Warning: Permanently added '10.128.1.9' (ED25519) to the list of known hosts.
2026/04/19 11:07:50 parsed 1 programs
[ 78.933983][ T5827] cgroup: Unknown subsys name 'net'
[ 79.171500][ T5827] cgroup: Unknown subsys name 'cpuset'
[ 79.227685][ T5827] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 81.084729][ T5827] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 81.630436][ T37] cfg80211: failed to load regulatory.db
[ 85.131657][ T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.131675][ T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.267098][ T3713] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.267118][ T3713] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.386299][ T5143] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 88.425686][ T5143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 88.431404][ T5143] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 88.435478][ T5143] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 88.437428][ T5143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 90.360282][ T5913] chnl_net:caif_netlink_parms(): no params data found
[ 90.479477][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 90.480530][ T5913] bridge0: port 1(bridge_slave_0) entered disabled state
[ 90.480678][ T5913] bridge_slave_0: entered allmulticast mode
[ 90.482560][ T5913] bridge_slave_0: entered promiscuous mode
[ 90.493371][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.493720][ T5913] bridge0: port 2(bridge_slave_1) entered disabled state
[ 90.493928][ T5913] bridge_slave_1: entered allmulticast mode
[ 90.496770][ T5913] bridge_slave_1: entered promiscuous mode
[ 90.557780][ T5913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 90.561103][ T5913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 90.608366][ T5913] team0: Port device team_slave_0 added
[ 90.611133][ T5913] team0: Port device team_slave_1 added
[ 90.651167][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 90.651177][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 90.651191][ T5913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 90.653737][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 90.653746][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 90.653760][ T5913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 90.744571][ T5913] hsr_slave_0: entered promiscuous mode
[ 90.746699][ T5913] hsr_slave_1: entered promiscuous mode
[ 91.434646][ T5913] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 91.465857][ T5913] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 91.466506][ T5913] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 91.492576][ T5913] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 91.493233][ T5913] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 91.522033][ T5913] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 91.522685][ T5913] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 91.551490][ T5913] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 91.675831][ T5913] 8021q: adding VLAN 0 to HW filter on device bond0
[ 91.714941][ T5913] 8021q: adding VLAN 0 to HW filter on device team0
[ 91.753274][ T1027] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.753748][ T1027] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 91.804886][ T3713] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.805019][ T3713] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 92.053886][ T5913] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 92.119274][ T5913] veth0_vlan: entered promiscuous mode
[ 92.130226][ T5913] veth1_vlan: entered promiscuous mode
[ 92.179119][ T5913] veth0_macvtap: entered promiscuous mode
[ 92.194734][ T5913] veth1_macvtap: entered promiscuous mode
[ 92.229783][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 92.256044][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 92.302705][ T57] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.304534][ T57] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.343620][ T57] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.343815][ T57] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.161347][ T67] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 93.422534][ T67] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/19 11:08:07 executed programs: 0
