Warning: Permanently added '10.128.1.170' (ED25519) to the list of known hosts.
2026/05/10 05:36:03 ignoring optional flag "type"="gce"
2026/05/10 05:36:03 parsed 1 programs
[ 132.951029][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.951139][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
[ 135.021505][ T6062] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 139.871730][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 139.878894][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 139.898075][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 139.920790][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 139.922951][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 140.762497][ T1552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 140.762517][ T1552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 140.827512][ T55] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 140.827532][ T55] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 142.654220][ T6131] bridge0: port 1(bridge_slave_0) entered blocking state
[ 142.654339][ T6131] bridge0: port 1(bridge_slave_0) entered disabled state
[ 142.654474][ T6131] bridge_slave_0: entered allmulticast mode
[ 142.657406][ T6131] bridge_slave_0: entered promiscuous mode
[ 142.659771][ T6131] bridge0: port 2(bridge_slave_1) entered blocking state
[ 142.659883][ T6131] bridge0: port 2(bridge_slave_1) entered disabled state
[ 142.659986][ T6131] bridge_slave_1: entered allmulticast mode
[ 142.661391][ T6131] bridge_slave_1: entered promiscuous mode
[ 143.105685][ T6131] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 143.182381][ T6131] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 143.425356][ T6131] team0: Port device team_slave_0 added
[ 143.427347][ T6131] team0: Port device team_slave_1 added
[ 143.555927][ T6131] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 143.555943][ T6131] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 143.555965][ T6131] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 143.558036][ T6131] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 143.558048][ T6131] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 143.558069][ T6131] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 143.758904][ T6131] hsr_slave_0: entered promiscuous mode
[ 143.759622][ T6131] hsr_slave_1: entered promiscuous mode
[ 145.840327][ T6131] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 145.877400][ T6131] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 145.878566][ T6131] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 145.930075][ T6131] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 145.931268][ T6131] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 145.969535][ T6131] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 145.970908][ T6131] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 146.006865][ T6131] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 146.145374][ T6131] 8021q: adding VLAN 0 to HW filter on device bond0
[ 146.180226][ T6131] 8021q: adding VLAN 0 to HW filter on device team0
[ 146.201763][ T1193] bridge0: port 1(bridge_slave_0) entered blocking state
[ 146.201925][ T1193] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 146.235190][ T1406] bridge0: port 2(bridge_slave_1) entered blocking state
[ 146.235290][ T1406] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 146.909550][ T6131] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 147.000249][ T6131] veth0_vlan: entered promiscuous mode
[ 147.020933][ T6131] veth1_vlan: entered promiscuous mode
[ 147.069883][ T6131] veth0_macvtap: entered promiscuous mode
[ 147.082640][ T6131] veth1_macvtap: entered promiscuous mode
[ 147.117604][ T6131] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 147.160073][ T6131] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 147.177741][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 147.177959][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 147.177987][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 147.178010][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2026/05/10 05:36:20 executed programs: 0
