Warning: Permanently added '10.128.1.163' (ED25519) to the list of known hosts.
2026/02/14 05:14:33 parsed 1 programs
[   70.718063][ T5822] cgroup: Unknown subsys name 'net'
[   70.847552][ T5822] cgroup: Unknown subsys name 'cpuset'
[   70.856029][ T5822] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   71.282170][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[   71.288731][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[   72.165035][ T5822] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   75.003179][ T5844] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   75.501991][ T5854] chnl_net:caif_netlink_parms(): no params data found
[   75.579672][ T5854] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.587456][ T5854] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.594784][ T5854] bridge_slave_0: entered allmulticast mode
[   75.602143][ T5854] bridge_slave_0: entered promiscuous mode
[   75.612139][ T5854] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.619503][ T5854] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.627043][ T5854] bridge_slave_1: entered allmulticast mode
[   75.634262][ T5854] bridge_slave_1: entered promiscuous mode
[   75.669743][ T5854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.682735][ T5854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.712146][ T5854] team0: Port device team_slave_0 added
[   75.720289][ T5854] team0: Port device team_slave_1 added
[   75.745055][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.751997][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.777978][ T5854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.790837][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.797805][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.823712][ T5854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.867269][ T5854] hsr_slave_0: entered promiscuous mode
[   75.873994][ T5854] hsr_slave_1: entered promiscuous mode
[   76.014975][ T5854] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   76.028048][ T5854] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   76.038006][ T5854] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   76.048303][ T5854] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   76.080107][ T5854] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.087325][ T5854] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.095427][ T5854] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.102546][ T5854] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.166599][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.187311][ T1340] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.195620][ T1340] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.210161][ T5854] 8021q: adding VLAN 0 to HW filter on device team0
[   76.223993][ T1340] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.231178][ T1340] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.245705][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.252844][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.444840][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.523164][ T5854] veth0_vlan: entered promiscuous mode
[   76.540342][ T5854] veth1_vlan: entered promiscuous mode
[   76.586168][ T5854] veth0_macvtap: entered promiscuous mode
[   76.600229][ T5854] veth1_macvtap: entered promiscuous mode
[   76.631228][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.649838][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.668964][ T1340] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.685314][ T1340] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.694047][ T1340] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.705657][ T1340] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.851770][ T1340] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.936640][ T1340] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.029302][ T1340] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.137001][ T1340] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.890485][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.901885][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.933337][  T146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.941331][  T146] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.710794][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   78.718885][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   78.728506][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   78.736898][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   78.744584][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2026/02/14 05:14:43 executed programs: 0
[   79.208177][ T5144] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.217790][ T5144] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.226110][ T5144] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.234082][ T5144] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.242543][ T5144] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.372828][ T5934] chnl_net:caif_netlink_parms(): no params data found
[   79.445999][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.453790][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.461476][ T5934] bridge_slave_0: entered allmulticast mode
[   79.469031][ T5934] bridge_slave_0: entered promiscuous mode
[   79.477010][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.484219][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.491675][ T5934] bridge_slave_1: entered allmulticast mode
[   79.499020][ T5934] bridge_slave_1: entered promiscuous mode
[   79.535333][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.547848][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.578199][ T5934] team0: Port device team_slave_0 added
[   79.587451][ T5934] team0: Port device team_slave_1 added
[   79.613888][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.621517][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   79.648268][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.661513][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.668527][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   79.694459][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   79.777245][ T5934] hsr_slave_0: entered promiscuous mode
[   79.784296][ T5934] hsr_slave_1: entered promiscuous mode
[   79.790904][ T5934] debugfs: 'hsr0' already exists in 'hsr'
[   79.796727][ T5934] Cannot create hsr debugfs directory
[   79.875920][ T1340] bridge_slave_1: left allmulticast mode
[   79.881703][ T1340] bridge_slave_1: left promiscuous mode
[   79.888321][ T1340] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.899093][ T1340] bridge_slave_0: left allmulticast mode
[   79.905532][ T1340] bridge_slave_0: left promiscuous mode
[   79.911211][ T1340] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.059843][ T1340] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.071401][ T1340] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   80.081423][ T1340] bond0 (unregistering): Released all slaves
[   80.175852][ T1340] hsr_slave_0: left promiscuous mode
[   80.182007][ T1340] hsr_slave_1: left promiscuous mode
[   80.188485][ T1340] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.195995][ T1340] batman_adv: batadv0: Removing interface: batadv_slave_0
[   80.204418][ T1340] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.211805][ T1340] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.227626][ T1340] veth1_macvtap: left promiscuous mode
[   80.233288][ T1340] veth0_macvtap: left promiscuous mode
[   80.241187][ T1340] veth1_vlan: left promiscuous mode
[   80.246603][ T1340] veth0_vlan: left promiscuous mode
[   80.530154][ T1340] team0 (unregistering): Port device team_slave_1 removed
[   80.553045][ T1340] team0 (unregistering): Port device team_slave_0 removed
[   81.057244][ T5934] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   81.078865][ T5934] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   81.090457][ T5934] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   81.106499][ T5934] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   81.265398][ T5144] Bluetooth: hci0: command tx timeout
[   81.521064][  T899] cfg80211: failed to load regulatory.db
[   81.611223][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0
[   81.650008][ T5934] 8021q: adding VLAN 0 to HW filter on device team0
[   81.667980][  T146] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.675186][  T146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.728571][  T146] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.735776][  T146] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.150482][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.280663][ T5934] veth0_vlan: entered promiscuous mode
[   82.314139][ T5934] veth1_vlan: entered promiscuous mode
[   82.413680][ T5934] veth0_macvtap: entered promiscuous mode
[   82.461957][ T5934] veth1_macvtap: entered promiscuous mode
[   82.502842][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.526870][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.553357][   T35] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.562499][   T35] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.572937][   T35] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.587090][   T35] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.677032][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.691145][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.725646][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.733507][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.922616][ T6008] loop0: detected capacity change from 0 to 32768
[   82.958148][ T6008] 
[   82.958148][ T6008]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   82.958148][ T6008] 
[   82.977582][ T6008] read_mapping_page failed!
