syzkaller login: [   92.142756][ T1236] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.17' (ED25519) to the list of known hosts.
2026/04/19 01:07:19 parsed 1 programs
[  101.458804][ T5805] cgroup: Unknown subsys name 'net'
[  101.721271][ T5805] cgroup: Unknown subsys name 'cpuset'
[  101.785293][ T5805] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  103.734689][ T5805] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  106.997100][ T1209] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  106.997125][ T1209] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  107.073083][ T1209] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  107.073106][ T1209] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.939160][ T5872] chnl_net:caif_netlink_parms(): no params data found
[  113.096558][ T5872] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.096771][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.096921][ T5872] bridge_slave_0: entered allmulticast mode
[  113.099659][ T5872] bridge_slave_0: entered promiscuous mode
[  113.131910][ T5872] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.132007][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.132160][ T5872] bridge_slave_1: entered allmulticast mode
[  113.140045][ T5872] bridge_slave_1: entered promiscuous mode
[  113.309931][ T5872] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.315993][ T5872] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.368331][ T5872] team0: Port device team_slave_0 added
[  113.370982][ T5872] team0: Port device team_slave_1 added
[  113.419641][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.419656][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  113.419676][ T5872] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  113.422179][ T5872] batman_adv: batadv0: Adding interface: batadv_slave_1
[  113.422191][ T5872] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  113.422211][ T5872] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.566011][ T5872] hsr_slave_0: entered promiscuous mode
[  113.567309][ T5872] hsr_slave_1: entered promiscuous mode
[  114.211485][ T5872] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  114.232124][ T5872] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  114.232939][ T5872] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  114.270062][ T5872] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  114.270872][ T5872] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  114.318797][ T5872] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  114.319579][ T5872] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  114.359028][ T5872] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  114.500284][ T5872] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.537437][ T5872] 8021q: adding VLAN 0 to HW filter on device team0
[  114.559076][ T1209] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.559358][ T1209] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.602582][ T1209] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.602711][ T1209] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.910921][ T5872] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.978016][ T5872] veth0_vlan: entered promiscuous mode
[  114.992649][ T5872] veth1_vlan: entered promiscuous mode
[  115.054424][ T5872] veth0_macvtap: entered promiscuous mode
[  115.059072][ T5872] veth1_macvtap: entered promiscuous mode
[  115.105033][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.129257][ T5872] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.164335][ T1316] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.167521][ T1316] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.168428][ T1316] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.194393][ T1316] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.750218][ T5896] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  115.768949][ T5896] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  115.769886][ T5896] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  115.771734][ T5896] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  115.772564][ T5896] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  115.939395][ T1316] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.229269][ T1316] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.540180][ T1316] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.541865][ T1316] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/19 01:07:40 executed programs: 0
[  118.374503][ T5896] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  118.376390][ T5896] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  118.377265][ T5896] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  118.379014][ T5896] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  118.379986][ T5896] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  118.684539][ T1316] bridge_slave_1: left allmulticast mode
[  118.684735][ T1316] bridge_slave_1: left promiscuous mode
[  118.688851][ T1316] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.775198][ T1316] bridge_slave_0: left allmulticast mode
