Warning: Permanently added '10.128.0.99' (ED25519) to the list of known hosts.
2025/11/10 11:50:34 parsed 1 programs
[   69.733641][ T5791] cgroup: Unknown subsys name 'net'
[   69.866089][ T5791] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   71.360993][ T5791] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.873968][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[   71.886368][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[   74.761325][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   74.864749][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.873611][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.881058][ T5848] bridge_slave_0: entered allmulticast mode
[   74.887856][ T5848] bridge_slave_0: entered promiscuous mode
[   74.897742][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.905058][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.912254][ T5848] bridge_slave_1: entered allmulticast mode
[   74.918908][ T5848] bridge_slave_1: entered promiscuous mode
[   74.943031][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.953998][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.980972][ T5848] team0: Port device team_slave_0 added
[   74.988408][ T5848] team0: Port device team_slave_1 added
[   75.023131][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.030991][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.056907][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.069951][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.076921][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.102877][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.148237][ T5848] hsr_slave_0: entered promiscuous mode
[   75.155511][ T5848] hsr_slave_1: entered promiscuous mode
[   75.288096][ T5848] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   75.301612][ T5848] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   75.311152][ T5848] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   75.331989][ T5848] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   75.361214][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.368593][ T5848] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.376579][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.384062][ T5848] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.458227][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.487859][ T1069] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.497086][ T1069] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.514646][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   75.538461][ T2948] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.545710][ T2948] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.558768][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.565983][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.784464][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.825120][ T5848] veth0_vlan: entered promiscuous mode
[   75.836122][ T5848] veth1_vlan: entered promiscuous mode
[   75.861672][ T5848] veth0_macvtap: entered promiscuous mode
[   75.871509][ T5848] veth1_macvtap: entered promiscuous mode
[   75.889247][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.904777][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.916841][ T5848] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.926603][ T5848] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.935493][ T5848] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.944232][ T5848] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.049182][ T5848] syz-executor (5848) used greatest stack depth: 20432 bytes left