[   82.982354][ T6008] ERROR: (device loop0): txCommit: 
[   82.982354][ T6008] 
[   82.993733][ T6008] read_mapping_page failed!
[   82.998725][ T6008] ERROR: (device loop0): txCommit: 
[   82.998725][ T6008] 
[   83.009485][ T6008] ==================================================================
[   83.017553][ T6008] BUG: KASAN: slab-out-of-bounds in dtSplitPage+0x1248/0x37c0
[   83.025016][ T6008] Read of size 1 at addr ffff88805aa46445 by task syz.0.17/6008
[   83.032649][ T6008] 
[   83.034999][ T6008] CPU: 0 UID: 0 PID: 6008 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   83.035018][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   83.035035][ T6008] Call Trace:
[   83.035042][ T6008]  <TASK>
[   83.035049][ T6008]  dump_stack_lvl+0xe8/0x150
[   83.035079][ T6008]  print_report+0xba/0x230
[   83.035097][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.035114][ T6008]  kasan_report+0x117/0x150
[   83.035131][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.035150][ T6008]  dtSplitPage+0x1248/0x37c0
[   83.035183][ T6008]  ? dbAlloc+0x7b1/0xba0
[   83.035202][ T6008]  dtInsert+0x10a4/0x5f10
[   83.035226][ T6008]  ? do_raw_spin_lock+0x12b/0x2f0
[   83.035248][ T6008]  ? __pfx_dtInsert+0x10/0x10
[   83.035263][ T6008]  ? txLock+0xaf3/0x1cc0
[   83.035287][ T6008]  ? dtInitRoot+0x22a/0x670
[   83.035304][ T6008]  jfs_mkdir+0x783/0xb00
[   83.035327][ T6008]  ? __pfx_jfs_mkdir+0x10/0x10
[   83.035354][ T6008]  ? make_vfsuid+0x49/0xa0
[   83.035370][ T6008]  ? generic_permission+0x2e4/0x690
[   83.035391][ T6008]  ? inode_permission+0x346/0x5f0
[   83.035409][ T6008]  ? bpf_lsm_inode_mkdir+0x9/0x20
[   83.035425][ T6008]  vfs_mkdir+0x413/0x630
[   83.035444][ T6008]  filename_mkdirat+0x285/0x510
[   83.035460][ T6008]  ? __pfx_filename_mkdirat+0x10/0x10
[   83.035477][ T6008]  ? do_getname+0x151/0x250
[   83.035494][ T6008]  __se_sys_mkdirat+0x35/0x150
[   83.035511][ T6008]  do_syscall_64+0x14d/0xf80
[   83.035525][ T6008]  ? trace_irq_disable+0x3b/0x150
[   83.035545][ T6008]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.035560][ T6008]  ? clear_bhb_loop+0x40/0x90
[   83.035576][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.035591][ T6008] RIP: 0033:0x7ff05b59bf79
[   83.035614][ T6008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   83.035627][ T6008] RSP: 002b:00007ffc783add18 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   83.035643][ T6008] RAX: ffffffffffffffda RBX: 00007ff05b815fa0 RCX: 00007ff05b59bf79
[   83.035655][ T6008] RDX: 0000000000000040 RSI: 0000200000000340 RDI: ffffffffffffff9c
[   83.035664][ T6008] RBP: 00007ff05b6327e0 R08: 0000000000000000 R09: 0000000000000000
[   83.035674][ T6008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.035683][ T6008] R13: 00007ff05b815fac R14: 00007ff05b815fa0 R15: 00007ff05b815fa0
[   83.035700][ T6008]  </TASK>
[   83.035706][ T6008] 
[   83.270820][ T6008] Allocated by task 6008:
[   83.275127][ T6008]  kasan_save_track+0x3e/0x80
[   83.279780][ T6008]  __kasan_slab_alloc+0x6c/0x80
[   83.284609][ T6008]  kmem_cache_alloc_lru_noprof+0x2b8/0x640
[   83.290399][ T6008]  jfs_alloc_inode+0x28/0x70
[   83.294989][ T6008]  alloc_inode+0x6a/0x1b0
[   83.299293][ T6008]  iget_locked+0x131/0x6a0
[   83.303683][ T6008]  jfs_iget+0x24/0x470
[   83.307732][ T6008]  jfs_lookup+0x220/0x420
[   83.312060][ T6008]  __lookup_slow+0x2b7/0x410
[   83.316653][ T6008]  lookup_slow+0x53/0x70
[   83.320877][ T6008]  path_lookupat+0x3f5/0x8c0
[   83.325443][ T6008]  filename_lookup+0x256/0x5d0
