Warning: Permanently added '[localhost]:32497' (ED25519) to the list of known hosts.
2025/08/30 11:38:58 ignoring optional flag "type"="qemu"
2025/08/30 11:38:59 parsed 1 programs
[  131.090558][ T5586] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  134.398189][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.408291][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.435767][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.441306][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.906378][   T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  135.911488][   T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  135.915156][   T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  135.926661][   T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  135.930475][   T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  136.710475][ T5634] chnl_net:caif_netlink_parms(): no params data found
[  136.777893][ T5634] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.781611][ T5634] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.785001][ T5634] bridge_slave_0: entered allmulticast mode
[  136.790978][ T5634] bridge_slave_0: entered promiscuous mode
[  136.796619][ T5634] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.801203][ T5634] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.804608][ T5634] bridge_slave_1: entered allmulticast mode
[  136.808647][ T5634] bridge_slave_1: entered promiscuous mode
[  136.835428][ T5634] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  136.841942][ T5634] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  136.865711][ T5634] team0: Port device team_slave_0 added
[  136.873059][ T5634] team0: Port device team_slave_1 added
[  136.896279][ T5634] batman_adv: batadv0: Adding interface: batadv_slave_0
[  136.900463][ T5634] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.912960][ T5634] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  136.920418][ T5634] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.923885][ T5634] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.936851][ T5634] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.974490][ T5634] hsr_slave_0: entered promiscuous mode
[  136.978008][ T5634] hsr_slave_1: entered promiscuous mode
[  137.467740][ T5634] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  137.482724][ T5634] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  137.501762][ T5634] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  137.508571][ T5634] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  137.672552][ T5634] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.705848][ T5634] 8021q: adding VLAN 0 to HW filter on device team0
[  137.724298][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.727755][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.743858][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.747448][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.826787][ T5634] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  137.851261][ T5634] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  138.081372][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[  138.084465][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[  138.196116][ T5634] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.293179][ T5634] veth0_vlan: entered promiscuous mode
[  138.305171][ T5634] veth1_vlan: entered promiscuous mode
[  138.372819][ T5634] veth0_macvtap: entered promiscuous mode
[  138.390562][ T5634] veth1_macvtap: entered promiscuous mode
[  138.414997][ T5634] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.436225][ T5634] batman_adv: batadv0: Interface activated: batadv_slave_1
[  138.460975][   T65] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.473567][   T65] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.477818][   T65] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.499331][   T65] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.696658][   T65] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.771361][   T65] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  138.850368][   T65] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.852300][   T65] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/08/30 11:39:13 executed programs: 0