[   76.075545][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   76.156627][  T240] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.164882][  T240] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.192226][  T240] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.200148][  T240] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.287343][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.296611][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.304870][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.313657][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.321750][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   76.329154][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/11/10 11:50:44 executed programs: 0
[   77.703449][ T5875] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.711536][ T5875] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.720587][ T5875] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.729897][ T5875] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.738192][ T5875] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.746644][ T5875] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.883355][ T5897] chnl_net:caif_netlink_parms(): no params data found
[   77.938117][ T5897] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.947771][ T5897] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.955639][ T5897] bridge_slave_0: entered allmulticast mode
[   77.963218][ T5897] bridge_slave_0: entered promiscuous mode
[   77.971551][ T5897] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.978738][ T5897] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.986302][ T5897] bridge_slave_1: entered allmulticast mode
[   77.993181][ T5897] bridge_slave_1: entered promiscuous mode
[   78.019153][ T5897] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.032796][ T5897] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.061415][ T5897] team0: Port device team_slave_0 added
[   78.069835][ T5897] team0: Port device team_slave_1 added
[   78.093634][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.100998][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.128276][ T5897] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.141583][ T5897] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.149101][ T5897] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.175054][ T5897] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.214686][ T5897] hsr_slave_0: entered promiscuous mode
[   78.221256][ T5897] hsr_slave_1: entered promiscuous mode
[   78.227537][ T5897] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   78.236667][ T5897] Cannot create hsr debugfs directory
[   78.502254][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.790496][ T5875] Bluetooth: hci0: command tx timeout
[   80.769740][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.845415][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.628720][   T12] hsr_slave_0: left promiscuous mode
[   81.639737][   T12] hsr_slave_1: left promiscuous mode
[   81.646108][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   81.656298][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.665315][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   81.676023][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.685488][   T12] bridge_slave_1: left allmulticast mode
[   81.693479][   T12] bridge_slave_1: left promiscuous mode
[   81.700262][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.716725][   T12] bridge_slave_0: left allmulticast mode
[   81.724202][   T12] bridge_slave_0: left promiscuous mode
[   81.732716][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.767654][   T12] veth1_macvtap: left promiscuous mode
[   81.773652][   T12] veth0_macvtap: left promiscuous mode
