[  137.831604][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  137.834413][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '[localhost]:17193' (ED25519) to the list of known hosts.
2024/09/17 06:38:50 ignoring optional flag "sandboxArg"="0"
2024/09/17 06:38:51 parsed 1 programs
[  159.011849][ T5360] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  164.794525][ T5379] chnl_net:caif_netlink_parms(): no params data found
[  164.895672][ T5379] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.908634][ T5379] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.911576][ T5379] bridge_slave_0: entered allmulticast mode
[  164.918209][ T5379] bridge_slave_0: entered promiscuous mode
[  164.929262][ T5379] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.932316][ T5379] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.935177][ T5379] bridge_slave_1: entered allmulticast mode
[  164.948310][ T5379] bridge_slave_1: entered promiscuous mode
[  164.988482][ T5379] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  164.994464][ T5379] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.040276][ T5379] team0: Port device team_slave_0 added
[  165.058153][ T5379] team0: Port device team_slave_1 added
[  165.086338][ T5379] batman_adv: batadv0: Adding interface: batadv_slave_0
[  165.098121][ T5379] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.117598][ T5379] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  165.130389][ T5379] batman_adv: batadv0: Adding interface: batadv_slave_1
[  165.133192][ T5379] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.158100][ T5379] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  165.219173][ T5379] hsr_slave_0: entered promiscuous mode
[  165.222231][ T5379] hsr_slave_1: entered promiscuous mode
[  166.103925][ T5379] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  166.125697][ T5379] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  166.148902][ T5379] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  166.158427][ T5379] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  166.323371][ T5379] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.368707][ T5379] 8021q: adding VLAN 0 to HW filter on device team0
[  166.399194][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.401973][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.410380][ T1127] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.413174][ T1127] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.821890][ T5379] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.916555][ T5379] veth0_vlan: entered promiscuous mode
[  166.960259][ T5379] veth1_vlan: entered promiscuous mode
[  167.038792][ T5379] veth0_macvtap: entered promiscuous mode
[  167.050798][ T5379] veth1_macvtap: entered promiscuous mode
[  167.101330][ T5379] batman_adv: batadv0: Interface activated: batadv_slave_0
[  167.123666][ T5379] batman_adv: batadv0: Interface activated: batadv_slave_1
[  167.151698][ T5379] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  167.155179][ T5379] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  167.177804][ T5379] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  167.181263][ T5379] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  167.514891][ T1031] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.523011][ T4529] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  167.528735][ T4529] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  167.532049][ T4529] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  167.535475][ T4529] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  167.545691][ T4529] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  167.550260][ T4529] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  167.730471][ T1031] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.619919][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.622953][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.698700][ T1031] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  168.726613][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.734263][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.632441][ T1031] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.177504][ T1031] bridge_slave_1: left allmulticast mode
[  170.180095][ T1031] bridge_slave_1: left promiscuous mode
