[ 87.219201][ T1006] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.42' (ED25519) to the list of known hosts.
2026/04/26 18:16:55 parsed 1 programs
[ 95.971519][ T5606] cgroup: Unknown subsys name 'net'
[ 96.183371][ T5606] cgroup: Unknown subsys name 'cpuset'
[ 96.247614][ T5606] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 98.202513][ T5606] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 105.841614][ T5664] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.841777][ T5664] bridge0: port 1(bridge_slave_0) entered disabled state
[ 105.841912][ T5664] bridge_slave_0: entered allmulticast mode
[ 105.844535][ T5664] bridge_slave_0: entered promiscuous mode
[ 105.858158][ T5664] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.858295][ T5664] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.858478][ T5664] bridge_slave_1: entered allmulticast mode
[ 105.862342][ T5664] bridge_slave_1: entered promiscuous mode
[ 105.913492][ T5664] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 105.916162][ T5664] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 106.065385][ T5664] team0: Port device team_slave_0 added
[ 106.072324][ T5664] team0: Port device team_slave_1 added
[ 106.123593][ T5664] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 106.123607][ T5664] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 106.123621][ T5664] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 106.126280][ T5664] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 106.126295][ T5664] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 106.126313][ T5664] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 106.220199][ T5664] hsr_slave_0: entered promiscuous mode
[ 106.221212][ T5664] hsr_slave_1: entered promiscuous mode
[ 106.549460][ T5664] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 106.600307][ T5664] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 106.602419][ T5664] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 106.622177][ T5664] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 106.624563][ T5664] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 106.670982][ T5664] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 106.847641][ T5664] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 106.871329][ T5664] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 106.997871][ T5664] 8021q: adding VLAN 0 to HW filter on device bond0
[ 107.035400][ T5664] 8021q: adding VLAN 0 to HW filter on device team0
[ 107.051902][ T2279] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.052674][ T2279] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 107.078533][ T2279] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.079118][ T2279] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 107.844249][ T5664] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 107.960139][ T5664] veth0_vlan: entered promiscuous mode
[ 107.974097][ T5664] veth1_vlan: entered promiscuous mode
[ 108.030664][ T5664] veth0_macvtap: entered promiscuous mode
[ 108.036098][ T5664] veth1_macvtap: entered promiscuous mode
[ 108.065169][ T5664] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 108.087811][ T5664] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 108.110162][ T1548] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.112423][ T1548] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.113424][ T1548] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.113470][ T1548] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.822249][ T1405] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 109.540897][ T59] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 109.546553][ T59] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 109.550441][ T59] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 109.552105][ T59] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 109.570904][ T59] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 109.853281][ T1405] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.889521][ T1405] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 110.972042][ T1548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.972065][ T1548] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 111.166422][ T1405] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 111.194384][ T2279] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 111.194408][ T2279] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.107170][ T1405] bridge_slave_1: left allmulticast mode