[ 147.822260][ T5653] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 147.855310][ T5653] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 147.861127][ T5653] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 147.871309][ T5653] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 147.873434][ T5653] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 148.120468][ T1193] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 149.295683][ T1193] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 149.395126][ T6265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 149.395334][ T6265] bridge0: port 1(bridge_slave_0) entered disabled state
[ 149.395492][ T6265] bridge_slave_0: entered allmulticast mode
[ 149.397708][ T6265] bridge_slave_0: entered promiscuous mode
[ 149.404319][ T6265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 149.404459][ T6265] bridge0: port 2(bridge_slave_1) entered disabled state
[ 149.404629][ T6265] bridge_slave_1: entered allmulticast mode
[ 149.410035][ T6265] bridge_slave_1: entered promiscuous mode
[ 149.648211][ T6265] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 149.652523][ T6265] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 149.898141][ T6265] team0: Port device team_slave_0 added
[ 149.904454][ T5653] Bluetooth: hci0: command tx timeout
[ 149.917052][ T6265] team0: Port device team_slave_1 added
[ 150.191763][ T1193] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.306569][ T6265] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 150.306585][ T6265] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.306606][ T6265] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 150.311056][ T6265] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 150.311070][ T6265] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.311092][ T6265] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 150.693037][ T1193] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 150.907702][ T6265] hsr_slave_0: entered promiscuous mode
[ 150.908946][ T6265] hsr_slave_1: entered promiscuous mode
[ 150.909863][ T6265] debugfs: 'hsr0' already exists in 'hsr'
[ 150.909959][ T6265] Cannot create hsr debugfs directory
[ 151.904084][ T1193] bridge_slave_1: left allmulticast mode
[ 151.904108][ T1193] bridge_slave_1: left promiscuous mode
[ 151.904271][ T1193] bridge0: port 2(bridge_slave_1) entered disabled state
[ 151.983408][ T5653] Bluetooth: hci0: command tx timeout
[ 151.985356][ T1193] bridge_slave_0: left allmulticast mode
[ 151.985384][ T1193] bridge_slave_0: left promiscuous mode
[ 151.987087][ T1193] bridge0: port 1(bridge_slave_0) entered disabled state
[ 152.534685][ T1193] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 152.593822][ T1193] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 152.635228][ T1193] bond0 (unregistering): Released all slaves
[ 152.800128][ T5267] 8021q: adding VLAN 0 to HW filter on device eth1
[ 153.203316][ T1193] hsr_slave_0: left promiscuous mode
[ 153.243356][ T1193] hsr_slave_1: left promiscuous mode
[ 153.244043][ T1193] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 153.244058][ T1193] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 153.284367][ T1193] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 153.284392][ T1193] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 153.364305][ T1193] veth1_macvtap: left promiscuous mode
[ 153.364367][ T1193] veth0_macvtap: left promiscuous mode
[ 153.364501][ T1193] veth1_vlan: left promiscuous mode
[ 153.364592][ T1193] veth0_vlan: left promiscuous mode
[ 153.943691][ T1193] team0 (unregistering): Port device team_slave_1 removed
[ 153.963706][ T1193] team0 (unregistering): Port device team_slave_0 removed
[ 154.063243][ T5653] Bluetooth: hci0: command tx timeout
[ 154.128008][ T5267] 8021q: adding VLAN 0 to HW filter on device eth2
