[ 91.903161][ T36] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.2' (ED25519) to the list of known hosts.
2026/05/27 09:39:26 parsed 1 programs
[ 101.366900][ T5614] cgroup: Unknown subsys name 'net'
[ 101.607302][ T5614] cgroup: Unknown subsys name 'cpuset'
[ 101.670233][ T5614] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 103.668716][ T5614] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 110.975842][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 110.990334][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 110.999091][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 111.017233][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 111.018011][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 112.448134][ T5686] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.458299][ T5686] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.458510][ T5686] bridge_slave_0: entered allmulticast mode
[ 112.475029][ T5686] bridge_slave_0: entered promiscuous mode
[ 112.498219][ T5686] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.498350][ T5686] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.498889][ T5686] bridge_slave_1: entered allmulticast mode
[ 112.524749][ T5686] bridge_slave_1: entered promiscuous mode
[ 112.731649][ T5686] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 112.736706][ T5686] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 112.816117][ T5686] team0: Port device team_slave_0 added
[ 112.818638][ T5686] team0: Port device team_slave_1 added
[ 112.857861][ T5686] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 112.857875][ T5686] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 112.857895][ T5686] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 112.865304][ T5686] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 112.865348][ T5686] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 112.865422][ T5686] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 112.991976][ T5686] hsr_slave_0: entered promiscuous mode
[ 112.993193][ T5686] hsr_slave_1: entered promiscuous mode
[ 113.722677][ T5686] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 113.778858][ T5686] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 113.790753][ T5686] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 113.821515][ T5686] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 113.825481][ T5686] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 113.854765][ T5686] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 113.856364][ T5686] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 113.906221][ T5686] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 114.033895][ T5686] 8021q: adding VLAN 0 to HW filter on device bond0
[ 114.092497][ T5686] 8021q: adding VLAN 0 to HW filter on device team0
[ 114.128506][ T2393] bridge0: port 1(bridge_slave_0) entered blocking state
[ 114.128664][ T2393] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 114.171742][ T1552] bridge0: port 2(bridge_slave_1) entered blocking state
[ 114.171834][ T1552] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 114.921536][ T5686] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.011657][ T5686] veth0_vlan: entered promiscuous mode
[ 115.019226][ T5686] veth1_vlan: entered promiscuous mode
[ 115.093666][ T5686] veth0_macvtap: entered promiscuous mode
[ 115.110171][ T5686] veth1_macvtap: entered promiscuous mode
[ 115.141780][ T5686] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 115.163407][ T5686] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 115.211325][ T1300] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.213605][ T1300] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.215782][ T1300] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.215986][ T1300] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.958425][ T2393] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.313170][ T2393] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.845716][ T2393] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 117.062035][ T1300] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.062062][ T1300] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.184596][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 117.184618][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 117.463667][ T2393] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 118.370677][ T2393] bridge_slave_1: left allmulticast mode
