Warning: Permanently added '10.128.1.210' (ED25519) to the list of known hosts.
[ 133.048799][ T1325] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.048884][ T1325] ieee802154 phy1 wpan1: encryption failed: -22
2026/05/08 07:33:27 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[ 138.023824][ T6095] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 142.084556][ T5727] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 142.094996][ T5727] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 142.098929][ T5727] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 142.102199][ T5727] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 142.109522][ T5727] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 142.691229][ T2967] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 142.691248][ T2967] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 142.761523][ T1067] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 142.761543][ T1067] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 147.095848][ T6170] bridge0: port 1(bridge_slave_0) entered blocking state
[ 147.095973][ T6170] bridge0: port 1(bridge_slave_0) entered disabled state
[ 147.096366][ T6170] bridge_slave_0: entered allmulticast mode
[ 147.099177][ T6170] bridge_slave_0: entered promiscuous mode
[ 147.102232][ T6170] bridge0: port 2(bridge_slave_1) entered blocking state
[ 147.102427][ T6170] bridge0: port 2(bridge_slave_1) entered disabled state
[ 147.102566][ T6170] bridge_slave_1: entered allmulticast mode
[ 147.104907][ T6170] bridge_slave_1: entered promiscuous mode
[ 147.151113][ T6170] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 147.155986][ T6170] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 147.187064][ T6170] team0: Port device team_slave_0 added
[ 147.189084][ T6170] team0: Port device team_slave_1 added
[ 147.407809][ T6170] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 147.407821][ T6170] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 147.407834][ T6170] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 147.409126][ T6170] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 147.409138][ T6170] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 147.409158][ T6170] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 147.523661][ T6170] hsr_slave_0: entered promiscuous mode
[ 147.524982][ T6170] hsr_slave_1: entered promiscuous mode
[ 149.631993][ T6170] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 149.660204][ T6170] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 149.663834][ T6170] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 149.714394][ T6170] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 149.715700][ T6170] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 149.758220][ T6170] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 149.764192][ T6170] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 149.789787][ T6170] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 149.930638][ T6170] 8021q: adding VLAN 0 to HW filter on device bond0
[ 149.970242][ T6170] 8021q: adding VLAN 0 to HW filter on device team0
[ 149.983151][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 149.983327][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 150.019888][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 150.020014][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 150.641151][ T6170] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 150.730633][ T6170] veth0_vlan: entered promiscuous mode
[ 150.768576][ T6170] veth1_vlan: entered promiscuous mode
[ 150.828258][ T6170] veth0_macvtap: entered promiscuous mode
[ 150.843661][ T6170] veth1_macvtap: entered promiscuous mode
[ 150.879069][ T6170] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 150.911570][ T6170] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 150.934978][ T2962] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 150.944993][ T2962] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 150.963565][ T2962] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 150.963608][ T2962] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.064889][ T2967] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 152.890782][ T2967] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/08 07:33:46 executed programs: 0
