Warning: Permanently added '10.128.1.142' (ED25519) to the list of known hosts.
2024/08/09 14:56:52 ignoring optional flag "sandboxArg"="0"
2024/08/09 14:56:53 parsed 1 programs
[  103.319644][ T5625] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  106.282653][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.290838][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.298965][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.309265][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.318130][   T54] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  106.326081][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.380294][ T5677] chnl_net:caif_netlink_parms(): no params data found
[  107.460935][ T5677] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.469103][ T5677] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.476510][ T5677] bridge_slave_0: entered allmulticast mode
[  107.484150][ T5677] bridge_slave_0: entered promiscuous mode
[  107.492829][ T5677] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.500186][ T5677] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.507330][ T5677] bridge_slave_1: entered allmulticast mode
[  107.514429][ T5677] bridge_slave_1: entered promiscuous mode
[  107.548066][ T5677] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.559360][ T5677] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.588849][ T5677] team0: Port device team_slave_0 added
[  107.597611][ T5677] team0: Port device team_slave_1 added
[  107.623600][ T5677] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.631050][ T5677] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.658342][ T5677] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.672057][ T5677] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.679035][ T5677] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.705217][ T5677] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.739603][ T5677] hsr_slave_0: entered promiscuous mode
[  107.745938][ T5677] hsr_slave_1: entered promiscuous mode
[  108.354884][ T5677] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  108.368067][ T5677] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  108.379452][ T5677] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  108.390574][ T5677] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.503067][ T5677] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.528294][ T5677] 8021q: adding VLAN 0 to HW filter on device team0
[  108.545274][  T964] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.552853][  T964] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.579717][  T964] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.586893][  T964] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.792532][ T5677] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.848509][ T5677] veth0_vlan: entered promiscuous mode
[  108.867661][ T5677] veth1_vlan: entered promiscuous mode
[  108.908491][ T5677] veth0_macvtap: entered promiscuous mode
[  108.920979][ T5677] veth1_macvtap: entered promiscuous mode
[  108.946253][ T5677] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.963501][ T5677] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.976567][ T5677] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.986093][ T5677] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.997646][ T5677] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.007249][ T5677] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.193031][   T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.265240][   T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.353190][   T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.482615][   T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.604108][ T3021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.625639][ T3021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.663278][  T964] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.673151][  T964] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/08/09 14:57:04 executed programs: 0
