Warning: Permanently added '[localhost]:29806' (ED25519) to the list of known hosts.
2025/04/06 16:45:36 ignoring optional flag "sandboxArg"="0"
2025/04/06 16:45:36 parsed 1 programs
[  122.338270][ T5476] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  125.515838][ T5489] chnl_net:caif_netlink_parms(): no params data found
[  125.583063][ T5489] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.586091][ T5489] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.589080][ T5489] bridge_slave_0: entered allmulticast mode
[  125.594407][ T5489] bridge_slave_0: entered promiscuous mode
[  125.599085][ T5489] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.603305][ T5489] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.606289][ T5489] bridge_slave_1: entered allmulticast mode
[  125.610723][ T5489] bridge_slave_1: entered promiscuous mode
[  125.636520][ T5489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.644467][ T5489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.672610][ T5489] team0: Port device team_slave_0 added
[  125.677154][ T5489] team0: Port device team_slave_1 added
[  125.702246][ T5489] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.705024][ T5489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.716073][ T5489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.723168][ T5489] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.726243][ T5489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.739375][ T5489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.775579][ T5489] hsr_slave_0: entered promiscuous mode
[  125.778596][ T5489] hsr_slave_1: entered promiscuous mode
[  125.883946][ T5489] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.931364][ T5489] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.975436][ T5489] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.024500][ T5489] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.119008][ T5489] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  126.129211][ T5489] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  126.135302][ T5489] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  126.143826][ T5489] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  126.163967][ T5489] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.166903][ T5489] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.169966][ T5489] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.172815][ T5489] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.232474][ T5489] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.244633][ T1036] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.248176][ T1036] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.262905][ T5489] 8021q: adding VLAN 0 to HW filter on device team0
[  126.272971][   T47] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.275891][   T47] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.287435][ T1036] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.290465][ T1036] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.458107][ T5489] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.497366][ T5489] veth0_vlan: entered promiscuous mode
[  126.508460][ T5489] veth1_vlan: entered promiscuous mode
[  126.535219][ T5489] veth0_macvtap: entered promiscuous mode
[  126.543486][ T5489] veth1_macvtap: entered promiscuous mode
[  126.556212][ T5489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.563382][ T5489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.568382][ T5489] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.584078][ T5489] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.588400][ T5489] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.594325][ T5489] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.603281][ T5489] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.606951][ T5489] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.614024][ T5489] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.617608][ T5489] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.468218][ T1036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.471782][ T1036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.507531][ T1038] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.512108][ T1038] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.566613][ T4670] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  129.571445][ T5325] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  129.574790][ T5325] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  129.578504][ T5325] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  129.584345][ T5325] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/04/06 16:45:48 executed programs: 0
[  129.833635][ T5325] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  129.837734][ T5325] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  129.846339][ T5325] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  129.851834][ T5325] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  129.856739][ T5325] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  130.008585][ T5578] chnl_net:caif_netlink_parms(): no params data found
[  130.085253][ T5578] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.088222][ T5578] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.092146][ T5578] bridge_slave_0: entered allmulticast mode
[  130.095855][ T5578] bridge_slave_0: entered promiscuous mode
[  130.102285][ T5578] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.105218][ T5578] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.108255][ T5578] bridge_slave_1: entered allmulticast mode
[  130.113148][ T5578] bridge_slave_1: entered promiscuous mode
[  130.147112][ T5578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.154085][ T5578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  130.183918][ T5578] team0: Port device team_slave_0 added
[  130.188553][ T5578] team0: Port device team_slave_1 added
[  130.209335][ T5578] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.213284][ T5578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.225016][ T5578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.231823][ T5578] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.234720][ T5578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.246233][ T5578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.284610][ T5578] hsr_slave_0: entered promiscuous mode
[  130.287524][ T5578] hsr_slave_1: entered promiscuous mode
[  130.295426][ T5578] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  130.298530][ T5578] Cannot create hsr debugfs directory
[  130.403961][ T5578] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.452626][ T5578] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.492339][ T5578] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.536194][ T5578] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.638044][ T5578] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  130.648722][ T5578] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  130.655328][ T5578] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  130.662863][ T5578] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  130.685294][ T5578] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.688606][ T5578] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.691887][ T5578] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.694725][ T5578] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.705961][   T31] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.709479][   T31] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.772271][ T5578] 8021q: adding VLAN 0 to HW filter on device bond0
[  130.791173][ T5578] 8021q: adding VLAN 0 to HW filter on device team0
[  130.799612][ T1038] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.802586][ T1038] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.822756][ T1038] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.825676][ T1038] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.999452][ T5578] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.043575][ T5578] veth0_vlan: entered promiscuous mode
[  131.052361][ T5578] veth1_vlan: entered promiscuous mode
