[ 73.167494][ T144] device veth1_macvtap left promiscuous mode
[ 73.174639][ T144] device veth0_macvtap left promiscuous mode
[ 73.180768][ T144] device veth1_vlan left promiscuous mode
[ 73.187102][ T144] device veth0_vlan left promiscuous mode
[ 73.303513][ T144] team0 (unregistering): Port device team_slave_1 removed
[ 73.316764][ T144] team0 (unregistering): Port device team_slave_0 removed
[ 73.330487][ T144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 73.345847][ T144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 73.393028][ T144] bond0 (unregistering): Released all slaves
[ 76.552820][ T1107] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.223' (ED25519) to the list of known hosts.
2025/10/01 20:54:56 parsed 1 programs
[ 91.645269][ T4636] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 94.118407][ T4687] chnl_net:caif_netlink_parms(): no params data found
[ 94.177780][ T4687] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.186963][ T4687] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.195762][ T4687] device bridge_slave_0 entered promiscuous mode
[ 94.205795][ T4687] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.214526][ T4687] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.223993][ T4687] device bridge_slave_1 entered promiscuous mode
[ 94.252224][ T4687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 94.266138][ T4687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 94.296633][ T4687] team0: Port device team_slave_0 added
[ 94.306106][ T4687] team0: Port device team_slave_1 added
[ 94.328766][ T4687] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 94.338151][ T4687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.364969][ T4687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 94.378291][ T4687] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 94.385813][ T4687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 94.412492][ T4687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 94.448410][ T4687] device hsr_slave_0 entered promiscuous mode
[ 94.455438][ T4687] device hsr_slave_1 entered promiscuous mode
[ 95.094562][ T4687] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.104932][ T4687] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.118930][ T4687] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.129770][ T4687] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.213324][ T4687] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.227109][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 95.235226][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 95.247316][ T4687] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.258807][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.269557][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.280184][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.287804][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.299842][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 95.339154][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.349758][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.360234][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.367732][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.380923][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.394577][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.442631][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.462270][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.472995][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.484574][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.494026][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.504112][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.514270][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.526309][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.541989][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.554575][ T4687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.732692][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 95.740382][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 95.752789][ T4687] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.804589][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 95.814286][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 95.833908][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 95.844997][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 95.856007][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 95.866137][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 95.900609][ T4687] device veth0_vlan entered promiscuous mode
[ 95.917796][ T4687] device veth1_vlan entered promiscuous mode
[ 95.945263][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 95.955987][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 95.967496][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 95.977039][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 95.990128][ T4687] device veth0_macvtap entered promiscuous mode
[ 96.021251][ T4687] device veth1_macvtap entered promiscuous mode
[ 96.039980][ T4687] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.048997][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 96.058124][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 96.068879][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 96.079602][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 96.092912][ T4687] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.104180][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 96.114781][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 96.128325][ T4687] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.140288][ T4687] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.151891][ T4687] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.160985][ T4687] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.999582][ T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 97.022924][ T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.073279][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 97.083252][ T145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 97.093278][ T145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.121279][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 98.327354][ T4345] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/10/01 20:55:05 executed programs: 0
