[   38.397415][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.410717][    T9] veth1_macvtap: left promiscuous mode
[   38.416447][    T9] veth0_macvtap: left promiscuous mode
[   38.423030][    T9] veth1_vlan: left promiscuous mode
[   38.428752][    T9] veth0_vlan: left promiscuous mode
[   38.568246][    T9] team0 (unregistering): Port device team_slave_1 removed
[   38.583077][    T9] team0 (unregistering): Port device team_slave_0 removed
[   38.598669][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   38.611971][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   38.642885][    T9] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.15.203' (ECDSA) to the list of known hosts.
2023/03/13 16:36:14 ignoring optional flag "sandboxArg"="0"
2023/03/13 16:36:14 parsed 1 programs
2023/03/13 16:36:14 executed programs: 0
[   50.162566][ T4394] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   50.170866][ T4394] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   50.178787][ T4394] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   50.186378][ T4394] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   50.195073][ T4394] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   50.202301][ T4394] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   50.285841][ T5470] chnl_net:caif_netlink_parms(): no params data found
[   50.321516][ T5470] bridge0: port 1(bridge_slave_0) entered blocking state
[   50.329277][ T5470] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.336374][ T5470] bridge_slave_0: entered allmulticast mode
[   50.343189][ T5470] bridge_slave_0: entered promiscuous mode
[   50.350603][ T5470] bridge0: port 2(bridge_slave_1) entered blocking state
[   50.358497][ T5470] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.365618][ T5470] bridge_slave_1: entered allmulticast mode
[   50.372340][ T5470] bridge_slave_1: entered promiscuous mode
[   50.390519][ T5470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   50.400946][ T5470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   50.423423][ T5470] team0: Port device team_slave_0 added
[   50.430407][ T5470] team0: Port device team_slave_1 added
[   50.448128][ T5470] batman_adv: batadv0: Adding interface: batadv_slave_0
[   50.455058][ T5470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.481900][ T5470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   50.493845][ T5470] batman_adv: batadv0: Adding interface: batadv_slave_1
[   50.501868][ T5470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   50.529406][ T5470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   50.557522][ T5470] hsr_slave_0: entered promiscuous mode
[   50.563467][ T5470] hsr_slave_1: entered promiscuous mode
[   51.056208][ T5470] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   51.070478][ T5470] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   51.078739][ T5470] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   51.086946][ T5470] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   51.103494][ T5470] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.110672][ T5470] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.118245][ T5470] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.125315][ T5470] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.161825][ T5470] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.172560][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   51.182329][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   51.190799][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   51.199189][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   51.210903][ T5470] 8021q: adding VLAN 0 to HW filter on device team0
[   51.221241][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   51.229877][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   51.236927][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   51.260487][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   51.269517][   T14] bridge0: port 2(bridge_slave_1) entered blocking state