[  170.182797][ T1031] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.218103][ T1031] bridge_slave_0: left allmulticast mode
[  170.220267][ T1031] bridge_slave_0: left promiscuous mode
[  170.222517][ T1031] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.843988][ T1031] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  170.859564][ T1031] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  170.864706][ T1031] bond0 (unregistering): Released all slaves
[  170.995603][ T1031] hsr_slave_0: left promiscuous mode
[  171.042028][ T1031] hsr_slave_1: left promiscuous mode
[  171.046508][ T1031] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.068057][ T1031] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.084096][ T1031] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.086702][ T1031] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.146271][ T1031] veth1_macvtap: left promiscuous mode
[  171.156054][ T1031] veth0_macvtap: left promiscuous mode
[  171.169827][ T1031] veth1_vlan: left promiscuous mode
[  171.172027][ T1031] veth0_vlan: left promiscuous mode
[  172.159467][ T1031] team0 (unregistering): Port device team_slave_1 removed
[  172.220781][ T1031] team0 (unregistering): Port device team_slave_0 removed
2024/09/17 06:39:19 executed programs: 0
[  176.573726][ T5182] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  176.579075][ T5182] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  176.582586][ T5182] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  176.586015][ T5182] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  176.592640][ T5182] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  176.595631][ T5182] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  177.001815][ T5552] chnl_net:caif_netlink_parms(): no params data found
[  177.150789][ T5552] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.155181][ T5552] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.169409][ T5552] bridge_slave_0: entered allmulticast mode
[  177.178257][ T5552] bridge_slave_0: entered promiscuous mode
[  177.192849][ T5552] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.195748][ T5552] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.207380][ T5552] bridge_slave_1: entered allmulticast mode
[  177.227381][ T5552] bridge_slave_1: entered promiscuous mode
[  177.281252][ T5552] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  177.287043][ T5552] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  177.369641][ T5552] team0: Port device team_slave_0 added
[  177.396905][ T5552] team0: Port device team_slave_1 added
[  177.448356][ T5552] batman_adv: batadv0: Adding interface: batadv_slave_0
[  177.451052][ T5552] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.497544][ T5552] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  177.515477][ T5552] batman_adv: batadv0: Adding interface: batadv_slave_1
[  177.528118][ T5552] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.547975][ T5552] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  177.618216][ T5552] hsr_slave_0: entered promiscuous mode
[  177.648287][ T5552] hsr_slave_1: entered promiscuous mode
[  178.243177][ T5552] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  178.261534][ T5552] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  178.280177][ T5552] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  178.303962][ T5552] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  178.497719][ T5552] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.516706][ T5552] 8021q: adding VLAN 0 to HW filter on device team0
[  178.569291][ T1031] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.572002][ T1031] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.576342][ T1031] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.579136][ T1031] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.627862][ T5182] Bluetooth: hci0: command tx timeout
[  178.654774][ T5552] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  178.686756][ T5552] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  179.029495][ T5552] 8021q: adding VLAN 0 to HW filter on device batadv0
[  179.116297][ T5552] veth0_vlan: entered promiscuous mode
[  179.133877][ T5552] veth1_vlan: entered promiscuous mode
[  179.176885][ T5552] veth0_macvtap: entered promiscuous mode
[  179.195070][ T5552] veth1_macvtap: entered promiscuous mode