[ 112.107361][ T1405] bridge_slave_1: left promiscuous mode
[ 112.111238][ T1405] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.188103][ T1405] bridge_slave_0: left allmulticast mode
[ 112.188130][ T1405] bridge_slave_0: left promiscuous mode
[ 112.188417][ T1405] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.877816][ T1405] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 112.959434][ T1405] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 112.989479][ T1405] bond0 (unregistering): Released all slaves
[ 113.019304][ T5267] 8021q: adding VLAN 0 to HW filter on device eth1
[ 113.440151][ T1405] hsr_slave_0: left promiscuous mode
[ 113.476902][ T1405] hsr_slave_1: left promiscuous mode
[ 113.481058][ T1405] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 113.481135][ T1405] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 113.552924][ T1405] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 113.552954][ T1405] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 113.866526][ T1405] veth1_macvtap: left promiscuous mode
[ 113.885135][ T1405] veth0_macvtap: left promiscuous mode
[ 113.906995][ T1405] veth1_vlan: left promiscuous mode
[ 113.907499][ T1405] veth0_vlan: left promiscuous mode
2026/04/26 18:17:16 executed programs: 0
[ 114.065388][ T4922] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 114.093820][ T4922] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 114.094939][ T4922] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 114.096078][ T4922] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 114.099856][ T4922] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 114.787464][ T1405] team0 (unregistering): Port device team_slave_1 removed
[ 114.827409][ T1405] team0 (unregistering): Port device team_slave_0 removed
[ 115.021292][ T5267] 8021q: adding VLAN 0 to HW filter on device eth2
[ 115.936412][ T5267] 8021q: adding VLAN 0 to HW filter on device eth3
[ 116.168417][ T59] Bluetooth: hci0: command tx timeout
[ 116.261914][ T5763] bridge0: port 1(bridge_slave_0) entered blocking state
[ 116.262157][ T5763] bridge0: port 1(bridge_slave_0) entered disabled state
[ 116.262346][ T5763] bridge_slave_0: entered allmulticast mode
[ 116.265410][ T5763] bridge_slave_0: entered promiscuous mode
[ 116.298812][ T5763] bridge0: port 2(bridge_slave_1) entered blocking state
[ 116.299458][ T5763] bridge0: port 2(bridge_slave_1) entered disabled state
[ 116.301043][ T5763] bridge_slave_1: entered allmulticast mode
[ 116.304464][ T5763] bridge_slave_1: entered promiscuous mode
[ 116.417653][ T5763] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 116.424231][ T5763] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 116.501136][ T5763] team0: Port device team_slave_0 added
[ 116.505277][ T5763] team0: Port device team_slave_1 added
[ 116.580355][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 116.580374][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 116.580400][ T5763] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 116.582909][ T5763] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 116.582924][ T5763] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 116.582951][ T5763] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 117.113368][ T5267] 8021q: adding VLAN 0 to HW filter on device eth4
[ 117.407907][ T5763] hsr_slave_0: entered promiscuous mode
[ 117.409510][ T5763] hsr_slave_1: entered promiscuous mode
[ 118.249100][ T59] Bluetooth: hci0: command tx timeout
[ 120.245983][ T5763] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 120.285836][ T5763] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 120.294704][ T5763] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 120.326837][ T59] Bluetooth: hci0: command tx timeout
