[   87.016922][   T36] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.83' (ED25519) to the list of known hosts.
2026/04/17 06:39:16 parsed 1 programs
[   94.356204][ T5809] cgroup: Unknown subsys name 'net'
[   94.598729][ T5809] cgroup: Unknown subsys name 'cpuset'
[   94.672421][ T5809] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   96.560548][ T5809] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  100.938086][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.962770][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.964264][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.973412][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.977326][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.665762][ T3582] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.665786][ T3582] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.760910][  T131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.760934][  T131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  106.547540][ T5893] chnl_net:caif_netlink_parms(): no params data found
[  106.904070][ T5893] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.905583][ T5893] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.906064][ T5893] bridge_slave_0: entered allmulticast mode
[  106.909265][ T5893] bridge_slave_0: entered promiscuous mode
[  106.931032][ T5893] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.931163][ T5893] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.931500][ T5893] bridge_slave_1: entered allmulticast mode
[  106.937819][ T5893] bridge_slave_1: entered promiscuous mode
[  107.000619][ T5893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.017572][ T5893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.147237][ T5893] team0: Port device team_slave_0 added
[  107.151231][ T5893] team0: Port device team_slave_1 added
[  107.228469][ T5893] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.228488][ T5893] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.228516][ T5893] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.234281][ T5893] batman_adv: batadv0: Adding interface: batadv_slave_1
[  107.234297][ T5893] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.234321][ T5893] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.368015][ T5893] hsr_slave_0: entered promiscuous mode
[  107.369595][ T5893] hsr_slave_1: entered promiscuous mode
[  107.830693][ T5893] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  107.872951][ T5893] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  107.873929][ T5893] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  107.906629][ T5893] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  107.907395][ T5893] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  107.949244][ T5893] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  107.950000][ T5893] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  107.995902][ T5893] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  108.335278][ T5893] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.365166][ T5893] 8021q: adding VLAN 0 to HW filter on device team0
[  108.378938][ T2314] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.379180][ T2314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.405500][ T1173] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.406116][ T1173] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.688456][ T5893] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.787527][ T5893] veth0_vlan: entered promiscuous mode
[  108.804030][ T5893] veth1_vlan: entered promiscuous mode
[  108.857250][ T5893] veth0_macvtap: entered promiscuous mode
[  108.861204][ T5893] veth1_macvtap: entered promiscuous mode
[  108.879365][ T5893] batman_adv: batadv0: Interface activated: batadv_slave_0
[  108.901275][ T5893] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.925646][ T2314] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.928243][ T2314] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.931226][ T2314] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.955612][ T2314] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.557848][  T131] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.872921][  T131] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/04/17 06:39:35 executed programs: 0
[  110.200165][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  110.219923][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  110.230504][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  110.249440][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  110.250170][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  110.529093][ T5920] chnl_net:caif_netlink_parms(): no params data found
