[ 87.073726][ T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.193' (ED25519) to the list of known hosts.
2026/06/09 05:35:35 parsed 1 programs
[ 92.455234][ T5620] cgroup: Unknown subsys name 'net'
[ 92.678473][ T5620] cgroup: Unknown subsys name 'cpuset'
[ 92.721187][ T5620] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 94.679939][ T5620] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 99.579896][ T5645] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.580805][ T5645] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.580957][ T5645] bridge_slave_0: entered allmulticast mode
[ 99.586210][ T5645] bridge_slave_0: entered promiscuous mode
[ 99.609380][ T5645] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.609487][ T5645] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.609608][ T5645] bridge_slave_1: entered allmulticast mode
[ 99.612798][ T5645] bridge_slave_1: entered promiscuous mode
[ 99.735929][ T5645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.738650][ T5645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.783248][ T5645] team0: Port device team_slave_0 added
[ 99.785478][ T5645] team0: Port device team_slave_1 added
[ 99.819320][ T5645] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.819332][ T5645] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.819347][ T5645] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.827775][ T5645] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.827791][ T5645] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.827813][ T5645] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.926984][ T5645] hsr_slave_0: entered promiscuous mode
[ 99.927915][ T5645] hsr_slave_1: entered promiscuous mode
[ 100.437680][ T5645] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 100.485522][ T5645] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 100.487494][ T5645] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 100.518515][ T5645] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 100.523064][ T5645] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 100.555187][ T5645] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 100.556254][ T5645] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 100.600047][ T5645] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 100.730278][ T5645] 8021q: adding VLAN 0 to HW filter on device bond0
[ 100.771623][ T5645] 8021q: adding VLAN 0 to HW filter on device team0
[ 100.799752][ T3366] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.802272][ T3366] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 100.848874][ T3366] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.849018][ T3366] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.307924][ T5645] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.380088][ T5645] veth0_vlan: entered promiscuous mode
[ 101.395559][ T5645] veth1_vlan: entered promiscuous mode
[ 101.442687][ T5645] veth0_macvtap: entered promiscuous mode
[ 101.447262][ T5645] veth1_macvtap: entered promiscuous mode
[ 101.475995][ T5645] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.502852][ T5645] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.531685][ T3366] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.534436][ T3366] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.535523][ T3366] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.546297][ T3366] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.357277][ T193] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.655061][ T193] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 103.406130][ T193] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 103.853914][ T1437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.853936][ T1437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.920914][ T1437] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.920937][ T1437] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.261681][ T193] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 105.311070][ T193] bridge_slave_1: left allmulticast mode
[ 105.311287][ T193] bridge_slave_1: left promiscuous mode
[ 105.315806][ T193] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.501896][ T193] bridge_slave_0: left allmulticast mode
[ 105.501924][ T193] bridge_slave_0: left promiscuous mode
[ 105.502166][ T193] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.491255][ T193] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 106.571382][ T193] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 106.592852][ T193] bond0 (unregistering): Released all slaves
[ 106.675267][ T5269] 8021q: adding VLAN 0 to HW filter on device eth1
[ 107.090698][ T193] hsr_slave_0: left promiscuous mode
[ 107.130630][ T193] hsr_slave_1: left promiscuous mode
[ 107.133156][ T193] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 107.133242][ T193] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 107.215730][ T193] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 107.215763][ T193] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 107.425622][ T193] veth1_macvtap: left promiscuous mode
