Warning: Permanently added '[localhost]:53324' (ED25519) to the list of known hosts.
2025/09/17 07:06:21 parsed 1 programs
[  127.118401][ T5604] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  130.930689][ T5619] chnl_net:caif_netlink_parms(): no params data found
[  130.994475][ T5619] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.997646][ T5619] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.000759][ T5619] bridge_slave_0: entered allmulticast mode
[  131.004939][ T5619] bridge_slave_0: entered promiscuous mode
[  131.009711][ T5619] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.013818][ T5619] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.017141][ T5619] bridge_slave_1: entered allmulticast mode
[  131.029106][ T5619] bridge_slave_1: entered promiscuous mode
[  131.056153][ T5619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.064264][ T5619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.088812][ T5619] team0: Port device team_slave_0 added
[  131.095797][ T5619] team0: Port device team_slave_1 added
[  131.119612][ T5619] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.122969][ T5619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.134772][ T5619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.141644][ T5619] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.144728][ T5619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.157148][ T5619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.190686][ T5619] hsr_slave_0: entered promiscuous mode
[  131.204462][ T5619] hsr_slave_1: entered promiscuous mode
[  131.675425][ T5619] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  131.695878][ T5619] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  131.703183][ T5619] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  131.714682][ T5619] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  131.774251][ T5619] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.777388][ T5619] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.780736][ T5619] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.783704][ T5619] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.870702][ T5619] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.904934][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.922076][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.937283][ T5619] 8021q: adding VLAN 0 to HW filter on device team0
[  131.957931][ T1046] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.961204][ T1046] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.982171][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.985082][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.313590][ T5619] 8021q: adding VLAN 0 to HW filter on device batadv0
[  132.383897][ T5619] veth0_vlan: entered promiscuous mode
[  132.409565][ T5619] veth1_vlan: entered promiscuous mode
[  132.466259][ T5619] veth0_macvtap: entered promiscuous mode
[  132.484596][ T5619] veth1_macvtap: entered promiscuous mode
[  132.516563][ T5619] batman_adv: batadv0: Interface activated: batadv_slave_0
[  132.535317][ T5619] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.559394][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.564403][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.568150][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.583681][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.799675][   T43] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.903252][   T43] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.009946][   T43] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.163652][   T43] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.202771][   T45] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  134.207273][   T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  134.210953][   T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  134.216983][   T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  134.220594][   T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  134.704412][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.707874][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.784456][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.794618][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.144493][   T43] bridge_slave_1: left allmulticast mode
[  135.147148][   T43] bridge_slave_1: left promiscuous mode