[ 153.063541][ T5727] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 153.086908][ T5727] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 153.087778][ T5727] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 153.089265][ T5727] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 153.089913][ T5727] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 153.454092][ T2967] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 153.809889][ T2967] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 154.716553][ T2967] bridge_slave_1: left allmulticast mode
[ 154.716579][ T2967] bridge_slave_1: left promiscuous mode
[ 154.717243][ T2967] bridge0: port 2(bridge_slave_1) entered disabled state
[ 154.777172][ T2967] bridge_slave_0: left allmulticast mode
[ 154.777195][ T2967] bridge_slave_0: left promiscuous mode
[ 154.777347][ T2967] bridge0: port 1(bridge_slave_0) entered disabled state
[ 155.127862][ T5727] Bluetooth: hci0: command tx timeout
[ 155.416849][ T2967] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 155.477118][ T2967] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 155.498128][ T2967] bond0 (unregistering): Released all slaves
[ 155.672608][ T6339] bridge0: port 1(bridge_slave_0) entered blocking state
[ 155.672852][ T6339] bridge0: port 1(bridge_slave_0) entered disabled state
[ 155.673048][ T6339] bridge_slave_0: entered allmulticast mode
[ 155.675512][ T6339] bridge_slave_0: entered promiscuous mode
[ 155.680969][ T6339] bridge0: port 2(bridge_slave_1) entered blocking state
[ 155.681156][ T6339] bridge0: port 2(bridge_slave_1) entered disabled state
[ 155.681318][ T6339] bridge_slave_1: entered allmulticast mode
[ 155.683894][ T6339] bridge_slave_1: entered promiscuous mode
[ 155.727440][ T6339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 155.731092][ T6339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 155.957474][ T2967] hsr_slave_0: left promiscuous mode
[ 155.996328][ T2967] hsr_slave_1: left promiscuous mode
[ 155.997339][ T2967] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 155.997361][ T2967] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 156.057304][ T2967] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 156.057330][ T2967] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 156.147308][ T2967] veth1_macvtap: left promiscuous mode
[ 156.147364][ T2967] veth0_macvtap: left promiscuous mode
[ 156.147489][ T2967] veth1_vlan: left promiscuous mode
[ 156.147574][ T2967] veth0_vlan: left promiscuous mode
[ 156.866743][ T2967] team0 (unregistering): Port device team_slave_1 removed
[ 156.906760][ T2967] team0 (unregistering): Port device team_slave_0 removed
[ 157.098744][ T6339] team0: Port device team_slave_0 added
[ 157.101984][ T5265] 8021q: adding VLAN 0 to HW filter on device eth1
[ 157.198257][ T6339] team0: Port device team_slave_1 added
[ 157.206279][ T5727] Bluetooth: hci0: command tx timeout
[ 157.237956][ T6339] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 157.237972][ T6339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 157.237993][ T6339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 157.240077][ T6339] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 157.240091][ T6339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 157.240113][ T6339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 157.345222][ T6339] hsr_slave_0: entered promiscuous mode
[ 157.349504][ T6339] hsr_slave_1: entered promiscuous mode
[ 157.930859][ T5265] 8021q: adding VLAN 0 to HW filter on device eth2
[ 159.281277][ T6339] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 159.296249][ T5727] Bluetooth: hci0: command tx timeout
[ 159.322047][ T6339] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 159.323404][ T6339] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 159.358844][ T6339] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 159.360860][ T6339] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 159.400769][ T6339] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 159.402272][ T6339] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 159.439839][ T6339] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 159.574598][ T6339] 8021q: adding VLAN 0 to HW filter on device bond0
[ 159.603000][ T6339] 8021q: adding VLAN 0 to HW filter on device team0
[ 159.620797][ T2967] bridge0: port 1(bridge_slave_0) entered blocking state
[ 159.620995][ T2967] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 159.633956][ T2967] bridge0: port 2(bridge_slave_1) entered blocking state
[ 159.634156][ T2967] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 160.023724][ T6339] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 160.082902][ T6339] veth0_vlan: entered promiscuous mode
[ 160.094144][ T6339] veth1_vlan: entered promiscuous mode
[ 160.130195][ T6339] veth0_macvtap: entered promiscuous mode
