Warning: Permanently added '10.128.1.242' (ED25519) to the list of known hosts.
1970/01/01 00:01:06 parsed 1 programs
[   67.307682][ T4517] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   69.608912][ T2065] ieee802154 phy0 wpan0: encryption failed: -22
[   69.609949][ T2065] ieee802154 phy1 wpan1: encryption failed: -22
[   69.610519][ T1541] cfg80211: failed to load regulatory.db
[   70.856526][  T365] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.859410][  T365] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.862072][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   70.867071][ T4233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.868692][ T4233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.871146][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.942939][ T4564] chnl_net:caif_netlink_parms(): no params data found
[   70.961727][ T4564] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.962933][ T4564] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.964457][ T4564] device bridge_slave_0 entered promiscuous mode
[   70.966324][ T4564] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.967455][ T4564] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.969102][ T4564] device bridge_slave_1 entered promiscuous mode
[   70.976861][ T4564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.979373][ T4564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.987016][ T4564] team0: Port device team_slave_0 added
[   70.989272][ T4564] team0: Port device team_slave_1 added
[   70.996030][ T4564] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.997090][ T4564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.001456][ T4564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   71.004676][ T4564] batman_adv: batadv0: Adding interface: batadv_slave_1
[   71.005752][ T4564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   71.009951][ T4564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   71.088925][ T4564] device hsr_slave_0 entered promiscuous mode
[   71.127946][ T4564] device hsr_slave_1 entered promiscuous mode
[   71.772340][ T4564] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.808970][ T4564] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.819624][ T4564] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.859601][ T4564] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.897320][ T4564] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.898589][ T4564] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.899815][ T4564] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.900903][ T4564] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.920730][ T4564] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.924857][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   71.926560][ T4233] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.928672][ T4233] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.933593][ T4564] 8021q: adding VLAN 0 to HW filter on device team0
[   71.940186][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   71.941744][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   71.943168][  T365] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.944332][  T365] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.945576][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   71.947083][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   71.949324][  T365] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.950406][  T365] bridge0: port 2(bridge_slave_1) entered forwarding state
[   71.951579][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   71.959334][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   71.960947][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   71.962924][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   71.964421][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   71.966051][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   71.970401][ T4564] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   71.972064][ T4564] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   71.979690][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   71.981406][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   71.982923][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   71.984538][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   71.986036][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   71.988565][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   72.041375][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   72.042705][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   72.049671][ T4564] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.055777][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   72.057244][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   72.076693][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   72.078267][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   72.079857][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   72.081233][ T1613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   72.083469][ T4564] device veth0_vlan entered promiscuous mode
[   72.086507][ T4564] device veth1_vlan entered promiscuous mode
[   72.100110][ T4564] device veth0_macvtap entered promiscuous mode
[   72.102354][ T4564] device veth1_macvtap entered promiscuous mode