[   81.779235][   T12] veth1_vlan: left promiscuous mode
[   81.786229][   T12] veth0_vlan: left promiscuous mode
[   81.859386][ T5875] Bluetooth: hci0: command tx timeout
[   82.114188][    T9] cfg80211: failed to load regulatory.db
[   82.176362][   T12] team0 (unregistering): Port device team_slave_1 removed
[   82.207715][   T12] team0 (unregistering): Port device team_slave_0 removed
[   82.258673][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.302979][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.708265][   T12] bond0 (unregistering): Released all slaves
[   82.801825][ T5897] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   82.817419][ T5897] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   82.831190][ T5897] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   82.851384][ T5897] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   82.944040][ T5897] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.971743][ T5897] 8021q: adding VLAN 0 to HW filter on device team0
[   82.984110][ T2948] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.991305][ T2948] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.005207][ T1069] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.012396][ T1069] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.236767][ T5897] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.284728][ T5897] veth0_vlan: entered promiscuous mode
[   83.295660][ T5897] veth1_vlan: entered promiscuous mode
[   83.325126][ T5897] veth0_macvtap: entered promiscuous mode
[   83.334608][ T5897] veth1_macvtap: entered promiscuous mode
[   83.351196][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.366490][ T5897] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.377853][ T5897] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.387978][ T5897] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.397059][ T5897] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.406827][ T5897] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.498326][ T1069] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.507799][ T1069] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.548049][ T1069] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.556360][ T1069] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.607230][ T5945] syz.0.17[5945]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   83.675266][ T5945] loop0: detected capacity change from 0 to 8192
[   83.687873][ T5945] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   83.703646][ T5945] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   83.713613][ T5945] REISERFS (device loop0): using ordered data mode
[   83.725418][ T5945] reiserfs: using flush barriers
[   83.743320][ T5945] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   83.761345][ T5945] REISERFS (device loop0): checking transaction log (loop0)
[   83.837998][ T5945] REISERFS (device loop0): Using tea hash to sort names
[   83.846379][ T5945] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   83.867249][ T5945] ==================================================================
[   83.875366][ T5945] BUG: KASAN: use-after-free in leaf_paste_entries+0xe78/0x1110
[   83.883045][ T5945] Read of size 2 at addr ffff88805da9bf08 by task syz.0.17/5945
[   83.890670][ T5945] 
[   83.892999][ T5945] CPU: 0 PID: 5945 Comm: syz.0.17 Not tainted syzkaller #0
[   83.900183][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   83.910234][ T5945] Call Trace:
[   83.913511][ T5945]  <TASK>
[   83.916440][ T5945]  dump_stack_lvl+0x16c/0x230
[   83.921117][ T5945]  ? __lock_acquire+0x7c80/0x7c80
[   83.926131][ T5945]  ? show_regs_print_info+0x20/0x20
