T248]  lock: 0xffff0000e2f03828, .magic: ffff8000, .owner: /0, .owner_cpu: 512
[   78.458631][  T248] CPU: 0 PID: 248 Comm: jfsCommit Not tainted syzkaller #0
[   78.459683][  T248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   78.461090][  T248] Call trace:
[   78.461562][  T248]  dump_backtrace+0x0/0x43c
[   78.462167][  T248]  show_stack+0x2c/0x3c
[   78.462749][  T248]  __dump_stack+0x30/0x40
[   78.463376][  T248]  dump_stack_lvl+0xf8/0x160
[   78.463981][  T248]  dump_stack+0x1c/0x5c
[   78.464549][  T248]  spin_dump+0x110/0x208
[   78.465175][  T248]  do_raw_spin_lock+0x1e0/0x2f0
[   78.465900][  T248]  _raw_spin_lock_irqsave+0xcc/0x14c
[   78.466657][  T248]  __wake_up+0xe0/0x16c
[   78.467203][  T248]  release_metapage+0x17c/0x920
[   78.467919][  T248]  xtTruncate+0xb70/0x2698
[   78.468612][  T248]  jfs_free_zero_link+0x2a4/0x410
[   78.469380][  T248]  jfs_evict_inode+0x2fc/0x3fc
[   78.470069][  T248]  evict+0x3c8/0x810
[   78.470629][  T248]  iput+0x6c4/0x77c
[   78.471152][  T248]  txUpdateMap+0x6ac/0x7cc
[   78.471767][  T248]  jfs_lazycommit+0x384/0x9bc
[   78.472436][  T248]  kthread+0x374/0x454
[   78.473020][  T248]  ret_from_fork+0x10/0x20
[   78.473668][  T248] ================================================================================
[   78.474932][  T248] UBSAN: array-index-out-of-bounds in kernel/locking/qspinlock.c:130:9
[   78.476208][  T248] index 1112 is out of range for type 'unsigned long[8]'
[   78.477213][  T248] CPU: 0 PID: 248 Comm: jfsCommit Not tainted syzkaller #0
[   78.478227][  T248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   78.479745][  T248] Call trace:
[   78.480224][  T248]  dump_backtrace+0x0/0x43c
[   78.480882][  T248]  show_stack+0x2c/0x3c
[   78.481479][  T248]  __dump_stack+0x30/0x40
[   78.482158][  T248]  dump_stack_lvl+0xf8/0x160
[   78.482854][  T248]  dump_stack+0x1c/0x5c
[   78.483441][  T248]  ubsan_epilogue+0x14/0x48
[   78.484135][  T248]  __ubsan_handle_out_of_bounds+0xd4/0x108
[   78.484966][  T248]  queued_spin_lock_slowpath+0x724/0x798
[   78.485789][  T248]  do_raw_spin_lock+0x2ec/0x2f0
[   78.486501][  T248]  _raw_spin_lock_irqsave+0xcc/0x14c
[   78.487295][  T248]  __wake_up+0xe0/0x16c
[   78.487922][  T248]  release_metapage+0x17c/0x920
[   78.488599][  T248]  xtTruncate+0xb70/0x2698
[   78.489256][  T248]  jfs_free_zero_link+0x2a4/0x410
[   78.489979][  T248]  jfs_evict_inode+0x2fc/0x3fc
[   78.490674][  T248]  evict+0x3c8/0x810
[   78.491244][  T248]  iput+0x6c4/0x77c
[   78.491816][  T248]  txUpdateMap+0x6ac/0x7cc
[   78.492447][  T248]  jfs_lazycommit+0x384/0x9bc
[   78.493054][  T248]  kthread+0x374/0x454
[   78.493629][  T248]  ret_from_fork+0x10/0x20
[   78.494254][  T248] ================================================================================
[   78.495487][  T248] ==================================================================
[   78.496589][  T248] BUG: KASAN: use-after-free in queued_spin_lock_slowpath+0x57c/0x798
[   78.497762][  T248] Write of size 8 at addr ffff0000215c1f5c by task jfsCommit/248
[   78.498802][  T248] 
[   78.499139][  T248] CPU: 0 PID: 248 Comm: jfsCommit Not tainted syzkaller #0
[   78.500113][  T248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   78.501491][  T248] Call trace:
[   78.501921][  T248]  dump_backtrace+0x0/0x43c
[   78.502542][  T248]  show_stack+0x2c/0x3c
[   78.503118][  T248]  __dump_stack+0x30/0x40
[   78.503701][  T248]  dump_stack_lvl+0xf8/0x160
[   78.504286][  T248]  print_address_description+0x78/0x30c
[   78.505020][  T248]  kasan_report+0xec/0x15c
[   78.505639][  T248]  __asan_report_store8_noabort+0x44/0x50
[   78.506395][  T248]  queued_spin_lock_slowpath+0x57c/0x798
[   78.507149][  T248]  do_raw_spin_lock+0x2ec/0x2f0
[   78.507835][  T248]  _raw_spin_lock_irqsave+0xcc/0x14c
[   78.508562][  T248]  __wake_up+0xe0/0x16c
[   78.509124][  T248]  release_metapage+0x17c/0x920
[   78.509864][  T248]  xtTruncate+0xb70/0x2698
[   78.510549][  T248]  jfs_free_zero_link+0x2a4/0x410
[   78.511313][  T248]  jfs_evict_inode+0x2fc/0x3fc
[   78.512022][  T248]  evict+0x3c8/0x810
[   78.512646][  T248]  iput+0x6c4/0x77c
[   78.513196][  T248]  txUpdateMap+0x6ac/0x7cc
[   78.513861][  T248]  jfs_lazycommit+0x384/0x9bc
[   78.514516][  T248]  kthread+0x374/0x454
[   78.515109][  T248]  ret_from_fork+0x10/0x20
[   78.515834][  T248] 
[   78.516166][  T248] The buggy address belongs to the page:
[   78.517033][  T248] page:000000000a640655 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x615c1
[   78.518566][  T248] flags: 0x1ffc00000000000(node=0|zone=0|lastcpupid=0x7ff)
[   78.519616][  T248] raw: 01ffc00000000000 fffffc0000857048 fffffc0000857048 0000000000000000
[   78.520874][  T248] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[   78.522066][  T248] page dumped because: kasan: bad access detected
[   78.522985][  T248] 
[   78.523294][  T248] Memory state around the buggy address:
[   78.524058][  T248]  ffff0000215c1e00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   78.525221][  T248]  ffff0000215c1e80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   78.526378][  T248] >ffff0000215c1f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   78.527470][  T248]                                                     ^
[   78.528499][  T248]  ffff0000215c1f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   78.529735][  T248]  ffff0000215c2000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   78.530937][  T248] ==================================================================
[   80.363852][ T4635] Bluetooth: hci0: command 0x0419 tx timeout