[  118.775223][ T1316] bridge_slave_0: left promiscuous mode
[  118.775724][ T1316] bridge0: port 1(bridge_slave_0) entered disabled state
[  119.464513][ T1316] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.544662][ T1316] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.566227][ T1316] bond0 (unregistering): Released all slaves
[  120.024306][ T1316] hsr_slave_0: left promiscuous mode
[  120.063849][ T1316] hsr_slave_1: left promiscuous mode
[  120.067714][ T1316] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.067791][ T1316] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.115933][ T1316] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.115964][ T1316] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.227961][ T1316] veth1_macvtap: left promiscuous mode
[  120.228132][ T1316] veth0_macvtap: left promiscuous mode
[  120.228324][ T1316] veth1_vlan: left promiscuous mode
[  120.228511][ T1316] veth0_vlan: left promiscuous mode
[  120.445887][   T59] Bluetooth: hci0: command tx timeout
[  121.005922][ T1316] team0 (unregistering): Port device team_slave_1 removed
[  121.064823][ T1316] team0 (unregistering): Port device team_slave_0 removed
[  121.299342][ T5464] 8021q: adding VLAN 0 to HW filter on device eth1
[  121.470164][ T5915] chnl_net:caif_netlink_parms(): no params data found
[  121.726353][ T5915] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.727718][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.727909][ T5915] bridge_slave_0: entered allmulticast mode
[  121.730601][ T5915] bridge_slave_0: entered promiscuous mode
[  121.735944][ T5915] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.736535][ T5915] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.737113][ T5915] bridge_slave_1: entered allmulticast mode
[  121.744150][ T5915] bridge_slave_1: entered promiscuous mode
[  121.851333][ T5915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  121.867735][ T5915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  121.954867][ T5915] team0: Port device team_slave_0 added
[  121.958833][ T5915] team0: Port device team_slave_1 added
[  122.013094][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_0
[  122.013113][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  122.013143][ T5915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  122.032975][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_1
[  122.033031][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  122.033123][ T5915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  122.190147][ T5915] hsr_slave_0: entered promiscuous mode
[  122.191603][ T5915] hsr_slave_1: entered promiscuous mode
[  122.372633][ T5464] 8021q: adding VLAN 0 to HW filter on device eth2
[  122.523872][   T59] Bluetooth: hci0: command tx timeout
[  124.388790][ T5915] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  124.426939][ T5915] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  124.428150][ T5915] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  124.459466][ T5915] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  124.460616][ T5915] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  124.555286][ T5915] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  124.558565][ T5915] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  124.590001][ T5915] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  124.604273][   T59] Bluetooth: hci0: command tx timeout
[  124.839651][ T5915] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.872542][ T5915] 8021q: adding VLAN 0 to HW filter on device team0
[  124.901855][ T1316] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.902103][ T1316] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.956396][ T1209] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.956783][ T1209] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.370251][ T5915] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.454149][ T5915] veth0_vlan: entered promiscuous mode
[  125.462114][ T5915] veth1_vlan: entered promiscuous mode
[  125.520371][ T5915] veth0_macvtap: entered promiscuous mode
[  125.531720][ T5915] veth1_macvtap: entered promiscuous mode
[  125.555012][ T5915] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.564279][ T5915] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.597428][ T1316] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.600523][ T1316] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.600573][ T1316] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.600614][ T1316] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.928840][ T1209] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.928865][ T1209] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.987835][  T161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.987858][  T161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/19 01:07:48 executed programs: 2
[  126.418628][ T6015] loop0: detected capacity change from 0 to 32768
[  126.693971][   T59] Bluetooth: hci0: command tx timeout
[  127.147685][ T6016] loop0: detected capacity change from 0 to 32768
