forked to background, child pid 4650
[   35.558661][ T4651] 8021q: adding VLAN 0 to HW filter on device bond0
[   35.575892][ T4651] eql: remember to turn off Van-Jacobson compression on your slave devices
[   35.875719][ T4739] ssh-keygen (4739) used greatest stack depth: 21880 bytes left
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.83' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   59.417448][ T5077] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5077 'syz-executor365'
[   59.470971][ T5077] loop0: detected capacity change from 0 to 8192
[   59.481447][ T5077] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   59.494716][ T5077] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   59.504173][ T5077] REISERFS (device loop0): using ordered data mode
[   59.510686][ T5077] reiserfs: using flush barriers
[   59.517636][ T5077] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   59.534156][ T5077] REISERFS (device loop0): checking transaction log (loop0)
[   59.588177][ T5077] REISERFS (device loop0): Using r5 hash to sort names
[   59.595974][ T5077] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   59.611929][ T5077] ==================================================================
[   59.620050][ T5077] BUG: KASAN: use-after-free in strlen+0x7d/0xa0
[   59.626429][ T5077] Read of size 1 at addr ffff8880729299cc by task syz-executor365/5077
[   59.634767][ T5077] 
[   59.637092][ T5077] CPU: 1 PID: 5077 Comm: syz-executor365 Not tainted 6.2.0-rc2-next-20230105-syzkaller #0
[   59.646991][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   59.657048][ T5077] Call Trace:
[   59.660416][ T5077]  <TASK>
[   59.663762][ T5077]  dump_stack_lvl+0xd1/0x138
[   59.670822][ T5077]  print_report+0x15e/0x45d
[   59.676229][ T5077]  ? __phys_addr+0xc8/0x140
[   59.680777][ T5077]  ? strlen+0x7d/0xa0
[   59.684786][ T5077]  kasan_report+0xc0/0xf0
[   59.689140][ T5077]  ? strlen+0x7d/0xa0
[   59.693141][ T5077]  strlen+0x7d/0xa0
[   59.696964][ T5077]  set_de_name_and_namelen+0x4c4/0x6a0
[   59.702439][ T5077]  search_by_entry_key+0x4f3/0x960
[   59.707584][ T5077]  reiserfs_readdir_inode+0x24f/0x13b0
[   59.713492][ T5077]  ? __lock_acquire+0x2567/0x56d0
[   59.718533][ T5077]  ? reiserfs_dir_fsync+0x140/0x140
[   59.723746][ T5077]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   59.729917][ T5077]  ? lock_release+0x810/0x810
[   59.734602][ T5077]  ? iterate_dir+0xd1/0x6f0
[   59.739114][ T5077]  ? rcu_read_lock_sched_held+0x3e/0x70
[   59.744674][ T5077]  ? trace_lock_acquire+0x1f1/0x290
[   59.749884][ T5077]  ? down_read_killable+0x1ab/0x490
[   59.755094][ T5077]  ? down_read+0x450/0x450
[   59.764070][ T5077]  ? fsnotify_perm.part.0+0x221/0x610
[   59.769470][ T5077]  ? apparmor_file_permission+0x272/0x4e0
[   59.775226][ T5077]  iterate_dir+0x56e/0x6f0
[   59.779662][ T5077]  __x64_sys_getdents64+0x13e/0x2c0
[   59.784872][ T5077]  ? __ia32_sys_getdents+0x2c0/0x2c0
[   59.790171][ T5077]  ? compat_filldir+0x6b0/0x6b0
[   59.795054][ T5077]  ? syscall_enter_from_user_mode+0x26/0xb0
[   59.800985][ T5077]  do_syscall_64+0x39/0xb0
[   59.805434][ T5077]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   59.811349][ T5077] RIP: 0033:0x7fa3d87c6ba9
[   59.815770][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   59.835497][ T5077] RSP: 002b:00007ffe33e340b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   59.843927][ T5077] RAX: ffffffffffffffda RBX: 00007fa3d8835640 RCX: 00007fa3d87c6ba9
[   59.851911][ T5077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   59.859891][ T5077] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   59.867865][ T5077] R10: 00000000000010e3 R11: 0000000000000246 R12: 0000000000000004
[   59.875850][ T5077] R13: 0000000000000003 R14: 00007ffe33e340f0 R15: 000000000000000c
[   59.883837][ T5077]  </TASK>
[   59.886869][ T5077] 
[   59.889189][ T5077] The buggy address belongs to the physical page:
[   59.895683][ T5077] page:ffffea0001ca4a40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x72929
[   59.905853][ T5077] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   59.912981][ T5077] raw: 00fff00000000000 ffffea0001ca4a88 ffffea0001ca4a08 0000000000000000
[   59.921575][ T5077] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[   59.930177][ T5077] page dumped because: kasan: bad access detected
[   59.936602][ T5077] page_owner tracks the page as freed
[   59.941986][ T5077] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, tgid 1 (swapper/0), ts 14120767720, free_ts 15091297376