[   72.104849][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   72.106372][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   72.108987][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   72.110579][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   72.112087][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   72.113423][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   72.119073][ T4564] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.120348][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   72.122027][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   72.124656][ T4564] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.125871][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   72.127417][ T4233] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   72.130125][ T4564] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.131513][ T4564] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.132890][ T4564] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.134207][ T4564] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:01:12 executed programs: 0
[   72.533356][ T4744] chnl_net:caif_netlink_parms(): no params data found
[   72.552216][ T4744] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.553372][ T4744] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.555046][ T4744] device bridge_slave_0 entered promiscuous mode
[   72.556983][ T4744] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.558552][ T4744] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.559933][ T4744] device bridge_slave_1 entered promiscuous mode
[   72.569594][ T4744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.572051][ T4744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.579656][ T4744] team0: Port device team_slave_0 added
[   72.582158][ T4744] team0: Port device team_slave_1 added
[   72.589065][ T4744] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.590232][ T4744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.594231][ T4744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.596526][ T4744] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.597615][ T4744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.602969][ T4744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.650522][ T4744] device hsr_slave_0 entered promiscuous mode
[   72.698088][ T4744] device hsr_slave_1 entered promiscuous mode
[   72.717974][ T4744] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   72.719127][ T4744] Cannot create hsr debugfs directory
[   72.748142][ T4744] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.568166][ T1969] Bluetooth: hci0: command 0x0409 tx timeout
[   75.251161][ T4744] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.647796][ T4669] Bluetooth: hci0: command 0x041b tx timeout
[   77.371183][ T4744] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.422264][ T4744] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.570485][ T4744] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   77.599344][ T4744] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   77.628677][ T4744] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   77.669234][ T4744] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   77.740323][ T4744] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.745162][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   77.746710][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   77.749428][ T4744] 8021q: adding VLAN 0 to HW filter on device team0
[   77.751854][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   77.753438][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   77.755141][  T148] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.756187][  T148] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.758490][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   77.760845][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   77.762333][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   77.763716][  T148] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.764829][  T148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.766864][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   77.771009][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   77.773780][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   77.775868][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   77.777417][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   77.793823][ T4744] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   77.795348][ T4744] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.798371][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   77.800771][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   77.802303][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   77.803734][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   77.805229][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   77.806775][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   77.808634][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   77.847221][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   77.848948][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   77.852063][ T4744] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.858195][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   77.859835][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   77.865655][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   77.867122][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   77.868804][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   77.870128][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   77.872237][ T4744] device veth0_vlan entered promiscuous mode
