Warning: Permanently added '10.128.0.13' (ED25519) to the list of known hosts.
2026/05/08 12:16:04 parsed 1 programs
[ 145.053686][ T6102] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 150.350665][ T6134] bridge0: port 1(bridge_slave_0) entered blocking state
[ 150.350808][ T6134] bridge0: port 1(bridge_slave_0) entered disabled state
[ 150.350942][ T6134] bridge_slave_0: entered allmulticast mode
[ 150.355191][ T6134] bridge_slave_0: entered promiscuous mode
[ 150.357306][ T6134] bridge0: port 2(bridge_slave_1) entered blocking state
[ 150.357420][ T6134] bridge0: port 2(bridge_slave_1) entered disabled state
[ 150.357508][ T6134] bridge_slave_1: entered allmulticast mode
[ 150.358864][ T6134] bridge_slave_1: entered promiscuous mode
[ 150.573963][ T6134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 150.577087][ T6134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 150.711983][ T6134] team0: Port device team_slave_0 added
[ 150.713966][ T6134] team0: Port device team_slave_1 added
[ 150.861746][ T6134] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 150.861762][ T6134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.861785][ T6134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 150.863684][ T6134] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 150.863697][ T6134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.863718][ T6134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 151.174975][ T6134] hsr_slave_0: entered promiscuous mode
[ 151.176672][ T6134] hsr_slave_1: entered promiscuous mode
[ 153.042989][ T6134] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 153.075495][ T6134] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 153.077526][ T6134] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 153.115629][ T6134] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 153.117615][ T6134] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 153.154251][ T6134] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 153.155413][ T6134] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 153.190422][ T6134] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 153.367781][ T6134] 8021q: adding VLAN 0 to HW filter on device bond0
[ 153.408945][ T6134] 8021q: adding VLAN 0 to HW filter on device team0
[ 153.421188][ T2485] bridge0: port 1(bridge_slave_0) entered blocking state
[ 153.421359][ T2485] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 153.447331][ T2485] bridge0: port 2(bridge_slave_1) entered blocking state
[ 153.447495][ T2485] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 154.144300][ T6134] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 154.270113][ T6134] veth0_vlan: entered promiscuous mode
[ 154.301447][ T6134] veth1_vlan: entered promiscuous mode
[ 154.388978][ T6134] veth0_macvtap: entered promiscuous mode
[ 154.416725][ T6134] veth1_macvtap: entered promiscuous mode
[ 154.518561][ T6134] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 154.553722][ T6134] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 154.610389][ T100] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.613852][ T100] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.640483][ T100] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.640706][ T100] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 155.330270][ T4910] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 155.353842][ T4910] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 155.354945][ T4910] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 155.356726][ T4910] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 155.358049][ T4910] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 155.598398][ T55] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.098362][ T55] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.498636][ T55] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.820469][ T55] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 157.709526][ T55] bridge_slave_1: left allmulticast mode
[ 157.709548][ T55] bridge_slave_1: left promiscuous mode
[ 157.709943][ T55] bridge0: port 2(bridge_slave_1) entered disabled state
[ 157.790241][ T55] bridge_slave_0: left allmulticast mode
[ 157.790264][ T55] bridge_slave_0: left promiscuous mode
[ 157.793232][ T55] bridge0: port 1(bridge_slave_0) entered disabled state
[ 158.429861][ T55] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 158.509940][ T55] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 158.531072][ T55] bond0 (unregistering): Released all slaves
