Warning: Permanently added '10.128.10.37' (ED25519) to the list of known hosts.
2025/05/06 15:33:41 ignoring optional flag "sandboxArg"="0"
2025/05/06 15:33:43 parsed 1 programs
[ 342.215388][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[ 342.222173][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[ 372.546897][ T6427] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 379.841948][ T6477] chnl_net:caif_netlink_parms(): no params data found
[ 380.128753][ T6477] bridge0: port 1(bridge_slave_0) entered blocking state
[ 380.136877][ T6477] bridge0: port 1(bridge_slave_0) entered disabled state
[ 380.144556][ T6477] bridge_slave_0: entered allmulticast mode
[ 380.153367][ T6477] bridge_slave_0: entered promiscuous mode
[ 380.164972][ T6477] bridge0: port 2(bridge_slave_1) entered blocking state
[ 380.172617][ T6477] bridge0: port 2(bridge_slave_1) entered disabled state
[ 380.180276][ T6477] bridge_slave_1: entered allmulticast mode
[ 380.188985][ T6477] bridge_slave_1: entered promiscuous mode
[ 380.253578][ T6477] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 380.272149][ T6477] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 380.337867][ T6477] team0: Port device team_slave_0 added
[ 380.351999][ T6477] team0: Port device team_slave_1 added
[ 380.411355][ T6477] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 380.419448][ T6477] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 380.447152][ T6477] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 380.461798][ T6477] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 380.469804][ T6477] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 380.497208][ T6477] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 380.594062][ T6477] hsr_slave_0: entered promiscuous mode
[ 380.602596][ T6477] hsr_slave_1: entered promiscuous mode
[ 381.515761][ T6477] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 381.538181][ T6477] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 381.565311][ T6477] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 381.590164][ T6477] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 381.940993][ T6477] 8021q: adding VLAN 0 to HW filter on device bond0
[ 382.004836][ T6477] 8021q: adding VLAN 0 to HW filter on device team0
[ 382.034151][ T78] bridge0: port 1(bridge_slave_0) entered blocking state
[ 382.041979][ T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 382.084697][ T78] bridge0: port 2(bridge_slave_1) entered blocking state
[ 382.092353][ T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 382.601786][ T6477] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 382.765542][ T6477] veth0_vlan: entered promiscuous mode
[ 382.807040][ T6477] veth1_vlan: entered promiscuous mode
[ 382.911288][ T6477] veth0_macvtap: entered promiscuous mode
[ 382.941816][ T6477] veth1_macvtap: entered promiscuous mode
[ 383.008346][ T6477] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 383.046636][ T6477] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 383.073365][ T6477] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 383.083095][ T6477] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 383.092391][ T6477] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 383.101541][ T6477] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 385.081307][ T66] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 385.506840][ T66] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 385.611940][ T66] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 385.712508][ T66] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 386.121037][ T66] bridge_slave_1: left allmulticast mode
[ 386.127317][ T66] bridge_slave_1: left promiscuous mode
[ 386.133852][ T66] bridge0: port 2(bridge_slave_1) entered disabled state
[ 386.175283][ T66] bridge_slave_0: left allmulticast mode
[ 386.181963][ T66] bridge_slave_0: left promiscuous mode
[ 386.188604][ T66] bridge0: port 1(bridge_slave_0) entered disabled state
[ 386.580614][ T66] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 386.597060][ T66] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 386.611275][ T66] bond0 (unregistering): Released all slaves
[ 386.830701][ T66] hsr_slave_0: left promiscuous mode
[ 386.839217][ T66] hsr_slave_1: left promiscuous mode
[ 386.849976][ T66] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 386.857828][ T66] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 386.875469][ T66] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 386.883895][ T66] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 386.950217][ T66] veth1_macvtap: left promiscuous mode
[ 386.958232][ T66] veth0_macvtap: left promiscuous mode
[ 386.964257][ T66] veth1_vlan: left promiscuous mode
[ 386.970213][ T66] veth0_vlan: left promiscuous mode
[ 387.653405][ T66] team0 (unregistering): Port device team_slave_1 removed
[ 387.753677][ T66] team0 (unregistering): Port device team_slave_0 removed
