Warning: Permanently added '10.128.1.112' (ED25519) to the list of known hosts.
2024/05/20 07:39:32 ignoring optional flag "sandboxArg"="0"
2024/05/20 07:39:32 parsed 1 programs
2024/05/20 07:39:34 executed programs: 0
[ 85.678321][ T5440] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 85.736394][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 85.744447][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 85.753034][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 85.761217][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 85.769832][ T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 85.777171][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 85.891816][ T5447] chnl_net:caif_netlink_parms(): no params data found
[ 85.942251][ T5447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 85.949483][ T5447] bridge0: port 1(bridge_slave_0) entered disabled state
[ 85.956775][ T5447] bridge_slave_0: entered allmulticast mode
[ 85.963994][ T5447] bridge_slave_0: entered promiscuous mode
[ 85.972921][ T5447] bridge0: port 2(bridge_slave_1) entered blocking state
[ 85.980532][ T5447] bridge0: port 2(bridge_slave_1) entered disabled state
[ 85.987715][ T5447] bridge_slave_1: entered allmulticast mode
[ 85.995137][ T5447] bridge_slave_1: entered promiscuous mode
[ 86.019140][ T5447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 86.030846][ T5447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 86.059518][ T5447] team0: Port device team_slave_0 added
[ 86.068053][ T5447] team0: Port device team_slave_1 added
[ 86.090900][ T5447] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 86.097871][ T5447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 86.124348][ T5447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 86.137084][ T5447] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 86.144072][ T5447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 86.170283][ T5447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 86.204818][ T5447] hsr_slave_0: entered promiscuous mode
[ 86.211357][ T5447] hsr_slave_1: entered promiscuous mode
[ 86.846980][ T5447] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 86.860394][ T5447] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 86.871026][ T5447] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 86.883056][ T5447] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 87.001674][ T5447] 8021q: adding VLAN 0 to HW filter on device bond0
[ 87.025449][ T5447] 8021q: adding VLAN 0 to HW filter on device team0
[ 87.042651][ T5104] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.049990][ T5104] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 87.066658][ T5104] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.073841][ T5104] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 87.296214][ T5447] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 87.346552][ T5447] veth0_vlan: entered promiscuous mode
[ 87.364610][ T5447] veth1_vlan: entered promiscuous mode
[ 87.401415][ T5447] veth0_macvtap: entered promiscuous mode
[ 87.414490][ T5447] veth1_macvtap: entered promiscuous mode