[ 93.751614][ T5143] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 93.786624][ T5143] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 93.794312][ T5143] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 93.807068][ T5143] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 93.810048][ T5143] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 94.109029][ T67] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.269260][ T5938] chnl_net:caif_netlink_parms(): no params data found
[ 94.365238][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.365434][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[ 94.365748][ T5938] bridge_slave_0: entered allmulticast mode
[ 94.370025][ T5938] bridge_slave_0: entered promiscuous mode
[ 94.376525][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[ 94.376827][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.378821][ T5938] bridge_slave_1: entered allmulticast mode
[ 94.382222][ T5938] bridge_slave_1: entered promiscuous mode
[ 94.435073][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 94.441428][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 94.485533][ T5938] team0: Port device team_slave_0 added
[ 94.493127][ T5938] team0: Port device team_slave_1 added
[ 94.521648][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 94.521659][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 94.521672][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 94.523983][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 94.523992][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 94.524006][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 94.610780][ T5938] hsr_slave_0: entered promiscuous mode
[ 94.612812][ T5938] hsr_slave_1: entered promiscuous mode
[ 94.614566][ T5938] debugfs: 'hsr0' already exists in 'hsr'
[ 94.614663][ T5938] Cannot create hsr debugfs directory
[ 95.315272][ T67] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.918692][ T60] Bluetooth: hci0: command tx timeout
[ 96.087331][ T67] bridge_slave_1: left allmulticast mode
[ 96.087496][ T67] bridge_slave_1: left promiscuous mode
[ 96.090810][ T67] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.168019][ T67] bridge_slave_0: left allmulticast mode
[ 96.168038][ T67] bridge_slave_0: left promiscuous mode
[ 96.168198][ T67] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.847631][ T67] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 96.927838][ T67] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 96.949034][ T67] bond0 (unregistering): Released all slaves
[ 97.377682][ T67] hsr_slave_0: left promiscuous mode
[ 97.417079][ T67] hsr_slave_1: left promiscuous mode
[ 97.418520][ T67] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 97.418594][ T67] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 97.458497][ T67] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 97.458526][ T67] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 97.538221][ T67] veth1_macvtap: left promiscuous mode
[ 97.538360][ T67] veth0_macvtap: left promiscuous mode
[ 97.541899][ T67] veth1_vlan: left promiscuous mode
[ 97.542231][ T67] veth0_vlan: left promiscuous mode
[ 97.997165][ T60] Bluetooth: hci0: command tx timeout
[ 98.217576][ T67] team0 (unregistering): Port device team_slave_1 removed
[ 98.259295][ T67] team0 (unregistering): Port device team_slave_0 removed
[ 98.432174][ T5488] 8021q: adding VLAN 0 to HW filter on device eth1
[ 98.992100][ T5938] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 99.023335][ T5938] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 99.024301][ T5938] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 99.070512][ T5938] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 99.071554][ T5938] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 99.125445][ T5938] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 99.126609][ T5938] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 99.185330][ T5938] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 99.346729][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[ 99.414278][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[ 99.428391][ T3713] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.428598][ T3713] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 99.453758][ T57] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.453901][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 99.739731][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 99.806167][ T5938] veth0_vlan: entered promiscuous mode
[ 99.831560][ T5938] veth1_vlan: entered promiscuous mode
[ 99.872072][ T5938] veth0_macvtap: entered promiscuous mode