[  179.220953][ T5552] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.239075][ T5552] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.251019][ T5552] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.254506][ T5552] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.269923][ T5552] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.273377][ T5552] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.381944][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.385169][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  179.448826][ T1127] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  179.452864][ T1127] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  179.570481][ T5591] loop0: detected capacity change from 0 to 128
[  179.604615][ T5591] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  179.697372][ T5591] loop0: detected capacity change from 128 to 0
[  179.709935][ T5591] syz.0.15: attempt to access beyond end of device
[  179.709935][ T5591] loop0: rw=0, sector=117, nr_sectors = 1 limit=0
[  179.715378][ T5591] syz.0.15: attempt to access beyond end of device
[  179.715378][ T5591] loop0: rw=0, sector=117, nr_sectors = 1 limit=0
[  179.751980][ T5591] ==================================================================
[  179.755820][ T5591] BUG: KASAN: slab-out-of-bounds in udf_get_filelongad+0x167/0x1b0
[  179.759090][ T5591] Read of size 4 at addr ffff88803c903730 by task syz.0.15/5591
[  179.763207][ T5591] 
[  179.764188][ T5591] CPU: 0 UID: 0 PID: 5591 Comm: syz.0.15 Not tainted 6.11.0-syzkaller-gdaa394f0f9d3-dirty #0
[  179.768097][ T5591] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.772242][ T5591] Call Trace:
[  179.773698][ T5591]  <TASK>
[  179.774923][ T5591]  dump_stack_lvl+0x241/0x360
[  179.777007][ T5591]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.779157][ T5591]  ? __pfx__printk+0x10/0x10
[  179.781014][ T5591]  ? _printk+0xd5/0x120
[  179.782672][ T5591]  ? __virt_addr_valid+0x183/0x530
[  179.784692][ T5591]  ? __virt_addr_valid+0x183/0x530
[  179.786670][ T5591]  print_report+0x169/0x550
[  179.788487][ T5591]  ? __virt_addr_valid+0x183/0x530
[  179.790478][ T5591]  ? __virt_addr_valid+0x183/0x530
[  179.792505][ T5591]  ? __virt_addr_valid+0x45f/0x530
[  179.794538][ T5591]  ? __phys_addr+0xba/0x170
[  179.796327][ T5591]  ? udf_get_filelongad+0x167/0x1b0
[  179.798340][ T5591]  kasan_report+0x143/0x180
[  179.800134][ T5591]  ? udf_get_filelongad+0x167/0x1b0
[  179.802139][ T5591]  udf_get_filelongad+0x167/0x1b0
[  179.804171][ T5591]  udf_current_aext+0x435/0x9e0
[  179.806085][ T5591]  udf_next_aext+0x8c/0x4a0
[  179.807919][ T5591]  udf_setsize+0xa8a/0x1280
[  179.809689][ T5591]  ? __pfx_udf_setsize+0x10/0x10
[  179.811653][ T5591]  ? __pfx_down_write+0x10/0x10
[  179.813561][ T5591]  ? current_time+0x203/0x2b0
[  179.815396][ T5591]  udf_setattr+0x3c7/0x5d0
[  179.817194][ T5591]  ? __pfx_udf_setattr+0x10/0x10
[  179.819189][ T5591]  notify_change+0xbca/0xe90
[  179.821013][ T5591]  do_ftruncate+0x462/0x580
[  179.822760][ T5591]  ? __pfx_do_ftruncate+0x10/0x10
[  179.824733][ T5591]  ? __fget_files+0x29/0x470
[  179.826506][ T5591]  __x64_sys_ftruncate+0x95/0xf0
[  179.828440][ T5591]  do_syscall_64+0xf3/0x230
[  179.830190][ T5591]  ? clear_bhb_loop+0x35/0x90
[  179.832019][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.834252][ T5591] RIP: 0033:0x7f48f3d79eb9
[  179.836015][ T5591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.843248][ T5591] RSP: 002b:00007f48f4b01038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  179.846393][ T5591] RAX: ffffffffffffffda RBX: 00007f48f3f15f80 RCX: 00007f48f3d79eb9
[  179.849462][ T5591] RDX: 0000000000000000 RSI: 0000008002007ffb RDI: 0000000000000005
[  179.852599][ T5591] RBP: 00007f48f3de793e R08: 0000000000000000 R09: 0000000000000000
[  179.855704][ T5591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.858684][ T5591] R13: 0000000000000000 R14: 00007f48f3f15f80 R15: 00007ffc25791898
[  179.861732][ T5591]  </TASK>
[  179.862978][ T5591] 
[  179.863944][ T5591] Allocated by task 5552:
[  179.865628][ T5591]  kasan_save_track+0x3f/0x80
[  179.867464][ T5591]  __kasan_kmalloc+0x98/0xb0
[  179.869230][ T5591]  __kmalloc_noprof+0x1fc/0x400
[  179.871156][ T5591]  fib6_info_alloc+0x2e/0xf0
[  179.872992][ T5591]  ip6_route_info_create+0x445/0x12b0
[  179.875082][ T5591]  ip6_route_add+0x28/0x160
[  179.876778][ T5591]  addrconf_add_dev+0x35b/0x540