[  140.861779][ T4703] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  140.866984][ T4703] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  140.873543][ T4703] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  140.877509][ T4703] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  140.885173][ T4703] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  141.243226][   T65] bridge_slave_1: left allmulticast mode
[  141.245967][   T65] bridge_slave_1: left promiscuous mode
[  141.249556][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.271307][   T65] bridge_slave_0: left allmulticast mode
[  141.274003][   T65] bridge_slave_0: left promiscuous mode
[  141.276747][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.859568][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  141.867631][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  141.879858][   T65] bond0 (unregistering): Released all slaves
[  141.992881][   T65] hsr_slave_0: left promiscuous mode
[  142.029173][   T65] hsr_slave_1: left promiscuous mode
[  142.032320][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.036093][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[  142.060560][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.064161][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[  142.086892][   T65] veth1_macvtap: left promiscuous mode
[  142.101218][   T65] veth0_macvtap: left promiscuous mode
[  142.104223][   T65] veth1_vlan: left promiscuous mode
[  142.106774][   T65] veth0_vlan: left promiscuous mode
[  142.547375][   T65] team0 (unregistering): Port device team_slave_1 removed
[  142.567564][   T65] team0 (unregistering): Port device team_slave_0 removed
[  142.834705][ T5729] chnl_net:caif_netlink_parms(): no params data found
[  142.963218][ T4703] Bluetooth: hci0: command tx timeout
[  143.051482][ T5729] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.054851][ T5729] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.058085][ T5729] bridge_slave_0: entered allmulticast mode
[  143.081082][ T5729] bridge_slave_0: entered promiscuous mode
[  143.090278][ T5729] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.093558][ T5729] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.096950][ T5729] bridge_slave_1: entered allmulticast mode
[  143.131136][ T5729] bridge_slave_1: entered promiscuous mode
[  143.187083][ T5729] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  143.213441][ T5729] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.538165][ T5729] team0: Port device team_slave_0 added
[  143.563344][ T5729] team0: Port device team_slave_1 added
[  143.729612][ T5729] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.732712][ T5729] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.769356][ T5729] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.797713][ T5729] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.817378][ T5729] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.879648][ T5729] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.986551][ T5729] hsr_slave_0: entered promiscuous mode
[  144.005727][ T5729] hsr_slave_1: entered promiscuous mode
[  144.546447][ T5729] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  144.564983][ T5729] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  144.582484][ T5729] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  144.592445][ T5729] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  144.747923][ T5729] 8021q: adding VLAN 0 to HW filter on device bond0
[  144.783967][ T5729] 8021q: adding VLAN 0 to HW filter on device team0
[  144.806184][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.810052][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[  144.841971][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.845215][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.044200][ T4703] Bluetooth: hci0: command tx timeout
