Warning: Permanently added '10.128.0.136' (ECDSA) to the list of known hosts.
[ 60.945133][ T5068] chnl_net:caif_netlink_parms(): no params data found
[ 60.996167][ T5068] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.004400][ T5068] bridge0: port 1(bridge_slave_0) entered disabled state
[ 61.011905][ T5068] bridge_slave_0: entered allmulticast mode
[ 61.018650][ T5068] bridge_slave_0: entered promiscuous mode
[ 61.027355][ T5068] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.034604][ T5068] bridge0: port 2(bridge_slave_1) entered disabled state
[ 61.042443][ T5068] bridge_slave_1: entered allmulticast mode
[ 61.049199][ T5068] bridge_slave_1: entered promiscuous mode
[ 61.072986][ T5068] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 61.084237][ T5068] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 61.109313][ T5068] team0: Port device team_slave_0 added
[ 61.116810][ T5068] team0: Port device team_slave_1 added
[ 61.138005][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 61.145088][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.171092][ T5068] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 61.183782][ T5068] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 61.192124][ T5068] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 61.219064][ T5068] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 61.251772][ T5068] hsr_slave_0: entered promiscuous mode
[ 61.257960][ T5068] hsr_slave_1: entered promiscuous mode
[ 61.354447][ T5068] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 61.365958][ T5068] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 61.376141][ T5068] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 61.385467][ T5068] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 61.410520][ T5068] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.417797][ T5068] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.425902][ T5068] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.433162][ T5068] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.486721][ T5068] 8021q: adding VLAN 0 to HW filter on device bond0
[ 61.501076][ T4732] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 61.513343][ T4732] bridge0: port 1(bridge_slave_0) entered disabled state
[ 61.522914][ T4732] bridge0: port 2(bridge_slave_1) entered disabled state
[ 61.532046][ T4732] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 61.545612][ T5068] 8021q: adding VLAN 0 to HW filter on device team0
[ 61.558133][ T4732] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 61.567238][ T4732] bridge0: port 1(bridge_slave_0) entered blocking state
[ 61.574411][ T4732] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 61.589911][ T4732] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 61.598684][ T4732] bridge0: port 2(bridge_slave_1) entered blocking state
[ 61.605887][ T4732] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 61.623410][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 61.642327][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 61.650805][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 61.660444][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 61.672839][ T5068] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 61.685366][ T5068] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 61.693926][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 61.712441][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 61.720332][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 61.733759][ T5068] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 61.754651][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 61.774771][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 61.783140][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 61.791057][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 61.803220][ T5068] veth0_vlan: entered promiscuous mode
[ 61.815796][ T5068] veth1_vlan: entered promiscuous mode
[ 61.836895][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 61.846399][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 61.854684][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 61.866093][ T5068] veth0_macvtap: entered promiscuous mode
[ 61.875244][ T5068] veth1_macvtap: entered promiscuous mode
[ 61.892107][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 61.901217][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 61.913672][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 61.925778][ T5068] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 61.934815][ T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 61.946250][ T5068] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