[  110.627878][ T5920] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.628013][ T5920] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.628120][ T5920] bridge_slave_0: entered allmulticast mode
[  110.629740][ T5920] bridge_slave_0: entered promiscuous mode
[  110.636105][ T5920] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.636322][ T5920] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.636806][ T5920] bridge_slave_1: entered allmulticast mode
[  110.639306][ T5920] bridge_slave_1: entered promiscuous mode
[  110.701341][ T5920] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.720118][ T5920] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.925647][  T131] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.967291][ T5920] team0: Port device team_slave_0 added
[  110.970586][ T5920] team0: Port device team_slave_1 added
[  111.008980][ T5920] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.008994][ T5920] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  111.009009][ T5920] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.010714][ T5920] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.010728][ T5920] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  111.010742][ T5920] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.081498][ T5920] hsr_slave_0: entered promiscuous mode
[  111.084088][ T5920] hsr_slave_1: entered promiscuous mode
[  111.085098][ T5920] debugfs: 'hsr0' already exists in 'hsr'
[  111.085178][ T5920] Cannot create hsr debugfs directory
[  112.255038][  T131] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.363250][   T59] Bluetooth: hci0: command tx timeout
[  112.953963][  T131] bridge_slave_1: left allmulticast mode
[  112.954165][  T131] bridge_slave_1: left promiscuous mode
[  112.963414][  T131] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.053071][  T131] bridge_slave_0: left allmulticast mode
[  113.053118][  T131] bridge_slave_0: left promiscuous mode
[  113.053287][  T131] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.752698][  T131] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  113.812544][  T131] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  113.854037][  T131] bond0 (unregistering): Released all slaves
[  114.018356][ T5470] 8021q: adding VLAN 0 to HW filter on device eth1
[  114.182062][  T131] hsr_slave_0: left promiscuous mode
[  114.221984][  T131] hsr_slave_1: left promiscuous mode
[  114.223004][  T131] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  114.223065][  T131] batman_adv: batadv0: Removing interface: batadv_slave_0
[  114.263256][  T131] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.263350][  T131] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.326703][  T131] veth1_macvtap: left promiscuous mode
[  114.326883][  T131] veth0_macvtap: left promiscuous mode
[  114.327056][  T131] veth1_vlan: left promiscuous mode
[  114.327243][  T131] veth0_vlan: left promiscuous mode
[  114.442293][   T59] Bluetooth: hci0: command tx timeout
[  114.992572][  T131] team0 (unregistering): Port device team_slave_1 removed
[  115.042714][  T131] team0 (unregistering): Port device team_slave_0 removed
[  116.407185][ T5920] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  116.450139][ T5920] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  116.459761][ T5920] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  116.495604][ T5920] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  116.498159][ T5920] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  116.521919][   T59] Bluetooth: hci0: command tx timeout
[  116.558147][ T5920] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  116.559397][ T5920] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  116.596601][ T5920] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  116.964345][ T5920] 8021q: adding VLAN 0 to HW filter on device bond0
[  117.047055][ T5920] 8021q: adding VLAN 0 to HW filter on device team0
[  117.150551][ T2314] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.150682][ T2314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  117.170292][ T2314] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.170524][ T2314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.439616][ T5920] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.497665][ T5920] veth0_vlan: entered promiscuous mode
[  117.515892][ T5920] veth1_vlan: entered promiscuous mode
[  117.550457][ T5920] veth0_macvtap: entered promiscuous mode
[  117.560475][ T5920] veth1_macvtap: entered promiscuous mode