[  135.149888][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.173049][   T43] bridge_slave_0: left allmulticast mode
[  135.175564][   T43] bridge_slave_0: left promiscuous mode
[  135.178694][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.586927][   T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.592959][   T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.597850][   T43] bond0 (unregistering): Released all slaves
[  135.732697][   T43] hsr_slave_0: left promiscuous mode
[  135.742956][   T43] hsr_slave_1: left promiscuous mode
[  135.752388][   T43] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.763280][   T43] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.767289][   T43] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.770580][   T43] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.793648][   T43] veth1_macvtap: left promiscuous mode
[  135.796157][   T43] veth0_macvtap: left promiscuous mode
[  135.798703][   T43] veth1_vlan: left promiscuous mode
[  135.811210][   T43] veth0_vlan: left promiscuous mode
[  136.662770][   T43] team0 (unregistering): Port device team_slave_1 removed
[  136.707649][   T43] team0 (unregistering): Port device team_slave_0 removed
[  138.064226][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  138.067869][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
2025/09/17 07:06:39 executed programs: 0
[  141.057256][ T4708] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  141.061535][ T4708] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  141.064951][ T4708] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  141.069174][ T4708] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  141.080771][ T4708] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  141.287029][ T5799] chnl_net:caif_netlink_parms(): no params data found
[  141.347100][ T5799] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.350366][ T5799] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.354218][ T5799] bridge_slave_0: entered allmulticast mode
[  141.358151][ T5799] bridge_slave_0: entered promiscuous mode
[  141.363677][ T5799] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.366867][ T5799] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.370031][ T5799] bridge_slave_1: entered allmulticast mode
[  141.375172][ T5799] bridge_slave_1: entered promiscuous mode
[  141.398251][ T5799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  141.404902][ T5799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  141.428647][ T5799] team0: Port device team_slave_0 added
[  141.443348][ T5799] team0: Port device team_slave_1 added
[  141.473286][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_0
[  141.476314][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.487993][ T5799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  141.494944][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_1
[  141.498050][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.509540][ T5799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  141.546916][ T5799] hsr_slave_0: entered promiscuous mode
[  141.550190][ T5799] hsr_slave_1: entered promiscuous mode
[  142.178243][ T5799] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  142.194429][ T5799] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  142.208285][ T5799] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  142.225799][ T5799] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  142.273806][ T5799] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.276951][ T5799] bridge0: port 2(bridge_slave_1) entered forwarding state
[  142.285465][ T5799] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.288717][ T5799] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.326627][ T1046] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.330459][ T1046] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.442738][ T5799] 8021q: adding VLAN 0 to HW filter on device bond0
[  142.467614][ T5799] 8021q: adding VLAN 0 to HW filter on device team0
[  142.508929][ T1046] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.512261][ T1046] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.532020][ T1046] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.535254][ T1046] bridge0: port 2(bridge_slave_1) entered forwarding state
[  142.913065][ T5799] 8021q: adding VLAN 0 to HW filter on device batadv0
[  142.969977][ T5799] veth0_vlan: entered promiscuous mode
[  142.997739][ T5799] veth1_vlan: entered promiscuous mode