[ 107.425874][ T193] veth0_macvtap: left promiscuous mode
[ 107.430055][ T193] veth1_vlan: left promiscuous mode
[ 107.450870][ T193] veth0_vlan: left promiscuous mode
[ 108.341986][ T193] team0 (unregistering): Port device team_slave_1 removed
[ 108.402598][ T193] team0 (unregistering): Port device team_slave_0 removed
[ 108.584149][ T5269] 8021q: adding VLAN 0 to HW filter on device eth2
[ 109.475517][ T5269] 8021q: adding VLAN 0 to HW filter on device eth3
[ 109.718155][ T4922] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 109.723573][ T4922] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 109.724685][ T4922] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 109.725778][ T4922] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 109.727205][ T4922] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 111.081438][ T5269] 8021q: adding VLAN 0 to HW filter on device eth4
2026/06/09 05:35:59 executed programs: 0
[ 112.894308][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 112.916310][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 112.917531][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 112.919195][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 112.920113][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 114.312810][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.312953][ T5811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 114.313056][ T5811] bridge_slave_0: entered allmulticast mode
[ 114.316223][ T5811] bridge_slave_0: entered promiscuous mode
[ 114.326916][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.327137][ T5811] bridge0: port 2(bridge_slave_1) entered disabled state
[ 114.327725][ T5811] bridge_slave_1: entered allmulticast mode
[ 114.330312][ T5811] bridge_slave_1: entered promiscuous mode
[ 114.383500][ T5811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 114.386357][ T5811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 114.502873][ T5811] team0: Port device team_slave_0 added
[ 114.505261][ T5811] team0: Port device team_slave_1 added
[ 114.534686][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 114.534703][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 114.534722][ T5811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 114.536325][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 114.536338][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 114.536528][ T5811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 114.669038][ T5811] hsr_slave_0: entered promiscuous mode
[ 114.669887][ T5811] hsr_slave_1: entered promiscuous mode
[ 114.986089][ T59] Bluetooth: hci0: command tx timeout
[ 117.060618][ T59] Bluetooth: hci0: command tx timeout
[ 117.392636][ T5811] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 117.476283][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 117.477996][ T5811] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 117.508507][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 117.511574][ T5811] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 117.551414][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 117.554418][ T5811] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 117.586700][ T5811] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 117.838756][ T5811] 8021q: adding VLAN 0 to HW filter on device bond0
[ 117.917786][ T5811] 8021q: adding VLAN 0 to HW filter on device team0
[ 117.934715][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.934942][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 117.955571][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.956344][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 118.977538][ T5811] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 119.066914][ T5811] veth0_vlan: entered promiscuous mode
[ 119.103491][ T5811] veth1_vlan: entered promiscuous mode
[ 119.140695][ T59] Bluetooth: hci0: command tx timeout
[ 119.218277][ T5811] veth0_macvtap: entered promiscuous mode
[ 119.249558][ T5811] veth1_macvtap: entered promiscuous mode
[ 119.318970][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 119.343545][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 119.366221][ T193] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.366835][ T193] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.402897][ T193] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.407516][ T193] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.803054][ T193] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.803081][ T193] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.929674][ T1180] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.929709][ T1180] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/06/09 05:36:06 executed programs: 2
[ 120.540933][ T5953] loop0: detected capacity change from 0 to 32768
[ 120.568693][ T5953] =======================================================
[ 120.568693][ T5953] WARNING: The mand mount option has been deprecated and
[ 120.568693][ T5953] and is ignored by this kernel. Remove the mand
[ 120.568693][ T5953] option from the mount to silence this warning.