[   83.931324][ T5945]  ? load_image+0x3b0/0x3b0
[   83.935823][ T5945]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[   83.941222][ T5945]  ? __virt_addr_valid+0x18c/0x540
[   83.946338][ T5945]  ? __virt_addr_valid+0x469/0x540
[   83.951445][ T5945]  print_report+0xac/0x220
[   83.955856][ T5945]  ? leaf_paste_entries+0xe78/0x1110
[   83.961133][ T5945]  kasan_report+0x117/0x150
[   83.965689][ T5945]  ? leaf_paste_entries+0xe78/0x1110
[   83.971002][ T5945]  leaf_paste_entries+0xe78/0x1110
[   83.976122][ T5945]  ? journal_mark_dirty+0x221/0xe00
[   83.981322][ T5945]  leaf_copy_dir_entries+0x699/0x990
[   83.986604][ T5945]  ? leaf_item_bottle+0x1280/0x1280
[   83.991798][ T5945]  ? mark_lock+0x94/0x320
[   83.996118][ T5945]  ? __lock_acquire+0x1334/0x7c80
[   84.001137][ T5945]  leaf_copy_boundary_item+0xb90/0x2180
[   84.006730][ T5945]  leaf_move_items+0x8b5/0xe90
[   84.011489][ T5945]  ? reiserfs_convert_objectid_map_v1+0x500/0x500
[   84.017899][ T5945]  ? leaf_delete_items_entirely+0x2cb/0x8b0
[   84.023789][ T5945]  leaf_shift_left+0xbd/0x450
[   84.028460][ T5945]  balance_leaf+0x1dc1/0x10da0
[   84.033252][ T5945]  ? verify_lock_unused+0x140/0x140
[   84.038454][ T5945]  ? lock_chain_count+0x20/0x20
[   84.043312][ T5945]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[   84.049217][ T5945]  ? lockdep_hardirqs_on+0x98/0x150
[   84.054537][ T5945]  ? do_balance+0x940/0x940
[   84.059043][ T5945]  ? __mutex_trylock_common+0x153/0x250
[   84.064593][ T5945]  ? trace_raw_output_contention_end+0xd0/0xd0
[   84.070743][ T5945]  ? rcu_is_watching+0x15/0xb0
[   84.075523][ T5945]  ? trace_contention_end+0x39/0xe0
[   84.080729][ T5945]  ? __mutex_lock+0x304/0xcc0
[   84.085399][ T5945]  ? __might_sleep+0xe0/0xe0
[   84.089999][ T5945]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[   84.095636][ T5945]  ? reiserfs_write_lock_nested+0x60/0xd0
[   84.101348][ T5945]  ? mutex_lock_nested+0x20/0x20
[   84.106304][ T5945]  ? get_empty_nodes+0x435/0x8c0
[   84.111248][ T5945]  ? __wake_up+0x190/0x190
[   84.115653][ T5945]  ? write_boundary_block+0xb0/0xb0
[   84.120851][ T5945]  ? get_neighbors+0x1030/0x1030
[   84.125776][ T5945]  ? indirect_create_vi+0xd/0x50
[   84.130721][ T5945]  ? indirect_check_item+0x10/0x10
[   84.135832][ T5945]  ? create_virtual_node+0x1fc/0x1c70
[   84.141207][ T5945]  ? fix_nodes+0x7b4c/0x82e0
[   84.145801][ T5945]  do_balance+0x2fe/0x940
[   84.150123][ T5945]  ? get_right_neighbor_position+0x210/0x210
[   84.156094][ T5945]  ? reiserfs_delete_item+0xe90/0xe90
[   84.161462][ T5945]  ? calc_deleted_bytes_number+0x465/0x800
[   84.167265][ T5945]  reiserfs_cut_from_item+0x13b2/0x1f10
[   84.172848][ T5945]  ? __might_sleep+0xe0/0xe0
[   84.177464][ T5945]  ? reiserfs_do_truncate+0x1340/0x1340
[   84.183013][ T5945]  ? search_by_key+0x4435/0x4630
[   84.187993][ T5945]  ? make_cpu_key+0x2f/0x230
[   84.192587][ T5945]  reiserfs_do_truncate+0xa3d/0x1340
[   84.197877][ T5945]  ? reiserfs_delete_object+0x1a0/0x1a0
[   84.203444][ T5945]  ? journal_begin+0x1f5/0x360
[   84.208217][ T5945]  ? reiserfs_update_inode_transaction+0x20/0x130
[   84.214626][ T5945]  reiserfs_truncate_file+0x37a/0x7c0
[   84.219993][ T5945]  ? reiserfs_new_symlink+0x560/0x560
[   84.225354][ T5945]  ? unmap_mapping_range+0xdf/0x170
[   84.230549][ T5945]  ? setattr_prepare+0x1e6/0xac0
[   84.235482][ T5945]  reiserfs_setattr+0xc0c/0x11a0
[   84.240411][ T5945]  ? reiserfs_commit_write+0x590/0x590
[   84.245862][ T5945]  ? ktime_get_coarse_real_ts64+0x110/0x120
[   84.251752][ T5945]  ? current_time+0x1b7/0x270
[   84.256460][ T5945]  ? inode_set_ctime_current+0x2d0/0x2d0
[   84.262097][ T5945]  ? evm_inode_setattr+0x94/0x6a0
[   84.267122][ T5945]  ? bpf_lsm_inode_setattr+0x9/0x10
