Warning: Permanently added '10.128.0.162' (ED25519) to the list of known hosts.
2026/05/29 02:58:27 parsed 1 programs
[ 112.202603][ T4621] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 113.845875][ T4631] chnl_net:caif_netlink_parms(): no params data found
[ 113.894283][ T4631] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.901607][ T4631] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.909770][ T4631] device bridge_slave_0 entered promiscuous mode
[ 113.920163][ T4631] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.927414][ T4631] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.935431][ T4631] device bridge_slave_1 entered promiscuous mode
[ 113.960062][ T4631] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 113.971118][ T4631] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 113.996506][ T4631] team0: Port device team_slave_0 added
[ 114.004257][ T4631] team0: Port device team_slave_1 added
[ 114.026777][ T4631] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 114.033877][ T4631] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 114.060216][ T4631] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 114.072446][ T4631] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 114.079426][ T4631] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 114.106250][ T4631] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 114.140137][ T4631] device hsr_slave_0 entered promiscuous mode
[ 114.147476][ T4631] device hsr_slave_1 entered promiscuous mode
[ 114.823554][ T4631] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 114.856371][ T4631] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 114.873100][ T4631] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 114.894223][ T4631] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 115.028500][ T4631] 8021q: adding VLAN 0 to HW filter on device bond0
[ 115.060666][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 115.073408][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 115.095392][ T4631] 8021q: adding VLAN 0 to HW filter on device team0
[ 115.116408][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 115.152507][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 115.172696][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.179821][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 115.211826][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 115.231759][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 115.251769][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 115.271668][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.278879][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 115.301944][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 115.312211][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 115.352767][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 115.366689][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 115.393266][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 115.412228][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 115.422405][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 115.442605][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 115.467110][ T4631] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 115.478784][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 115.487926][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 115.498036][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 115.506984][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 115.714167][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 115.731929][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 115.744941][ T4631] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.781111][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 115.792598][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 115.822020][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 115.831122][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 115.841135][ T4631] device veth0_vlan entered promiscuous mode
[ 115.863168][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 115.883726][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 115.896379][ T4631] device veth1_vlan entered promiscuous mode
[ 115.922975][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 115.931013][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 115.968880][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 115.983415][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 116.005703][ T4631] device veth0_macvtap entered promiscuous mode
[ 116.025701][ T4631] device veth1_macvtap entered promiscuous mode
[ 116.060348][ T4631] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 116.082789][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 116.092045][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 116.112457][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 116.132883][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 116.156790][ T4631] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 116.171738][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 116.180371][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 116.216671][ T4631] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.230431][ T4631] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.240301][ T4631] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.250294][ T4631] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 116.515944][ T154] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.756922][ T4256] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.771880][ T4256] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.782270][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 116.807034][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 116.818027][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 116.826926][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 119.078764][ T154] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 121.219762][ T154] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 121.292252][ T154] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 122.036409][ T154] device hsr_slave_0 left promiscuous mode
[ 122.052176][ T154] device hsr_slave_1 left promiscuous mode
[ 122.072737][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 122.081012][ T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 122.091703][ T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 122.099611][ T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 122.110015][ T154] device bridge_slave_1 left promiscuous mode
[ 122.116508][ T154] bridge0: port 2(bridge_slave_1) entered disabled state
[ 122.125568][ T154] device bridge_slave_0 left promiscuous mode