[ 158.879360][ T55] hsr_slave_0: left promiscuous mode
[ 158.919364][ T55] hsr_slave_1: left promiscuous mode
[ 158.920389][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 158.920413][ T55] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 158.960664][ T55] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 158.960690][ T55] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 159.042846][ T55] veth1_macvtap: left promiscuous mode
[ 159.042953][ T55] veth0_macvtap: left promiscuous mode
[ 159.043187][ T55] veth1_vlan: left promiscuous mode
[ 159.043347][ T55] veth0_vlan: left promiscuous mode
[ 159.679852][ T55] team0 (unregistering): Port device team_slave_1 removed
[ 159.720840][ T55] team0 (unregistering): Port device team_slave_0 removed
[ 159.894579][ T5255] 8021q: adding VLAN 0 to HW filter on device eth1
[ 160.134428][ T1233] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 160.134447][ T1233] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 160.268762][ T1233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 160.268781][ T1233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 160.656852][ T5255] 8021q: adding VLAN 0 to HW filter on device eth2
[ 161.756408][ T5255] 8021q: adding VLAN 0 to HW filter on device eth3
[ 162.453351][ T5255] 8021q: adding VLAN 0 to HW filter on device eth4
2026/05/08 12:16:26 executed programs: 0
[ 163.011306][ T4910] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 163.046029][ T4910] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 163.056049][ T4910] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 163.070762][ T4910] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 163.071888][ T4910] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 164.188146][ T6441] bridge0: port 1(bridge_slave_0) entered blocking state
[ 164.188280][ T6441] bridge0: port 1(bridge_slave_0) entered disabled state
[ 164.188407][ T6441] bridge_slave_0: entered allmulticast mode
[ 164.194306][ T6441] bridge_slave_0: entered promiscuous mode
[ 164.201358][ T6441] bridge0: port 2(bridge_slave_1) entered blocking state
[ 164.201516][ T6441] bridge0: port 2(bridge_slave_1) entered disabled state
[ 164.201673][ T6441] bridge_slave_1: entered allmulticast mode
[ 164.204378][ T6441] bridge_slave_1: entered promiscuous mode
[ 164.383904][ T6441] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 164.387988][ T6441] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 164.776074][ T6441] team0: Port device team_slave_0 added
[ 164.784922][ T6441] team0: Port device team_slave_1 added
[ 164.951965][ T6441] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 164.951981][ T6441] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 164.951994][ T6441] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 164.953180][ T6441] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 164.953192][ T6441] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 164.953209][ T6441] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 165.109422][ T60] Bluetooth: hci0: command tx timeout
[ 165.214008][ T6441] hsr_slave_0: entered promiscuous mode
[ 165.214731][ T6441] hsr_slave_1: entered promiscuous mode
[ 167.042608][ T6441] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 167.087660][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 167.089031][ T6441] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 167.133718][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 167.135062][ T6441] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 167.188932][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 167.189301][ T60] Bluetooth: hci0: command tx timeout
[ 167.210401][ T6441] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 167.232833][ T6441] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 167.415338][ T6441] 8021q: adding VLAN 0 to HW filter on device bond0
[ 167.447300][ T6441] 8021q: adding VLAN 0 to HW filter on device team0
[ 167.468119][ T100] bridge0: port 1(bridge_slave_0) entered blocking state
[ 167.468318][ T100] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 167.501023][ T100] bridge0: port 2(bridge_slave_1) entered blocking state
[ 167.501171][ T100] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 168.128883][ T6441] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 168.204886][ T6441] veth0_vlan: entered promiscuous mode
[ 168.233930][ T6441] veth1_vlan: entered promiscuous mode
