Warning: Permanently added '10.128.1.68' (ED25519) to the list of known hosts.
2025/08/04 11:42:48 ignoring optional flag "sandboxArg"="0"
2025/08/04 11:42:49 parsed 1 programs
[   57.138003][ T4189] cgroup: Unknown subsys name 'net'
[   57.279352][ T4189] cgroup: Unknown subsys name 'rlimit'
[   58.547664][ T4189] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   61.606710][  T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.623456][  T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.634532][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   61.647486][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.656831][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.666290][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.829508][  T154] ODEBUG: Out of memory. ODEBUG disabled
[   62.179756][ T4276] chnl_net:caif_netlink_parms(): no params data found
[   62.222917][ T4276] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.231112][ T4276] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.239542][ T4276] device bridge_slave_0 entered promiscuous mode
[   62.249060][ T4276] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.256634][ T4276] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.265027][ T4276] device bridge_slave_1 entered promiscuous mode
[   62.283874][ T4276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.295679][ T4276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.316620][ T4276] team0: Port device team_slave_0 added
[   62.325391][ T4276] team0: Port device team_slave_1 added
[   62.341703][ T4276] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.348933][ T4276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.377131][ T4276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.389899][ T4276] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.397459][ T4276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.423547][ T4276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.451050][ T4276] device hsr_slave_0 entered promiscuous mode
[   62.458321][ T4276] device hsr_slave_1 entered promiscuous mode
[   62.550229][ T4276] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   62.560577][ T4276] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   62.570244][ T4276] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   62.580503][ T4276] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   62.621700][ T4276] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.629381][ T4276] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.637482][ T4276] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.645072][ T4276] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.675745][ T1423] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.687677][ T1423] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.718334][ T4276] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.731542][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.740152][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.771212][ T4276] 8021q: adding VLAN 0 to HW filter on device team0
[   62.781057][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   62.790829][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   62.800463][ T1423] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.807733][ T1423] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.826227][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   62.836048][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.844610][ T1423] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.852222][ T1423] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.860080][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   62.871427][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   62.881177][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   62.890850][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   62.899790][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   62.926618][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   62.935380][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   62.945498][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   62.956388][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   62.967206][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   62.976075][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   62.989916][ T4276] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   63.094829][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   63.102541][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   63.115371][ T4276] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.148101][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   63.158548][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   63.187900][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   63.197297][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   63.205840][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   63.215121][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   63.226563][ T4276] device veth0_vlan entered promiscuous mode