[ 87.437616][ T5447] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 87.455831][ T5447] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 87.473570][ T5447] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.482536][ T5447] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.494421][ T5447] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.503493][ T5447] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 87.592506][ T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.610385][ T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.644094][ T2872] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.656861][ T2872] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.737791][ T5515] loop0: detected capacity change from 0 to 2048
[ 87.780989][ T5518] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 87.851341][ T53] Bluetooth: hci0: command tx timeout
[ 87.859472][ T5515] loop0: detected capacity change from 2048 to 0
[ 87.886845][ T5447] syz-executor.0: attempt to access beyond end of device
[ 87.886845][ T5447] loop0: rw=0, sector=100, nr_sectors = 2 limit=0
[ 87.902416][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=226)
[ 87.911845][ T5447] NILFS (loop0): error -5 truncating bmap (ino=15)
[ 87.921651][ T5447] syz-executor.0: attempt to access beyond end of device
[ 87.921651][ T5447] loop0: rw=0, sector=66, nr_sectors = 2 limit=0
[ 87.935927][ T5447] NILFS (loop0): I/O error reading b-tree node block (ino=16, blocknr=15)
[ 87.944634][ T5447] NILFS (loop0): error -5 truncating bmap (ino=16)
[ 87.951960][ T5447] syz-executor.0: attempt to access beyond end of device
[ 87.951960][ T5447] loop0: rw=0, sector=90, nr_sectors = 2 limit=0
[ 87.965610][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=34)
[ 87.974284][ T5447] NILFS (loop0): error -5 truncating bmap (ino=17)
[ 87.990584][ T5518] segctord: attempt to access beyond end of device
[ 87.990584][ T5518] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.004843][ T5518] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.014955][ T5518] segctord: attempt to access beyond end of device
[ 88.014955][ T5518] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.028947][ T5518] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.038380][ T5518] segctord: attempt to access beyond end of device
[ 88.038380][ T5518] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.051932][ T5518] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.062378][ T5518] segctord: attempt to access beyond end of device
[ 88.062378][ T5518] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.076407][ T5518] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.088320][ T5447] syz-executor.0: attempt to access beyond end of device
[ 88.088320][ T5447] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.103270][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.114687][ T5447] syz-executor.0: attempt to access beyond end of device
[ 88.114687][ T5447] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.130286][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.139401][ T5447] syz-executor.0: attempt to access beyond end of device
[ 88.139401][ T5447] loop0: rw=0, sector=84, nr_sectors = 2 limit=0
[ 88.154225][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.163361][ T5447] NILFS (loop0): I/O error reading meta-data file (ino=3, block-offset=0)
[ 88.173576][ T5447] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[ 89.938837][ T53] Bluetooth: hci0: command tx timeout
[ 92.009091][ T53] Bluetooth: hci0: command tx timeout
[ 94.088694][ T53] Bluetooth: hci0: command tx timeout
[ 112.891204][ T5447] bio_check_eod: 1 callbacks suppressed
[ 112.891220][ T5447] syz-executor.0: attempt to access beyond end of device
[ 112.891220][ T5447] loop0: rw=395265, sector=2040, nr_sectors = 2 limit=0