[  127.707184][ T6017] loop0: detected capacity change from 0 to 32768
[  128.187633][ T6018] loop0: detected capacity change from 0 to 32768
[  128.597246][ T6019] loop0: detected capacity change from 0 to 32768
[  129.069563][ T6020] loop0: detected capacity change from 0 to 32768
[  129.492138][ T6021] loop0: detected capacity change from 0 to 32768
[  129.939528][ T6022] loop0: detected capacity change from 0 to 32768
[  130.364575][ T6023] loop0: detected capacity change from 0 to 32768
[  130.825579][ T6024] loop0: detected capacity change from 0 to 32768
2026/04/19 01:07:53 executed programs: 13
[  131.740558][ T6027] set_capacity_and_notify: 1 callbacks suppressed
[  131.740573][ T6027] loop0: detected capacity change from 0 to 32768
[  132.250598][ T6030] loop0: detected capacity change from 0 to 32768
[  132.648015][ T6032] loop0: detected capacity change from 0 to 32768
[  133.032269][ T6033] loop0: detected capacity change from 0 to 32768
[  133.101853][ T1331] ieee802154 phy0 wpan0: encryption failed: -22
[  133.102343][ T1331] ieee802154 phy1 wpan1: encryption failed: -22
[  133.494986][ T6034] loop0: detected capacity change from 0 to 32768
[  133.904969][ T6036] loop0: detected capacity change from 0 to 32768
[  134.359432][ T6038] loop0: detected capacity change from 0 to 32768
[  134.764214][ T6039] loop0: detected capacity change from 0 to 32768
[  135.147058][ T6040] loop0: detected capacity change from 0 to 32768
[  135.549422][ T6041] loop0: detected capacity change from 0 to 32768
2026/04/19 01:07:58 executed programs: 25
[  136.481406][    C1] ==================================================================
[  136.481424][    C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[  136.481471][    C1] Read of size 4 at addr ffff888031c69608 by task ksoftirqd/1/30
[  136.481490][    C1] 
[  136.481523][    C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.481561][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  136.481583][    C1] Call Trace:
[  136.481592][    C1]  <TASK>
[  136.481601][    C1]  dump_stack_lvl+0xe8/0x150
[  136.481640][    C1]  print_address_description+0x55/0x1e0
[  136.481678][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.481698][    C1]  print_report+0x58/0x70
[  136.481736][    C1]  kasan_report+0x117/0x150
[  136.481772][ [  136.481772][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.481797][    C1]  lbmIODone+0x1312/0x16c0
[  136.481818][    C1]  ? blkg_put+0x22/0x240
[  136.481842][    C1]  ? blkg_put+0x22/0x240
[  136.481866][    C1]  ? blkg_put+0x18d/0x240
[  136.481890][    C1]  ? bio_endio+0x989/0x9d0
[  136.481920][    C1]  blk_update_request+0x57e/0xe60
[  136.481958][    C1]  blk_mq_end_request+0x3e/0x70
[  136.481988][    C1]  blk_done_softirq+0x10a/0x160
[  136.482017][    C1]  handle_softirqs+0x1de/0x6d0
[  136.482057][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  136.482079][    C1]  run_ksoftirqd+0x52/0x180
[  136.482103][    C1]  smpboot_thread_fn+0x541/0xa50
[  136.482124][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  136.482179][    C1]  kthread+0x388/0x470
[  136.482207][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  136.482229][    C1]  ? __pfx_kthread+0x10/0x10
[  136.482255][    C1]  ret_from_fork+0x514/0xb70
[  136.482293][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  136.482367][    C1]  ? __switch_to+0xc79/0x1410
[  136.482398][    C1]  ? __pfx_kthread+0x10/0x10
[  136.482423][    C1]  ret_from_fork_asm+0x1a/0x30
[  136.482455][    C1]  </TASK>
[  136.482463][    C1] 
[  136.482475][    C1] Allocated by task 6043:
[  136.482491][    C1]  kasan_save_track+0x3e/0x80
[  136.482521][    C1]  __kasan_kmalloc+0x93/0xb0
[  136.482552][    C1]  __kmalloc_cache_noprof+0x3a6/0x690
[  136.482586][    C1]  lmLogInit+0x3e5/0x1a00
[  136.482624][    C1]  lmLogOpen+0x4e1/0xfa0
[  136.482654][    C1]  jfs_mount_rw+0xee/0x670
[  136.482684][    C1]  jfs_fill_super+0x754/0xd80
[  136.482707][    C1]  get_tree_bdev_flags+0x431/0x4f0
[  136.482746][    C1]  vfs_get_tree+0x92/0x2a0
[  136.482777][    C1]  do_new_mount+0x341/0xd30
[  136.482801][    C1]  __se_sys_mount+0x31d/0x420
[  136.482825][    C1]  do_syscall_64+0x15f/0xf80
[  136.482853][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.482873][    C1] 
[  136.482878][    C1] Freed by task 5915:
[  136.482888][    C1]  kasan_save_track+0x3e/0x80
[  136.482917][    C1]  kasan_save_free_info+0x46/0x50
[  136.482941][    C1]  __kasan_slab_free+0x5c/0x80
[  136.482969][    C1]  kfree+0x1c5/0x6c0
[  136.482995][    C1]  lmLogShutdown+0x456/0x850
[  136.483012][    C1]  lmLogClose+0x28a/0x520
[  136.483041][    C1]  jfs_umount+0x2fb/0x3d0
[  136.483070][    C1]  jfs_put_super+0x8c/0x190
[  136.483093][    C1]  generic_shutdown_super+0x13d/0x2d0
[  136.483121][    C1]  kill_block_super+0x44/0x90
[  136.483152][    C1]  deactivate_locked_super+0xbc/0x130
[  136.483179][    C1]  cleanup_mnt+0x437/0x4d0
[  136.483210][    C1]  task_work_run+0x1d9/0x270
[  136.483236][    C1]  exit_to_user_mode_loop+0xed/0x480
[  136.483258][    C1]  do_syscall_64+0x33e/0xf80