[   51.276639][   T14] bridge0: port 2(bridge_slave_1) entered forwarding state
[   51.284878][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   51.293348][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   51.301789][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   51.310059][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   51.319441][ T5470] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   51.328133][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   51.418871][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   51.426330][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   51.438488][ T5470] 8021q: adding VLAN 0 to HW filter on device batadv0
[   51.452023][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   51.461849][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   51.478302][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   51.486258][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   51.496128][ T5470] veth0_vlan: entered promiscuous mode
[   51.505205][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   51.513453][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   51.523080][ T5470] veth1_vlan: entered promiscuous mode
[   51.539481][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   51.547715][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   51.555570][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   51.566677][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   51.576333][ T5470] veth0_macvtap: entered promiscuous mode
[   51.587603][ T5470] veth1_macvtap: entered promiscuous mode
[   51.600399][ T5470] batman_adv: batadv0: Interface activated: batadv_slave_0
[   51.609385][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   51.617940][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   51.625635][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   51.635021][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   51.645950][ T5470] batman_adv: batadv0: Interface activated: batadv_slave_1
[   51.654877][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   51.663678][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   51.674013][ T5470] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   51.683459][ T5470] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.692767][ T5470] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.701926][ T5470] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.744974][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.755634][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.771943][ T2980] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   51.773010][ T5085] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   51.781134][ T2980] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   51.796088][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   51.961930][ T5595] loop0: detected capacity change from 0 to 32768
[   52.005081][ T5595] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   52.005081][ T5595] 
[   52.245574][ T5616] loop0: detected capacity change from 0 to 32768
[   52.278490][ T5074] Bluetooth: hci0: command 0x0409 tx timeout
[   52.285220][ T5616] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   52.285220][ T5616] 
[   52.493894][ T5633] loop0: detected capacity change from 0 to 32768
[   52.512102][ T5633] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   52.512102][ T5633] 
[   52.750796][ T5650] loop0: detected capacity change from 0 to 32768
[   52.761319][ T5650] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   52.761319][ T5650] 
[   52.994631][ T5669] loop0: detected capacity change from 0 to 32768
[   53.024766][ T5669] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   53.024766][ T5669] 
[   53.249366][ T5688] loop0: detected capacity change from 0 to 32768
[   53.260638][ T5688] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   53.260638][ T5688] 
[   53.484223][ T5706] loop0: detected capacity change from 0 to 32768
[   53.495883][ T5706] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   53.495883][ T5706] 