[ 112.912162][ T5447] Buffer I/O error on dev loop0, logical block 1020, lost sync page write
[ 112.921112][ T5447] NILFS (loop0): unable to write superblock: err=-5
[ 112.927723][ T5447] syz-executor.0: attempt to access beyond end of device
[ 112.927723][ T5447] loop0: rw=395265, sector=2, nr_sectors = 2 limit=0
[ 112.941551][ T5447] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[ 112.949870][ T5447] NILFS (loop0): unable to write superblock: err=-5
2024/05/20 07:40:01 executed programs: 2
[ 113.188945][ T5816] ==================================================================
[ 113.197051][ T5816] BUG: KASAN: slab-use-after-free in lru_add_fn+0x2cc/0x1a20
[ 113.204434][ T5816] Read of size 8 at addr ffff88806be0ab18 by task syz-executor.0/5816
[ 113.212568][ T5816]
[ 113.214878][ T5816] CPU: 1 PID: 5816 Comm: syz-executor.0 Not tainted 6.9.0-next-20240520-syzkaller-13491-g632483ea8004 #0
[ 113.226051][ T5816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 113.236095][ T5816] Call Trace:
[ 113.239370][ T5816]
[ 113.242285][ T5816] dump_stack_lvl+0x241/0x360
[ 113.246946][ T5816] ? __pfx_dump_stack_lvl+0x10/0x10
[ 113.252127][ T5816] ? __pfx__printk+0x10/0x10
[ 113.256744][ T5816] ? _printk+0xd5/0x120
[ 113.260905][ T5816] ? __virt_addr_valid+0x183/0x520
[ 113.266270][ T5816] ? __virt_addr_valid+0x183/0x520
[ 113.271386][ T5816] print_report+0x169/0x550
[ 113.275978][ T5816] ? __virt_addr_valid+0x183/0x520
[ 113.281103][ T5816] ? __virt_addr_valid+0x183/0x520
[ 113.286209][ T5816] ? __virt_addr_valid+0x44e/0x520
[ 113.291314][ T5816] ? __phys_addr+0xba/0x170
[ 113.295809][ T5816] ? lru_add_fn+0x2cc/0x1a20
[ 113.300403][ T5816] kasan_report+0x143/0x180
[ 113.304907][ T5816] ? lru_add_fn+0x2cc/0x1a20
[ 113.309483][ T5816] ? lru_add_fn+0x20c/0x1a20
[ 113.314055][ T5816] kasan_check_range+0x282/0x290
[ 113.318985][ T5816] lru_add_fn+0x2cc/0x1a20
[ 113.323384][ T5816] folio_batch_move_lru+0x322/0x690
[ 113.328650][ T5816] ? __pfx_lru_add_fn+0x10/0x10
[ 113.333507][ T5816] ? __pfx_folio_batch_move_lru+0x10/0x10
[ 113.339225][ T5816] lru_add_drain_cpu+0x10e/0x8c0
[ 113.344150][ T5816] ? __pfx_lru_add_drain_cpu+0x10/0x10
[ 113.349595][ T5816] ? __pfx_vma_expand+0x10/0x10
[ 113.354604][ T5816] ? mas_prev_range+0xe8/0x130
[ 113.359358][ T5816] ? lru_add_drain+0x79/0x3e0
[ 113.364017][ T5816] lru_add_drain+0x123/0x3e0
[ 113.368591][ T5816] setup_arg_pages+0xc39/0x1000
[ 113.373422][ T5816] ? __pfx_lock_acquire+0x10/0x10
[ 113.378425][ T5816] ? __pfx_setup_arg_pages+0x10/0x10
[ 113.383693][ T5816] ? get_random_u64+0x1a5/0x9e0
[ 113.388529][ T5816] ? get_random_u64+0x596/0x9e0
[ 113.393383][ T5816] ? __asan_memset+0x23/0x50
[ 113.397961][ T5816] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 113.403927][ T5816] ? arch_setup_new_exec+0xb0/0x1b0
[ 113.409114][ T5816] load_elf_binary+0xbb6/0x2620
[ 113.413952][ T5816] ? __pfx_lock_acquire+0x10/0x10
[ 113.418972][ T5816] ? __pfx_load_elf_binary+0x10/0x10
[ 113.424254][ T5816] ? _raw_read_unlock+0x28/0x50
[ 113.429097][ T5816] ? load_misc_binary+0x6e5/0xc20
[ 113.434113][ T5816] bprm_execve+0xaf8/0x17c0
[ 113.438622][ T5816] ? __pfx_bprm_execve+0x10/0x10
[ 113.443564][ T5816] ? copy_strings+0x439/0x490
[ 113.448246][ T5816] do_execveat_common+0x553/0x700
[ 113.453258][ T5816] __x64_sys_execve+0x92/0xb0
[ 113.457922][ T5816] do_syscall_64+0xf5/0x240
[ 113.462408][ T5816] ? clear_bhb_loop+0x35/0x90
[ 113.467150][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.473037][ T5816] RIP: 0033:0x40720e