executing program
[ 61.955388][ T5068] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 61.964173][ T5068] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 61.972991][ T5068] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 62.012055][ T5068] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5068 'syz-executor189'
[ 62.069721][ T5068] loop0: detected capacity change from 0 to 8192
[ 62.080696][ T5068] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 62.094282][ T5068] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 62.104208][ T5068] REISERFS (device loop0): using ordered data mode
[ 62.110971][ T5068] reiserfs: using flush barriers
[ 62.117182][ T5068] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 62.134840][ T5068] REISERFS (device loop0): checking transaction log (loop0)
[ 62.184451][ T5068] REISERFS (device loop0): Using r5 hash to sort names
[ 62.193670][ T5068] ==================================================================
[ 62.201780][ T5068] BUG: KASAN: out-of-bounds in reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.209729][ T5068] Read of size 8 at addr ffff888073bf2000 by task syz-executor189/5068
[ 62.218005][ T5068]
[ 62.220505][ T5068] CPU: 0 PID: 5068 Comm: syz-executor189 Not tainted 6.3.0-rc2-syzkaller-00387-g534293368afa #0
[ 62.230913][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 62.241096][ T5068] Call Trace:
[ 62.244409][ T5068]
[ 62.247404][ T5068] dump_stack_lvl+0x1e7/0x2d0
[ 62.252141][ T5068] ? nf_tcp_handle_invalid+0x650/0x650
[ 62.257639][ T5068] ? panic+0x770/0x770
[ 62.261739][ T5068] ? _printk+0xd5/0x120
[ 62.265899][ T5068] print_report+0x163/0x540
[ 62.270408][ T5068] ? __virt_addr_valid+0x22f/0x2e0
[ 62.275522][ T5068] ? __phys_addr+0xba/0x170
[ 62.280041][ T5068] ? reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.285761][ T5068] kasan_report+0x176/0x1b0
[ 62.290288][ T5068] ? reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.295962][ T5068] kasan_check_range+0x283/0x290
[ 62.300939][ T5068] reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.306434][ T5068] ? __lock_acquire+0x125b/0x1f80
[ 62.311457][ T5068] ? reiserfs_dir_fsync+0x100/0x100
[ 62.316666][ T5068] ? read_lock_is_recursive+0x20/0x20
[ 62.322033][ T5068] ? __might_sleep+0xc0/0xc0
[ 62.326631][ T5068] ? lockdep_hardirqs_on+0x98/0x140
[ 62.331874][ T5068] ? __down_read_common+0x184/0x2c0
[ 62.337081][ T5068] ? iterate_dir+0x10e/0x570
[ 62.341677][ T5068] iterate_dir+0x228/0x570
[ 62.346131][ T5068] ? reiserfs_sync_file+0x270/0x270
[ 62.351355][ T5068] __se_sys_getdents64+0x20d/0x4f0
[ 62.356472][ T5068] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 62.362452][ T5068] ? __x64_sys_getdents64+0x80/0x80
[ 62.367665][ T5068] ? filldir+0x720/0x720
[ 62.371927][ T5068] ? syscall_enter_from_user_mode+0x32/0x260
[ 62.377914][ T5068] ? lockdep_hardirqs_on+0x98/0x140
[ 62.383122][ T5068] ? syscall_enter_from_user_mode+0x32/0x260
[ 62.389119][ T5068] do_syscall_64+0x41/0xc0
[ 62.393555][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 62.399629][ T5068] RIP: 0033:0x7fc3e23c8c39
[ 62.404046][ T5068] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 31 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 62.423841][ T5068] RSP: 002b:00007ffec2d689a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 62.432692][ T5068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc3e23c8c39
[ 62.440680][ T5068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 62.448748][ T5068] RBP: 0000000000000003 R08: 00007ffec2d689f0 R09: 00007ffec2d689f0
[ 62.456722][ T5068] R10: 0000000000001131 R11: 0000000000000246 R12: 00007ffec2d68a10
[ 62.464781][ T5068] R13: 00007ffec2d689e8 R14: 00007ffec2d68a30 R15: 0000000000000003
[ 62.472797][ T5068]
[ 62.475831][ T5068]
[ 62.478164][ T5068] The buggy address belongs to the physical page:
[ 62.484571][ T5068] page:ffffea0001cefc80 refcount:1 mapcount:1 mapping:0000000000000000 index:0x560db210a pfn:0x73bf2
[ 62.495527][ T5068] memcg:ffff888016786000
[ 62.499854][ T5068] anon flags: 0xfff000000a0014(uptodate|lru|mappedtodisk|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[ 62.510632][ T5068] raw: 00fff000000a0014 ffffea0001f135c8 ffffea0001cefcc8 ffff888023a13771
[ 62.519343][ T5068] raw: 0000000560db210a 0000000000000000 0000000100000000 ffff888016786000
[ 62.527934][ T5068] page dumped because: kasan: bad access detected
[ 62.534542][ T5068] page_owner tracks the page as allocated
[ 62.540292][ T5068] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 4433, tgid 4433 (udevd), ts 62194464908, free_ts 18357036743