[ 99.876798][ T5938] veth1_macvtap: entered promiscuous mode
[ 99.925659][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 100.013731][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 100.028429][ T57] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.028686][ T57] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.028723][ T57] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.028755][ T57] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 100.087141][ T60] Bluetooth: hci0: command tx timeout
[ 100.367748][ T1027] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.367767][ T1027] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.414825][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 100.414844][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/19 11:08:14 executed programs: 2
[ 100.734653][ T5985] loop0: detected capacity change from 0 to 32768
[ 101.347459][ T5986] loop0: detected capacity change from 0 to 32768
[ 101.791469][ T5987] loop0: detected capacity change from 0 to 32768
[ 102.157116][ T60] Bluetooth: hci0: command tx timeout
[ 102.192915][ T5988] loop0: detected capacity change from 0 to 32768
[ 102.585214][ T5989] loop0: detected capacity change from 0 to 32768
[ 102.938370][ T5990] loop0: detected capacity change from 0 to 32768
[ 103.321554][ T5991] loop0: detected capacity change from 0 to 32768
[ 103.683548][ T5992] loop0: detected capacity change from 0 to 32768
[ 104.026837][ T5993] loop0: detected capacity change from 0 to 32768
[ 104.393469][ T5994] loop0: detected capacity change from 0 to 32768
2026/04/19 11:08:19 executed programs: 15
[ 105.815896][ T5998] set_capacity_and_notify: 3 callbacks suppressed
[ 105.815907][ T5998] loop0: detected capacity change from 0 to 32768
[ 106.163180][ T5999] loop0: detected capacity change from 0 to 32768
[ 106.501752][ T6000] loop0: detected capacity change from 0 to 32768
[ 106.846667][ T6001] loop0: detected capacity change from 0 to 32768
[ 107.208561][ T6002] loop0: detected capacity change from 0 to 32768
[ 107.578343][ T6003] loop0: detected capacity change from 0 to 32768
[ 107.903001][ T6004] loop0: detected capacity change from 0 to 32768
[ 108.248821][ T6005] loop0: detected capacity change from 0 to 32768
[ 108.605702][ T6006] loop0: detected capacity change from 0 to 32768
[ 108.970186][ T6007] loop0: detected capacity change from 0 to 32768
2026/04/19 11:08:24 executed programs: 30
[ 110.982320][ T6013] set_capacity_and_notify: 5 callbacks suppressed
[ 110.982331][ T6013] loop0: detected capacity change from 0 to 32768
[ 111.334067][ T6014] loop0: detected capacity change from 0 to 32768
[ 111.690636][ T6015] loop0: detected capacity change from 0 to 32768
[ 112.042042][ T6016] loop0: detected capacity change from 0 to 32768
[ 112.405631][ T6018] loop0: detected capacity change from 0 to 32768
[ 112.788241][ T6020] loop0: detected capacity change from 0 to 32768
[ 113.137462][ T6024] loop0: detected capacity change from 0 to 32768
[ 113.502823][ T6026] loop0: detected capacity change from 0 to 32768
[ 113.833668][ T6027] loop0: detected capacity change from 0 to 32768
[ 114.187699][ T6028] loop0: detected capacity change from 0 to 32768
2026/04/19 11:08:30 executed programs: 45
[ 116.243117][ T6034] set_capacity_and_notify: 5 callbacks suppressed
[ 116.243129][ T6034] loop0: detected capacity change from 0 to 32768
[ 116.592734][ T6035] loop0: detected capacity change from 0 to 32768
[ 116.960621][ T6036] loop0: detected capacity change from 0 to 32768
[ 117.279545][ T6037] loop0: detected capacity change from 0 to 32768
[ 117.648285][ T6038] loop0: detected capacity change from 0 to 32768
[ 118.019883][ T6039] loop0: detected capacity change from 0 to 32768
[ 118.368041][ T6040] loop0: detected capacity change from 0 to 32768
[ 118.704134][ T6041] loop0: detected capacity change from 0 to 32768
[ 119.024015][ T6042] loop0: detected capacity change from 0 to 32768
[ 119.375734][ T6043] loop0: detected capacity change from 0 to 32768
2026/04/19 11:08:35 executed programs: 60
[ 121.443631][ T6049] set_capacity_and_notify: 5 callbacks suppressed
[ 121.443661][ T6049] loop0: detected capacity change from 0 to 32768
[ 121.790758][ T6050] loop0: detected capacity change from 0 to 32768
[ 122.144996][ T6051] loop0: detected capacity change from 0 to 32768
[ 122.489794][ T6052] loop0: detected capacity change from 0 to 32768
[ 122.856641][ T6053] loop0: detected capacity change from 0 to 32768
