[ 41.248718][ T3848] bridge0: port 1(bridge_slave_0) entered disabled state
[ 41.261180][ T3848] veth1_macvtap: left promiscuous mode
[ 41.266760][ T3848] veth0_macvtap: left promiscuous mode
[ 41.272474][ T3848] veth1_vlan: left promiscuous mode
[ 41.277763][ T3848] veth0_vlan: left promiscuous mode
[ 41.359156][ T3848] team0 (unregistering): Port device team_slave_1 removed
[ 41.370010][ T3848] team0 (unregistering): Port device team_slave_0 removed
[ 41.380052][ T3848] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 41.390713][ T3848] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 41.421785][ T3848] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.10.36' (ECDSA) to the list of known hosts.
2023/05/19 07:01:00 ignoring optional flag "sandboxArg"="0"
2023/05/19 07:01:00 parsed 1 programs
2023/05/19 07:01:00 executed programs: 0
[ 53.714125][ T4396] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 53.721954][ T4396] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 53.729916][ T4396] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 53.737682][ T4396] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 53.745102][ T4396] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 53.752440][ T4396] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 53.833763][ T5317] chnl_net:caif_netlink_parms(): no params data found
[ 53.859415][ T5317] bridge0: port 1(bridge_slave_0) entered blocking state
[ 53.866477][ T5317] bridge0: port 1(bridge_slave_0) entered disabled state
[ 53.874136][ T5317] bridge_slave_0: entered allmulticast mode
[ 53.880581][ T5317] bridge_slave_0: entered promiscuous mode
[ 53.887653][ T5317] bridge0: port 2(bridge_slave_1) entered blocking state
[ 53.894908][ T5317] bridge0: port 2(bridge_slave_1) entered disabled state
[ 53.902130][ T5317] bridge_slave_1: entered allmulticast mode
[ 53.908859][ T5317] bridge_slave_1: entered promiscuous mode
[ 53.922557][ T5317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 53.933480][ T5317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 53.952377][ T5317] team0: Port device team_slave_0 added
[ 53.959617][ T5317] team0: Port device team_slave_1 added
[ 53.976010][ T5317] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 53.983104][ T5317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 54.009699][ T5317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 54.021611][ T5317] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 54.028730][ T5317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 54.054991][ T5317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 54.084031][ T5317] hsr_slave_0: entered promiscuous mode
[ 54.090338][ T5317] hsr_slave_1: entered promiscuous mode
[ 54.680455][ T5317] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 54.689039][ T5317] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 54.697488][ T5317] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 54.709450][ T5317] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 54.725905][ T5317] bridge0: port 2(bridge_slave_1) entered blocking state
[ 54.732989][ T5317] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 54.740308][ T5317] bridge0: port 1(bridge_slave_0) entered blocking state
[ 54.747365][ T5317] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 54.781870][ T5317] 8021q: adding VLAN 0 to HW filter on device bond0
[ 54.794038][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 54.803025][ T4403] bridge0: port 1(bridge_slave_0) entered disabled state
[ 54.811730][ T4403] bridge0: port 2(bridge_slave_1) entered disabled state
[ 54.819985][ T4403] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 54.831736][ T5317] 8021q: adding VLAN 0 to HW filter on device team0