[  110.745052][ T4606] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  110.756064][ T4606] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  110.764257][ T4606] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  110.775331][ T4606] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  110.783121][ T4606] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  110.791659][ T4606] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  110.999560][ T5816] chnl_net:caif_netlink_parms(): no params data found
[  111.086967][ T5816] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.094355][ T5816] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.102441][ T5816] bridge_slave_0: entered allmulticast mode
[  111.110622][ T5816] bridge_slave_0: entered promiscuous mode
[  111.119230][ T5816] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.127505][ T5816] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.136356][ T5816] bridge_slave_1: entered allmulticast mode
[  111.146581][ T5816] bridge_slave_1: entered promiscuous mode
[  111.187358][ T5816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  111.204838][ T5816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  111.256648][ T5816] team0: Port device team_slave_0 added
[  111.267293][ T5816] team0: Port device team_slave_1 added
[  111.302885][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.310458][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.338014][ T5816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.351635][ T5816] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.358623][ T5816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.386650][ T5816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.439265][ T5816] hsr_slave_0: entered promiscuous mode
[  111.447996][ T5816] hsr_slave_1: entered promiscuous mode
[  111.454972][ T5816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.463368][ T5816] Cannot create hsr debugfs directory
[  112.880206][ T4606] Bluetooth: hci0: command tx timeout
[  113.801568][   T63] bridge_slave_1: left allmulticast mode
[  113.807603][   T63] bridge_slave_1: left promiscuous mode
[  113.818120][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.835782][   T63] bridge_slave_0: left allmulticast mode
[  113.841949][   T63] bridge_slave_0: left promiscuous mode
[  113.847734][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.068107][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  114.080388][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  114.091507][   T63] bond0 (unregistering): Released all slaves
[  114.216064][   T63] hsr_slave_0: left promiscuous mode
[  114.224080][   T63] hsr_slave_1: left promiscuous mode
[  114.233403][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.241074][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.249432][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.258104][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.284180][   T63] veth1_macvtap: left promiscuous mode
[  114.289982][   T63] veth0_macvtap: left promiscuous mode
[  114.295661][   T63] veth1_vlan: left promiscuous mode
[  114.304261][   T63] veth0_vlan: left promiscuous mode
