Warning: Permanently added '10.128.1.34' (ED25519) to the list of known hosts.
2026/02/08 16:17:10 parsed 1 programs
[  132.896640][ T1320] ieee802154 phy0 wpan0: encryption failed: -22
[  132.896751][ T1320] ieee802154 phy1 wpan1: encryption failed: -22
[  133.061913][ T6223] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  137.506394][ T5118] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  137.509451][ T5118] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  137.524996][ T5118] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  137.527622][ T5118] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  137.529465][ T5118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  138.041381][ T4036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  138.041402][ T4036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  138.291630][ T1416] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  138.291650][ T1416] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.186165][ T6284] chnl_net:caif_netlink_parms(): no params data found
[  139.614701][ T6284] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.614865][ T6284] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.614982][ T6284] bridge_slave_0: entered allmulticast mode
[  139.616334][ T6284] bridge_slave_0: entered promiscuous mode
[  139.618784][ T6284] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.618906][ T6284] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.618999][ T6284] bridge_slave_1: entered allmulticast mode
[  139.620329][ T6284] bridge_slave_1: entered promiscuous mode
[  140.044116][ T6284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.046585][ T6284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.556445][ T6284] team0: Port device team_slave_0 added
[  140.574459][ T6284] team0: Port device team_slave_1 added
[  140.812517][ T6284] batman_adv: batadv0: Adding interface: batadv_slave_0
[  140.812534][ T6284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.812556][ T6284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.864917][ T6284] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.864932][ T6284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  140.864956][ T6284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  141.068708][ T6284] hsr_slave_0: entered promiscuous mode
[  141.069468][ T6284] hsr_slave_1: entered promiscuous mode
[  142.620791][ T6284] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  142.665212][ T6284] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  142.709061][ T6284] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  142.747477][ T6284] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  142.912554][ T6284] 8021q: adding VLAN 0 to HW filter on device bond0
[  142.938203][ T6284] 8021q: adding VLAN 0 to HW filter on device team0
[  142.954262][ T1453] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.955375][ T1453] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.991799][ T1453] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.992009][ T1453] bridge0: port 2(bridge_slave_1) entered forwarding state
[  143.309003][ T6284] 8021q: adding VLAN 0 to HW filter on device batadv0
[  143.382070][ T6284] veth0_vlan: entered promiscuous mode
[  143.399344][ T6284] veth1_vlan: entered promiscuous mode
[  143.446391][ T6284] veth0_macvtap: entered promiscuous mode
[  143.459582][ T6284] veth1_macvtap: entered promiscuous mode
[  143.485665][ T6284] batman_adv: batadv0: Interface activated: batadv_slave_0
[  143.490243][ T6284] batman_adv: batadv0: Interface activated: batadv_slave_1
[  143.535916][ T1416] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.536167][ T1416] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.536379][ T1416] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.536883][ T1416] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  144.364776][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.632453][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.485448][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.207778][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.680822][   T12] bridge_slave_1: left allmulticast mode