[   83.330185][ T6008]  __se_sys_chdir+0xa8/0x2a0
[   83.334749][ T6008]  do_syscall_64+0x14d/0xf80
[   83.339313][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.345182][ T6008] 
[   83.347505][ T6008] The buggy address belongs to the object at ffff88805aa45b90
[   83.347505][ T6008]  which belongs to the cache jfs_ip of size 2216
[   83.361203][ T6008] The buggy address is located 13 bytes to the right of
[   83.361203][ T6008]  allocated 2216-byte region [ffff88805aa45b90, ffff88805aa46438)
[   83.375849][ T6008] 
[   83.378155][ T6008] The buggy address belongs to the physical page:
[   83.384550][ T6008] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88805aa464b8 pfn:0x5aa40
[   83.394599][ T6008] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   83.403090][ T6008] memcg:ffff88805aa47709
[   83.407308][ T6008] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[   83.415801][ T6008] page_type: f5(slab)
[   83.419804][ T6008] raw: 00fff00000000240 ffff888140e83c80 ffff88801e7bc048 ffff88801e7bc048
[   83.428369][ T6008] raw: ffff88805aa464b8 00000008000d000b 00000000f5000000 ffff88805aa47709
[   83.436932][ T6008] head: 00fff00000000240 ffff888140e83c80 ffff88801e7bc048 ffff88801e7bc048
[   83.445608][ T6008] head: ffff88805aa464b8 00000008000d000b 00000000f5000000 ffff88805aa47709
[   83.454256][ T6008] head: 00fff00000000003 ffffea00016a9001 00000000ffffffff 00000000ffffffff
[   83.462905][ T6008] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[   83.471705][ T6008] page dumped because: kasan: bad access detected
[   83.478100][ T6008] page_owner tracks the page as allocated
[   83.483795][ T6008] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0xd2050(__GFP_RECLAIMABLE|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6008, tgid 6008 (syz.0.17), ts 82972292904, free_ts 19097116618
[   83.505741][ T6008]  post_alloc_hook+0x231/0x280
[   83.510526][ T6008]  get_page_from_freelist+0x24dc/0x2580
[   83.516057][ T6008]  __alloc_frozen_pages_noprof+0x18d/0x380
[   83.521857][ T6008]  allocate_slab+0x77/0x660
[   83.526339][ T6008]  refill_objects+0x331/0x3c0
[   83.530997][ T6008]  refill_sheaf+0x29/0x50
[   83.535299][ T6008]  __pcs_replace_empty_main+0x3ef/0x620
[   83.540828][ T6008]  kmem_cache_alloc_lru_noprof+0x37c/0x640
[   83.546623][ T6008]  jfs_alloc_inode+0x28/0x70
[   83.551194][ T6008]  alloc_inode+0x6a/0x1b0
[   83.555503][ T6008]  iget_locked+0x131/0x6a0
[   83.559903][ T6008]  jfs_iget+0x24/0x470
[   83.563947][ T6008]  jfs_lookup+0x220/0x420
[   83.568253][ T6008]  __lookup_slow+0x2b7/0x410
[   83.572824][ T6008]  lookup_slow+0x53/0x70
[   83.577055][ T6008]  path_lookupat+0x3f5/0x8c0
[   83.581626][ T6008] page last free pid 1 tgid 1 stack trace:
[   83.587406][ T6008]  __free_frozen_pages+0xc2b/0xdb0
[   83.592500][ T6008]  free_contig_range+0xbb/0x170
[   83.597327][ T6008]  destroy_args+0x4e5/0x570
[   83.601803][ T6008]  debug_vm_pgtable+0x3f8/0x410
[   83.606627][ T6008]  do_one_initcall+0x250/0x8d0
[   83.611373][ T6008]  do_initcall_level+0x104/0x190
[   83.616299][ T6008]  do_initcalls+0x59/0xa0
[   83.620608][ T6008]  kernel_init_freeable+0x2a6/0x3e0
[   83.625787][ T6008]  kernel_init+0x1d/0x1d0
[   83.630093][ T6008]  ret_from_fork+0x51e/0xb90
[   83.634672][ T6008]  ret_from_fork_asm+0x1a/0x30
[   83.639458][ T6008] 
[   83.641758][ T6008] Memory state around the buggy address:
