Warning: Permanently added '10.128.1.55' (ED25519) to the list of known hosts. 2025/01/17 15:47:33 ignoring optional flag "sandboxArg"="0" 2025/01/17 15:47:33 parsed 1 programs [ 102.728638][ T6233] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 106.463591][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.476000][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.524430][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.532386][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.761191][ T5132] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 106.772748][ T5132] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 106.781507][ T5132] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 106.790652][ T5132] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 106.799936][ T5132] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 106.807418][ T5132] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 107.807161][ T6308] chnl_net:caif_netlink_parms(): no params data found [ 107.851704][ T6308] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.859058][ T6308] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.866272][ T6308] bridge_slave_0: entered allmulticast mode [ 107.873676][ T6308] bridge_slave_0: entered promiscuous mode [ 107.881423][ T6308] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.889698][ T6308] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.896929][ T6308] bridge_slave_1: entered allmulticast mode [ 107.903902][ T6308] bridge_slave_1: entered promiscuous mode [ 107.930628][ T6308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.942875][ T6308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.968210][ T6308] team0: Port device team_slave_0 added [ 107.976494][ T6308] team0: Port device team_slave_1 added [ 107.993771][ T6308] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.000909][ T6308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.027240][ T6308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.040755][ T6308] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.047832][ T6308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.076240][ T6308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.121007][ T6308] hsr_slave_0: entered promiscuous mode [ 108.127780][ T6308] hsr_slave_1: entered promiscuous mode [ 108.668260][ T6308] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 108.684210][ T6308] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 108.694193][ T6308] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 108.705654][ T6308] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 108.785389][ T6308] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.808093][ T6308] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.822106][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.829290][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.846565][ T3575] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.853856][ T3575] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.037233][ T6308] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.083023][ T6308] veth0_vlan: entered promiscuous mode [ 109.096338][ T6308] veth1_vlan: entered promiscuous mode [ 109.125653][ T6308] veth0_macvtap: entered promiscuous mode [ 109.136706][ T6308] veth1_macvtap: entered promiscuous mode [ 109.155753][ T6308] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.174866][ T6308] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.191242][ T6308] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.202962][ T6308] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.212503][ T6308] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.221738][ T6308] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.392494][ T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.466401][ T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.595268][ T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.707295][ T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 2025/01/17 15:47:44 executed programs: 0 [ 110.342659][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 110.353802][ T5841] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 110.365485][ T5841] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 110.378533][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 110.390110][ T5841] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 110.397553][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 110.564215][ T6415] chnl_net:caif_netlink_parms(): no params data found [ 110.647049][ T6415] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.655767][ T6415] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.663122][ T6415] bridge_slave_0: entered allmulticast mode [ 110.670438][ T6415] bridge_slave_0: entered promiscuous mode [ 110.683610][ T6415] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.691165][ T6415] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.698381][ T6415] bridge_slave_1: entered allmulticast mode [ 110.706739][ T6415] bridge_slave_1: entered promiscuous mode [ 110.736383][ T6415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 110.749915][ T6415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 110.783313][ T6415] team0: Port device team_slave_0 added [ 110.794221][ T6415] team0: Port device team_slave_1 added [ 110.837565][ T6415] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.847090][ T6415] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.876623][ T6415] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.890329][ T6415] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.897754][ T6415] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.924161][ T6415] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.966754][ T6415] hsr_slave_0: entered promiscuous mode [ 110.975172][ T6415] hsr_slave_1: entered promiscuous mode [ 110.983997][ T6415] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 110.992127][ T6415] Cannot create hsr debugfs directory [ 112.489541][ T5841] Bluetooth: hci0: command tx timeout [ 112.573791][ T35] bridge_slave_1: left allmulticast mode [ 112.593546][ T35] bridge_slave_1: left promiscuous mode [ 112.601242][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.614736][ T35] bridge_slave_0: left allmulticast mode [ 112.622381][ T35] bridge_slave_0: left promiscuous mode [ 112.628340][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.933761][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.944831][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.955795][ T35] bond0 (unregistering): Released all slaves [ 113.037186][ T35] hsr_slave_0: left promiscuous mode [ 113.044108][ T35] hsr_slave_1: left promiscuous mode [ 113.060658][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.068232][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 113.077865][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 113.086917][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 113.101692][ T35] veth1_macvtap: left promiscuous mode [ 113.107241][ T35] veth0_macvtap: left promiscuous mode [ 113.112962][ T35] veth1_vlan: left promiscuous mode [ 113.118341][ T35] veth0_vlan: left promiscuous mode [ 113.399567][ T35] team0 (unregistering): Port device team_slave_1 removed [ 113.431565][ T35] team0 (unregistering): Port device team_slave_0 removed [ 113.857265][ T6415] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 113.876419][ T6415] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 113.888670][ T6415] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 113.906421][ T6415] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 113.997378][ T6415] 8021q: adding VLAN 0 to HW filter on device bond0 [ 114.045748][ T6415] 8021q: adding VLAN 0 to HW filter on device team0 [ 114.058158][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 114.065398][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 114.108346][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 114.115582][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 114.403270][ T6415] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 114.444243][ T6415] veth0_vlan: entered promiscuous mode [ 114.457738][ T6415] veth1_vlan: entered promiscuous mode [ 114.485355][ T6415] veth0_macvtap: entered promiscuous mode [ 114.495800][ T6415] veth1_macvtap: entered promiscuous mode [ 114.516028][ T6415] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.534595][ T6415] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.548583][ T6415] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.560674][ T6415] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.570649][ T6415] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.578966][ T5841] Bluetooth: hci0: command tx timeout [ 114.581320][ T6415] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.657012][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.674875][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.698434][ T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.708694][ T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.062419][ T6603] loop0: detected capacity change from 0 to 32768 [ 115.200506][ T6619] ================================================================== [ 115.208619][ T6619] BUG: KASAN: slab-use-after-free in jfs_readdir+0x1361/0x3c50 [ 115.216214][ T6619] Read of size 8 at addr ffff88805504b128 by task syz.0.16/6619 [ 115.223872][ T6619] [ 115.226237][ T6619] CPU: 1 UID: 0 PID: 6619 Comm: syz.0.16 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 [ 115.236767][ T6619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 115.246853][ T6619] Call Trace: [ 115.250165][ T6619] <TASK> [ 115.253112][ T6619] dump_stack_lvl+0x241/0x360 [ 115.257842][ T6619] ? __pfx_dump_stack_lvl+0x10/0x10 [ 115.263105][ T6619] ? __pfx__printk+0x10/0x10 [ 115.267742][ T6619] ? _printk+0xd5/0x120 [ 115.272247][ T6619] ? __virt_addr_valid+0x183/0x530 [ 115.277353][ T6619] ? __virt_addr_valid+0x183/0x530 [ 115.282463][ T6619] print_report+0x169/0x550 [ 115.286986][ T6619] ? __virt_addr_valid+0x183/0x530 [ 115.292099][ T6619] ? __virt_addr_valid+0x183/0x530 [ 115.297248][ T6619] ? __virt_addr_valid+0x45f/0x530 [ 115.302367][ T6619] ? __phys_addr+0xba/0x170 [ 115.306879][ T6619] ? jfs_readdir+0x1361/0x3c50 [ 115.311647][ T6619] kasan_report+0x143/0x180 [ 115.316244][ T6619] ? jfs_readdir+0x1361/0x3c50 [ 115.321096][ T6619] jfs_readdir+0x1361/0x3c50 [ 115.325689][ T6619] ? __pfx_jfs_readdir+0x10/0x10 [ 115.330640][ T6619] ? __pfx_lock_acquire+0x10/0x10 [ 115.335665][ T6619] ? down_write+0x18c/0x220 [ 115.340164][ T6619] ? __pfx_down_write+0x10/0x10 [ 115.345013][ T6619] ? __pfx_jfs_readdir+0x10/0x10 [ 115.350062][ T6619] wrap_directory_iterator+0x91/0xd0 [ 115.355367][ T6619] iterate_dir+0x571/0x800 [ 115.359785][ T6619] __se_sys_getdents+0x1fd/0x4e0 [ 115.364726][ T6619] ? __pfx___se_sys_getdents+0x10/0x10 [ 115.370181][ T6619] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 115.376151][ T6619] ? __pfx_filldir+0x10/0x10 [ 115.380832][ T6619] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 115.387158][ T6619] ? do_syscall_64+0x100/0x230 [ 115.391928][ T6619] ? do_syscall_64+0xb6/0x230 [ 115.396606][ T6619] do_syscall_64+0xf3/0x230 [ 115.401102][ T6619] ? clear_bhb_loop+0x35/0x90 [ 115.405770][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.411678][ T6619] RIP: 0033:0x7fcf4cb85d29 [ 115.416097][ T6619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 115.435706][ T6619] RSP: 002b:00007fcf4d941038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 115.444118][ T6619] RAX: ffffffffffffffda RBX: 00007fcf4cd76080 RCX: 00007fcf4cb85d29 [ 115.452093][ T6619] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 115.460230][ T6619] RBP: 00007fcf4cc01b08 R08: 0000000000000000 R09: 0000000000000000 [ 115.468193][ T6619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 115.476174][ T6619] R13: 0000000000000000 R14: 00007fcf4cd76080 R15: 00007ffc03188f08 [ 115.484146][ T6619] </TASK> [ 115.487158][ T6619] [ 115.489472][ T6619] Allocated by task 6603: [ 115.493911][ T6619] kasan_save_track+0x3f/0x80 [ 115.498603][ T6619] __kasan_slab_alloc+0x66/0x80 [ 115.503447][ T6619] kmem_cache_alloc_noprof+0x1d9/0x380 [ 115.508900][ T6619] mempool_alloc_noprof+0x197/0x5a0 [ 115.514087][ T6619] __get_metapage+0x5f4/0xdc0 [ 115.518758][ T6619] dtSplitRoot+0x2af/0x1930 [ 115.523343][ T6619] dtInsert+0x12cd/0x6c10 [ 115.527664][ T6619] jfs_mkdir+0x7fb/0xba0 [ 115.531913][ T6619] vfs_mkdir+0x2f9/0x4f0 [ 115.536150][ T6619] do_mkdirat+0x264/0x3a0 [ 115.540469][ T6619] __x64_sys_mkdirat+0x87/0xa0 [ 115.545226][ T6619] do_syscall_64+0xf3/0x230 [ 115.549744][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.555640][ T6619] [ 115.557977][ T6619] Freed by task 6619: [ 115.561944][ T6619] kasan_save_track+0x3f/0x80 [ 115.566615][ T6619] kasan_save_free_info+0x40/0x50 [ 115.571630][ T6619] __kasan_slab_free+0x59/0x70 [ 115.576563][ T6619] kmem_cache_free+0x195/0x410 [ 115.581320][ T6619] release_metapage+0x831/0xa90 [ 115.586163][ T6619] jfs_readdir+0x102d/0x3c50 [ 115.590748][ T6619] wrap_directory_iterator+0x91/0xd0 [ 115.596026][ T6619] iterate_dir+0x571/0x800 [ 115.600525][ T6619] __se_sys_getdents+0x1fd/0x4e0 [ 115.605597][ T6619] do_syscall_64+0xf3/0x230 [ 115.610135][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.616023][ T6619] [ 115.618340][ T6619] The buggy address belongs to the object at ffff88805504b0f8 [ 115.618340][ T6619] which belongs to the cache jfs_mp of size 184 [ 115.631954][ T6619] The buggy address is located 48 bytes inside of [ 115.631954][ T6619] freed 184-byte region [ffff88805504b0f8, ffff88805504b1b0) [ 115.645662][ T6619] [ 115.647982][ T6619] The buggy address belongs to the physical page: [ 115.654390][ T6619] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5504b [ 115.663323][ T6619] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 115.670428][ T6619] page_type: f5(slab) [ 115.674403][ T6619] raw: 00fff00000000000 ffff88801cb7a640 dead000000000122 0000000000000000 [ 115.682998][ T6619] raw: 0000000000000000 0000000080100010 00000001f5000000 0000000000000000 [ 115.691594][ T6619] page dumped because: kasan: bad access detected [ 115.698031][ T6619] page_owner tracks the page as allocated [ 115.704537][ T6619] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xd2800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6603, tgid 6602 (syz.0.16), ts 115116556543, free_ts 109736811075 [ 115.724080][ T6619] post_alloc_hook+0x1f3/0x230 [ 115.728844][ T6619] get_page_from_freelist+0x3651/0x37a0 [ 115.734380][ T6619] __alloc_pages_noprof+0x292/0x710 [ 115.739570][ T6619] alloc_pages_mpol_noprof+0x3e1/0x780 [ 115.745116][ T6619] alloc_slab_page+0x6a/0x110 [ 115.749786][ T6619] allocate_slab+0x5a/0x2b0 [ 115.754279][ T6619] ___slab_alloc+0xc27/0x14a0 [ 115.758943][ T6619] __slab_alloc+0x58/0xa0 [ 115.763377][ T6619] kmem_cache_alloc_noprof+0x268/0x380 [ 115.769010][ T6619] mempool_alloc_noprof+0x197/0x5a0 [ 115.774400][ T6619] __get_metapage+0x5f4/0xdc0 [ 115.779088][ T6619] ea_get+0xb6f/0x12e0 [ 115.783151][ T6619] __jfs_setxattr+0x4ba/0x1190 [ 115.787919][ T6619] jfs_initxattrs+0x128/0x1d0 [ 115.792779][ T6619] security_inode_init_security+0x29c/0x480 [ 115.798669][ T6619] jfs_init_security+0xa9/0x110 [ 115.803527][ T6619] page last free pid 6387 tgid 6387 stack trace: [ 115.809843][ T6619] free_unref_page+0xd2c/0x1000 [ 115.814892][ T6619] __slab_free+0x2c2/0x380 [ 115.819394][ T6619] qlist_free_all+0x9a/0x140 [ 115.823974][ T6619] kasan_quarantine_reduce+0x14f/0x170 [ 115.829425][ T6619] __kasan_slab_alloc+0x23/0x80 [ 115.834269][ T6619] kmem_cache_alloc_noprof+0x1d9/0x380 [ 115.839792][ T6619] getname_flags+0xb7/0x540 [ 115.844323][ T6619] vfs_fstatat+0x3f/0x130 [ 115.848648][ T6619] __x64_sys_newfstatat+0x11d/0x1a0 [ 115.853843][ T6619] do_syscall_64+0xf3/0x230 [ 115.858337][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 115.864237][ T6619] [ 115.866574][ T6619] Memory state around the buggy address: [ 115.872190][ T6619] ffff88805504b000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 115.880242][ T6619] ffff88805504b080: fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc fa [ 115.888635][ T6619] >ffff88805504b100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 115.896681][ T6619] ^ [ 115.902043][ T6619] ffff88805504b180: fb fb fb fb fb fb fc fc fc fc fc fc fc fc 00 00 [ 115.910098][ T6619] ffff88805504b200: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 115.918249][ T6619] ================================================================== [ 115.928215][ T6619] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 115.935445][ T6619] CPU: 0 UID: 0 PID: 6619 Comm: syz.0.16 Not tainted 6.13.0-rc7-syzkaller-00149-g9bffa1ad25b8 #0 [ 115.945986][ T6619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 115.956067][ T6619] Call Trace: [ 115.959361][ T6619] <TASK> [ 115.962307][ T6619] dump_stack_lvl+0x241/0x360 [ 115.967020][ T6619] ? __pfx_dump_stack_lvl+0x10/0x10 [ 115.972248][ T6619] ? __pfx__printk+0x10/0x10 [ 115.976866][ T6619] ? preempt_schedule+0xe1/0xf0 [ 115.982025][ T6619] ? vscnprintf+0x5d/0x90 [ 115.986466][ T6619] panic+0x349/0x880 [ 115.990393][ T6619] ? check_panic_on_warn+0x21/0xb0 [ 115.995544][ T6619] ? __pfx_panic+0x10/0x10 [ 115.999987][ T6619] ? _raw_spin_unlock_irqrestore+0x130/0x140 [ 116.005996][ T6619] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 116.012328][ T6619] ? print_report+0x502/0x550 [ 116.017039][ T6619] check_panic_on_warn+0x86/0xb0 [ 116.021976][ T6619] ? jfs_readdir+0x1361/0x3c50 [ 116.026765][ T6619] end_report+0x77/0x160 [ 116.031158][ T6619] kasan_report+0x154/0x180 [ 116.035759][ T6619] ? jfs_readdir+0x1361/0x3c50 [ 116.040523][ T6619] jfs_readdir+0x1361/0x3c50 [ 116.045117][ T6619] ? __pfx_jfs_readdir+0x10/0x10 [ 116.050050][ T6619] ? __pfx_lock_acquire+0x10/0x10 [ 116.055244][ T6619] ? down_write+0x18c/0x220 [ 116.059741][ T6619] ? __pfx_down_write+0x10/0x10 [ 116.064723][ T6619] ? __pfx_jfs_readdir+0x10/0x10 [ 116.069655][ T6619] wrap_directory_iterator+0x91/0xd0 [ 116.074940][ T6619] iterate_dir+0x571/0x800 [ 116.079351][ T6619] __se_sys_getdents+0x1fd/0x4e0 [ 116.084284][ T6619] ? __pfx___se_sys_getdents+0x10/0x10 [ 116.089737][ T6619] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 116.095710][ T6619] ? __pfx_filldir+0x10/0x10 [ 116.100309][ T6619] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 116.106652][ T6619] ? do_syscall_64+0x100/0x230 [ 116.111411][ T6619] ? do_syscall_64+0xb6/0x230 [ 116.116193][ T6619] do_syscall_64+0xf3/0x230 [ 116.120688][ T6619] ? clear_bhb_loop+0x35/0x90 [ 116.125360][ T6619] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.131335][ T6619] RIP: 0033:0x7fcf4cb85d29 [ 116.135749][ T6619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 116.155352][ T6619] RSP: 002b:00007fcf4d941038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e [ 116.163766][ T6619] RAX: ffffffffffffffda RBX: 00007fcf4cd76080 RCX: 00007fcf4cb85d29 [ 116.171736][ T6619] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 116.179704][ T6619] RBP: 00007fcf4cc01b08 R08: 0000000000000000 R09: 0000000000000000 [ 116.187757][ T6619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 116.195806][ T6619] R13: 0000000000000000 R14: 00007fcf4cd76080 R15: 00007ffc03188f08 [ 116.203793][ T6619] </TASK> [ 116.207094][ T6619] Kernel Offset: disabled [ 116.211430][ T6619] Rebooting in 86400 seconds..