[ 120.345840][ T5763] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 120.359026][ T5763] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 120.440144][ T5763] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 120.443536][ T5763] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 120.492184][ T5763] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 120.793882][ T5763] 8021q: adding VLAN 0 to HW filter on device bond0
[ 120.852366][ T5763] 8021q: adding VLAN 0 to HW filter on device team0
[ 120.868315][ T1405] bridge0: port 1(bridge_slave_0) entered blocking state
[ 120.868546][ T1405] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 120.894240][ T1405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 120.910654][ T1405] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 121.654618][ T5763] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 121.764810][ T5763] veth0_vlan: entered promiscuous mode
[ 121.813804][ T5763] veth1_vlan: entered promiscuous mode
[ 121.876013][ T5763] veth0_macvtap: entered promiscuous mode
[ 121.885884][ T5763] veth1_macvtap: entered promiscuous mode
[ 121.952240][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 121.991932][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 122.013982][ T1480] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.018333][ T1480] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.018864][ T1480] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.018902][ T1480] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 122.409789][ T59] Bluetooth: hci0: command tx timeout
[ 122.440051][ T1480] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.440075][ T1480] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 122.503968][ T1480] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 122.503990][ T1480] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/26 18:17:25 executed programs: 2
[ 122.882640][ T5922] loop0: detected capacity change from 0 to 32768
[ 123.564302][ T5923] loop0: detected capacity change from 0 to 32768
[ 124.066232][ T5924] loop0: detected capacity change from 0 to 32768
[ 124.512041][ T5925] loop0: detected capacity change from 0 to 32768
[ 124.975644][ T5926] loop0: detected capacity change from 0 to 32768
[ 125.392672][ T5927] loop0: detected capacity change from 0 to 32768
[ 125.812570][ T5928] loop0: detected capacity change from 0 to 32768
[ 126.288096][ T5930] loop0: detected capacity change from 0 to 32768
[ 126.767488][ T5932] loop0: detected capacity change from 0 to 32768
[ 127.269759][ T5934] loop0: detected capacity change from 0 to 32768
2026/04/26 18:17:30 executed programs: 13
[ 128.123794][ T5938] set_capacity_and_notify: 1 callbacks suppressed
[ 128.123814][ T5938] loop0: detected capacity change from 0 to 32768
[ 128.611490][ T5940] loop0: detected capacity change from 0 to 32768
[ 129.022802][ T5941] loop0: detected capacity change from 0 to 32768
[ 129.412333][ T5942] loop0: detected capacity change from 0 to 32768
[ 129.492607][ C1] ==================================================================
[ 129.492625][ C1] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[ 129.492661][ C1] Read of size 4 at addr ffff88803cf58608 by task rcuc/1/28
[ 129.492679][ C1]
[ 129.492693][ C1] CPU: 1 UID: 0 PID: 28 Comm: rcuc/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.492717][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 129.492726][ C1] Call Trace:
[ 129.492734][ C1]
[ 129.492744][ C1] dump_stack_lvl+0xe8/0x150
[ 129.492767][ C1] print_address_description+0x55/0x1e0
[ 129.492791][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.492822][ C1] print_report+0x58/0x70
[ 129.492841][ C1] kasan_report+0x117/0x150
[ 129.492866][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.492903][ C1] lbmIODone+0x1312/0x16c0
[ 129.492927][ C1] ? blkg_put+0x22/0x240
[ 129.492955][ C1] ? blkg_put+0x22/0x240
[ 129.492985][ C1] ? blkg_put+0x18d/0x240
[ 129.493013][ C1] ? bio_endio+0x989/0x9d0
[ 129.493037][ C1] blk_update_request+0x57e/0xe60
[ 129.493067][ C1] blk_mq_end_request+0x3e/0x70
[ 129.493091][ C1] blk_done_softirq+0x10a/0x160