[ 390.628383][ T5090] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 390.657972][ T5090] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 390.670989][ T5090] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 390.693467][ T5090] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 390.705361][ T5090] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 391.863870][ T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 391.872125][ T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 391.920094][ T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 391.928340][ T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/05/06 15:35:03 executed programs: 0
[ 393.856717][ T5090] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 393.877397][ T5090] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 393.897356][ T5090] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 393.919746][ T5090] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 393.937679][ T5090] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 394.483997][ T6722] chnl_net:caif_netlink_parms(): no params data found
[ 394.857933][ T6722] bridge0: port 1(bridge_slave_0) entered blocking state
[ 394.865592][ T6722] bridge0: port 1(bridge_slave_0) entered disabled state
[ 394.875444][ T6722] bridge_slave_0: entered allmulticast mode
[ 394.884765][ T6722] bridge_slave_0: entered promiscuous mode
[ 394.899590][ T6722] bridge0: port 2(bridge_slave_1) entered blocking state
[ 394.907311][ T6722] bridge0: port 2(bridge_slave_1) entered disabled state
[ 394.915070][ T6722] bridge_slave_1: entered allmulticast mode
[ 394.924637][ T6722] bridge_slave_1: entered promiscuous mode
[ 395.021111][ T6722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 395.040807][ T6722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 395.132441][ T6722] team0: Port device team_slave_0 added
[ 395.149406][ T6722] team0: Port device team_slave_1 added
[ 395.230295][ T6722] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 395.237671][ T6722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 395.264143][ T6722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 395.280508][ T6722] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 395.289754][ T6722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 395.316477][ T6722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 395.463514][ T6722] hsr_slave_0: entered promiscuous mode
[ 395.472930][ T6722] hsr_slave_1: entered promiscuous mode
[ 396.037558][ T5090] Bluetooth: hci0: command tx timeout
[ 396.186081][ T6722] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 396.207447][ T6722] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 396.228846][ T6722] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 396.249840][ T6722] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 396.622996][ T6722] 8021q: adding VLAN 0 to HW filter on device bond0
[ 396.689903][ T6722] 8021q: adding VLAN 0 to HW filter on device team0
[ 396.720357][ T66] bridge0: port 1(bridge_slave_0) entered blocking state
[ 396.727966][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 396.791872][ T66] bridge0: port 2(bridge_slave_1) entered blocking state
[ 396.799537][ T66] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 397.350183][ T6722] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 397.516742][ T6722] veth0_vlan: entered promiscuous mode
[ 397.548709][ T6722] veth1_vlan: entered promiscuous mode
[ 397.653046][ T6722] veth0_macvtap: entered promiscuous mode
[ 397.675362][ T6722] veth1_macvtap: entered promiscuous mode
[ 397.741968][ T6722] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 397.789096][ T6722] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 397.830543][ T6722] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 397.841221][ T6722] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 397.850802][ T6722] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 397.860177][ T6722] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 398.117064][ T5090] Bluetooth: hci0: command tx timeout
[ 399.618759][ T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 399.627129][ T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 399.729843][ T78] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 399.738492][ T78] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/05/06 15:35:09 executed programs: 2
[ 400.196429][ T5090] Bluetooth: hci0: command tx timeout
[ 400.733162][ T6843] loop0: detected capacity change from 0 to 32768
[ 400.804722][ T6843] ERROR: (device loop0): dtSearch: stack overrun!
[ 400.804722][ T6843]
[ 400.818074][ T6843] ERROR: (device loop0): remounting filesystem as read-only
[ 400.825597][ T6843] btstack dump:
[ 400.829494][ T6843] bn = 0, index = 0
[ 400.833477][ T6843] bn = 0, index = 0
[ 400.837731][ T6843] bn = 0, index = 0
[ 400.841752][ T6843] bn = 0, index = 0
[ 400.845765][ T6843] bn = 0, index = 0
[ 400.850012][ T6843] bn = 0, index = 0
[ 400.854005][ T6843] bn = 0, index = 0
[ 400.858293][ T6843] bn = 0, index = 0
[ 400.862370][ T6843] jfs_lookup: dtSearch returned -5
[ 402.277408][ T5090] Bluetooth: hci0: command tx timeout
[ 402.501927][ T6874] loop0: detected capacity change from 0 to 32768
[ 402.563630][ T6874] ERROR: (device loop0): dtSearch: stack overrun!