[ 168.310041][ T6441] veth0_macvtap: entered promiscuous mode
[ 168.330024][ T6441] veth1_macvtap: entered promiscuous mode
[ 168.375594][ T6441] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 168.398091][ T6441] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 168.431213][ T55] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.432569][ T55] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.435463][ T55] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.436125][ T55] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.860424][ T100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 168.860444][ T100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 168.970465][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 168.970485][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 12:16:32 executed programs: 2
[ 169.269305][ T60] Bluetooth: hci0: command tx timeout
[ 169.591131][ T6582] loop0: detected capacity change from 0 to 32768
[ 169.773796][ T6582] Bad index:0 in slot in dtroot
[ 169.773796][ T6582]
[ 169.773816][ T6582] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 169.773816][ T6582]
[ 169.777722][ T6582] ERROR: (device loop0): remounting filesystem as read-only
[ 170.331570][ T6599] loop0: detected capacity change from 0 to 32768
[ 170.372410][ T6599] Bad index:0 in slot in dtroot
[ 170.372410][ T6599]
[ 170.372428][ T6599] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 170.372428][ T6599]
[ 170.374686][ T6599] ERROR: (device loop0): remounting filesystem as read-only
[ 170.737937][ T6601] loop0: detected capacity change from 0 to 32768
[ 170.765905][ T6601] Bad index:0 in slot in dtroot
[ 170.765905][ T6601]
[ 170.765921][ T6601] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 170.765921][ T6601]
[ 170.766121][ T6601] ERROR: (device loop0): remounting filesystem as read-only
[ 171.104900][ T6603] loop0: detected capacity change from 0 to 32768
[ 171.146975][ T6603] Bad index:0 in slot in dtroot
[ 171.146975][ T6603]
[ 171.146991][ T6603] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 171.146991][ T6603]
[ 171.147190][ T6603] ERROR: (device loop0): remounting filesystem as read-only
[ 171.354578][ T60] Bluetooth: hci0: command tx timeout
[ 171.478164][ T6605] loop0: detected capacity change from 0 to 32768
[ 171.506607][ T6605] Bad index:0 in slot in dtroot
[ 171.506607][ T6605]
[ 171.506624][ T6605] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 171.506624][ T6605]
[ 171.506900][ T6605] ERROR: (device loop0): remounting filesystem as read-only
[ 171.828134][ T6607] loop0: detected capacity change from 0 to 32768
[ 171.857272][ T6607] Bad index:0 in slot in dtroot
[ 171.857272][ T6607]
[ 171.857289][ T6607] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 171.857289][ T6607]
[ 171.857586][ T6607] ERROR: (device loop0): remounting filesystem as read-only
[ 172.203011][ T6609] loop0: detected capacity change from 0 to 32768
[ 172.232109][ T6609] Bad index:0 in slot in dtroot
[ 172.232109][ T6609]
[ 172.232127][ T6609] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 172.232127][ T6609]
[ 172.233931][ T6609] ERROR: (device loop0): remounting filesystem as read-only
[ 172.569568][ T6611] loop0: detected capacity change from 0 to 32768
[ 172.591799][ T6611] Bad index:0 in slot in dtroot
[ 172.591799][ T6611]
[ 172.591813][ T6611] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 172.591813][ T6611]
[ 172.592057][ T6611] ERROR: (device loop0): remounting filesystem as read-only
[ 172.937881][ T6613] loop0: detected capacity change from 0 to 32768
[ 172.946687][ T6613] Bad index:0 in slot in dtroot
[ 172.946687][ T6613]
[ 172.946710][ T6613] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 172.946710][ T6613]
[ 172.946971][ T6613] ERROR: (device loop0): remounting filesystem as read-only
[ 173.290495][ T6615] loop0: detected capacity change from 0 to 32768
[ 173.310841][ T6615] Bad index:0 in slot in dtroot
[ 173.310841][ T6615]
[ 173.310854][ T6615] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 173.310854][ T6615]
[ 173.311067][ T6615] ERROR: (device loop0): remounting filesystem as read-only
[ 173.672095][ T6617] Bad index:0 in slot in dtroot
[ 173.672095][ T6617]
[ 173.672110][ T6617] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 173.672110][ T6617]
[ 173.672358][ T6617] ERROR: (device loop0): remounting filesystem as read-only
[ 174.009763][ T6619] Bad index:0 in slot in dtroot
[ 174.009763][ T6619]
[ 174.009778][ T6619] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 174.009778][ T6619]