[  146.680857][   T12] bridge_slave_1: left promiscuous mode
[  146.681125][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.781681][   T12] bridge_slave_0: left allmulticast mode
[  146.781708][   T12] bridge_slave_0: left promiscuous mode
[  146.781943][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
2026/02/08 16:17:28 executed programs: 0
[  147.365812][ T5118] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  147.368384][ T5118] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  147.369269][ T5118] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  147.395763][ T5118] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  147.408890][ T5118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  148.721187][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  148.781265][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  148.802523][   T12] bond0 (unregistering): Released all slaves
[  149.200573][   T12] hsr_slave_0: left promiscuous mode
[  149.240685][   T12] hsr_slave_1: left promiscuous mode
[  149.243065][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.243098][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  149.301541][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.301568][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  149.398480][   T12] veth1_macvtap: left promiscuous mode
[  149.398585][   T12] veth0_macvtap: left promiscuous mode
[  149.398734][   T12] veth1_vlan: left promiscuous mode
[  149.398826][   T12] veth0_vlan: left promiscuous mode
[  149.533625][   T61] Bluetooth: hci0: command tx timeout
[  151.451202][   T12] team0 (unregistering): Port device team_slave_1 removed
[  151.610628][   T61] Bluetooth: hci0: command tx timeout
[  151.671312][   T12] team0 (unregistering): Port device team_slave_0 removed
[  153.690624][   T61] Bluetooth: hci0: command tx timeout
[  153.867784][ T6474] chnl_net:caif_netlink_parms(): no params data found
[  154.265561][ T6474] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.265744][ T6474] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.265896][ T6474] bridge_slave_0: entered allmulticast mode
[  154.267636][ T6474] bridge_slave_0: entered promiscuous mode
[  154.270028][ T6474] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.270153][ T6474] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.270250][ T6474] bridge_slave_1: entered allmulticast mode
[  154.272693][ T6474] bridge_slave_1: entered promiscuous mode
[  154.465213][ T6474] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.468360][ T6474] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.694699][ T6474] team0: Port device team_slave_0 added
[  154.698050][ T6474] team0: Port device team_slave_1 added
[  155.023101][ T6474] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.023118][ T6474] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  155.023132][ T6474] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.025880][ T6474] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.025893][ T6474] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  155.025909][ T6474] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.545137][ T6474] hsr_slave_0: entered promiscuous mode
[  155.545840][ T6474] hsr_slave_1: entered promiscuous mode
[  155.776596][   T61] Bluetooth: hci0: command tx timeout
[  157.335597][ T6474] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  157.365318][ T6474] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  157.405896][ T6474] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  157.445272][ T6474] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  157.608754][ T6474] 8021q: adding VLAN 0 to HW filter on device bond0
[  157.629099][ T6474] 8021q: adding VLAN 0 to HW filter on device team0
[  157.646375][ T1416] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.646649][ T1416] bridge0: port 1(bridge_slave_0) entered forwarding state
[  157.676227][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.676476][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  157.883390][ T6474] 8021q: adding VLAN 0 to HW filter on device batadv0