[ 160.134121][ T6339] veth1_macvtap: entered promiscuous mode
[ 160.152654][ T6339] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 160.172154][ T6339] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 160.186733][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.187980][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.189132][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.228561][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.521288][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 160.521309][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 160.561340][ T2962] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 160.561359][ T2962] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 07:33:53 executed programs: 2
[ 160.872425][ T6496] loop0: detected capacity change from 0 to 32768
[ 161.081876][ T6496] Bad index:0 in slot in dtroot
[ 161.081876][ T6496]
[ 161.081896][ T6496] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 161.081896][ T6496]
[ 161.082176][ T6496] ERROR: (device loop0): remounting filesystem as read-only
[ 161.366248][ T5727] Bluetooth: hci0: command tx timeout
[ 161.503454][ T6498] loop0: detected capacity change from 0 to 32768
[ 161.560153][ T6498] Bad index:0 in slot in dtroot
[ 161.560153][ T6498]
[ 161.560170][ T6498] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 161.560170][ T6498]
[ 161.560421][ T6498] ERROR: (device loop0): remounting filesystem as read-only
[ 161.930628][ T6500] loop0: detected capacity change from 0 to 32768
[ 161.949892][ T6500] Bad index:0 in slot in dtroot
[ 161.949892][ T6500]
[ 161.949907][ T6500] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 161.949907][ T6500]
[ 161.950178][ T6500] ERROR: (device loop0): remounting filesystem as read-only
[ 162.315205][ T6502] loop0: detected capacity change from 0 to 32768
[ 162.335596][ T6502] Bad index:0 in slot in dtroot
[ 162.335596][ T6502]
[ 162.335612][ T6502] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 162.335612][ T6502]
[ 162.335892][ T6502] ERROR: (device loop0): remounting filesystem as read-only
[ 162.679668][ T6504] loop0: detected capacity change from 0 to 32768
[ 162.704739][ T6504] Bad index:0 in slot in dtroot
[ 162.704739][ T6504]
[ 162.704755][ T6504] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 162.704755][ T6504]
[ 162.705527][ T6504] ERROR: (device loop0): remounting filesystem as read-only
[ 163.060797][ T6506] loop0: detected capacity change from 0 to 32768
[ 163.081923][ T6506] Bad index:0 in slot in dtroot
[ 163.081923][ T6506]
[ 163.081941][ T6506] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.081941][ T6506]
[ 163.082187][ T6506] ERROR: (device loop0): remounting filesystem as read-only
[ 163.410605][ T6508] loop0: detected capacity change from 0 to 32768
[ 163.432545][ T6508] Bad index:0 in slot in dtroot
[ 163.432545][ T6508]
[ 163.432561][ T6508] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.432561][ T6508]
[ 163.432861][ T6508] ERROR: (device loop0): remounting filesystem as read-only
[ 163.775940][ T6510] loop0: detected capacity change from 0 to 32768
[ 163.801573][ T6510] Bad index:0 in slot in dtroot
[ 163.801573][ T6510]
[ 163.801588][ T6510] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.801588][ T6510]
[ 163.801868][ T6510] ERROR: (device loop0): remounting filesystem as read-only
[ 164.123028][ T6512] loop0: detected capacity change from 0 to 32768
[ 164.148821][ T6512] Bad index:0 in slot in dtroot
[ 164.148821][ T6512]
[ 164.148839][ T6512] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 164.148839][ T6512]
[ 164.149079][ T6512] ERROR: (device loop0): remounting filesystem as read-only
[ 164.492807][ T6514] loop0: detected capacity change from 0 to 32768
[ 164.526879][ T6514] Bad index:0 in slot in dtroot
[ 164.526879][ T6514]
[ 164.526902][ T6514] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 164.526902][ T6514]
[ 164.527142][ T6514] ERROR: (device loop0): remounting filesystem as read-only
[ 164.559360][ T2967] =========================================[ 164.559360][ T2967] ==================================================================
[ 164.559376][ T2967] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.559403][ T2967] Read of size 4096 at addr ffff888039528000 by task kworker/u8:16/2967
[ 164.559418][ T2967]
[ 164.559442][ T2967] CPU: 0 UID: 0 PID: 2967 Comm: kworker/u8:16 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 164.559461][ T2967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 164.559472][ T2967] Workqueue: loop0 loop_workfn