[  143.052608][ T5799] veth0_macvtap: entered promiscuous mode
[  143.058206][ T5799] veth1_macvtap: entered promiscuous mode
[  143.095762][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_0
[  143.105863][ T4708] Bluetooth: hci0: command tx timeout
[  143.115728][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_1
[  143.138605][   T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.143456][   T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.147245][   T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.150947][   T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.285468][ T3050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.288913][ T3050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.352939][ T1046] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.356560][ T1046] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.834642][ T5842] loop0: detected capacity change from 0 to 32768
[  143.887212][ T5842] ==================================================================
[  143.890772][ T5842] BUG: KASAN: slab-use-after-free in diWrite+0x1209/0x1f40
[  143.893931][ T5842] Write of size 32 at addr ffff88804fa460c0 by task syz.0.16/5842
[  143.898018][ T5842] 
[  143.899013][ T5842] CPU: 0 UID: 0 PID: 5842 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full) 
[  143.899027][ T5842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  143.899034][ T5842] Call Trace:
[  143.899039][ T5842]  <TASK>
[  143.899044][ T5842]  dump_stack_lvl+0x189/0x250
[  143.899060][ T5842]  ? __virt_addr_valid+0x1c8/0x5c0
[  143.899074][ T5842]  ? rcu_is_watching+0x15/0xb0
[  143.899084][ T5842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.899096][ T5842]  ? rcu_is_watching+0x15/0xb0
[  143.899105][ T5842]  ? lock_release+0x4b/0x3e0
[  143.899119][ T5842]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  143.899182][ T5842]  ? __virt_addr_valid+0x1c8/0x5c0
[  143.899193][ T5842]  ? __virt_addr_valid+0x4a5/0x5c0
[  143.899206][ T5842]  print_report+0xca/0x240
[  143.899216][ T5842]  ? diWrite+0x1209/0x1f40
[  143.899226][ T5842]  kasan_report+0x118/0x150
[  143.899238][ T5842]  ? diWrite+0x1209/0x1f40
[  143.899248][ T5842]  kasan_check_range+0x2b0/0x2c0
[  143.899259][ T5842]  ? diWrite+0x1209/0x1f40
[  143.899268][ T5842]  __asan_memcpy+0x40/0x70
[  143.899279][ T5842]  diWrite+0x1209/0x1f40
[  143.899292][ T5842]  txCommit+0x852/0x5430
[  143.899302][ T5842]  ? txLock+0xaf3/0x1cb0
[  143.899311][ T5842]  ? __pfx_txCommit+0x10/0x10
[  143.899322][ T5842]  ? rcu_is_watching+0x15/0xb0
[  143.899332][ T5842]  ? __mark_inode_dirty+0x3d2/0xe10
[  143.899348][ T5842]  add_missing_indices+0x8ce/0xce0
[  143.899364][ T5842]  ? __pfx_add_missing_indices+0x10/0x10
[  143.899377][ T5842]  ? alloc_pages_noprof+0xbe/0x190
[  143.899391][ T5842]  jfs_readdir+0x1d8f/0x3ae0
[  143.899409][ T5842]  ? lockdep_lock+0x60/0xc0
[  143.899427][ T5842]  ? __pfx_jfs_readdir+0x10/0x10
[  143.899444][ T5842]  ? down_write+0x162/0x1f0
[  143.899454][ T5842]  ? __pfx_down_write+0x10/0x10
[  143.899465][ T5842]  ? wrap_directory_iterator+0x52/0xe0
[  143.899476][ T5842]  ? __pfx_jfs_readdir+0x10/0x10
[  143.899487][ T5842]  wrap_directory_iterator+0x93/0xe0
[  143.899499][ T5842]  iterate_dir+0x396/0x570
[  143.899510][ T5842]  __se_sys_getdents64+0xe4/0x260
[  143.899521][ T5842]  ? __pfx___se_sys_getdents64+0x10/0x10
[  143.899532][ T5842]  ? __pfx_filldir64+0x10/0x10
[  143.899543][ T5842]  ? rcu_is_watching+0x15/0xb0
[  143.899554][ T5842]  ? do_syscall_64+0xbe/0x3b0
[  143.899565][ T5842]  do_syscall_64+0xfa/0x3b0
[  143.899575][ T5842]  ? lockdep_hardirqs_on+0x9c/0x150
[  143.899587][ T5842]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.899596][ T5842]  ? clear_bhb_loop+0x60/0xb0
[  143.899606][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.899616][ T5842] RIP: 0033:0x7f831318e969
[  143.899626][ T5842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.899635][ T5842] RSP: 002b:00007f8314020038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  143.899648][ T5842] RAX: ffffffffffffffda RBX: 00007f83133b5fa0 RCX: 00007f831318e969
[  143.899655][ T5842] RDX: 0000000000000099 RSI: 0000200000000400 RDI: 0000000000000005
[  143.899662][ T5842] RBP: 00007f8313210ab1 R08: 0000000000000000 R09: 0000000000000000
[  143.899669][ T5842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  143.899675][ T5842] R13: 0000000000000000 R14: 00007f83133b5fa0 R15: 00007ffcac999b28