[ 118.370882][ T2393] bridge_slave_1: left promiscuous mode
[ 118.390911][ T2393] bridge0: port 2(bridge_slave_1) entered disabled state
2026/05/27 09:39:47 executed programs: 0
[ 118.559201][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 118.581232][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 118.582139][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 118.583775][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 118.584492][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 118.646520][ T2393] bridge_slave_0: left allmulticast mode
[ 118.646556][ T2393] bridge_slave_0: left promiscuous mode
[ 118.646807][ T2393] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.660326][ T2393] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 119.740388][ T2393] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 119.784688][ T2393] bond0 (unregistering): Released all slaves
[ 119.847819][ T5263] 8021q: adding VLAN 0 to HW filter on device eth1
[ 120.271088][ T2393] hsr_slave_0: left promiscuous mode
[ 120.309780][ T2393] hsr_slave_1: left promiscuous mode
[ 120.313030][ T2393] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 120.313114][ T2393] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 120.381578][ T2393] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 120.381608][ T2393] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 120.510844][ T2393] veth1_macvtap: left promiscuous mode
[ 120.511072][ T2393] veth0_macvtap: left promiscuous mode
[ 120.511358][ T2393] veth1_vlan: left promiscuous mode
[ 120.512004][ T2393] veth0_vlan: left promiscuous mode
[ 120.696442][ T4918] Bluetooth: hci0: command tx timeout
[ 121.320231][ T2393] team0 (unregistering): Port device team_slave_1 removed
[ 121.370273][ T2393] team0 (unregistering): Port device team_slave_0 removed
[ 121.573878][ T5263] 8021q: adding VLAN 0 to HW filter on device eth2
[ 122.235613][ T5754] bridge0: port 1(bridge_slave_0) entered blocking state
[ 122.235856][ T5754] bridge0: port 1(bridge_slave_0) entered disabled state
[ 122.236044][ T5754] bridge_slave_0: entered allmulticast mode
[ 122.261575][ T5754] bridge_slave_0: entered promiscuous mode
[ 122.265400][ T5754] bridge0: port 2(bridge_slave_1) entered blocking state
[ 122.265572][ T5754] bridge0: port 2(bridge_slave_1) entered disabled state
[ 122.265743][ T5754] bridge_slave_1: entered allmulticast mode
[ 122.268605][ T5754] bridge_slave_1: entered promiscuous mode
[ 122.366934][ T5754] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 122.381336][ T5754] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 122.438214][ T5754] team0: Port device team_slave_0 added
[ 122.447792][ T5754] team0: Port device team_slave_1 added
[ 122.494069][ T5754] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 122.494089][ T5754] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.494118][ T5754] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 122.497918][ T5754] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 122.497935][ T5754] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 122.497964][ T5754] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 122.769731][ T4918] Bluetooth: hci0: command tx timeout
[ 122.789341][ T5263] 8021q: adding VLAN 0 to HW filter on device eth3
[ 122.841228][ T5754] hsr_slave_0: entered promiscuous mode
[ 122.842190][ T5754] hsr_slave_1: entered promiscuous mode
[ 124.860606][ T4918] Bluetooth: hci0: command tx timeout
[ 125.779355][ T5754] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 125.807650][ T5754] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 125.821365][ T5754] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 125.866577][ T5754] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 125.868457][ T5754] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 125.919117][ T5754] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 125.931050][ T5754] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 125.967075][ T5754] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 126.266474][ T5754] 8021q: adding VLAN 0 to HW filter on device bond0
[ 126.297704][ T5754] 8021q: adding VLAN 0 to HW filter on device team0
[ 126.327600][ T66] bridge0: port 1(bridge_slave_0) entered blocking state
[ 126.340357][ T66] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 126.395334][ T66] bridge0: port 2(bridge_slave_1) entered blocking state