[  131.078190][ T5578] veth0_macvtap: entered promiscuous mode
[  131.088467][ T5578] veth1_macvtap: entered promiscuous mode
[  131.103652][ T5578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.107987][ T5578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.113191][ T5578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.117389][ T5578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.125136][ T5578] batman_adv: batadv0: Interface activated: batadv_slave_0
[  131.134576][ T5578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.138832][ T5578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.146338][ T5578] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.151012][ T5578] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.156409][ T5578] batman_adv: batadv0: Interface activated: batadv_slave_1
[  131.168112][ T5578] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.176136][ T5578] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.183110][ T5578] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.188583][ T5578] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.259197][   T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.265396][   T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.298311][ T1036] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.304807][ T1036] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.574028][ T5592] loop0: detected capacity change from 0 to 32768
[  131.640520][ T5592] loop0: detected capacity change from 32768 to 32767
[  131.643997][ T5592] 
[  131.645033][ T5592] ======================================================
[  131.647763][ T5592] WARNING: possible circular locking dependency detected
[  131.650518][ T5592] 6.14.0-syzkaller-13546-g16cd1c265776 #0 Not tainted
[  131.654186][ T5592] ------------------------------------------------------
[  131.657100][ T5592] syz.0.15/5592 is trying to acquire lock:
[  131.659452][ T5592] ffffffff904674c8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_net_broadcast+0x280/0x580
[  131.663852][ T5592] 
[  131.663852][ T5592] but task is already holding lock:
[  131.666844][ T5592] ffff888034ad1de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[  131.671049][ T5592] 
[  131.671049][ T5592] which lock already depends on the new lock.
[  131.671049][ T5592] 
[  131.675183][ T5592] 
[  131.675183][ T5592] the existing dependency chain (in reverse order) is:
[  131.678760][ T5592] 
[  131.678760][ T5592] -> #2 (&q->q_usage_counter(io)#17){++++}-{0:0}:
[  131.682238][ T5592]        lock_acquire+0x116/0x2f0
[  131.684254][ T5592]        blk_alloc_queue+0x542/0x620
[  131.686284][ T5592]        __blk_mq_alloc_disk+0x162/0x380
[  131.688582][ T5592]        loop_add+0x445/0xaf0
[  131.690489][ T5592]        loop_init+0x168/0x220
[  131.692439][ T5592]        do_one_initcall+0x24a/0x940
[  131.694575][ T5592]        do_initcall_level+0x157/0x210
[  131.696802][ T5592]        do_initcalls+0x71/0xd0
[  131.698804][ T5592]        kernel_init_freeable+0x432/0x5d0
[  131.701083][ T5592]        kernel_init+0x1d/0x2b0
[  131.702975][ T5592]        ret_from_fork+0x4b/0x80
[  131.705030][ T5592]        ret_from_fork_asm+0x1a/0x30
[  131.707240][ T5592] 
[  131.707240][ T5592] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  131.710067][ T5592]        lock_acquire+0x116/0x2f0
[  131.712040][ T5592]        fs_reclaim_acquire+0x88/0x130
[  131.714130][ T5592]        kmem_cache_alloc_node_noprof+0x4e/0x3b0
[  131.716597][ T5592]        __alloc_skb+0x1c2/0x480
[  131.718612][ T5592]        alloc_uevent_skb+0x74/0x230
[  131.720718][ T5592]        kobject_uevent_net_broadcast+0x2fd/0x580
[  131.723289][ T5592]        kobject_uevent_env+0x57d/0x8e0
[  131.725532][ T5592]        kobject_synth_uevent+0x4f4/0xaf0
[  131.727964][ T5592]        bus_uevent_store+0x116/0x170
[  131.730123][ T5592]        kernfs_fop_write_iter+0x398/0x510
[  131.732418][ T5592]        vfs_write+0x70f/0xd10
[  131.734266][ T5592]        ksys_write+0x19d/0x2d0
[  131.736225][ T5592]        do_syscall_64+0xf3/0x230
