Warning: Permanently added '10.128.0.128' (ED25519) to the list of known hosts.
[ 91.963836][ T37] cfg80211: failed to load regulatory.db
2026/06/29 04:45:39 parsed 1 programs
2026/06/29 04:45:39 serving rpc on tcp://37059
[ 96.666185][ T5621] cgroup: Unknown subsys name 'net'
[ 96.907037][ T5621] cgroup: Unknown subsys name 'cpuset'
[ 96.961945][ T5621] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 98.941991][ T5621] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 104.232710][ T3327] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.232747][ T3327] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.347128][ T196] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.347150][ T196] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.909027][ T5679] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.910704][ T5679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 107.911134][ T5679] bridge_slave_0: entered allmulticast mode
[ 107.928559][ T5679] bridge_slave_0: entered promiscuous mode
[ 107.945776][ T5679] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.946092][ T5679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 107.946298][ T5679] bridge_slave_1: entered allmulticast mode
[ 107.948682][ T5679] bridge_slave_1: entered promiscuous mode
[ 108.053190][ T5679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 108.058214][ T5679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 108.127663][ T5679] team0: Port device team_slave_0 added
[ 108.140191][ T5679] team0: Port device team_slave_1 added
[ 108.193537][ T5679] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 108.193551][ T5679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 108.193570][ T5679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 108.197686][ T5679] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 108.197698][ T5679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 108.197717][ T5679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 108.710393][ T5679] hsr_slave_0: entered promiscuous mode
[ 108.715421][ T5679] hsr_slave_1: entered promiscuous mode
[ 109.122010][ T5679] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 109.180453][ T5679] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 109.185457][ T5679] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.228430][ T5679] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 109.236797][ T5679] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.268138][ T5679] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 109.269822][ T5679] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.309562][ T5679] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 109.515861][ T5679] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.559269][ T5679] 8021q: adding VLAN 0 to HW filter on device team0
[ 109.598983][ T3332] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.599195][ T3332] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 109.652817][ T3332] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.652931][ T3332] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 110.210818][ T5679] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.320856][ T5679] veth0_vlan: entered promiscuous mode
[ 110.351143][ T5679] veth1_vlan: entered promiscuous mode
[ 110.428737][ T5679] veth0_macvtap: entered promiscuous mode
[ 110.448757][ T5679] veth1_macvtap: entered promiscuous mode
[ 110.505555][ T5679] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 110.529834][ T5679] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 110.560504][ T3327] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.560763][ T3327] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.587228][ T3327] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.588461][ T3327] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.336846][ T3401] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.066182][ T4925] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 112.088227][ T4925] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 112.090513][ T4925] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 112.102248][ T4925] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 112.109133][ T4925] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 112.214306][ T3401] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.067120][ T3401] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.544860][ T3401] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 114.223040][ T3401] bridge_slave_1: left allmulticast mode