[ 54.841742][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 54.852423][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 54.860991][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 54.868033][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 54.886781][ T5317] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 54.899519][ T5317] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 54.911435][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 54.919858][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 54.928068][ T5006] bridge0: port 2(bridge_slave_1) entered blocking state
[ 54.935137][ T5006] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 54.942773][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 54.951846][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 54.960718][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 54.969865][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 54.977976][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 54.986690][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 54.995528][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 55.003800][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 55.012548][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 55.020591][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 55.033422][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 55.048491][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 55.090749][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 55.100693][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 55.112154][ T5317] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 55.126262][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 55.135124][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 55.150323][ T5317] veth0_vlan: entered promiscuous mode
[ 55.159391][ T5317] veth1_vlan: entered promiscuous mode
[ 55.165904][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 55.174612][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 55.182633][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 55.197946][ T5317] veth0_macvtap: entered promiscuous mode
[ 55.204589][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 55.212201][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 55.220156][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 55.227780][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 55.236099][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 55.244559][ T5006] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 55.253664][ T5317] veth1_macvtap: entered promiscuous mode
[ 55.265215][ T5317] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 55.272531][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 55.280650][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 55.289163][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 55.299882][ T5317] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 55.307327][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 55.315995][ T751] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 55.326305][ T5317] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.336116][ T5317] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.344958][ T5317] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.354120][ T5317] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 55.391933][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 55.405132][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 55.410379][ T3848] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 55.421409][ T3848] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 55.421556][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 55.442585][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 55.535298][ T5460] loop0: detected capacity change from 0 to 14901
[ 55.668682][ T5473] loop0: detected capacity change from 0 to 14901
[ 55.771936][ T5482] loop0: detected capacity change from 0 to 14901
[ 55.808706][ T4396] Bluetooth: hci0: command 0x0409 tx timeout