[  131.738225][ T5592]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.740748][ T5592] 
[  131.740748][ T5592] -> #0 (uevent_sock_mutex){+.+.}-{4:4}:
[  131.743920][ T5592]        validate_chain+0xa69/0x24e0
[  131.745992][ T5592]        __lock_acquire+0xad5/0xd80
[  131.748216][ T5592]        lock_acquire+0x116/0x2f0
[  131.750296][ T5592]        __mutex_lock+0x1a5/0x10c0
[  131.752380][ T5592]        kobject_uevent_net_broadcast+0x280/0x580
[  131.754992][ T5592]        kobject_uevent_env+0x57d/0x8e0
[  131.757293][ T5592]        set_capacity_and_notify+0x269/0x2d0
[  131.759952][ T5592]        loop_set_status+0x4a4/0xb20
[  131.762124][ T5592]        lo_ioctl+0xce1/0x2850
[  131.764091][ T5592]        blkdev_ioctl+0x5df/0x710
[  131.766365][ T5592]        __se_sys_ioctl+0xf1/0x160
[  131.768483][ T5592]        do_syscall_64+0xf3/0x230
[  131.770444][ T5592]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.772932][ T5592] 
[  131.772932][ T5592] other info that might help us debug this:
[  131.772932][ T5592] 
[  131.777028][ T5592] Chain exists of:
[  131.777028][ T5592]   uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#17
[  131.777028][ T5592] 
[  131.782419][ T5592]  Possible unsafe locking scenario:
[  131.782419][ T5592] 
[  131.785347][ T5592]        CPU0                    CPU1
[  131.787473][ T5592]        ----                    ----
[  131.789644][ T5592]   lock(&q->q_usage_counter(io)#17);
[  131.791776][ T5592]                                lock(fs_reclaim);
[  131.794364][ T5592]                                lock(&q->q_usage_counter(io)#17);
[  131.797557][ T5592]   lock(uevent_sock_mutex);
[  131.799419][ T5592] 
[  131.799419][ T5592]  *** DEADLOCK ***
[  131.799419][ T5592] 
[  131.802837][ T5592] 3 locks held by syz.0.15/5592:
[  131.804842][ T5592]  #0: ffff88803457f368 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2b/0xb20
[  131.808606][ T5592]  #1: ffff888034ad1de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: loop_set_status+0x223/0xb20
[  131.812888][ T5592]  #2: ffff888034ad1e20 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: loop_set_status+0x223/0xb20
[  131.817369][ T5592] 
[  131.817369][ T5592] stack backtrace:
[  131.819661][ T5592] CPU: 0 UID: 0 PID: 5592 Comm: syz.0.15 Not tainted 6.14.0-syzkaller-13546-g16cd1c265776 #0 PREEMPT(full) 
[  131.819672][ T5592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.819677][ T5592] Call Trace:
[  131.819681][ T5592]  <TASK>
[  131.819685][ T5592]  dump_stack_lvl+0x241/0x360
[  131.819699][ T5592]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.819707][ T5592]  ? __pfx__printk+0x10/0x10
[  131.819716][ T5592]  ? print_lock+0x171/0x1a0
[  131.819724][ T5592]  print_circular_bug+0x2e1/0x300
[  131.819733][ T5592]  check_noncircular+0x142/0x160
[  131.819742][ T5592]  validate_chain+0xa69/0x24e0
[  131.819749][ T5592]  ? __pfx_number+0x10/0x10
[  131.819762][ T5592]  __lock_acquire+0xad5/0xd80
[  131.819769][ T5592]  lock_acquire+0x116/0x2f0
[  131.819775][ T5592]  ? kobject_uevent_net_broadcast+0x280/0x580
[  131.819784][ T5592]  ? vsnprintf+0x1156/0x1230
[  131.819793][ T5592]  __mutex_lock+0x1a5/0x10c0
[  131.819802][ T5592]  ? kobject_uevent_net_broadcast+0x280/0x580
[  131.819812][ T5592]  ? __pfx_vsnprintf+0x10/0x10
[  131.819825][ T5592]  ? kobject_uevent_net_broadcast+0x280/0x580
[  131.819837][ T5592]  ? __pfx___mutex_lock+0x10/0x10
[  131.819847][ T5592]  ? add_uevent_var+0x291/0x490
[  131.819861][ T5592]  ? kobject_uevent_env+0x503/0x8e0
[  131.819872][ T5592]  ? __pfx_add_uevent_var+0x10/0x10
[  131.819881][ T5592]  kobject_uevent_net_broadcast+0x280/0x580
[  131.819891][ T5592]  kobject_uevent_env+0x57d/0x8e0
[  131.819900][ T5592]  set_capacity_and_notify+0x269/0x2d0
[  131.819910][ T5592]  ? __pfx_set_capacity_and_notify+0x10/0x10
[  131.819918][ T5592]  ? __asan_memcpy+0x40/0x70
[  131.819925][ T5592]  ? loop_set_status_from_info+0x184/0x240
[  131.819934][ T5592]  loop_set_status+0x4a4/0xb20
[  131.819944][ T5592]  lo_ioctl+0xce1/0x2850
[  131.819952][ T5592]  ? __update_page_owner_handle+0x5a/0x550
[  131.819962][ T5592]  ? __pfx_lo_ioctl+0x10/0x10