[  114.760202][   T63] team0 (unregistering): Port device team_slave_1 removed
[  114.794997][   T63] team0 (unregistering): Port device team_slave_0 removed
[  114.969813][ T4606] Bluetooth: hci0: command tx timeout
[  115.411851][ T5816] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  115.430863][ T5816] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  115.450774][ T5816] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  115.480373][ T5816] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  115.832192][ T5816] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.867417][ T5816] 8021q: adding VLAN 0 to HW filter on device team0
[  115.887956][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.895614][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.936966][ T2469] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.944203][ T2469] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.198803][ T5816] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.255309][ T5816] veth0_vlan: entered promiscuous mode
[  116.298873][ T5816] veth1_vlan: entered promiscuous mode
[  116.353089][ T5816] veth0_macvtap: entered promiscuous mode
[  116.392998][ T5816] veth1_macvtap: entered promiscuous mode
[  116.421464][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.443506][ T5816] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.458513][ T5816] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.469237][ T5816] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.478648][ T5816] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.493215][ T5816] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.623841][ T2469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.635294][ T2469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/08/09 14:57:10 executed programs: 2
[  116.671055][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.679401][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.917799][ T6069] loop0: detected capacity change from 0 to 32768
[  116.934528][ T6069] ==================================================================
[  116.942654][ T6069] BUG: KASAN: slab-out-of-bounds in journal_entry_dev_usage_to_text+0x109/0x1d0
[  116.951763][ T6069] Read of size 8 at addr ffff888023772000 by task syz.0.15/6069
[  116.959599][ T6069] 
[  116.962009][ T6069] CPU: 1 UID: 0 PID: 6069 Comm: syz.0.15 Not tainted 6.11.0-rc2-syzkaller-00111-gee9a43b7cfe2 #0
[  116.972856][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  116.983485][ T6069] Call Trace:
[  116.986781][ T6069]  <TASK>
[  116.990324][ T6069]  dump_stack_lvl+0x241/0x360
[  116.996061][ T6069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.001469][ T6069]  ? __pfx__printk+0x10/0x10
[  117.006081][ T6069]  ? _printk+0xd5/0x120
[  117.010286][ T6069]  ? __virt_addr_valid+0x183/0x530
[  117.015588][ T6069]  ? __virt_addr_valid+0x183/0x530
[  117.020802][ T6069]  print_report+0x169/0x550
[  117.025467][ T6069]  ? __virt_addr_valid+0x183/0x530
[  117.030674][ T6069]  ? __virt_addr_valid+0x183/0x530
[  117.036102][ T6069]  ? __virt_addr_valid+0x45f/0x530
[  117.039898][ T4606] Bluetooth: hci0: command tx timeout
[  117.041307][ T6069]  ? __phys_addr+0xba/0x170
[  117.051197][ T6069]  ? journal_entry_dev_usage_to_text+0x109/0x1d0
[  117.057560][ T6069]  kasan_report+0x143/0x180
[  117.062071][ T6069]  ? journal_entry_dev_usage_to_text+0x109/0x1d0
[  117.068502][ T6069]  journal_entry_dev_usage_to_text+0x109/0x1d0
[  117.075343][ T6069]  bch2_sb_clean_to_text+0x138/0x240
[  117.080998][ T6069]  bch2_sb_field_validate+0x201/0x2e0