[   83.647365][ T6008]  ffff88805aa46300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   83.655410][ T6008]  ffff88805aa46380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   83.663455][ T6008] >ffff88805aa46400: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[   83.671492][ T6008]                                            ^
[   83.677622][ T6008]  ffff88805aa46480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   83.685664][ T6008]  ffff88805aa46500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   83.693710][ T6008] ==================================================================
[   83.704265][ T5144] Bluetooth: hci0: command tx timeout
[   83.708208][ T6008] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   83.708234][ T6008] CPU: 1 UID: 0 PID: 6008 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   83.708252][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   83.708261][ T6008] Call Trace:
[   83.708268][ T6008]  <TASK>
[   83.708274][ T6008]  vpanic+0x56c/0xa60
[   83.708299][ T6008]  ? __pfx_vpanic+0x10/0x10
[   83.708321][ T6008]  panic+0xc5/0xd0
[   83.708338][ T6008]  ? __pfx_panic+0x10/0x10
[   83.708356][ T6008]  ? preempt_schedule_thunk+0x16/0x30
[   83.708374][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.708391][ T6008]  ? preempt_schedule_thunk+0x16/0x30
[   83.708407][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.708423][ T6008]  check_panic_on_warn+0x89/0xb0
[   83.708439][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.708455][ T6008]  end_report+0x73/0x180
[   83.708471][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.708487][ T6008]  kasan_report+0x128/0x150
[   83.708504][ T6008]  ? dtSplitPage+0x1248/0x37c0
[   83.708523][ T6008]  dtSplitPage+0x1248/0x37c0
[   83.708556][ T6008]  ? dbAlloc+0x7b1/0xba0
[   83.708574][ T6008]  dtInsert+0x10a4/0x5f10
[   83.708598][ T6008]  ? do_raw_spin_lock+0x12b/0x2f0
[   83.708618][ T6008]  ? __pfx_dtInsert+0x10/0x10
[   83.708633][ T6008]  ? txLock+0xaf3/0x1cc0
[   83.708657][ T6008]  ? dtInitRoot+0x22a/0x670
[   83.708674][ T6008]  jfs_mkdir+0x783/0xb00
[   83.708696][ T6008]  ? __pfx_jfs_mkdir+0x10/0x10
[   83.708723][ T6008]  ? make_vfsuid+0x49/0xa0
[   83.708738][ T6008]  ? generic_permission+0x2e4/0x690
[   83.708760][ T6008]  ? inode_permission+0x346/0x5f0
[   83.708777][ T6008]  ? bpf_lsm_inode_mkdir+0x9/0x20
[   83.708801][ T6008]  vfs_mkdir+0x413/0x630
[   83.708819][ T6008]  filename_mkdirat+0x285/0x510
[   83.708837][ T6008]  ? __pfx_filename_mkdirat+0x10/0x10
[   83.708854][ T6008]  ? do_getname+0x151/0x250
[   83.708872][ T6008]  __se_sys_mkdirat+0x35/0x150
[   83.708888][ T6008]  do_syscall_64+0x14d/0xf80
[   83.708903][ T6008]  ? trace_irq_disable+0x3b/0x150
[   83.708922][ T6008]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.708937][ T6008]  ? clear_bhb_loop+0x40/0x90
[   83.708953][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.708967][ T6008] RIP: 0033:0x7ff05b59bf79
[   83.708982][ T6008] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   83.708994][ T6008] RSP: 002b:00007ffc783add18 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   83.709011][ T6008] RAX: ffffffffffffffda RBX: 00007ff05b815fa0 RCX: 00007ff05b59bf79
[   83.709022][ T6008] RDX: 0000000000000040 RSI: 0000200000000340 RDI: ffffffffffffff9c
[   83.709033][ T6008] RBP: 00007ff05b6327e0 R08: 0000000000000000 R09: 0000000000000000
[   83.709042][ T6008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.709051][ T6008] R13: 00007ff05b815fac R14: 00007ff05b815fa0 R15: 00007ff05b815fa0
[   83.709069][ T6008]  </TASK>
[   83.709763][ T6008] Kernel Offset: disabled