Warning: Permanently added '10.128.1.144' (ED25519) to the list of known hosts.
2025/04/11 12:17:26 ignoring optional flag "sandboxArg"="0"
2025/04/11 12:17:27 parsed 1 programs
[  126.643709][ T6060] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  129.384863][ T6081] chnl_net:caif_netlink_parms(): no params data found
[  129.449712][ T6081] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.458674][ T6081] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.466155][ T6081] bridge_slave_0: entered allmulticast mode
[  129.474851][ T6081] bridge_slave_0: entered promiscuous mode
[  129.484613][ T6081] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.492599][ T6081] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.500344][ T6081] bridge_slave_1: entered allmulticast mode
[  129.507791][ T6081] bridge_slave_1: entered promiscuous mode
[  129.539799][ T6081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  129.552521][ T6081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  129.585241][ T6081] team0: Port device team_slave_0 added
[  129.596058][ T6081] team0: Port device team_slave_1 added
[  129.623470][ T6081] batman_adv: batadv0: Adding interface: batadv_slave_0
[  129.630453][ T6081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.657749][ T6081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  129.669953][ T6081] batman_adv: batadv0: Adding interface: batadv_slave_1
[  129.677208][ T6081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  129.703839][ T6081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.747342][ T6081] hsr_slave_0: entered promiscuous mode
[  129.755196][ T6081] hsr_slave_1: entered promiscuous mode
[  129.865619][ T6081] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.913254][ T6081] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  129.975523][ T6081] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.035785][ T6081] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.143355][ T6081] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  130.156389][ T6081] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  130.166807][ T6081] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  130.178833][ T6081] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  130.202025][ T6081] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.209294][ T6081] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.217064][ T6081] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.224419][ T6081] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.284542][ T6081] 8021q: adding VLAN 0 to HW filter on device bond0
[  130.302744][ T3511] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.310824][ T3511] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.329076][ T6081] 8021q: adding VLAN 0 to HW filter on device team0
[  130.344656][ T3569] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.351892][ T3569] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.367491][ T3511] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.374805][ T3511] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.539578][ T6081] 8021q: adding VLAN 0 to HW filter on device batadv0
[  130.586352][ T6081] veth0_vlan: entered promiscuous mode
[  130.598817][ T6081] veth1_vlan: entered promiscuous mode
[  130.628955][ T6081] veth0_macvtap: entered promiscuous mode
[  130.640081][ T6081] veth1_macvtap: entered promiscuous mode
[  130.659401][ T6081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.670994][ T6081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.683576][ T6081] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.698701][ T6081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.709347][ T6081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.720986][ T6081] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.734419][ T6081] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.744527][ T6081] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.753711][ T6081] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.763203][ T6081] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.383226][ T5155] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  