[ 132.969572][ T1335] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.969628][ T1335] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '10.128.1.167' (ED25519) to the list of known hosts.
2026/05/08 20:12:58 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[ 143.558975][ T6116] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 147.694318][ T1225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 147.694338][ T1225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 147.748852][ T1225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 147.748873][ T1225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 149.335051][ T6151] bridge0: port 1(bridge_slave_0) entered blocking state
[ 149.335223][ T6151] bridge0: port 1(bridge_slave_0) entered disabled state
[ 149.335328][ T6151] bridge_slave_0: entered allmulticast mode
[ 149.336743][ T6151] bridge_slave_0: entered promiscuous mode
[ 149.341936][ T6151] bridge0: port 2(bridge_slave_1) entered blocking state
[ 149.342055][ T6151] bridge0: port 2(bridge_slave_1) entered disabled state
[ 149.342146][ T6151] bridge_slave_1: entered allmulticast mode
[ 149.343510][ T6151] bridge_slave_1: entered promiscuous mode
[ 149.812273][ T6151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 149.826581][ T6151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 150.298196][ T6151] team0: Port device team_slave_0 added
[ 150.301293][ T6151] team0: Port device team_slave_1 added
[ 150.504457][ T6151] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 150.504470][ T6151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.504483][ T6151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 150.505863][ T6151] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 150.505876][ T6151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 150.505894][ T6151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 150.761800][ T6151] hsr_slave_0: entered promiscuous mode
[ 150.762761][ T6151] hsr_slave_1: entered promiscuous mode
[ 152.677558][ T6151] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 152.717974][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 152.719309][ T6151] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 152.757681][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 152.762765][ T6151] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 152.806415][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 152.807438][ T6151] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 152.843722][ T6151] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 152.985543][ T6151] 8021q: adding VLAN 0 to HW filter on device bond0
[ 153.020924][ T6151] 8021q: adding VLAN 0 to HW filter on device team0
[ 153.051704][ T1527] bridge0: port 1(bridge_slave_0) entered blocking state
[ 153.051914][ T1527] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 153.085062][ T3219] bridge0: port 2(bridge_slave_1) entered blocking state
[ 153.085263][ T3219] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 153.719799][ T6151] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 153.840506][ T6151] veth0_vlan: entered promiscuous mode
[ 153.863440][ T6151] veth1_vlan: entered promiscuous mode
[ 153.912807][ T6151] veth0_macvtap: entered promiscuous mode
[ 153.923242][ T6151] veth1_macvtap: entered promiscuous mode
[ 153.953503][ T6151] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 153.974995][ T6151] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 153.991551][ T3219] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 153.992263][ T3219] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 153.993469][ T3219] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 153.993512][ T3219] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 154.617250][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 154.652833][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 154.666645][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 154.676933][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 154.686573][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 155.031800][ T1527] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 155.967537][ T1527] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.518436][ T1527] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 156.899147][ T1527] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 158.034035][ T1527] bridge_slave_1: left allmulticast mode