[   53.973443][ T5755] loop0: detected capacity change from 0 to 32768
[   53.985594][ T5755] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   53.985594][ T5755] 
[   54.203921][ T5772] loop0: detected capacity change from 0 to 32768
[   54.221702][ T5772] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   54.221702][ T5772] 
[   54.357651][ T5074] Bluetooth: hci0: command 0x041b tx timeout
[   54.716409][ T5822] loop0: detected capacity change from 0 to 32768
[   54.726955][ T5822] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   54.726955][ T5822] 
2023/03/13 16:36:20 executed programs: 11
[   55.209845][ T5873] loop0: detected capacity change from 0 to 32768
[   55.226005][ T5873] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   55.226005][ T5873] 
[   55.411960][ T5885] loop0: detected capacity change from 0 to 32768
[   55.421598][ T5885] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   55.421598][ T5885] 
[   55.648174][ T5901] loop0: detected capacity change from 0 to 32768
[   55.664964][ T5901] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   55.664964][ T5901] 
[   55.872238][ T5917] loop0: detected capacity change from 0 to 32768
[   55.888591][ T5917] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4
[   55.888591][ T5917] 
[   56.111682][ T5934] loop0: detected capacity change from 0 to 32768
[   56.122076][ T5934] ==================================================================
[   56.130118][ T5934] BUG: KASAN: slab-out-of-bounds in jfs_readdir+0x2a98/0x3610
[   56.137552][ T5934] Read of size 1 at addr ffff8880762cff75 by task syz-executor.0/5934
[   56.145673][ T5934] 
[   56.147974][ T5934] CPU: 0 PID: 5934 Comm: syz-executor.0 Not tainted 6.3.0-rc2-syzkaller #0
[   56.156533][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   56.166563][ T5934] Call Trace:
[   56.169826][ T5934]  <TASK>
[   56.172742][ T5934]  dump_stack_lvl+0x64/0xb0
[   56.177225][ T5934]  print_address_description.constprop.0+0x2c/0x3c0
[   56.183790][ T5934]  ? jfs_readdir+0x2a98/0x3610
[   56.188537][ T5934]  kasan_report+0x11c/0x130
[   56.193017][ T5934]  ? jfs_readdir+0x2a98/0x3610
[   56.197841][ T5934]  jfs_readdir+0x2a98/0x3610
[   56.202415][ T5934]  ? dtDelete+0x2b40/0x2b40
[   56.206895][ T5934]  ? lock_release+0x700/0x700
[   56.211547][ T5934]  ? cpu_attach_domain+0x70/0x11a0
[   56.216637][ T5934]  ? down_write_killable+0x15b/0x250
[   56.221898][ T5934]  ? down_write_killable_nested+0x250/0x250
[   56.227764][ T5934]  ? apparmor_file_permission+0x152/0x460
[   56.233461][ T5934]  ? fsnotify_perm.part.0+0x11c/0x500
[   56.238829][ T5934]  iterate_dir+0x1aa/0x6c0
[   56.243221][ T5934]  __x64_sys_getdents64+0x128/0x240
[   56.248396][ T5934]  ? __ia32_sys_getdents+0x240/0x240
[   56.253663][ T5934]  ? compat_filldir+0x720/0x720
[   56.258489][ T5934]  ? syscall_enter_from_user_mode+0x26/0xb0
[   56.264363][ T5934]  do_syscall_64+0x39/0xb0
[   56.268754][ T5934]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.274621][ T5934] RIP: 0033:0x7f22a1a8c0c9
[   56.279012][ T5934] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   56.298596][ T5934] RSP: 002b:00007f22a27e3168 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   56.306981][ T5934] RAX: ffffffffffffffda RBX: 00007f22a1babf80 RCX: 00007f22a1a8c0c9
[   56.314931][ T5934] RDX: 00000000000000c5 RSI: 0000000020000200 RDI: 0000000000000004
[   56.322880][ T5934] RBP: 00007f22a1ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[   56.330828][ T5934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   56.338776][ T5934] R13: 00007ffd131375ff R14: 00007f22a27e3300 R15: 0000000000022000
[   56.346729][ T5934]  </TASK>
[   56.349733][ T5934] 
[   56.352043][ T5934] Allocated by task 5342:
[   56.356349][ T5934]  kasan_save_stack+0x22/0x40
[   56.361004][ T5934]  kasan_set_track+0x25/0x30
[   56.365590][ T5934]  __kasan_slab_alloc+0x7f/0x90
[   56.370413][ T5934]  kmem_cache_alloc_lru+0x209/0x580
[   56.375586][ T5934]  proc_alloc_inode+0x20/0x230
[   56.380382][ T5934]  alloc_inode+0x56/0x1e0