[   84.272317][ T5945]  ? try_break_deleg+0x79/0x120
[   84.277162][ T5945]  ? reiserfs_commit_write+0x590/0x590
[   84.282615][ T5945]  notify_change+0xb0d/0xe10
[   84.287204][ T5945]  do_truncate+0x19b/0x220
[   84.291614][ T5945]  ? put_page_bootmem+0x2c0/0x2c0
[   84.296639][ T5945]  ? apparmor_file_truncate+0x23f/0x2d0
[   84.302208][ T5945]  ? ima_bprm_check+0x1f0/0x1f0
[   84.307061][ T5945]  path_openat+0x298c/0x3190
[   84.311668][ T5945]  ? do_filp_open+0x3d0/0x3d0
[   84.316349][ T5945]  do_filp_open+0x1c5/0x3d0
[   84.320853][ T5945]  ? vfs_tmpfile+0x490/0x490
[   84.325447][ T5945]  ? _raw_spin_unlock+0x28/0x40
[   84.330289][ T5945]  ? alloc_fd+0x58f/0x630
[   84.334623][ T5945]  do_sys_openat2+0x12c/0x1c0
[   84.339305][ T5945]  ? do_sys_open+0xe0/0xe0
[   84.343725][ T5945]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   84.349705][ T5945]  ? lock_chain_count+0x20/0x20
[   84.354552][ T5945]  __x64_sys_openat+0x139/0x160
[   84.359402][ T5945]  do_syscall_64+0x55/0xb0
[   84.363816][ T5945]  ? clear_bhb_loop+0x40/0x90
[   84.368487][ T5945]  ? clear_bhb_loop+0x40/0x90
[   84.373155][ T5945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   84.379041][ T5945] RIP: 0033:0x7f4f8cb8f6c9
[   84.383464][ T5945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.403068][ T5945] RSP: 002b:00007ffe953a3f38 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   84.411474][ T5945] RAX: ffffffffffffffda RBX: 00007f4f8cde5fa0 RCX: 00007f4f8cb8f6c9
[   84.419439][ T5945] RDX: 000000000000275a RSI: 0000200000000000 RDI: ffffffffffffff9c
[   84.427408][ T5945] RBP: 00007f4f8cc11f91 R08: 0000000000000000 R09: 0000000000000000
[   84.435372][ T5945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.443334][ T5945] R13: 00007f4f8cde5fa0 R14: 00007f4f8cde5fa0 R15: 0000000000000004
[   84.451309][ T5945]  </TASK>
[   84.454334][ T5945] 
[   84.456646][ T5945] The buggy address belongs to the physical page:
[   84.463057][ T5945] page:ffffea000176a6c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x5da9b
[   84.473200][ T5945] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.480309][ T5945] page_type: 0xffffffff()
[   84.484650][ T5945] raw: 00fff00000000000 dead000000000100 dead000000000122 0000000000000000
[   84.493223][ T5945] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   84.501795][ T5945] page dumped because: kasan: bad access detected
[   84.508206][ T5945] page_owner tracks the page as freed
[   84.513559][ T5945] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, tgid 1 (swapper/0), ts 16646416727, free_ts 17763854916
[   84.528478][ T5945]  post_alloc_hook+0x1cd/0x210
[   84.533247][ T5945]  split_map_pages+0x27b/0x4d0
[   84.538002][ T5945]  isolate_freepages_range+0x3e0/0x430
[   84.543448][ T5945]  alloc_contig_range+0x5b2/0x860
[   84.548457][ T5945]  alloc_contig_pages+0x47c/0x580
[   84.553465][ T5945]  debug_vm_pgtable_alloc_huge_page+0xbf/0x110
[   84.559609][ T5945]  init_args+0x724/0x9b0
[   84.563846][ T5945]  debug_vm_pgtable+0xc1/0x410
[   84.568600][ T5945]  do_one_initcall+0x1fd/0x750
[   84.573357][ T5945]  do_initcall_level+0x137/0x1f0
[   84.578287][ T5945]  do_initcalls+0x69/0xd0
[   84.582608][ T5945]  kernel_init_freeable+0x3d2/0x570
[   84.587796][ T5945]  kernel_init+0x1d/0x1c0
[   84.592116][ T5945]  ret_from_fork+0x48/0x80
[   84.596525][ T5945]  ret_from_fork_asm+0x11/0x20
[   84.601288][ T5945] page last free stack trace:
[   84.605944][ T5945]  free_unref_page_prepare+0x7ce/0x8e0
[   84.611429][ T5945]  free_unref_page+0x32/0x2e0
[   84.616098][ T5945]  free_contig_range+0xa1/0x160
[   84.620933][ T5945]  destroy_args+0x80/0x850
[   84.625335][ T5945]  debug_vm_pgtable+0x3cc/0x410