[ 122.133005][ T154] bridge0: port 1(bridge_slave_0) entered disabled state
[ 122.158195][ T154] device veth1_macvtap left promiscuous mode
[ 122.164397][ T154] device veth0_macvtap left promiscuous mode
[ 122.170520][ T154] device veth1_vlan left promiscuous mode
[ 122.184964][ T154] device veth0_vlan left promiscuous mode
[ 122.400535][ T154] team0 (unregistering): Port device team_slave_1 removed
[ 122.415865][ T154] team0 (unregistering): Port device team_slave_0 removed
[ 122.428499][ T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 122.442869][ T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 122.502668][ T154] bond0 (unregistering): Released all slaves
2026/05/29 02:58:43 executed programs: 0
[ 123.754363][ T5060] chnl_net:caif_netlink_parms(): no params data found
[ 123.879083][ T5060] bridge0: port 1(bridge_slave_0) entered blocking state
[ 123.886550][ T5060] bridge0: port 1(bridge_slave_0) entered disabled state
[ 123.896726][ T5060] device bridge_slave_0 entered promiscuous mode
[ 123.908574][ T5060] bridge0: port 2(bridge_slave_1) entered blocking state
[ 123.917489][ T5060] bridge0: port 2(bridge_slave_1) entered disabled state
[ 123.932703][ T5060] device bridge_slave_1 entered promiscuous mode
[ 123.991120][ T5060] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 124.024601][ T5060] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 124.090360][ T5060] team0: Port device team_slave_0 added
[ 124.105878][ T5060] team0: Port device team_slave_1 added
[ 124.133494][ T5060] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 124.140678][ T5060] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 124.175684][ T5060] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 124.189200][ T5060] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 124.199510][ T5060] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 124.226136][ T5060] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 124.273125][ T5060] device hsr_slave_0 entered promiscuous mode
[ 124.280299][ T5060] device hsr_slave_1 entered promiscuous mode
[ 125.056463][ T5060] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 125.068993][ T5060] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 125.079699][ T5060] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 125.090672][ T5060] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 125.166903][ T5060] 8021q: adding VLAN 0 to HW filter on device bond0
[ 125.183126][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 125.193087][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 125.206538][ T5060] 8021q: adding VLAN 0 to HW filter on device team0
[ 125.219048][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 125.229121][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 125.238451][ T4256] bridge0: port 1(bridge_slave_0) entered blocking state
[ 125.245620][ T4256] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 125.263033][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 125.273906][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 125.283535][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 125.296178][ T4256] bridge0: port 2(bridge_slave_1) entered blocking state
[ 125.303455][ T4256] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 125.311950][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 125.336611][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 125.346303][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 125.358274][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 125.369273][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 125.382449][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 125.391308][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 125.402192][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 125.413737][ T5060] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 125.427835][ T5060] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 125.437634][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 125.448418][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 125.457889][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 125.531532][ T4270] Bluetooth: hci0: command 0x0409 tx timeout
[ 125.619326][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 125.630377][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 125.693790][ T5060] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 125.717818][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 125.727644][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 125.793838][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 125.803285][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 125.812817][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 125.820780][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 125.875573][ T5060] device veth0_vlan entered promiscuous mode
[ 125.916400][ T5060] device veth1_vlan entered promiscuous mode
[ 125.997291][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 126.024579][ T4256] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 126.040912][ T5060] device veth0_macvtap entered promiscuous mode
[ 126.100596][ T5060] device veth1_macvtap entered promiscuous mode
[ 126.133980][ T5060] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 126.153283][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 126.172149][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 126.192179][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 126.210195][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 126.223425][ T5060] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 126.239369][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 126.273626][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 126.386075][ T5060] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.402740][ T5060] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.412027][ T5060] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.420781][ T5060] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 126.556176][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.568290][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.585840][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 126.630164][ T4310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 126.638723][ T4310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 126.648217][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 127.085955][ T5153] loop0: detected capacity change from 0 to 32768
[ 127.142244][ T5153]
[ 127.142244][ T5153] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 127.142244][ T5153]
[ 127.204325][ T5153] read_mapping_page failed!
[ 127.209344][ T5153] ERROR: (device loop0): txCommit:
[ 127.209344][ T5153]
[ 127.235712][ T5153] read_mapping_page failed!