[ 402.563630][ T6874]
[ 402.575669][ T6874] ERROR: (device loop0): remounting filesystem as read-only
[ 402.583601][ T6874] btstack dump:
[ 402.587785][ T6874] bn = 0, index = 0
[ 402.591781][ T6874] bn = 0, index = 0
[ 402.595770][ T6874] bn = 0, index = 0
[ 402.600110][ T6874] bn = 0, index = 0
[ 402.604104][ T6874] bn = 0, index = 0
[ 402.608250][ T6874] bn = 0, index = 0
[ 402.612430][ T6874] bn = 0, index = 0
[ 402.618037][ T6874] bn = 0, index = 0
[ 402.622169][ T6874] jfs_lookup: dtSearch returned -5
[ 403.657461][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[ 403.664369][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[ 404.301935][ T6904] loop0: detected capacity change from 0 to 32768
[ 404.342526][ T6904] ERROR: (device loop0): dtSearch: stack overrun!
[ 404.342526][ T6904]
[ 404.376246][ T6904] ERROR: (device loop0): remounting filesystem as read-only
[ 404.383960][ T6904] btstack dump:
[ 404.388155][ T6904] bn = 0, index = 0
[ 404.392689][ T6904] bn = 0, index = 0
[ 404.397216][ T6904] bn = 0, index = 0
[ 404.401313][ T6904] bn = 0, index = 0
[ 404.405406][ T6904] bn = 0, index = 0
[ 404.409633][ T6904] bn = 0, index = 0
[ 404.413629][ T6904] bn = 0, index = 0
[ 404.417780][ T6904] bn = 0, index = 0
[ 404.421971][ T6904] jfs_lookup: dtSearch returned -5
[ 406.022231][ T6933] loop0: detected capacity change from 0 to 32768
[ 406.087149][ T6933] ERROR: (device loop0): dtSearch: stack overrun!
[ 406.087149][ T6933]
[ 406.132138][ T6933] ERROR: (device loop0): remounting filesystem as read-only
[ 406.139921][ T6933] btstack dump:
[ 406.143559][ T6933] bn = 0, index = 0
[ 406.147842][ T6933] bn = 0, index = 0
[ 406.151835][ T6933] bn = 0, index = 0
[ 406.155820][ T6933] bn = 0, index = 0
[ 406.160100][ T6933] bn = 0, index = 0
[ 406.164087][ T6933] bn = 0, index = 0
[ 406.168359][ T6933] bn = 0, index = 0
[ 406.172351][ T6933] bn = 0, index = 0
[ 406.176647][ T6933] jfs_lookup: dtSearch returned -5
2025/05/06 15:35:15 executed programs: 6
[ 407.297945][ T6949] loop0: detected capacity change from 0 to 32768
[ 407.356309][ T6949] ERROR: (device loop0): dtSearch: stack overrun!
[ 407.356309][ T6949]
[ 407.368242][ T6949] ERROR: (device loop0): remounting filesystem as read-only
[ 407.376228][ T6949] btstack dump:
[ 407.380088][ T6949] bn = 0, index = 0
[ 407.384169][ T6949] bn = 0, index = 0
[ 407.388332][ T6949] bn = 0, index = 0
[ 407.392322][ T6949] bn = 0, index = 0
[ 407.396448][ T6949] bn = 0, index = 0
[ 407.400432][ T6949] bn = 0, index = 0
[ 407.404470][ T6949] bn = 0, index = 0
[ 407.408555][ T6949] bn = 0, index = 0
[ 407.412613][ T6949] jfs_lookup: dtSearch returned -5
[ 408.480686][ T6951] loop0: detected capacity change from 0 to 32768
[ 408.529134][ T6951] ERROR: (device loop0): dtSearch: stack overrun!
[ 408.529134][ T6951]
[ 408.539038][ T6951] ERROR: (device loop0): remounting filesystem as read-only
[ 408.546986][ T6951] btstack dump:
[ 408.550611][ T6951] bn = 0, index = 0
[ 408.554604][ T6951] bn = 0, index = 0
[ 408.558897][ T6951] bn = 0, index = 0
[ 408.562978][ T6951] bn = 0, index = 0
[ 408.567123][ T6951] bn = 0, index = 0
[ 408.571475][ T6951] bn = 0, index = 0
[ 408.575567][ T6951] bn = 0, index = 0
[ 408.579778][ T6951] bn = 0, index = 0
[ 408.583855][ T6951] jfs_lookup: dtSearch returned -5
[ 409.697254][ T6953] loop0: detected capacity change from 0 to 32768
[ 409.741456][ T6953] ERROR: (device loop0): dtSearch: stack overrun!