[   77.875548][ T4744] device veth1_vlan entered promiscuous mode
[   77.883636][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   77.885149][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   77.886503][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   77.888926][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   77.891456][ T4744] device veth0_macvtap entered promiscuous mode
[   77.894176][ T4744] device veth1_macvtap entered promiscuous mode
[   77.899108][ T4744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.900687][ T4744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.902815][ T4744] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.904029][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   77.905529][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   77.906909][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   77.909023][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   77.911590][ T4744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.913210][ T4744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.915286][ T4744] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.916397][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   77.918096][  T148] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   77.920739][ T4744] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.922152][ T4744] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.923576][ T4744] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.925012][ T4744] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.944760][  T148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.948529][  T148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.951624][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   77.954637][  T148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.955806][  T148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.957391][  T365] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:17 executed programs: 2
[   77.975219][ T4969] loop0: detected capacity change from 0 to 512
[   78.049602][ T4969] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   78.055984][ T4969] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   78.060948][ T4969] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   78.063082][ T4969] EXT4-fs (loop0): 1 truncate cleaned up
[   78.063946][ T4969] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[   78.082126][ T4969] ==================================================================
[   78.083341][ T4969] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0xb34/0x2d98
[   78.084484][ T4969] Read of size 18446744073709551540 at addr ffff0000d916a070 by task syz.0.16/4969
[   78.085867][ T4969] 
[   78.086190][ T4969] CPU: 0 PID: 4969 Comm: syz.0.16 Not tainted syzkaller #0
[   78.087271][ T4969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   78.088749][ T4969] Call trace:
[   78.089198][ T4969]  dump_backtrace+0x0/0x43c
[   78.089873][ T4969]  show_stack+0x2c/0x3c
[   78.090522][ T4969]  __dump_stack+0x30/0x40
[   78.091219][ T4969]  dump_stack_lvl+0xf8/0x160
[   78.091921][ T4969]  print_address_description+0x78/0x30c
[   78.092767][ T4969]  kasan_report+0xec/0x15c
[   78.093416][ T4969]  kasan_check_range+0x270/0x2b0
[   78.094145][ T4969]  memmove+0x90/0xe8
[   78.094753][ T4969]  ext4_xattr_set_entry+0xb34/0x2d98
[   78.095580][ T4969]  ext4_xattr_block_set+0x528/0x26fc
[   78.096406][ T4969]  ext4_xattr_set_handle+0xa08/0x1050
[   78.097202][ T4969]  ext4_xattr_set+0x1e0/0x2b4
[   78.097926][ T4969]  ext4_xattr_trusted_set+0x4c/0x64
[   78.098740][ T4969]  __vfs_setxattr+0x388/0x3a4
[   78.099427][ T4969]  __vfs_setxattr_noperm+0x120/0x564
[   78.100278][ T4969]  __vfs_setxattr_locked+0x1ec/0x218
[   78.101077][ T4969]  vfs_setxattr+0x158/0x2ac
[   78.101744][ T4969]  setxattr+0x248/0x2ac
[   78.102399][ T4969]  path_setxattr+0x12c/0x25c
[   78.103101][ T4969]  __arm64_sys_lsetxattr+0xbc/0xd8
[   78.103872][ T4969]  invoke_syscall+0x98/0x2b8
[   78.104565][ T4969]  el0_svc_common+0x138/0x258
[   78.105255][ T4969]  do_el0_svc+0x58/0x14c
[   78.105978][ T4969]  el0_svc+0x78/0x1e0
[   78.106581][ T4969]  el0t_64_sync_handler+0xcc/0xe4
[   78.107304][ T4969]  el0t_64_sync+0x1a0/0x1a4
[   78.107964][ T4969] 
[   78.108302][ T4969] Allocated by task 4969:
[   78.108947][ T4969]  __kasan_kmalloc+0xb0/0xf0
[   78.109588][ T4969]  __kmalloc_track_caller+0x218/0x370
[   78.110348][ T4969]  kmemdup+0xcc/0x144
[   78.110970][ T4969]  ext4_xattr_block_set+0x470/0x26fc
[   78.111888][ T4969]  ext4_xattr_set_handle+0xa08/0x1050
[   78.112740][ T4969]  ext4_xattr_set+0x1e0/0x2b4
[   78.113526][ T4969]  ext4_xattr_trusted_set+0x4c/0x64
[   78.114389][ T4969]  __vfs_setxattr+0x388/0x3a4
[   78.115147][ T4969]  __vfs_setxattr_noperm+0x120/0x564
[   78.115937][ T4969]  __vfs_setxattr_locked+0x1ec/0x218
[   78.116729][ T4969]  vfs_setxattr+0x158/0x2ac
[   78.117441][ T4969]  setxattr+0x248/0x2ac
[   78.118029][ T4969]  path_setxattr+0x12c/0x25c
[   78.118727][ T4969]  __arm64_sys_lsetxattr+0xbc/0xd8
[   78.119435][ T4969]  invoke_syscall+0x98/0x2b8
[   78.120150][ T4969]  el0_svc_common+0x138/0x258
[   78.120881][ T4969]  do_el0_svc+0x58/0x14c
[   78.121517][ T4969]  el0_svc+0x78/0x1e0
[   78.122091][ T4969]  el0t_64_sync_handler+0xcc/0xe4
[   78.122792][ T4969]  el0t_64_sync+0x1a0/0x1a4
[   78.123422][ T4969] 
[   78.123713][ T4969] The buggy address belongs to the object at ffff0000d916a000