[   63.254219][ T4276] device veth1_vlan entered promiscuous mode
[   63.270931][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   63.279583][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   63.289073][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   63.298205][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   63.308413][ T4276] device veth0_macvtap entered promiscuous mode
[   63.319882][ T4276] device veth1_macvtap entered promiscuous mode
[   63.341467][ T4276] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.350688][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   63.359216][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   63.368049][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   63.377103][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   63.393233][ T4276] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.405547][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   63.414318][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   63.425908][ T4276] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.435674][ T4276] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.445405][ T4276] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.454645][ T4276] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/08/04 11:42:58 executed programs: 0
[   64.087439][ T4299] chnl_net:caif_netlink_parms(): no params data found
[   64.147375][ T4299] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.156693][ T4299] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.165470][ T4299] device bridge_slave_0 entered promiscuous mode
[   64.174196][ T4299] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.190831][ T4299] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.199439][ T4299] device bridge_slave_1 entered promiscuous mode
[   64.229953][ T4299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.244558][ T4299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.280018][ T4299] team0: Port device team_slave_0 added
[   64.288696][ T4299] team0: Port device team_slave_1 added
[   64.316994][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.325172][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.359765][ T4299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.378233][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.386011][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.417238][ T4299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.460931][ T4299] device hsr_slave_0 entered promiscuous mode
[   64.468232][ T4299] device hsr_slave_1 entered promiscuous mode
[   64.476200][ T4299] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.485560][ T4299] Cannot create hsr debugfs directory
[   64.567147][ T4299] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.033983][ T4307] Bluetooth: hci0: command 0x0409 tx timeout
[   67.160738][ T4299] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.103622][   T13] Bluetooth: hci0: command 0x041b tx timeout
[   68.358223][ T4299] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.419342][ T4299] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.552671][ T4299] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   68.562517][ T4299] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   68.585649][ T4299] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   68.596633][ T4299] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.658436][ T4299] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.670991][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   68.679721][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   68.691574][ T4299] 8021q: adding VLAN 0 to HW filter on device team0
[   68.706124][  T154] device hsr_slave_0 left promiscuous mode
[   68.714991][  T154] device hsr_slave_1 left promiscuous mode
[   68.722117][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.731022][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.740560][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.749487][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.759878][  T154] device bridge_slave_1 left promiscuous mode
[   68.767977][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.785792][  T154] device bridge_slave_0 left promiscuous mode
[   68.793917][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.816369][  T154] device veth1_macvtap left promiscuous mode
[   68.828249][  T154] device veth0_macvtap left promiscuous mode
[   68.835265][  T154] device veth1_vlan left promiscuous mode
[   68.842257][  T154] device veth0_vlan left promiscuous mode
[   68.967376][  T154] team0 (unregistering): Port device team_slave_1 removed
[   68.981438][  T154] team0 (unregistering): Port device team_slave_0 removed
[   68.996064][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   69.012950][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   69.061984][  T154] bond0 (unregistering): Released all slaves
