[ 76.392957][ T1107] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.225' (ED25519) to the list of known hosts.
2025/06/27 16:20:17 ignoring optional flag "sandboxArg"="0"
2025/06/27 16:20:18 parsed 1 programs
[ 85.394275][ T4583] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 88.005008][ T1279] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.021485][ T1279] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.030396][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 88.053617][ T1279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.061727][ T1279] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.070711][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 88.429189][ T154] ODEBUG: Out of memory. ODEBUG disabled
[ 88.658052][ T4637] chnl_net:caif_netlink_parms(): no params data found
[ 88.725567][ T4637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.732732][ T4637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 88.740312][ T4637] device bridge_slave_0 entered promiscuous mode
[ 88.748124][ T4637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.755253][ T4637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 88.763016][ T4637] device bridge_slave_1 entered promiscuous mode
[ 88.781460][ T4637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 88.792719][ T4637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 88.812930][ T4637] team0: Port device team_slave_0 added
[ 88.819711][ T4637] team0: Port device team_slave_1 added
[ 88.835572][ T4637] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 88.842600][ T4637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.868604][ T4637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 88.880305][ T4637] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 88.887524][ T4637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.914197][ T4637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 88.938820][ T4637] device hsr_slave_0 entered promiscuous mode
[ 88.946659][ T4637] device hsr_slave_1 entered promiscuous mode
[ 89.431487][ T4637] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 89.445291][ T4637] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 89.456652][ T4637] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 89.488924][ T4637] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 89.574819][ T4637] 8021q: adding VLAN 0 to HW filter on device bond0
[ 89.588765][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 89.598077][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 89.613273][ T4637] 8021q: adding VLAN 0 to HW filter on device team0
[ 89.624620][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 89.633402][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 89.643280][ T458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.650449][ T458] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.658481][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 89.698433][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 89.716168][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 89.733710][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.740786][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.749346][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 89.761125][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 89.796691][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 89.807656][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 89.818507][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 89.828280][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 89.838579][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 89.847354][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 89.857427][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 89.886975][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 89.897553][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 89.908617][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 90.052508][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 90.059952][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 90.086734][ T4637] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 90.128692][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 90.137648][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 90.156338][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 90.164820][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 90.175633][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 90.185973][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 90.194963][ T4637] device veth0_vlan entered promiscuous mode
[ 90.225295][ T4637] device veth1_vlan entered promiscuous mode
[ 90.264335][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 90.274275][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 90.291970][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 90.312623][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 90.335813][ T4637] device veth0_macvtap entered promiscuous mode
[ 90.354540][ T4637] device veth1_macvtap entered promiscuous mode
[ 90.396707][ T4637] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 90.404071][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 90.422133][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 90.432417][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 90.451796][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 90.474033][ T4637] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 90.488159][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 90.514005][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 90.524975][ T4637] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.535454][ T4637] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.548514][ T4637] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.559467][ T4637] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/06/27 16:20:27 executed programs: 0