[  117.086972][ T6069]  ? __pfx_bch2_sb_field_validate+0x10/0x10
[  117.092951][ T6069]  ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80
[  117.099689][ T6069]  ? bch2_opt_validate+0x2ca/0x300
[  117.104802][ T6069]  bch2_sb_validate+0xb4b/0xef0
[  117.109828][ T6069]  ? blk_status_to_errno+0x22/0x80
[  117.115086][ T6069]  ? __pfx_bch2_sb_validate+0x10/0x10
[  117.120536][ T6069]  ? bch2_sb_compatible+0x5fe/0xf00
[  117.125978][ T6069]  ? read_one_super+0x65a/0xf40
[  117.131196][ T6069]  ? read_one_super+0xe23/0xf40
[  117.136247][ T6069]  ? bch2_sb_realloc+0x422/0x660
[  117.141200][ T6069]  ? kfree+0x4e/0x360
[  117.145294][ T6069]  ? __pfx_read_one_super+0x10/0x10
[  117.150597][ T6069]  ? __pfx_bch2_sb_realloc+0x10/0x10
[  117.155947][ T6069]  ? bdev_file_open_by_path+0x385/0x480
[  117.161474][ T6069]  ? __pfx_bdev_file_open_by_path+0x10/0x10
[  117.167349][ T6069]  ? trace_kmalloc+0x1f/0xd0
[  117.172098][ T6069]  ? __asan_memcpy+0x40/0x70
[  117.176793][ T6069]  __bch2_read_super+0xc1b/0x1370
[  117.181929][ T6069]  ? stack_depot_save_flags+0x6e4/0x830
[  117.187773][ T6069]  ? __pfx___bch2_read_super+0x10/0x10
[  117.193277][ T6069]  ? __bch2_darray_resize+0x174/0x200
[  117.198721][ T6069]  ? rcu_is_watching+0x15/0xb0
[  117.203497][ T6069]  ? __bch2_darray_resize+0x174/0x200
[  117.208861][ T6069]  bch2_fs_open+0x246/0xdf0
[  117.213374][ T6069]  ? __pfx_bch2_test_super+0x10/0x10
[  117.218662][ T6069]  ? kasan_save_track+0x51/0x80
[  117.223588][ T6069]  ? kasan_save_track+0x3f/0x80
[  117.228447][ T6069]  ? kasan_save_free_info+0x40/0x50
[  117.233703][ T6069]  ? poison_slab_object+0xe0/0x150
[  117.238912][ T6069]  ? __kasan_slab_free+0x37/0x60
[  117.244055][ T6069]  ? kfree+0x149/0x360
[  117.248579][ T6069]  ? sget+0x2b8/0x620
[  117.252591][ T6069]  ? bch2_fs_get_tree+0x67c/0x1700
[  117.257696][ T6069]  ? vfs_get_tree+0x90/0x2a0
[  117.262284][ T6069]  ? do_new_mount+0x2be/0xb40
[  117.267050][ T6069]  ? __se_sys_mount+0x2d6/0x3c0
[  117.271886][ T6069]  ? do_syscall_64+0xf3/0x230
[  117.276548][ T6069]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.282615][ T6069]  ? __pfx_bch2_fs_open+0x10/0x10
[  117.287651][ T6069]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  117.294004][ T6069]  ? __pfx_bch2_test_super+0x10/0x10
[  117.299308][ T6069]  ? sget+0x2b8/0x620
[  117.303307][ T6069]  ? __pfx_bch2_noset_super+0x10/0x10
[  117.308696][ T6069]  bch2_fs_get_tree+0x731/0x1700
[  117.313749][ T6069]  ? __pfx_bch2_parse_one_mount_opt+0x10/0x10
[  117.319909][ T6069]  ? __pfx_bch2_fs_get_tree+0x10/0x10
[  117.325552][ T6069]  ? smack_fs_context_parse_param+0xff/0x170
[  117.331906][ T6069]  ? generic_parse_monolithic+0x387/0x400
[  117.337915][ T6069]  ? cap_capable+0x1b4/0x250
[  117.342590][ T6069]  ? bpf_lsm_capable+0x9/0x10
[  117.347892][ T6069]  vfs_get_tree+0x90/0x2a0
[  117.352388][ T6069]  do_new_mount+0x2be/0xb40
[  117.357127][ T6069]  ? __pfx_do_new_mount+0x10/0x10
[  117.362150][ T6069]  __se_sys_mount+0x2d6/0x3c0
[  117.366813][ T6069]  ? __pfx___se_sys_mount+0x10/0x10
[  117.372067][ T6069]  ? exc_page_fault+0x590/0x8c0
[  117.376921][ T6069]  ? __x64_sys_mount+0x20/0xc0
[  117.381701][ T6069]  do_syscall_64+0xf3/0x230
[  117.386390][ T6069]  ? clear_bhb_loop+0x35/0x90
[  117.391231][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.397417][ T6069] RIP: 0033:0x7f1fdad7899a
[  117.401927][ T6069] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.423556][ T6069] RSP: 002b:00007f1fdbb5be78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  117.431993][ T6069] RAX: ffffffffffffffda RBX: 00007f1fdbb5bf00 RCX: 00007f1fdad7899a