[ 114.223250][ T3401] bridge_slave_1: left promiscuous mode
[ 114.256649][ T3401] bridge0: port 2(bridge_slave_1) entered disabled state
2026/06/29 04:46:01 executed programs: 0
[ 114.455137][ T3401] bridge_slave_0: left allmulticast mode
[ 114.455175][ T3401] bridge_slave_0: left promiscuous mode
[ 114.455462][ T3401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 114.544220][ T4925] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 114.568528][ T4925] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 114.569384][ T4925] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 114.570626][ T4925] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 114.595682][ T4925] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 115.432180][ T3401] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 115.512145][ T3401] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 115.533810][ T3401] bond0 (unregistering): Released all slaves
[ 115.587356][ T5271] 8021q: adding VLAN 0 to HW filter on device eth1
[ 116.061456][ T3401] hsr_slave_0: left promiscuous mode
[ 116.101433][ T3401] hsr_slave_1: left promiscuous mode
[ 116.102818][ T3401] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 116.102931][ T3401] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 116.143297][ T3401] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 116.143325][ T3401] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 116.247500][ T3401] veth1_macvtap: left promiscuous mode
[ 116.247698][ T3401] veth0_macvtap: left promiscuous mode
[ 116.247939][ T3401] veth1_vlan: left promiscuous mode
[ 116.248167][ T3401] veth0_vlan: left promiscuous mode
[ 116.674459][ T60] Bluetooth: hci0: command tx timeout
[ 117.003437][ T3401] team0 (unregistering): Port device team_slave_1 removed
[ 117.063238][ T3401] team0 (unregistering): Port device team_slave_0 removed
[ 117.265619][ T5271] 8021q: adding VLAN 0 to HW filter on device eth2
[ 117.949165][ T5271] 8021q: adding VLAN 0 to HW filter on device eth3
[ 117.951029][ T5757] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.961616][ T5757] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.962277][ T5757] bridge_slave_0: entered allmulticast mode
[ 117.965986][ T5757] bridge_slave_0: entered promiscuous mode
[ 118.001750][ T5757] bridge0: port 2(bridge_slave_1) entered blocking state
[ 118.002892][ T5757] bridge0: port 2(bridge_slave_1) entered disabled state
[ 118.003195][ T5757] bridge_slave_1: entered allmulticast mode
[ 118.007998][ T5757] bridge_slave_1: entered promiscuous mode
[ 118.100657][ T5757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 118.128169][ T5757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 118.207976][ T5757] team0: Port device team_slave_0 added
[ 118.219944][ T5757] team0: Port device team_slave_1 added
[ 118.414472][ T5757] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 118.414491][ T5757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 118.414518][ T5757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 118.418263][ T5757] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 118.418280][ T5757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 118.418308][ T5757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 118.597315][ T5757] hsr_slave_0: entered promiscuous mode
[ 118.599590][ T5757] hsr_slave_1: entered promiscuous mode
[ 118.753393][ T60] Bluetooth: hci0: command tx timeout
[ 119.287877][ T5271] 8021q: adding VLAN 0 to HW filter on device eth4
[ 120.831462][ T60] Bluetooth: hci0: command tx timeout