[ 122.924356][ T12] =========================================[ 122.924356][ T12] ==================================================================
[ 122.924371][ T12] BUG: KASAN: use-after-free in copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.924400][ T12] Read of size 4096 at addr ffff88803fc71000 by task kworker/u8:0/12
[ 122.924416][ T12]
[ 122.924441][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 122.924462][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 122.924473][ T12] Workqueue: loop0 loop_workfn
[ 122.924516][ T12] Call Trace:
[ 122.924527][ T12]
[ 122.924534][ T12] dump_stack_lvl+0xe8/0x150
[ 122.924555][ T12] print_address_description+0x55/0x1e0
[ 122.924574][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.924593][ T12] print_report+0x58/0x70
[ 122.924610][ T12] kasan_report+0x117/0x150
[ 122.924637][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.924659][ T12] kasan_check_range+0x264/0x2c0
[ 122.924684][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.924703][ T12] __asan_memcpy+0x29/0x70
[ 122.924725][ T12] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.924754][ T12] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 122.924775][ T12] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 122.924802][ T12] ? shmem_write_begin+0x1ce/0x320
[ 122.924827][ T12] generic_perform_write+0x5b1/0x8b0
[ 122.924851][ T12] ? __pfx_generic_perform_write+0x10/0x10
[ 122.924874][ T12] ? file_update_time_flags+0x3b9/0x4b0
[ 122.924899][ T12] shmem_file_write_iter+0xfb/0x120
[ 122.924919][ T12] lo_rw_aio+0xc80/0xf00
[ 122.924948][ T12] ? __pfx_lo_rw_aio+0x10/0x10
[ 122.924974][ T12] ? kthread_associate_blkcg+0x490/0x600
[ 122.924999][ T12] ? rt_spin_unlock+0x160/0x200
[ 122.925026][ T12] loop_process_work+0x637/0x11b0
[ 122.925054][ T12] ? pick_next_task_fair+0x1a68/0x1ab0
[ 122.925075][ T12] ? __pfx_loop_process_work+0x10/0x10
[ 122.925098][ T12] ? __lock_acquire+0x6b5/0x2cf0
[ 122.925127][ T12] ? look_up_lock_class+0x57/0x110
[ 122.925146][ T12] ? register_lock_class+0x31/0x2e0
[ 122.925171][ T12] ? __lock_acquire+0x6b5/0x2cf0
[ 122.925198][ T12] ? do_raw_spin_lock+0x12b/0x2f0
[ 122.925216][ T12] ? lock_acquire+0x106/0x350
[ 122.925238][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 122.925258][ T12] ? process_one_work+0x8b7/0x1710
[ 122.925276][ T12] ? process_one_work+0x8b7/0x1710
[ 122.925298][ T12] ? process_one_work+0x8b7/0x1710
[ 122.925314][ T12] process_one_work+0x9a3/0x1710
[ 122.925339][ T12] ? __pfx_process_one_work+0x10/0x10
[ 122.925355][ T12] ? do_raw_spin_lock+0x12b/0x2f0
[ 122.925380][ T12] worker_thread+0xba8/0x11e0
[ 122.925409][ T12] kthread+0x388/0x470
[ 122.925431][ T12] ? __pfx_worker_thread+0x10/0x10
[ 122.925448][ T12] ? __pfx_kthread+0x10/0x10
[ 122.925470][ T12] ret_from_fork+0x514/0xb70
[ 122.925489][ T12] ? __pfx_ret_from_fork+0x10/0x10
[ 122.925507][ T12] ? __switch_to+0xc79/0x1410
[ 122.925534][ T12] ? __pfx_kthread+0x10/0x10
[ 122.925557][ T12] ret_from_fork_asm+0x1a/0x30
[ 122.925585][ T12]
[ 122.925591][ T12]
[ 122.925596][ T12] The buggy address belongs to the physical page:
[ 122.925620][ T12] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x24 pfn:0x3fc71
[ 122.925637][ T12] flags: 0x80000000000000(node=0|zone=1)
[ 122.925662][ T12] raw: 0080000000000000 ffffea0000a45b88 ffffea0000d8bac8 0000000000000000
[ 122.925677][ T12] raw: 0000000000000024 0000000000000000 00000000ffffffff 0000000000000000
[ 122.925686][ T12] page dumped because: kasan: bad access detected
[ 122.925698][ T12] page_owner tracks the page as freed
[ 122.925704][ T12] page last allocated via order 0, migratetype Unmovable, gfp_mask 0xdc0(GFP_KERNEL|__GFP_ZERO), pid 6053, tgid 6053 (syz.0.79), ts 122875275563, free_ts 122922752197
[ 122.925732][ T12] post_alloc_hook+0x231/0x280
[ 122.925756][ T12] get_page_from_freelist+0x27d6/0x2850
[ 122.925771][ T12] __alloc_frozen_pages_noprof+0x18d/0x380
[ 122.925785][ T12] alloc_pages_mpol+0xd1/0x380
[ 122.925809][ T12] alloc_pages_noprof+0xd2/0x2f0
[ 122.925832][ T12] lmLogInit+0x357/0x1a00
[ 122.925848][ T12] lmLogOpen+0x4e1/0xfa0
[ 122.925862][ T12] jfs_mount_rw+0xee/0x670
[ 122.925875][ T12] jfs_fill_super+0x754/0xd80
[ 122.925896][ T12] get_tree_bdev_flags+0x431/0x4f0
[ 122.925919][ T12] vfs_get_tree+0x92/0x2a0
[ 122.925941][ T12] do_new_mount+0x341/0xd30
[ 122.925958][ T12] __se_sys_mount+0x31d/0x420
[ 122.925975][ T12] do_syscall_64+0x15f/0xf80
[ 122.925993][ T12] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 122.926009][ T12] page last free pid 5938 tgid 5938 stack trace:
[ 122.926019][ T12] __free_frozen_pages+0xf9b/0x10f0
[ 122.926041][ T12] lmLogShutdown+0x44e/0x850
[ 122.926057][ T12] lmLogClose+0x28a/0x520
[ 122.926073][ T12] jfs_umount+0x2fb/0x3d0
[ 122.926087][ T12] jfs_put_super+0x8c/0x190
[ 122.926107][ T12] generic_shutdown_super+0x13d/0x2d0
[ 122.926134][ T12] kill_block_super+0x44/0x90
[ 122.926157][ T12] deactivate_locked_super+0xbc/0x130
[ 122.926177][ T12] cleanup_mnt+0x437/0x4d0
[ 122.926199][ T12] task_work_run+0x1d9/0x270
[ 122.926221][ T12] exit_to_user_mode_loop+0xed/0x480
[ 122.926240][ T12] do_syscall_64+0x33e/0xf80
[ 122.926257][ T12] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 122.926273][ T12]
[ 122.926277][ T12] Memory state around the buggy address:
[ 122.926286][ T12] ffff88803fc70f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 122.926298][ T12] ffff88803fc70f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 122.926309][ T12] >ffff88803fc71000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 122.926317][ T12] ^
[ 122.926326][ T12] ffff88803fc71080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 122.926337][ T12] ffff88803fc71100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 122.926346][ T12] ==================================================================
[ 122.931443][ T12] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 122.931461][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)}
[ 122.931482][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 122.931493][ T12] Workqueue: loop0 loop_workfn
[ 122.931520][ T12] Call Trace:
[ 122.931527][ T12]
[ 122.931534][ T12] vpanic+0x56c/0xa60
[ 122.931557][ T12] ? __pfx_vpanic+0x10/0x10
[ 122.931580][ T12] panic+0xc5/0xd0
[ 122.931597][ T12] ? __pfx_panic+0x10/0x10
[ 122.931616][ T12] ? preempt_schedule_thunk+0x16/0x30
[ 122.931642][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931661][ T12] ? preempt_schedule_thunk+0x16/0x30
[ 122.931685][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931704][ T12] check_panic_on_warn+0x89/0xb0
[ 122.931727][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931746][ T12] end_report+0x73/0x170
[ 122.931770][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931788][ T12] kasan_report+0x128/0x150
[ 122.931813][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931834][ T12] kasan_check_range+0x264/0x2c0
[ 122.931858][ T12] ? copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931877][ T12] __asan_memcpy+0x29/0x70
[ 122.931898][ T12] copy_folio_from_iter_atomic+0xbb5/0x1ad0
[ 122.931926][ T12] ? __pfx_copy_folio_from_iter_atomic+0x10/0x10
[ 122.931945][ T12] ? ktime_get_coarse_real_ts64_mg+0x59/0x1e0
[ 122.931970][ T12] ? shmem_write_begin+0x1ce/0x320
[ 122.932000][ T12] generic_perform_write+0x5b1/0x8b0
[ 122.932025][ T12] ? __pfx_generic_perform_write+0x10/0x10
[ 122.932048][ T12] ? file_update_time_flags+0x3b9/0x4b0
[ 122.932073][ T12] shmem_file_write_iter+0xfb/0x120
[ 122.932092][ T12] lo_rw_aio+0xc80/0xf00
[ 122.932127][ T12] ? __pfx_lo_rw_aio+0x10/0x10
[ 122.932153][ T12] ? kthread_associate_blkcg+0x490/0x600
[ 122.932175][ T12] ? rt_spin_unlock+0x160/0x200
[ 122.932200][ T12] loop_process_work+0x637/0x11b0
[ 122.932228][ T12] ? pick_next_task_fair+0x1a68/0x1ab0
[ 122.932248][ T12] ? __pfx_loop_process_work+0x10/0x10
[ 122.932270][ T12] ? __lock_acquire+0x6b5/0x2cf0
[ 122.932291][ T12] ? look_up_lock_class+0x57/0x110
[ 122.932309][ T12] ? register_lock_class+0x31/0x2e0
[ 122.932332][ T12] ? __lock_acquire+0x6b5/0x2cf0
[ 122.932358][ T12] ? do_raw_spin_lock+0x12b/0x2f0
[ 122.932375][ T12] ? lock_acquire+0x106/0x350
[ 122.932396][ T12] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 122.932415][ T12] ? process_one_work+0x8b7/0x1710
[ 122.932432][ T12] ? process_one_work+0x8b7/0x1710
[ 122.932453][ T12] ? process_one_work+0x8b7/0x1710
[ 122.932469][ T12] process_one_work+0x9a3/0x1710
[ 122.932494][ T12] ? __pfx_process_one_work+0x10/0x10
[ 122.932509][ T12] ? do_raw_spin_lock+0x12b/0x2f0
[ 122.932533][ T12] worker_thread+0xba8/0x11e0
[ 122.932561][ T12] kthread+0x388/0x470
[ 122.932582][ T12] ? __pfx_worker_thread+0x10/0x10
[ 122.932599][ T12] ? __pfx_kthread+0x10/0x10
[ 122.932620][ T12] ret_from_fork+0x514/0xb70
[ 122.932639][ T12] ? __pfx_ret_from_fork+0x10/0x10
[ 122.932656][ T12] ? __switch_to+0xc79/0x1410
[ 122.932682][ T12] ? __pfx_kthread+0x10/0x10
[ 122.932703][ T12] ret_from_fork_asm+0x1a/0x30
[ 122.932729][ T12]
[ 122.933102][ T12] Kernel Offset: disabled