132.391607][ T5155] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  132.401162][ T5155] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  132.410421][ T5155] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  132.422268][ T5155] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  133.142116][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.150044][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  133.162875][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  133.173184][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  133.195438][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  133.204538][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/04/11 12:17:38 executed programs: 0
[  133.328730][ T5155] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  133.338292][ T5155] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  133.347719][ T5155] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  133.357417][ T5155] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  133.365496][ T5155] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  133.516441][ T6163] chnl_net:caif_netlink_parms(): no params data found
[  133.589790][ T6163] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.597078][ T6163] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.604931][ T6163] bridge_slave_0: entered allmulticast mode
[  133.612014][ T6163] bridge_slave_0: entered promiscuous mode
[  133.619938][ T6163] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.627434][ T6163] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.635134][ T6163] bridge_slave_1: entered allmulticast mode
[  133.642743][ T6163] bridge_slave_1: entered promiscuous mode
[  133.674798][ T6163] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.686942][ T6163] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.720967][ T6163] team0: Port device team_slave_0 added
[  133.732787][ T6163] team0: Port device team_slave_1 added
[  133.764622][ T6163] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.771814][ T6163] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.800133][ T6163] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.813538][ T6163] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.820850][ T6163] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.849941][ T6163] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.896504][ T6163] hsr_slave_0: entered promiscuous mode
[  133.903366][ T6163] hsr_slave_1: entered promiscuous mode
[  133.909892][ T6163] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.917773][ T6163] Cannot create hsr debugfs directory
[  134.038743][ T6163] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.267935][ T6163] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.333048][ T6163] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.386527][ T6163] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.499221][ T6163] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  134.517063][ T6163] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  134.528419][ T6163] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  134.538146][ T6163] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  134.613590][ T6163] 8021q: adding VLAN 0 to HW filter on device bond0
[  134.633491][ T6163] 8021q: adding VLAN 0 to HW filter on device team0
[  134.647335][ T3569] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.654698][ T3569] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.670454][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.677828][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.846411][ T6163] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.896097][ T6163] veth0_vlan: entered promiscuous mode
[  134.908197][ T6163] veth1_vlan: entered promiscuous mode
[  134.941610][ T6163] veth0_macvtap: entered promiscuous mode
[  134.953924][ T6163] veth1_macvtap: entered promiscuous mode
[  134.971284][ T6163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  134.983106][ T6163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.994074][ T6163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.004958][ T6163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.016671][ T6163] batman_adv: batadv0: Interface activated: batadv_slave_0