[ 121.362023][ T5757] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 121.406008][ T5757] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 121.407476][ T5757] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 121.447893][ T5757] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 121.450156][ T5757] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 121.484664][ T5757] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 121.494195][ T5757] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 121.536417][ T5757] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 121.898917][ T5757] 8021q: adding VLAN 0 to HW filter on device bond0
[ 121.956892][ T5757] 8021q: adding VLAN 0 to HW filter on device team0
[ 122.012904][ T3327] bridge0: port 1(bridge_slave_0) entered blocking state
[ 122.013682][ T3327] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 122.060568][ T3401] bridge0: port 2(bridge_slave_1) entered blocking state
[ 122.060736][ T3401] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 122.900323][ T5757] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 122.912916][ T60] Bluetooth: hci0: command tx timeout
[ 123.039213][ T5757] veth0_vlan: entered promiscuous mode
[ 123.080028][ T5757] veth1_vlan: entered promiscuous mode
[ 123.189732][ T5757] veth0_macvtap: entered promiscuous mode
[ 123.220485][ T5757] veth1_macvtap: entered promiscuous mode
[ 123.275086][ T5757] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 123.302571][ T5757] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 123.330175][ T67] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.343753][ T67] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.346054][ T67] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.346276][ T67] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 123.737445][ T3401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.737466][ T3401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 123.796443][ T3401] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 123.796464][ T3401] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/06/29 04:46:10 executed programs: 2
[ 124.199479][ T5924] loop0: detected capacity change from 0 to 32768
[ 124.442308][ T5924] Bad index:0 in slot in dtroot
[ 124.442308][ T5924]
[ 124.442337][ T5924] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 124.442337][ T5924]
[ 124.442618][ T5924] ERROR: (device loop0): remounting filesystem as read-only
[ 124.960535][ T5925] loop0: detected capacity change from 0 to 32768
[ 125.013704][ T5925] Bad index:0 in slot in dtroot
[ 125.013704][ T5925]
[ 125.013724][ T5925] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 125.013724][ T5925]
[ 125.018512][ T5925] ERROR: (device loop0): remounting filesystem as read-only
[ 125.485793][ T5926] loop0: detected capacity change from 0 to 32768
[ 125.512351][ T5926] Bad index:0 in slot in dtroot
[ 125.512351][ T5926]
[ 125.512367][ T5926] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 125.512367][ T5926]
[ 125.529486][ T5926] ERROR: (device loop0): remounting filesystem as read-only
[ 125.894850][ T5927] loop0: detected capacity change from 0 to 32768
[ 125.925282][ T5927] Bad index:0 in slot in dtroot
[ 125.925282][ T5927]
[ 125.925297][ T5927] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 125.925297][ T5927]
[ 125.926105][ T5927] ERROR: (device loop0): remounting filesystem as read-only
[ 126.358851][ T5928] loop0: detected capacity change from 0 to 32768
[ 126.375517][ T5928] Bad index:0 in slot in dtroot
[ 126.375517][ T5928]
[ 126.375533][ T5928] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 126.375533][ T5928]
[ 126.375886][ T5928] ERROR: (device loop0): remounting filesystem as read-only
[ 126.750683][ T5930] loop0: detected capacity change from 0 to 32768
[ 126.790897][ T5930] Bad index:0 in slot in dtroot
[ 126.790897][ T5930]
[ 126.790915][ T5930] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 126.790915][ T5930]
[ 126.791144][ T5930] ERROR: (device loop0): remounting filesystem as read-only
[ 127.184929][ T5931] loop0: detected capacity change from 0 to 32768
[ 127.210223][ T5931] Bad index:0 in slot in dtroot
[ 127.210223][ T5931]
[ 127.210240][ T5931] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 127.210240][ T5931]
[ 127.210491][ T5931] ERROR: (device loop0): remounting filesystem as read-only