[ 127.240423][ T5153] ERROR: (device loop0): txCommit:
[ 127.240423][ T5153]
[ 127.254521][ T5153] ==================================================================
[ 127.262883][ T5153] BUG: KASAN: slab-out-of-bounds in dtSplitPage+0x1066/0x3200
[ 127.270391][ T5153] Read of size 1 at addr ffff88805d1fc0b5 by task syz.0.17/5153
[ 127.278176][ T5153]
[ 127.280657][ T5153] CPU: 1 PID: 5153 Comm: syz.0.17 Not tainted syzkaller #0
[ 127.287895][ T5153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 127.298386][ T5153] Call Trace:
[ 127.301706][ T5153]
[ 127.304674][ T5153] dump_stack_lvl+0x188/0x250
[ 127.309392][ T5153] ? show_regs_print_info+0x20/0x20
[ 127.314623][ T5153] ? _printk+0xda/0x130
[ 127.318825][ T5153] ? load_image+0x400/0x400
[ 127.323382][ T5153] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 127.328973][ T5153] ? unlock_page+0x17c/0x1f0
[ 127.333630][ T5153] print_address_description+0x60/0x2d0
[ 127.339486][ T5153] ? dtSplitPage+0x1066/0x3200
[ 127.345049][ T5153] kasan_report+0xdf/0x130
[ 127.349522][ T5153] ? dtSplitPage+0x1066/0x3200
[ 127.354355][ T5153] dtSplitPage+0x1066/0x3200
[ 127.359250][ T5153] ? __lock_acquire+0x7d10/0x7d10
[ 127.364897][ T5153] ? dbAlloc+0x7ac/0xba0
[ 127.369466][ T5153] dtInsert+0xff4/0x5830
[ 127.373773][ T5153] ? lockdep_hardirqs_on+0x94/0x140
[ 127.379216][ T5153] ? __lock_acquire+0x7d10/0x7d10
[ 127.384559][ T5153] ? do_raw_spin_lock+0x128/0x2f0
[ 127.389622][ T5153] ? UniStrupr+0x2e0/0x2e0
[ 127.394165][ T5153] ? __rwlock_init+0x140/0x140
[ 127.398972][ T5153] ? txLock+0xcb1/0x1b10
[ 127.403284][ T5153] ? dtInitRoot+0x226/0x660
[ 127.407821][ T5153] jfs_mkdir+0x758/0xad0
[ 127.412112][ T5153] ? jfs_symlink+0xfb0/0xfb0
[ 127.416767][ T5153] ? make_kgid+0x660/0x660
[ 127.421212][ T5153] ? apparmor_path_mkdir+0x1ac/0x230
[ 127.426539][ T5153] ? generic_permission+0x230/0x510
[ 127.431772][ T5153] ? inode_permission+0xef/0x480
[ 127.436830][ T5153] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 127.441897][ T5153] ? security_inode_mkdir+0xb3/0x100
[ 127.447214][ T5153] vfs_mkdir+0x387/0x570
[ 127.451773][ T5153] do_mkdirat+0x1df/0x5b0
[ 127.456158][ T5153] ? vfs_mkdir+0x570/0x570
[ 127.460640][ T5153] ? getname_flags+0x1fe/0x500
[ 127.465537][ T5153] __x64_sys_mkdirat+0x85/0x90
[ 127.470358][ T5153] do_syscall_64+0x4c/0xa0
[ 127.474822][ T5153] ? clear_bhb_loop+0x30/0x80
[ 127.479551][ T5153] ? clear_bhb_loop+0x30/0x80
[ 127.484275][ T5153] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 127.490339][ T5153] RIP: 0033:0x7f443d1e6539
[ 127.495000][ T5153] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 127.515097][ T5153] RSP: 002b:00007f443c84a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 127.523824][ T5153] RAX: ffffffffffffffda RBX: 00007f443d451fa0 RCX: 00007f443d1e6539
[ 127.531852][ T5153] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 127.539958][ T5153] RBP: 00007f443d279ee0 R08: 0000000000000000 R09: 0000000000000000
[ 127.547975][ T5153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 127.556081][ T5153] R13: 00007f443d452038 R14: 00007f443d451fa0 R15: 00007ffebde47a48
[ 127.564280][ T5153]
[ 127.567324][ T5153]
[ 127.569672][ T5153] Allocated by task 5153:
[ 127.574108][ T5153] __kasan_slab_alloc+0x9c/0xd0
[ 127.579090][ T5153] slab_post_alloc_hook+0x4c/0x380
[ 127.584544][ T5153] kmem_cache_alloc+0x100/0x290
[ 127.589547][ T5153] jfs_alloc_inode+0x17/0x50
[ 127.594191][ T5153] iget_locked+0x191/0x820
[ 127.598654][ T5153] jfs_iget+0x20/0x3f0