[  157.919863][ T6474] veth0_vlan: entered promiscuous mode
[  157.927195][ T6474] veth1_vlan: entered promiscuous mode
[  157.952520][ T6474] veth0_macvtap: entered promiscuous mode
[  157.955832][ T6474] veth1_macvtap: entered promiscuous mode
[  157.969508][ T6474] batman_adv: batadv0: Interface activated: batadv_slave_0
[  157.974743][ T6474] batman_adv: batadv0: Interface activated: batadv_slave_1
[  157.994615][ T1416] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  157.995117][ T1416] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  157.995331][ T1416] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  157.995366][ T1416] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  158.172614][ T4036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  158.172634][ T4036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  158.208071][ T1355] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  158.208091][ T1355] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/02/08 16:17:39 executed programs: 2
[  158.510359][ T6618] loop0: detected capacity change from 0 to 32768
[  158.596638][ T6618] ==================================================================
[  158.596653][ T6618] BUG: KASAN: slab-use-after-free in diWrite+0x1209/0x1f40
[  158.596689][ T6618] Write of size 32 at addr ffff88803f6df0c0 by task syz.0.16/6618
[  158.596703][ T6618] 
[  158.596727][ T6618] CPU: 0 UID: 0 PID: 6618 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  158.596747][ T6618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  158.596768][ T6618] Call Trace:
[  158.596775][ T6618]  <TASK>
[  158.596786][ T6618]  dump_stack_lvl+0xe8/0x150
[  158.596810][ T6618]  print_report+0xba/0x230
[  158.596829][ T6618]  ? diWrite+0x1209/0x1f40
[  158.596847][ T6618]  kasan_report+0x117/0x150
[  158.596871][ T6618]  ? diWrite+0x1209/0x1f40
[  158.596891][ T6618]  kasan_check_range+0x264/0x2c0
[  158.596913][ T6618]  ? diWrite+0x1209/0x1f40
[  158.596932][ T6618]  __asan_memcpy+0x40/0x70
[  158.596952][ T6618]  diWrite+0x1209/0x1f40
[  158.596977][ T6618]  txCommit+0x869/0x5410
[  158.596999][ T6618]  ? __pfx_add_index+0x10/0x10
[  158.597013][ T6618]  ? rt_spin_unlock+0x160/0x200
[  158.597035][ T6618]  ? __pfx_txCommit+0x10/0x10
[  158.597057][ T6618]  ? rcu_is_watching+0x15/0xb0
[  158.597079][ T6618]  ? __mark_inode_dirty+0x45c/0x1320
[  158.597101][ T6618]  add_missing_indices+0x8cb/0xcd0
[  158.597130][ T6618]  ? __pfx_add_missing_indices+0x10/0x10
[  158.597152][ T6618]  ? set_page_refcounted+0xa0/0x1e0
[  158.597176][ T6618]  ? alloc_pages_noprof+0xe3/0x1e0
[  158.597199][ T6618]  jfs_readdir+0x1e34/0x3c10
[  158.597233][ T6618]  ? __pfx_jfs_readdir+0x10/0x10
[  158.597262][ T6618]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  158.597282][ T6618]  ? lockdep_hardirqs_on+0x7a/0x110
[  158.597304][ T6618]  ? rwbase_write_lock+0x568/0x730
[  158.597329][ T6618]  ? __pfx_jfs_readdir+0x10/0x10
[  158.597351][ T6618]  wrap_directory_iterator+0x99/0xe0
[  158.597377][ T6618]  iterate_dir+0x3a5/0x580
[  158.597397][ T6618]  __se_sys_getdents64+0xf1/0x280
[  158.597418][ T6618]  ? __pfx___se_sys_getdents64+0x10/0x10
[  158.597436][ T6618]  ? __pfx_filldir64+0x10/0x10
[  158.597456][ T6618]  ? rcu_is_watching+0x15/0xb0
[  158.597481][ T6618]  do_syscall_64+0xe2/0xf80
[  158.597501][ T6618]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.597516][ T6618]  ? trace_irq_disable+0x37/0x100
[  158.597536][ T6618]  ? clear_bhb_loop+0x60/0xb0
[  158.597555][ T6618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.597572][ T6618] RIP: 0033:0x7f4fca1e03b9
[  158.597595][ T6618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  158.597610][ T6618] RSP: 002b:00007f4fc944e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  158.597640][ T6618] RAX: ffffffffffffffda RBX: 00007f4fca3e5fa0 RCX: 00007f4fca1e03b9
[  158.597654][ T6618] RDX: 000000000000009e RSI: 0000000020000280 RDI: 0000000000000004
[  158.597665][ T6618] RBP: 00007f4fca26b9d4 R08: 0000000000000000 R09: 0000000000000000
[  158.597676][ T6618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.597687][ T6618] R13: 0000000000000000 R14: 00007f4fca3e5fa0 R15: 00007ffd05c9e4a8