[ 127.599289][ T5932] loop0: detected capacity change from 0 to 32768
[ 127.619976][ T5932] Bad index:0 in slot in dtroot
[ 127.619976][ T5932]
[ 127.619992][ T5932] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 127.619992][ T5932]
[ 127.620497][ T5932] ERROR: (device loop0): remounting filesystem as read-only
[ 128.097566][ T5933] loop0: detected capacity change from 0 to 32768
[ 128.110393][ T5933] Bad index:0 in slot in dtroot
[ 128.110393][ T5933]
[ 128.110410][ T5933] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 128.110410][ T5933]
[ 128.110713][ T5933] ERROR: (device loop0): remounting filesystem as read-only
[ 128.512924][ T5936] loop0: detected capacity change from 0 to 32768
[ 128.534948][ T5936] Bad index:0 in slot in dtroot
[ 128.534948][ T5936]
[ 128.534964][ T5936] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 128.534964][ T5936]
[ 128.535425][ T5936] ERROR: (device loop0): remounting filesystem as read-only
[ 128.957822][ T5938] Bad index:0 in slot in dtroot
[ 128.957822][ T5938]
[ 128.957840][ T5938] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 128.957840][ T5938]
[ 128.958159][ T5938] ERROR: (device loop0): remounting filesystem as read-only
2026/06/29 04:46:15 executed programs: 13
[ 129.359330][ T5940] set_capacity_and_notify: 1 callbacks suppressed
[ 129.359352][ T5940] loop0: detected capacity change from 0 to 32768
[ 129.403071][ T5940] Bad index:0 in slot in dtroot
[ 129.403071][ T5940]
[ 129.403087][ T5940] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 129.403087][ T5940]
[ 129.403352][ T5940] ERROR: (device loop0): remounting filesystem as read-only
[ 129.771205][ T5942] loop0: detected capacity change from 0 to 32768
[ 129.805001][ T5942] Bad index:0 in slot in dtroot
[ 129.805001][ T5942]
[ 129.805017][ T5942] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 129.805017][ T5942]
[ 129.806416][ T5942] ERROR: (device loop0): remounting filesystem as read-only
[ 130.214512][ T5943] loop0: detected capacity change from 0 to 32768
[ 130.242023][ T5943] Bad index:0 in slot in dtroot
[ 130.242023][ T5943]
[ 130.242041][ T5943] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 130.242041][ T5943]
[ 130.242317][ T5943] ERROR: (device loop0): remounting filesystem as read-only
[ 130.623454][ T5944] loop0: detected capacity change from 0 to 32768
[ 130.644008][ T5944] Bad index:0 in slot in dtroot
[ 130.644008][ T5944]
[ 130.644024][ T5944] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 130.644024][ T5944]
[ 130.645175][ T5944] ERROR: (device loop0): remounting filesystem as read-only
[ 131.012073][ T5945] loop0: detected capacity change from 0 to 32768
[ 131.059865][ T5945] Bad index:0 in slot in dtroot
[ 131.059865][ T5945]
[ 131.059884][ T5945] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 131.059884][ T5945]
[ 131.077004][ T5945] ERROR: (device loop0): remounting filesystem as read-only
[ 131.429915][ T5946] loop0: detected capacity change from 0 to 32768
[ 131.458003][ T5946] Bad index:0 in slot in dtroot
[ 131.458003][ T5946]
[ 131.458044][ T5946] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 131.458044][ T5946]
[ 131.458347][ T5946] ERROR: (device loop0): remounting filesystem as read-only
[ 131.842433][ T5947] loop0: detected capacity change from 0 to 32768
[ 131.867560][ T5947] Bad index:0 in slot in dtroot
[ 131.867560][ T5947]
[ 131.867575][ T5947] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 131.867575][ T5947]
[ 131.867880][ T5947] ERROR: (device loop0): remounting filesystem as read-only
[ 132.234924][ T5948] loop0: detected capacity change from 0 to 32768
[ 132.253562][ T5948] Bad index:0 in slot in dtroot
[ 132.253562][ T5948]
[ 132.253577][ T5948] ERROR: (device loop0): copy_from_dinode: Corrupt dtroot
[ 132.253577][ T5948]
[ 132.276206][ T5948] ERROR: (device loop0): remounting filesystem as read-only
[ 132.281369][ C0] ==================================================================
[ 132.281385][ C0] BUG: KASAN: slab-use-after-free in lbmIODone+0x130e/0x16b0
[ 132.281417][ C0] Read of size 4 at addr ffff88802964d008 by task rcuc/0/21
[ 132.281435][ C0]