[ 409.741456][ T6953]
[ 409.764889][ T6953] ERROR: (device loop0): remounting filesystem as read-only
[ 409.772596][ T6953] btstack dump:
[ 409.776451][ T6953] bn = 0, index = 0
[ 409.780450][ T6953] bn = 0, index = 0
[ 409.786671][ T6953] bn = 0, index = 0
[ 409.790725][ T6953] bn = 0, index = 0
[ 409.794747][ T6953] bn = 0, index = 0
[ 409.799033][ T6953] bn = 0, index = 0
[ 409.803024][ T6953] bn = 0, index = 0
[ 409.807278][ T6953] bn = 0, index = 0
[ 409.811342][ T6953] jfs_lookup: dtSearch returned -5
[ 410.886134][ T6955] loop0: detected capacity change from 0 to 32768
[ 410.937239][ T6955] MetaData crosses page boundary!!
[ 410.942691][ T6955] lblock = 16ffff8880, size = 476676096
[ 410.948863][ T6955] CPU: 0 UID: 0 PID: 6955 Comm: syz.0.23 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8-dirty #0 PREEMPT(undef)
[ 410.948990][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 410.949063][ T6955] Call Trace:
[ 410.949109][ T6955]
[ 410.949150][ T6955] __dump_stack+0x26/0x30
[ 410.949292][ T6955] dump_stack_lvl+0x1df/0x270
[ 410.949433][ T6955] dump_stack+0x1e/0x25
[ 410.949557][ T6955] __get_metapage+0x1655/0x1730
[ 410.949731][ T6955] dtSearch+0x8d8/0x3d30
[ 410.949952][ T6955] jfs_lookup+0x18b/0x5a0
[ 410.950129][ T6955] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 410.950275][ T6955] ? __pfx_jfs_lookup+0x10/0x10
[ 410.950412][ T6955] lookup_one_qstr_excl_raw+0x204/0x5b0
[ 410.950579][ T6955] do_unlinkat+0x2e3/0xe50
[ 410.950725][ T6955] __x64_sys_unlink+0x71/0xb0
[ 410.950846][ T6955] x64_sys_call+0x29de/0x3db0
[ 410.950991][ T6955] do_syscall_64+0xd9/0x1b0
[ 410.951126][ T6955] ? irqentry_exit+0x16/0x60
[ 410.951252][ T6955] ? clear_bhb_loop+0x25/0x80
[ 410.951394][ T6955] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 410.951540][ T6955] RIP: 0033:0x7f962358e969
[ 410.951646][ T6955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 410.951751][ T6955] RSP: 002b:00007f962437f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 410.951873][ T6955] RAX: ffffffffffffffda RBX: 00007f96237b5fa0 RCX: 00007f962358e969
[ 410.951957][ T6955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[ 410.952031][ T6955] RBP: 00007f9623610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 410.952105][ T6955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 410.952176][ T6955] R13: 0000000000000000 R14: 00007f96237b5fa0 R15: 00007ffdc86f0338
[ 410.952281][ T6955]
[ 410.952324][ T6955] bread failed!
[ 411.142694][ T6955] jfs_lookup: dtSearch returned -5
[ 412.219125][ T6957] loop0: detected capacity change from 0 to 32768
[ 412.270179][ T6957] ERROR: (device loop0): dtSearch: stack overrun!
[ 412.270179][ T6957]
[ 412.282433][ T6957] ERROR: (device loop0): remounting filesystem as read-only
[ 412.290226][ T6957] btstack dump:
[ 412.293852][ T6957] bn = 0, index = 0
[ 412.298072][ T6957] bn = 0, index = 0
[ 412.302155][ T6957] bn = 0, index = 0
[ 412.306340][ T6957] bn = 0, index = 0
[ 412.310414][ T6957] bn = 0, index = 0
[ 412.314840][ T6957] bn = 0, index = 0
[ 412.319217][ T6957] bn = 0, index = 0
[ 412.323412][ T6957] bn = 0, index = 0
[ 412.327767][ T6957] jfs_lookup: dtSearch returned -5
2025/05/06 15:35:22 executed programs: 11
[ 413.429168][ T6959] loop0: detected capacity change from 0 to 32768
[ 413.469803][ T6959] ERROR: (device loop0): dtSearch: stack overrun!