[ 98.626235][ T4862] chnl_net:caif_netlink_parms(): no params data found
[ 98.689590][ T4862] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.697000][ T4862] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.706321][ T4862] device bridge_slave_0 entered promiscuous mode
[ 98.716872][ T4862] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.725157][ T4862] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.737093][ T4862] device bridge_slave_1 entered promiscuous mode
[ 98.764664][ T4862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 98.777612][ T4862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 98.809506][ T4862] team0: Port device team_slave_0 added
[ 98.817397][ T4862] team0: Port device team_slave_1 added
[ 98.837101][ T4862] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 98.844493][ T4862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.872819][ T4862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 98.885288][ T4862] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 98.892505][ T4862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.921053][ T4862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 98.962533][ T4862] device hsr_slave_0 entered promiscuous mode
[ 98.969688][ T4862] device hsr_slave_1 entered promiscuous mode
[ 98.977146][ T4862] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 98.988422][ T4862] Cannot create hsr debugfs directory
[ 100.551270][ T4190] Bluetooth: hci0: command 0x0409 tx timeout
[ 100.837079][ T4345] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 100.886900][ T4345] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 100.929621][ T4345] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.722136][ T4862] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 101.732318][ T4862] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 101.753608][ T4862] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 101.763120][ T4862] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.817197][ T4862] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.830520][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 101.839007][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 101.859191][ T4862] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.870244][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 101.879683][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 101.889512][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.896688][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.918787][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 101.926924][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 101.936523][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 101.947739][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.955385][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.964146][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 101.974688][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 101.990553][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 102.000318][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 102.010684][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 102.030901][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 102.039990][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 102.053810][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 102.063471][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 102.078971][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 102.090019][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 102.104076][ T4345] device hsr_slave_0 left promiscuous mode
[ 102.111013][ T4345] device hsr_slave_1 left promiscuous mode
[ 102.118388][ T4345] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 102.127767][ T4345] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 102.135871][ T4345] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 102.144826][ T4345] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 102.153121][ T4345] device bridge_slave_1 left promiscuous mode
[ 102.159840][ T4345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 102.168421][ T4345] device bridge_slave_0 left promiscuous mode
[ 102.174879][ T4345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.186238][ T4345] device veth1_macvtap left promiscuous mode
[ 102.192717][ T4345] device veth0_macvtap left promiscuous mode
[ 102.199061][ T4345] device veth1_vlan left promiscuous mode
[ 102.204974][ T4345] device veth0_vlan left promiscuous mode
[ 102.330932][ T4345] team0 (unregistering): Port device team_slave_1 removed
[ 102.345906][ T4345] team0 (unregistering): Port device team_slave_0 removed
[ 102.359521][ T4345] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 102.373108][ T4345] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 102.420189][ T4345] bond0 (unregistering): Released all slaves
[ 102.466714][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 102.559936][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 102.569638][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 102.583319][ T4862] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 102.608110][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 102.617724][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 102.636571][ T5058] Bluetooth: hci0: command 0x041b tx timeout