[  158.597706][ T6618]  </TASK>
[  158.597713][ T6618] 
[  158.597721][ T6618] Allocated by task 6357:
[  158.597730][ T6618]  kasan_save_track+0x3e/0x80
[  158.597749][ T6618]  __kasan_slab_alloc+0x6c/0x80
[  158.597767][ T6618]  kmem_cache_alloc_noprof+0x188/0x6a0
[  158.597786][ T6618]  vm_area_dup+0x2b/0x670
[  158.597800][ T6618]  __split_vma+0x1d5/0xa30
[  158.597817][ T6618]  vms_gather_munmap_vmas+0x2f1/0x1320
[  158.597833][ T6618]  mmap_region+0x85c/0x1f50
[  158.597849][ T6618]  do_mmap+0xc2f/0x10c0
[  158.597866][ T6618]  vm_mmap_pgoff+0x2cc/0x4f0
[  158.597884][ T6618]  ksys_mmap_pgoff+0x4e8/0x720
[  158.597901][ T6618]  do_syscall_64+0xe2/0xf80
[  158.597920][ T6618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.597935][ T6618] 
[  158.597939][ T6618] Freed by task 28:
[  158.597947][ T6618]  kasan_save_track+0x3e/0x80
[  158.597964][ T6618]  kasan_save_free_info+0x46/0x50
[  158.597980][ T6618]  __kasan_slab_free+0x5c/0x80
[  158.597998][ T6618]  slab_free_after_rcu_debug+0x132/0x490
[  158.598014][ T6618]  rcu_cpu_kthread+0xbba/0x1b10
[  158.598031][ T6618]  smpboot_thread_fn+0x541/0xa50
[  158.598046][ T6618]  kthread+0x726/0x8b0
[  158.598060][ T6618]  ret_from_fork+0x51b/0xa40
[  158.598073][ T6618]  ret_from_fork_asm+0x1a/0x30
[  158.598091][ T6618] 
[  158.598094][ T6618] Last potentially related work creation:
[  158.598100][ T6618]  kasan_save_stack+0x3e/0x60
[  158.598115][ T6618]  kasan_record_aux_stack+0xbd/0xd0
[  158.598128][ T6618]  kmem_cache_free+0x709/0x8c0
[  158.598145][ T6618]  exit_mmap+0x544/0xb30
[  158.598162][ T6618]  __mmput+0xcb/0x3d0
[  158.598175][ T6618]  exit_mm+0x168/0x220
[  158.598190][ T6618]  do_exit+0x62e/0x2320
[  158.598206][ T6618]  do_group_exit+0x21b/0x2d0
[  158.598224][ T6618]  __x64_sys_exit_group+0x3f/0x40
[  158.598242][ T6618]  __pfx_syscall_get_nr+0x0/0x10
[  158.598263][ T6618]  do_syscall_64+0xe2/0xf80
[  158.598281][ T6618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.598296][ T6618] 
[  158.598300][ T6618] The buggy address belongs to the object at ffff88803f6df000
[  158.598300][ T6618]  which belongs to the cache vm_area_struct of size 256
[  158.598316][ T6618] The buggy address is located 192 bytes inside of
[  158.598316][ T6618]  freed 256-byte region [ffff88803f6df000, ffff88803f6df100)
[  158.598334][ T6618] 
[  158.598338][ T6618] The buggy address belongs to the physical page:
[  158.598353][ T6618] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3f6df
[  158.598369][ T6618] memcg:ffff888030d3e001
[  158.598376][ T6618] flags: 0x80000000000000(node=0|zone=1)
[  158.598397][ T6618] page_type: f5(slab)
[  158.598413][ T6618] raw: 0080000000000000 ffff88801aef8b40 ffffea0000c8f8c0 dead000000000002
[  158.598426][ T6618] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff888030d3e001
[  158.598434][ T6618] page dumped because: kasan: bad access detected
[  158.598447][ T6618] page_owner tracks the page as allocated
[  158.598453][ T6618] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6110, tgid 6110 (rm), ts 110297922531, free_ts 110291977677
[  158.598483][ T6618]  post_alloc_hook+0x228/0x280
[  158.598502][ T6618]  get_page_from_freelist+0x28bb/0x2950
[  158.598516][ T6618]  __alloc_frozen_pages_noprof+0x18d/0x380
[  158.598531][ T6618]  alloc_pages_mpol+0xd1/0x380
[  158.598551][ T6618]  allocate_slab+0x86/0x3a0
[  158.598567][ T6618]  ___slab_alloc+0xaf8/0x13d0
[  158.598582][ T6618]  __kmem_cache_alloc_bulk+0x1b7/0x560
[  158.598601][ T6618]  __pcs_replace_empty_main+0x305/0x560
[  158.598617][ T6618]  kmem_cache_alloc_noprof+0x461/0x6a0
[  158.598643][ T6618]  vm_area_alloc+0x24/0x140
[  158.598657][ T6618]  mmap_region+0xfb5/0x1f50
[  158.598673][ T6618]  do_mmap+0xc2f/0x10c0
[  158.598690][ T6618]  vm_mmap_pgoff+0x2cc/0x4f0
[  158.598707][ T6618]  do_syscall_64+0xe2/0xf80
[  158.598726][ T6618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.598741][ T6618] page last free pid 28 tgid 28 stack trace:
[  158.598751][ T6618]  __free_frozen_pages+0xfd0/0x1160
[  158.598770][ T6618]  tlb_remove_table_rcu+0x85/0x100