[   69.152485][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   69.162204][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   69.172237][ T1423] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.179490][ T1423] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.191110][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   69.202956][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   69.212549][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   69.222590][ T1423] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.230606][ T1423] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.250686][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   69.261690][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   69.272493][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   69.284502][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   69.302537][ T4299] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   69.314251][ T4299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   69.327097][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   69.335586][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   69.346214][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   69.355738][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   69.364944][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   69.375723][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   69.384783][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   69.394025][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   69.481240][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   69.490166][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   69.506517][ T4299] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.531271][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   69.541366][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   69.565462][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   69.575436][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   69.584697][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   69.592944][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   69.606342][ T4299] device veth0_vlan entered promiscuous mode
[   69.619905][ T4299] device veth1_vlan entered promiscuous mode
[   69.641601][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   69.650664][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   69.661026][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   69.670992][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   69.683146][ T4299] device veth0_macvtap entered promiscuous mode
[   69.706831][ T4299] device veth1_macvtap entered promiscuous mode
[   69.725943][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.733586][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   69.743080][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   69.756630][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.765893][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   69.776073][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   69.788828][ T4299] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.798428][ T4299] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.809565][ T4299] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.819242][ T4299] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.883853][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.891854][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.921635][ T1198] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.924079][ T1423] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   69.933456][ T1198] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.946896][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.049031][ T4320] loop0: detected capacity change from 0 to 8192
[   70.166601][ T4320] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   70.180999][ T4320] REISERFS (device loop0): using ordered data mode
[   70.188277][ T4306] Bluetooth: hci0: command 0x040f tx timeout
[   70.196785][ T4320] reiserfs: using flush barriers
[   70.207121][ T4320] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   70.226380][ T4320] REISERFS (device loop0): checking transaction log (loop0)
[   70.369636][ T4320] REISERFS (device loop0): Using tea hash to sort names
[   70.390767][ T4320] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   70.443050][ T4320] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [3 7 0x0 SD] (nlink == 2) not found (pos 2)
[   70.474432][ T4320] ==================================================================
[   70.483085][ T4320] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[   70.491868][ T4320] Read of size 4 at addr ffff888068c8e104 by task syz.0.17/4320
[   70.499958][ T4320] 
[   70.502487][ T4320] CPU: 0 PID: 4320 Comm: syz.0.17 Not tainted 5.15.189-syzkaller #0
[   70.510699][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.520955][ T4320] Call Trace:
[   70.524287][ T4320]  <TASK>
[   70.527535][ T4320]  dump_stack_lvl+0x168/0x230
[   70.532242][ T4320]  ? show_regs_print_info+0x20/0x20
[   70.537462][ T4320]  ? _printk+0xcc/0x110
[   70.541719][ T4320]  ? search_by_entry_key+0x597/0x1370
[   70.547275][ T4320]  ? load_image+0x3b0/0x3b0