[ 120.568693][ T5953] =======================================================
[ 121.220703][ T59] Bluetooth: hci0: command tx timeout
[ 121.510985][ T5966] loop0: detected capacity change from 0 to 32768
[ 122.150232][ T5967] loop0: detected capacity change from 0 to 32768
[ 122.780787][ T5968] loop0: detected capacity change from 0 to 32768
[ 123.353622][ T5969] loop0: detected capacity change from 0 to 32768
[ 123.945783][ T5970] loop0: detected capacity change from 0 to 32768
[ 124.529339][ T5971] loop0: detected capacity change from 0 to 32768
[ 125.130325][ T5972] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:11 executed programs: 10
[ 125.793650][ T5973] loop0: detected capacity change from 0 to 32768
[ 126.403345][ T5974] loop0: detected capacity change from 0 to 32768
[ 127.029419][ T5976] loop0: detected capacity change from 0 to 32768
[ 127.583363][ T5981] loop0: detected capacity change from 0 to 32768
[ 128.262274][ T5982] loop0: detected capacity change from 0 to 32768
[ 128.895809][ T5983] loop0: detected capacity change from 0 to 32768
[ 129.491563][ T5985] loop0: detected capacity change from 0 to 32768
[ 130.096956][ T5986] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:17 executed programs: 19
[ 130.672908][ T5987] loop0: detected capacity change from 0 to 32768
[ 131.251436][ T5988] loop0: detected capacity change from 0 to 32768
[ 131.835855][ T5989] loop0: detected capacity change from 0 to 32768
[ 132.447194][ T5990] loop0: detected capacity change from 0 to 32768
[ 133.014203][ T5991] loop0: detected capacity change from 0 to 32768
[ 133.145589][ T1323] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.145706][ T1323] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.604055][ T5992] loop0: detected capacity change from 0 to 32768
[ 134.147161][ T5993] loop0: detected capacity change from 0 to 32768
[ 134.746670][ T5994] loop0: detected capacity change from 0 to 32768
[ 135.343377][ T5995] loop0: detected capacity change from 0 to 32768
[ 135.946123][ T5996] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:22 executed programs: 28
[ 136.540292][ T5997] loop0: detected capacity change from 0 to 32768
[ 137.105638][ T5998] loop0: detected capacity change from 0 to 32768
[ 137.677955][ T5999] loop0: detected capacity change from 0 to 32768
[ 138.292920][ T6000] loop0: detected capacity change from 0 to 32768
[ 138.903870][ T6001] loop0: detected capacity change from 0 to 32768
[ 139.448070][ T6002] loop0: detected capacity change from 0 to 32768
[ 140.039911][ T6003] loop0: detected capacity change from 0 to 32768
[ 140.644366][ T6004] loop0: detected capacity change from 0 to 32768
[ 141.233436][ T6005] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:27 executed programs: 37
[ 141.829241][ T6006] loop0: detected capacity change from 0 to 32768
[ 142.444420][ T6007] loop0: detected capacity change from 0 to 32768
[ 143.066208][ T6008] loop0: detected capacity change from 0 to 32768
[ 143.604418][ T6009] loop0: detected capacity change from 0 to 32768
[ 144.210097][ T6010] loop0: detected capacity change from 0 to 32768
[ 144.808359][ T6011] loop0: detected capacity change from 0 to 32768
[ 145.367993][ T6012] loop0: detected capacity change from 0 to 32768
[ 145.981565][ T6013] loop0: detected capacity change from 0 to 32768
[ 146.605241][ T6014] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:32 executed programs: 46
[ 147.183734][ T6015] loop0: detected capacity change from 0 to 32768
[ 147.741838][ T6016] loop0: detected capacity change from 0 to 32768
[ 148.303788][ T6017] loop0: detected capacity change from 0 to 32768
[ 149.016842][ T6018] loop0: detected capacity change from 0 to 32768
[ 149.646572][ T6019] loop0: detected capacity change from 0 to 32768