[  135.028271][ T6163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.039768][ T6163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.050948][ T6163] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.061784][ T6163] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.075434][ T6163] batman_adv: batadv0: Interface activated: batadv_slave_1
[  135.093256][ T6163] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.102575][ T6163] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.111628][ T6163] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.121491][ T6163] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.197911][ T3461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.206255][ T3461] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.241640][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.250950][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.393550][   T55] Bluetooth: hci0: command tx timeout
[  136.089556][ T6214] FAULT_INJECTION: forcing a failure.
[  136.089556][ T6214] name failslab, interval 1, probability 0, space 0, times 0
[  136.103657][ T6214] CPU: 0 UID: 0 PID: 6214 Comm: syz.0.33 Not tainted 6.15.0-rc1-syzkaller-g900241a5cc15 #0 PREEMPT(full) 
[  136.103688][ T6214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.103701][ T6214] Call Trace:
[  136.103709][ T6214]  <TASK>
[  136.103722][ T6214]  dump_stack_lvl+0x16c/0x1f0
[  136.103762][ T6214]  should_fail_ex+0x512/0x640
[  136.103786][ T6214]  ? kmem_cache_alloc_noprof+0x5a/0x3b0
[  136.103822][ T6214]  should_failslab+0xc2/0x120
[  136.103844][ T6214]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  136.103878][ T6214]  ? mas_alloc_nodes+0x18b/0x8b0
[  136.103911][ T6214]  mas_alloc_nodes+0x18b/0x8b0
[  136.103946][ T6214]  mas_node_count_gfp+0x105/0x130
[  136.103976][ T6214]  mas_preallocate+0x53e/0xcd0
[  136.104005][ T6214]  ? __pfx_mas_preallocate+0x10/0x10
[  136.104037][ T6214]  ? __lock_acquire+0x5ca/0x1ba0
[  136.104079][ T6214]  vma_link+0x135/0x6a0
[  136.104115][ T6214]  ? __pfx_vma_link+0x10/0x10
[  136.104165][ T6214]  ? __pfx_hugetlb_vm_op_open+0x10/0x10
[  136.104197][ T6214]  copy_vma+0x68a/0xa50
[  136.104235][ T6214]  ? __pfx_copy_vma+0x10/0x10
[  136.104276][ T6214]  ? register_lock_class+0x41/0x4c0
[  136.104297][ T6214]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  136.104345][ T6214]  ? __lock_acquire+0x5ca/0x1ba0
[  136.104382][ T6214]  copy_vma_and_data+0x1cf/0x810
[  136.104420][ T6214]  ? __pfx_copy_vma_and_data+0x10/0x10
[  136.104468][ T6214]  ? __vma_enter_locked+0x163/0x3f0
[  136.104506][ T6214]  ? find_held_lock+0x2b/0x80
[  136.104535][ T6214]  ? move_vma+0x536/0x1740
[  136.104574][ T6214]  move_vma+0x548/0x1740
[  136.104613][ T6214]  ? __pfx_move_vma+0x10/0x10
[  136.104649][ T6214]  ? hugetlb_get_unmapped_area+0x1b7/0x2a0
[  136.104679][ T6214]  ? cap_mmap_addr+0x4b/0x120
[  136.104699][ T6214]  ? bpf_lsm_mmap_addr+0x9/0x10
[  136.104733][ T6214]  ? security_mmap_addr+0x6c/0x1e0
[  136.104766][ T6214]  ? __get_unmapped_area+0x26a/0x440
[  136.104797][ T6214]  ? vrm_set_new_addr+0x208/0x290
[  136.104833][ T6214]  __do_sys_mremap+0xe38/0x15d0
[  136.104871][ T6214]  ? __pfx___do_sys_mremap+0x10/0x10
[  136.104905][ T6214]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  136.104942][ T6214]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  136.104979][ T6214]  ? __fget_files+0x20e/0x3c0
[  136.105012][ T6214]  ? native_tss_update_io_bitmap+0x3ca/0x720
[  136.105050][ T6214]  ? rcu_is_watching+0x12/0xc0
[  136.105087][ T6214]  do_syscall_64+0xcd/0x260
[  136.105122][ T6214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.105144][ T6214] RIP: 0033:0x7f550f17dff9
[  136.105163][ T6214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.105188][ T6214] RSP: 002b:00007f550ffa1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  136.105207][ T6214] RAX: ffffffffffffffda RBX: 00007f550f335f80 RCX: 00007f550f17dff9
[  136.105219][ T6214] RDX: 0000000000000004 RSI: 0000000000000004 RDI: 0000000000000000
