Warning: Permanently added '10.128.1.194' (ED25519) to the list of known hosts.
2026/05/07 07:06:36 parsed 1 programs
[ 110.183639][ T4620] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 112.054248][ T4642] chnl_net:caif_netlink_parms(): no params data found
[ 112.100904][ T4642] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.108335][ T4642] bridge0: port 1(bridge_slave_0) entered disabled state
[ 112.117150][ T4642] device bridge_slave_0 entered promiscuous mode
[ 112.125530][ T4642] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.132922][ T4642] bridge0: port 2(bridge_slave_1) entered disabled state
[ 112.141293][ T4642] device bridge_slave_1 entered promiscuous mode
[ 112.170463][ T4642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 112.182535][ T4642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 112.215658][ T4642] team0: Port device team_slave_0 added
[ 112.223991][ T4642] team0: Port device team_slave_1 added
[ 112.250528][ T4642] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 112.257930][ T4642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 112.285616][ T4642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 112.298424][ T4642] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 112.305766][ T4642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 112.333252][ T4642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 112.378028][ T4642] device hsr_slave_0 entered promiscuous mode
[ 112.385394][ T4642] device hsr_slave_1 entered promiscuous mode
[ 113.080634][ T4642] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 113.104285][ T4642] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 113.125439][ T4642] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 113.153339][ T4642] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 113.293239][ T4642] 8021q: adding VLAN 0 to HW filter on device bond0
[ 113.316059][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 113.329207][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 113.358262][ T4642] 8021q: adding VLAN 0 to HW filter on device team0
[ 113.380993][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 113.393470][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 113.402363][ T3069] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.409806][ T3069] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 113.443623][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 113.465573][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 113.481453][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 113.490612][ T3069] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.498329][ T3069] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 113.508673][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 113.518272][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 113.542915][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 113.553780][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 113.573156][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 113.593445][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 113.617648][ T4642] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 113.646094][ T4642] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 113.659827][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 113.673715][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 113.693046][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 113.708758][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 113.717894][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 113.728670][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 113.935677][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 113.949724][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 113.974386][ T4642] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.998028][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 114.007160][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 114.028514][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 114.037806][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 114.047553][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 114.057272][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 114.068105][ T4642] device veth0_vlan entered promiscuous mode
[ 114.097399][ T4642] device veth1_vlan entered promiscuous mode
[ 114.132218][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 114.143627][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 114.154579][ T4642] device veth0_macvtap entered promiscuous mode
[ 114.166411][ T4642] device veth1_macvtap entered promiscuous mode