[ 413.469803][ T6959]
[ 413.495330][ T6959] ERROR: (device loop0): remounting filesystem as read-only
[ 413.503089][ T6959] btstack dump:
[ 413.506927][ T6959] bn = 0, index = 0
[ 413.510976][ T6959] bn = 0, index = 0
[ 413.514968][ T6959] bn = 0, index = 0
[ 413.519235][ T6959] bn = 0, index = 0
[ 413.523214][ T6959] bn = 0, index = 0
[ 413.527350][ T6959] bn = 0, index = 0
[ 413.531339][ T6959] bn = 0, index = 0
[ 413.535415][ T6959] bn = 0, index = 0
[ 413.539714][ T6959] jfs_lookup: dtSearch returned -5
[ 414.638688][ T6961] loop0: detected capacity change from 0 to 32768
[ 414.686750][ T6961] MetaData crosses page boundary!!
[ 414.692108][ T6961] lblock = 16ffff8880, size = 476676096
[ 414.698402][ T6961] CPU: 0 UID: 0 PID: 6961 Comm: syz.0.26 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8-dirty #0 PREEMPT(undef)
[ 414.698538][ T6961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 414.698615][ T6961] Call Trace:
[ 414.698660][ T6961]
[ 414.698705][ T6961] __dump_stack+0x26/0x30
[ 414.698864][ T6961] dump_stack_lvl+0x1df/0x270
[ 414.699026][ T6961] dump_stack+0x1e/0x25
[ 414.699169][ T6961] __get_metapage+0x1655/0x1730
[ 414.699362][ T6961] dtSearch+0x8d8/0x3d30
[ 414.699609][ T6961] jfs_lookup+0x18b/0x5a0
[ 414.699807][ T6961] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 414.699968][ T6961] ? __pfx_jfs_lookup+0x10/0x10
[ 414.700126][ T6961] lookup_one_qstr_excl_raw+0x204/0x5b0
[ 414.700323][ T6961] do_unlinkat+0x2e3/0xe50
[ 414.700476][ T6961] __x64_sys_unlink+0x71/0xb0
[ 414.700614][ T6961] x64_sys_call+0x29de/0x3db0
[ 414.700780][ T6961] do_syscall_64+0xd9/0x1b0
[ 414.700937][ T6961] ? irqentry_exit+0x16/0x60
[ 414.701074][ T6961] ? clear_bhb_loop+0x25/0x80
[ 414.701238][ T6961] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 414.701385][ T6961] RIP: 0033:0x7f962358e969
[ 414.701482][ T6961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 414.701578][ T6961] RSP: 002b:00007f962437f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 414.701693][ T6961] RAX: ffffffffffffffda RBX: 00007f96237b5fa0 RCX: 00007f962358e969
[ 414.701776][ T6961] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[ 414.701852][ T6961] RBP: 00007f9623610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 414.701920][ T6961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 414.701988][ T6961] R13: 0000000000000000 R14: 00007f96237b5fa0 R15: 00007ffdc86f0338
[ 414.702097][ T6961]
[ 414.702143][ T6961] bread failed!
[ 414.893607][ T6961] jfs_lookup: dtSearch returned -5
[ 416.222878][ T6963] loop0: detected capacity change from 0 to 32768
[ 416.271162][ T6963] ERROR: (device loop0): dtSearch: stack overrun!
[ 416.271162][ T6963]
[ 416.284789][ T6963] ERROR: (device loop0): remounting filesystem as read-only
[ 416.292510][ T6963] btstack dump:
[ 416.296304][ T6963] bn = 0, index = 0
[ 416.300298][ T6963] bn = 0, index = 0
[ 416.304298][ T6963] bn = 0, index = 0
[ 416.308464][ T6963] bn = 0, index = 0
[ 416.312450][ T6963] bn = 0, index = 0
[ 416.316665][ T6963] bn = 0, index = 0
[ 416.320644][ T6963] bn = 0, index = 0
[ 416.324718][ T6963] bn = 0, index = 0
[ 416.328901][ T6963] jfs_lookup: dtSearch returned -5
[ 417.417688][ T6965] loop0: detected capacity change from 0 to 32768
[ 417.472531][ T6965] ERROR: (device loop0): dtSearch: stack overrun!