[  136.105229][ T6214] RBP: 00007f550ffa1090 R08: 0000000100000000 R09: 0000000000000000
[  136.105239][ T6214] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  136.105250][ T6214] R13: 0000000000000000 R14: 00007f550f335f80 R15: 00007fff4cbc0af8
[  136.105282][ T6214]  </TASK>
[  136.109150][ T6214] ------------[ cut here ]------------
[  136.440327][ T6214] page_counter underflow: -512 nr_pages=512
[  136.446862][ T6214] WARNING: CPU: 1 PID: 6214 at mm/page_counter.c:60 page_counter_cancel+0x110/0x170
[  136.456690][ T6214] Modules linked in:
[  136.460900][ T6214] CPU: 1 UID: 0 PID: 6214 Comm: syz.0.33 Not tainted 6.15.0-rc1-syzkaller-g900241a5cc15 #0 PREEMPT(full) 
[  136.472878][ T6214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.483309][ T6214] RIP: 0010:page_counter_cancel+0x110/0x170
[  136.489270][ T6214] Code: e8 d5 9e 94 ff 45 84 ed 75 24 e8 eb a3 94 ff c6 05 78 2c 48 0e 01 90 48 c7 c7 a0 b8 9d 8b 4c 89 e2 48 89 ee e8 71 35 54 ff 90 <0f> 0b 90 90 e8 c7 a3 94 ff be 08 00 00 00 48 89 df e8 4a 19 f9 ff
[  136.509198][ T6214] RSP: 0018:ffffc900033978c0 EFLAGS: 00010286
[  136.516428][ T6214] RAX: 0000000000000000 RBX: ffff888142388380 RCX: ffffffff817acff8
[  136.525547][ T6214] RDX: ffff88802e281e00 RSI: ffffffff817ad005 RDI: 0000000000000001
[  136.534843][ T6214] RBP: fffffffffffffe00 R08: 0000000000000001 R09: 0000000000000000
[  136.543052][ T6214] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000200
[  136.551098][ T6214] R13: 0000000000000000 R14: 0000000000000001 R15: ffff8880349ed910
[  136.559190][ T6214] FS:  0000000000000000(0000) GS:ffff888124ab9000(0000) knlGS:0000000000000000
[  136.568347][ T6214] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  136.575184][ T6214] CR2: 000000c001806000 CR3: 0000000034a34000 CR4: 00000000003526f0
[  136.583244][ T6214] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  136.591242][ T6214] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  136.599599][ T6214] Call Trace:
[  136.603141][ T6214]  <TASK>
[  136.606096][ T6214]  page_counter_uncharge+0x32/0x70
[  136.611334][ T6214]  hugetlb_cgroup_uncharge_counter+0xd6/0x410
[  136.617585][ T6214]  hugetlb_vm_op_close+0x3eb/0x5a0
[  136.623478][ T6214]  ? __pfx_hugetlb_vm_op_close+0x10/0x10
[  136.629313][ T6214]  remove_vma+0x85/0x160
[  136.634561][ T6214]  exit_mmap+0x511/0xb90
[  136.638945][ T6214]  ? __pfx_exit_mmap+0x10/0x10
[  136.643849][ T6214]  ? __lock_acquire+0xaa4/0x1ba0
[  136.649010][ T6214]  __mmput+0x12a/0x410
[  136.654051][ T6214]  mmput+0x62/0x70
[  136.657825][ T6214]  do_exit+0x9d1/0x2c30
[  136.662269][ T6214]  ? __pfx_try_to_wake_up+0x10/0x10
[  136.667606][ T6214]  ? __pfx_do_exit+0x10/0x10
[  136.672486][ T6214]  ? do_raw_spin_lock+0x12c/0x2b0
[  136.677555][ T6214]  ? find_held_lock+0x2b/0x80
[  136.682439][ T6214]  do_group_exit+0xd3/0x2a0
[  136.687082][ T6214]  get_signal+0x2673/0x26d0
[  136.691812][ T6214]  ? __pfx_get_signal+0x10/0x10
[  136.696792][ T6214]  ? do_futex+0x122/0x350
[  136.701151][ T6214]  ? __pfx_do_futex+0x10/0x10
[  136.705993][ T6214]  arch_do_signal_or_restart+0x8f/0x7d0
[  136.711589][ T6214]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  136.717897][ T6214]  ? __pfx_fput_close_sync+0x10/0x10
[  136.723870][ T6214]  syscall_exit_to_user_mode+0x150/0x2a0
[  136.730254][ T6214]  do_syscall_64+0xda/0x260
[  136.736085][ T6214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.742281][ T6214] RIP: 0033:0x7f550f17dff9
[  136.747097][ T6214] Code: Unable to access opcode bytes at 0x7f550f17dfcf.
[  136.754655][ T6214] RSP: 002b:00007f550ffa10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  136.763685][ T6214] RAX: 0000000000000001 RBX: 00007f550f335f88 RCX: 00007f550f17dff9
[  136.771707][ T6214] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f550f335f8c
[  136.780271][ T6214] RBP: 00007f550f335f80 R08: 00007f550ffa2000 R09: 0000000000000000
[  136.788362][ T6214] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f550f335f8c
[  136.796499][ T6214] R13: 0000000000000000 R14: 00007fff4cbc0a10 R15: 00007fff4cbc0af8
[  136.804641][ T6214]  </TASK>