[ 158.034058][ T1527] bridge_slave_1: left promiscuous mode
[ 158.036856][ T1527] bridge0: port 2(bridge_slave_1) entered disabled state
[ 158.094631][ T1527] bridge_slave_0: left allmulticast mode
[ 158.094660][ T1527] bridge_slave_0: left promiscuous mode
[ 158.094806][ T1527] bridge0: port 1(bridge_slave_0) entered disabled state
[ 158.624669][ T1527] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 158.704347][ T1527] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 158.735083][ T1527] bond0 (unregistering): Released all slaves
[ 159.108399][ T1527] hsr_slave_0: left promiscuous mode
[ 159.147398][ T1527] hsr_slave_1: left promiscuous mode
[ 159.148062][ T1527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 159.148077][ T1527] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 159.200480][ T1527] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 159.200506][ T1527] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 159.338989][ T1527] veth1_macvtap: left promiscuous mode
[ 159.339105][ T1527] veth0_macvtap: left promiscuous mode
[ 159.339340][ T1527] veth1_vlan: left promiscuous mode
[ 159.339501][ T1527] veth0_vlan: left promiscuous mode
[ 159.914257][ T1527] team0 (unregistering): Port device team_slave_1 removed
[ 159.978128][ T1527] team0 (unregistering): Port device team_slave_0 removed
[ 160.126040][ T5258] 8021q: adding VLAN 0 to HW filter on device eth1
[ 160.965340][ T5258] 8021q: adding VLAN 0 to HW filter on device eth2
2026/05/08 20:13:21 executed programs: 0
[ 162.011692][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 162.042100][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 162.052202][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 162.084824][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 162.087405][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 162.335537][ T5258] 8021q: adding VLAN 0 to HW filter on device eth3
[ 163.010346][ T5258] 8021q: adding VLAN 0 to HW filter on device eth4
[ 163.615540][ T6439] bridge0: port 1(bridge_slave_0) entered blocking state
[ 163.615700][ T6439] bridge0: port 1(bridge_slave_0) entered disabled state
[ 163.615848][ T6439] bridge_slave_0: entered allmulticast mode
[ 163.618115][ T6439] bridge_slave_0: entered promiscuous mode
[ 163.628701][ T6439] bridge0: port 2(bridge_slave_1) entered blocking state
[ 163.628812][ T6439] bridge0: port 2(bridge_slave_1) entered disabled state
[ 163.628990][ T6439] bridge_slave_1: entered allmulticast mode
[ 163.644718][ T6439] bridge_slave_1: entered promiscuous mode
[ 163.837411][ T6439] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 163.839798][ T6439] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 164.002488][ T6439] team0: Port device team_slave_0 added
[ 164.005620][ T6439] team0: Port device team_slave_1 added
[ 164.163793][ T59] Bluetooth: hci0: command tx timeout
[ 164.338347][ T6439] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 164.338363][ T6439] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 164.338378][ T6439] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 164.370988][ T6439] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 164.371004][ T6439] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 164.371027][ T6439] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 164.709655][ T6439] hsr_slave_0: entered promiscuous mode
[ 164.710375][ T6439] hsr_slave_1: entered promiscuous mode
[ 166.243732][ T59] Bluetooth: hci0: command tx timeout
[ 166.814437][ T6439] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 166.861398][ T6439] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 166.862842][ T6439] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 166.912664][ T6439] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 166.925621][ T6439] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 166.957147][ T6439] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 166.958367][ T6439] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 167.007908][ T6439] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 167.143957][ T6439] 8021q: adding VLAN 0 to HW filter on device bond0
[ 167.199438][ T6439] 8021q: adding VLAN 0 to HW filter on device team0
[ 167.216138][ T163] bridge0: port 1(bridge_slave_0) entered blocking state