[   56.384689][ T5934]  new_inode+0x1a/0x240
[   56.388829][ T5934]  proc_pid_make_inode+0x1b/0x210
[   56.393830][ T5934]  proc_pid_make_base_inode.constprop.0+0x14/0x150
[   56.400341][ T5934]  proc_pid_instantiate+0x45/0x1d0
[   56.405435][ T5934]  proc_pid_lookup+0x17d/0x300
[   56.410178][ T5934]  proc_root_lookup+0x1c/0x40
[   56.414833][ T5934]  __lookup_slow+0x200/0x3f0
[   56.419394][ T5934]  walk_component+0x2a3/0x4e0
[   56.424047][ T5934]  link_path_walk.part.0+0x492/0xac0
[   56.429303][ T5934]  path_openat+0x1f8/0x2280
[   56.433778][ T5934]  do_filp_open+0x1a9/0x3e0
[   56.438262][ T5934]  do_sys_openat2+0x11e/0x3f0
[   56.442914][ T5934]  __x64_sys_openat+0x11f/0x1d0
[   56.447737][ T5934]  do_syscall_64+0x39/0xb0
[   56.452126][ T5934]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.457992][ T5934] 
[   56.460293][ T5934] Last potentially related work creation:
[   56.465979][ T5934]  kasan_save_stack+0x22/0x40
[   56.470630][ T5934]  __kasan_record_aux_stack+0xbc/0xd0
[   56.475974][ T5934]  __call_rcu_common.constprop.0+0x99/0x7e0
[   56.481848][ T5934]  proc_invalidate_siblings_dcache+0x1ce/0x4d0
[   56.487978][ T5934]  release_task+0xb3e/0x14f0
[   56.492546][ T5934]  wait_consider_task+0x28a6/0x3500
[   56.497723][ T5934]  do_wait+0x64b/0xaa0
[   56.501767][ T5934]  kernel_wait4+0xf2/0x1c0
[   56.506163][ T5934]  __do_sys_wait4+0xe8/0x100
[   56.510730][ T5934]  do_syscall_64+0x39/0xb0
[   56.515125][ T5934]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.520993][ T5934] 
[   56.523299][ T5934] Second to last potentially related work creation:
[   56.529857][ T5934]  kasan_save_stack+0x22/0x40
[   56.534514][ T5934]  __kasan_record_aux_stack+0xbc/0xd0
[   56.539861][ T5934]  __call_rcu_common.constprop.0+0x99/0x7e0
[   56.545734][ T5934]  proc_invalidate_siblings_dcache+0x1ce/0x4d0
[   56.551866][ T5934]  release_task+0xb3e/0x14f0
[   56.556434][ T5934]  wait_consider_task+0x28a6/0x3500
[   56.561603][ T5934]  do_wait+0x64b/0xaa0
[   56.565646][ T5934]  kernel_wait4+0xf2/0x1c0
[   56.570036][ T5934]  __do_sys_wait4+0xe8/0x100
[   56.574602][ T5934]  do_syscall_64+0x39/0xb0
[   56.579027][ T5934]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   56.585163][ T5934] 
[   56.587469][ T5934] The buggy address belongs to the object at ffff8880762cf590
[   56.587469][ T5934]  which belongs to the cache proc_inode_cache of size 1240
[   56.602026][ T5934] The buggy address is located 1293 bytes to the right of
[   56.602026][ T5934]  allocated 1240-byte region [ffff8880762cf590, ffff8880762cfa68)
[   56.616841][ T5934] 
[   56.619146][ T5934] The buggy address belongs to the physical page:
[   56.625561][ T5934] page:ffffea0001d8b200 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff8880762cf590 pfn:0x762c8
[   56.636987][ T5934] head:ffffea0001d8b200 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   56.645896][ T5934] memcg:ffff8880200ffe01
[   56.650112][ T5934] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   56.658177][ T5934] raw: 00fff00000010200 ffff888140132500 ffffea0000845200 0000000000000002
[   56.666736][ T5934] raw: ffff8880762cf590 0000000080170014 00000001ffffffff ffff8880200ffe01
[   56.675294][ T5934] page dumped because: kasan: bad access detected
[   56.681680][ T5934] page_owner tracks the page as allocated
[   56.687374][ T5934] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_RECLAIMABLE), pid 5070, tgid 5070 (syz-executor), ts 30341568753, free_ts 6625773540
[   56.710469][ T5934]  get_page_from_freelist+0x1190/0x2ec0
[   56.715996][ T5934]  __alloc_pages+0x1cb/0x530
[   56.720561][ T5934]  allocate_slab+0x25f/0x390
[   56.725135][ T5934]  ___slab_alloc+0xa91/0x1400
[   56.729789][ T5934]  __slab_alloc.constprop.0+0x56/0xa0
[   56.735136][ T5934]  kmem_cache_alloc_lru+0x42d/0x580
[   56.740307][ T5934]  proc_alloc_inode+0x20/0x230
[   56.745049][ T5934]  alloc_inode+0x56/0x1e0
[   56.749356][ T5934]  new_inode+0x1a/0x240
[   56.753488][ T5934]  proc_sys_make_inode+0x45/0x690
[   56.758487][ T5934]  proc_sys_lookup+0x2be/0x580