[  143.899685][ T5842]  </TASK>
[  143.899688][ T5842] 
[  144.035322][ T5842] Allocated by task 5848:
[  144.037244][ T5842]  kasan_save_track+0x3e/0x80
[  144.039286][ T5842]  __kasan_slab_alloc+0x6c/0x80
[  144.041387][ T5842]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  144.043739][ T5842]  vm_area_alloc+0x24/0x140
[  144.045811][ T5842]  mmap_region+0xdc7/0x20c0
[  144.047867][ T5842]  do_mmap+0xc45/0x10d0
[  144.049662][ T5842]  vm_mmap_pgoff+0x2a6/0x4d0
[  144.051667][ T5842]  ksys_mmap_pgoff+0x51f/0x760
[  144.053739][ T5842]  do_syscall_64+0xfa/0x3b0
[  144.055708][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.058495][ T5842] 
[  144.059530][ T5842] Freed by task 15:
[  144.061196][ T5842]  kasan_save_track+0x3e/0x80
[  144.063211][ T5842]  kasan_save_free_info+0x46/0x50
[  144.065591][ T5842]  __kasan_slab_free+0x5b/0x80
[  144.067749][ T5842]  slab_free_after_rcu_debug+0x129/0x2a0
[  144.070278][ T5842]  rcu_core+0xcab/0x1770
[  144.072241][ T5842]  handle_softirqs+0x283/0x870
[  144.074347][ T5842]  run_ksoftirqd+0x9b/0x100
[  144.076379][ T5842]  smpboot_thread_fn+0x53f/0xa60
[  144.078554][ T5842]  kthread+0x70e/0x8a0
[  144.080394][ T5842]  ret_from_fork+0x436/0x7d0
[  144.082473][ T5842]  ret_from_fork_asm+0x1a/0x30
[  144.084569][ T5842] 
[  144.085574][ T5842] Last potentially related work creation:
[  144.088063][ T5842]  kasan_save_stack+0x3e/0x60
[  144.090039][ T5842]  kasan_record_aux_stack+0xbd/0xd0
[  144.092305][ T5842]  kmem_cache_free+0x2f6/0x400
[  144.094453][ T5842]  exit_mmap+0x53f/0xb50
[  144.096294][ T5842]  __mmput+0x118/0x430
[  144.098099][ T5842]  exit_mm+0x1da/0x2c0
[  144.099852][ T5842]  do_exit+0x648/0x2300
[  144.101679][ T5842]  do_group_exit+0x21c/0x2d0
[  144.103730][ T5842]  __x64_sys_exit_group+0x3f/0x40
[  144.105781][ T5842]  x64_sys_call+0x21f7/0x2200
[  144.107851][ T5842]  do_syscall_64+0xfa/0x3b0
[  144.109814][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.112307][ T5842] 
[  144.113346][ T5842] The buggy address belongs to the object at ffff88804fa46000
[  144.113346][ T5842]  which belongs to the cache vm_area_struct of size 256
[  144.119340][ T5842] The buggy address is located 192 bytes inside of
[  144.119340][ T5842]  freed 256-byte region [ffff88804fa46000, ffff88804fa46100)
[  144.125077][ T5842] 
[  144.126115][ T5842] The buggy address belongs to the physical page:
[  144.128885][ T5842] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4fa46
[  144.132608][ T5842] memcg:ffff88803f4b9101
[  144.134457][ T5842] flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  144.137619][ T5842] page_type: f5(slab)
[  144.139388][ T5842] raw: 04fff00000000000 ffff888030413b40 dead000000000122 0000000000000000
[  144.143080][ T5842] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff88803f4b9101
[  144.146692][ T5842] page dumped because: kasan: bad access detected
[  144.149583][ T5842] page_owner tracks the page as allocated
[  144.151994][ T5842] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5848, tgid 5848 (rm), ts 143824871344, free_ts 143803858589
[  144.159980][ T5842]  post_alloc_hook+0x240/0x2a0
[  144.162058][ T5842]  get_page_from_freelist+0x21e4/0x22c0
[  144.164425][ T5842]  __alloc_frozen_pages_noprof+0x181/0x370
[  144.166925][ T5842]  alloc_pages_mpol+0x232/0x4a0
[  144.169063][ T5842]  allocate_slab+0x8a/0x370
[  144.171062][ T5842]  ___slab_alloc+0xbeb/0x1420
[  144.173117][ T5842]  kmem_cache_alloc_noprof+0x283/0x3c0
[  144.175497][ T5842]  vm_area_alloc+0x24/0x140
[  144.177508][ T5842]  mmap_region+0xdc7/0x20c0
[  144.179494][ T5842]  do_mmap+0xc45/0x10d0
[  144.181355][ T5842]  vm_mmap_pgoff+0x2a6/0x4d0
[  144.183316][ T5842]  ksys_mmap_pgoff+0x51f/0x760
[  144.185428][ T5842]  do_syscall_64+0xfa/0x3b0
[  144.187427][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.189968][ T5842] page last free pid 15 tgid 15 stack trace:
[  144.192505][ T5842]  __free_frozen_pages+0xbc4/0xd30
[  144.194736][ T5842]  __tlb_remove_table+0x2d2/0x3b0
[  144.196944][ T5842]  tlb_remove_table_rcu+0x85/0x100
[  144.199098][ T5842]  rcu_core+0xcab/0x1770
[  144.200971][ T5842]  handle_softirqs+0x283/0x870
[  144.203017][ T5842]  run_ksoftirqd+0x9b/0x100
[  144.205030][ T5842]  smpboot_thread_fn+0x53f/0xa60
[  144.207144][ T5842]  kthread+0x70e/0x8a0
[  144.209034][ T5842]  ret_from_fork+0x436/0x7d0
[  144.211076][ T5842]  ret_from_fork_asm+0x1a/0x30
[  144.213201][ T5842] 