[ 150.235522][ T6020] loop0: detected capacity change from 0 to 32768
[ 150.824829][ T6021] loop0: detected capacity change from 0 to 32768
[ 151.381995][ T6022] loop0: detected capacity change from 0 to 32768
[ 151.956062][ T6023] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:38 executed programs: 55
[ 152.541959][ T6024] loop0: detected capacity change from 0 to 32768
[ 153.119430][ T6025] loop0: detected capacity change from 0 to 32768
[ 153.701144][ T6026] loop0: detected capacity change from 0 to 32768
[ 154.254416][ T6027] loop0: detected capacity change from 0 to 32768
[ 154.883430][ T6028] loop0: detected capacity change from 0 to 32768
[ 155.459788][ T6029] loop0: detected capacity change from 0 to 32768
[ 156.046789][ T6030] loop0: detected capacity change from 0 to 32768
[ 156.624417][ T6031] loop0: detected capacity change from 0 to 32768
[ 157.206614][ T6032] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:43 executed programs: 64
[ 157.819779][ T6033] loop0: detected capacity change from 0 to 32768
[ 158.443794][ T6034] loop0: detected capacity change from 0 to 32768
[ 159.037409][ T6035] loop0: detected capacity change from 0 to 32768
[ 159.620307][ T6036] loop0: detected capacity change from 0 to 32768
[ 160.213307][ T6037] loop0: detected capacity change from 0 to 32768
[ 160.787043][ T6038] loop0: detected capacity change from 0 to 32768
[ 161.432554][ T6039] loop0: detected capacity change from 0 to 32768
[ 161.991170][ T6040] loop0: detected capacity change from 0 to 32768
[ 162.570243][ T6041] loop0: detected capacity change from 0 to 32768
2026/06/09 05:36:48 executed programs: 73
[ 163.128919][ T6042] loop0: detected capacity change from 0 to 32768
[ 163.180106][ T1437] =========================================[ 163.180106][ T1437] ==================================================================
[ 163.180125][ T1437] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.180165][ T1437] Read of size 4096 at addr ffff888046292000 by task kworker/u8:13/1437
[ 163.180182][ T1437]
[ 163.180195][ T1437] CPU: 0 UID: 0 PID: 1437 Comm: kworker/u8:13 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 163.180217][ T1437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 163.180231][ T1437] Workqueue: loop0 loop_workfn
[ 163.180256][ T1437] Call Trace:
[ 163.180265][ T1437]
[ 163.180274][ T1437] dump_stack_lvl+0xe8/0x150
[ 163.180297][ T1437] print_address_description+0x55/0x1e0
[ 163.180320][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.180347][ T1437] print_report+0x58/0x70
[ 163.180366][ T1437] kasan_report+0x117/0x150
[ 163.180392][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.180426][ T1437] kasan_check_range+0x264/0x2c0
[ 163.180449][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.180488][ T1437] __asan_memcpy+0x29/0x70
[ 163.180507][ T1437] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.180542][ T1437] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 163.180571][ T1437] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 163.180602][ T1437] ? shmem_write_begin+0x1ce/0x320
[ 163.180628][ T1437] generic_perform_write+0x5b1/0x8b0
[ 163.180657][ T1437] ? __pfx_generic_perform_write+0x10/0x10
[ 163.180684][ T1437] ? file_update_time_flags+0x3b9/0x4b0
[ 163.180709][ T1437] shmem_file_write_iter+0xfb/0x120
[ 163.180736][ T1437] lo_rw_aio+0xc80/0xf00
[ 163.180766][ T1437] ? __pfx_lo_rw_aio+0x10/0x10
[ 163.180791][ T1437] ? kthread_associate_blkcg+0x490/0x600
[ 163.180819][ T1437] ? rt_spin_unlock+0x160/0x200
[ 163.180844][ T1437] loop_process_work+0x637/0x11b0
[ 163.180874][ T1437] ? __pfx_loop_process_work+0x10/0x10
[ 163.180895][ T1437] ? __lock_acquire+0x6b5/0x2cf0
[ 163.180919][ T1437] ? look_up_lock_class+0x57/0x110
[ 163.180949][ T1437] ? register_lock_class+0x31/0x2e0