[ 91.641536][ T4768] chnl_net:caif_netlink_parms(): no params data found
[ 91.725703][ T4768] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.736117][ T4768] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.746596][ T4768] device bridge_slave_0 entered promiscuous mode
[ 91.756726][ T4768] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.767490][ T4768] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.776244][ T4768] device bridge_slave_1 entered promiscuous mode
[ 91.810549][ T4768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 91.822550][ T4768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 91.871342][ T4768] team0: Port device team_slave_0 added
[ 91.879218][ T4768] team0: Port device team_slave_1 added
[ 91.909922][ T4768] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 91.917690][ T4768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 91.944383][ T4768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 91.973126][ T4768] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 91.980088][ T4768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.006641][ T4768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.046873][ T4768] device hsr_slave_0 entered promiscuous mode
[ 92.060743][ T4768] device hsr_slave_1 entered promiscuous mode
[ 92.067848][ T4768] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 92.076119][ T4768] Cannot create hsr debugfs directory
[ 92.108480][ T154] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 93.511388][ T13] Bluetooth: hci0: command 0x0409 tx timeout
[ 94.518931][ T154] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.894365][ T154] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.959212][ T154] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.601948][ T4293] Bluetooth: hci0: command 0x041b tx timeout
[ 95.735338][ T4768] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.743866][ T4768] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.753862][ T4768] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.769233][ T4768] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.817778][ T4768] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.829523][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 95.838778][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 95.850322][ T154] device hsr_slave_0 left promiscuous mode
[ 95.856996][ T154] device hsr_slave_1 left promiscuous mode
[ 95.863577][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 95.870982][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 95.879338][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 95.886803][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 95.894379][ T154] device bridge_slave_1 left promiscuous mode
[ 95.900530][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.908933][ T154] device bridge_slave_0 left promiscuous mode
[ 95.915947][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.927385][ T154] device veth1_macvtap left promiscuous mode
[ 95.933726][ T154] device veth0_macvtap left promiscuous mode
[ 95.939747][ T154] device veth1_vlan left promiscuous mode
[ 95.946247][ T154] device veth0_vlan left promiscuous mode
[ 96.046903][ T154] team0 (unregistering): Port device team_slave_1 removed
[ 96.058384][ T154] team0 (unregistering): Port device team_slave_0 removed
[ 96.069989][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 96.084134][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 96.125463][ T154] bond0 (unregistering): Released all slaves
[ 96.167834][ T4768] 8021q: adding VLAN 0 to HW filter on device team0
[ 96.177536][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 96.186747][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 96.195227][ T458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.202379][ T458] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.210129][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 96.221914][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 96.230704][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 96.239502][ T458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.246624][ T458] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.275607][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 96.284413][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 96.294007][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 96.302810][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 96.311715][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 96.320381][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 96.328987][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 96.337676][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 96.346244][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 96.354697][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 96.363055][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 96.373119][ T4768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 96.461105][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 96.470401][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 96.482692][ T4768] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.497689][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 96.506503][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 96.524368][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 96.532884][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 96.542807][ T4768] device veth0_vlan entered promiscuous mode