[ 113.476923][ T5816] Code: Unable to access opcode bytes at 0x4071e4.
[ 113.483873][ T5816] RSP: 002b:000000c001529200 EFLAGS: 00000212 ORIG_RAX: 000000000000003b
[ 113.492270][ T5816] RAX: ffffffffffffffda RBX: 000000c000039830 RCX: 000000000040720e
[ 113.500231][ T5816] RDX: 000000c0000bad20 RSI: 000000c0000b6660 RDI: 000000c000039830
[ 113.508183][ T5816] RBP: 000000c001529240 R08: 0000000000000000 R09: 0000000000000000
[ 113.516224][ T5816] R10: 0000000000000000 R11: 0000000000000212 R12: 00000000004b9d65
[ 113.524175][ T5816] R13: 000000c00149b000 R14: 000000c0004ba4e0 R15: 0000000000000014
[ 113.532130][ T5816]
[ 113.535128][ T5816]
[ 113.537429][ T5816] Allocated by task 5515:
[ 113.541737][ T5816] kasan_save_track+0x3f/0x80
[ 113.546419][ T5816] __kasan_slab_alloc+0x66/0x80
[ 113.551253][ T5816] kmem_cache_alloc_lru_noprof+0x139/0x2b0
[ 113.557041][ T5816] nilfs_alloc_inode+0x2e/0xf0
[ 113.561783][ T5816] iget5_locked+0xa4/0x280
[ 113.566199][ T5816] nilfs_iget_locked+0x12b/0x180
[ 113.571119][ T5816] nilfs_ifile_read+0x30/0x1b0
[ 113.575950][ T5816] nilfs_attach_checkpoint+0xed/0x1a0
[ 113.581299][ T5816] nilfs_fill_super+0x380/0x6a0
[ 113.586125][ T5816] nilfs_get_tree+0x4f9/0x920
[ 113.590781][ T5816] vfs_get_tree+0x90/0x2a0
[ 113.595176][ T5816] do_new_mount+0x2be/0xb40
[ 113.599673][ T5816] __se_sys_mount+0x2d9/0x3c0
[ 113.604329][ T5816] do_syscall_64+0xf5/0x240
[ 113.608810][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.614783][ T5816]
[ 113.617084][ T5816] Freed by task 0:
[ 113.620778][ T5816] kasan_save_track+0x3f/0x80
[ 113.625455][ T5816] kasan_save_free_info+0x40/0x50
[ 113.630468][ T5816] poison_slab_object+0xe0/0x150
[ 113.635383][ T5816] __kasan_slab_free+0x37/0x60
[ 113.640139][ T5816] kmem_cache_free+0x145/0x350
[ 113.644885][ T5816] rcu_core+0xafd/0x1830
[ 113.649109][ T5816] handle_softirqs+0x2d6/0x990
[ 113.653852][ T5816] __irq_exit_rcu+0xf4/0x1c0
[ 113.658422][ T5816] irq_exit_rcu+0x9/0x30
[ 113.662644][ T5816] sysvec_apic_timer_interrupt+0xa6/0xc0
[ 113.668268][ T5816] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 113.674226][ T5816]
[ 113.676530][ T5816] Last potentially related work creation:
[ 113.682221][ T5816] kasan_save_stack+0x3f/0x60
[ 113.686904][ T5816] __kasan_record_aux_stack+0xac/0xc0
[ 113.692257][ T5816] call_rcu+0x167/0xa70
[ 113.696395][ T5816] nilfs_put_root+0x97/0xc0
[ 113.700968][ T5816] nilfs_detach_log_writer+0x8bb/0xbe0
[ 113.706427][ T5816] nilfs_put_super+0x4d/0x160
[ 113.711090][ T5816] generic_shutdown_super+0x136/0x2d0
[ 113.716463][ T5816] kill_block_super+0x44/0x90
[ 113.721143][ T5816] deactivate_locked_super+0xc4/0x130
[ 113.726497][ T5816] cleanup_mnt+0x426/0x4c0
[ 113.730894][ T5816] task_work_run+0x24f/0x310
[ 113.735489][ T5816] syscall_exit_to_user_mode+0x168/0x370
[ 113.741106][ T5816] do_syscall_64+0x102/0x240
[ 113.745688][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.751578][ T5816]
[ 113.753969][ T5816] The buggy address belongs to the object at ffff88806be0a670
[ 113.753969][ T5816] which belongs to the cache nilfs2_inode_cache of size 1512
[ 113.768710][ T5816] The buggy address is located 1192 bytes inside of
[ 113.768710][ T5816] freed 1512-byte region [ffff88806be0a670, ffff88806be0ac58)
[ 113.782678][ T5816]
[ 113.784981][ T5816] The buggy address belongs to the physical page:
[ 113.791373][ T5816] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6be08
[ 113.800110][ T5816] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 113.808591][ T5816] memcg:ffff88802960f001