[ 126.395479][ T66] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 126.929614][ T4918] Bluetooth: hci0: command tx timeout
[ 127.209194][ T5754] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 127.269998][ T5754] veth0_vlan: entered promiscuous mode
[ 127.284875][ T5754] veth1_vlan: entered promiscuous mode
[ 127.334058][ T5754] veth0_macvtap: entered promiscuous mode
[ 127.348788][ T5754] veth1_macvtap: entered promiscuous mode
[ 127.379246][ T5754] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 127.414196][ T5754] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 127.446821][ T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.448126][ T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.448173][ T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.448212][ T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 127.776475][ T2393] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.776496][ T2393] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 127.842936][ T2393] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 127.842959][ T2393] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/27 09:39:57 executed programs: 2
[ 128.273914][ T5899] loop0: detected capacity change from 0 to 32768
[ 129.225158][ T5900] loop0: detected capacity change from 0 to 32768
[ 129.850275][ T5901] loop0: detected capacity change from 0 to 32768
[ 130.480173][ T5902] loop0: detected capacity change from 0 to 32768
[ 131.071396][ T5903] loop0: detected capacity change from 0 to 32768
[ 131.694054][ T5904] loop0: detected capacity change from 0 to 32768
[ 132.374541][ T5909] loop0: detected capacity change from 0 to 32768
[ 132.868995][ T1337] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.869092][ T1337] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.023532][ T5910] loop0: detected capacity change from 0 to 32768
2026/05/27 09:40:02 executed programs: 10
[ 133.675557][ T5911] loop0: detected capacity change from 0 to 32768
[ 134.294520][ T5913] loop0: detected capacity change from 0 to 32768
[ 134.919358][ T5915] loop0: detected capacity change from 0 to 32768
[ 135.537756][ T5916] loop0: detected capacity change from 0 to 32768
[ 136.152872][ T5917] loop0: detected capacity change from 0 to 32768
[ 136.755805][ T5918] loop0: detected capacity change from 0 to 32768
[ 137.358254][ T5919] loop0: detected capacity change from 0 to 32768
[ 137.937500][ T5920] loop0: detected capacity change from 0 to 32768
2026/05/27 09:40:08 executed programs: 19
[ 138.562330][ T5921] loop0: detected capacity change from 0 to 32768
[ 139.136337][ T5922] loop0: detected capacity change from 0 to 32768
[ 139.704517][ T5923] loop0: detected capacity change from 0 to 32768
[ 140.285952][ T5924] loop0: detected capacity change from 0 to 32768
[ 140.884914][ T5925] loop0: detected capacity change from 0 to 32768
[ 141.448612][ T5926] loop0: detected capacity change from 0 to 32768
[ 142.054739][ T5927] loop0: detected capacity change from 0 to 32768
[ 142.654271][ T5928] loop0: detected capacity change from 0 to 32768
[ 143.246149][ T5929] loop0: detected capacity change from 0 to 32768
[ 143.845385][ T5930] loop0: detected capacity change from 0 to 32768
2026/05/27 09:40:13 executed programs: 28
[ 144.409083][ T5931] loop0: detected capacity change from 0 to 32768
[ 144.994950][ T5932] loop0: detected capacity change from 0 to 32768
[ 145.602485][ T5933] loop0: detected capacity change from 0 to 32768
[ 146.197518][ T5934] loop0: detected capacity change from 0 to 32768
[ 146.765438][ T5935] loop0: detected capacity change from 0 to 32768
[ 147.303260][ T5936] loop0: detected capacity change from 0 to 32768
[ 147.942334][ T5937] loop0: detected capacity change from 0 to 32768
[ 148.533598][ T5938] loop0: detected capacity change from 0 to 32768
[ 149.127027][ T5939] loop0: detected capacity change from 0 to 32768
2026/05/27 09:40:18 executed programs: 37
[ 149.698768][ T5940] loop0: detected capacity change from 0 to 32768
[ 150.255215][ T5941] loop0: detected capacity change from 0 to 32768
[ 150.821588][ T5942] loop0: detected capacity change from 0 to 32768
[ 151.395104][ T5943] loop0: detected capacity change from 0 to 32768
[ 152.008761][ T5944] loop0: detected capacity change from 0 to 32768
[ 152.609191][ T5945] loop0: detected capacity change from 0 to 32768