[ 55.903418][ T5494] loop0: detected capacity change from 0 to 14901
[ 56.010281][ T5505] loop0: detected capacity change from 0 to 14901
[ 56.130040][ T5512] loop0: detected capacity change from 0 to 14901
[ 56.262170][ T5524] loop0: detected capacity change from 0 to 14901
[ 56.362298][ T5535] loop0: detected capacity change from 0 to 14901
[ 56.470249][ T5543] loop0: detected capacity change from 0 to 14901
[ 56.563331][ T5552] loop0: detected capacity change from 0 to 14901
[ 56.662059][ T5558] loop0: detected capacity change from 0 to 14901
[ 56.791833][ T5570] loop0: detected capacity change from 0 to 14901
[ 56.896477][ T5578] loop0: detected capacity change from 0 to 14901
[ 57.016917][ T5589] loop0: detected capacity change from 0 to 14901
[ 57.125031][ T5599] loop0: detected capacity change from 0 to 14901
[ 57.252377][ T5610] loop0: detected capacity change from 0 to 14901
[ 57.414268][ T5627] loop0: detected capacity change from 0 to 14901
[ 57.540672][ T5640] loop0: detected capacity change from 0 to 14901
[ 57.687958][ T5653] loop0: detected capacity change from 0 to 14901
[ 57.827724][ T5667] loop0: detected capacity change from 0 to 14901
[ 57.842945][ T5667] ==================================================================
[ 57.851014][ T5667] BUG: KASAN: slab-out-of-bounds in dtSearch+0x1dac/0x21c0
[ 57.862346][ T5667] Read of size 1 at addr ffff88806faef9f4 by task syz-executor.0/5667
[ 57.870483][ T5667]
[ 57.872792][ T5667] CPU: 1 PID: 5667 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller #0
[ 57.881356][ T5667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 57.888194][ T4396] Bluetooth: hci0: command 0x041b tx timeout
[ 57.891403][ T5667] Call Trace:
[ 57.891406][ T5667]
[ 57.891408][ T5667] dump_stack_lvl+0x64/0xb0
[ 57.908286][ T5667] print_address_description.constprop.0+0x2c/0x3c0
[ 57.914856][ T5667] ? dtSearch+0x1dac/0x21c0
[ 57.919377][ T5667] kasan_report+0x11c/0x130
[ 57.923954][ T5667] ? dtSearch+0x1dac/0x21c0
[ 57.928441][ T5667] dtSearch+0x1dac/0x21c0
[ 57.932765][ T5667] ? get_UCSname+0x19b/0x690
[ 57.937346][ T5667] ? d_alloc_parallel+0x5c0/0xf50
[ 57.942347][ T5667] jfs_lookup+0x14b/0x2a0
[ 57.946654][ T5667] ? jfs_link+0x4b0/0x4b0
[ 57.950966][ T5667] ? __d_lookup+0x1bc/0x350
[ 57.955453][ T5667] ? lookup_open.isra.0+0x209/0x1510
[ 57.960730][ T5667] ? __d_lookup_rcu+0x3d0/0x3d0
[ 57.965562][ T5667] ? __d_lookup+0x1d4/0x350
[ 57.970041][ T5667] ? jfs_link+0x4b0/0x4b0
[ 57.974353][ T5667] lookup_open.isra.0+0x844/0x1510
[ 57.979447][ T5667] ? link_path_walk.part.0+0xac0/0xac0
[ 57.984886][ T5667] ? rwsem_down_write_slowpath+0x1220/0x1220
[ 57.990864][ T5667] path_openat+0x7ad/0x2280
[ 57.995347][ T5667] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 58.001304][ T5667] ? path_lookupat+0x750/0x750
[ 58.006138][ T5667] do_filp_open+0x1a9/0x3e0
[ 58.010628][ T5667] ? may_open_dev+0xd0/0xd0
[ 58.015109][ T5667] ? find_held_lock+0x2d/0x110
[ 58.019851][ T5667] ? do_raw_spin_lock+0x124/0x2b0
[ 58.024852][ T5667] ? spin_bug+0x1c0/0x1c0
[ 58.029205][ T5667] ? _raw_spin_unlock+0x28/0x40
[ 58.034034][ T5667] ? alloc_fd+0x1e4/0x640
[ 58.038340][ T5667] ? getname_flags.part.0+0x89/0x440
[ 58.043601][ T5667] do_sys_openat2+0x11e/0x3f0
[ 58.048259][ T5667] ? build_open_flags+0x4a0/0x4a0
[ 58.053261][ T5667] ? xfd_validate_state+0x23/0x120
[ 58.058359][ T5667] __x64_sys_open+0x101/0x1a0
[ 58.063138][ T5667] ? do_futex+0x230/0x230
[ 58.067447][ T5667] ? do_sys_open+0xe0/0xe0
[ 58.071838][ T5667] ? syscall_enter_from_user_mode+0x26/0x80
[ 58.077758][ T5667] ? lockdep_hardirqs_on+0x7d/0x100
[ 58.082937][ T5667] do_syscall_64+0x39/0xb0
[ 58.087332][ T5667] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.093199][ T5667] RIP: 0033:0x7f3abf28c0f9
[ 58.097592][ T5667] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 58.117357][ T5667] RSP: 002b:00007f3abffac168 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 58.125761][ T5667] RAX: ffffffffffffffda RBX: 00007f3abf3abf80 RCX: 00007f3abf28c0f9