[  131.819971][ T5592]  ? __page_table_check_zero+0xb8/0x510
[  131.819979][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.819989][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.819998][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.820007][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.820018][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.820027][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.820039][ T5592]  ? is_bpf_text_address+0x26/0x2a0
[  131.820051][ T5592]  ? is_bpf_text_address+0x288/0x2a0
[  131.820061][ T5592]  ? is_bpf_text_address+0x26/0x2a0
[  131.820071][ T5592]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  131.820085][ T5592]  ? kernel_text_address+0xa7/0xe0
[  131.820095][ T5592]  ? __kernel_text_address+0xd/0x40
[  131.820104][ T5592]  ? unwind_get_return_address+0x4d/0x90
[  131.820116][ T5592]  ? arch_stack_walk+0xff/0x150
[  131.820131][ T5592]  ? stack_trace_save+0x11a/0x1d0
[  131.820144][ T5592]  ? __pfx_stack_trace_save+0x10/0x10
[  131.820157][ T5592]  ? stack_depot_save_flags+0x44/0x940
[  131.820170][ T5592]  ? do_syscall_64+0xf3/0x230
[  131.820182][ T5592]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.820191][ T5592]  ? do_vfs_ioctl+0xef8/0x2750
[  131.820210][ T5592]  ? kasan_quarantine_put+0xdc/0x230
[  131.820221][ T5592]  ? lockdep_hardirqs_on+0x9d/0x150
[  131.820233][ T5592]  ? tomoyo_path_number_perm+0x215/0x790
[  131.820246][ T5592]  ? blkdev_common_ioctl+0x1060/0x25a0
[  131.820258][ T5592]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  131.820269][ T5592]  ? tomoyo_path_number_perm+0x215/0x790
[  131.820280][ T5592]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  131.820291][ T5592]  ? file_init_path+0x3b/0x570
[  131.820303][ T5592]  ? __lock_acquire+0xad5/0xd80
[  131.820314][ T5592]  ? file_to_blk_mode+0xcb/0x140
[  131.820327][ T5592]  ? __pfx_lo_ioctl+0x10/0x10
[  131.820339][ T5592]  blkdev_ioctl+0x5df/0x710
[  131.820351][ T5592]  ? __pfx_blkdev_ioctl+0x10/0x10
[  131.820363][ T5592]  ? __pfx_blkdev_ioctl+0x10/0x10
[  131.820375][ T5592]  __se_sys_ioctl+0xf1/0x160
[  131.820386][ T5592]  do_syscall_64+0xf3/0x230
[  131.820399][ T5592]  ? clear_bhb_loop+0x45/0xa0
[  131.820410][ T5592]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.820432][ T5592] RIP: 0033:0x7efef2f7e719
[  131.820443][ T5592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.820450][ T5592] RSP: 002b:00007efef3ccb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  131.820462][ T5592] RAX: ffffffffffffffda RBX: 00007efef3135f80 RCX: 00007efef2f7e719
[  131.820469][ T5592] RDX: 0000000020000300 RSI: 0000000000004c02 RDI: 0000000000000004
[  131.820475][ T5592] RBP: 00007efef2ff1616 R08: 0000000000000000 R09: 0000000000000000
[  131.820481][ T5592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.820487][ T5592] R13: 0000000000000000 R14: 00007efef3135f80 R15: 00007ffc91c5d148
[  131.820498][ T5592]  </TASK>
[  132.011457][ T5325] Bluetooth: hci1: command tx timeout
[  132.041875][ T5593] ERROR: (device loop0): txBegin: read-only filesystem
[  132.041875][ T5593] 
[  132.046470][ T5593] ERROR: (device loop0): remounting filesystem as read-only
[  132.053658][ T5593] ERROR: (device loop0): dbFindCtl: Corrupt dmapctl page
[  132.053658][ T5593] 
[  132.057959][ T5593] jfs_create: dtInsert returned -EIO
[  132.060644][ T5593] ERROR: (device (efault)): jfs_create: 
[  132.060644][ T5593] 
[  132.063729][ T5593] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000a: 0000 [#1] SMP KASAN NOPTI
[  132.068651][ T5593] KASAN: null-ptr-deref in range [0x0000000000000050-0x0000000000000057]
[  132.072081][ T5593] CPU: 0 UID: 0 PID: 5593 Comm: syz.0.15 Not tainted 6.14.0-syzkaller-13546-g16cd1c265776 #0 PREEMPT(full) 
[  132.076600][ T5593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.080657][ T5593] RIP: 0010:jfs_error+0x15b/0x300
[  132.082608][ T5593] Code: 08 48 c7 c7 00 16 83 8c 48 89 74 24 08 4c 89 f9 e8 da e0 cc fd 4d 8d 65 50 4d 89 e7 49 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <41> 80 3c 07 00 74 08 4c 89 e7 e8 a6 52 d3 fe 49 8b 1c 24 48 89 de