[ 417.472531][ T6965]
[ 417.482595][ T6965] ERROR: (device loop0): remounting filesystem as read-only
[ 417.490650][ T6965] btstack dump:
[ 417.494378][ T6965] bn = 0, index = 0
[ 417.498719][ T6965] bn = 0, index = 0
[ 417.502714][ T6965] bn = 0, index = 0
[ 417.507063][ T6965] bn = 0, index = 0
[ 417.511249][ T6965] bn = 0, index = 0
[ 417.515244][ T6965] bn = 0, index = 0
[ 417.519580][ T6965] bn = 0, index = 0
[ 417.523746][ T6965] bn = 0, index = 0
[ 417.528019][ T6965] jfs_lookup: dtSearch returned -5
2025/05/06 15:35:27 executed programs: 15
[ 418.603023][ T6967] loop0: detected capacity change from 0 to 32768
[ 418.657375][ T6967] ERROR: (device loop0): dtSearch: stack overrun!
[ 418.657375][ T6967]
[ 418.671241][ T6967] ERROR: (device loop0): remounting filesystem as read-only
[ 418.679398][ T6967] btstack dump:
[ 418.683052][ T6967] bn = 0, index = 0
[ 418.687348][ T6967] bn = 0, index = 0
[ 418.692844][ T6967] bn = 0, index = 0
[ 418.697590][ T6967] bn = 0, index = 0
[ 418.701593][ T6967] bn = 0, index = 0
[ 418.705590][ T6967] bn = 0, index = 0
[ 418.709940][ T6967] bn = 0, index = 0
[ 418.713936][ T6967] bn = 0, index = 0
[ 418.718204][ T6967] jfs_lookup: dtSearch returned -5
[ 419.934554][ T6969] loop0: detected capacity change from 0 to 32768
[ 419.990665][ T6969] ERROR: (device loop0): dtSearch: stack overrun!
[ 419.990665][ T6969]
[ 420.002357][ T6969] ERROR: (device loop0): remounting filesystem as read-only
[ 420.010165][ T6969] btstack dump:
[ 420.013873][ T6969] bn = 0, index = 0
[ 420.018446][ T6969] bn = 0, index = 0
[ 420.022435][ T6969] bn = 0, index = 0
[ 420.026609][ T6969] bn = 0, index = 0
[ 420.030599][ T6969] bn = 0, index = 0
[ 420.034594][ T6969] bn = 0, index = 0
[ 420.038690][ T6969] bn = 0, index = 0
[ 420.042823][ T6969] bn = 0, index = 0
[ 420.047314][ T6969] jfs_lookup: dtSearch returned -5
[ 421.119756][ T6971] loop0: detected capacity change from 0 to 32768
[ 421.169918][ T6971] ERROR: (device loop0): dtSearch: stack overrun!
[ 421.169918][ T6971]
[ 421.185613][ T6971] ERROR: (device loop0): remounting filesystem as read-only
[ 421.193599][ T6971] btstack dump:
[ 421.197645][ T6971] bn = 0, index = 0
[ 421.201635][ T6971] bn = 0, index = 0
[ 421.205641][ T6971] bn = 0, index = 0
[ 421.210288][ T6971] bn = 0, index = 0
[ 421.214554][ T6971] bn = 0, index = 0
[ 421.218783][ T6971] bn = 0, index = 0
[ 421.222913][ T6971] bn = 0, index = 0
[ 421.227304][ T6971] bn = 0, index = 0
[ 421.231480][ T6971] jfs_lookup: dtSearch returned -5
[ 422.305845][ T6973] loop0: detected capacity change from 0 to 32768
[ 422.345580][ T6973] ERROR: (device loop0): dtSearch: stack overrun!