[ 155.143003][ T6265] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 155.202970][ T6265] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 155.215397][ T6265] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 155.246146][ T6265] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 155.248151][ T6265] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 155.296961][ T6265] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 155.298755][ T6265] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 155.345980][ T6265] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 155.420535][ T6265] 8021q: adding VLAN 0 to HW filter on device bond0
[ 155.441903][ T6265] 8021q: adding VLAN 0 to HW filter on device team0
[ 155.462858][ T1552] bridge0: port 1(bridge_slave_0) entered blocking state
[ 155.462981][ T1552] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 155.490476][ T55] bridge0: port 2(bridge_slave_1) entered blocking state
[ 155.490598][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 155.831136][ T6265] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 155.905279][ T6265] veth0_vlan: entered promiscuous mode
[ 155.912661][ T6265] veth1_vlan: entered promiscuous mode
[ 155.952278][ T6265] veth0_macvtap: entered promiscuous mode
[ 155.962033][ T6265] veth1_macvtap: entered promiscuous mode
[ 155.981573][ T6265] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 156.000603][ T6265] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 156.017823][ T1406] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 156.018068][ T1406] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 156.018103][ T1406] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 156.018132][ T1406] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 156.145054][ T5653] Bluetooth: hci0: command tx timeout
[ 156.373059][ T1193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 156.373607][ T1193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 156.419239][ T1193] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 156.419258][ T1193] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/10 05:36:29 executed programs: 2
[ 156.777320][ T6425] loop0: detected capacity change from 0 to 32768
[ 156.925521][ T6425] Bad index:0 in slot in dtroot
[ 156.925521][ T6425]
[ 156.925542][ T6425] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 156.925542][ T6425]
[ 156.932706][ T6425] ERROR: (device loop0): remounting filesystem as read-only
[ 157.457431][ T6427] loop0: detected capacity change from 0 to 32768
[ 157.483415][ T6427] Bad index:0 in slot in dtroot
[ 157.483415][ T6427]
[ 157.483431][ T6427] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 157.483431][ T6427]
[ 157.483676][ T6427] ERROR: (device loop0): remounting filesystem as read-only
[ 157.875327][ T6429] loop0: detected capacity change from 0 to 32768
[ 157.890620][ T6429] Bad index:0 in slot in dtroot
[ 157.890620][ T6429]
[ 157.890634][ T6429] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 157.890634][ T6429]
[ 157.890852][ T6429] ERROR: (device loop0): remounting filesystem as read-only
[ 158.258902][ T6431] loop0: detected capacity change from 0 to 32768
[ 158.311294][ T6431] Bad index:0 in slot in dtroot
[ 158.311294][ T6431]
[ 158.311307][ T6431] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 158.311307][ T6431]
[ 158.317728][ T6431] ERROR: (device loop0): remounting filesystem as read-only
[ 158.659628][ T6433] loop0: detected capacity change from 0 to 32768
[ 158.679360][ T6433] Bad index:0 in slot in dtroot
[ 158.679360][ T6433]
[ 158.679375][ T6433] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 158.679375][ T6433]
[ 158.680305][ T6433] ERROR: (device loop0): remounting filesystem as read-only
[ 159.046855][ T6435] loop0: detected capacity change from 0 to 32768
[ 159.072517][ T6435] Bad index:0 in slot in dtroot
[ 159.072517][ T6435]
[ 159.072532][ T6435] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 159.072532][ T6435]
[ 159.096681][ T6435] ERROR: (device loop0): remounting filesystem as read-only
[ 159.427622][ T6437] loop0: detected capacity change from 0 to 32768
[ 159.443617][ T6437] Bad index:0 in slot in dtroot
[ 159.443617][ T6437]
[ 159.443630][ T6437] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 159.443630][ T6437]