[ 167.216279][ T163] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 167.229759][ T163] bridge0: port 2(bridge_slave_1) entered blocking state
[ 167.229950][ T163] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 167.839972][ T6439] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 167.937985][ T6439] veth0_vlan: entered promiscuous mode
[ 167.972428][ T6439] veth1_vlan: entered promiscuous mode
[ 168.034737][ T6439] veth0_macvtap: entered promiscuous mode
[ 168.051014][ T6439] veth1_macvtap: entered promiscuous mode
[ 168.088893][ T6439] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 168.109476][ T6439] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 168.140068][ T1527] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.140278][ T1527] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.140311][ T1527] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.140340][ T1527] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 168.323785][ T59] Bluetooth: hci0: command tx timeout
[ 168.629156][ T4825] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 168.629175][ T4825] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 168.703028][ T163] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 168.703047][ T163] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/08 20:13:28 executed programs: 2
[ 169.321033][ T6591] loop0: detected capacity change from 0 to 32768
[ 169.779723][ T6591] UFO tlock:0xffffc900034621f8
[ 170.231590][ T6615] loop0: detected capacity change from 0 to 32768
[ 170.305512][ T6615] UFO tlock:0xffffc90003462090
[ 170.404176][ T59] Bluetooth: hci0: command tx timeout
[ 170.684086][ T6617] loop0: detected capacity change from 0 to 32768
[ 170.742802][ T6617] UFO tlock:0xffffc900034621f8
[ 171.122318][ T6619] loop0: detected capacity change from 0 to 32768
[ 171.212084][ T6619] UFO tlock:0xffffc90003462090
[ 172.113543][ T6621] loop0: detected capacity change from 0 to 32768
[ 172.160596][ T6621] UFO tlock:0xffffc900034621f8
[ 172.508849][ T6623] loop0: detected capacity change from 0 to 32768
[ 172.539837][ T6623] UFO tlock:0xffffc90003462090
[ 172.937773][ T6625] loop0: detected capacity change from 0 to 32768
[ 172.978408][ T6625] UFO tlock:0xffffc900034621f8
[ 173.342310][ T6627] loop0: detected capacity change from 0 to 32768
[ 173.376048][ T6627] UFO tlock:0xffffc90003462090
[ 173.727097][ T6629] loop0: detected capacity change from 0 to 32768
[ 173.776645][ T6629] UFO tlock:0xffffc900034621f8
[ 174.371074][ T6631] loop0: detected capacity change from 0 to 32768
[ 174.419785][ T6631] UFO tlock:0xffffc90003462090
2026/05/08 20:13:33 executed programs: 12
[ 174.762592][ T6633] loop0: detected capacity change from 0 to 32768
[ 174.807552][ T6633] UFO tlock:0xffffc900034621f8
[ 175.159321][ T6635] loop0: detected capacity change from 0 to 32768
[ 175.213431][ T6635] UFO tlock:0xffffc90003462090
[ 175.554626][ T6637] loop0: detected capacity change from 0 to 32768
[ 175.608438][ T6637] UFO tlock:0xffffc900034621f8
[ 175.954760][ T6639] loop0: detected capacity change from 0 to 32768
[ 175.973070][ T6639] UFO tlock:0xffffc90003462090
[ 176.340550][ T6641] loop0: detected capacity change from 0 to 32768
[ 176.377931][ T6641] UFO tlock:0xffffc900034621f8
[ 177.226082][ T6643] loop0: detected capacity change from 0 to 32768
[ 177.272673][ T6643] UFO tlock:0xffffc90003462090
[ 178.138474][ T6645] loop0: detected capacity change from 0 to 32768
[ 178.175125][ T6645] UFO tlock:0xffffc900034621f8
[ 178.506275][ T6647] loop0: detected capacity change from 0 to 32768
[ 178.549977][ T6647] UFO tlock:0xffffc90003462090
[ 178.909758][ T6649] loop0: detected capacity change from 0 to 32768
[ 178.939082][ T6649] UFO tlock:0xffffc900034621f8
[ 179.328821][ T6651] UFO tlock:0xffffc90003462090
[ 179.932202][ T6653] set_capacity_and_notify: 1 callbacks suppressed
[ 179.932220][ T6653] loop0: detected capacity change from 0 to 32768
[ 179.972383][ T6653] UFO tlock:0xffffc900034621f8
2026/05/08 20:13:39 executed programs: 23
[ 180.326832][ T6655] loop0: detected capacity change from 0 to 32768
[ 180.382486][ T6655] UFO tlock:0xffffc90003462090
[ 180.718853][ T6658] loop0: detected capacity change from 0 to 32768
[ 180.754545][ T6658] UFO tlock:0xffffc900034621f8
[ 181.094890][ T6660] loop0: detected capacity change from 0 to 32768
[ 181.131093][ T6660] UFO tlock:0xffffc90003462090
[ 181.722315][ T6663] loop0: detected capacity change from 0 to 32768