[ 114.187790][ T4642] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 114.197930][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 114.206680][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 114.215275][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 114.224804][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 114.237602][ T4642] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 114.254944][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 114.264549][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 114.277575][ T4642] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.287339][ T4642] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.296824][ T4642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.306189][ T4642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 114.572327][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.597327][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.611427][ T3069] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 114.640376][ T3069] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 114.649308][ T3069] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 114.658885][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 116.948043][ T155] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/05/07 07:06:48 executed programs: 0
[ 118.247838][ T4867] chnl_net:caif_netlink_parms(): no params data found
[ 118.311832][ T4867] bridge0: port 1(bridge_slave_0) entered blocking state
[ 118.319331][ T4867] bridge0: port 1(bridge_slave_0) entered disabled state
[ 118.327992][ T4867] device bridge_slave_0 entered promiscuous mode
[ 118.337325][ T4867] bridge0: port 2(bridge_slave_1) entered blocking state
[ 118.344733][ T4867] bridge0: port 2(bridge_slave_1) entered disabled state
[ 118.353163][ T4867] device bridge_slave_1 entered promiscuous mode
[ 118.382004][ T4867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 118.395760][ T4867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 118.426865][ T4867] team0: Port device team_slave_0 added
[ 118.435356][ T4867] team0: Port device team_slave_1 added
[ 118.460173][ T4867] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 118.467465][ T4867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 118.494111][ T4867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 118.508457][ T4867] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 118.515704][ T4867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 118.542439][ T4867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 118.585843][ T155] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 118.602559][ T4867] device hsr_slave_0 entered promiscuous mode
[ 118.609816][ T4867] device hsr_slave_1 entered promiscuous mode
[ 118.616804][ T4867] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 118.625502][ T4867] Cannot create hsr debugfs directory
[ 118.640052][ T155] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 118.706327][ T155] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 119.647474][ T4867] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 119.657768][ T4867] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 119.669025][ T4867] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 119.680569][ T4867] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 119.790213][ T4867] 8021q: adding VLAN 0 to HW filter on device bond0
[ 119.809895][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 119.820827][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 119.833756][ T4867] 8021q: adding VLAN 0 to HW filter on device team0
[ 119.869294][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 119.881285][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 119.890479][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.897786][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 119.919225][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 119.930136][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 119.939563][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 119.951773][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.959094][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 119.972029][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 120.016951][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 120.026874][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 120.042487][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 120.086827][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 120.100384][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 120.110163][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 120.121489][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 120.131701][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 120.147584][ T4867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 120.160295][ T4867] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 120.170457][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 120.181478][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 120.184043][ T4258] Bluetooth: hci0: command 0x0409 tx timeout