[  132.090281][ T5593] RSP: 0018:ffffc9000cd0fa20 EFLAGS: 00010206
[  132.092777][ T5593] RAX: dffffc0000000000 RBX: dffffc0000000000 RCX: 433b253a5230f200
[  132.096077][ T5593] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  132.099484][ T5593] RBP: ffffc9000cd0fb30 R08: ffffffff81a2a49c R09: 1ffff11003f847d2
[  132.102723][ T5593] R10: dffffc0000000000 R11: ffffed1003f847d3 R12: 0000000000000050
[  132.105901][ T5593] R13: 0000000000000000 R14: 1ffff920019a1f4c R15: 000000000000000a
[  132.109092][ T5593] FS:  00007efef3caa6c0(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[  132.112601][ T5593] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  132.115281][ T5593] CR2: 000055b1dc079cf8 CR3: 0000000053428000 CR4: 0000000000352ef0
[  132.118273][ T5593] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  132.121407][ T5593] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  132.124578][ T5593] Call Trace:
[  132.125987][ T5593]  <TASK>
[  132.127152][ T5593]  ? _printk+0xd5/0x120
[  132.128908][ T5593]  ? txAbort+0x620/0x760
[  132.130571][ T5593]  ? __pfx_jfs_error+0x10/0x10
[  132.132513][ T5593]  ? jfs_create+0x7d5/0xbb0
[  132.134384][ T5593]  ? __pfx__printk+0x10/0x10
[  132.136227][ T5593]  ? txAbort+0x629/0x760
[  132.137988][ T5593]  jfs_create+0x827/0xbb0
[  132.139666][ T5593]  ? __pfx_jfs_create+0x10/0x10
[  132.141595][ T5593]  ? bpf_lsm_inode_create+0x9/0x10
[  132.143618][ T5593]  ? security_inode_create+0xbe/0x340
[  132.145745][ T5593]  vfs_create+0x23c/0x3d0
[  132.147687][ T5593]  do_mknodat+0x407/0x600
[  132.149497][ T5593]  ? __might_fault+0xaa/0x120
[  132.151431][ T5593]  ? __pfx_do_mknodat+0x10/0x10
[  132.153489][ T5593]  ? getname_flags+0x1e2/0x530
[  132.155512][ T5593]  __x64_sys_mknod+0x8c/0xa0
[  132.157481][ T5593]  do_syscall_64+0xf3/0x230
[  132.159326][ T5593]  ? clear_bhb_loop+0x45/0xa0
[  132.161197][ T5593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.163541][ T5593] RIP: 0033:0x7efef2f7e719
[  132.165341][ T5593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.173208][ T5593] RSP: 002b:00007efef3caa038 EFLAGS: 00000246 ORIG_RAX: 0000000000000085
[  132.176636][ T5593] RAX: ffffffffffffffda RBX: 00007efef3136058 RCX: 00007efef2f7e719
[  132.179853][ T5593] RDX: 0000000000000701 RSI: 0000000000000000 RDI: 0000000020000000
[  132.183087][ T5593] RBP: 00007efef2ff1616 R08: 0000000000000000 R09: 0000000000000000
[  132.186283][ T5593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.189511][ T5593] R13: 0000000000000000 R14: 00007efef3136058 R15: 00007ffc91c5d148
[  132.192501][ T5593]  </TASK>
[  132.193843][ T5593] Modules linked in:
[  132.196639][ T5593] ---[ end trace 0000000000000000 ]---
[  132.219602][ T5593] RIP: 0010:jfs_error+0x15b/0x300
[  132.226028][ T5593] Code: 08 48 c7 c7 00 16 83 8c 48 89 74 24 08 4c 89 f9 e8 da e0 cc fd 4d 8d 65 50 4d 89 e7 49 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <41> 80 3c 07 00 74 08 4c 89 e7 e8 a6 52 d3 fe 49 8b 1c 24 48 89 de
[  132.235613][ T5593] RSP: 0018:ffffc9000cd0fa20 EFLAGS: 00010206
[  132.238645][ T5593] RAX: dffffc0000000000 RBX: dffffc0000000000 RCX: 433b253a5230f200
[  132.243170][ T5593] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  132.246461][ T5593] RBP: ffffc9000cd0fb30 R08: ffffffff81a2a49c R09: 1ffff11003f847d2
[  132.249994][ T5593] R10: dffffc0000000000 R11: ffffed1003f847d3 R12: 0000000000000050
[  132.253260][ T5593] R13: 0000000000000000 R14: 1ffff920019a1f4c R15: 000000000000000a
[  132.256455][ T5593] FS:  00007efef3caa6c0(0000) GS:ffff88808c596000(0000) knlGS:0000000000000000
[  132.261329][ T5593] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  132.264009][ T5593] CR2: 000055b1dc079cf8 CR3: 0000000053428000 CR4: 0000000000352ef0
[  132.267091][ T5593] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  132.270802][ T5593] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  132.274071][ T5593] Kernel panic - not syncing: Fatal exception
[  132.276796][ T5593] Kernel Offset: disabled
[  132.278531][ T5593] Rebooting in 86400 seconds..