[ 181.764690][ T6663] UFO tlock:0xffffc900034621f8
[ 181.835927][ C1] ==================================================================
[ 181.835944][ C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 181.835984][ C1] Read of size 4 at addr ffff88803cb56a08 by task ksoftirqd/1/30
[ 181.836000][ C1]
[ 181.836025][ C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 181.836047][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 181.836072][ C1] Call Trace:
[ 181.836080][ C1]
[ 181.836088][ C1] dump_stack_lvl+0xe8/0x150
[ 181.836111][ C1] print_address_description+0x55/0x1e0
[ 181.836133][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.836155][ C1] print_report+0x58/0x70
[ 181.836174][ C1] kasan_report+0x117/0x150
[ 181.836195][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.836222][ C1] lbmIODone+0x1312/0x16c0
[ 181.836246][ C1] ? blkg_put+0x22/0x240
[ 181.836263][ C1] ? blkg_put+0x22/0x240
[ 181.836279][ C1] ? blkg_put+0x18d/0x240
[ 181.836306][ C1] ? bio_endio+0x989/0x9d0
[ 181.836328][ C1] blk_update_request+0x57e/0xe60
[ 181.836355][ C1] blk_mq_end_request+0x3e/0x70
[ 181.836376][ C1] blk_done_softirq+0x10a/0x160
[ 181.836398][ C1] handle_softirqs+0x1de/0x6d0
[ 181.836422][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 181.836443][ C1] run_ksoftirqd+0x52/0x180
[ 181.836512][ C1] smpboot_thread_fn+0x541/0xa50
[ 181.836532][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 181.836559][ C1] kthread+0x388/0x470
[ 181.836582][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 181.836603][ C1] ? __pfx_kthread+0x10/0x10
[ 181.836626][ C1] ret_from_fork+0x514/0xb70
[ 181.836647][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 181.836667][ C1] ? __switch_to+0xc79/0x1410
[ 181.836693][ C1] ? __pfx_kthread+0x10/0x10
[ 181.836716][ C1] ret_from_fork_asm+0x1a/0x30
[ 181.836742][ C1]
[ 181.836748][ C1]
[ 181.836758][ C1] Allocated by task 6663:
[ 181.836767][ C1] kasan_save_track+0x3e/0x80
[ 181.836782][ C1] __kasan_kmalloc+0x93/0xb0
[ 181.836798][ C1] __kmalloc_cache_noprof+0x3a6/0x690
[ 181.836816][ C1] lmLogInit+0x3e5/0x1a00
[ 181.836834][ C1] lmLogOpen+0x4e1/0xfa0
[ 181.836851][ C1] jfs_mount_rw+0xee/0x670
[ 181.836869][ C1] jfs_fill_super+0x754/0xd80
[ 181.836883][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 181.836902][ C1] vfs_get_tree+0x92/0x2a0
[ 181.836920][ C1] do_new_mount+0x341/0xd30
[ 181.836942][ C1] __se_sys_mount+0x31d/0x420
[ 181.836962][ C1] do_syscall_64+0x15f/0xf80
[ 181.836980][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 181.836993][ C1]
[ 181.836997][ C1] Freed by task 6439:
[ 181.837004][ C1] kasan_save_track+0x3e/0x80
[ 181.837016][ C1] kasan_save_free_info+0x46/0x50
[ 181.837034][ C1] __kasan_slab_free+0x5c/0x80
[ 181.837046][ C1] kfree+0x1c5/0x6c0
[ 181.837058][ C1] lmLogShutdown+0x456/0x850
[ 181.837074][ C1] lmLogClose+0x28a/0x520
[ 181.837089][ C1] jfs_umount+0x2fb/0x3d0
[ 181.837104][ C1] jfs_put_super+0x8c/0x190
[ 181.837115][ C1] generic_shutdown_super+0x13d/0x2d0
[ 181.837127][ C1] kill_block_super+0x44/0x90
[ 181.837141][ C1] deactivate_locked_super+0xbc/0x130
[ 181.837153][ C1] cleanup_mnt+0x437/0x4d0
[ 181.837166][ C1] task_work_run+0x1d9/0x270
[ 181.837183][ C1] exit_to_user_mode_loop+0xed/0x480
[ 181.837200][ C1] do_syscall_64+0x33e/0xf80
[ 181.837214][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 181.837227][ C1]
[ 181.837230][ C1] The buggy address belongs to the object at ffff88803cb56a00
[ 181.837230][ C1] which belongs to the cache kmalloc-256 of size 256
[ 181.837244][ C1] The buggy address is located 8 bytes inside of
[ 181.837244][ C1] freed 256-byte region [ffff88803cb56a00, ffff88803cb56b00)
[ 181.837259][ C1]
[ 181.837263][ C1] The buggy address belongs to the physical page:
[ 181.837278][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803cb57200 pfn:0x3cb56
[ 181.837298][ C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 181.837311][ C1] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[ 181.837327][ C1] page_type: f5(slab)
[ 181.837341][ C1] raw: 0080000000000240 ffff88801a010b40 ffff88801a00b988 ffff88801a00b988
[ 181.837353][ C1] raw: ffff88803cb57200 0000000800100009 00000000f5000000 0000000000000000
[ 181.837366][ C1] head: 0080000000000240 ffff88801a010b40 ffff88801a00b988 ffff88801a00b988
[ 181.837378][ C1] head: ffff88803cb57200 0000000800100009 00000000f5000000 0000000000000000