[ 120.330732][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 120.338767][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 120.377658][ T4867] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 120.418957][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 120.429534][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 120.468178][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 120.482219][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 120.493954][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 120.501997][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 120.516500][ T155] device hsr_slave_0 left promiscuous mode
[ 120.524159][ T155] device hsr_slave_1 left promiscuous mode
[ 120.530967][ T155] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 120.539066][ T155] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 120.549092][ T155] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 120.558891][ T155] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 120.569594][ T155] device bridge_slave_1 left promiscuous mode
[ 120.577489][ T155] bridge0: port 2(bridge_slave_1) entered disabled state
[ 120.589139][ T155] device bridge_slave_0 left promiscuous mode
[ 120.597041][ T155] bridge0: port 1(bridge_slave_0) entered disabled state
[ 120.612867][ T155] device veth1_macvtap left promiscuous mode
[ 120.618968][ T155] device veth0_macvtap left promiscuous mode
[ 120.628586][ T155] device veth1_vlan left promiscuous mode
[ 120.634960][ T155] device veth0_vlan left promiscuous mode
[ 120.883523][ T155] team0 (unregistering): Port device team_slave_1 removed
[ 120.897409][ T155] team0 (unregistering): Port device team_slave_0 removed
[ 120.910151][ T155] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 120.925167][ T155] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 120.987914][ T155] bond0 (unregistering): Released all slaves
[ 121.070868][ T4867] device veth0_vlan entered promiscuous mode
[ 121.090899][ T4867] device veth1_vlan entered promiscuous mode
[ 121.147951][ T4867] device veth0_macvtap entered promiscuous mode
[ 121.159684][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 121.168192][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 121.177561][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 121.186900][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 121.196489][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 121.215364][ T4867] device veth1_macvtap entered promiscuous mode
[ 121.244141][ T4286] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 121.264541][ T4867] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 121.273555][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 121.286010][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 121.299360][ T4867] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 121.309849][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 121.319992][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 121.345324][ T4867] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.358704][ T4867] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.367967][ T4867] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.379555][ T4867] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 121.484798][ T4286] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.497801][ T4286] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.517967][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 121.533637][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 121.541973][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.551159][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 121.692125][ T4986] loop0: detected capacity change from 0 to 8192
[ 121.789136][ T4986] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 121.810041][ T4986] REISERFS (device loop0): using ordered data mode
[ 121.824183][ T4986] reiserfs: using flush barriers
[ 121.846558][ T4986] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 121.883291][ T4986] REISERFS (device loop0): checking transaction log (loop0)
[ 121.916049][ T4986] REISERFS (device loop0): Using tea hash to sort names
[ 121.946306][ T4986] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 121.977040][ T4986] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 122.231985][ T5001] loop0: detected capacity change from 0 to 8192
[ 122.263097][ T4258] Bluetooth: hci0: command 0x041b tx timeout
[ 122.307011][ T5001] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 122.332751][ T5001] REISERFS (device loop0): using ordered data mode
[ 122.339370][ T5001] reiserfs: using flush barriers
[ 122.349205][ T5001] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 122.373131][ T5001] REISERFS (device loop0): checking transaction log (loop0)
[ 122.393969][ T5001] REISERFS (device loop0): Using tea hash to sort names
[ 122.401474][ T5001] ==================================================================