[  144.214281][ T5842] Memory state around the buggy address:
[  144.216773][ T5842]  ffff88804fa45f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  144.220281][ T5842]  ffff88804fa46000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.223773][ T5842] >ffff88804fa46080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.227233][ T5842]                                            ^
[  144.229918][ T5842]  ffff88804fa46100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  144.233386][ T5842]  ffff88804fa46180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  144.236869][ T5842] ==================================================================
[  144.442362][ T5842] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  144.445381][ T5842] CPU: 0 UID: 0 PID: 5842 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full) 
[  144.449270][ T5842] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.453754][ T5842] Call Trace:
[  144.455262][ T5842]  <TASK>
[  144.456612][ T5842]  dump_stack_lvl+0x99/0x250
[  144.458687][ T5842]  ? __asan_memcpy+0x40/0x70
[  144.460754][ T5842]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.463020][ T5842]  ? __pfx__printk+0x10/0x10
[  144.465067][ T5842]  vpanic+0x281/0x750
[  144.466709][ T5842]  ? preempt_schedule+0xae/0xc0
[  144.468790][ T5842]  ? __pfx_vpanic+0x10/0x10
[  144.470598][ T5842]  ? preempt_schedule_common+0x83/0xd0
[  144.473001][ T5842]  ? preempt_schedule+0xae/0xc0
[  144.475171][ T5842]  ? __pfx_preempt_schedule+0x10/0x10
[  144.477549][ T5842]  panic+0xb9/0xc0
[  144.479191][ T5842]  ? __pfx_panic+0x10/0x10
[  144.481207][ T5842]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  144.483783][ T5842]  ? is_module_address+0x17/0xf0
[  144.485941][ T5842]  ? diWrite+0x1209/0x1f40
[  144.487902][ T5842]  check_panic_on_warn+0x89/0xb0
[  144.490338][ T5842]  ? diWrite+0x1209/0x1f40
[  144.492559][ T5842]  end_report+0x78/0x160
[  144.494400][ T5842]  kasan_report+0x129/0x150
[  144.496394][ T5842]  ? diWrite+0x1209/0x1f40
[  144.498380][ T5842]  kasan_check_range+0x2b0/0x2c0
[  144.500581][ T5842]  ? diWrite+0x1209/0x1f40
[  144.502481][ T5842]  __asan_memcpy+0x40/0x70
[  144.504428][ T5842]  diWrite+0x1209/0x1f40
[  144.506336][ T5842]  txCommit+0x852/0x5430
[  144.508215][ T5842]  ? txLock+0xaf3/0x1cb0
[  144.510148][ T5842]  ? __pfx_txCommit+0x10/0x10
[  144.512220][ T5842]  ? rcu_is_watching+0x15/0xb0
[  144.514298][ T5842]  ? __mark_inode_dirty+0x3d2/0xe10
[  144.516571][ T5842]  add_missing_indices+0x8ce/0xce0
[  144.518811][ T5842]  ? __pfx_add_missing_indices+0x10/0x10
[  144.521215][ T5842]  ? alloc_pages_noprof+0xbe/0x190
[  144.523466][ T5842]  jfs_readdir+0x1d8f/0x3ae0
[  144.525534][ T5842]  ? lockdep_lock+0x60/0xc0
[  144.527646][ T5842]  ? __pfx_jfs_readdir+0x10/0x10
[  144.529883][ T5842]  ? down_write+0x162/0x1f0
[  144.531954][ T5842]  ? __pfx_down_write+0x10/0x10
[  144.534160][ T5842]  ? wrap_directory_iterator+0x52/0xe0
[  144.536512][ T5842]  ? __pfx_jfs_readdir+0x10/0x10
[  144.538736][ T5842]  wrap_directory_iterator+0x93/0xe0
[  144.541197][ T5842]  iterate_dir+0x396/0x570
[  144.543254][ T5842]  __se_sys_getdents64+0xe4/0x260
[  144.545568][ T5842]  ? __pfx___se_sys_getdents64+0x10/0x10
[  144.548084][ T5842]  ? __pfx_filldir64+0x10/0x10
[  144.550200][ T5842]  ? rcu_is_watching+0x15/0xb0
[  144.552289][ T5842]  ? do_syscall_64+0xbe/0x3b0
[  144.554422][ T5842]  do_syscall_64+0xfa/0x3b0
[  144.556455][ T5842]  ? lockdep_hardirqs_on+0x9c/0x150
[  144.558820][ T5842]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.561594][ T5842]  ? clear_bhb_loop+0x60/0xb0
[  144.563721][ T5842]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.566332][ T5842] RIP: 0033:0x7f831318e969
[  144.568380][ T5842] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.576825][ T5842] RSP: 002b:00007f8314020038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  144.580560][ T5842] RAX: ffffffffffffffda RBX: 00007f83133b5fa0 RCX: 00007f831318e969
[  144.583994][ T5842] RDX: 0000000000000099 RSI: 0000200000000400 RDI: 0000000000000005
[  144.587453][ T5842] RBP: 00007f8313210ab1 R08: 0000000000000000 R09: 0000000000000000
[  144.590917][ T5842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.594454][ T5842] R13: 0000000000000000 R14: 00007f83133b5fa0 R15: 00007ffcac999b28
[  144.597915][ T5842]  </TASK>
[  144.599634][ T5842] Kernel Offset: disabled
[  144.601552][ T5842] Rebooting in 86400 seconds..