[   84.630170][ T5945]  do_one_initcall+0x1fd/0x750
[   84.634926][ T5945]  do_initcall_level+0x137/0x1f0
[   84.639854][ T5945]  do_initcalls+0x69/0xd0
[   84.644174][ T5945]  kernel_init_freeable+0x3d2/0x570
[   84.649364][ T5945]  kernel_init+0x1d/0x1c0
[   84.653684][ T5945]  ret_from_fork+0x48/0x80
[   84.658092][ T5945]  ret_from_fork_asm+0x11/0x20
[   84.662848][ T5945] 
[   84.665160][ T5945] Memory state around the buggy address:
[   84.670774][ T5945]  ffff88805da9be00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   84.678827][ T5945]  ffff88805da9be80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   84.686873][ T5945] >ffff88805da9bf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   84.694932][ T5945]                       ^
[   84.699248][ T5945]  ffff88805da9bf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   84.707307][ T5945]  ffff88805da9c000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   84.715352][ T5945] ==================================================================
[   84.736966][ T5945] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   84.741760][ T5875] Bluetooth: hci0: command tx timeout
[   84.749550][ T5945] CPU: 1 PID: 5945 Comm: syz.0.17 Not tainted syzkaller #0
[   84.756735][ T5945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   84.766778][ T5945] Call Trace:
[   84.770137][ T5945]  <TASK>
[   84.773056][ T5945]  dump_stack_lvl+0x16c/0x230
[   84.777736][ T5945]  ? show_regs_print_info+0x20/0x20
[   84.782926][ T5945]  ? load_image+0x3b0/0x3b0
[   84.787428][ T5945]  panic+0x2c0/0x710
[   84.791312][ T5945]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.797457][ T5945]  ? bpf_jit_dump+0xd0/0xd0
[   84.801954][ T5945]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[   84.807837][ T5945]  ? _raw_spin_unlock+0x40/0x40
[   84.812676][ T5945]  ? leaf_paste_entries+0xe78/0x1110
[   84.817953][ T5945]  check_panic_on_warn+0x84/0xa0
[   84.822889][ T5945]  ? leaf_paste_entries+0xe78/0x1110
[   84.828168][ T5945]  end_report+0x6f/0x140
[   84.832414][ T5945]  kasan_report+0x128/0x150
[   84.836906][ T5945]  ? leaf_paste_entries+0xe78/0x1110
[   84.842186][ T5945]  leaf_paste_entries+0xe78/0x1110
[   84.847288][ T5945]  ? journal_mark_dirty+0x221/0xe00
[   84.852484][ T5945]  leaf_copy_dir_entries+0x699/0x990
[   84.857768][ T5945]  ? leaf_item_bottle+0x1280/0x1280
[   84.862957][ T5945]  ? mark_lock+0x94/0x320
[   84.867281][ T5945]  ? __lock_acquire+0x1334/0x7c80
[   84.872296][ T5945]  leaf_copy_boundary_item+0xb90/0x2180
[   84.877880][ T5945]  leaf_move_items+0x8b5/0xe90
[   84.882640][ T5945]  ? reiserfs_convert_objectid_map_v1+0x500/0x500
[   84.889051][ T5945]  ? leaf_delete_items_entirely+0x2cb/0x8b0
[   84.894938][ T5945]  leaf_shift_left+0xbd/0x450
[   84.899608][ T5945]  balance_leaf+0x1dc1/0x10da0
[   84.904361][ T5945]  ? verify_lock_unused+0x140/0x140
[   84.909552][ T5945]  ? lock_chain_count+0x20/0x20
[   84.914390][ T5945]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[   84.920276][ T5945]  ? lockdep_hardirqs_on+0x98/0x150
[   84.925467][ T5945]  ? do_balance+0x940/0x940
[   84.929970][ T5945]  ? __mutex_trylock_common+0x153/0x250
[   84.935514][ T5945]  ? trace_raw_output_contention_end+0xd0/0xd0
[   84.941667][ T5945]  ? rcu_is_watching+0x15/0xb0
[   84.946426][ T5945]  ? trace_contention_end+0x39/0xe0
[   84.951614][ T5945]  ? __mutex_lock+0x304/0xcc0
[   84.956289][ T5945]  ? __might_sleep+0xe0/0xe0
[   84.960873][ T5945]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[   84.966502][ T5945]  ? reiserfs_write_lock_nested+0x60/0xd0
[   84.972216][ T5945]  ? mutex_lock_nested+0x20/0x20
[   84.977146][ T5945]  ? get_empty_nodes+0x435/0x8c0