[ 127.602751][ T5153] jfs_lookup+0x21d/0x420
[ 127.607295][ T5153] __lookup_slow+0x29d/0x410
[ 127.612070][ T5153] lookup_slow+0x53/0x70
[ 127.613495][ T4270] Bluetooth: hci0: command 0x041b tx timeout
[ 127.616361][ T5153] walk_component+0x319/0x460
[ 127.627055][ T5153] path_lookupat+0x169/0x440
[ 127.631678][ T5153] filename_lookup+0x214/0x540
[ 127.636474][ T5153] user_path_at_empty+0x40/0x190
[ 127.641459][ T5153] __se_sys_chdir+0x98/0x280
[ 127.646089][ T5153] do_syscall_64+0x4c/0xa0
[ 127.650547][ T5153] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 127.656473][ T5153]
[ 127.658821][ T5153] The buggy address belongs to the object at ffff88805d1fb780
[ 127.658821][ T5153] which belongs to the cache jfs_ip of size 2240
[ 127.672734][ T5153] The buggy address is located 117 bytes to the right of
[ 127.672734][ T5153] 2240-byte region [ffff88805d1fb780, ffff88805d1fc040)
[ 127.686828][ T5153] The buggy address belongs to the page:
[ 127.692508][ T5153] page:ffffea0001747e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5d1f8
[ 127.702875][ T5153] head:ffffea0001747e00 order:3 compound_mapcount:0 compound_pincount:0
[ 127.711235][ T5153] memcg:ffff88801ee51001
[ 127.715534][ T5153] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 127.723579][ T5153] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff88801df0edc0
[ 127.732216][ T5153] raw: 0000000000000000 00000000800d000d 00000001ffffffff ffff88801ee51001
[ 127.740822][ T5153] page dumped because: kasan: bad access detected
[ 127.747266][ T5153] page_owner tracks the page as allocated
[ 127.753016][ T5153] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5153, ts 127122331244, free_ts 25043567060
[ 127.774788][ T5153] get_page_from_freelist+0x1bbd/0x1ca0
[ 127.780414][ T5153] __alloc_pages+0x1ee/0x480
[ 127.785054][ T5153] new_slab+0xc0/0x4b0
[ 127.789249][ T5153] ___slab_alloc+0x80a/0xdd0
[ 127.793865][ T5153] kmem_cache_alloc+0x195/0x290
[ 127.798742][ T5153] jfs_alloc_inode+0x17/0x50
[ 127.803381][ T5153] new_inode_pseudo+0x5f/0x210
[ 127.808209][ T5153] new_inode+0x25/0x1c0
[ 127.812390][ T5153] jfs_fill_super+0x398/0xb00
[ 127.817089][ T5153] mount_bdev+0x287/0x3c0
[ 127.821627][ T5153] legacy_get_tree+0xe6/0x180
[ 127.826350][ T5153] vfs_get_tree+0x88/0x270
[ 127.830802][ T5153] do_new_mount+0x24a/0xa40
[ 127.835351][ T5153] __se_sys_mount+0x2e3/0x3d0
[ 127.840063][ T5153] do_syscall_64+0x4c/0xa0
[ 127.844502][ T5153] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 127.850545][ T5153] page last free stack trace:
[ 127.856076][ T5153] free_unref_page_prepare+0x637/0x6c0
[ 127.861940][ T5153] free_unref_page+0x8f/0x2a0
[ 127.866786][ T5153] free_contig_range+0x96/0xf0
[ 127.871731][ T5153] destroy_args+0xf0/0xa00
[ 127.876196][ T5153] debug_vm_pgtable+0x321/0x380
[ 127.881097][ T5153] do_one_initcall+0x272/0x730
[ 127.885913][ T5153] do_initcall_level+0x137/0x1f0
[ 127.891179][ T5153] do_initcalls+0x4b/0x90
[ 127.895543][ T5153] kernel_init_freeable+0x3e9/0x570
[ 127.900775][ T5153] kernel_init+0x19/0x1b0
[ 127.905127][ T5153] ret_from_fork+0x1f/0x30
[ 127.909701][ T5153]
[ 127.912195][ T5153] Memory state around the buggy address:
[ 127.917859][ T5153] ffff88805d1fbf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 127.925985][ T5153] ffff88805d1fc000: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[ 127.934083][ T5153] >ffff88805d1fc080: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[ 127.942184][ T5153] ^