[ 113.812807][ T5816] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 113.820347][ T5816] page_type: 0xffffefff(slab)
[ 113.825018][ T5816] raw: 00fff00000000040 ffff88801af1f8c0 dead000000000122 0000000000000000
[ 113.833601][ T5816] raw: 0000000000000000 0000000080130013 00000001ffffefff ffff88802960f001
[ 113.842165][ T5816] head: 00fff00000000040 ffff88801af1f8c0 dead000000000122 0000000000000000
[ 113.850832][ T5816] head: 0000000000000000 0000000080130013 00000001ffffefff ffff88802960f001
[ 113.859497][ T5816] head: 00fff00000000003 ffffea0001af8201 ffffffffffffffff 0000000000000000
[ 113.868146][ T5816] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 113.876790][ T5816] page dumped because: kasan: bad access detected
[ 113.883180][ T5816] page_owner tracks the page as allocated
[ 113.888891][ T5816] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5515, tgid 5514 (syz-executor.0), ts 87760095631, free_ts 62718493018
[ 113.912745][ T5816] post_alloc_hook+0x1f3/0x230
[ 113.917496][ T5816] get_page_from_freelist+0x2ce2/0x2d90
[ 113.923018][ T5816] __alloc_pages_noprof+0x256/0x6c0
[ 113.928192][ T5816] alloc_slab_page+0x5f/0x120
[ 113.932847][ T5816] allocate_slab+0x5a/0x2e0
[ 113.937352][ T5816] ___slab_alloc+0xcd1/0x14b0
[ 113.942010][ T5816] __slab_alloc+0x58/0xa0
[ 113.946317][ T5816] kmem_cache_alloc_lru_noprof+0x1c5/0x2b0
[ 113.952106][ T5816] nilfs_alloc_inode+0x2e/0xf0
[ 113.956858][ T5816] iget5_locked+0xa4/0x280
[ 113.961263][ T5816] nilfs_iget_locked+0x12b/0x180
[ 113.966182][ T5816] nilfs_dat_read+0xc3/0x310
[ 113.970767][ T5816] load_nilfs+0x56f/0x1090
[ 113.975166][ T5816] nilfs_fill_super+0x310/0x6a0
[ 113.979994][ T5816] nilfs_get_tree+0x4f9/0x920
[ 113.984648][ T5816] vfs_get_tree+0x90/0x2a0
[ 113.989046][ T5816] page last free pid 5086 tgid 5081 stack trace:
[ 113.995348][ T5816] free_unref_folios+0xf23/0x19e0
[ 114.000358][ T5816] folios_put_refs+0x93a/0xa60
[ 114.005120][ T5816] free_pages_and_swap_cache+0x2ea/0x690
[ 114.010730][ T5816] tlb_flush_mmu+0x3a3/0x680
[ 114.015300][ T5816] unmap_page_range+0x42b1/0x4d00
[ 114.020301][ T5816] unmap_vmas+0x3cc/0x5f0
[ 114.024609][ T5816] exit_mmap+0x264/0xc80
[ 114.028831][ T5816] __mmput+0x115/0x3c0
[ 114.032877][ T5816] exit_mm+0x220/0x310
[ 114.036923][ T5816] do_exit+0x9aa/0x27e0
[ 114.041094][ T5816] do_group_exit+0x207/0x2c0
[ 114.045683][ T5816] get_signal+0x16a1/0x1740
[ 114.050187][ T5816] arch_do_signal_or_restart+0x96/0x860
[ 114.055720][ T5816] syscall_exit_to_user_mode+0xc9/0x370
[ 114.061254][ T5816] do_syscall_64+0x102/0x240
[ 114.065825][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 114.071698][ T5816]
[ 114.074000][ T5816] Memory state around the buggy address:
[ 114.079607][ T5816] ffff88806be0aa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 114.087643][ T5816] ffff88806be0aa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 114.095700][ T5816] >ffff88806be0ab00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 114.103739][ T5816] ^
[ 114.108569][ T5816] ffff88806be0ab80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 114.116622][ T5816] ffff88806be0ac00: fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc
[ 114.124657][ T5816] ==================================================================
[ 114.132712][ T5816] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 114.139900][ T5816] CPU: 1 PID: 5816 Comm: syz-executor.0 Not tainted 6.9.0-next-20240520-syzkaller-13491-g632483ea8004 #0