[ 163.180974][ T1437] ? __lock_acquire+0x6b5/0x2cf0
[ 163.181002][ T1437] ? finish_task_switch+0x15f/0xbe0
[ 163.181030][ T1437] ? lock_acquire+0x106/0x350
[ 163.181056][ T1437] ? do_raw_spin_lock+0x12b/0x2f0
[ 163.181077][ T1437] ? lock_acquire+0x106/0x350
[ 163.181102][ T1437] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 163.181125][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.181146][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.181168][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.181186][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.181206][ T1437] process_scheduled_works+0xb5d/0x1860
[ 163.181239][ T1437] ? __pfx_process_scheduled_works+0x10/0x10
[ 163.181261][ T1437] ? assign_work+0x3d5/0x5e0
[ 163.181282][ T1437] worker_thread+0xa53/0xfc0
[ 163.181313][ T1437] kthread+0x388/0x470
[ 163.181337][ T1437] ? __pfx_worker_thread+0x10/0x10
[ 163.181357][ T1437] ? __pfx_kthread+0x10/0x10
[ 163.181382][ T1437] ret_from_fork+0x514/0xb70
[ 163.181404][ T1437] ? __pfx_ret_from_fork+0x10/0x10
[ 163.181424][ T1437] ? __switch_to+0xc79/0x1410
[ 163.181451][ T1437] ? __pfx_kthread+0x10/0x10
[ 163.181505][ T1437] ret_from_fork_asm+0x1a/0x30
[ 163.181535][ T1437]
[ 163.181541][ T1437]
[ 163.181547][ T1437] The buggy address belongs to the physical page:
[ 163.181557][ T1437] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3e pfn:0x46292
[ 163.181576][ T1437] flags: 0x80000000000000(node=0|zone=1)
[ 163.181600][ T1437] raw: 0080000000000000 ffffea00011808c8 ffffea000135cf88 0000000000000000
[ 163.181616][ T1437] raw: 000000000000003e 0000000000000000 00000000ffffffff 0000000000000000
[ 163.181625][ T1437] page dumped because: kasan: bad access detected
[ 163.181634][ T1437] page_owner tracks the page as freed
[ 163.181641][ T1437] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 6042, tgid 6042 (syz.0.88), ts 163138120589, free_ts 163180061832
[ 163.181670][ T1437] post_alloc_hook+0x22d/0x280
[ 163.181689][ T1437] get_page_from_freelist+0x28b2/0x2930
[ 163.181712][ T1437] __alloc_frozen_pages_noprof+0x18d/0x380
[ 163.181734][ T1437] alloc_pages_mpol+0xd1/0x380
[ 163.181756][ T1437] alloc_pages_noprof+0xd2/0x2f0
[ 163.181774][ T1437] lmLogInit+0x357/0x1a00
[ 163.181796][ T1437] lmLogOpen+0x4e1/0xfa0
[ 163.181817][ T1437] jfs_mount_rw+0xee/0x670
[ 163.181839][ T1437] jfs_fill_super+0x754/0xd80
[ 163.181856][ T1437] get_tree_bdev_flags+0x431/0x4f0
[ 163.181877][ T1437] vfs_get_tree+0x92/0x2a0
[ 163.181895][ T1437] do_new_mount+0x341/0xd30
[ 163.181919][ T1437] __se_sys_mount+0x31d/0x420
[ 163.181945][ T1437] do_syscall_64+0x174/0x580
[ 163.181968][ T1437] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.181985][ T1437] page last free pid 5811 tgid 5811 stack trace:
[ 163.181996][ T1437] __free_frozen_pages+0xfe5/0x10d0
[ 163.182016][ T1437] lmLogShutdown+0x44e/0x850
[ 163.182038][ T1437] lmLogClose+0x28a/0x520
[ 163.182062][ T1437] jfs_umount+0x2fb/0x3d0
[ 163.182084][ T1437] jfs_put_super+0x8c/0x190
[ 163.182102][ T1437] generic_shutdown_super+0x13d/0x2d0
[ 163.182120][ T1437] kill_block_super+0x44/0x90
[ 163.182139][ T1437] deactivate_locked_super+0xbc/0x130
[ 163.182155][ T1437] cleanup_mnt+0x437/0x4d0
[ 163.182171][ T1437] task_work_run+0x1d9/0x270
[ 163.182194][ T1437] exit_to_user_mode_loop+0x193/0x680
[ 163.182215][ T1437] do_syscall_64+0x353/0x580
[ 163.182241][ T1437] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.182258][ T1437]
[ 163.182263][ T1437] Memory state around the buggy address:
[ 163.182273][ T1437] ffff888046291f00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 163.182285][ T1437] ffff888046291f80: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[ 163.182297][ T1437] >ffff888046292000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 163.182307][ T1437] ^