[ 159.443916][ T6437] ERROR: (device loop0): remounting filesystem as read-only
[ 159.789683][ T6439] loop0: detected capacity change from 0 to 32768
[ 159.799789][ T6439] Bad index:0 in slot in dtroot
[ 159.799789][ T6439]
[ 159.799805][ T6439] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 159.799805][ T6439]
[ 159.800065][ T6439] ERROR: (device loop0): remounting filesystem as read-only
[ 160.164506][ T6441] loop0: detected capacity change from 0 to 32768
[ 160.187497][ T6441] Bad index:0 in slot in dtroot
[ 160.187497][ T6441]
[ 160.187513][ T6441] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 160.187513][ T6441]
[ 160.187982][ T6441] ERROR: (device loop0): remounting filesystem as read-only
[ 160.551759][ T6443] loop0: detected capacity change from 0 to 32768
[ 160.559391][ T6443] Bad index:0 in slot in dtroot
[ 160.559391][ T6443]
[ 160.559408][ T6443] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 160.559408][ T6443]
[ 160.559665][ T6443] ERROR: (device loop0): remounting filesystem as read-only
[ 160.946620][ T6445] Bad index:0 in slot in dtroot
[ 160.946620][ T6445]
[ 160.946635][ T6445] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 160.946635][ T6445]
[ 160.946906][ T6445] ERROR: (device loop0): remounting filesystem as read-only
[ 161.300515][ T6447] Bad index:0 in slot in dtroot
[ 161.300515][ T6447]
[ 161.300526][ T6447] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 161.300526][ T6447]
[ 161.301489][ T6447] ERROR: (device loop0): remounting filesystem as read-only
[ 161.662764][ T6449] Bad index:0 in slot in dtroot
[ 161.662764][ T6449]
[ 161.662779][ T6449] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 161.662779][ T6449]
[ 161.663693][ T6449] ERROR: (device loop0): remounting filesystem as read-only
2026/05/10 05:36:34 executed programs: 15
[ 162.063619][ T6451] set_capacity_and_notify: 3 callbacks suppressed
[ 162.063630][ T6451] loop0: detected capacity change from 0 to 32768
[ 162.074795][ T6451] Bad index:0 in slot in dtroot
[ 162.074795][ T6451]
[ 162.074809][ T6451] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 162.074809][ T6451]
[ 162.075085][ T6451] ERROR: (device loop0): remounting filesystem as read-only
[ 162.437413][ T6453] loop0: detected capacity change from 0 to 32768
[ 162.458724][ T6453] Bad index:0 in slot in dtroot
[ 162.458724][ T6453]
[ 162.458738][ T6453] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 162.458738][ T6453]
[ 162.459032][ T6453] ERROR: (device loop0): remounting filesystem as read-only
[ 162.807991][ T6455] loop0: detected capacity change from 0 to 32768
[ 162.835165][ T6455] Bad index:0 in slot in dtroot
[ 162.835165][ T6455]
[ 162.835180][ T6455] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 162.835180][ T6455]
[ 162.835520][ T6455] ERROR: (device loop0): remounting filesystem as read-only
[ 163.157970][ T6457] loop0: detected capacity change from 0 to 32768
[ 163.178267][ T6457] Bad index:0 in slot in dtroot
[ 163.178267][ T6457]
[ 163.178281][ T6457] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.178281][ T6457]
[ 163.178483][ T6457] ERROR: (device loop0): remounting filesystem as read-only
[ 163.539601][ T6459] loop0: detected capacity change from 0 to 32768
[ 163.554790][ T6459] Bad index:0 in slot in dtroot
[ 163.554790][ T6459]
[ 163.554803][ T6459] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.554803][ T6459]
[ 163.555023][ T6459] ERROR: (device loop0): remounting filesystem as read-only
[ 163.900208][ T6461] loop0: detected capacity change from 0 to 32768
[ 163.922426][ T6461] Bad index:0 in slot in dtroot
[ 163.922426][ T6461]
[ 163.922442][ T6461] ERROR: (device loop0): co[ 163.922442][ T6461] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 163.922442][ T6461]
[ 163.922925][ T6461] ERROR: (device loop0): remounting filesystem as read-only
[ 163.933218][ C1] ==================================================================
[ 163.933233][ C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 163.933262][ C1] Read of size 4 at addr ffff88802b71cc08 by task rcuc/1/28
[ 163.933275][ C1]