[  145.208501][ T5729] 8021q: adding VLAN 0 to HW filter on device batadv0
[  145.292721][ T5729] veth0_vlan: entered promiscuous mode
[  145.314576][ T5729] veth1_vlan: entered promiscuous mode
[  145.375889][ T5729] veth0_macvtap: entered promiscuous mode
[  145.384694][ T5729] veth1_macvtap: entered promiscuous mode
[  145.423155][ T5729] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.443892][ T5729] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.471190][ T1037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.475378][ T1037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.489286][ T1037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.493201][ T1037] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  145.610053][ T1037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.613516][ T1037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.677966][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.689845][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.965377][ T5800] loop0: detected capacity change from 0 to 32768
[  145.978365][ T5800] =======================================================
[  145.978365][ T5800] WARNING: The mand mount option has been deprecated and
[  145.978365][ T5800]          and is ignored by this kernel. Remove the mand
[  145.978365][ T5800]          option from the mount to silence this warning.
[  145.978365][ T5800] =======================================================
[  146.057190][ T5800] JBD2: Ignoring recovery information on journal
[  146.125606][ T5800] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  146.145529][   T25] audit: type=1804 audit(1756553958.810:2): pid=5800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.15" name="/newroot/0/file1/bus" dev="loop0" ino=17058 res=1 errno=0
[  146.159796][ T5800] ==================================================================
[  146.163712][ T5800] BUG: KASAN: slab-out-of-bounds in ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.168563][ T5800] Read of size 4 at addr ffff88804ca8a0b0 by task syz.0.15/5800
[  146.173104][ T5800] 
[  146.174241][ T5800] CPU: 0 UID: 0 PID: 5800 Comm: syz.0.15 Not tainted syzkaller #0 PREEMPT(full) 
[  146.174256][ T5800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.174264][ T5800] Call Trace:
[  146.174271][ T5800]  <TASK>
[  146.174278][ T5800]  dump_stack_lvl+0x189/0x250
[  146.174296][ T5800]  ? __kasan_check_byte+0x12/0x40
[  146.174311][ T5800]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.174322][ T5800]  ? lock_release+0x4b/0x3e0
[  146.174339][ T5800]  ? __virt_addr_valid+0x4a5/0x5c0
[  146.174353][ T5800]  print_report+0xca/0x240
[  146.174363][ T5800]  ? ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.174374][ T5800]  kasan_report+0x118/0x150
[  146.174387][ T5800]  ? ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.174399][ T5800]  ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.174415][ T5800]  ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[  146.174426][ T5800]  ? __ocfs2_journal_access+0x621/0x820
[  146.174438][ T5800]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  146.174457][ T5800]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  146.174470][ T5800]  ? jbd2_write_access_granted+0x69/0x310
[  146.174485][ T5800]  ? jbd2_write_access_granted+0x69/0x310
[  146.174501][ T5800]  ocfs2_claim_metadata+0x178/0x4c0
[  146.174512][ T5800]  ? __pfx_ocfs2_claim_metadata+0x10/0x10
[  146.174524][ T5800]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  146.174535][ T5800]  ? ocfs2_metadata_cache_get_super+0x43/0x80
[  146.174550][ T5800]  ? ocfs2_inode_cache_get_super+0xd/0x40
[  146.174559][ T5800]  ocfs2_create_refcount_tree+0x54f/0x1250
[  146.174579][ T5800]  ? __pfx_ocfs2_create_refcount_tree+0x10/0x10
[  146.174591][ T5800]  ? find_get_entries+0x688/0x7f0
[  146.174607][ T5800]  ? find_get_entries+0xfe/0x7f0
[  146.174620][ T5800]  ? __pfx_find_get_entries+0x10/0x10