[  117.440063][ T6069] RDX: 0000000020005b00 RSI: 0000000020005b40 RDI: 00007f1fdbb5bec0
[  117.448176][ T6069] RBP: 0000000020005b00 R08: 00007f1fdbb5bf00 R09: 0000000000000000
[  117.456277][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020005b40
[  117.464430][ T6069] R13: 00007f1fdbb5bec0 R14: 0000000000005b78 R15: 0000000020000140
[  117.472509][ T6069]  </TASK>
[  117.475620][ T6069] 
[  117.477934][ T6069] Allocated by task 6069:
[  117.482273][ T6069]  kasan_save_track+0x3f/0x80
[  117.486937][ T6069]  __kasan_kmalloc+0x98/0xb0
[  117.491517][ T6069]  __kmalloc_node_track_caller_noprof+0x225/0x440
[  117.497946][ T6069]  krealloc_noprof+0x7d/0x120
[  117.502695][ T6069]  bch2_sb_realloc+0x2d2/0x660
[  117.507529][ T6069]  read_one_super+0x73b/0xf40
[  117.512205][ T6069]  __bch2_read_super+0x873/0x1370
[  117.517210][ T6069]  bch2_fs_open+0x246/0xdf0
[  117.521795][ T6069]  bch2_fs_get_tree+0x731/0x1700
[  117.526743][ T6069]  vfs_get_tree+0x90/0x2a0
[  117.531145][ T6069]  do_new_mount+0x2be/0xb40
[  117.535634][ T6069]  __se_sys_mount+0x2d6/0x3c0
[  117.540377][ T6069]  do_syscall_64+0xf3/0x230
[  117.544894][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.550974][ T6069] 
[  117.553303][ T6069] The buggy address belongs to the object at ffff888023770000
[  117.553303][ T6069]  which belongs to the cache kmalloc-8k of size 8192
[  117.567520][ T6069] The buggy address is located 0 bytes to the right of
[  117.567520][ T6069]  allocated 8192-byte region [ffff888023770000, ffff888023772000)
[  117.582198][ T6069] 
[  117.584502][ T6069] The buggy address belongs to the physical page:
[  117.591018][ T6069] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x23770
[  117.599768][ T6069] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  117.608268][ T6069] ksm flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  117.616422][ T6069] page_type: 0xfdffffff(slab)
[  117.621099][ T6069] raw: 00fff00000000040 ffff888015442280 ffffea0001ec0600 dead000000000003
[  117.629688][ T6069] raw: 0000000000000000 0000000080020002 00000001fdffffff 0000000000000000
[  117.638475][ T6069] head: 00fff00000000040 ffff888015442280 ffffea0001ec0600 dead000000000003
[  117.647687][ T6069] head: 0000000000000000 0000000080020002 00000001fdffffff 0000000000000000
[  117.656439][ T6069] head: 00fff00000000003 ffffea00008ddc01 ffffffffffffffff 0000000000000000
[  117.665095][ T6069] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  117.674107][ T6069] page dumped because: kasan: bad access detected
[  117.680519][ T6069] page_owner tracks the page as allocated
[  117.686308][ T6069] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d28c0(GFP_NOWAIT|__GFP_IO|__GFP_FS|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 4881, tgid 4881 (dhcpcd), ts 82381306109, free_ts 82253615002
[  117.708466][ T6069]  post_alloc_hook+0x1f3/0x230
[  117.713260][ T6069]  get_page_from_freelist+0x2e4c/0x2f10
[  117.718803][ T6069]  __alloc_pages_noprof+0x256/0x6c0
[  117.723990][ T6069]  alloc_slab_page+0x5f/0x120
[  117.728656][ T6069]  allocate_slab+0x5a/0x2f0
[  117.733191][ T6069]  ___slab_alloc+0xcd1/0x14b0
[  117.737862][ T6069]  __slab_alloc+0x58/0xa0
[  117.742271][ T6069]  __kmalloc_node_track_caller_noprof+0x281/0x440
[  117.748843][ T6069]  kmalloc_reserve+0x111/0x2a0
[  117.753792][ T6069]  __alloc_skb+0x1f3/0x440
[  117.758208][ T6069]  netlink_dump+0x1f7/0xd80
[  117.762704][ T6069]  netlink_recvmsg+0x6bb/0x11d0
[  117.767563][ T6069]  sock_recvmsg+0x22f/0x280
[  117.772086][ T6069]  ____sys_recvmsg+0x1db/0x470
[  117.776964][ T6069]  __sys_recvmsg+0x2f0/0x3e0