[ 114.151075][ T5816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 114.161113][ T5816] Call Trace:
[ 114.164376][ T5816]
[ 114.167288][ T5816] dump_stack_lvl+0x241/0x360
[ 114.171952][ T5816] ? __pfx_dump_stack_lvl+0x10/0x10
[ 114.177131][ T5816] ? __pfx__printk+0x10/0x10
[ 114.181708][ T5816] ? rcu_is_watching+0x15/0xb0
[ 114.186453][ T5816] ? vscnprintf+0x5d/0x90
[ 114.190766][ T5816] panic+0x349/0x860
[ 114.194651][ T5816] ? __pfx_lock_release+0x10/0x10
[ 114.199657][ T5816] ? check_panic_on_warn+0x21/0xb0
[ 114.204747][ T5816] ? __pfx_panic+0x10/0x10
[ 114.209146][ T5816] ? do_raw_spin_unlock+0x13c/0x8b0
[ 114.214349][ T5816] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 114.220239][ T5816] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 114.226579][ T5816] check_panic_on_warn+0x86/0xb0
[ 114.231518][ T5816] ? lru_add_fn+0x2cc/0x1a20
[ 114.236207][ T5816] end_report+0x77/0x160
[ 114.240450][ T5816] kasan_report+0x154/0x180
[ 114.244942][ T5816] ? lru_add_fn+0x2cc/0x1a20
[ 114.249519][ T5816] ? lru_add_fn+0x20c/0x1a20
[ 114.254090][ T5816] kasan_check_range+0x282/0x290
[ 114.259019][ T5816] lru_add_fn+0x2cc/0x1a20
[ 114.263417][ T5816] folio_batch_move_lru+0x322/0x690
[ 114.268603][ T5816] ? __pfx_lru_add_fn+0x10/0x10
[ 114.273433][ T5816] ? __pfx_folio_batch_move_lru+0x10/0x10
[ 114.279135][ T5816] lru_add_drain_cpu+0x10e/0x8c0
[ 114.284098][ T5816] ? __pfx_lru_add_drain_cpu+0x10/0x10
[ 114.289553][ T5816] ? __pfx_vma_expand+0x10/0x10
[ 114.294400][ T5816] ? mas_prev_range+0xe8/0x130
[ 114.299156][ T5816] ? lru_add_drain+0x79/0x3e0
[ 114.303833][ T5816] lru_add_drain+0x123/0x3e0
[ 114.308423][ T5816] setup_arg_pages+0xc39/0x1000
[ 114.313270][ T5816] ? __pfx_lock_acquire+0x10/0x10
[ 114.318310][ T5816] ? __pfx_setup_arg_pages+0x10/0x10
[ 114.323583][ T5816] ? get_random_u64+0x1a5/0x9e0
[ 114.328433][ T5816] ? get_random_u64+0x596/0x9e0
[ 114.333267][ T5816] ? __asan_memset+0x23/0x50
[ 114.337854][ T5816] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 114.343826][ T5816] ? arch_setup_new_exec+0xb0/0x1b0
[ 114.349014][ T5816] load_elf_binary+0xbb6/0x2620
[ 114.353852][ T5816] ? __pfx_lock_acquire+0x10/0x10
[ 114.359050][ T5816] ? __pfx_load_elf_binary+0x10/0x10
[ 114.364313][ T5816] ? _raw_read_unlock+0x28/0x50
[ 114.369146][ T5816] ? load_misc_binary+0x6e5/0xc20
[ 114.374169][ T5816] bprm_execve+0xaf8/0x17c0
[ 114.378660][ T5816] ? __pfx_bprm_execve+0x10/0x10
[ 114.383606][ T5816] ? copy_strings+0x439/0x490
[ 114.388320][ T5816] do_execveat_common+0x553/0x700
[ 114.393348][ T5816] __x64_sys_execve+0x92/0xb0
[ 114.398030][ T5816] do_syscall_64+0xf5/0x240
[ 114.402529][ T5816] ? clear_bhb_loop+0x35/0x90
[ 114.407198][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 114.413102][ T5816] RIP: 0033:0x40720e
[ 114.416987][ T5816] Code: Unable to access opcode bytes at 0x4071e4.
[ 114.423641][ T5816] RSP: 002b:000000c001529200 EFLAGS: 00000212 ORIG_RAX: 000000000000003b
[ 114.432210][ T5816] RAX: ffffffffffffffda RBX: 000000c000039830 RCX: 000000000040720e
[ 114.440199][ T5816] RDX: 000000c0000bad20 RSI: 000000c0000b6660 RDI: 000000c000039830
[ 114.448172][ T5816] RBP: 000000c001529240 R08: 0000000000000000 R09: 0000000000000000
[ 114.456137][ T5816] R10: 0000000000000000 R11: 0000000000000212 R12: 00000000004b9d65
[ 114.464289][ T5816] R13: 000000c00149b000 R14: 000000c0004ba4e0 R15: 0000000000000014
[ 114.472261][ T5816]
[ 114.475635][ T5816] Kernel Offset: disabled
[ 114.479944][ T5816] Rebooting in 86400 seconds..