[ 164.559506][ T2967] Call Trace:
[ 164.559514][ T2967]
[ 164.559521][ T2967] dump_stack_lvl+0xe8/0x150
[ 164.559541][ T2967] print_address_description+0x55/0x1e0
[ 164.559560][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.559576][ T2967] print_report+0x58/0x70
[ 164.559592][ T2967] kasan_report+0x117/0x150
[ 164.559611][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.559631][ T2967] kasan_check_range+0x264/0x2c0
[ 164.559649][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.559667][ T2967] __asan_memcpy+0x29/0x70
[ 164.559688][ T2967] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.559714][ T2967] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 164.559732][ T2967] ? rcu_is_watching+0x15/0xb0
[ 164.559755][ T2967] ? shmem_write_begin+0x1ce/0x320
[ 164.559776][ T2967] generic_perform_write+0x5b1/0x8b0
[ 164.559800][ T2967] ? __pfx_generic_perform_write+0x10/0x10
[ 164.559819][ T2967] ? __mark_inode_dirty+0x4cf/0x13b0
[ 164.559837][ T2967] ? preempt_count_add+0x91/0x190
[ 164.559855][ T2967] ? mnt_put_write_access_file+0xbf/0x100
[ 164.559874][ T2967] ? file_update_time_flags+0x406/0x4b0
[ 164.559893][ T2967] shmem_file_write_iter+0xfb/0x120
[ 164.559915][ T2967] lo_rw_aio+0xc80/0xf00
[ 164.559941][ T2967] ? __pfx_lo_rw_aio+0x10/0x10
[ 164.559964][ T2967] ? kthread_associate_blkcg+0x490/0x600
[ 164.559985][ T2967] ? rt_spin_unlock+0x160/0x200
[ 164.560002][ T2967] loop_process_work+0x637/0x11b0
[ 164.560029][ T2967] ? __pfx_loop_process_work+0x10/0x10
[ 164.560049][ T2967] ? __lock_acquire+0x6b5/0x2cf0
[ 164.560068][ T2967] ? look_up_lock_class+0x57/0x110
[ 164.560088][ T2967] ? register_lock_class+0x31/0x2e0
[ 164.560108][ T2967] ? __lock_acquire+0x6b5/0x2cf0
[ 164.560129][ T2967] ? trace_hrtimer_start+0x82/0x200
[ 164.560157][ T2967] ? do_raw_spin_lock+0x12b/0x2f0
[ 164.560174][ T2967] ? lock_acquire+0x106/0x350
[ 164.560193][ T2967] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 164.560212][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.560230][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.560249][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.560265][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.560282][ T2967] process_scheduled_works+0xb5d/0x1860
[ 164.560309][ T2967] ? __pfx_process_scheduled_works+0x10/0x10
[ 164.560328][ T2967] ? assign_work+0x3d5/0x5e0
[ 164.560346][ T2967] worker_thread+0xa53/0xfc0
[ 164.560374][ T2967] kthread+0x388/0x470
[ 164.560393][ T2967] ? __pfx_worker_thread+0x10/0x10
[ 164.560409][ T2967] ? __pfx_kthread+0x10/0x10
[ 164.560428][ T2967] ret_from_fork+0x514/0xb70
[ 164.560446][ T2967] ? __pfx_ret_from_fork+0x10/0x10
[ 164.560464][ T2967] ? __switch_to+0xc79/0x1410
[ 164.560487][ T2967] ? __pfx_kthread+0x10/0x10
[ 164.560506][ T2967] ret_from_fork_asm+0x1a/0x30
[ 164.560532][ T2967]
[ 164.560538][ T2967]
[ 164.560542][ T2967] The buggy address belongs to the physical page:
[ 164.560558][ T2967] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x40 pfn:0x39528
[ 164.560574][ T2967] flags: 0x80000000000000(node=0|zone=1)
[ 164.560598][ T2967] raw: 0080000000000000 ffffea0000a5bf88 ffffea0000c4ba88 0000000000000000
[ 164.560611][ T2967] raw: 0000000000000040 0000000000000000 00000000ffffffff 0000000000000000
[ 164.560618][ T2967] page dumped because: kasan: bad access detected
[ 164.560632][ T2967] page_owner tracks the page as freed
[ 164.560638][ T2967] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 6514, tgid 6513 (syz.0.26), ts 164524126350, free_ts 164557813509
[ 164.560662][ T2967] post_alloc_hook+0x231/0x280
[ 164.560678][ T2967] get_page_from_freelist+0x27c8/0x2840
[ 164.560700][ T2967] __alloc_frozen_pages_noprof+0x18d/0x380
[ 164.560717][ T2967] alloc_pages_mpol+0xd1/0x380
[ 164.560735][ T2967] alloc_pages_noprof+0xd2/0x2f0
[ 164.560755][ T2967] lmLogInit+0x357/0x1a00
[ 164.560772][ T2967] lmLogOpen+0x4e1/0xfa0
[ 164.560788][ T2967] jfs_mount_rw+0xee/0x670
[ 164.560803][ T2967] jfs_fill_super+0x754/0xd80
[ 164.560815][ T2967] get_tree_bdev_flags+0x431/0x4f0
[ 164.560831][ T2967] vfs_get_tree+0x92/0x2a0
[ 164.560846][ T2967] do_new_mount+0x341/0xd30
[ 164.560865][ T2967] __se_sys_mount+0x31d/0x420
[ 164.560885][ T2967] do_syscall_64+0x15f/0xf80
[ 164.560902][ T2967] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 164.560917][ T2967] page last free pid 6514 tgid 6513 stack trace:
[ 164.560927][ T2967] __free_frozen_pages+0xfa6/0x10f0
[ 164.560942][ T2967] lmLogShutdown+0x44e/0x850
[ 164.560960][ T2967] lmLogClose+0x28a/0x520
[ 164.560976][ T2967] jfs_umount+0x2fb/0x3d0