[ 174.010015][ T6619] ERROR: (device loop0): remounting filesystem as read-only
[ 174.393812][ T6621] Bad index:0 in slot in dtroot
[ 174.393812][ T6621]
[ 174.393828][ T6621] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 174.393828][ T6621]
[ 174.394110][ T6621] ERROR: (device loop0): remounting filesystem as read-only
[ 174.428490][ C1] ==================================================================
[ 174.428506][ [ 174.428506][ C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 174.428538][ C1] Read of size 4 at addr ffff88802a037608 by task ksoftirqd/1/30
[ 174.428555][ C1]
[ 174.428584][ C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 174.428613][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 174.428631][ C1] Call Trace:
[ 174.428639][ C1]
[ 174.428647][ C1] dump_stack_lvl+0xe8/0x150
[ 174.428670][ C1] print_address_description+0x55/0x1e0
[ 174.428694][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.428717][ C1] print_report+0x58/0x70
[ 174.428736][ C1] kasan_report+0x117/0x150
[ 174.428759][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.428784][ C1] lbmIODone+0x1312/0x16c0
[ 174.428807][ C1] ? blkg_put+0x22/0x240
[ 174.428824][ C1] ? blkg_put+0x22/0x240
[ 174.428841][ C1] ? blkg_put+0x18d/0x240
[ 174.428857][ C1] ? bio_endio+0x989/0x9d0
[ 174.428879][ C1] blk_update_request+0x57e/0xe60
[ 174.428905][ C1] blk_mq_end_request+0x3e/0x70
[ 174.428924][ C1] blk_done_softirq+0x10a/0x160
[ 174.428944][ C1] handle_softirqs+0x1de/0x6d0
[ 174.428968][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 174.428989][ C1] run_ksoftirqd+0x52/0x180
[ 174.429009][ C1] smpboot_thread_fn+0x541/0xa50
[ 174.429030][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 174.429055][ C1] kthread+0x388/0x470
[ 174.429077][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 174.429097][ C1] ? __pfx_kthread+0x10/0x10
[ 174.429118][ C1] ret_from_fork+0x514/0xb70
[ 174.429140][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 174.429161][ C1] ? __switch_to+0xc79/0x1410
[ 174.429184][ C1] ? __pfx_kthread+0x10/0x10
[ 174.429206][ C1] ret_from_fork_asm+0x1a/0x30
[ 174.429232][ C1]
[ 174.429238][ C1]
[ 174.429249][ C1] Allocated by task 6621:
[ 174.429258][ C1] kasan_save_track+0x3e/0x80
[ 174.429275][ C1] __kasan_kmalloc+0x93/0xb0
[ 174.429291][ C1] __kmalloc_cache_noprof+0x3a6/0x690
[ 174.429309][ C1] lmLogInit+0x3e5/0x1a00
[ 174.429328][ C1] lmLogOpen+0x4e1/0xfa0
[ 174.429346][ C1] jfs_mount_rw+0xee/0x670
[ 174.429365][ C1] jfs_fill_super+0x754/0xd80
[ 174.429380][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 174.429400][ C1] vfs_get_tree+0x92/0x2a0
[ 174.429416][ C1] do_new_mount+0x341/0xd30
[ 174.429436][ C1] __se_sys_mount+0x31d/0x420
[ 174.429458][ C1] do_syscall_64+0x15f/0xf80
[ 174.429478][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 174.429495][ C1]
[ 174.429499][ C1] Freed by task 6621:
[ 174.429508][ C1] kasan_save_track+0x3e/0x80
[ 174.429524][ C1] kasan_save_free_info+0x46/0x50
[ 174.429547][ C1] __kasan_slab_free+0x5c/0x80
[ 174.429563][ C1] kfree+0x1c5/0x6c0
[ 174.429578][ C1] lmLogShutdown+0x456/0x850
[ 174.429607][ C1] lmLogClose+0x28a/0x520
[ 174.429627][ C1] jfs_umount+0x2fb/0x3d0
[ 174.429645][ C1] jfs_fill_super+0x9c5/0xd80
[ 174.429660][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 174.429677][ C1] vfs_get_tree+0x92/0x2a0
[ 174.429695][ C1] do_new_mount+0x341/0xd30
[ 174.429717][ C1] __se_sys_mount+0x31d/0x420
[ 174.429739][ C1] do_syscall_64+0x15f/0xf80
[ 174.429758][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 174.429775][ C1]
[ 174.429784][ C1] The buggy address belongs to the object at ffff88802a037600
[ 174.429784][ C1] which belongs to the cache kmalloc-256 of size 256
[ 174.429800][ C1] The buggy address is located 8 bytes inside of
[ 174.429800][ C1] freed 256-byte region [ffff88802a037600, ffff88802a037700)
[ 174.429819][ C1]
[ 174.429824][ C1] The buggy address belongs to the physical page:
[ 174.429843][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802a037c00 pfn:0x2a036
[ 174.429863][ C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 174.429879][ C1] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[ 174.429900][ C1] page_type: f5(slab)
[ 174.429918][ C1] raw: 0080000000000240 ffff88801a010b40 ffff88801a00b988 ffffea0000c6f610
[ 174.429934][ C1] raw: ffff88802a037c00 000000080010000e 00000000f5000000 0000000000000000
[ 174.429951][ C1] head: 0080000000000240 ffff88801a010b40 ffff88801a00b988 ffffea0000c6f610