[  179.878629][ T5591]  inet6_addr_add+0x258/0xb00
[  179.880501][ T5591]  inet6_rtm_newaddr+0x8a3/0xc90
[  179.882451][ T5591]  rtnetlink_rcv_msg+0x73f/0xcf0
[  179.884473][ T5591]  netlink_rcv_skb+0x1e3/0x430
[  179.886353][ T5591]  netlink_unicast+0x7f6/0x990
[  179.888230][ T5591]  netlink_sendmsg+0x8e4/0xcb0
[  179.890117][ T5591]  __sock_sendmsg+0x221/0x270
[  179.891986][ T5591]  __sys_sendto+0x398/0x4f0
[  179.893773][ T5591]  __x64_sys_sendto+0xde/0x100
[  179.895660][ T5591]  do_syscall_64+0xf3/0x230
[  179.897437][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.899769][ T5591] 
[  179.900743][ T5591] Freed by task 79:
[  179.902370][ T5591]  kasan_save_track+0x3f/0x80
[  179.904324][ T5591]  kasan_save_free_info+0x40/0x50
[  179.906312][ T5591]  poison_slab_object+0xe0/0x150
[  179.908317][ T5591]  __kasan_slab_free+0x37/0x60
[  179.910148][ T5591]  kfree+0x149/0x360
[  179.911629][ T5591]  rcu_core+0xafd/0x1830
[  179.913307][ T5591]  handle_softirqs+0x2c5/0x980
[  179.915193][ T5591]  __irq_exit_rcu+0xf4/0x1c0
[  179.917016][ T5591]  irq_exit_rcu+0x9/0x30
[  179.918726][ T5591]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  179.920941][ T5591]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  179.923256][ T5591] 
[  179.924170][ T5591] Last potentially related work creation:
[  179.926332][ T5591]  kasan_save_stack+0x3f/0x60
[  179.928207][ T5591]  __kasan_record_aux_stack+0xac/0xc0
[  179.930358][ T5591]  call_rcu+0x167/0xa70
[  179.932039][ T5591]  ip6_route_info_create+0xa33/0x12b0
[  179.934037][ T5591]  ip6_route_add+0x28/0x160
[  179.935744][ T5591]  addrconf_add_dev+0x35b/0x540
[  179.937549][ T5591]  inet6_addr_add+0x258/0xb00
[  179.939284][ T5591]  inet6_rtm_newaddr+0x8a3/0xc90
[  179.941007][ T5591]  rtnetlink_rcv_msg+0x73f/0xcf0
[  179.942632][ T5591]  netlink_rcv_skb+0x1e3/0x430
[  179.944373][ T5591]  netlink_unicast+0x7f6/0x990
[  179.946156][ T5591]  netlink_sendmsg+0x8e4/0xcb0
[  179.947878][ T5591]  __sock_sendmsg+0x221/0x270
[  179.949689][ T5591]  __sys_sendto+0x398/0x4f0
[  179.951445][ T5591]  __x64_sys_sendto+0xde/0x100
[  179.953236][ T5591]  do_syscall_64+0xf3/0x230
[  179.954911][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.957016][ T5591] 
[  179.957922][ T5591] The buggy address belongs to the object at ffff88803c903400
[  179.957922][ T5591]  which belongs to the cache kmalloc-512 of size 512
[  179.963101][ T5591] The buggy address is located 304 bytes to the right of
[  179.963101][ T5591]  allocated 512-byte region [ffff88803c903400, ffff88803c903600)
[  179.968877][ T5591] 
[  179.969866][ T5591] The buggy address belongs to the physical page:
[  179.972282][ T5591] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c902
[  179.975563][ T5591] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  179.978445][ T5591] anon flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  179.981540][ T5591] page_type: 0xfdffffff(slab)
[  179.983439][ T5591] raw: 04fff00000000040 ffff88801ac41c80 0000000000000000 dead000000000001
[  179.986567][ T5591] raw: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[  179.989773][ T5591] head: 04fff00000000040 ffff88801ac41c80 0000000000000000 dead000000000001
[  179.992922][ T5591] head: 0000000000000000 0000000000080008 00000001fdffffff 0000000000000000
[  179.996144][ T5591] head: 04fff00000000001 ffffea0000f24081 ffffffffffffffff 0000000000000000
[  179.999370][ T5591] head: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000
[  180.002689][ T5591] page dumped because: kasan: bad access detected
[  180.005183][ T5591] page_owner tracks the page as allocated
[  180.007244][ T5591] page last allocated via order 1, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 1039, tgid 1039 (kworker/u4:9), ts 108944966197, free_ts 106956634167
[  180.015617][ T5591]  post_alloc_hook+0x1f3/0x230
[  180.017468][ T5591]  get_page_from_freelist+0x2e4c/0x2f10
[  180.019571][ T5591]  __alloc_pages_noprof+0x256/0x6c0
[  180.021539][ T5591]  alloc_slab_page+0x5f/0x120
[  180.023445][ T5591]  allocate_slab+0x5a/0x2f0
[  180.025130][ T5591]  ___slab_alloc+0xcd1/0x14b0
[  180.026817][ T5591]  __slab_alloc+0x58/0xa0
[  180.028405][ T5591]  __kmalloc_cache_noprof+0x1d5/0x2c0
[  180.030637][ T5591]  __ipv6_dev_mc_inc+0x429/0xaa0
[  180.032803][ T5591]  addrconf_dad_work+0x448/0x16f0
[  180.034546][ T5591]  process_scheduled_works+0xa2c/0x1830