[  136.483283][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.483304][    C1] 
[  136.483309][    C1] The buggy address belongs to the object at ffff888031c69600
[  136.483309][    C1]  which belongs to the cache kmalloc-256 of size 256
[  136.483326][    C1] The buggy address is located 8 bytes inside of
[  136.483326][    C1]  freed 256-byte region [ffff888031c69600, ffff888031c69700)
[  136.483356][    C1] 
[  136.483362][    C1] The buggy address belongs to the physical page:
[  136.483383][    C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31c68
[  136.483404][    C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  136.483422][    C1] flags: 0x80000000000040(head|node=0|zone=1)
[  136.483444][    C1] page_type: f5(slab)
[  136.483464][    C1] raw: 0080000000000040 ffff88801a01fb40 dead000000000100 dead000000000122
[  136.483484][    C1] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  136.483504][    C1] head: 0080000000000040 ffff88801a01fb40 dead000000000100 dead000000000122
[  136.483522][    C1] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  136.483542][    C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  136.483560][    C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  136.483571][    C1] page dumped because: kasan: bad access detected
[  136.483586][    C1] page_owner tracks the page as allocated
[  136.483594][    C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 33, tgid 33 (kdevtmpfs), ts 26967371178, free_ts 0
[  136.483634][    C1]  post_alloc_hook+0x231/0x280
[  136.483666][    C1]  get_page_from_freelist+0x27c8/0x2840
[  136.483688][    C1]  __alloc_frozen_pages_noprof+0x18d/0x380
[  136.483708][    C1]  allocate_slab+0x77/0x660
[  136.483739][    C1]  refill_objects+0x33c/0x3d0
[  136.483759][    C1]  __pcs_replace_empty_main+0x373/0x720
[  136.483784][    C1]  __kmalloc_noprof+0x530/0x7b0
[  136.483814][    C1]  security_inode_init_security+0x102/0x3d0
[  136.483839][    C1]  shmem_mknod+0x1fe/0x360
[  136.483863][    C1]  vfs_mknod+0x44e/0x620
[  136.483894][    C1]  devtmpfs_work_loop+0x861/0xdf0
[  136.483921][    C1]  devtmpfsd+0x4d/0x50
[  136.483942][    C1]  kthread+0x388/0x470
[  136.483964][    C1]  ret_from_fork+0x514/0xb70
[  136.483997][    C1]  ret_from_fork_asm+0x1a/0x30
[  136.484019][    C1] page_owner free stack trace missing
[  136.484026][    C1] 
[  136.484031][    C1] Memory state around the buggy address:
[  136.484043][    C1]  ffff888031c69500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  136.484058][    C1]  ffff888031c69580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  136.484073][    C1] >ffff888031c69600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.484085][    C1]                       ^
[  136.484095][    C1]  ffff888031c69680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  136.484109][    C1]  ffff888031c69700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  136.484120][    C1] ==================================================================
[  136.565209][    C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  136.565232][    C1] CPU: 1 UID: 0 PID: 30 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  136.565258][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  136.565272][    C1] Call Trace:
[  136.565282][    C1]  <TASK>
[  136.565292][    C1]  vpanic+0x56c/0xa60
[  136.565322][    C1]  ? __pfx_vpanic+0x10/0x10
[  136.565344][    C1]  ? __pfx___schedule+0x10/0x10
[  136.565375][    C1]  panic+0xc5/0xd0
[  136.565396][    C1]  ? __pfx_panic+0x10/0x10
[  136.565417][    C1]  ? preempt_schedule_thunk+0x16/0x30
[  136.565453][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.565474][    C1]  check_panic_on_warn+0x89/0xb0
[  136.565504][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.565524][    C1]  end_report+0x73/0x170
[  136.565560][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.565579][    C1]  kasan_report+0x128/0x150
[  136.565615][    C1]  ? lbmIODone+0x1312/0x16c0
[  136.565640][    C1]  lbmIODone+0x1312/0x16c0
[  136.565661][    C1]  ? blkg_put+0x22/0x240
[  136.565685][    C1]  ? blkg_put+0x22/0x240
[  136.565715][    C1]  ? blkg_put+0x18d/0x240
[  136.565739][    C1]  ? bio_endio+0x989/0x9d0
[  136.565769][    C1]  blk_update_request+0x57e/0xe60
[  136.565807][    C1]  blk_mq_end_request+0x3e/0x70
[  136.565836][    C1]  blk_done_softirq+0x10a/0x160
[  136.565864][    C1]  handle_softirqs+0x1de/0x6d0
[  136.565904][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  136.565927][    C1]  run_ksoftirqd+0x52/0x180
[  136.565950][    C1]  smpboot_thread_fn+0x541/0xa50
[  136.565974][    C1]  ? smpboot_thread_fn+0x4d/0xa50
[  136.566002][    C1]  kthread+0x388/0x470
[  136.566028][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  136.566050][    C1]  ? __pfx_kthread+0x10/0x10
[  136.566076][    C1]  ret_from_fork+0x514/0xb70
[  136.566115][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  136.566150][    C1]  ? __switch_to+0xc79/0x1410
[  136.566181][    C1]  ? __pfx_kthread+0x10/0x10
[  136.566207][    C1]  ret_from_fork_asm+0x1a/0x30
[  136.566240][    C1]  </TASK>
[  136.566398][    C1] Kernel Offset: disabled