[ 163.933298][ C1] CPU: 1 UID: 0 PID: 28 Comm: rcuc/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 163.933318][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 163.933335][ C1] Call Trace:
[ 163.933345][ C1]
[ 163.933352][ C1] dump_stack_lvl+0xe8/0x150
[ 163.933374][ C1] print_address_description+0x55/0x1e0
[ 163.933393][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.933413][ C1] print_report+0x58/0x70
[ 163.933430][ C1] kasan_report+0x117/0x150
[ 163.933450][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.933474][ C1] lbmIODone+0x1312/0x16c0
[ 163.933496][ C1] ? blkg_put+0x22/0x240
[ 163.933512][ C1] ? blkg_put+0x22/0x240
[ 163.933529][ C1] ? blkg_put+0x18d/0x240
[ 163.933546][ C1] ? bio_endio+0x989/0x9d0
[ 163.933567][ C1] blk_update_request+0x57e/0xe60
[ 163.933593][ C1] blk_mq_end_request+0x3e/0x70
[ 163.933611][ C1] blk_done_softirq+0x10a/0x160
[ 163.933631][ C1] handle_softirqs+0x1de/0x6d0
[ 163.933655][ C1] __local_bh_enable_ip+0x170/0x2b0
[ 163.933675][ C1] rcu_cpu_kthread+0xf03/0x1470
[ 163.933702][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 163.933724][ C1] ? schedule+0x90/0x360
[ 163.933745][ C1] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 163.933767][ C1] ? schedule+0x90/0x360
[ 163.933788][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 163.933808][ C1] smpboot_thread_fn+0x541/0xa50
[ 163.933830][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 163.933853][ C1] kthread+0x388/0x470
[ 163.933876][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 163.933895][ C1] ? __pfx_kthread+0x10/0x10
[ 163.933918][ C1] ret_from_fork+0x514/0xb70
[ 163.933939][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 163.933957][ C1] ? __switch_to+0xc79/0x1410
[ 163.933989][ C1] ? __pfx_kthread+0x10/0x10
[ 163.934012][ C1] ret_from_fork_asm+0x1a/0x30
[ 163.934040][ C1]
[ 163.934047][ C1]
[ 163.934057][ C1] Allocated by task 6461:
[ 163.934065][ C1] kasan_save_track+0x3e/0x80
[ 163.934081][ C1] __kasan_kmalloc+0x93/0xb0
[ 163.934098][ C1] __kmalloc_cache_noprof+0x3a6/0x690
[ 163.934116][ C1] lmLogInit+0x3e5/0x1a00
[ 163.934135][ C1] lmLogOpen+0x4e1/0xfa0
[ 163.934153][ C1] jfs_mount_rw+0xee/0x670
[ 163.934170][ C1] jfs_fill_super+0x754/0xd80
[ 163.934184][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 163.934203][ C1] vfs_get_tree+0x92/0x2a0
[ 163.934221][ C1] do_new_mount+0x341/0xd30
[ 163.934242][ C1] __se_sys_mount+0x31d/0x420
[ 163.934264][ C1] do_syscall_64+0x15f/0xf80
[ 163.934282][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.934299][ C1]
[ 163.934303][ C1] Freed by task 6461:
[ 163.934311][ C1] kasan_save_track+0x3e/0x80
[ 163.934326][ C1] kasan_save_free_info+0x46/0x50
[ 163.934347][ C1] __kasan_slab_free+0x5c/0x80
[ 163.934363][ C1] kfree+0x1c5/0x6c0
[ 163.934376][ C1] lmLogShutdown+0x456/0x850
[ 163.934396][ C1] lmLogClose+0x28a/0x520
[ 163.934415][ C1] jfs_umount+0x2fb/0x3d0
[ 163.934432][ C1] jfs_fill_super+0x9c5/0xd80
[ 163.934447][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 163.934464][ C1] vfs_get_tree+0x92/0x2a0
[ 163.934481][ C1] do_new_mount+0x341/0xd30
[ 163.934501][ C1] __se_sys_mount+0x31d/0x420
[ 163.934523][ C1] do_syscall_64+0x15f/0xf80
[ 163.934541][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.934557][ C1]
[ 163.934561][ C1] The buggy address belongs to the object at ffff88802b71cc00
[ 163.934561][ C1] which belongs to the cache kmalloc-256 of size 256
[ 163.934578][ C1] The buggy address is located 8 bytes inside of
[ 163.934578][ C1] freed 256-byte region [ffff88802b71cc00, ffff88802b71cd00)
[ 163.934600][ C1]
[ 163.934605][ C1] The buggy address belongs to the physical page:
[ 163.934622][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2b71c
[ 163.934639][ C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 163.934656][ C1] flags: 0x80000000000040(head|node=0|zone=1)
[ 163.934674][ C1] page_type: f5(slab)
[ 163.934690][ C1] raw: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[ 163.934705][ C1] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 163.934721][ C1] head: 0080000000000040 ffff88801a010b40 dead000000000100 dead000000000122