[ 132.281468][ C0] CPU: 0 UID: 0 PID: 21 Comm: rcuc/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 132.281498][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 132.281520][ C0] Call Trace:
[ 132.281532][ C0]
[ 132.281541][ C0] dump_stack_lvl+0xe8/0x150
[ 132.281572][ C0] print_address_description+0x55/0x1e0
[ 132.281603][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.281626][ C0] print_report+0x58/0x70
[ 132.281652][ C0] kasan_report+0x117/0x150
[ 132.281683][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.281712][ C0] lbmIODone+0x130e/0x16b0
[ 132.281736][ C0] ? blkg_put+0x22/0x240
[ 132.281759][ C0] ? blkg_put+0x22/0x240
[ 132.281781][ C0] ? blkg_put+0x18d/0x240
[ 132.281804][ C0] ? bio_endio+0x980/0x9d0
[ 132.281832][ C0] blk_update_request+0x57b/0xe50
[ 132.281867][ C0] blk_mq_end_request+0x3e/0x70
[ 132.281896][ C0] blk_done_softirq+0x10a/0x160
[ 132.281923][ C0] handle_softirqs+0x1d9/0x6c0
[ 132.281952][ C0] __local_bh_enable_ip+0x170/0x2b0
[ 132.281975][ C0] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 132.282011][ C0] ? rcu_cpu_kthread+0x20b/0x1480
[ 132.282035][ C0] rcu_cpu_kthread+0x99f/0x1480
[ 132.282061][ C0] ? rcu_cpu_kthread+0x20b/0x1480
[ 132.282087][ C0] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 132.282110][ C0] ? schedule+0x90/0x2b0
[ 132.282136][ C0] smpboot_thread_fn+0x57c/0xa80
[ 132.282165][ C0] ? smpboot_thread_fn+0x4e/0xa80
[ 132.282204][ C0] kthread+0x388/0x470
[ 132.282234][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 132.282259][ C0] ? __pfx_kthread+0x10/0x10
[ 132.282289][ C0] ret_from_fork+0x514/0xb70
[ 132.282321][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 132.282351][ C0] ? __switch_to+0xc89/0x1420
[ 132.282377][ C0] ? __pfx_kthread+0x10/0x10
[ 132.282405][ C0] ret_from_fork_asm+0x1a/0x30
[ 132.282445][ C0]
[ 132.282453][ C0]
[ 132.282458][ C0] Allocated by task 5948:
[ 132.282469][ C0] kasan_save_track+0x3e/0x80
[ 132.282493][ C0] __kasan_kmalloc+0x93/0xb0
[ 132.282517][ C0] __kmalloc_cache_noprof+0x3d2/0x6b0
[ 132.282543][ C0] lmLogInit+0x3e5/0x1a20
[ 132.282562][ C0] lmLogOpen+0x4e3/0xf90
[ 132.282585][ C0] jfs_mount_rw+0xf3/0x670
[ 132.282603][ C0] jfs_fill_super+0x769/0xda0
[ 132.282629][ C0] get_tree_bdev_flags+0x430/0x4f0
[ 132.282659][ C0] vfs_get_tree+0x92/0x2a0
[ 132.282688][ C0] do_new_mount+0x319/0xdc0
[ 132.282711][ C0] __se_sys_mount+0x31d/0x420
[ 132.282735][ C0] do_syscall_64+0x174/0x580
[ 132.282759][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 132.282779][ C0]
[ 132.282784][ C0] Freed by task 5948:
[ 132.282793][ C0] kasan_save_track+0x3e/0x80
[ 132.282816][ C0] kasan_save_free_info+0x40/0x50
[ 132.282834][ C0] __kasan_slab_free+0x5c/0x80
[ 132.282858][ C0] kfree+0x1c5/0x6c0
[ 132.282878][ C0] lmLogShutdown+0x456/0x850
[ 132.282899][ C0] lmLogClose+0x28c/0x530
[ 132.282920][ C0] jfs_umount+0x2da/0x3b0
[ 132.282938][ C0] jfs_fill_super+0x9e7/0xda0
[ 132.282964][ C0] get_tree_bdev_flags+0x430/0x4f0
[ 132.282994][ C0] vfs_get_tree+0x92/0x2a0
[ 132.283023][ C0] do_new_mount+0x319/0xdc0
[ 132.283045][ C0] __se_sys_mount+0x31d/0x420
[ 132.283067][ C0] do_syscall_64+0x174/0x580
[ 132.283089][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 132.283108][ C0]
[ 132.283113][ C0] The buggy address belongs to the object at ffff88802964d000
[ 132.283113][ C0] which belongs to the cache kmalloc-256 of size 256
[ 132.283132][ C0] The buggy address is located 8 bytes inside of
[ 132.283132][ C0] freed 256-byte region [ffff88802964d000, ffff88802964d100)
[ 132.283153][ C0]
[ 132.283158][ C0] The buggy address belongs to the physical page:
[ 132.283186][ C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2964c
[ 132.283210][ C0] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 132.283227][ C0] flags: 0x80000000000040(head|node=0|zone=1)
[ 132.283250][ C0] page_type: f5(slab)
[ 132.283270][ C0] raw: 0080000000000040 ffff88813fe24b40 dead000000000100 dead000000000122
[ 132.283288][ C0] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 132.283308][ C0] head: 0080000000000040 ffff88813fe24b40 dead000000000100 dead000000000122