[   70.552011][ T4320]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[   70.557775][ T4320]  print_address_description+0x60/0x2d0
[   70.563451][ T4320]  ? search_by_entry_key+0x597/0x1370
[   70.569052][ T4320]  kasan_report+0xdf/0x130
[   70.573585][ T4320]  ? search_by_entry_key+0x597/0x1370
[   70.579334][ T4320]  search_by_entry_key+0x597/0x1370
[   70.585054][ T4320]  ? make_cpu_key+0x2b/0x220
[   70.590186][ T4320]  reiserfs_find_entry+0x2ff/0x18e0
[   70.596657][ T4320]  ? mutex_lock_io_nested+0x60/0x60
[   70.602672][ T4320]  ? reiserfs_get_parent+0x270/0x270
[   70.608773][ T4320]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   70.615293][ T4320]  ? mutex_lock_nested+0x17/0x20
[   70.621067][ T4320]  reiserfs_lookup+0x1a7/0x420
[   70.626508][ T4320]  ? reiserfs_find_entry+0x18e0/0x18e0
[   70.632124][ T4320]  ? __init_waitqueue_head+0xa5/0x150
[   70.640051][ T4320]  __lookup_slow+0x27d/0x3d0
[   70.644983][ T4320]  ? lookup_one_len+0x2c0/0x2c0
[   70.652146][ T4320]  lookup_one_len+0x18e/0x2c0
[   70.657589][ T4320]  ? clear_nonspinnable+0x60/0x60
[   70.663344][ T4320]  ? lookup_one_common+0x460/0x460
[   70.669376][ T4320]  open_xa_dir+0x436/0x6b0
[   70.673894][ T4320]  ? listxattr_filler+0x410/0x410
[   70.679161][ T4320]  xattr_lookup+0x22/0x2a0
[   70.683718][ T4320]  ? reiserfs_xattr_set_handle+0xc5/0xf20
[   70.689762][ T4320]  reiserfs_xattr_set_handle+0xf4/0xf20
[   70.695756][ T4320]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[   70.701420][ T4320]  ? chown_one_xattr+0x90/0x90
[   70.706515][ T4320]  ? mutex_unlock+0x10/0x10
[   70.711380][ T4320]  ? journal_begin+0x1f1/0x350
[   70.717777][ T4320]  ? reiserfs_write_unlock+0xa2/0x110
[   70.723246][ T4320]  reiserfs_xattr_set+0x435/0x550
[   70.728658][ T4320]  ? reiserfs_get_page+0x400/0x400
[   70.733785][ T4320]  ? trusted_set+0x7d/0xe0
[   70.738382][ T4320]  ? trusted_get+0xc0/0xc0
[   70.743612][ T4320]  __vfs_setxattr+0x3e0/0x420
[   70.748834][ T4320]  __vfs_setxattr_noperm+0x129/0x5e0
[   70.754332][ T4320]  vfs_setxattr+0x168/0x2f0
[   70.759111][ T4320]  ? xattr_permission+0x500/0x500
[   70.764232][ T4320]  ? strncpy_from_user+0x1fb/0x360
[   70.769710][ T4320]  setxattr+0x2da/0x300
[   70.773966][ T4320]  ? path_setxattr+0x280/0x280
[   70.779249][ T4320]  ? sb_start_write+0x112/0x1c0
[   70.784237][ T4320]  ? mnt_want_write_file+0x166/0x200
[   70.789552][ T4320]  __se_sys_fsetxattr+0x15e/0x1d0
[   70.794727][ T4320]  do_syscall_64+0x4c/0xa0
[   70.799597][ T4320]  ? clear_bhb_loop+0x30/0x80
[   70.804861][ T4320]  ? clear_bhb_loop+0x30/0x80
[   70.810431][ T4320]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   70.817345][ T4320] RIP: 0033:0x7f42f3a81b69
[   70.822230][ T4320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.842768][ T4320] RSP: 002b:00007ffdf5fea858 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   70.852741][ T4320] RAX: ffffffffffffffda RBX: 00007f42f3ca8fa0 RCX: 00007f42f3a81b69
[   70.864021][ T4320] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[   70.872188][ T4320] RBP: 00007f42f3b04df1 R08: 0000000000000003 R09: 0000000000000000
[   70.882484][ T4320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   70.891393][ T4320] R13: 00007f42f3ca8fa0 R14: 00007f42f3ca8fa0 R15: 0000000000000005
[   70.902071][ T4320]  </TASK>
[   70.905585][ T4320] 
[   70.907915][ T4320] The buggy address belongs to the page:
[   70.917050][ T4320] page:ffffea0001a32380 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x68c8e
[   70.930837][ T4320] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   70.939797][ T4320] raw: 00fff00000000000 ffffea0001a323c8 ffffea0001a855c8 0000000000000000
[   70.949349][ T4320] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   70.958706][ T4320] page dumped because: kasan: bad access detected
[   70.965835][ T4320] page_owner tracks the page as freed
[   70.971407][ T4320] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 4245, ts 61751016630, free_ts 61845350827
[   70.988033][ T4320]  get_page_from_freelist+0x1b77/0x1c60
[   70.994081][ T4320]  __alloc_pages+0x1e1/0x470
[   70.998910][ T4320]  alloc_pages_vma+0x393/0x7c0
[   71.004008][ T4320]  handle_mm_fault+0x1b98/0x43c0
[   71.009751][ T4320]  do_user_addr_fault+0x489/0xc80
[   71.016332][ T4320]  exc_page_fault+0x60/0x100
[   71.021231][ T4320]  asm_exc_page_fault+0x22/0x30
[   71.026534][ T4320] page last free stack trace:
[   71.031586][ T4320]  free_unref_page_prepare+0x637/0x6c0
[   71.037678][ T4320]  free_unref_page_list+0x122/0x7e0
[   71.043403][ T4320]  release_pages+0x184b/0x1bb0
[   71.048654][ T4320]  tlb_finish_mmu+0x164/0x2e0
[   71.054105][ T4320]  exit_mmap+0x3a6/0x5f0
[   71.058963][ T4320]  __mmput+0x115/0x3b0
[   71.063400][ T4320]  exit_mm+0x567/0x6c0
[   71.067612][ T4320]  do_exit+0x5a1/0x20a0
[   71.071785][ T4320]  do_group_exit+0x12e/0x300
[   71.077083][ T4320]  get_signal+0x6ca/0x12c0
[   71.081680][ T4320]  arch_do_signal_or_restart+0xc1/0x1300
[   71.087537][ T4320]  exit_to_user_mode_loop+0x9e/0x130
[   71.093202][ T4320]  exit_to_user_mode_prepare+0xb1/0x140