[ 422.345580][ T6973]
[ 422.355681][ T6973] ERROR: (device loop0): remounting filesystem as read-only
[ 422.363573][ T6973] btstack dump:
[ 422.367394][ T6973] bn = 0, index = 0
[ 422.371388][ T6973] bn = 0, index = 0
[ 422.375382][ T6973] bn = 0, index = 0
[ 422.381107][ T6973] bn = 0, index = 0
[ 422.385113][ T6973] bn = 0, index = 0
[ 422.389801][ T6973] bn = 0, index = 0
[ 422.393847][ T6973] bn = 0, index = 0
[ 422.398119][ T6973] bn = 0, index = 0
[ 422.402216][ T6973] jfs_lookup: dtSearch returned -5
[ 423.482182][ T6975] loop0: detected capacity change from 0 to 32768
[ 423.539695][ T6975] ERROR: (device loop0): dtSearch: stack overrun!
[ 423.539695][ T6975]
[ 423.550038][ T6975] ERROR: (device loop0): remounting filesystem as read-only
[ 423.557899][ T6975] btstack dump:
[ 423.561538][ T6975] bn = 0, index = 0
[ 423.565538][ T6975] bn = 0, index = 0
[ 423.569708][ T6975] bn = 0, index = 0
[ 423.573707][ T6975] bn = 0, index = 0
[ 423.578114][ T6975] bn = 0, index = 0
[ 423.582200][ T6975] bn = 0, index = 0
[ 423.586442][ T6975] bn = 0, index = 0
[ 423.590543][ T6975] bn = 0, index = 0
[ 423.594705][ T6975] jfs_lookup: dtSearch returned -5
2025/05/06 15:35:33 executed programs: 20
[ 424.673625][ T6977] loop0: detected capacity change from 0 to 32768
[ 424.739555][ T6977] ERROR: (device loop0): dtSearch: stack overrun!
[ 424.739555][ T6977]
[ 424.751063][ T6977] ERROR: (device loop0): remounting filesystem as read-only
[ 424.760205][ T6977] btstack dump:
[ 424.763866][ T6977] bn = 0, index = 0
[ 424.768789][ T6977] bn = 0, index = 0
[ 424.772794][ T6977] bn = 0, index = 0
[ 424.777017][ T6977] bn = 0, index = 0
[ 424.781024][ T6977] bn = 0, index = 0
[ 424.785019][ T6977] bn = 0, index = 0
[ 424.789268][ T6977] bn = 0, index = 0
[ 424.793264][ T6977] bn = 0, index = 0
[ 424.797606][ T6977] jfs_lookup: dtSearch returned -5
[ 425.863880][ T6979] loop0: detected capacity change from 0 to 32768
[ 425.903908][ T6979] =====================================================
[ 425.912176][ T6979] BUG: KMSAN: use-after-free in dtSearch+0x1261/0x3d30
[ 425.919701][ T6979] dtSearch+0x1261/0x3d30
[ 425.924223][ T6979] jfs_lookup+0x18b/0x5a0
[ 425.931117][ T6979] lookup_one_qstr_excl_raw+0x204/0x5b0
[ 425.937054][ T6979] do_unlinkat+0x2e3/0xe50
[ 425.941651][ T6979] __x64_sys_unlink+0x71/0xb0
[ 425.946667][ T6979] x64_sys_call+0x29de/0x3db0
[ 425.951642][ T6979] do_syscall_64+0xd9/0x1b0
[ 425.956533][ T6979] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 425.962627][ T6979]
[ 425.965158][ T6979] Uninit was created at:
[ 425.969951][ T6979] kmem_cache_free+0x286/0xf00
[ 425.975023][ T6979] __d_free+0x43/0x60
[ 425.979491][ T6979] rcu_core+0xa5a/0x21e0
[ 425.983942][ T6979] rcu_core_si+0x12/0x20
[ 425.988957][ T6979] handle_softirqs+0x166/0x6e0
[ 425.993907][ T6979] __irq_exit_rcu+0x66/0x180
[ 425.998851][ T6979] irq_exit_rcu+0x12/0x20
[ 426.003627][ T6979] sysvec_apic_timer_interrupt+0x84/0x90
[ 426.009591][ T6979] asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 426.015844][ T6979]
[ 426.018402][ T6979] CPU: 0 UID: 0 PID: 6979 Comm: syz.0.35 Not tainted 6.15.0-rc3-syzkaller-00094-g02ddfb981de8-dirty #0 PREEMPT(undef)
[ 426.031283][ T6979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 426.044314][ T6979] =====================================================
[ 426.052266][ T6979] Disabling lock debugging due to kernel taint
[ 426.058740][ T6979] Kernel panic - not syncing: kmsan.panic set ...