[  146.174635][ T5800]  ? __filemap_get_folio+0x9a6/0xaf0
[  146.174652][ T5800]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  146.174667][ T5800]  ocfs2_reflink_remap_blocks+0x2ea/0x1930
[  146.174681][ T5800]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  146.174701][ T5800]  ? __pfx_ocfs2_reflink_remap_blocks+0x10/0x10
[  146.174718][ T5800]  ? __lock_acquire+0xab9/0xd20
[  146.174740][ T5800]  ? down_write+0x162/0x1f0
[  146.174749][ T5800]  ? __pfx_down_write+0x10/0x10
[  146.174759][ T5800]  ? generic_remap_file_range_prep+0x3e/0x60
[  146.174771][ T5800]  ocfs2_remap_file_range+0x4b7/0x730
[  146.174786][ T5800]  ? __lock_acquire+0xab9/0xd20
[  146.174802][ T5800]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[  146.174817][ T5800]  ? rcu_read_lock_any_held+0xb3/0x120
[  146.174828][ T5800]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  146.174841][ T5800]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[  146.174856][ T5800]  vfs_copy_file_range+0xd53/0x1310
[  146.174873][ T5800]  ? __pfx_vfs_copy_file_range+0x10/0x10
[  146.174889][ T5800]  __se_sys_copy_file_range+0x2fb/0x470
[  146.174905][ T5800]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[  146.174920][ T5800]  ? rcu_is_watching+0x15/0xb0
[  146.174932][ T5800]  ? __x64_sys_copy_file_range+0x21/0xf0
[  146.174945][ T5800]  do_syscall_64+0xfa/0x3b0
[  146.174960][ T5800]  ? lockdep_hardirqs_on+0x9c/0x150
[  146.174972][ T5800]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.174982][ T5800]  ? clear_bhb_loop+0x60/0xb0
[  146.174994][ T5800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.175004][ T5800] RIP: 0033:0x7fb218379e79
[  146.175016][ T5800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.175025][ T5800] RSP: 002b:00007fb219235038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[  146.175038][ T5800] RAX: ffffffffffffffda RBX: 00007fb218515f80 RCX: 00007fb218379e79
[  146.175046][ T5800] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
[  146.175052][ T5800] RBP: 00007fb2183e7916 R08: 0000000000000006 R09: 0000000000000000
[  146.175058][ T5800] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[  146.175065][ T5800] R13: 0000000000000000 R14: 00007fb218515f80 R15: 00007ffdfca25338
[  146.175076][ T5800]  </TASK>
[  146.175080][ T5800] 
[  146.355780][ T5800] Allocated by task 5729:
[  146.357759][ T5800]  kasan_save_track+0x3e/0x80
[  146.360152][ T5800]  __kasan_slab_alloc+0x6c/0x80
[  146.363046][ T5800]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  146.366026][ T5800]  __kernfs_new_node+0xd7/0x7e0
[  146.368206][ T5800]  kernfs_new_node+0x102/0x210
[  146.370329][ T5800]  __kernfs_create_file+0x4b/0x2e0
[  146.372535][ T5800]  sysfs_add_file_mode_ns+0x238/0x300
[  146.374868][ T5800]  internal_create_group+0x66d/0x1110
[  146.377285][ T5800]  sysfs_create_groups+0x59/0x120
[  146.379743][ T5800]  netdev_queue_update_kobjects+0x2a6/0x6c0
[  146.382958][ T5800]  netdev_register_kobject+0x258/0x310
[  146.386604][ T5800]  register_netdevice+0x126c/0x1ae0
[  146.389460][ T5800]  nsim_create+0xae8/0xf10
[  146.391632][ T5800]  __nsim_dev_port_add+0x6b6/0xb10
[  146.393937][ T5800]  nsim_dev_port_add_all+0x37/0xf0
[  146.396362][ T5800]  nsim_drv_probe+0x88e/0xba0
[  146.398536][ T5800]  really_probe+0x26d/0x9e0
[  146.400590][ T5800]  __driver_probe_device+0x18c/0x2f0
[  146.403016][ T5800]  driver_probe_device+0x4f/0x430
[  146.405640][ T5800]  __device_attach_driver+0x2ce/0x530
[  146.408355][ T5800]  bus_for_each_drv+0x24e/0x2e0
[  146.410850][ T5800]  __device_attach+0x2b8/0x400
[  146.412943][ T5800]  bus_probe_device+0x185/0x260
[  146.415169][ T5800]  device_add+0x7b6/0xb50
[  146.417129][ T5800]  new_device_store+0x36c/0x6f0
[  146.419270][ T5800]  kernfs_fop_write_iter+0x375/0x4f0
[  146.421651][ T5800]  vfs_write+0x5c9/0xb30
[  146.423539][ T5800]  ksys_write+0x145/0x250
[  146.425471][ T5800]  do_syscall_64+0xfa/0x3b0
[  146.427517][ T5800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.430182][ T5800] 