[ 62.557489][ T5068] get_page_from_freelist+0x3246/0x33c0
[ 62.563311][ T5068] __alloc_pages+0x255/0x670
[ 62.567916][ T5068] __folio_alloc+0x13/0x30
[ 62.572350][ T5068] vma_alloc_folio+0x48a/0x9a0
[ 62.577126][ T5068] do_wp_page+0xb3b/0x3620
[ 62.581723][ T5068] handle_mm_fault+0x23a0/0x51c0
[ 62.586664][ T5068] exc_page_fault+0x5b1/0x7c0
[ 62.591344][ T5068] asm_exc_page_fault+0x26/0x30
[ 62.596215][ T5068] page last free stack trace:
[ 62.600976][ T5068] free_unref_page_prepare+0xe2f/0xe70
[ 62.606445][ T5068] free_unref_page+0x37/0x3f0
[ 62.611138][ T5068] free_contig_range+0x9e/0x150
[ 62.616015][ T5068] destroy_args+0x102/0x9a0
[ 62.620706][ T5068] debug_vm_pgtable+0x405/0x490
[ 62.625647][ T5068] do_one_initcall+0x23d/0x7d0
[ 62.630762][ T5068] do_initcall_level+0x157/0x210
[ 62.635788][ T5068] do_initcalls+0x3f/0x80
[ 62.640139][ T5068] kernel_init_freeable+0x477/0x630
[ 62.645336][ T5068] kernel_init+0x1d/0x2a0
[ 62.649666][ T5068] ret_from_fork+0x1f/0x30
[ 62.654100][ T5068]
[ 62.656421][ T5068] Memory state around the buggy address:
[ 62.662044][ T5068] ffff888073bf1f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 62.670100][ T5068] ffff888073bf1f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 62.678153][ T5068] >ffff888073bf2000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 62.686727][ T5068] ^
[ 62.691062][ T5068] ffff888073bf2080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 62.699118][ T5068] ffff888073bf2100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 62.707169][ T5068] ==================================================================
[ 62.719152][ T5068] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 62.726406][ T5068] CPU: 1 PID: 5068 Comm: syz-executor189 Not tainted 6.3.0-rc2-syzkaller-00387-g534293368afa #0
[ 62.736944][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 62.747037][ T5068] Call Trace:
[ 62.750318][ T5068]
[ 62.753249][ T5068] dump_stack_lvl+0x1e7/0x2d0
[ 62.757936][ T5068] ? nf_tcp_handle_invalid+0x650/0x650
[ 62.763408][ T5068] ? panic+0x770/0x770
[ 62.767511][ T5068] ? preempt_schedule_common+0x83/0xc0
[ 62.772974][ T5068] ? vscnprintf+0x5d/0x80
[ 62.777411][ T5068] panic+0x31c/0x770
[ 62.781310][ T5068] ? check_panic_on_warn+0x21/0xa0
[ 62.786425][ T5068] ? memcpy_page_flushcache+0x100/0x100
[ 62.791972][ T5068] ? _raw_spin_unlock_irqrestore+0x12c/0x140
[ 62.797961][ T5068] ? _raw_spin_unlock+0x40/0x40
[ 62.802819][ T5068] check_panic_on_warn+0x82/0xa0
[ 62.807847][ T5068] ? reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.813504][ T5068] end_report+0x63/0x110
[ 62.817767][ T5068] kasan_report+0x183/0x1b0
[ 62.822300][ T5068] ? reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.827973][ T5068] kasan_check_range+0x283/0x290
[ 62.832923][ T5068] reiserfs_readdir_inode+0x5dc/0x14c0
[ 62.838401][ T5068] ? __lock_acquire+0x125b/0x1f80
[ 62.843449][ T5068] ? reiserfs_dir_fsync+0x100/0x100
[ 62.848672][ T5068] ? read_lock_is_recursive+0x20/0x20
[ 62.854043][ T5068] ? __might_sleep+0xc0/0xc0
[ 62.858732][ T5068] ? lockdep_hardirqs_on+0x98/0x140
[ 62.863943][ T5068] ? __down_read_common+0x184/0x2c0
[ 62.869175][ T5068] ? iterate_dir+0x10e/0x570
[ 62.873776][ T5068] iterate_dir+0x228/0x570
[ 62.878204][ T5068] ? reiserfs_sync_file+0x270/0x270
[ 62.883413][ T5068] __se_sys_getdents64+0x20d/0x4f0
[ 62.888552][ T5068] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[ 62.894532][ T5068] ? __x64_sys_getdents64+0x80/0x80
[ 62.899745][ T5068] ? filldir+0x720/0x720
[ 62.904024][ T5068] ? syscall_enter_from_user_mode+0x32/0x260
[ 62.910023][ T5068] ? lockdep_hardirqs_on+0x98/0x140
[ 62.915240][ T5068] ? syscall_enter_from_user_mode+0x32/0x260
[ 62.921238][ T5068] do_syscall_64+0x41/0xc0
[ 62.925669][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 62.931672][ T5068] RIP: 0033:0x7fc3e23c8c39
[ 62.936099][ T5068] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 31 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 62.956006][ T5068] RSP: 002b:00007ffec2d689a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[ 62.964528][ T5068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fc3e23c8c39
[ 62.972684][ T5068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 62.980669][ T5068] RBP: 0000000000000003 R08: 00007ffec2d689f0 R09: 00007ffec2d689f0
[ 62.988640][ T5068] R10: 0000000000001131 R11: 0000000000000246 R12: 00007ffec2d68a10
[ 62.996636][ T5068] R13: 00007ffec2d689e8 R14: 00007ffec2d68a30 R15: 0000000000000003
[ 63.006618][ T5068]
[ 63.009872][ T5068] Kernel Offset: disabled
[ 63.014205][ T5068] Rebooting in 86400 seconds..