[ 96.549122][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 96.557441][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 96.575576][ T4768] device veth1_vlan entered promiscuous mode
[ 96.596047][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 96.606098][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 96.616025][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 96.624938][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 96.637203][ T4768] device veth0_macvtap entered promiscuous mode
[ 96.647691][ T4768] device veth1_macvtap entered promiscuous mode
[ 96.664254][ T4768] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.672743][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 96.681648][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 96.689689][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 96.699484][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 96.710935][ T4768] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.721022][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 96.730447][ T1279] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 96.741056][ T4768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.751060][ T4768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.760109][ T4768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.771781][ T4768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.831235][ T1279] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.844480][ T1279] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.863576][ T458] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
2025/06/27 16:20:33 executed programs: 2
[ 96.884767][ T458] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.895251][ T458] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.906175][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 96.995604][ T5053] loop0: detected capacity change from 0 to 4096
[ 97.090424][ T5053] ntfs: (device loop0): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[ 97.121065][ T5053] ntfs: volume version 3.1.
[ 97.136882][ T5053] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup.
[ 97.161421][ T5053] ntfs: (device loop0): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl.
[ 97.176562][ T5053] ntfs: (device loop0): load_system_files(): Failed to load $UsnJrnl. Mounting read-only. Run chkdsk.
[ 97.233084][ T4768] ntfs: (device loop0): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set maccenteuro. You might want to try to use the mount option nls=utf8.
[ 97.260901][ T4768] ntfs: (device loop0): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[ 97.274338][ T4768] ==================================================================
[ 97.282744][ T4768] BUG: KASAN: slab-out-of-bounds in ntfs_readdir+0xdda/0x3550
[ 97.290223][ T4768] Read of size 1 at addr ffff88805deda199 by task syz-executor/4768
[ 97.298211][ T4768]
[ 97.300536][ T4768] CPU: 1 PID: 4768 Comm: syz-executor Not tainted 5.15.186-syzkaller #0
[ 97.308852][ T4768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 97.318913][ T4768] Call Trace:
[ 97.322191][ T4768]
[ 97.325117][ T4768] dump_stack_lvl+0x168/0x230
[ 97.329794][ T4768] ? show_regs_print_info+0x20/0x20
[ 97.334999][ T4768] ? load_image+0x3b0/0x3b0
[ 97.339499][ T4768] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 97.344882][ T4768] print_address_description+0x60/0x2d0
[ 97.350443][ T4768] ? ntfs_readdir+0xdda/0x3550
[ 97.355215][ T4768] kasan_report+0xdf/0x130
[ 97.359812][ T4768] ? ntfs_readdir+0xdda/0x3550
[ 97.364676][ T4768] ntfs_readdir+0xdda/0x3550
[ 97.369292][ T4768] ? __might_sleep+0xf0/0xf0
[ 97.373882][ T4768] ? preempt_count_add+0x8d/0x190
[ 97.378910][ T4768] ? rwsem_write_trylock+0x12f/0x1b0
[ 97.384193][ T4768] ? clear_nonspinnable+0x60/0x60
[ 97.389216][ T4768] ? ntfs_unmap_page+0x200/0x200
[ 97.394166][ T4768] iterate_dir+0x218/0x560
[ 97.398593][ T4768] __se_sys_getdents64+0xe5/0x260
[ 97.403702][ T4768] ? __x64_sys_getdents64+0x80/0x80
[ 97.409059][ T4768] ? filldir+0x720/0x720
[ 97.413308][ T4768] ? vtime_user_exit+0x2dc/0x400
[ 97.418257][ T4768] ? lockdep_hardirqs_on+0x94/0x140
[ 97.423461][ T4768] do_syscall_64+0x4c/0xa0
[ 97.427881][ T4768] ? clear_bhb_loop+0x30/0x80
[ 97.432555][ T4768] ? clear_bhb_loop+0x30/0x80
[ 97.437249][ T4768] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.443150][ T4768] RIP: 0033:0x7f9aa6a112d3
[ 97.447564][ T4768] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 3e f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[ 97.467162][ T4768] RSP: 002b:00007fffbcf8a6a8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 97.475580][ T4768] RAX: ffffffffffffffda RBX: 000055555febd640 RCX: 00007f9aa6a112d3
[ 97.483538][ T4768] RDX: 0000000000008000 RSI: 000055555febd640 RDI: 0000000000000006
[ 97.491598][ T4768] RBP: 000055555febd614 R08: 0000000000000000 R09: 0000000000000000
[ 97.499581][ T4768] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[ 97.507537][ T4768] R13: 0000000000000016 R14: 000055555febd610 R15: 00007fffbcf8da50
[ 97.515509][ T4768]
[ 97.518513][ T4768]
[ 97.520816][ T4768] Allocated by task 4768:
[ 97.525120][ T4768] __kasan_kmalloc+0xb5/0xf0
[ 97.529697][ T4768] ntfs_readdir+0x798/0x3550
[ 97.534542][ T4768] iterate_dir+0x218/0x560
[ 97.539052][ T4768] __se_sys_getdents64+0xe5/0x260
[ 97.544055][ T4768] do_syscall_64+0x4c/0xa0
[ 97.548453][ T4768] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.554323][ T4768]