[ 132.283325][ C0] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 132.283342][ C0] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 132.283356][ C0] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 132.283365][ C0] page dumped because: kasan: bad access detected
[ 132.283377][ C0] page_owner tracks the page as allocated
[ 132.283383][ C0] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 213, tgid 213 (kworker/u8:7), ts 14533663155, free_ts 0
[ 132.283412][ C0] post_alloc_hook+0x1f9/0x250
[ 132.283432][ C0] get_page_from_freelist+0x2639/0x26b0
[ 132.283455][ C0] __alloc_frozen_pages_noprof+0x18d/0x380
[ 132.283478][ C0] allocate_slab+0x79/0x5e0
[ 132.283491][ C0] refill_objects+0x2d8/0x350
[ 132.283505][ C0] __pcs_replace_empty_main+0x330/0x690
[ 132.283530][ C0] __kmalloc_cache_node_noprof+0x50a/0x6a0
[ 132.283551][ C0] blk_alloc_flush_queue+0x7f/0x240
[ 132.283573][ C0] blk_mq_alloc_and_init_hctx+0x7bd/0xc70
[ 132.283592][ C0] __blk_mq_realloc_hw_ctxs+0x2b2/0x660
[ 132.283609][ C0] blk_mq_init_allocated_queue+0x35f/0x1400
[ 132.283624][ C0] blk_mq_alloc_queue+0x1ba/0x2e0
[ 132.283637][ C0] scsi_alloc_sdev+0x7a5/0xc70
[ 132.283655][ C0] scsi_probe_and_add_lun+0x1fe/0x4b10
[ 132.283671][ C0] __scsi_scan_target+0x1f0/0xe10
[ 132.283783][ C0] scsi_scan_host_selected+0x3d6/0x7a0
[ 132.283806][ C0] page_owner free stack trace missing
[ 132.283814][ C0]
[ 132.283819][ C0] Memory state around the buggy address:
[ 132.283830][ C0] ffff88802964cf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 132.283844][ C0] ffff88802964cf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 132.283857][ C0] >ffff88802964d000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 132.283866][ C0] ^
[ 132.283876][ C0] ffff88802964d080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 132.283888][ C0] ffff88802964d100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 132.283898][ C0] ==================================================================
[ 132.283949][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 132.283974][ C0] CPU: 0 UID: 0 PID: 21 Comm: rcuc/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 132.284002][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 132.284018][ C0] Call Trace:
[ 132.284027][ C0]
[ 132.284038][ C0] vpanic+0x56c/0xa60
[ 132.284074][ C0] ? rcu_is_watching+0x15/0xb0
[ 132.284105][ C0] ? __pfx_vpanic+0x10/0x10
[ 132.284145][ C0] panic+0xc5/0xd0
[ 132.284178][ C0] ? __pfx_panic+0x10/0x10
[ 132.284229][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.284264][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.284290][ C0] check_panic_on_warn+0x89/0xb0
[ 132.284326][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.284352][ C0] end_report+0x73/0x170
[ 132.284385][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.284411][ C0] kasan_report+0x128/0x150
[ 132.284446][ C0] ? lbmIODone+0x130e/0x16b0
[ 132.284478][ C0] lbmIODone+0x130e/0x16b0
[ 132.284505][ C0] ? blkg_put+0x22/0x240
[ 132.284529][ C0] ? blkg_put+0x22/0x240
[ 132.284554][ C0] ? blkg_put+0x18d/0x240
[ 132.284580][ C0] ? bio_endio+0x980/0x9d0
[ 132.284612][ C0] blk_update_request+0x57b/0xe50
[ 132.284651][ C0] blk_mq_end_request+0x3e/0x70
[ 132.284683][ C0] blk_done_softirq+0x10a/0x160
[ 132.284712][ C0] handle_softirqs+0x1d9/0x6c0
[ 132.284745][ C0] __local_bh_enable_ip+0x170/0x2b0
[ 132.284772][ C0] ? __pfx_slab_free_after_rcu_debug+0x10/0x10
[ 132.284811][ C0] ? rcu_cpu_kthread+0x20b/0x1480
[ 132.284835][ C0] rcu_cpu_kthread+0x99f/0x1480
[ 132.284866][ C0] ? rcu_cpu_kthread+0x20b/0x1480
[ 132.284895][ C0] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 132.284921][ C0] ? schedule+0x90/0x2b0
[ 132.284951][ C0] smpboot_thread_fn+0x57c/0xa80
[ 132.284982][ C0] ? smpboot_thread_fn+0x4e/0xa80
[ 132.285016][ C0] kthread+0x388/0x470
[ 132.285050][ C0] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 132.285078][ C0] ? __pfx_kthread+0x10/0x10
[ 132.285112][ C0] ret_from_fork+0x514/0xb70
[ 132.285148][ C0] ? __pfx_ret_from_fork+0x10/0x10
[ 132.285183][ C0] ? __switch_to+0xc89/0x1420
[ 132.285262][ C0] ? __pfx_kthread+0x10/0x10
[ 132.285295][ C0] ret_from_fork_asm+0x1a/0x30
[ 132.285340][ C0]
[ 132.285947][ C0] Kernel Offset: disabled