[   71.098758][ T4320]  syscall_exit_to_user_mode+0x16/0x40
[   71.104503][ T4320]  do_syscall_64+0x58/0xa0
[   71.109259][ T4320]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   71.115258][ T4320] 
[   71.117734][ T4320] Memory state around the buggy address:
[   71.123391][ T4320]  ffff888068c8e000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   71.131556][ T4320]  ffff888068c8e080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   71.139909][ T4320] >ffff888068c8e100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   71.148312][ T4320]                    ^
[   71.152384][ T4320]  ffff888068c8e180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   71.160636][ T4320]  ffff888068c8e200: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   71.168889][ T4320] ==================================================================
[   71.177934][ T4320] Disabling lock debugging due to kernel taint
[   71.192926][ T4320] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   71.200370][ T4320] CPU: 0 PID: 4320 Comm: syz.0.17 Tainted: G    B             5.15.189-syzkaller #0
[   71.210298][ T4320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   71.220763][ T4320] Call Trace:
[   71.224180][ T4320]  <TASK>
[   71.227099][ T4320]  dump_stack_lvl+0x168/0x230
[   71.231793][ T4320]  ? show_regs_print_info+0x20/0x20
[   71.237268][ T4320]  ? load_image+0x3b0/0x3b0
[   71.242751][ T4320]  panic+0x2c9/0x7f0
[   71.246740][ T4320]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   71.253117][ T4320]  ? bpf_jit_dump+0xd0/0xd0
[   71.257659][ T4320]  ? _raw_spin_unlock_irqrestore+0xf6/0x100
[   71.264298][ T4320]  ? _raw_spin_unlock+0x40/0x40
[   71.269397][ T4320]  ? search_by_entry_key+0x597/0x1370
[   71.277013][ T4320]  check_panic_on_warn+0x80/0xa0
[   71.282149][ T4320]  ? search_by_entry_key+0x597/0x1370
[   71.288770][ T4320]  end_report+0x6d/0xf0
[   71.296616][ T4320]  kasan_report+0x102/0x130
[   71.302039][ T4320]  ? search_by_entry_key+0x597/0x1370
[   71.308109][ T4320]  search_by_entry_key+0x597/0x1370
[   71.313665][ T4320]  ? make_cpu_key+0x2b/0x220
[   71.318457][ T4320]  reiserfs_find_entry+0x2ff/0x18e0
[   71.324153][ T4320]  ? mutex_lock_io_nested+0x60/0x60
[   71.329356][ T4320]  ? reiserfs_get_parent+0x270/0x270
[   71.334800][ T4320]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   71.340891][ T4320]  ? mutex_lock_nested+0x17/0x20
[   71.346041][ T4320]  reiserfs_lookup+0x1a7/0x420
[   71.351942][ T4320]  ? reiserfs_find_entry+0x18e0/0x18e0
[   71.357674][ T4320]  ? __init_waitqueue_head+0xa5/0x150
[   71.363565][ T4320]  __lookup_slow+0x27d/0x3d0
[   71.368361][ T4320]  ? lookup_one_len+0x2c0/0x2c0
[   71.373878][ T4320]  lookup_one_len+0x18e/0x2c0
[   71.384270][ T4320]  ? clear_nonspinnable+0x60/0x60
[   71.389969][ T4320]  ? lookup_one_common+0x460/0x460
[   71.395167][ T4320]  open_xa_dir+0x436/0x6b0
[   71.399868][ T4320]  ? listxattr_filler+0x410/0x410
[   71.406564][ T4320]  xattr_lookup+0x22/0x2a0
[   71.411859][ T4320]  ? reiserfs_xattr_set_handle+0xc5/0xf20
[   71.417579][ T4320]  reiserfs_xattr_set_handle+0xf4/0xf20
[   71.423383][ T4320]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[   71.429510][ T4320]  ? chown_one_xattr+0x90/0x90
[   71.434255][ T4320]  ? mutex_unlock+0x10/0x10
[   71.439129][ T4320]  ? journal_begin+0x1f1/0x350
[   71.444032][ T4320]  ? reiserfs_write_unlock+0xa2/0x110
[   71.449516][ T4320]  reiserfs_xattr_set+0x435/0x550
[   71.454745][ T4320]  ? reiserfs_get_page+0x400/0x400
[   71.459956][ T4320]  ? trusted_set+0x7d/0xe0
[   71.464363][ T4320]  ? trusted_get+0xc0/0xc0
[   71.468859][ T4320]  __vfs_setxattr+0x3e0/0x420
[   71.473633][ T4320]  __vfs_setxattr_noperm+0x129/0x5e0
[   71.478936][ T4320]  vfs_setxattr+0x168/0x2f0
[   71.483637][ T4320]  ? xattr_permission+0x500/0x500
[   71.488685][ T4320]  ? strncpy_from_user+0x1fb/0x360
[   71.493970][ T4320]  setxattr+0x2da/0x300
[   71.498573][ T4320]  ? path_setxattr+0x280/0x280
[   71.503356][ T4320]  ? sb_start_write+0x112/0x1c0
[   71.508482][ T4320]  ? mnt_want_write_file+0x166/0x200
[   71.514046][ T4320]  __se_sys_fsetxattr+0x15e/0x1d0
[   71.519163][ T4320]  do_syscall_64+0x4c/0xa0
[   71.523569][ T4320]  ? clear_bhb_loop+0x30/0x80
[   71.528446][ T4320]  ? clear_bhb_loop+0x30/0x80
[   71.533207][ T4320]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   71.539360][ T4320] RIP: 0033:0x7f42f3a81b69
[   71.543889][ T4320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.564045][ T4320] RSP: 002b:00007ffdf5fea858 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   71.572713][ T4320] RAX: ffffffffffffffda RBX: 00007f42f3ca8fa0 RCX: 00007f42f3a81b69
[   71.581180][ T4320] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000006
[   71.589462][ T4320] RBP: 00007f42f3b04df1 R08: 0000000000000003 R09: 0000000000000000
[   71.597629][ T4320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   71.605737][ T4320] R13: 00007f42f3ca8fa0 R14: 00007f42f3ca8fa0 R15: 0000000000000005
[   71.613996][ T4320]  </TASK>
[   71.617344][ T4320] Kernel Offset: disabled
[   71.621754][ T4320] Rebooting in 86400 seconds..