[   78.123713][ T4969]  which belongs to the cache kmalloc-1k of size 1024
[   78.125737][ T4969] The buggy address is located 112 bytes inside of
[   78.125737][ T4969]  1024-byte region [ffff0000d916a000, ffff0000d916a400)
[   78.127557][ T4969] The buggy address belongs to the page:
[   78.128380][ T4969] page:000000005b030b06 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x119168
[   78.129870][ T4969] head:000000005b030b06 order:3 compound_mapcount:0 compound_pincount:0
[   78.131043][ T4969] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[   78.132218][ T4969] raw: 05ffc00000010200 fffffc0003395000 0000000400000004 ffff0000c0002780
[   78.133534][ T4969] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   78.134758][ T4969] page dumped because: kasan: bad access detected
[   78.135692][ T4969] 
[   78.136060][ T4969] Memory state around the buggy address:
[   78.136860][ T4969]  ffff0000d9169f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   78.137955][ T4969]  ffff0000d9169f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   78.139088][ T4969] >ffff0000d916a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   78.140227][ T4969]                                                              ^
[   78.141343][ T4969]  ffff0000d916a080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   78.142499][ T4969]  ffff0000d916a100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   78.143627][ T4969] ==================================================================
[   78.144739][ T4969] Disabling lock debugging due to kernel taint
[   78.196403][ T4973] loop0: detected capacity change from 0 to 512
[   78.199198][ T4973] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   78.201947][ T4973] EXT4-fs (loop0): 1 truncate cleaned up
[   78.202832][ T4973] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[   78.209852][ T4973] Unable to handle kernel write to read-only memory at virtual address ffff0000cb94d000
[   78.211363][ T4973] Mem abort info:
[   78.211955][ T4973]   ESR = 0x000000009600004f
[   78.212703][ T4973]   EC = 0x25: DABT (current EL), IL = 32 bits
[   78.213700][ T4973]   SET = 0, FnV = 0
[   78.214313][ T4973]   EA = 0, S1PTW = 0
[   78.214953][ T4973]   FSC = 0x0f: level 3 permission fault
[   78.215812][ T4973] Data abort info:
[   78.216421][ T4973]   ISV = 0, ISS = 0x0000004f
[   78.217141][ T4973]   CM = 0, WnR = 1
[   78.218930][ T4973] swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000002113d0000
[   78.220109][ T4973] [ffff0000cb94d000] pgd=180000023fff8003, p4d=180000023fff8003, pud=180000023f614003, pmd=180000023f5b7003, pte=006000010b94d787
[   78.222248][ T4973] Internal error: Oops: 000000009600004f [#1] PREEMPT SMP
[   78.223335][ T4973] Modules linked in:
[   78.223935][ T4973] CPU: 1 PID: 4973 Comm: syz.0.17 Tainted: G    B             syzkaller #0
[   78.225244][ T4973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[   78.226768][ T4973] pstate: a2400005 (NzCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   78.227971][ T4973] pc : __memcpy+0x150/0x250
[   78.228670][ T4973] lr : memmove+0xc8/0xe8
[   78.229351][ T4973] sp : ffff80001f3170e0
[   78.229990][ T4973] x29: ffff80001f3170e0 x28: 0000000000000000 x27: ffff0000cb8e0850
[   78.231339][ T4973] x26: dfff800000000000 x25: 1ffff00003e62eb9 x24: ffff0000e24e5260
[   78.232536][ T4973] x23: ffff8000167cb000 x22: ffff800008d91fbc x21: ffff0000cb8e0850
[   78.233802][ T4973] x20: ffff0000cb8e0870 x19: ffffffffffffffb4 x18: 0000000000000000
[   78.235007][ T4973] x17: 0000000000000000 x16: ffff8000111cd488 x15: 0000000000000000
[   78.236200][ T4973] x14: 0000000000000000 x13: d4202000d4202000 x12: d4202000d4202000
[   78.237451][ T4973] x11: d4202000d4202000 x10: d4202000d4202000 x9 : d4202000d4202000
[   78.238817][ T4973] x8 : d4202000d4202000 x7 : d4202000d4202000 x6 : d4202000d4202000
[   78.240159][ T4973] x5 : ffff0000cb8e0804 x4 : ffff0000cb8e0824 x3 : ffff0000cb94cfd0
[   78.241421][ T4973] x2 : fffffffffff937a4 x1 : ffff0000cb94d030 x0 : ffff0000cb8e0850
[   78.242657][ T4973] Call trace:
[   78.243166][ T4973]  __memcpy+0x150/0x250
[   78.243847][ T4973]  ext4_xattr_set_entry+0xb34/0x2d98
[   78.244708][ T4973]  ext4_xattr_block_set+0x528/0x26fc
[   78.245506][ T4973]  ext4_xattr_set_handle+0xa08/0x1050
[   78.246308][ T4973]  ext4_xattr_set+0x1e0/0x2b4
[   78.247022][ T4973]  ext4_xattr_trusted_set+0x4c/0x64
[   78.247730][ T4973]  __vfs_setxattr+0x388/0x3a4
[   78.248396][ T4973]  __vfs_setxattr_noperm+0x120/0x564
[   78.249125][ T4973]  __vfs_setxattr_locked+0x1ec/0x218
[   78.249857][ T4973]  vfs_setxattr+0x158/0x2ac
[   78.250528][ T4973]  setxattr+0x248/0x2ac
[   78.251144][ T4973]  path_setxattr+0x12c/0x25c
[   78.251793][ T4973]  __arm64_sys_lsetxattr+0xbc/0xd8
[   78.252577][ T4973]  invoke_syscall+0x98/0x2b8
[   78.253273][ T4973]  el0_svc_common+0x138/0x258
[   78.253936][ T4973]  do_el0_svc+0x58/0x14c
[   78.254553][ T4973]  el0_svc+0x78/0x1e0
[   78.255109][ T4973]  el0t_64_sync_handler+0xcc/0xe4
[   78.255832][ T4973]  el0t_64_sync+0x1a0/0x1a4
[   78.256498][ T4973] Code: a9011c66 a9411c26 a9022468 a9422428 (a9032c6a) 
[   78.257545][ T4973] ---[ end trace f833f9bcb9f4eaf2 ]---
[   78.491955][ T4973] Kernel panic - not syncing: Oops: Fatal exception
[   78.492948][ T4973] SMP: stopping secondary CPUs
[   78.493674][ T4973] Kernel Offset: disabled
[   78.494269][ T4973] CPU features: 0x8,000003c1,7d33ffd9
[   78.495102][ T4973] Memory Limit: none
[   78.704902][ T4973] Rebooting in 86400 seconds..