[ 102.649486][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 102.661132][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 102.669691][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 102.678719][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 102.687287][ T4862] device veth0_vlan entered promiscuous mode
[ 102.701871][ T4862] device veth1_vlan entered promiscuous mode
[ 102.717983][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 102.726596][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 102.735314][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 102.744415][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 102.756585][ T4862] device veth0_macvtap entered promiscuous mode
[ 102.769220][ T4862] device veth1_macvtap entered promiscuous mode
[ 102.786398][ T4862] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 102.797034][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 102.806642][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 102.817320][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 102.827383][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 102.839539][ T4862] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 102.863205][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 102.872577][ T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 102.884138][ T4862] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.893232][ T4862] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.904214][ T4862] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.913300][ T4862] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.974254][ T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.987177][ T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.012246][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 103.021342][ T145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.030712][ T145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.049536][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 103.317104][ T5087] loop0: detected capacity change from 0 to 32768
[ 103.392495][ T5087] =======================================================
[ 103.392495][ T5087] WARNING: The mand mount option has been deprecated and
[ 103.392495][ T5087] and is ignored by this kernel. Remove the mand
[ 103.392495][ T5087] option from the mount to silence this warning.
[ 103.392495][ T5087] =======================================================
[ 103.505177][ T5087] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[ 103.539026][ T5087] (syz.0.17,5087,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=64032, inode=824653170848, rec_len=8, name_len=0
2025/10/01 20:55:11 executed programs: 3
[ 103.615034][ T4862] ocfs2: Unmounting device (7,0) on (node local)
[ 103.919094][ T5092] loop0: detected capacity change from 0 to 32768
[ 104.000536][ T5092] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[ 104.019845][ T5092] (syz.0.18,5092,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=64032, inode=0, rec_len=0, name_len=0
[ 104.048171][ T4862] ocfs2: Unmounting device (7,0) on (node local)
[ 104.262279][ T5096] loop0: detected capacity change from 0 to 32768
[ 104.305257][ T5096] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[ 104.321238][ T5096] ==================================================================
[ 104.329846][ T5096] BUG: KASAN: use-after-free in ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.338663][ T5096] Read of size 2 at addr ffff88805ea8ecf0 by task syz.0.19/5096
[ 104.346371][ T5096]
[ 104.348877][ T5096] CPU: 1 PID: 5096 Comm: syz.0.19 Not tainted syzkaller #0
[ 104.356235][ T5096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 104.366760][ T5096] Call Trace:
[ 104.370262][ T5096]
[ 104.373669][ T5096] dump_stack_lvl+0x168/0x230
[ 104.378492][ T5096] ? show_regs_print_info+0x20/0x20
[ 104.383809][ T5096] ? load_image+0x3b0/0x3b0
[ 104.388294][ T5096] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 104.393743][ T5096] ? __lock_acquire+0x13ad/0x7c60
[ 104.398857][ T5096] print_address_description+0x60/0x2d0
[ 104.404421][ T5096] ? ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.410093][ T5096] kasan_report+0xdf/0x130
[ 104.414604][ T5096] ? ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.420444][ T5096] ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.426175][ T5096] ? _raw_spin_unlock+0x24/0x40
[ 104.431611][ T5096] ? ocfs2_dir_foreach+0xf0/0xf0
[ 104.436606][ T5096] ? ocfs2_inode_lock_atime+0x22f/0x4e0
[ 104.442341][ T5096] ? ocfs2_inode_lock_with_page+0x1b0/0x1b0
[ 104.448332][ T5096] ocfs2_readdir+0x21a/0x460
[ 104.452918][ T5096] ? clear_nonspinnable+0x60/0x60
[ 104.458021][ T5096] ? ocfs2_dir_foreach_blk+0x1900/0x1900
[ 104.463639][ T5096] ? common_file_perm+0x171/0x1c0
[ 104.468784][ T5096] iterate_dir+0x218/0x560
[ 104.473338][ T5096] __se_sys_getdents+0xe5/0x250
[ 104.478638][ T5096] ? __x64_sys_getdents+0x80/0x80
[ 104.483951][ T5096] ? fillonedir+0x4c0/0x4c0
[ 104.488453][ T5096] ? vtime_user_exit+0x2dc/0x400
[ 104.493934][ T5096] ? lockdep_hardirqs_on+0x94/0x140
[ 104.499306][ T5096] do_syscall_64+0x4c/0xa0
[ 104.504143][ T5096] ? clear_bhb_loop+0x30/0x80
[ 104.509143][ T5096] ? clear_bhb_loop+0x30/0x80
[ 104.514117][ T5096] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.520314][ T5096] RIP: 0033:0x7fdc2e47eba9
[ 104.524822][ T5096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 104.545800][ T5096] RSP: 002b:00007fdc2daee038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 104.554625][ T5096] RAX: ffffffffffffffda RBX: 00007fdc2e6c5fa0 RCX: 00007fdc2e47eba9
[ 104.563198][ T5096] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000004