[ 122.410251][ T5001] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[ 122.418412][ T5001] Read of size 4 at addr ffff888068e0cfc4 by task syz.0.17/5001
[ 122.426223][ T5001]
[ 122.428683][ T5001] CPU: 0 PID: 5001 Comm: syz.0.17 Not tainted syzkaller #0
[ 122.436095][ T5001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 122.447414][ T5001] Call Trace:
[ 122.450745][ T5001]
[ 122.453709][ T5001] dump_stack_lvl+0x188/0x250
[ 122.458532][ T5001] ? show_regs_print_info+0x20/0x20
[ 122.463861][ T5001] ? _printk+0xda/0x130
[ 122.468133][ T5001] ? search_by_entry_key+0x597/0x1370
[ 122.473746][ T5001] ? load_image+0x400/0x400
[ 122.478283][ T5001] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 122.483882][ T5001] print_address_description+0x60/0x2d0
[ 122.489468][ T5001] ? search_by_entry_key+0x597/0x1370
[ 122.494877][ T5001] kasan_report+0xdf/0x130
[ 122.499337][ T5001] ? search_by_entry_key+0x597/0x1370
[ 122.504836][ T5001] search_by_entry_key+0x597/0x1370
[ 122.510184][ T5001] ? make_cpu_key+0x2b/0x220
[ 122.515090][ T5001] reiserfs_find_entry+0x2f2/0x18e0
[ 122.520530][ T5001] ? verify_lock_unused+0x140/0x140
[ 122.525772][ T5001] ? mutex_lock_io_nested+0x60/0x60
[ 122.531010][ T5001] ? mark_lock+0x94/0x320
[ 122.535892][ T5001] ? reiserfs_get_parent+0x2f0/0x2f0
[ 122.541504][ T5001] ? mutex_lock_nested+0x17/0x20
[ 122.546583][ T5001] reiserfs_lookup+0x1e8/0x480
[ 122.551576][ T5001] ? reiserfs_find_entry+0x18e0/0x18e0
[ 122.557283][ T5001] ? __init_waitqueue_head+0xa5/0x150
[ 122.562698][ T5001] __lookup_slow+0x29d/0x410
[ 122.567607][ T5001] ? lookup_one_len+0x2d0/0x2d0
[ 122.572789][ T5001] lookup_one_len+0x19d/0x2d0
[ 122.578129][ T5001] ? lookup_one_common+0x460/0x460
[ 122.583327][ T5001] reiserfs_lookup_privroot+0x85/0x1e0
[ 122.589009][ T5001] reiserfs_fill_super+0x1fa6/0x2440
[ 122.595471][ T5001] ? reiserfs_kill_sb+0x140/0x140
[ 122.600944][ T5001] ? snprintf+0xe5/0x140
[ 122.605237][ T5001] ? vscnprintf+0x80/0x80
[ 122.609715][ T5001] ? set_blocksize+0x1f3/0x370
[ 122.614531][ T5001] ? sb_set_blocksize+0xa5/0xe0
[ 122.620354][ T5001] mount_bdev+0x287/0x3c0
[ 122.625215][ T5001] ? reiserfs_kill_sb+0x140/0x140
[ 122.630384][ T5001] legacy_get_tree+0xe6/0x180
[ 122.635120][ T5001] ? remove_save_link+0x3e0/0x3e0
[ 122.640338][ T5001] vfs_get_tree+0x88/0x270
[ 122.644989][ T5001] do_new_mount+0x24a/0xa40
[ 122.649654][ T5001] __se_sys_mount+0x2e3/0x3d0
[ 122.654394][ T5001] ? __x64_sys_mount+0xc0/0xc0
[ 122.659298][ T5001] ? lockdep_hardirqs_on+0x94/0x140
[ 122.664834][ T5001] ? __x64_sys_mount+0x1c/0xc0
[ 122.669810][ T5001] do_syscall_64+0x4c/0xa0
[ 122.674670][ T5001] ? clear_bhb_loop+0x30/0x80
[ 122.679588][ T5001] ? clear_bhb_loop+0x30/0x80
[ 122.684498][ T5001] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 122.690468][ T5001] RIP: 0033:0x7f415ff2eb8a
[ 122.695134][ T5001] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 122.715495][ T5001] RSP: 002b:00007f415f193e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 122.724059][ T5001] RAX: ffffffffffffffda RBX: 00007f415f193ee0 RCX: 00007f415ff2eb8a
[ 122.732414][ T5001] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f415f193ea0
[ 122.740753][ T5001] RBP: 0000400000000180 R08: 00007f415f193ee0 R09: 000000000001801c
[ 122.749288][ T5001] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 122.757666][ T5001] R13: 00007f415f193ea0 R14: 000000000000112d R15: 0000400000000300
[ 122.766379][ T5001]
[ 122.769453][ T5001]
[ 122.772051][ T5001] The buggy address belongs to the page:
[ 122.777897][ T5001] page:ffffea0001a38300 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x68e0c
[ 122.788297][ T5001] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 122.795487][ T5001] raw: 00fff00000000000 ffffea0001b2c708 ffffea0001b2c688 0000000000000000
[ 122.804122][ T5001] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 122.812742][ T5001] page dumped because: kasan: bad access detected
[ 122.819294][ T5001] page_owner tracks the page as freed
[ 122.824803][ T5001] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 4631, ts 122819832510, free_ts 122232902622
[ 122.839911][ T5001] get_page_from_freelist+0x1bbd/0x1ca0
[ 122.845518][ T5001] __alloc_pages+0x1ee/0x480
[ 122.850155][ T5001] alloc_pages_vma+0x393/0x7c0
[ 122.855142][ T5001] handle_mm_fault+0x23be/0x4410
[ 122.860886][ T5001] do_user_addr_fault+0x489/0xc80
[ 122.866157][ T5001] exc_page_fault+0x60/0x100
[ 122.870803][ T5001] asm_exc_page_fault+0x22/0x30
[ 122.875695][ T5001] copy_user_enhanced_fast_string+0xe/0x40
[ 122.881722][ T5001] copy_page_to_iter+0x49e/0x910
[ 122.886700][ T5001] filemap_read+0x1e2d/0x2540
[ 122.891430][ T5001] blkdev_read_iter+0x11d/0x150
[ 122.896315][ T5001] vfs_read+0x759/0xd60
[ 122.900510][ T5001] ksys_read+0x152/0x260
[ 122.904999][ T5001] do_syscall_64+0x4c/0xa0
[ 122.909597][ T5001] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 122.915537][ T5001] page last free stack trace:
[ 122.920254][ T5001] free_unref_page_prepare+0x637/0x6c0
