[   15.332594][ T3898] 8021q: adding VLAN 0 to HW filter on device bond0
[   15.336266][ T3898] eql: remember to turn off Van-Jacobson compression on your slave devices
[   15.377502][  T239] gvnic 0000:00:00.0 enp0s0: Device link is up.
[   15.380522][ T3806] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.153' (ED25519) to the list of known hosts.
executing program
syzkaller login: [   38.711829][ T4222] loop0: detected capacity change from 0 to 8192
[   38.717477][ T4222] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   38.720202][ T4222] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   38.722342][ T4222] REISERFS (device loop0): using ordered data mode
[   38.723832][ T4222] reiserfs: using flush barriers
[   38.725652][ T4222] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   38.729189][ T4222] REISERFS (device loop0): checking transaction log (loop0)
[   38.732548][ T4222] REISERFS (device loop0): Using tea hash to sort names
[   38.734572][ T4222] REISERFS (device loop0): using 3.5.x disk format
[   38.736594][ T4222] ==================================================================
[   38.738379][ T4222] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x698/0xb10
[   38.739988][ T4222] Read of size 18446744073709551592 at addr ffff0000e283bfa4 by task syz-executor286/4222
[   38.741989][ T4222] 
[   38.742492][ T4222] CPU: 0 PID: 4222 Comm: syz-executor286 Not tainted 6.1.88-syzkaller #0
[   38.744403][ T4222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   38.746519][ T4222] Call trace:
[   38.747199][ T4222]  dump_backtrace+0x1c8/0x1f4
[   38.748214][ T4222]  show_stack+0x2c/0x3c
[   38.749057][ T4222]  dump_stack_lvl+0x108/0x170
[   38.750035][ T4222]  print_report+0x174/0x4c0
[   38.751044][ T4222]  kasan_report+0xd4/0x130
[   38.752019][ T4222]  kasan_check_range+0x264/0x2a4
[   38.753085][ T4222]  memmove+0x48/0x90
[   38.753914][ T4222]  leaf_paste_entries+0x698/0xb10
[   38.754976][ T4222]  balance_leaf+0xa0d4/0xe860
[   38.755943][ T4222]  do_balance+0x27c/0x788
[   38.756939][ T4222]  reiserfs_paste_into_item+0x630/0x744
[   38.758074][ T4222]  reiserfs_add_entry+0x8ec/0xcc4
[   38.759205][ T4222]  reiserfs_mkdir+0x588/0x77c
[   38.760228][ T4222]  reiserfs_xattr_init+0x2b0/0x6bc
[   38.761428][ T4222]  reiserfs_fill_super+0x1bfc/0x2028
[   38.762657][ T4222]  mount_bdev+0x274/0x370
[   38.763612][ T4222]  get_super_block+0x44/0x58
[   38.764630][ T4222]  legacy_get_tree+0xd4/0x16c
[   38.765672][ T4222]  vfs_get_tree+0x90/0x274
[   38.766643][ T4222]  do_new_mount+0x278/0x8fc
[   38.767629][ T4222]  path_mount+0x590/0xe5c
[   38.768648][ T4222]  __arm64_sys_mount+0x45c/0x594
[   38.769779][ T4222]  invoke_syscall+0x98/0x2c0
[   38.770823][ T4222]  el0_svc_common+0x138/0x258
[   38.771844][ T4222]  do_el0_svc+0x64/0x218
[   38.772764][ T4222]  el0_svc+0x58/0x168
[   38.773629][ T4222]  el0t_64_sync_handler+0x84/0xf0
[   38.774748][ T4222]  el0t_64_sync+0x18c/0x190
[   38.775791][ T4222] 
[   38.776255][ T4222] The buggy address belongs to the physical page:
[   38.777639][ T4222] page:00000000e6129f5a refcount:3 mapcount:0 mapping:000000002537067d index:0x213 pfn:0x12283b
[   38.779921][ T4222] memcg:ffff0000c0940000
[   38.780862][ T4222] aops:def_blk_aops ino:700000
[   38.782015][ T4222] flags: 0x5ffe30000002042(referenced|workingset|private|node=0|zone=2|lastcpupid=0xfff)
[   38.784216][ T4222] raw: 05ffe30000002042 0000000000000000 dead000000000122 ffff0000c049ca10
[   38.786101][ T4222] raw: 0000000000000213 ffff0000e246bbc8 00000003ffffffff ffff0000c0940000
[   38.788032][ T4222] page dumped because: kasan: bad access detected
[   38.789329][ T4222] 
[   38.789815][ T4222] Memory state around the buggy address:
[   38.791053][ T4222]  ffff0000e283be80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   38.792859][ T4222]  ffff0000e283bf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   38.794582][ T4222] >ffff0000e283bf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   38.796409][ T4222]                                ^
[   38.797562][ T4222]  ffff0000e283c000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   38.799239][ T4222]  ffff0000e283c080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   38.800880][ T4222] ==================================================================
[   38.802710][ T4222] Disabling lock debugging due to kernel taint
[   38.804085][ T4222] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[2 0 0x6965722e UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   38.807992][ T4222] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   38.810298][ T4222] REISERFS (device loop0): Remounting filesystem read-only
[   38.811854][ T4222] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data
[   38.814787][ T4222] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[   38.817773][ T4222] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[2 0 0x6965722e UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   38.821732][ T4222] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   38.824035][ T4222] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error