[  158.598786][ T6618]  rcu_cpu_kthread+0xbba/0x1b10
[  158.598803][ T6618]  smpboot_thread_fn+0x541/0xa50
[  158.598819][ T6618]  kthread+0x726/0x8b0
[  158.598836][ T6618]  ret_from_fork+0x51b/0xa40
[  158.598851][ T6618]  ret_from_fork_asm+0x1a/0x30
[  158.598871][ T6618] 
[  158.598875][ T6618] Memory state around the buggy address:
[  158.598884][ T6618]  ffff88803f6def80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  158.598895][ T6618]  ffff88803f6df000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  158.598907][ T6618] >ffff88803f6df080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  158.598915][ T6618]                                            ^
[  158.598924][ T6618]  ffff88803f6df100: fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb fb
[  158.598935][ T6618]  ffff88803f6df180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  158.598943][ T6618] ==================================================================
[  158.599020][ T6618] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  158.599040][ T6618] CPU: 0 UID: 0 PID: 6618 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  158.599060][ T6618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  158.599070][ T6618] Call Trace:
[  158.599077][ T6618]  <TASK>
[  158.599084][ T6618]  vpanic+0x1e0/0x670
[  158.599109][ T6618]  panic+0xc5/0xd0
[  158.599129][ T6618]  ? __pfx_panic+0x10/0x10
[  158.599152][ T6618]  ? preempt_schedule_common+0x82/0xd0
[  158.599176][ T6618]  ? diWrite+0x1209/0x1f40
[  158.599195][ T6618]  check_panic_on_warn+0x89/0xb0
[  158.599217][ T6618]  ? diWrite+0x1209/0x1f40
[  158.599235][ T6618]  end_report+0x6f/0x140
[  158.599257][ T6618]  kasan_report+0x128/0x150
[  158.599280][ T6618]  ? diWrite+0x1209/0x1f40
[  158.599302][ T6618]  kasan_check_range+0x264/0x2c0
[  158.599324][ T6618]  ? diWrite+0x1209/0x1f40
[  158.599343][ T6618]  __asan_memcpy+0x40/0x70
[  158.599362][ T6618]  diWrite+0x1209/0x1f40
[  158.599388][ T6618]  txCommit+0x869/0x5410
[  158.599409][ T6618]  ? __pfx_add_index+0x10/0x10
[  158.599425][ T6618]  ? rt_spin_unlock+0x160/0x200
[  158.599447][ T6618]  ? __pfx_txCommit+0x10/0x10
[  158.599469][ T6618]  ? rcu_is_watching+0x15/0xb0
[  158.599490][ T6618]  ? __mark_inode_dirty+0x45c/0x1320
[  158.599512][ T6618]  add_missing_indices+0x8cb/0xcd0
[  158.599540][ T6618]  ? __pfx_add_missing_indices+0x10/0x10
[  158.599562][ T6618]  ? set_page_refcounted+0xa0/0x1e0
[  158.599585][ T6618]  ? alloc_pages_noprof+0xe3/0x1e0
[  158.599610][ T6618]  jfs_readdir+0x1e34/0x3c10
[  158.599652][ T6618]  ? __pfx_jfs_readdir+0x10/0x10
[  158.599682][ T6618]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  158.599704][ T6618]  ? lockdep_hardirqs_on+0x7a/0x110
[  158.599726][ T6618]  ? rwbase_write_lock+0x568/0x730
[  158.599752][ T6618]  ? __pfx_jfs_readdir+0x10/0x10
[  158.599775][ T6618]  wrap_directory_iterator+0x99/0xe0
[  158.599797][ T6618]  iterate_dir+0x3a5/0x580
[  158.599819][ T6618]  __se_sys_getdents64+0xf1/0x280
[  158.599841][ T6618]  ? __pfx___se_sys_getdents64+0x10/0x10
[  158.599861][ T6618]  ? __pfx_filldir64+0x10/0x10
[  158.599881][ T6618]  ? rcu_is_watching+0x15/0xb0
[  158.599906][ T6618]  do_syscall_64+0xe2/0xf80
[  158.599927][ T6618]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.599944][ T6618]  ? trace_irq_disable+0x37/0x100
[  158.599965][ T6618]  ? clear_bhb_loop+0x60/0xb0
[  158.599984][ T6618]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.600002][ T6618] RIP: 0033:0x7f4fca1e03b9
[  158.600017][ T6618] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  158.600032][ T6618] RSP: 002b:00007f4fc944e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  158.600051][ T6618] RAX: ffffffffffffffda RBX: 00007f4fca3e5fa0 RCX: 00007f4fca1e03b9
[  158.600064][ T6618] RDX: 000000000000009e RSI: 0000000020000280 RDI: 0000000000000004
[  158.600076][ T6618] RBP: 00007f4fca26b9d4 R08: 0000000000000000 R09: 0000000000000000
[  158.600088][ T6618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  158.600098][ T6618] R13: 0000000000000000 R14: 00007f4fca3e5fa0 R15: 00007ffd05c9e4a8
[  158.600118][ T6618]  </TASK>
[  158.600532][ T6618] Kernel Offset: disabled