[  117.781654][ T6069]  do_syscall_64+0xf3/0x230
[  117.786159][ T6069] page last free pid 3021 tgid 3021 stack trace:
[  117.792470][ T6069]  free_unref_page+0xd19/0xea0
[  117.797225][ T6069]  __put_partials+0xeb/0x130
[  117.801813][ T6069]  put_cpu_partial+0x17c/0x250
[  117.806566][ T6069]  __slab_free+0x2ea/0x3d0
[  117.810978][ T6069]  qlist_free_all+0x9e/0x140
[  117.815581][ T6069]  kasan_quarantine_reduce+0x14f/0x170
[  117.821044][ T6069]  __kasan_slab_alloc+0x23/0x80
[  117.825912][ T6069]  kmem_cache_alloc_node_noprof+0x16b/0x320
[  117.831899][ T6069]  __alloc_skb+0x1c3/0x440
[  117.836307][ T6069]  inet_netconf_notify_devconf+0x15a/0x220
[  117.842214][ T6069]  inetdev_event+0x839/0x15c0
[  117.847007][ T6069]  notifier_call_chain+0x19f/0x3e0
[  117.852131][ T6069]  unregister_netdevice_many_notify+0xd81/0x1c40
[  117.858468][ T6069]  cleanup_net+0x75d/0xcc0
[  117.862873][ T6069]  process_scheduled_works+0xa2c/0x1830
[  117.868422][ T6069]  worker_thread+0x86d/0xd40
[  117.873020][ T6069] 
[  117.875429][ T6069] Memory state around the buggy address:
[  117.881150][ T6069]  ffff888023771f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  117.889265][ T6069]  ffff888023771f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  117.897401][ T6069] >ffff888023772000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  117.905449][ T6069]                    ^
[  117.909615][ T6069]  ffff888023772080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  117.917697][ T6069]  ffff888023772100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  117.925836][ T6069] ==================================================================
[  117.990447][ T6069] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  117.997696][ T6069] CPU: 1 UID: 0 PID: 6069 Comm: syz.0.15 Not tainted 6.11.0-rc2-syzkaller-00111-gee9a43b7cfe2 #0
[  118.008230][ T6069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  118.018389][ T6069] Call Trace:
[  118.021694][ T6069]  <TASK>
[  118.024616][ T6069]  dump_stack_lvl+0x241/0x360
[  118.029284][ T6069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.034483][ T6069]  ? __pfx__printk+0x10/0x10
[  118.039161][ T6069]  ? preempt_schedule+0xe1/0xf0
[  118.044007][ T6069]  ? vscnprintf+0x5d/0x90
[  118.048341][ T6069]  panic+0x349/0x860
[  118.052586][ T6069]  ? check_panic_on_warn+0x21/0xb0
[  118.057721][ T6069]  ? __pfx_panic+0x10/0x10
[  118.062144][ T6069]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  118.068136][ T6069]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  118.074553][ T6069]  ? print_report+0x502/0x550
[  118.079221][ T6069]  check_panic_on_warn+0x86/0xb0
[  118.084149][ T6069]  ? journal_entry_dev_usage_to_text+0x109/0x1d0
[  118.090647][ T6069]  end_report+0x77/0x160
[  118.094926][ T6069]  kasan_report+0x154/0x180
[  118.099418][ T6069]  ? journal_entry_dev_usage_to_text+0x109/0x1d0
[  118.105744][ T6069]  journal_entry_dev_usage_to_text+0x109/0x1d0
[  118.111921][ T6069]  bch2_sb_clean_to_text+0x138/0x240
[  118.117233][ T6069]  bch2_sb_field_validate+0x201/0x2e0
[  118.122605][ T6069]  ? __pfx_bch2_sb_field_validate+0x10/0x10
[  118.128672][ T6069]  ? BCH_SB_BACKGROUND_COMPRESSION_TYPE+0x1b/0x80
[  118.135089][ T6069]  ? bch2_opt_validate+0x2ca/0x300
[  118.140195][ T6069]  bch2_sb_validate+0xb4b/0xef0
[  118.145035][ T6069]  ? blk_status_to_errno+0x22/0x80
[  118.150146][ T6069]  ? __pfx_bch2_sb_validate+0x10/0x10
[  118.155505][ T6069]  ? bch2_sb_compatible+0x5fe/0xf00
[  118.160748][ T6069]  ? read_one_super+0x65a/0xf40
[  118.165586][ T6069]  ? read_one_super+0xe23/0xf40