[ 163.934736][ C1] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 163.934751][ C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 163.934766][ C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 163.934775][ C1] page dumped because: kasan: bad access detected
[ 163.934787][ C1] page_owner tracks the page as allocated
[ 163.934793][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 33, tgid 33 (kdevtmpfs), ts 13125416198, free_ts 0
[ 163.934825][ C1] post_alloc_hook+0x231/0x280
[ 163.934843][ C1] get_page_from_freelist+0x27c8/0x2840
[ 163.934863][ C1] __alloc_frozen_pages_noprof+0x18d/0x380
[ 163.934882][ C1] allocate_slab+0x77/0x660
[ 163.934903][ C1] refill_objects+0x33c/0x3d0
[ 163.934923][ C1] __pcs_replace_empty_main+0x373/0x720
[ 163.934944][ C1] __kmalloc_noprof+0x530/0x7b0
[ 163.934960][ C1] security_inode_init_security+0x102/0x3d0
[ 163.934978][ C1] shmem_mknod+0x1fe/0x360
[ 163.935005][ C1] vfs_mknod+0x44e/0x620
[ 163.935021][ C1] devtmpfs_work_loop+0x861/0xdf0
[ 163.935041][ C1] devtmpfsd+0x4d/0x50
[ 163.935056][ C1] kthread+0x388/0x470
[ 163.935075][ C1] ret_from_fork+0x514/0xb70
[ 163.935091][ C1] ret_from_fork_asm+0x1a/0x30
[ 163.935110][ C1] page_owner free stack trace missing
[ 163.935116][ C1]
[ 163.935120][ C1] Memory state around the buggy address:
[ 163.935130][ C1] ffff88802b71cb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 163.935142][ C1] ffff88802b71cb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 163.935154][ C1] >ffff88802b71cc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 163.935162][ C1] ^
[ 163.935172][ C1] ffff88802b71cc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 163.935184][ C1] ffff88802b71cd00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 163.935192][ C1] ==================================================================
[ 163.935233][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 163.935248][ C1] CPU: 1 UID: 0 PID: 28 Comm: rcuc/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 163.935269][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 163.935280][ C1] Call Trace:
[ 163.935287][ C1]
[ 163.935294][ C1] vpanic+0x56c/0xa60
[ 163.935316][ C1] ? __pfx_vpanic+0x10/0x10
[ 163.935337][ C1] ? __pfx___schedule+0x10/0x10
[ 163.935359][ C1] panic+0xc5/0xd0
[ 163.935378][ C1] ? __pfx_panic+0x10/0x10
[ 163.935398][ C1] ? preempt_schedule_thunk+0x16/0x30
[ 163.935426][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.935448][ C1] check_panic_on_warn+0x89/0xb0
[ 163.935471][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.935493][ C1] end_report+0x73/0x170
[ 163.935512][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.935533][ C1] kasan_report+0x128/0x150
[ 163.935567][ C1] ? lbmIODone+0x1312/0x16c0
[ 163.935592][ C1] lbmIODone+0x1312/0x16c0
[ 163.935615][ C1] ? blkg_put+0x22/0x240
[ 163.935631][ C1] ? blkg_put+0x22/0x240
[ 163.935648][ C1] ? blkg_put+0x18d/0x240
[ 163.935665][ C1] ? bio_endio+0x989/0x9d0
[ 163.935686][ C1] blk_update_request+0x57e/0xe60
[ 163.935712][ C1] blk_mq_end_request+0x3e/0x70
[ 163.935732][ C1] blk_done_softirq+0x10a/0x160
[ 163.935751][ C1] handle_softirqs+0x1de/0x6d0
[ 163.935774][ C1] __local_bh_enable_ip+0x170/0x2b0
[ 163.935794][ C1] rcu_cpu_kthread+0xf03/0x1470
[ 163.935821][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 163.935842][ C1] ? schedule+0x90/0x360
[ 163.935862][ C1] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 163.935886][ C1] ? schedule+0x90/0x360
[ 163.935907][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 163.935927][ C1] smpboot_thread_fn+0x541/0xa50
[ 163.935947][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 163.935971][ C1] kthread+0x388/0x470
[ 163.935998][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 163.936018][ C1] ? __pfx_kthread+0x10/0x10
[ 163.936040][ C1] ret_from_fork+0x514/0xb70
[ 163.936060][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 163.936079][ C1] ? __switch_to+0xc79/0x1410
[ 163.936105][ C1] ? __pfx_kthread+0x10/0x10
[ 163.936127][ C1] ret_from_fork_asm+0x1a/0x30
[ 163.936154][ C1]
[ 163.936572][ C1] Kernel Offset: disabled