[  117.580550][ T5920] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.601928][ T5920] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.611548][  T131] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.628670][  T131] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.647382][  T131] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.657641][  T131] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.983986][ T2314] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.984009][ T2314] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.049120][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  118.049144][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/17 06:39:43 executed programs: 2
[  118.459099][ T5994] loop0: detected capacity change from 0 to 32768
[  118.602962][   T59] Bluetooth: hci0: command tx timeout
[  119.097190][ T5996] loop0: detected capacity change from 0 to 32768
[  119.603657][ T5998] loop0: detected capacity change from 0 to 32768
[  120.073631][ T6000] loop0: detected capacity change from 0 to 32768
[  120.540618][ T6002] loop0: detected capacity change from 0 to 32768
[  121.019387][ T6004] loop0: detected capacity change from 0 to 32768
[  121.455059][ T6006] loop0: detected capacity change from 0 to 32768
[  121.860957][ T6008] loop0: detected capacity change from 0 to 32768
[  122.263094][ T6010] loop0: detected capacity change from 0 to 32768
[  122.731593][ T6012] loop0: detected capacity change from 0 to 32768
2026/04/17 06:39:48 executed programs: 13
[  123.598945][ T6017] set_capacity_and_notify: 1 callbacks suppressed
[  123.598960][ T6017] loop0: detected capacity change from 0 to 32768
[  124.049178][ T6019] loop0: detected capacity change from 0 to 32768
[  124.475481][ T6023] loop0: detected capacity change from 0 to 32768
[  124.920079][ T6025] loop0: detected capacity change from 0 to 32768
[  125.340993][ T6029] loop0: detected capacity change from 0 to 32768
[  125.767619][ T6031] loop0: detected capacity change from 0 to 32768
[  126.181473][ T6033] loop0: detected capacity change from 0 to 32768
[  126.604713][ T6035] loop0: detected capacity change from 0 to 32768
[  126.995157][ T6038] loop0: detected capacity change from 0 to 32768
[  127.389900][ T6040] loop0: detected capacity change from 0 to 32768
2026/04/17 06:39:54 executed programs: 26
[  128.982770][ T6048] set_capacity_and_notify: 3 callbacks suppressed
[  128.982791][ T6048] loop0: detected capacity change from 0 to 32768
[  129.412780][ T6050] loop0: detected capacity change from 0 to 32768
[  129.790672][ T6052] loop0: detected capacity change from 0 to 32768
[  130.193215][ T6054] loop0: detected capacity change from 0 to 32768
[  130.571353][ T6056] loop0: detected capacity change from 0 to 32768
[  130.968967][ T6058] loop0: detected capacity change from 0 to 32768
[  131.417338][ T6060] loop0: detected capacity change from 0 to 32768
[  131.798448][ T6062] loop0: detected capacity change from 0 to 32768
[  132.201033][ T6064] loop0: detected capacity change from 0 to 32768
[  132.604797][ T6066] loop0: detected capacity change from 0 to 32768
[  133.094931][ T1329] ieee802154 phy0 wpan0: encryption failed: -22
[  133.095004][ T1329] ieee802154 phy1 wpan1: encryption failed: -22
2026/04/17 06:39:59 executed programs: 39
[  134.294666][ T6074] set_capacity_and_notify: 3 callbacks suppressed
[  134.294680][ T6074] loop0: detected capacity change from 0 to 32768
[  134.724505][ T6076] loop0: detected capacity change from 0 to 32768
[  135.127793][ T6078] loop0: detected capacity change from 0 to 32768
[  135.558939][ T6080] loop0: detected capacity change from 0 to 32768
[  135.978624][ T6082] loop0: detected capacity change from 0 to 32768
[  136.386120][ T6084] loop0: detected capacity change from 0 to 32768
[  136.816457][ T6086] loop0: detected capacity change from 0 to 32768
[  137.238164][ T6088] loop0: detected capacity change from 0 to 32768
[  137.673966][ T6090] loop0: detected capacity change from 0 to 32768
[  138.094371][ T6092] loop0: detected capacity change from 0 to 32768
2026/04/17 06:40:04 executed programs: 52
[  139.654952][ T6100] set_capacity_and_notify: 3 callbacks suppressed
[  139.654966][ T6100] loop0: detected capacity change from 0 to 32768
[  140.063674][ T6102] loop0: detected capacity change from 0 to 32768
[  140.461400][ T6104] loop0: detected capacity change from 0 to 32768
[  140.872951][ T6106] loop0: detected capacity change from 0 to 32768
[  141.284600][ T6108] loop0: detected capacity change from 0 to 32768
[  141.362954][    C0] ==================================================================