[ 174.429966][ C1] head: ffff88802a037c00 000000080010000e 00000000f5000000 0000000000000000
[ 174.429981][ C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 174.429996][ C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 174.430005][ C1] page dumped because: kasan: bad access detected
[ 174.430021][ C1] page_owner tracks the page as allocated
[ 174.430028][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4960, tgid 4960 (udevd), ts 174009020020, free_ts 173327807075
[ 174.430060][ C1] post_alloc_hook+0x231/0x280
[ 174.430079][ C1] get_page_from_freelist+0x27c8/0x2840
[ 174.430100][ C1] __alloc_frozen_pages_noprof+0x18d/0x380
[ 174.430121][ C1] allocate_slab+0x77/0x660
[ 174.430143][ C1] refill_objects+0x33c/0x3d0
[ 174.430163][ C1] __pcs_replace_empty_main+0x373/0x720
[ 174.430185][ C1] __kmalloc_cache_noprof+0x44e/0x690
[ 174.430202][ C1] smk_fetch+0x95/0x140
[ 174.430218][ C1] smack_d_instantiate+0x89c/0x990
[ 174.430240][ C1] security_d_instantiate+0x106/0x1d0
[ 174.430258][ C1] d_splice_alias_ops+0x71/0x3e0
[ 174.430278][ C1] __lookup_slow+0x2d2/0x440
[ 174.430293][ C1] lookup_slow+0x53/0x70
[ 174.430308][ C1] path_lookupat+0x3f5/0x8c0
[ 174.430332][ C1] filename_lookup+0x256/0x5d0
[ 174.430352][ C1] do_readlinkat+0xe3/0x510
[ 174.430367][ C1] page last free pid 6107 tgid 6107 stack trace:
[ 174.430377][ C1] __free_frozen_pages+0xfa6/0x10f0
[ 174.430395][ C1] __slab_free+0x252/0x2a0
[ 174.430411][ C1] qlist_free_all+0x99/0x100
[ 174.430425][ C1] kasan_quarantine_reduce+0x148/0x160
[ 174.430439][ C1] __kasan_slab_alloc+0x22/0x80
[ 174.430455][ C1] kmem_cache_alloc_noprof+0x33b/0x680
[ 174.430471][ C1] __anon_vma_prepare+0xcb/0x4a0
[ 174.430486][ C1] do_pte_missing+0x1d67/0x2950
[ 174.430505][ C1] handle_mm_fault+0xd0a/0x13c0
[ 174.430521][ C1] do_user_addr_fault+0x75b/0x1340
[ 174.430538][ C1] exc_page_fault+0x6a/0xc0
[ 174.430555][ C1] asm_exc_page_fault+0x26/0x30
[ 174.430570][ C1]
[ 174.430575][ C1] Memory state around the buggy address:
[ 174.430585][ C1] ffff88802a037500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 174.430608][ C1] ffff88802a037580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 174.430619][ C1] >ffff88802a037600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 174.430627][ C1] ^
[ 174.430636][ C1] ffff88802a037680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 174.430648][ C1] ffff88802a037700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 174.430657][ C1] ==================================================================
[ 174.439268][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 174.439288][ C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 174.439310][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 174.439321][ C1] Call Trace:
[ 174.439328][ C1]
[ 174.439336][ C1] vpanic+0x56c/0xa60
[ 174.439363][ C1] ? __pfx_vpanic+0x10/0x10
[ 174.439384][ C1] ? __pfx___schedule+0x10/0x10
[ 174.439406][ C1] panic+0xc5/0xd0
[ 174.439426][ C1] ? __pfx_panic+0x10/0x10
[ 174.439446][ C1] ? preempt_schedule_thunk+0x16/0x30
[ 174.439475][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.439497][ C1] check_panic_on_warn+0x89/0xb0
[ 174.439521][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.439543][ C1] end_report+0x73/0x170
[ 174.439563][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.439606][ C1] kasan_report+0x128/0x150
[ 174.439626][ C1] ? lbmIODone+0x1312/0x16c0
[ 174.439654][ C1] lbmIODone+0x1312/0x16c0
[ 174.439676][ C1] ? blkg_put+0x22/0x240
[ 174.439694][ C1] ? blkg_put+0x22/0x240
[ 174.439711][ C1] ? blkg_put+0x18d/0x240
[ 174.439728][ C1] ? bio_endio+0x989/0x9d0
[ 174.439749][ C1] blk_update_request+0x57e/0xe60
[ 174.439775][ C1] blk_mq_end_request+0x3e/0x70
[ 174.439795][ C1] blk_done_softirq+0x10a/0x160
[ 174.439816][ C1] handle_softirqs+0x1de/0x6d0
[ 174.439839][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 174.439859][ C1] run_ksoftirqd+0x52/0x180
[ 174.439881][ C1] smpboot_thread_fn+0x541/0xa50
[ 174.439902][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 174.439924][ C1] kthread+0x388/0x470
[ 174.439946][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 174.439966][ C1] ? __pfx_kthread+0x10/0x10
[ 174.439988][ C1] ret_from_fork+0x514/0xb70
[ 174.440008][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 174.440027][ C1] ? __switch_to+0xc79/0x1410
[ 174.440052][ C1] ? __pfx_kthread+0x10/0x10
[ 174.440074][ C1] ret_from_fork_asm+0x1a/0x30
[ 174.440102][ C1]
[ 174.440229][ C1] Kernel Offset: disabled