[  146.431276][ T5800] The buggy address belongs to the object at ffff88804ca8a000
[  146.431276][ T5800]  which belongs to the cache kernfs_node_cache of size 176
[  146.438291][ T5800] The buggy address is located 0 bytes to the right of
[  146.438291][ T5800]  allocated 176-byte region [ffff88804ca8a000, ffff88804ca8a0b0)
[  146.444617][ T5800] 
[  146.445850][ T5800] The buggy address belongs to the physical page:
[  146.449024][ T5800] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4ca8a
[  146.453746][ T5800] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  146.457110][ T5800] page_type: f5(slab)
[  146.458912][ T5800] raw: 04fff00000000000 ffff88801b6ccdc0 dead000000000122 0000000000000000
[  146.462733][ T5800] raw: 0000000000000000 0000000000110011 00000000f5000000 0000000000000000
[  146.466663][ T5800] page dumped because: kasan: bad access detected
[  146.469532][ T5800] page_owner tracks the page as allocated
[  146.472276][ T5800] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5729, tgid 5729 (syz-executor), ts 144522769285, free_ts 144490673134
[  146.481019][ T5800]  post_alloc_hook+0x240/0x2a0
[  146.483125][ T5800]  get_page_from_freelist+0x21e4/0x22c0
[  146.485523][ T5800]  __alloc_frozen_pages_noprof+0x181/0x370
[  146.487977][ T5800]  alloc_pages_mpol+0x232/0x4a0
[  146.490175][ T5800]  allocate_slab+0x8a/0x370
[  146.492310][ T5800]  ___slab_alloc+0xbeb/0x1410
[  146.494444][ T5800]  kmem_cache_alloc_noprof+0x283/0x3c0
[  146.497175][ T5800]  __kernfs_new_node+0xd7/0x7e0
[  146.499467][ T5800]  kernfs_new_node+0x102/0x210
[  146.502093][ T5800]  __kernfs_create_file+0x4b/0x2e0
[  146.504392][ T5800]  sysfs_add_file_mode_ns+0x238/0x300
[  146.506757][ T5800]  internal_create_group+0x66d/0x1110
[  146.509326][ T5800]  sysfs_create_groups+0x59/0x120
[  146.511758][ T5800]  netdev_queue_update_kobjects+0x2a6/0x6c0
[  146.514752][ T5800]  netdev_register_kobject+0x258/0x310
[  146.517201][ T5800]  register_netdevice+0x126c/0x1ae0
[  146.519615][ T5800] page last free pid 15 tgid 15 stack trace:
[  146.522314][ T5800]  __free_frozen_pages+0xbc4/0xd30
[  146.524669][ T5800]  __tlb_remove_table+0x2d2/0x3b0
[  146.527228][ T5800]  tlb_remove_table_rcu+0x85/0x100
[  146.529552][ T5800]  rcu_core+0xcab/0x1770
[  146.531631][ T5800]  handle_softirqs+0x283/0x870
[  146.534051][ T5800]  run_ksoftirqd+0x9b/0x100
[  146.536220][ T5800]  smpboot_thread_fn+0x53f/0xa60
[  146.538382][ T5800]  kthread+0x70e/0x8a0
[  146.540186][ T5800]  ret_from_fork+0x3fc/0x770
[  146.542205][ T5800]  ret_from_fork_asm+0x1a/0x30
[  146.544363][ T5800] 
[  146.545458][ T5800] Memory state around the buggy address:
[  146.547912][ T5800]  ffff88804ca89f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  146.551558][ T5800]  ffff88804ca8a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  146.555529][ T5800] >ffff88804ca8a080: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00
[  146.559433][ T5800]                                      ^
[  146.562262][ T5800]  ffff88804ca8a100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  146.565756][ T5800]  ffff88804ca8a180: 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 00
[  146.569835][ T5800] ==================================================================
[  146.607330][ T5800] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  146.610496][ T5800] CPU: 0 UID: 0 PID: 5800 Comm: syz.0.15 Not tainted syzkaller #0 PREEMPT(full) 
[  146.614409][ T5800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  146.619294][ T5800] Call Trace:
[  146.620753][ T5800]  <TASK>
[  146.622023][ T5800]  dump_stack_lvl+0x99/0x250
[  146.624004][ T5800]  ? __asan_memcpy+0x40/0x70
[  146.626075][ T5800]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.628357][ T5800]  ? __pfx__printk+0x10/0x10
[  146.630399][ T5800]  vpanic+0x281/0x750
[  146.632197][ T5800]  ? preempt_schedule+0xae/0xc0
[  146.634375][ T5800]  ? __pfx_vpanic+0x10/0x10
[  146.636451][ T5800]  ? preempt_schedule_common+0x83/0xd0
[  146.639139][ T5800]  ? preempt_schedule+0xae/0xc0