[ 129.493113][ C1] handle_softirqs+0x1de/0x6d0
[ 129.493140][ C1] __local_bh_enable_ip+0x170/0x2b0
[ 129.493162][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 129.493189][ C1] rcu_cpu_kthread+0x9e8/0x1470
[ 129.493219][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 129.493249][ C1] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 129.493277][ C1] ? schedule+0x90/0x360
[ 129.493309][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 129.493331][ C1] smpboot_thread_fn+0x541/0xa50
[ 129.493354][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 129.493380][ C1] kthread+0x388/0x470
[ 129.493405][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 129.493428][ C1] ? __pfx_kthread+0x10/0x10
[ 129.493452][ C1] ret_from_fork+0x514/0xb70
[ 129.493476][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 129.493498][ C1] ? __switch_to+0xc79/0x1410
[ 129.493528][ C1] ? __pfx_kthread+0x10/0x10
[ 129.493555][ C1] ret_from_fork_asm+0x1a/0x30
[ 129.493588][ C1]
[ 129.493596][ C1]
[ 129.493601][ C1] Allocated by task 5942:
[ 129.493611][ C1] kasan_save_track+0x3e/0x80
[ 129.493629][ C1] __kasan_kmalloc+0x93/0xb0
[ 129.493647][ C1] __kmalloc_cache_noprof+0x3a6/0x690
[ 129.493667][ C1] lmLogInit+0x3e5/0x1a00
[ 129.493689][ C1] lmLogOpen+0x4e1/0xfa0
[ 129.493710][ C1] jfs_mount_rw+0xee/0x670
[ 129.493731][ C1] jfs_fill_super+0x754/0xd80
[ 129.493757][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 129.493777][ C1] vfs_get_tree+0x92/0x2a0
[ 129.493795][ C1] do_new_mount+0x341/0xd30
[ 129.493820][ C1] __se_sys_mount+0x31d/0x420
[ 129.493845][ C1] do_syscall_64+0x15f/0xf80
[ 129.493862][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.493889][ C1]
[ 129.493893][ C1] Freed by task 5763:
[ 129.493902][ C1] kasan_save_track+0x3e/0x80
[ 129.493919][ C1] kasan_save_free_info+0x46/0x50
[ 129.493943][ C1] __kasan_slab_free+0x5c/0x80
[ 129.493959][ C1] kfree+0x1c5/0x6c0
[ 129.493975][ C1] lmLogShutdown+0x456/0x850
[ 129.493996][ C1] lmLogClose+0x28a/0x520
[ 129.494018][ C1] jfs_umount+0x2fb/0x3d0
[ 129.494037][ C1] jfs_put_super+0x8c/0x190
[ 129.494052][ C1] generic_shutdown_super+0x13d/0x2d0
[ 129.494068][ C1] kill_block_super+0x44/0x90
[ 129.494088][ C1] deactivate_locked_super+0xbc/0x130
[ 129.494104][ C1] cleanup_mnt+0x437/0x4d0
[ 129.494122][ C1] task_work_run+0x1d9/0x270
[ 129.494146][ C1] exit_to_user_mode_loop+0xed/0x480
[ 129.494169][ C1] do_syscall_64+0x33e/0xf80
[ 129.494185][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 129.494204][ C1]
[ 129.494209][ C1] The buggy address belongs to the object at ffff88803cf58600
[ 129.494209][ C1] which belongs to the cache kmalloc-256 of size 256
[ 129.494226][ C1] The buggy address is located 8 bytes inside of
[ 129.494226][ C1] freed 256-byte region [ffff88803cf58600, ffff88803cf58700)
[ 129.494245][ C1]
[ 129.494250][ C1] The buggy address belongs to the physical page:
[ 129.494260][ C1] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803cf58e00 pfn:0x3cf58
[ 129.494282][ C1] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 129.494298][ C1] flags: 0x80000000000240(workingset|head|node=0|zone=1)
[ 129.494316][ C1] page_type: f5(slab)
[ 129.494335][ C1] raw: 0080000000000240 ffff88801a00bb40 ffff88801a00a988 ffff88801a00a988
[ 129.494352][ C1] raw: ffff88803cf58e00 0000000800100007 00000000f5000000 0000000000000000
[ 129.494370][ C1] head: 0080000000000240 ffff88801a00bb40 ffff88801a00a988 ffff88801a00a988
[ 129.494387][ C1] head: ffff88803cf58e00 0000000800100007 00000000f5000000 0000000000000000
[ 129.494404][ C1] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 129.494421][ C1] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[ 129.494431][ C1] page dumped because: kasan: bad access detected
[ 129.494440][ C1] page_owner tracks the page as allocated
[ 129.494448][ C1] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5942, tgid 5942 (syz.0.31), ts 129436915029, free_ts 129132034391
[ 129.494483][ C1] post_alloc_hook+0x231/0x280
[ 129.494503][ C1] get_page_from_freelist+0x27c8/0x2840
[ 129.494527][ C1] __alloc_frozen_pages_noprof+0x18d/0x380
[ 129.494551][ C1] allocate_slab+0x77/0x660