[ 127.947848][ T5153] ffff88805d1fc100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 127.956050][ T5153] ffff88805d1fc180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 127.964140][ T5153] ==================================================================
[ 127.972232][ T5153] Disabling lock debugging due to kernel taint
[ 127.988594][ T5153] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 127.995857][ T5153] CPU: 1 PID: 5153 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 128.004793][ T5153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 128.014877][ T5153] Call Trace:
[ 128.018182][ T5153]
[ 128.021139][ T5153] dump_stack_lvl+0x188/0x250
[ 128.025861][ T5153] ? show_regs_print_info+0x20/0x20
[ 128.031191][ T5153] ? load_image+0x400/0x400
[ 128.035730][ T5153] panic+0x2e5/0x810
[ 128.039740][ T5153] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 128.045924][ T5153] ? bpf_jit_dump+0xd0/0xd0
[ 128.050557][ T5153] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 128.056828][ T5153] ? _raw_spin_unlock+0x40/0x40
[ 128.061711][ T5153] ? dtSplitPage+0x1066/0x3200
[ 128.066780][ T5153] check_panic_on_warn+0x80/0xa0
[ 128.071759][ T5153] ? dtSplitPage+0x1066/0x3200
[ 128.076556][ T5153] end_report+0x6d/0xf0
[ 128.080882][ T5153] kasan_report+0x102/0x130
[ 128.085976][ T5153] ? dtSplitPage+0x1066/0x3200
[ 128.090817][ T5153] dtSplitPage+0x1066/0x3200
[ 128.095549][ T5153] ? __lock_acquire+0x7d10/0x7d10
[ 128.100625][ T5153] ? dbAlloc+0x7ac/0xba0
[ 128.105127][ T5153] dtInsert+0xff4/0x5830
[ 128.109504][ T5153] ? lockdep_hardirqs_on+0x94/0x140
[ 128.114733][ T5153] ? __lock_acquire+0x7d10/0x7d10
[ 128.119791][ T5153] ? do_raw_spin_lock+0x128/0x2f0
[ 128.124848][ T5153] ? UniStrupr+0x2e0/0x2e0
[ 128.129292][ T5153] ? __rwlock_init+0x140/0x140
[ 128.134081][ T5153] ? txLock+0xcb1/0x1b10
[ 128.138365][ T5153] ? dtInitRoot+0x226/0x660
[ 128.143120][ T5153] jfs_mkdir+0x758/0xad0
[ 128.147627][ T5153] ? jfs_symlink+0xfb0/0xfb0
[ 128.152356][ T5153] ? make_kgid+0x660/0x660
[ 128.156807][ T5153] ? apparmor_path_mkdir+0x1ac/0x230
[ 128.162204][ T5153] ? generic_permission+0x230/0x510
[ 128.167437][ T5153] ? inode_permission+0xef/0x480
[ 128.172492][ T5153] ? bpf_lsm_inode_mkdir+0x5/0x10
[ 128.177656][ T5153] ? security_inode_mkdir+0xb3/0x100
[ 128.183123][ T5153] vfs_mkdir+0x387/0x570
[ 128.187416][ T5153] do_mkdirat+0x1df/0x5b0
[ 128.191783][ T5153] ? vfs_mkdir+0x570/0x570
[ 128.196241][ T5153] ? getname_flags+0x1fe/0x500
[ 128.201127][ T5153] __x64_sys_mkdirat+0x85/0x90
[ 128.205941][ T5153] do_syscall_64+0x4c/0xa0
[ 128.210395][ T5153] ? clear_bhb_loop+0x30/0x80
[ 128.215115][ T5153] ? clear_bhb_loop+0x30/0x80
[ 128.219842][ T5153] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 128.225782][ T5153] RIP: 0033:0x7f443d1e6539
[ 128.230494][ T5153] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 128.250353][ T5153] RSP: 002b:00007f443c84a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[ 128.258806][ T5153] RAX: ffffffffffffffda RBX: 00007f443d451fa0 RCX: 00007f443d1e6539
[ 128.267442][ T5153] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffffffffff9c
[ 128.275959][ T5153] RBP: 00007f443d279ee0 R08: 0000000000000000 R09: 0000000000000000
[ 128.284564][ T5153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 128.292645][ T5153] R13: 00007f443d452038 R14: 00007f443d451fa0 R15: 00007ffebde47a48
[ 128.301084][ T5153]
[ 128.304429][ T5153] Kernel Offset: disabled
[ 128.308777][ T5153] Rebooting in 86400 seconds..