[   56.763235][ T5934]  __lookup_slow+0x200/0x3f0
[   56.767797][ T5934]  walk_component+0x2a3/0x4e0
[   56.772482][ T5934]  link_path_walk.part.0+0x568/0xac0
[   56.777744][ T5934]  path_openat+0x1f8/0x2280
[   56.782219][ T5934]  do_filp_open+0x1a9/0x3e0
[   56.786696][ T5934] page last free stack trace:
[   56.791348][ T5934]  free_pcp_prepare+0x604/0xad0
[   56.796173][ T5934]  free_unref_page+0x1d/0x490
[   56.800825][ T5934]  free_contig_range+0xb5/0x180
[   56.805646][ T5934]  destroy_args+0x50a/0x700
[   56.810122][ T5934]  debug_vm_pgtable+0x18fd/0x31a0
[   56.815120][ T5934]  do_one_initcall+0xc2/0x480
[   56.819830][ T5934]  kernel_init_freeable+0x579/0xa50
[   56.825006][ T5934]  kernel_init+0x1a/0x1c0
[   56.829316][ T5934]  ret_from_fork+0x1f/0x30
[   56.833710][ T5934] 
[   56.836014][ T5934] Memory state around the buggy address:
[   56.841625][ T5934]  ffff8880762cfe00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.849753][ T5934]  ffff8880762cfe80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.857789][ T5934] >ffff8880762cff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.865828][ T5934]                                                              ^
[   56.873518][ T5934]  ffff8880762cff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   56.881555][ T5934]  ffff8880762d0000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   56.889588][ T5934] ==================================================================
[   56.900665][ T5074] Bluetooth: hci0: command 0x040f tx timeout
[   56.906929][ T5934] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   56.914366][ T5934] CPU: 0 PID: 5934 Comm: syz-executor.0 Not tainted 6.3.0-rc2-syzkaller #0
[   56.922925][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   56.932954][ T5934] Call Trace:
[   56.936215][ T5934]  <TASK>
[   56.939128][ T5934]  dump_stack_lvl+0x64/0xb0
[   56.943611][ T5934]  panic+0x4af/0x550
[   56.947486][ T5934]  ? panic_smp_self_stop+0x70/0x70
[   56.952570][ T5934]  ? lockdep_hardirqs_on+0x7d/0x100
[   56.957748][ T5934]  ? preempt_schedule_thunk+0x1a/0x20
[   56.963133][ T5934]  ? preempt_schedule_common+0x45/0xb0
[   56.968569][ T5934]  ? preempt_schedule_thunk+0x1a/0x20
[   56.973916][ T5934]  check_panic_on_warn+0x75/0x80
[   56.978827][ T5934]  end_report+0xed/0x180
[   56.983145][ T5934]  ? jfs_readdir+0x2a98/0x3610
[   56.987891][ T5934]  kasan_report+0xf9/0x130
[   56.992294][ T5934]  ? jfs_readdir+0x2a98/0x3610
[   56.997035][ T5934]  jfs_readdir+0x2a98/0x3610
[   57.001607][ T5934]  ? dtDelete+0x2b40/0x2b40
[   57.006086][ T5934]  ? lock_release+0x700/0x700
[   57.010733][ T5934]  ? cpu_attach_domain+0x70/0x11a0
[   57.015816][ T5934]  ? down_write_killable+0x15b/0x250
[   57.021067][ T5934]  ? down_write_killable_nested+0x250/0x250
[   57.026922][ T5934]  ? apparmor_file_permission+0x152/0x460
[   57.032604][ T5934]  ? fsnotify_perm.part.0+0x11c/0x500
[   57.037937][ T5934]  iterate_dir+0x1aa/0x6c0
[   57.042323][ T5934]  __x64_sys_getdents64+0x128/0x240
[   57.047488][ T5934]  ? __ia32_sys_getdents+0x240/0x240
[   57.052736][ T5934]  ? compat_filldir+0x720/0x720
[   57.057546][ T5934]  ? syscall_enter_from_user_mode+0x26/0xb0
[   57.063401][ T5934]  do_syscall_64+0x39/0xb0
[   57.067779][ T5934]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   57.073636][ T5934] RIP: 0033:0x7f22a1a8c0c9
[   57.078014][ T5934] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   57.097674][ T5934] RSP: 002b:00007f22a27e3168 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   57.106048][ T5934] RAX: ffffffffffffffda RBX: 00007f22a1babf80 RCX: 00007f22a1a8c0c9
[   57.113983][ T5934] RDX: 00000000000000c5 RSI: 0000000020000200 RDI: 0000000000000004
[   57.121922][ T5934] RBP: 00007f22a1ae7ae9 R08: 0000000000000000 R09: 0000000000000000
[   57.129865][ T5934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   57.137808][ T5934] R13: 00007ffd131375ff R14: 00007f22a27e3300 R15: 0000000000022000
[   57.145766][ T5934]  </TASK>
[   57.149453][ T5934] Kernel Offset: disabled
[   57.153756][ T5934] Rebooting in 86400 seconds..