[ 129.494576][ C1] refill_objects+0x33c/0x3d0
[ 129.494600][ C1] __pcs_replace_empty_main+0x373/0x720
[ 129.494627][ C1] __kmalloc_cache_noprof+0x44e/0x690
[ 129.494646][ C1] lmLogInit+0x3e5/0x1a00
[ 129.494667][ C1] lmLogOpen+0x4e1/0xfa0
[ 129.494687][ C1] jfs_mount_rw+0xee/0x670
[ 129.494707][ C1] jfs_fill_super+0x754/0xd80
[ 129.494733][ C1] get_tree_bdev_flags+0x431/0x4f0
[ 129.494753][ C1] vfs_get_tree+0x92/0x2a0
[ 129.494772][ C1] do_new_mount+0x341/0xd30
[ 129.494796][ C1] __se_sys_mount+0x31d/0x420
[ 129.494822][ C1] do_syscall_64+0x15f/0xf80
[ 129.494839][ C1] page last free pid 5942 tgid 5942 stack trace:
[ 129.494850][ C1] __free_frozen_pages+0xfa6/0x10f0
[ 129.494871][ C1] __slab_free+0x252/0x2a0
[ 129.494899][ C1] qlist_free_all+0x99/0x100
[ 129.494915][ C1] kasan_quarantine_reduce+0x148/0x160
[ 129.494933][ C1] __kasan_slab_alloc+0x22/0x80
[ 129.494951][ C1] kmem_cache_alloc_noprof+0x33b/0x680
[ 129.494970][ C1] ptlock_alloc+0x20/0x70
[ 129.494990][ C1] pte_alloc_one+0x7e/0x380
[ 129.495013][ C1] __pte_alloc+0x25/0x1a0
[ 129.495037][ C1] do_pte_missing+0x1c13/0x2950
[ 129.495061][ C1] handle_mm_fault+0xd0a/0x13c0
[ 129.495080][ C1] do_user_addr_fault+0xa73/0x1340
[ 129.495100][ C1] exc_page_fault+0x6a/0xc0
[ 129.495126][ C1] asm_exc_page_fault+0x26/0x30
[ 129.495143][ C1]
[ 129.495148][ C1] Memory state around the buggy address:
[ 129.495159][ C1] ffff88803cf58500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 129.495172][ C1] ffff88803cf58580: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 129.495185][ C1] >ffff88803cf58600: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 129.495194][ C1] ^
[ 129.495205][ C1] ffff88803cf58680: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 129.495218][ C1] ffff88803cf58700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 129.495228][ C1] ==================================================================
[ 129.495265][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 129.495280][ C1] CPU: 1 UID: 0 PID: 28 Comm: rcuc/1 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 129.495303][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 129.495315][ C1] Call Trace:
[ 129.495323][ C1]
[ 129.495331][ C1] vpanic+0x56c/0xa60
[ 129.495358][ C1] ? __pfx_vpanic+0x10/0x10
[ 129.495381][ C1] ? __pfx___schedule+0x10/0x10
[ 129.495410][ C1] panic+0xc5/0xd0
[ 129.495433][ C1] ? __pfx_panic+0x10/0x10
[ 129.495457][ C1] ? preempt_schedule_thunk+0x16/0x30
[ 129.495491][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.495516][ C1] check_panic_on_warn+0x89/0xb0
[ 129.495544][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.495569][ C1] end_report+0x73/0x170
[ 129.495592][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.495616][ C1] kasan_report+0x128/0x150
[ 129.495638][ C1] ? lbmIODone+0x1312/0x16c0
[ 129.495666][ C1] lbmIODone+0x1312/0x16c0
[ 129.495690][ C1] ? blkg_put+0x22/0x240
[ 129.495719][ C1] ? blkg_put+0x22/0x240
[ 129.495749][ C1] ? blkg_put+0x18d/0x240
[ 129.495779][ C1] ? bio_endio+0x989/0x9d0
[ 129.495803][ C1] blk_update_request+0x57e/0xe60
[ 129.495830][ C1] blk_mq_end_request+0x3e/0x70
[ 129.495854][ C1] blk_done_softirq+0x10a/0x160
[ 129.495875][ C1] handle_softirqs+0x1de/0x6d0
[ 129.495907][ C1] __local_bh_enable_ip+0x170/0x2b0
[ 129.495928][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 129.495954][ C1] rcu_cpu_kthread+0x9e8/0x1470
[ 129.495983][ C1] ? rcu_cpu_kthread+0x205/0x1470
[ 129.496011][ C1] ? __pfx_rcu_cpu_kthread+0x10/0x10
[ 129.496038][ C1] ? schedule+0x90/0x360
[ 129.496067][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 129.496092][ C1] smpboot_thread_fn+0x541/0xa50
[ 129.496117][ C1] ? smpboot_thread_fn+0x4d/0xa50
[ 129.496145][ C1] kthread+0x388/0x470
[ 129.496172][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10
[ 129.496195][ C1] ? __pfx_kthread+0x10/0x10
[ 129.496221][ C1] ret_from_fork+0x514/0xb70
[ 129.496245][ C1] ? __pfx_ret_from_fork+0x10/0x10
[ 129.496267][ C1] ? __switch_to+0xc79/0x1410
[ 129.496298][ C1] ? __pfx_kthread+0x10/0x10
[ 129.496324][ C1] ret_from_fork_asm+0x1a/0x30
[ 129.496356][ C1]
[ 129.496693][ C1] Kernel Offset: disabled