[ 104.571270][ T5096] RBP: 00007fdc2e501e19 R08: 0000000000000000 R09: 0000000000000000
[ 104.579885][ T5096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.588368][ T5096] R13: 00007fdc2e6c6038 R14: 00007fdc2e6c5fa0 R15: 00007ffe0cd8b788
[ 104.596617][ T5096]
[ 104.599801][ T5096]
[ 104.602108][ T5096] The buggy address belongs to the page:
[ 104.608011][ T5096] page:ffffea00017aa380 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x5ea8e
[ 104.618744][ T5096] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.626307][ T5096] raw: 00fff00000000000 ffffea0001bb4808 ffffea00017aa3c8 0000000000000000
[ 104.635026][ T5096] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 104.643782][ T5096] page dumped because: kasan: bad access detected
[ 104.650453][ T5096] page_owner tracks the page as freed
[ 104.655818][ T5096] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 4668, ts 104001041478, free_ts 104039449229
[ 104.672402][ T5096] get_page_from_freelist+0x1b77/0x1c60
[ 104.678227][ T5096] __alloc_pages+0x1e1/0x470
[ 104.682905][ T5096] alloc_pages_vma+0x393/0x7c0
[ 104.687853][ T5096] handle_mm_fault+0x2382/0x43c0
[ 104.692982][ T5096] do_user_addr_fault+0x489/0xc80
[ 104.698498][ T5096] exc_page_fault+0x60/0x100
[ 104.703298][ T5096] asm_exc_page_fault+0x22/0x30
[ 104.708535][ T5096] copy_user_enhanced_fast_string+0xe/0x40
[ 104.714807][ T5096] copy_page_to_iter+0x49e/0x910
[ 104.720051][ T5096] filemap_read+0x1d94/0x2480
[ 104.725393][ T5096] blkdev_read_iter+0x11d/0x150
[ 104.730771][ T5096] vfs_read+0x725/0xcf0
[ 104.736608][ T5096] ksys_read+0x14d/0x250
[ 104.740938][ T5096] do_syscall_64+0x4c/0xa0
[ 104.745653][ T5096] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.751738][ T5096] page last free stack trace:
[ 104.756651][ T5096] free_unref_page_prepare+0x637/0x6c0
[ 104.762548][ T5096] free_unref_page_list+0x122/0x7e0
[ 104.767826][ T5096] release_pages+0x184b/0x1bb0
[ 104.772573][ T5096] tlb_finish_mmu+0x164/0x2e0
[ 104.777697][ T5096] unmap_region+0x315/0x360
[ 104.782536][ T5096] __do_munmap+0x9d3/0xdc0
[ 104.787057][ T5096] __vm_munmap+0x137/0x230
[ 104.791754][ T5096] __x64_sys_munmap+0x67/0x70
[ 104.797137][ T5096] do_syscall_64+0x4c/0xa0
[ 104.802137][ T5096] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.808331][ T5096]
[ 104.810684][ T5096] Memory state around the buggy address:
[ 104.816930][ T5096] ffff88805ea8eb80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 104.824994][ T5096] ffff88805ea8ec00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 104.833422][ T5096] >ffff88805ea8ec80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 104.841551][ T5096] ^
[ 104.850551][ T5096] ffff88805ea8ed00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 104.858876][ T5096] ffff88805ea8ed80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 104.867665][ T5096] ==================================================================
[ 104.876027][ T5096] Disabling lock debugging due to kernel taint
[ 104.883900][ T4190] Bluetooth: hci0: command 0x040f tx timeout
[ 104.894156][ T5096] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 104.902093][ T5096] CPU: 0 PID: 5096 Comm: syz.0.19 Tainted: G B syzkaller #0
[ 104.911471][ T5096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 104.921797][ T5096] Call Trace:
[ 104.925454][ T5096]
[ 104.928529][ T5096] dump_stack_lvl+0x168/0x230
[ 104.933309][ T5096] ? show_regs_print_info+0x20/0x20
[ 104.939256][ T5096] ? load_image+0x3b0/0x3b0
[ 104.943943][ T5096] panic+0x2c9/0x7f0
[ 104.947929][ T5096] ? bpf_jit_dump+0xd0/0xd0
[ 104.952883][ T5096] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 104.958861][ T5096] ? _raw_spin_unlock+0x40/0x40
[ 104.964059][ T5096] ? ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.969853][ T5096] check_panic_on_warn+0x80/0xa0
[ 104.974883][ T5096] ? ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.981259][ T5096] end_report+0x6d/0xf0
[ 104.985745][ T5096] kasan_report+0x102/0x130
[ 104.990350][ T5096] ? ocfs2_dir_foreach_blk+0x1566/0x1900
[ 104.996066][ T5096] ocfs2_dir_foreach_blk+0x1566/0x1900
[ 105.001646][ T5096] ? _raw_spin_unlock+0x24/0x40
[ 105.006491][ T5096] ? ocfs2_dir_foreach+0xf0/0xf0
[ 105.011500][ T5096] ? ocfs2_inode_lock_atime+0x22f/0x4e0
[ 105.017294][ T5096] ? ocfs2_inode_lock_with_page+0x1b0/0x1b0
[ 105.023178][ T5096] ocfs2_readdir+0x21a/0x460
[ 105.027936][ T5096] ? clear_nonspinnable+0x60/0x60
[ 105.032947][ T5096] ? ocfs2_dir_foreach_blk+0x1900/0x1900
[ 105.038627][ T5096] ? common_file_perm+0x171/0x1c0
[ 105.044283][ T5096] iterate_dir+0x218/0x560
[ 105.049001][ T5096] __se_sys_getdents+0xe5/0x250
[ 105.054261][ T5096] ? __x64_sys_getdents+0x80/0x80
[ 105.059283][ T5096] ? fillonedir+0x4c0/0x4c0
[ 105.063863][ T5096] ? vtime_user_exit+0x2dc/0x400
[ 105.069105][ T5096] ? lockdep_hardirqs_on+0x94/0x140
[ 105.074672][ T5096] do_syscall_64+0x4c/0xa0
[ 105.079175][ T5096] ? clear_bhb_loop+0x30/0x80
[ 105.083837][ T5096] ? clear_bhb_loop+0x30/0x80
[ 105.088833][ T5096] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.095265][ T5096] RIP: 0033:0x7fdc2e47eba9
[ 105.099915][ T5096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 105.120046][ T5096] RSP: 002b:00007fdc2daee038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[ 105.129436][ T5096] RAX: ffffffffffffffda RBX: 00007fdc2e6c5fa0 RCX: 00007fdc2e47eba9
[ 105.138322][ T5096] RDX: 0000000000000054 RSI: 0000000000000000 RDI: 0000000000000004
[ 105.146585][ T5096] RBP: 00007fdc2e501e19 R08: 0000000000000000 R09: 0000000000000000
[ 105.154857][ T5096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.162992][ T5096] R13: 00007fdc2e6c6038 R14: 00007fdc2e6c5fa0 R15: 00007ffe0cd8b788
[ 105.171621][ T5096]
[ 105.175373][ T5096] Kernel Offset: disabled
[ 105.179727][ T5096] Rebooting in 86400 seconds..