[ 122.925756][ T5001] free_unref_page_list+0x119/0x820
[ 122.931037][ T5001] release_pages+0x186c/0x1be0
[ 122.936016][ T5001] tlb_finish_mmu+0x1b4/0x370
[ 122.941011][ T5001] exit_mmap+0x3d0/0x640
[ 122.945399][ T5001] __mmput+0x115/0x3b0
[ 122.949710][ T5001] exit_mm+0x588/0x6e0
[ 122.954017][ T5001] do_exit+0x5a9/0x20c0
[ 122.958242][ T5001] do_group_exit+0x12e/0x300
[ 122.963006][ T5001] __x64_sys_exit_group+0x3b/0x40
[ 122.968156][ T5001] do_syscall_64+0x4c/0xa0
[ 122.972695][ T5001] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 122.979180][ T5001]
[ 122.981713][ T5001] Memory state around the buggy address:
[ 122.987564][ T5001] ffff888068e0ce80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 122.996107][ T5001] ffff888068e0cf00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 123.004438][ T5001] >ffff888068e0cf80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 123.012630][ T5001] ^
[ 123.019215][ T5001] ffff888068e0d000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 123.027695][ T5001] ffff888068e0d080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 123.036262][ T5001] ==================================================================
[ 123.044680][ T5001] Disabling lock debugging due to kernel taint
[ 123.073681][ T5001] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 123.081292][ T5001] CPU: 0 PID: 5001 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 123.090385][ T5001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 123.100829][ T5001] Call Trace:
[ 123.104333][ T5001]
[ 123.107381][ T5001] dump_stack_lvl+0x188/0x250
[ 123.112279][ T5001] ? show_regs_print_info+0x20/0x20
[ 123.117748][ T5001] ? load_image+0x400/0x400
[ 123.122570][ T5001] panic+0x2e5/0x810
[ 123.126650][ T5001] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 123.133300][ T5001] ? bpf_jit_dump+0xd0/0xd0
[ 123.137943][ T5001] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 123.144060][ T5001] ? _raw_spin_unlock+0x40/0x40
[ 123.148952][ T5001] ? search_by_entry_key+0x597/0x1370
[ 123.154460][ T5001] check_panic_on_warn+0x80/0xa0
[ 123.159604][ T5001] ? search_by_entry_key+0x597/0x1370
[ 123.165693][ T5001] end_report+0x6d/0xf0
[ 123.170003][ T5001] kasan_report+0x102/0x130
[ 123.174959][ T5001] ? search_by_entry_key+0x597/0x1370
[ 123.180986][ T5001] search_by_entry_key+0x597/0x1370
[ 123.186349][ T5001] ? make_cpu_key+0x2b/0x220
[ 123.191203][ T5001] reiserfs_find_entry+0x2f2/0x18e0
[ 123.197023][ T5001] ? verify_lock_unused+0x140/0x140
[ 123.202454][ T5001] ? mutex_lock_io_nested+0x60/0x60
[ 123.207775][ T5001] ? mark_lock+0x94/0x320
[ 123.212147][ T5001] ? reiserfs_get_parent+0x2f0/0x2f0
[ 123.217479][ T5001] ? mutex_lock_nested+0x17/0x20
[ 123.222716][ T5001] reiserfs_lookup+0x1e8/0x480
[ 123.227884][ T5001] ? reiserfs_find_entry+0x18e0/0x18e0
[ 123.233400][ T5001] ? __init_waitqueue_head+0xa5/0x150
[ 123.239022][ T5001] __lookup_slow+0x29d/0x410
[ 123.244028][ T5001] ? lookup_one_len+0x2d0/0x2d0
[ 123.248938][ T5001] lookup_one_len+0x19d/0x2d0
[ 123.253657][ T5001] ? lookup_one_common+0x460/0x460
[ 123.258887][ T5001] reiserfs_lookup_privroot+0x85/0x1e0
[ 123.264389][ T5001] reiserfs_fill_super+0x1fa6/0x2440
[ 123.270312][ T5001] ? reiserfs_kill_sb+0x140/0x140
[ 123.275662][ T5001] ? snprintf+0xe5/0x140
[ 123.280077][ T5001] ? vscnprintf+0x80/0x80
[ 123.284620][ T5001] ? set_blocksize+0x1f3/0x370
[ 123.289661][ T5001] ? sb_set_blocksize+0xa5/0xe0
[ 123.294555][ T5001] mount_bdev+0x287/0x3c0
[ 123.299011][ T5001] ? reiserfs_kill_sb+0x140/0x140
[ 123.304393][ T5001] legacy_get_tree+0xe6/0x180
[ 123.309174][ T5001] ? remove_save_link+0x3e0/0x3e0
[ 123.314416][ T5001] vfs_get_tree+0x88/0x270
[ 123.319051][ T5001] do_new_mount+0x24a/0xa40
[ 123.324538][ T5001] __se_sys_mount+0x2e3/0x3d0
[ 123.329737][ T5001] ? __x64_sys_mount+0xc0/0xc0
[ 123.334948][ T5001] ? lockdep_hardirqs_on+0x94/0x140
[ 123.341051][ T5001] ? __x64_sys_mount+0x1c/0xc0
[ 123.346318][ T5001] do_syscall_64+0x4c/0xa0
[ 123.351088][ T5001] ? clear_bhb_loop+0x30/0x80
[ 123.356392][ T5001] ? clear_bhb_loop+0x30/0x80
[ 123.361106][ T5001] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 123.367312][ T5001] RIP: 0033:0x7f415ff2eb8a
[ 123.372066][ T5001] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 123.394418][ T5001] RSP: 002b:00007f415f193e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 123.403669][ T5001] RAX: ffffffffffffffda RBX: 00007f415f193ee0 RCX: 00007f415ff2eb8a
[ 123.412125][ T5001] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f415f193ea0
[ 123.420234][ T5001] RBP: 0000400000000180 R08: 00007f415f193ee0 R09: 000000000001801c
[ 123.428511][ T5001] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 123.436605][ T5001] R13: 00007f415f193ea0 R14: 000000000000112d R15: 0000400000000300
[ 123.444796][ T5001]
[ 123.448250][ T5001] Kernel Offset: disabled
[ 123.452600][ T5001] Rebooting in 86400 seconds..