[ 58.133712][ T5667] RDX: 0000000000000000 RSI: 000000000014da42 RDI: 00000000200000c0
[ 58.141663][ T5667] RBP: 00007f3abf2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 58.149612][ T5667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 58.157654][ T5667] R13: 00007ffe3a48e85f R14: 00007f3abffac300 R15: 0000000000022000
[ 58.165611][ T5667]
[ 58.168609][ T5667]
[ 58.170926][ T5667] Allocated by task 5667:
[ 58.175227][ T5667] kasan_save_stack+0x22/0x40
[ 58.179890][ T5667] kasan_set_track+0x25/0x30
[ 58.184466][ T5667] __kasan_slab_alloc+0x7f/0x90
[ 58.189292][ T5667] kmem_cache_alloc_lru+0x20a/0x600
[ 58.194467][ T5667] jfs_alloc_inode+0x1e/0x50
[ 58.199028][ T5667] alloc_inode+0x56/0x1e0
[ 58.203334][ T5667] new_inode+0x1a/0x240
[ 58.207467][ T5667] diReadSpecial+0x4d/0x650
[ 58.211951][ T5667] jfs_mount+0x275/0x6e0
[ 58.216166][ T5667] jfs_fill_super+0x553/0xbe0
[ 58.220820][ T5667] mount_bdev+0x2d5/0x3c0
[ 58.225125][ T5667] legacy_get_tree+0xfe/0x1f0
[ 58.229775][ T5667] vfs_get_tree+0x83/0x320
[ 58.234166][ T5667] path_mount+0x836/0x1a30
[ 58.238557][ T5667] __x64_sys_mount+0x1f9/0x270
[ 58.243297][ T5667] do_syscall_64+0x39/0xb0
[ 58.247698][ T5667] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.253652][ T5667]
[ 58.255953][ T5667] The buggy address belongs to the object at ffff88806faeef00
[ 58.255953][ T5667] which belongs to the cache jfs_ip of size 2240
[ 58.269629][ T5667] The buggy address is located 564 bytes to the right of
[ 58.269629][ T5667] allocated 2240-byte region [ffff88806faeef00, ffff88806faef7c0)
[ 58.284353][ T5667]
[ 58.286658][ T5667] The buggy address belongs to the physical page:
[ 58.293041][ T5667] page:ffffea0001beba00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6fae8
[ 58.303160][ T5667] head:ffffea0001beba00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 58.312068][ T5667] memcg:ffff8880280d5801
[ 58.316283][ T5667] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 58.324237][ T5667] page_type: 0xffffffff()
[ 58.328548][ T5667] raw: 00fff00000010200 ffff888018215500 dead000000000122 0000000000000000
[ 58.337104][ T5667] raw: 0000000000000000 00000000000d000d 00000001ffffffff ffff8880280d5801
[ 58.345831][ T5667] page dumped because: kasan: bad access detected
[ 58.352218][ T5667] page_owner tracks the page as allocated
[ 58.357916][ T5667] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5640, tgid 5638 (syz-executor.0), ts 57548794998, free_ts 6768704454
[ 58.381674][ T5667] get_page_from_freelist+0xf41/0x2c00
[ 58.387116][ T5667] __alloc_pages+0x1cb/0x4a0
[ 58.391684][ T5667] allocate_slab+0x25f/0x390
[ 58.396252][ T5667] ___slab_alloc+0xa91/0x1400
[ 58.400913][ T5667] __slab_alloc.constprop.0+0x56/0xa0
[ 58.406262][ T5667] kmem_cache_alloc_lru+0x4a8/0x600
[ 58.411524][ T5667] jfs_alloc_inode+0x1e/0x50
[ 58.416094][ T5667] alloc_inode+0x56/0x1e0
[ 58.420405][ T5667] new_inode+0x1a/0x240
[ 58.424540][ T5667] diReadSpecial+0x4d/0x650
[ 58.429029][ T5667] jfs_mount+0xb5/0x6e0
[ 58.433165][ T5667] jfs_fill_super+0x553/0xbe0
[ 58.437817][ T5667] mount_bdev+0x2d5/0x3c0
[ 58.442125][ T5667] legacy_get_tree+0xfe/0x1f0
[ 58.446777][ T5667] vfs_get_tree+0x83/0x320
[ 58.451170][ T5667] path_mount+0x836/0x1a30
[ 58.455562][ T5667] page last free stack trace:
[ 58.460214][ T5667] free_unref_page_prepare+0x629/0xca0
[ 58.465647][ T5667] free_unref_page+0x33/0x370
[ 58.470736][ T5667] free_contig_range+0xb5/0x180
[ 58.475563][ T5667] destroy_args+0x50a/0x700
[ 58.480041][ T5667] debug_vm_pgtable+0x18fd/0x31a0
[ 58.485027][ T5667] do_one_initcall+0xc2/0x3c0
[ 58.489669][ T5667] kernel_init_freeable+0x541/0x950
[ 58.494830][ T5667] kernel_init+0x1a/0x1c0
[ 58.499140][ T5667] ret_from_fork+0x1f/0x30
[ 58.503538][ T5667]
[ 58.505833][ T5667] Memory state around the buggy address:
[ 58.512124][ T5667] ffff88806faef880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.520152][ T5667] ffff88806faef900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.528197][ T5667] >ffff88806faef980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.536319][ T5667] ^
[ 58.543998][ T5667] ffff88806faefa00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.552023][ T5667] ffff88806faefa80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 58.560048][ T5667] ==================================================================
[ 58.569616][ T5667] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 58.576796][ T5667] CPU: 1 PID: 5667 Comm: syz-executor.0 Not tainted 6.4.0-rc2-syzkaller #0
[ 58.585364][ T5667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023
[ 58.595385][ T5667] Call Trace:
[ 58.598665][ T5667]
[ 58.601571][ T5667] dump_stack_lvl+0x64/0xb0
[ 58.606044][ T5667] panic+0x24f/0x540
[ 58.609910][ T5667] ? panic_smp_self_stop+0x70/0x70
[ 58.614989][ T5667] ? lockdep_hardirqs_on+0x7d/0x100
[ 58.620152][ T5667] ? preempt_schedule_thunk+0x1a/0x20
[ 58.625486][ T5667] ? preempt_schedule_common+0x45/0xb0
[ 58.630927][ T5667] ? preempt_schedule_thunk+0x1a/0x20
[ 58.636278][ T5667] check_panic_on_warn+0x75/0x80
[ 58.641184][ T5667] end_report+0xe9/0x120
[ 58.645392][ T5667] ? dtSearch+0x1dac/0x21c0
[ 58.649862][ T5667] kasan_report+0xf9/0x130
[ 58.654241][ T5667] ? dtSearch+0x1dac/0x21c0
[ 58.658709][ T5667] dtSearch+0x1dac/0x21c0
[ 58.663003][ T5667] ? get_UCSname+0x19b/0x690
[ 58.667580][ T5667] ? d_alloc_parallel+0x5c0/0xf50
[ 58.672570][ T5667] jfs_lookup+0x14b/0x2a0
[ 58.676866][ T5667] ? jfs_link+0x4b0/0x4b0
[ 58.681167][ T5667] ? __d_lookup+0x1bc/0x350
[ 58.685632][ T5667] ? lookup_open.isra.0+0x209/0x1510
[ 58.690882][ T5667] ? __d_lookup_rcu+0x3d0/0x3d0
[ 58.695700][ T5667] ? __d_lookup+0x1d4/0x350
[ 58.700173][ T5667] ? jfs_link+0x4b0/0x4b0
[ 58.704466][ T5667] lookup_open.isra.0+0x844/0x1510
[ 58.709544][ T5667] ? link_path_walk.part.0+0xac0/0xac0
[ 58.714973][ T5667] ? rwsem_down_write_slowpath+0x1220/0x1220
[ 58.720927][ T5667] path_openat+0x7ad/0x2280
[ 58.725394][ T5667] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 58.731336][ T5667] ? path_lookupat+0x750/0x750
[ 58.736060][ T5667] do_filp_open+0x1a9/0x3e0
[ 58.740525][ T5667] ? may_open_dev+0xd0/0xd0
[ 58.744990][ T5667] ? find_held_lock+0x2d/0x110
[ 58.749714][ T5667] ? do_raw_spin_lock+0x124/0x2b0
[ 58.754701][ T5667] ? spin_bug+0x1c0/0x1c0
[ 58.759001][ T5667] ? _raw_spin_unlock+0x28/0x40
[ 58.763818][ T5667] ? alloc_fd+0x1e4/0x640
[ 58.768112][ T5667] ? getname_flags.part.0+0x89/0x440
[ 58.773361][ T5667] do_sys_openat2+0x11e/0x3f0
[ 58.778004][ T5667] ? build_open_flags+0x4a0/0x4a0
[ 58.783030][ T5667] ? xfd_validate_state+0x23/0x120
[ 58.788105][ T5667] __x64_sys_open+0x101/0x1a0
[ 58.792746][ T5667] ? do_futex+0x230/0x230
[ 58.797059][ T5667] ? do_sys_open+0xe0/0xe0
[ 58.801443][ T5667] ? syscall_enter_from_user_mode+0x26/0x80
[ 58.807388][ T5667] ? lockdep_hardirqs_on+0x7d/0x100
[ 58.812551][ T5667] do_syscall_64+0x39/0xb0
[ 58.816936][ T5667] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.823142][ T5667] RIP: 0033:0x7f3abf28c0f9
[ 58.827521][ T5667] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 58.847093][ T5667] RSP: 002b:00007f3abffac168 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 58.855477][ T5667] RAX: ffffffffffffffda RBX: 00007f3abf3abf80 RCX: 00007f3abf28c0f9
[ 58.863419][ T5667] RDX: 0000000000000000 RSI: 000000000014da42 RDI: 00000000200000c0
[ 58.871359][ T5667] RBP: 00007f3abf2e7ae9 R08: 0000000000000000 R09: 0000000000000000
[ 58.879476][ T5667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 58.887419][ T5667] R13: 00007ffe3a48e85f R14: 00007f3abffac300 R15: 0000000000022000
[ 58.895386][ T5667]
[ 58.899173][ T5667] Kernel Offset: disabled
[ 58.903469][ T5667] Rebooting in 86400 seconds..