[ 426.065285][ T6979] CPU: 0 UID: 0 PID: 6979 Comm: syz.0.35 Tainted: G B 6.15.0-rc3-syzkaller-00094-g02ddfb981de8-dirty #0 PREEMPT(undef)
[ 426.079455][ T6979] Tainted: [B]=BAD_PAGE
[ 426.083733][ T6979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[ 426.094093][ T6979] Call Trace:
[ 426.097452][ T6979]
[ 426.100455][ T6979] __dump_stack+0x26/0x30
[ 426.104995][ T6979] dump_stack_lvl+0x53/0x270
[ 426.109711][ T6979] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 426.115678][ T6979] dump_stack+0x1e/0x25
[ 426.120008][ T6979] panic+0x4bd/0xd50
[ 426.124121][ T6979] kmsan_report+0x29d/0x2a0
[ 426.128762][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.134088][ T6979] ? __msan_warning+0x96/0x120
[ 426.138973][ T6979] ? dtSearch+0x1261/0x3d30
[ 426.143586][ T6979] ? jfs_lookup+0x18b/0x5a0
[ 426.148298][ T6979] ? lookup_one_qstr_excl_raw+0x204/0x5b0
[ 426.154188][ T6979] ? do_unlinkat+0x2e3/0xe50
[ 426.158957][ T6979] ? __x64_sys_unlink+0x71/0xb0
[ 426.163992][ T6979] ? x64_sys_call+0x29de/0x3db0
[ 426.169297][ T6979] ? do_syscall_64+0xd9/0x1b0
[ 426.174155][ T6979] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 426.180438][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.185998][ T6979] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 426.191941][ T6979] ? should_fail_ex+0x45/0x8a0
[ 426.196838][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.202275][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.207656][ T6979] ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 426.214127][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.219468][ T6979] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 426.225507][ T6979] ? __kmalloc_cache_noprof+0x84c/0xed0
[ 426.231200][ T6979] ? dtSearch+0xb2/0x3d30
[ 426.236096][ T6979] ? kmsan_get_metadata+0x105/0x1b0
[ 426.241478][ T6979] __msan_warning+0x96/0x120
[ 426.246171][ T6979] dtSearch+0x1261/0x3d30
[ 426.250664][ T6979] ? jfs_lookup+0x51/0x5a0
[ 426.255246][ T6979] jfs_lookup+0x18b/0x5a0
[ 426.259731][ T6979] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 426.265944][ T6979] ? __pfx_jfs_lookup+0x10/0x10
[ 426.271016][ T6979] lookup_one_qstr_excl_raw+0x204/0x5b0
[ 426.276799][ T6979] do_unlinkat+0x2e3/0xe50
[ 426.281342][ T6979] __x64_sys_unlink+0x71/0xb0
[ 426.286117][ T6979] x64_sys_call+0x29de/0x3db0
[ 426.290999][ T6979] do_syscall_64+0xd9/0x1b0
[ 426.295797][ T6979] ? irqentry_exit+0x16/0x60
[ 426.300541][ T6979] ? clear_bhb_loop+0x25/0x80
[ 426.305359][ T6979] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 426.311406][ T6979] RIP: 0033:0x7f962358e969
[ 426.315915][ T6979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 426.335978][ T6979] RSP: 002b:00007f962437f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 426.344606][ T6979] RAX: ffffffffffffffda RBX: 00007f96237b5fa0 RCX: 00007f962358e969
[ 426.352677][ T6979] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[ 426.360996][ T6979] RBP: 00007f9623610ab1 R08: 0000000000000000 R09: 0000000000000000
[ 426.369060][ T6979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 426.377213][ T6979] R13: 0000000000000000 R14: 00007f96237b5fa0 R15: 00007ffdc86f0338
[ 426.385305][ T6979]
[ 426.388881][ T6979] Kernel Offset: disabled
[ 426.393278][ T6979] Rebooting in 86400 seconds..