[   84.982075][ T5945]  ? __wake_up+0x190/0x190
[   84.986484][ T5945]  ? write_boundary_block+0xb0/0xb0
[   84.991679][ T5945]  ? get_neighbors+0x1030/0x1030
[   84.996607][ T5945]  ? indirect_create_vi+0xd/0x50
[   85.001541][ T5945]  ? indirect_check_item+0x10/0x10
[   85.006641][ T5945]  ? create_virtual_node+0x1fc/0x1c70
[   85.012012][ T5945]  ? fix_nodes+0x7b4c/0x82e0
[   85.016608][ T5945]  do_balance+0x2fe/0x940
[   85.020931][ T5945]  ? get_right_neighbor_position+0x210/0x210
[   85.026901][ T5945]  ? reiserfs_delete_item+0xe90/0xe90
[   85.032270][ T5945]  ? calc_deleted_bytes_number+0x465/0x800
[   85.038070][ T5945]  reiserfs_cut_from_item+0x13b2/0x1f10
[   85.043614][ T5945]  ? __might_sleep+0xe0/0xe0
[   85.048202][ T5945]  ? reiserfs_do_truncate+0x1340/0x1340
[   85.053742][ T5945]  ? search_by_key+0x4435/0x4630
[   85.058699][ T5945]  ? make_cpu_key+0x2f/0x230
[   85.063280][ T5945]  reiserfs_do_truncate+0xa3d/0x1340
[   85.068571][ T5945]  ? reiserfs_delete_object+0x1a0/0x1a0
[   85.074114][ T5945]  ? journal_begin+0x1f5/0x360
[   85.078870][ T5945]  ? reiserfs_update_inode_transaction+0x20/0x130
[   85.085282][ T5945]  reiserfs_truncate_file+0x37a/0x7c0
[   85.090648][ T5945]  ? reiserfs_new_symlink+0x560/0x560
[   85.096006][ T5945]  ? unmap_mapping_range+0xdf/0x170
[   85.101202][ T5945]  ? setattr_prepare+0x1e6/0xac0
[   85.106135][ T5945]  reiserfs_setattr+0xc0c/0x11a0
[   85.111063][ T5945]  ? reiserfs_commit_write+0x590/0x590
[   85.116513][ T5945]  ? ktime_get_coarse_real_ts64+0x110/0x120
[   85.122400][ T5945]  ? current_time+0x1b7/0x270
[   85.127067][ T5945]  ? inode_set_ctime_current+0x2d0/0x2d0
[   85.132687][ T5945]  ? evm_inode_setattr+0x94/0x6a0
[   85.137707][ T5945]  ? bpf_lsm_inode_setattr+0x9/0x10
[   85.142895][ T5945]  ? try_break_deleg+0x79/0x120
[   85.147739][ T5945]  ? reiserfs_commit_write+0x590/0x590
[   85.153188][ T5945]  notify_change+0xb0d/0xe10
[   85.157776][ T5945]  do_truncate+0x19b/0x220
[   85.162187][ T5945]  ? put_page_bootmem+0x2c0/0x2c0
[   85.167200][ T5945]  ? apparmor_file_truncate+0x23f/0x2d0
[   85.172739][ T5945]  ? ima_bprm_check+0x1f0/0x1f0
[   85.177585][ T5945]  path_openat+0x298c/0x3190
[   85.182182][ T5945]  ? do_filp_open+0x3d0/0x3d0
[   85.186881][ T5945]  do_filp_open+0x1c5/0x3d0
[   85.191383][ T5945]  ? vfs_tmpfile+0x490/0x490
[   85.195980][ T5945]  ? _raw_spin_unlock+0x28/0x40
[   85.200824][ T5945]  ? alloc_fd+0x58f/0x630
[   85.205153][ T5945]  do_sys_openat2+0x12c/0x1c0
[   85.209824][ T5945]  ? do_sys_open+0xe0/0xe0
[   85.214231][ T5945]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   85.220203][ T5945]  ? lock_chain_count+0x20/0x20
[   85.225045][ T5945]  __x64_sys_openat+0x139/0x160
[   85.229890][ T5945]  do_syscall_64+0x55/0xb0
[   85.234299][ T5945]  ? clear_bhb_loop+0x40/0x90
[   85.238963][ T5945]  ? clear_bhb_loop+0x40/0x90
[   85.243631][ T5945]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   85.249515][ T5945] RIP: 0033:0x7f4f8cb8f6c9
[   85.253918][ T5945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.273519][ T5945] RSP: 002b:00007ffe953a3f38 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   85.281926][ T5945] RAX: ffffffffffffffda RBX: 00007f4f8cde5fa0 RCX: 00007f4f8cb8f6c9
[   85.289890][ T5945] RDX: 000000000000275a RSI: 0000200000000000 RDI: ffffffffffffff9c
[   85.297854][ T5945] RBP: 00007f4f8cc11f91 R08: 0000000000000000 R09: 0000000000000000
[   85.305817][ T5945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.313780][ T5945] R13: 00007f4f8cde5fa0 R14: 00007f4f8cde5fa0 R15: 0000000000000004
[   85.321750][ T5945]  </TASK>
[   85.325003][ T5945] Kernel Offset: disabled
[   85.329322][ T5945] Rebooting in 86400 seconds..