[ 181.837390][ C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 181.837401][ C1] head: 000000000000002f 0000000000000000 00000000ffffffff 0000000000000002
[ 181.837408][ C1] page dumped because: kasan: bad access detected
[ 181.837421][ C1] page_owner tracks the page as allocated
[ 181.837426][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6663, tgid 6662 (syz.0.41), ts 181739206823, free_ts 176031904939
[ 181.837452][ C1] post_alloc_hook+0x231/0x280
[ 181.837467][ C1] get_page_from_freelist+0x27c8/0x2840
[ 181.837483][ C1] __alloc_frozen_pages_noprof+0x18d/0x380
[ 181.837500][ C1] allocate_slab+0x77/0x660
[ 181.837516][ C1] refill_objects+0x33c/0x3d0
[ 181.837533][ C1] __pcs_replace_empty_main+0x373/0x720
[ 181.837552][ C1] __kmalloc_cache_noprof+0x44e/0x690
[ 181.837566][ C1] lmLogInit+0x3e5/0x1a00
[ 181.837580][ C1] lmLogOpen+0x4e1/0xfa0
[ 181.837595][ C1] jfs_mount_rw+0xee/0x670
[ 181.837610][ C1] jfs_fill_super+0x754/0xd80
[ 181.837621][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 181.837635][ C1] vfs_get_tree+0x92/0x2a0
[ 181.837648][ C1] do_new_mount+0x341/0xd30
[ 181.837665][ C1] __se_sys_mount+0x31d/0x420
[ 181.837683][ C1] do_syscall_64+0x15f/0xf80
[ 181.837697][ C1] page last free pid 6283 tgid 6283 stack trace:
[ 181.837706][ C1] __free_frozen_pages+0xfa6/0x10f0
[ 181.837720][ C1] __slab_free+0x252/0x2a0
[ 181.837733][ C1] qlist_free_all+0x99/0x100
[ 181.837744][ C1] kasan_quarantine_reduce+0x148/0x160
[ 181.837756][ C1] __kasan_slab_alloc+0x22/0x80
[ 181.837769][ C1] kmem_cache_alloc_noprof+0x33b/0x680
[ 181.837782][ C1] do_getname+0x2e/0x250
[ 181.837798][ C1] vfs_fstatat+0x45/0x170
[ 181.837814][ C1] __x64_sys_newfstatat+0x151/0x200
[ 181.837832][ C1] do_syscall_64+0x15f/0xf80
[ 181.837847][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 181.837860][ C1]
[ 181.837863][ C1] Memory state around the buggy address:
[ 181.837871][ C1] ffff88803cb56900: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 181.837880][ C1] ffff88803cb56980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 181.837889][ C1] >ffff88803cb56a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 181.837896][ C1] ^
[ 181.837903][ C1] ffff88803cb56a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 181.837912][ C1] ffff88803cb56b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 181.837919][ C1] ==================================================================
[ 181.837972][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 181.837987][ C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 181.838009][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 181.838020][ C1] Call Trace:
[ 181.838027][ C1]
[ 181.838035][ C1] vpanic+0x56c/0xa60
[ 181.838059][ C1] ? __pfx_vpanic+0x10/0x10
[ 181.838082][ C1] ? __pfx___schedule+0x10/0x10
[ 181.838104][ C1] panic+0xc5/0xd0
[ 181.838124][ C1] ? __pfx_panic+0x10/0x10
[ 181.838146][ C1] ? preempt_schedule_thunk+0x16/0x30
[ 181.838176][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.838199][ C1] check_panic_on_warn+0x89/0xb0
[ 181.838224][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.838246][ C1] end_report+0x73/0x170
[ 181.838267][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.838296][ C1] kasan_report+0x128/0x150
[ 181.838317][ C1] ? lbmIODone+0x1312/0x16c0
[ 181.838343][ C1] lbmIODone+0x1312/0x16c0
[ 181.838366][ C1] ? blkg_put+0x22/0x240
[ 181.838384][ C1] ? blkg_put+0x22/0x240
[ 181.838402][ C1] ? blkg_put+0x18d/0x240
[ 181.838420][ C1] ? bio_endio+0x989/0x9d0
[ 181.838442][ C1] blk_update_request+0x57e/0xe60
[ 181.838470][ C1] blk_mq_end_request+0x3e/0x70
[ 181.838491][ C1] blk_done_softirq+0x10a/0x160
[ 181.838512][ C1] handle_softirqs+0x1de/0x6d0
[ 181.838535][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 181.838556][ C1] run_ksoftirqd+0x52/0x180
[ 181.838577][ C1] smpboot_thread_fn+0x541/0xa50
[ 181.838599][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 181.838624][ C1] kthread+0x388/0x470
[ 181.838647][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 181.838668][ C1] ? __pfx_kthread+0x10/0x10
[ 181.838692][ C1] ret_from_fork+0x514/0xb70
[ 181.838713][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 181.838734][ C1] ? __switch_to+0xc79/0x1410
[ 181.838761][ C1] ? __pfx_kthread+0x10/0x10
[ 181.838785][ C1] ret_from_fork_asm+0x1a/0x30
[ 181.838813][ C1]
[ 181.839261][ C1] Kernel Offset: disabled