[  146.641561][ T5800]  ? __pfx_preempt_schedule+0x10/0x10
[  146.644152][ T5800]  panic+0xb9/0xc0
[  146.645979][ T5800]  ? __pfx_panic+0x10/0x10
[  146.647995][ T5800]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  146.650665][ T5800]  ? ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.653424][ T5800]  check_panic_on_warn+0x89/0xb0
[  146.655649][ T5800]  ? ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.658312][ T5800]  end_report+0x78/0x160
[  146.660241][ T5800]  kasan_report+0x129/0x150
[  146.662246][ T5800]  ? ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.664926][ T5800]  ocfs2_claim_suballoc_bits+0x877/0x2450
[  146.667615][ T5800]  ? __pfx_ocfs2_claim_suballoc_bits+0x10/0x10
[  146.670719][ T5800]  ? __ocfs2_journal_access+0x621/0x820
[  146.673383][ T5800]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  146.675920][ T5800]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  146.678598][ T5800]  ? jbd2_write_access_granted+0x69/0x310
[  146.681164][ T5800]  ? jbd2_write_access_granted+0x69/0x310
[  146.683698][ T5800]  ocfs2_claim_metadata+0x178/0x4c0
[  146.686057][ T5800]  ? __pfx_ocfs2_claim_metadata+0x10/0x10
[  146.688866][ T5800]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  146.691617][ T5800]  ? ocfs2_metadata_cache_get_super+0x43/0x80
[  146.694477][ T5800]  ? ocfs2_inode_cache_get_super+0xd/0x40
[  146.697010][ T5800]  ocfs2_create_refcount_tree+0x54f/0x1250
[  146.699614][ T5800]  ? __pfx_ocfs2_create_refcount_tree+0x10/0x10
[  146.702412][ T5800]  ? find_get_entries+0x688/0x7f0
[  146.704679][ T5800]  ? find_get_entries+0xfe/0x7f0
[  146.707163][ T5800]  ? __pfx_find_get_entries+0x10/0x10
[  146.709565][ T5800]  ? __filemap_get_folio+0x9a6/0xaf0
[  146.712006][ T5800]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  146.714815][ T5800]  ocfs2_reflink_remap_blocks+0x2ea/0x1930
[  146.717470][ T5800]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  146.720239][ T5800]  ? __pfx_ocfs2_reflink_remap_blocks+0x10/0x10
[  146.723152][ T5800]  ? __lock_acquire+0xab9/0xd20
[  146.725400][ T5800]  ? down_write+0x162/0x1f0
[  146.727581][ T5800]  ? __pfx_down_write+0x10/0x10
[  146.729771][ T5800]  ? generic_remap_file_range_prep+0x3e/0x60
[  146.732554][ T5800]  ocfs2_remap_file_range+0x4b7/0x730
[  146.735224][ T5800]  ? __lock_acquire+0xab9/0xd20
[  146.737601][ T5800]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[  146.740501][ T5800]  ? rcu_read_lock_any_held+0xb3/0x120
[  146.742881][ T5800]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  146.745560][ T5800]  ? __pfx_ocfs2_remap_file_range+0x10/0x10
[  146.748234][ T5800]  vfs_copy_file_range+0xd53/0x1310
[  146.750689][ T5800]  ? __pfx_vfs_copy_file_range+0x10/0x10
[  146.753154][ T5800]  __se_sys_copy_file_range+0x2fb/0x470
[  146.755814][ T5800]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[  146.758713][ T5800]  ? rcu_is_watching+0x15/0xb0
[  146.760876][ T5800]  ? __x64_sys_copy_file_range+0x21/0xf0
[  146.763473][ T5800]  do_syscall_64+0xfa/0x3b0
[  146.765539][ T5800]  ? lockdep_hardirqs_on+0x9c/0x150
[  146.767948][ T5800]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.770902][ T5800]  ? clear_bhb_loop+0x60/0xb0
[  146.773109][ T5800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.776107][ T5800] RIP: 0033:0x7fb218379e79
[  146.778357][ T5800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.787338][ T5800] RSP: 002b:00007fb219235038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[  146.791079][ T5800] RAX: ffffffffffffffda RBX: 00007fb218515f80 RCX: 00007fb218379e79
[  146.794682][ T5800] RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000006
[  146.798223][ T5800] RBP: 00007fb2183e7916 R08: 0000000000000006 R09: 0000000000000000
[  146.801758][ T5800] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[  146.805800][ T5800] R13: 0000000000000000 R14: 00007fb218515f80 R15: 00007ffdfca25338
[  146.809790][ T5800]  </TASK>
[  146.811467][ T5800] Kernel Offset: disabled
[  146.813458][ T5800] Rebooting in 86400 seconds..