[  141.362972][    C0] BUG: KASAN: slab-use-after-free in lbmIODone+0x1312/0x16c0
[  141.363008][    C0] Read of size 4 at addr ffff888029052c08 by task rcuc/0/20
[  141.363026][    C0] 
[  141.363039][    C0] CPU: 0 UID: 0 PID: 20 Comm: rcuc/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  141.363063][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  141.363076][    C0] Call Trace:
[  141.363084][    C0]  <TASK>
[  141.363093][    C0]  dump_stack_lvl+0xe8/0x150
[  141.363130][    C0]  print_address_description+0x55/0x1e0
[  141.363163][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.363189][    C0]  print_report+0x58/0x70
[  141.363218][    C0]  kasan_report+0x117/0x150
[  141.363249][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.363279][    C0]  lbmIODone+0x1312/0x16c0
[  141.363305][    C0]  ? blkg_put+0x22/0x240
[  141.363335][    C0]  ? blkg_put+0x22/0x240
[  141.363365][    C0]  ? blkg_put+0x18d/0x240
[  141.363395][    C0]  ? bio_endio+0x989/0x9d0
[  141.363419][    C0]  blk_update_request+0x57e/0xe60
[  141.363448][    C0]  blk_mq_end_request+0x3e/0x70
[  141.363472][    C0]  blk_done_softirq+0x10a/0x160
[  141.363503][    C0]  handle_softirqs+0x1de/0x6d0
[  141.363539][    C0]  __local_bh_enable_ip+0x170/0x2b0
[  141.363569][    C0]  ? rcu_cpu_kthread+0x205/0x1470
[  141.363591][    C0]  rcu_cpu_kthread+0x9e8/0x1470
[  141.363617][    C0]  ? rcu_cpu_kthread+0x205/0x1470
[  141.363644][    C0]  ? __pfx_rcu_cpu_kthread+0x10/0x10
[  141.363669][    C0]  ? schedule+0x90/0x360
[  141.363699][    C0]  ? smpboot_thread_fn+0x4d/0xa50
[  141.363730][    C0]  smpboot_thread_fn+0x541/0xa50
[  141.363762][    C0]  ? smpboot_thread_fn+0x4d/0xa50
[  141.363792][    C0]  kthread+0x388/0x470
[  141.363814][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  141.363846][    C0]  ? __pfx_kthread+0x10/0x10
[  141.363871][    C0]  ret_from_fork+0x514/0xb70
[  141.363905][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  141.363937][    C0]  ? __switch_to+0xc79/0x1410
[  141.363966][    C0]  ? __pfx_kthread+0x10/0x10
[  141.363989][    C0]  ret_from_fork_asm+0x1a/0x30
[  141.364019][    C0]  </TASK>
[  141.364028][    C0] 
[  141.364033][    C0] Allocated by task 6108:
[  141.364043][    C0]  kasan_save_track+0x3e/0x80
[  141.364069][    C0]  __kasan_kmalloc+0x93/0xb0
[  141.364094][    C0]  __kmalloc_cache_noprof+0x3a6/0x690
[  141.364121][    C0]  lmLogInit+0x3e5/0x1a00
[  141.364144][    C0]  lmLogOpen+0x4e1/0xfa0
[  141.364166][    C0]  jfs_mount_rw+0xee/0x670
[  141.364187][    C0]  jfs_fill_super+0x754/0xd80
[  141.364215][    C0]  get_tree_bdev_flags+0x431/0x4f0
[  141.364242][    C0]  vfs_get_tree+0x92/0x2a0
[  141.364268][    C0]  do_new_mount+0x341/0xd30
[  141.364287][    C0]  __se_sys_mount+0x31d/0x420
[  141.364306][    C0]  do_syscall_64+0x15f/0xf80
[  141.364334][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.364352][    C0] 
[  141.364356][    C0] Freed by task 5920:
[  141.364365][    C0]  kasan_save_track+0x3e/0x80
[  141.364386][    C0]  kasan_save_free_info+0x46/0x50
[  141.364406][    C0]  __kasan_slab_free+0x5c/0x80
[  141.364435][    C0]  kfree+0x1c5/0x6c0
[  141.364460][    C0]  lmLogShutdown+0x456/0x850
[  141.364493][    C0]  lmLogClose+0x28a/0x520
[  141.364515][    C0]  jfs_umount+0x2fb/0x3d0
[  141.364537][    C0]  jfs_put_super+0x8c/0x190
[  141.364564][    C0]  generic_shutdown_super+0x13d/0x2d0
[  141.364585][    C0]  kill_block_super+0x44/0x90
[  141.364610][    C0]  deactivate_locked_super+0xbc/0x130
[  141.364632][    C0]  cleanup_mnt+0x437/0x4d0
[  141.364655][    C0]  task_work_run+0x1d9/0x270
[  141.364676][    C0]  exit_to_user_mode_loop+0xed/0x480
[  141.364695][    C0]  do_syscall_64+0x33e/0xf80
[  141.364721][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.364739][    C0] 
[  141.364744][    C0] The buggy address belongs to the object at ffff888029052c00
[  141.364744][    C0]  which belongs to the cache kmalloc-256 of size 256
[  141.364761][    C0] The buggy address is located 8 bytes inside of
[  141.364761][    C0]  freed 256-byte region [ffff888029052c00, ffff888029052d00)
[  141.364782][    C0] 
[  141.364787][    C0] The buggy address belongs to the physical page:
[  141.364798][    C0] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29052
[  141.364817][    C0] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  141.364833][    C0] flags: 0x80000000000040(head|node=0|zone=1)
[  141.364849][    C0] page_type: f5(slab)
[  141.364869][    C0] raw: 0080000000000040 ffff88801a01db40 dead000000000100 dead000000000122
[  141.364886][    C0] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  141.364905][    C0] head: 0080000000000040 ffff88801a01db40 dead000000000100 dead000000000122