[ 153.233918][ T5946] loop0: detected capacity change from 0 to 32768
[ 153.302660][ T66] ==================================================================
[ 153.302677][ T66] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.302721][ T66] Read of size 4096 at addr ffff888041079000 by task kworker/u8:4/66
[ 153.302740][ T66]
[ 153.302772][ T66] CPU: 0 UID: 0 PID: 66 Comm: kworker/u8:4 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 153.302818][ T66] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 153.302833][ T66] Workqueue: loop0 loop_workfn
[ 153.302882][ T66] Call Trace:
[ 153.302891][ T66]
[ 153.302900][ T66] dump_stack_lvl+0xe8/0x150
[ 153.302927][ T66] print_address_description+0x55/0x1e0
[ 153.302953][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.302977][ T66] print_report+0x58/0x70
[ 153.303000][ T66] kasan_report+0x117/0x150
[ 153.303028][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.303058][ T66] kasan_check_range+0x264/0x2c0
[ 153.303084][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.303110][ T66] __asan_memcpy+0x29/0x70
[ 153.303144][ T66] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.303181][ T66] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 153.303208][ T66] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 153.303239][ T66] ? shmem_write_begin+0x1ce/0x320
[ 153.303263][ T66] generic_perform_write+0x5b1/0x8b0
[ 153.303289][ T66] ? __pfx_generic_perform_write+0x10/0x10
[ 153.303315][ T66] ? file_update_time_flags+0x3b9/0x4b0
[ 153.303337][ T66] shmem_file_write_iter+0xfb/0x120
[ 153.303364][ T66] lo_rw_aio+0xc80/0xf00
[ 153.303397][ T66] ? __pfx_lo_rw_aio+0x10/0x10
[ 153.303427][ T66] ? kthread_associate_blkcg+0x490/0x600
[ 153.303459][ T66] ? rt_spin_unlock+0x160/0x200
[ 153.303485][ T66] loop_process_work+0x637/0x11b0
[ 153.303522][ T66] ? __pfx_loop_process_work+0x10/0x10
[ 153.303550][ T66] ? look_up_lock_class+0x57/0x110
[ 153.303579][ T66] ? register_lock_class+0x31/0x2e0
[ 153.303605][ T66] ? __lock_acquire+0x6b5/0x2cf0
[ 153.303634][ T66] ? do_raw_spin_unlock+0xf5/0x210
[ 153.303657][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.303679][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.303704][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.303724][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.303748][ T66] process_scheduled_works+0xb5d/0x1860
[ 153.303788][ T66] ? __pfx_process_scheduled_works+0x10/0x10
[ 153.303825][ T66] ? assign_work+0x3d5/0x5e0
[ 153.303849][ T66] worker_thread+0xa53/0xfc0
[ 153.303888][ T66] kthread+0x388/0x470
[ 153.303916][ T66] ? __pfx_worker_thread+0x10/0x10
[ 153.303938][ T66] ? __pfx_kthread+0x10/0x10
[ 153.303968][ T66] ret_from_fork+0x514/0xb70
[ 153.303995][ T66] ? __pfx_ret_from_fork+0x10/0x10
[ 153.304018][ T66] ? __switch_to+0xc79/0x1410
[ 153.304045][ T66] ? __pfx_kthread+0x10/0x10
[ 153.304068][ T66] ret_from_fork_asm+0x1a/0x30
[ 153.304097][ T66]
[ 153.304103][ T66]
[ 153.304107][ T66] The buggy address belongs to the physical page:
[ 153.304133][ T66] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xf89 pfn:0x41079
[ 153.304150][ T66] flags: 0x80000000000000(node=0|zone=1)
[ 153.304176][ T66] raw: 0080000000000000 ffffea0000ef8008 ffffea0000d5ee88 0000000000000000
[ 153.304192][ T66] raw: 0000000000000f89 0000000000000000 00000000ffffffff 0000000000000000
[ 153.304200][ T66] page dumped because: kasan: bad access detected
[ 153.304213][ T66] page_owner tracks the page as freed
[ 153.304219][ T66] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 5946, tgid 5946 (syz.0.58), ts 153253162670, free_ts 153302563108
[ 153.304245][ T66] post_alloc_hook+0x22d/0x280
[ 153.304265][ T66] get_page_from_freelist+0x28b2/0x2930
[ 153.304289][ T66] __alloc_frozen_pages_noprof+0x18d/0x380
[ 153.304313][ T66] alloc_pages_mpol+0xd1/0x380
[ 153.304335][ T66] alloc_pages_noprof+0xd2/0x2f0
[ 153.304356][ T66] lmLogInit+0x357/0x1a00
[ 153.304379][ T66] lmLogOpen+0x4e1/0xfa0
[ 153.304400][ T66] jfs_mount_rw+0xee/0x670
[ 153.304423][ T66] jfs_fill_super+0x754/0xd80
[ 153.304439][ T66] get_tree_bdev_flags+0x431/0x4f0
[ 153.304462][ T66] vfs_get_tree+0x92/0x2a0
[ 153.304482][ T66] do_new_mount+0x341/0xd30
[ 153.304510][ T66] __se_sys_mount+0x31d/0x420
[ 153.304541][ T66] do_syscall_64+0x15f/0x560
[ 153.304571][ T66] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.304592][ T66] page last free pid 5754 tgid 5754 stack trace:
[ 153.304604][ T66] __free_frozen_pages+0xfe5/0x10d0
[ 153.304630][ T66] lmLogShutdown+0x44e/0x850
[ 153.304658][ T66] lmLogClose+0x28a/0x520
[ 153.304686][ T66] jfs_umount+0x2fb/0x3d0
[ 153.304711][ T66] jfs_put_super+0x8c/0x190
[ 153.304730][ T66] generic_shutdown_super+0x13d/0x2d0
[ 153.304749][ T66] kill_block_super+0x44/0x90
[ 153.304772][ T66] deactivate_locked_super+0xbc/0x130
[ 153.304792][ T66] cleanup_mnt+0x437/0x4d0
[ 153.304824][ T66] task_work_run+0x1d9/0x270
[ 153.304853][ T66] exit_to_user_mode_loop+0xf3/0x4d0
[ 153.304879][ T66] do_syscall_64+0x33e/0x560
[ 153.304907][ T66] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.304928][ T66]
[ 153.304933][ T66] Memory state around the buggy address:
[ 153.304945][ T66] ffff888041078f00: fb fb fb fb fb fb fc fc fc fc fa fb fb fb fb fb
[ 153.304959][ T66] ffff888041078f80: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[ 153.304974][ T66] >ffff888041079000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 153.304984][ T66] ^
[ 153.304994][ T66] ffff888041079080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 153.305009][ T66] ffff888041079100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 153.305020][ T66] ==================================================================
[ 153.306092][ T66] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 153.306114][ T66] CPU: 1 UID: 0 PID: 66 Comm: kworker/u8:4 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 153.306140][ T66] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 153.306154][ T66] Workqueue: loop0 loop_workfn
[ 153.306190][ T66] Call Trace:
[ 153.306198][ T66]
[ 153.306207][ T66] vpanic+0x56c/0xa60
[ 153.306238][ T66] ? __pfx_vpanic+0x10/0x10
[ 153.306270][ T66] panic+0xc5/0xd0
[ 153.306296][ T66] ? __pfx_panic+0x10/0x10
[ 153.306335][ T66] ? preempt_schedule_thunk+0x16/0x30
[ 153.306370][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306395][ T66] ? preempt_schedule_thunk+0x16/0x30
[ 153.306430][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306455][ T66] check_panic_on_warn+0x89/0xb0
[ 153.306487][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306512][ T66] end_report+0x73/0x170
[ 153.306539][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306564][ T66] kasan_report+0x128/0x150
[ 153.306592][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306622][ T66] kasan_check_range+0x264/0x2c0
[ 153.306650][ T66] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306676][ T66] __asan_memcpy+0x29/0x70
[ 153.306711][ T66] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 153.306748][ T66] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 153.306776][ T66] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 153.306811][ T66] ? shmem_write_begin+0x1ce/0x320
[ 153.306841][ T66] generic_perform_write+0x5b1/0x8b0
[ 153.306876][ T66] ? __pfx_generic_perform_write+0x10/0x10
[ 153.306908][ T66] ? file_update_time_flags+0x3b9/0x4b0
[ 153.306936][ T66] shmem_file_write_iter+0xfb/0x120
[ 153.306970][ T66] lo_rw_aio+0xc80/0xf00
[ 153.307010][ T66] ? __pfx_lo_rw_aio+0x10/0x10
[ 153.307046][ T66] ? kthread_associate_blkcg+0x490/0x600
[ 153.307078][ T66] ? rt_spin_unlock+0x160/0x200
[ 153.307106][ T66] loop_process_work+0x637/0x11b0
[ 153.307149][ T66] ? __pfx_loop_process_work+0x10/0x10
[ 153.307183][ T66] ? look_up_lock_class+0x57/0x110
[ 153.307215][ T66] ? register_lock_class+0x31/0x2e0
[ 153.307247][ T66] ? __lock_acquire+0x6b5/0x2cf0
[ 153.307286][ T66] ? do_raw_spin_unlock+0xf5/0x210
[ 153.307325][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.307349][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.307378][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.307401][ T66] ? process_scheduled_works+0xa70/0x1860
[ 153.307426][ T66] process_scheduled_works+0xb5d/0x1860
[ 153.307467][ T66] ? __pfx_process_scheduled_works+0x10/0x10
[ 153.307502][ T66] ? assign_work+0x3d5/0x5e0
[ 153.307528][ T66] worker_thread+0xa53/0xfc0
[ 153.307567][ T66] kthread+0x388/0x470
[ 153.307597][ T66] ? __pfx_worker_thread+0x10/0x10
[ 153.307620][ T66] ? __pfx_kthread+0x10/0x10
[ 153.307651][ T66] ret_from_fork+0x514/0xb70
[ 153.307676][ T66] ? __pfx_ret_from_fork+0x10/0x10
[ 153.307700][ T66] ? __switch_to+0xc79/0x1410
[ 153.307735][ T66] ? __pfx_kthread+0x10/0x10
[ 153.307766][ T66] ret_from_fork_asm+0x1a/0x30
[ 153.307802][ T66]
[ 153.308621][ T66] Kernel Offset: disabled