[ 163.182317][ T1437] ffff888046292080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 163.182329][ T1437] ffff888046292100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 163.182338][ T1437] ==================================================================
[ 163.186486][ T1437] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 163.186504][ T1437] CPU: 0 UID: 0 PID: 1437 Comm: kworker/u8:13 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 163.186525][ T1437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 163.186536][ T1437] Workqueue: loop0 loop_workfn
[ 163.186560][ T1437] Call Trace:
[ 163.186566][ T1437]
[ 163.186573][ T1437] vpanic+0x56c/0xa60
[ 163.186596][ T1437] ? __pfx_vpanic+0x10/0x10
[ 163.186620][ T1437] panic+0xc5/0xd0
[ 163.186639][ T1437] ? __pfx_panic+0x10/0x10
[ 163.186659][ T1437] ? preempt_schedule_thunk+0x16/0x30
[ 163.186684][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186708][ T1437] ? preempt_schedule_thunk+0x16/0x30
[ 163.186732][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186755][ T1437] check_panic_on_warn+0x89/0xb0
[ 163.186778][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186801][ T1437] end_report+0x73/0x170
[ 163.186821][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186844][ T1437] kasan_report+0x128/0x150
[ 163.186864][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186891][ T1437] kasan_check_range+0x264/0x2c0
[ 163.186911][ T1437] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186935][ T1437] __asan_memcpy+0x29/0x70
[ 163.186952][ T1437] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 163.186984][ T1437] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 163.187013][ T1437] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 163.187038][ T1437] ? shmem_write_begin+0x1ce/0x320
[ 163.187061][ T1437] generic_perform_write+0x5b1/0x8b0
[ 163.187086][ T1437] ? __pfx_generic_perform_write+0x10/0x10
[ 163.187109][ T1437] ? file_update_time_flags+0x3b9/0x4b0
[ 163.187132][ T1437] shmem_file_write_iter+0xfb/0x120
[ 163.187156][ T1437] lo_rw_aio+0xc80/0xf00
[ 163.187181][ T1437] ? __pfx_lo_rw_aio+0x10/0x10
[ 163.187204][ T1437] ? kthread_associate_blkcg+0x490/0x600
[ 163.187228][ T1437] ? rt_spin_unlock+0x160/0x200
[ 163.187250][ T1437] loop_process_work+0x637/0x11b0
[ 163.187277][ T1437] ? __pfx_loop_process_work+0x10/0x10
[ 163.187296][ T1437] ? __lock_acquire+0x6b5/0x2cf0
[ 163.187317][ T1437] ? look_up_lock_class+0x57/0x110
[ 163.187341][ T1437] ? register_lock_class+0x31/0x2e0
[ 163.187364][ T1437] ? __lock_acquire+0x6b5/0x2cf0
[ 163.187387][ T1437] ? finish_task_switch+0x15f/0xbe0
[ 163.187411][ T1437] ? lock_acquire+0x106/0x350
[ 163.187432][ T1437] ? do_raw_spin_lock+0x12b/0x2f0
[ 163.187450][ T1437] ? lock_acquire+0x106/0x350
[ 163.187514][ T1437] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 163.187534][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.187552][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.187572][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.187589][ T1437] ? process_scheduled_works+0xa70/0x1860
[ 163.187607][ T1437] process_scheduled_works+0xb5d/0x1860
[ 163.187636][ T1437] ? __pfx_process_scheduled_works+0x10/0x10
[ 163.187657][ T1437] ? assign_work+0x3d5/0x5e0
[ 163.187676][ T1437] worker_thread+0xa53/0xfc0
[ 163.187704][ T1437] kthread+0x388/0x470
[ 163.187726][ T1437] ? __pfx_worker_thread+0x10/0x10
[ 163.187743][ T1437] ? __pfx_kthread+0x10/0x10
[ 163.187764][ T1437] ret_from_fork+0x514/0xb70
[ 163.187784][ T1437] ? __pfx_ret_from_fork+0x10/0x10
[ 163.187802][ T1437] ? __switch_to+0xc79/0x1410
[ 163.187827][ T1437] ? __pfx_kthread+0x10/0x10
[ 163.187849][ T1437] ret_from_fork_asm+0x1a/0x30
[ 163.187875][ T1437]
[ 163.188117][ T1437] Kernel Offset: disabled