[  136.807694][ T6214] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  136.815098][ T6214] CPU: 1 UID: 0 PID: 6214 Comm: syz.0.33 Not tainted 6.15.0-rc1-syzkaller-g900241a5cc15 #0 PREEMPT(full) 
[  136.826484][ T6214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.836733][ T6214] Call Trace:
[  136.840079][ T6214]  <TASK>
[  136.843024][ T6214]  dump_stack_lvl+0x3d/0x1f0
[  136.847748][ T6214]  panic+0x71c/0x800
[  136.851878][ T6214]  ? __pfx_panic+0x10/0x10
[  136.856612][ T6214]  ? show_trace_log_lvl+0x29b/0x3e0
[  136.862011][ T6214]  ? check_panic_on_warn+0x1f/0xb0
[  136.867255][ T6214]  ? page_counter_cancel+0x110/0x170
[  136.872850][ T6214]  check_panic_on_warn+0xab/0xb0
[  136.878273][ T6214]  __warn+0xf6/0x3c0
[  136.882266][ T6214]  ? preempt_schedule_notrace+0x62/0xe0
[  136.887843][ T6214]  ? page_counter_cancel+0x110/0x170
[  136.893151][ T6214]  report_bug+0x3c3/0x580
[  136.897580][ T6214]  ? page_counter_cancel+0x110/0x170
[  136.902882][ T6214]  handle_bug+0x184/0x210
[  136.907301][ T6214]  exc_invalid_op+0x17/0x50
[  136.911907][ T6214]  asm_exc_invalid_op+0x1a/0x20
[  136.916761][ T6214] RIP: 0010:page_counter_cancel+0x110/0x170
[  136.922659][ T6214] Code: e8 d5 9e 94 ff 45 84 ed 75 24 e8 eb a3 94 ff c6 05 78 2c 48 0e 01 90 48 c7 c7 a0 b8 9d 8b 4c 89 e2 48 89 ee e8 71 35 54 ff 90 <0f> 0b 90 90 e8 c7 a3 94 ff be 08 00 00 00 48 89 df e8 4a 19 f9 ff
[  136.942563][ T6214] RSP: 0018:ffffc900033978c0 EFLAGS: 00010286
[  136.948654][ T6214] RAX: 0000000000000000 RBX: ffff888142388380 RCX: ffffffff817acff8
[  136.956717][ T6214] RDX: ffff88802e281e00 RSI: ffffffff817ad005 RDI: 0000000000000001
[  136.964707][ T6214] RBP: fffffffffffffe00 R08: 0000000000000001 R09: 0000000000000000
[  136.972764][ T6214] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000200
[  136.981110][ T6214] R13: 0000000000000000 R14: 0000000000000001 R15: ffff8880349ed910
[  136.989639][ T6214]  ? __warn_printk+0x198/0x350
[  136.994694][ T6214]  ? __warn_printk+0x1a5/0x350
[  136.999474][ T6214]  page_counter_uncharge+0x32/0x70
[  137.004736][ T6214]  hugetlb_cgroup_uncharge_counter+0xd6/0x410
[  137.011006][ T6214]  hugetlb_vm_op_close+0x3eb/0x5a0
[  137.016150][ T6214]  ? __pfx_hugetlb_vm_op_close+0x10/0x10
[  137.021889][ T6214]  remove_vma+0x85/0x160
[  137.026153][ T6214]  exit_mmap+0x511/0xb90
[  137.030422][ T6214]  ? __pfx_exit_mmap+0x10/0x10
[  137.035321][ T6214]  ? __lock_acquire+0xaa4/0x1ba0
[  137.040412][ T6214]  __mmput+0x12a/0x410
[  137.044495][ T6214]  mmput+0x62/0x70
[  137.048232][ T6214]  do_exit+0x9d1/0x2c30
[  137.052594][ T6214]  ? __pfx_try_to_wake_up+0x10/0x10
[  137.057830][ T6214]  ? __pfx_do_exit+0x10/0x10
[  137.062445][ T6214]  ? do_raw_spin_lock+0x12c/0x2b0
[  137.067471][ T6214]  ? find_held_lock+0x2b/0x80
[  137.072242][ T6214]  do_group_exit+0xd3/0x2a0
[  137.076772][ T6214]  get_signal+0x2673/0x26d0
[  137.081322][ T6214]  ? __pfx_get_signal+0x10/0x10
[  137.086194][ T6214]  ? do_futex+0x122/0x350
[  137.090546][ T6214]  ? __pfx_do_futex+0x10/0x10
[  137.095256][ T6214]  arch_do_signal_or_restart+0x8f/0x7d0
[  137.100833][ T6214]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  137.107032][ T6214]  ? __pfx_fput_close_sync+0x10/0x10
[  137.112600][ T6214]  syscall_exit_to_user_mode+0x150/0x2a0
[  137.118247][ T6214]  do_syscall_64+0xda/0x260
[  137.122935][ T6214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.128916][ T6214] RIP: 0033:0x7f550f17dff9
[  137.133341][ T6214] Code: Unable to access opcode bytes at 0x7f550f17dfcf.
[  137.140407][ T6214] RSP: 002b:00007f550ffa10e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  137.148843][ T6214] RAX: 0000000000000001 RBX: 00007f550f335f88 RCX: 00007f550f17dff9
[  137.156822][ T6214] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f550f335f8c
[  137.164905][ T6214] RBP: 00007f550f335f80 R08: 00007f550ffa2000 R09: 0000000000000000
[  137.173001][ T6214] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f550f335f8c
[  137.181153][ T6214] R13: 0000000000000000 R14: 00007fff4cbc0a10 R15: 00007fff4cbc0af8
[  137.189161][ T6214]  </TASK>
[  137.192453][ T6214] Kernel Offset: disabled
[  137.196773][ T6214] Rebooting in 86400 seconds..