[  180.036502][ T5591]  worker_thread+0x870/0xd30
[  180.038174][ T5591]  kthread+0x2f0/0x390
[  180.039653][ T5591]  ret_from_fork+0x4b/0x80
[  180.041216][ T5591]  ret_from_fork_asm+0x1a/0x30
[  180.042995][ T5591] page last free pid 5140 tgid 5140 stack trace:
[  180.045295][ T5591]  free_unref_page+0xd22/0xea0
[  180.047005][ T5591]  vfree+0x186/0x2e0
[  180.048445][ T5591]  kcov_close+0x28/0x50
[  180.049959][ T5591]  __fput+0x23f/0x880
[  180.051383][ T5591]  task_work_run+0x24f/0x310
[  180.053074][ T5591]  do_exit+0xa2f/0x27f0
[  180.054622][ T5591]  do_group_exit+0x207/0x2c0
[  180.056299][ T5591]  get_signal+0x16a3/0x1740
[  180.057992][ T5591]  arch_do_signal_or_restart+0x96/0x860
[  180.060075][ T5591]  syscall_exit_to_user_mode+0xc9/0x370
[  180.061953][ T5591]  do_syscall_64+0x100/0x230
[  180.063673][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.065891][ T5591] 
[  180.066858][ T5591] Memory state around the buggy address:
[  180.068994][ T5591]  ffff88803c903600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  180.072049][ T5591]  ffff88803c903680: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  180.075095][ T5591] >ffff88803c903700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  180.078000][ T5591]                                      ^
[  180.080188][ T5591]  ffff88803c903780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  180.083365][ T5591]  ffff88803c903800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  180.086504][ T5591] ==================================================================
[  180.488377][ T5591] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  180.491241][ T5591] CPU: 0 UID: 0 PID: 5591 Comm: syz.0.15 Not tainted 6.11.0-syzkaller-gdaa394f0f9d3-dirty #0
[  180.495100][ T5591] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  180.499170][ T5591] Call Trace:
[  180.500478][ T5591]  <TASK>
[  180.501619][ T5591]  dump_stack_lvl+0x241/0x360
[  180.503461][ T5591]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.505481][ T5591]  ? __pfx__printk+0x10/0x10
[  180.507265][ T5591]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  180.509532][ T5591]  ? vscnprintf+0x5d/0x90
[  180.511215][ T5591]  panic+0x349/0x860
[  180.512713][ T5591]  ? check_panic_on_warn+0x21/0xb0
[  180.514679][ T5591]  ? __pfx_panic+0x10/0x10
[  180.516468][ T5591]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  180.518761][ T5591]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  180.521223][ T5591]  check_panic_on_warn+0x86/0xb0
[  180.523133][ T5591]  ? udf_get_filelongad+0x167/0x1b0
[  180.525155][ T5591]  end_report+0x77/0x160
[  180.526776][ T5591]  kasan_report+0x154/0x180
[  180.528538][ T5591]  ? udf_get_filelongad+0x167/0x1b0
[  180.530546][ T5591]  udf_get_filelongad+0x167/0x1b0
[  180.532488][ T5591]  udf_current_aext+0x435/0x9e0
[  180.534336][ T5591]  udf_next_aext+0x8c/0x4a0
[  180.536166][ T5591]  udf_setsize+0xa8a/0x1280
[  180.537959][ T5591]  ? __pfx_udf_setsize+0x10/0x10
[  180.539920][ T5591]  ? __pfx_down_write+0x10/0x10
[  180.541788][ T5591]  ? current_time+0x203/0x2b0
[  180.543658][ T5591]  udf_setattr+0x3c7/0x5d0
[  180.545405][ T5591]  ? __pfx_udf_setattr+0x10/0x10
[  180.547357][ T5591]  notify_change+0xbca/0xe90
[  180.549178][ T5591]  do_ftruncate+0x462/0x580
[  180.550997][ T5591]  ? __pfx_do_ftruncate+0x10/0x10
[  180.552866][ T5591]  ? __fget_files+0x29/0x470
[  180.554649][ T5591]  __x64_sys_ftruncate+0x95/0xf0
[  180.556559][ T5591]  do_syscall_64+0xf3/0x230
[  180.558366][ T5591]  ? clear_bhb_loop+0x35/0x90
[  180.560207][ T5591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.562527][ T5591] RIP: 0033:0x7f48f3d79eb9
[  180.564344][ T5591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.571846][ T5591] RSP: 002b:00007f48f4b01038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  180.575119][ T5591] RAX: ffffffffffffffda RBX: 00007f48f3f15f80 RCX: 00007f48f3d79eb9
[  180.578140][ T5591] RDX: 0000000000000000 RSI: 0000008002007ffb RDI: 0000000000000005
[  180.581150][ T5591] RBP: 00007f48f3de793e R08: 0000000000000000 R09: 0000000000000000
[  180.584212][ T5591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  180.587330][ T5591] R13: 0000000000000000 R14: 00007f48f3f15f80 R15: 00007ffc25791898
[  180.590385][ T5591]  </TASK>
[  180.591906][ T5591] Kernel Offset: disabled
[  180.593635][ T5591] Rebooting in 86400 seconds..