[  118.170533][ T6069]  ? bch2_sb_realloc+0x422/0x660
[  118.175465][ T6069]  ? kfree+0x4e/0x360
[  118.179531][ T6069]  ? __pfx_read_one_super+0x10/0x10
[  118.184750][ T6069]  ? __pfx_bch2_sb_realloc+0x10/0x10
[  118.190149][ T6069]  ? bdev_file_open_by_path+0x385/0x480
[  118.195707][ T6069]  ? __pfx_bdev_file_open_by_path+0x10/0x10
[  118.201607][ T6069]  ? trace_kmalloc+0x1f/0xd0
[  118.206212][ T6069]  ? __asan_memcpy+0x40/0x70
[  118.210794][ T6069]  __bch2_read_super+0xc1b/0x1370
[  118.215822][ T6069]  ? stack_depot_save_flags+0x6e4/0x830
[  118.221446][ T6069]  ? __pfx___bch2_read_super+0x10/0x10
[  118.227028][ T6069]  ? __bch2_darray_resize+0x174/0x200
[  118.232437][ T6069]  ? rcu_is_watching+0x15/0xb0
[  118.237341][ T6069]  ? __bch2_darray_resize+0x174/0x200
[  118.242734][ T6069]  bch2_fs_open+0x246/0xdf0
[  118.247360][ T6069]  ? __pfx_bch2_test_super+0x10/0x10
[  118.252649][ T6069]  ? kasan_save_track+0x51/0x80
[  118.257593][ T6069]  ? kasan_save_track+0x3f/0x80
[  118.262451][ T6069]  ? kasan_save_free_info+0x40/0x50
[  118.267648][ T6069]  ? poison_slab_object+0xe0/0x150
[  118.272746][ T6069]  ? __kasan_slab_free+0x37/0x60
[  118.277671][ T6069]  ? kfree+0x149/0x360
[  118.281737][ T6069]  ? sget+0x2b8/0x620
[  118.285706][ T6069]  ? bch2_fs_get_tree+0x67c/0x1700
[  118.290987][ T6069]  ? vfs_get_tree+0x90/0x2a0
[  118.295564][ T6069]  ? do_new_mount+0x2be/0xb40
[  118.300334][ T6069]  ? __se_sys_mount+0x2d6/0x3c0
[  118.305174][ T6069]  ? do_syscall_64+0xf3/0x230
[  118.309857][ T6069]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.315965][ T6069]  ? __pfx_bch2_fs_open+0x10/0x10
[  118.320999][ T6069]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  118.327328][ T6069]  ? __pfx_bch2_test_super+0x10/0x10
[  118.332612][ T6069]  ? sget+0x2b8/0x620
[  118.336597][ T6069]  ? __pfx_bch2_noset_super+0x10/0x10
[  118.341955][ T6069]  bch2_fs_get_tree+0x731/0x1700
[  118.346982][ T6069]  ? __pfx_bch2_parse_one_mount_opt+0x10/0x10
[  118.353045][ T6069]  ? __pfx_bch2_fs_get_tree+0x10/0x10
[  118.358402][ T6069]  ? smack_fs_context_parse_param+0xff/0x170
[  118.364531][ T6069]  ? generic_parse_monolithic+0x387/0x400
[  118.370264][ T6069]  ? cap_capable+0x1b4/0x250
[  118.374853][ T6069]  ? bpf_lsm_capable+0x9/0x10
[  118.379519][ T6069]  vfs_get_tree+0x90/0x2a0
[  118.383932][ T6069]  do_new_mount+0x2be/0xb40
[  118.388511][ T6069]  ? __pfx_do_new_mount+0x10/0x10
[  118.393535][ T6069]  __se_sys_mount+0x2d6/0x3c0
[  118.398200][ T6069]  ? __pfx___se_sys_mount+0x10/0x10
[  118.403391][ T6069]  ? exc_page_fault+0x590/0x8c0
[  118.408284][ T6069]  ? __x64_sys_mount+0x20/0xc0
[  118.413139][ T6069]  do_syscall_64+0xf3/0x230
[  118.417896][ T6069]  ? clear_bhb_loop+0x35/0x90
[  118.422560][ T6069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.428471][ T6069] RIP: 0033:0x7f1fdad7899a
[  118.432886][ T6069] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.452834][ T6069] RSP: 002b:00007f1fdbb5be78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  118.461326][ T6069] RAX: ffffffffffffffda RBX: 00007f1fdbb5bf00 RCX: 00007f1fdad7899a
[  118.469286][ T6069] RDX: 0000000020005b00 RSI: 0000000020005b40 RDI: 00007f1fdbb5bec0
[  118.477334][ T6069] RBP: 0000000020005b00 R08: 00007f1fdbb5bf00 R09: 0000000000000000
[  118.485395][ T6069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020005b40
[  118.493512][ T6069] R13: 00007f1fdbb5bec0 R14: 0000000000005b78 R15: 0000000020000140
[  118.501679][ T6069]  </TASK>
[  118.504927][ T6069] Kernel Offset: disabled
[  118.509377][ T6069] Rebooting in 86400 seconds..