[ 97.556625][ T4768] The buggy address belongs to the object at ffff88805deda000
[ 97.556625][ T4768] which belongs to the cache kmalloc-512 of size 512
[ 97.570656][ T4768] The buggy address is located 409 bytes inside of
[ 97.570656][ T4768] 512-byte region [ffff88805deda000, ffff88805deda200)
[ 97.583908][ T4768] The buggy address belongs to the page:
[ 97.589528][ T4768] page:ffffea000177b600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5ded8
[ 97.599666][ T4768] head:ffffea000177b600 order:2 compound_mapcount:0 compound_pincount:0
[ 97.607967][ T4768] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.616060][ T4768] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888016841c80
[ 97.624625][ T4768] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 97.633211][ T4768] page dumped because: kasan: bad access detected
[ 97.639625][ T4768] page_owner tracks the page as allocated
[ 97.645316][ T4768] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 7, ts 59497704467, free_ts 54790307080
[ 97.665520][ T4768] get_page_from_freelist+0x1b77/0x1c60
[ 97.671066][ T4768] __alloc_pages+0x1e1/0x470
[ 97.675643][ T4768] new_slab+0xc0/0x4b0
[ 97.679691][ T4768] ___slab_alloc+0x81e/0xdf0
[ 97.684258][ T4768] kmem_cache_alloc_trace+0x1a5/0x2a0
[ 97.689697][ T4768] __ipv6_dev_mc_inc+0x413/0xac0
[ 97.694618][ T4768] addrconf_dad_work+0x3bf/0x1520
[ 97.699621][ T4768] process_one_work+0x863/0x1000
[ 97.704538][ T4768] worker_thread+0xaa8/0x12a0
[ 97.709193][ T4768] kthread+0x436/0x520
[ 97.713333][ T4768] ret_from_fork+0x1f/0x30
[ 97.717727][ T4768] page last free stack trace:
[ 97.722391][ T4768] free_unref_page_prepare+0x637/0x6c0
[ 97.727841][ T4768] free_unref_page+0x94/0x280
[ 97.732517][ T4768] __vunmap+0x8ab/0xa40
[ 97.736650][ T4768] kcov_close+0x27/0x50
[ 97.740783][ T4768] __fput+0x234/0x930
[ 97.744747][ T4768] task_work_run+0x125/0x1a0
[ 97.749318][ T4768] do_exit+0x61e/0x20a0
[ 97.753451][ T4768] do_group_exit+0x12e/0x300
[ 97.758023][ T4768] get_signal+0x6ca/0x12c0
[ 97.762418][ T4768] arch_do_signal_or_restart+0xc1/0x1300
[ 97.768040][ T4768] exit_to_user_mode_loop+0x9e/0x130
[ 97.773390][ T4768] exit_to_user_mode_prepare+0xb1/0x140
[ 97.778913][ T4768] syscall_exit_to_user_mode+0x16/0x40
[ 97.784354][ T4768] do_syscall_64+0x58/0xa0
[ 97.788751][ T4768] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.794624][ T4768]
[ 97.796946][ T4768] Memory state around the buggy address:
[ 97.802638][ T4768] ffff88805deda080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 97.810675][ T4768] ffff88805deda100: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[ 97.818715][ T4768] >ffff88805deda180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 97.826752][ T4768] ^
[ 97.831576][ T4768] ffff88805deda200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 97.839705][ T4768] ffff88805deda280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 97.847747][ T4768] ==================================================================
[ 97.855792][ T4768] Disabling lock debugging due to kernel taint
[ 97.869272][ T7] Bluetooth: hci0: command 0x040f tx timeout
[ 97.880966][ T4768] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 97.888190][ T4768] CPU: 0 PID: 4768 Comm: syz-executor Tainted: G B 5.15.186-syzkaller #0
[ 97.897907][ T4768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 97.907940][ T4768] Call Trace:
[ 97.911196][ T4768]
[ 97.914110][ T4768] dump_stack_lvl+0x168/0x230
[ 97.918766][ T4768] ? show_regs_print_info+0x20/0x20
[ 97.924152][ T4768] ? load_image+0x3b0/0x3b0
[ 97.928635][ T4768] panic+0x2c9/0x7f0
[ 97.932506][ T4768] ? bpf_jit_dump+0xd0/0xd0
[ 97.936989][ T4768] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 97.943132][ T4768] ? _raw_spin_unlock+0x40/0x40
[ 97.948261][ T4768] ? ntfs_readdir+0xdda/0x3550
[ 97.953026][ T4768] check_panic_on_warn+0x80/0xa0
[ 97.957958][ T4768] ? ntfs_readdir+0xdda/0x3550
[ 97.962699][ T4768] end_report+0x6d/0xf0
[ 97.966854][ T4768] kasan_report+0x102/0x130
[ 97.971331][ T4768] ? ntfs_readdir+0xdda/0x3550
[ 97.976074][ T4768] ntfs_readdir+0xdda/0x3550
[ 97.980840][ T4768] ? __might_sleep+0xf0/0xf0
[ 97.985563][ T4768] ? preempt_count_add+0x8d/0x190
[ 97.990577][ T4768] ? rwsem_write_trylock+0x12f/0x1b0
[ 97.995882][ T4768] ? clear_nonspinnable+0x60/0x60
[ 98.000885][ T4768] ? ntfs_unmap_page+0x200/0x200
[ 98.005840][ T4768] iterate_dir+0x218/0x560
[ 98.010235][ T4768] __se_sys_getdents64+0xe5/0x260
[ 98.015322][ T4768] ? __x64_sys_getdents64+0x80/0x80
[ 98.020493][ T4768] ? filldir+0x720/0x720
[ 98.024706][ T4768] ? vtime_user_exit+0x2dc/0x400
[ 98.029621][ T4768] ? lockdep_hardirqs_on+0x94/0x140
[ 98.034798][ T4768] do_syscall_64+0x4c/0xa0
[ 98.039285][ T4768] ? clear_bhb_loop+0x30/0x80
[ 98.043934][ T4768] ? clear_bhb_loop+0x30/0x80
[ 98.048582][ T4768] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 98.054451][ T4768] RIP: 0033:0x7f9aa6a112d3
[ 98.058847][ T4768] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 3e f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[ 98.078431][ T4768] RSP: 002b:00007fffbcf8a6a8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[ 98.086821][ T4768] RAX: ffffffffffffffda RBX: 000055555febd640 RCX: 00007f9aa6a112d3
[ 98.094947][ T4768] RDX: 0000000000008000 RSI: 000055555febd640 RDI: 0000000000000006
[ 98.102893][ T4768] RBP: 000055555febd614 R08: 0000000000000000 R09: 0000000000000000
[ 98.110839][ T4768] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[ 98.118782][ T4768] R13: 0000000000000016 R14: 000055555febd610 R15: 00007fffbcf8da50
[ 98.126907][ T4768]
[ 98.130189][ T4768] Kernel Offset: disabled
[ 98.134593][ T4768] Rebooting in 86400 seconds..