[  141.364921][    C0] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[  141.364938][    C0] head: 0080000000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[  141.364955][    C0] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000002
[  141.364965][    C0] page dumped because: kasan: bad access detected
[  141.364974][    C0] page_owner tracks the page as allocated
[  141.364982][    C0] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 175, tgid 175 (kworker/u8:7), ts 9976145796, free_ts 0
[  141.365019][    C0]  post_alloc_hook+0x231/0x280
[  141.365045][    C0]  get_page_from_freelist+0x27c8/0x2840
[  141.365077][    C0]  __alloc_frozen_pages_noprof+0x18d/0x380
[  141.365107][    C0]  allocate_slab+0x77/0x660
[  141.365127][    C0]  refill_objects+0x33c/0x3d0
[  141.365145][    C0]  __pcs_replace_empty_main+0x373/0x720
[  141.365165][    C0]  __kmalloc_cache_node_noprof+0x4f2/0x6c0
[  141.365192][    C0]  blk_alloc_flush_queue+0x7f/0x240
[  141.365214][    C0]  blk_mq_alloc_and_init_hctx+0x7bd/0xc70
[  141.365243][    C0]  __blk_mq_realloc_hw_ctxs+0x2bd/0x670
[  141.365271][    C0]  blk_mq_init_allocated_queue+0x36a/0x1420
[  141.365298][    C0]  blk_mq_alloc_queue+0x1ba/0x2e0
[  141.365323][    C0]  scsi_alloc_sdev+0x7c8/0xc90
[  141.365346][    C0]  scsi_probe_and_add_lun+0x200/0x4830
[  141.365368][    C0]  __scsi_scan_target+0x1f0/0xe10
[  141.365391][    C0]  scsi_scan_host_selected+0x375/0x690
[  141.365438][    C0] page_owner free stack trace missing
[  141.365446][    C0] 
[  141.365452][    C0] Memory state around the buggy address:
[  141.365463][    C0]  ffff888029052b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  141.365485][    C0]  ffff888029052b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  141.365499][    C0] >ffff888029052c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  141.365509][    C0]                       ^
[  141.365521][    C0]  ffff888029052c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  141.365534][    C0]  ffff888029052d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  141.365545][    C0] ==================================================================
[  141.365596][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  141.365612][    C0] CPU: 0 UID: 0 PID: 20 Comm: rcuc/0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  141.365636][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  141.365649][    C0] Call Trace:
[  141.365657][    C0]  <TASK>
[  141.365666][    C0]  vpanic+0x56c/0xa60
[  141.365688][    C0]  ? __pfx_vpanic+0x10/0x10
[  141.365709][    C0]  ? __pfx___schedule+0x10/0x10
[  141.365737][    C0]  panic+0xc5/0xd0
[  141.365756][    C0]  ? __pfx_panic+0x10/0x10
[  141.365775][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  141.365806][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.365831][    C0]  check_panic_on_warn+0x89/0xb0
[  141.365855][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.365879][    C0]  end_report+0x73/0x170
[  141.365908][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.365933][    C0]  kasan_report+0x128/0x150
[  141.365963][    C0]  ? lbmIODone+0x1312/0x16c0
[  141.365991][    C0]  lbmIODone+0x1312/0x16c0
[  141.366018][    C0]  ? blkg_put+0x22/0x240
[  141.366047][    C0]  ? blkg_put+0x22/0x240
[  141.366075][    C0]  ? blkg_put+0x18d/0x240
[  141.366106][    C0]  ? bio_endio+0x989/0x9d0
[  141.366130][    C0]  blk_update_request+0x57e/0xe60
[  141.366157][    C0]  blk_mq_end_request+0x3e/0x70
[  141.366180][    C0]  blk_done_softirq+0x10a/0x160
[  141.366201][    C0]  handle_softirqs+0x1de/0x6d0
[  141.366234][    C0]  __local_bh_enable_ip+0x170/0x2b0
[  141.366264][    C0]  ? rcu_cpu_kthread+0x205/0x1470
[  141.366287][    C0]  rcu_cpu_kthread+0x9e8/0x1470
[  141.366314][    C0]  ? rcu_cpu_kthread+0x205/0x1470
[  141.366340][    C0]  ? __pfx_rcu_cpu_kthread+0x10/0x10
[  141.366362][    C0]  ? schedule+0x90/0x360
[  141.366390][    C0]  ? smpboot_thread_fn+0x4d/0xa50
[  141.366421][    C0]  smpboot_thread_fn+0x541/0xa50
[  141.366454][    C0]  ? smpboot_thread_fn+0x4d/0xa50
[  141.366498][    C0]  kthread+0x388/0x470
[  141.366520][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  141.366552][    C0]  ? __pfx_kthread+0x10/0x10
[  141.366576][    C0]  ret_from_fork+0x514/0xb70
[  141.366610][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  141.366641][    C0]  ? __switch_to+0xc79/0x1410
[  141.366669][    C0]  ? __pfx_kthread+0x10/0x10
[  141.366691][    C0]  ret_from_fork_asm+0x1a/0x30
[  141.366721][    C0]  </TASK>
[  141.367337][    C0] Kernel Offset: disabled