[   59.956951][ T5077]  split_map_pages+0x1ef/0x520
[   59.961729][ T5077]  isolate_freepages_range+0x313/0x350
[   59.967203][ T5077]  alloc_contig_range+0x2fa/0x4a0
[   59.972263][ T5077]  alloc_contig_pages+0x35e/0x4c0
[   59.977337][ T5077]  debug_vm_pgtable+0x899/0x296f
[   59.982306][ T5077]  do_one_initcall+0x141/0x7d0
[   59.987091][ T5077]  kernel_init_freeable+0x6f9/0x782
[   59.992302][ T5077]  kernel_init+0x1e/0x1d0
[   59.996644][ T5077]  ret_from_fork+0x1f/0x30
[   60.001073][ T5077] page last free stack trace:
[   60.005743][ T5077]  free_pcp_prepare+0x4d0/0x9e0
[   60.010609][ T5077]  free_unref_page+0x1d/0x490
[   60.015299][ T5077]  free_contig_range+0xb5/0x180
[   60.020162][ T5077]  destroy_args+0xa8/0x64c
[   60.024586][ T5077]  debug_vm_pgtable+0x28de/0x296f
[   60.029622][ T5077]  do_one_initcall+0x141/0x7d0
[   60.034402][ T5077]  kernel_init_freeable+0x6f9/0x782
[   60.039608][ T5077]  kernel_init+0x1e/0x1d0
[   60.043947][ T5077]  ret_from_fork+0x1f/0x30
[   60.048420][ T5077] 
[   60.050775][ T5077] Memory state around the buggy address:
[   60.056403][ T5077]  ffff888072929880: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.064464][ T5077]  ffff888072929900: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.072558][ T5077] >ffff888072929980: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.080628][ T5077]                                               ^
[   60.087041][ T5077]  ffff888072929a00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.095112][ T5077]  ffff888072929a80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   60.103182][ T5077] ==================================================================
[   60.112983][ T5077] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   60.120209][ T5077] CPU: 0 PID: 5077 Comm: syz-executor365 Not tainted 6.2.0-rc2-next-20230105-syzkaller #0
[   60.130109][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   60.140429][ T5077] Call Trace:
[   60.143709][ T5077]  <TASK>
[   60.146642][ T5077]  dump_stack_lvl+0xd1/0x138
[   60.151538][ T5077]  panic+0x2cc/0x626
[   60.155468][ T5077]  ? panic_print_sys_info.part.0+0x110/0x110
[   60.161486][ T5077]  ? preempt_schedule_thunk+0x1a/0x20
[   60.166897][ T5077]  ? preempt_schedule_common+0x59/0xc0
[   60.172391][ T5077]  check_panic_on_warn.cold+0x19/0x35
[   60.177783][ T5077]  end_report.part.0+0x36/0x73
[   60.182568][ T5077]  ? strlen+0x7d/0xa0
[   60.186561][ T5077]  kasan_report.cold+0xa/0xf
[   60.191173][ T5077]  ? strlen+0x7d/0xa0
[   60.195173][ T5077]  strlen+0x7d/0xa0
[   60.199011][ T5077]  set_de_name_and_namelen+0x4c4/0x6a0
[   60.204507][ T5077]  search_by_entry_key+0x4f3/0x960
[   60.209648][ T5077]  reiserfs_readdir_inode+0x24f/0x13b0
[   60.215132][ T5077]  ? __lock_acquire+0x2567/0x56d0
[   60.220173][ T5077]  ? reiserfs_dir_fsync+0x140/0x140
[   60.225573][ T5077]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   60.231580][ T5077]  ? lock_release+0x810/0x810
[   60.236277][ T5077]  ? iterate_dir+0xd1/0x6f0
[   60.240800][ T5077]  ? rcu_read_lock_sched_held+0x3e/0x70
[   60.246359][ T5077]  ? trace_lock_acquire+0x1f1/0x290
[   60.251816][ T5077]  ? down_read_killable+0x1ab/0x490
[   60.257044][ T5077]  ? down_read+0x450/0x450
[   60.261480][ T5077]  ? fsnotify_perm.part.0+0x221/0x610
[   60.266886][ T5077]  ? apparmor_file_permission+0x272/0x4e0
[   60.272641][ T5077]  iterate_dir+0x56e/0x6f0
[   60.277166][ T5077]  __x64_sys_getdents64+0x13e/0x2c0
[   60.282382][ T5077]  ? __ia32_sys_getdents+0x2c0/0x2c0
[   60.287689][ T5077]  ? compat_filldir+0x6b0/0x6b0
[   60.292558][ T5077]  ? syscall_enter_from_user_mode+0x26/0xb0
[   60.298463][ T5077]  do_syscall_64+0x39/0xb0
[   60.302911][ T5077]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   60.308831][ T5077] RIP: 0033:0x7fa3d87c6ba9
[   60.313251][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   60.333053][ T5077] RSP: 002b:00007ffe33e340b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[   60.341498][ T5077] RAX: ffffffffffffffda RBX: 00007fa3d8835640 RCX: 00007fa3d87c6ba9
[   60.349500][ T5077] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   60.357582][ T5077] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   60.365563][ T5077] R10: 00000000000010e3 R11: 0000000000000246 R12: 0000000000000004
[   60.373658][ T5077] R13: 0000000000000003 R14: 00007ffe33e340f0 R15: 000000000000000c
[   60.381646][ T5077]  </TASK>
[   60.384879][ T5077] Kernel Offset: disabled
[   60.389212][ T5077] Rebooting in 86400 seconds..