[ 164.560992][ T2967] jfs_fill_super+0x9c5/0xd80
[ 164.561005][ T2967] get_tree_bdev_flags+0x431/0x4f0
[ 164.561020][ T2967] vfs_get_tree+0x92/0x2a0
[ 164.561036][ T2967] do_new_mount+0x341/0xd30
[ 164.561054][ T2967] __se_sys_mount+0x31d/0x420
[ 164.561073][ T2967] do_syscall_64+0x15f/0xf80
[ 164.561089][ T2967] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 164.561103][ T2967]
[ 164.561107][ T2967] Memory state around the buggy address:
[ 164.561116][ T2967] ffff888039527f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 164.561127][ T2967] ffff888039527f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 164.561146][ T2967] >ffff888039528000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 164.561153][ T2967] ^
[ 164.561161][ T2967] ffff888039528080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 164.561172][ T2967] ffff888039528100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 164.561179][ T2967] ==================================================================
[ 164.563906][ T2967] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 164.563925][ T2967] CPU: 0 UID: 0 PID: 2967 Comm: kworker/u8:16 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 164.563945][ T2967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 164.563956][ T2967] Workqueue: loop0 loop_workfn
[ 164.563980][ T2967] Call Trace:
[ 164.563987][ T2967]
[ 164.563993][ T2967] vpanic+0x56c/0xa60
[ 164.564015][ T2967] ? __pfx_vpanic+0x10/0x10
[ 164.564037][ T2967] panic+0xc5/0xd0
[ 164.564055][ T2967] ? __pfx_panic+0x10/0x10
[ 164.564073][ T2967] ? preempt_schedule_thunk+0x16/0x30
[ 164.564097][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564115][ T2967] ? preempt_schedule_thunk+0x16/0x30
[ 164.564137][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564161][ T2967] check_panic_on_warn+0x89/0xb0
[ 164.564183][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564199][ T2967] end_report+0x73/0x170
[ 164.564218][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564233][ T2967] kasan_report+0x128/0x150
[ 164.564252][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564272][ T2967] kasan_check_range+0x264/0x2c0
[ 164.564290][ T2967] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564308][ T2967] __asan_memcpy+0x29/0x70
[ 164.564331][ T2967] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 164.564355][ T2967] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 164.564373][ T2967] ? rcu_is_watching+0x15/0xb0
[ 164.564397][ T2967] ? shmem_write_begin+0x1ce/0x320
[ 164.564418][ T2967] generic_perform_write+0x5b1/0x8b0
[ 164.564442][ T2967] ? __pfx_generic_perform_write+0x10/0x10
[ 164.564461][ T2967] ? __mark_inode_dirty+0x4cf/0x13b0
[ 164.564480][ T2967] ? preempt_count_add+0x91/0x190
[ 164.564497][ T2967] ? mnt_put_write_access_file+0xbf/0x100
[ 164.564517][ T2967] ? file_update_time_flags+0x406/0x4b0
[ 164.564537][ T2967] shmem_file_write_iter+0xfb/0x120
[ 164.564559][ T2967] lo_rw_aio+0xc80/0xf00
[ 164.564585][ T2967] ? __pfx_lo_rw_aio+0x10/0x10
[ 164.564608][ T2967] ? kthread_associate_blkcg+0x490/0x600
[ 164.564630][ T2967] ? rt_spin_unlock+0x160/0x200
[ 164.564647][ T2967] loop_process_work+0x637/0x11b0
[ 164.564674][ T2967] ? __pfx_loop_process_work+0x10/0x10
[ 164.564697][ T2967] ? __lock_acquire+0x6b5/0x2cf0
[ 164.564717][ T2967] ? look_up_lock_class+0x57/0x110
[ 164.564737][ T2967] ? register_lock_class+0x31/0x2e0
[ 164.564757][ T2967] ? __lock_acquire+0x6b5/0x2cf0
[ 164.564779][ T2967] ? trace_hrtimer_start+0x82/0x200
[ 164.564798][ T2967] ? do_raw_spin_lock+0x12b/0x2f0
[ 164.564815][ T2967] ? lock_acquire+0x106/0x350
[ 164.564835][ T2967] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 164.564853][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.564870][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.564890][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.564906][ T2967] ? process_scheduled_works+0xa70/0x1860
[ 164.564924][ T2967] process_scheduled_works+0xb5d/0x1860
[ 164.564952][ T2967] ? __pfx_process_scheduled_works+0x10/0x10
[ 164.564971][ T2967] ? assign_work+0x3d5/0x5e0
[ 164.564989][ T2967] worker_thread+0xa53/0xfc0
[ 164.565017][ T2967] kthread+0x388/0x470
[ 164.565036][ T2967] ? __pfx_worker_thread+0x10/0x10
[ 164.565052][ T2967] ? __pfx_kthread+0x10/0x10
[ 164.565072][ T2967] ret_from_fork+0x514/0xb70
[ 164.565091][ T2967] ? __pfx_ret_from_fork+0x10/0x10
[ 164.565108][ T2967] ? __switch_to+0xc79/0x1410
[ 164.565131][ T2967] ? __pfx_kthread+0x10/0x10
[ 164.565156][ T2967] ret_from_fork_asm+0x1a/0x30
[ 164.565181][ T2967]
[ 164.565318][ T2967] Kernel Offset: disabled