Warning: Permanently added '10.128.0.139' (ED25519) to the list of known hosts.
2025/05/16 11:54:15 ignoring optional flag "sandboxArg"="0"
2025/05/16 11:54:16 parsed 1 programs
[ 106.125185][ T4606] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 108.857853][ T708] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.865918][ T708] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.887430][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 108.903128][ T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 108.911734][ T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 108.923106][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 109.157158][ T4647] chnl_net:caif_netlink_parms(): no params data found
[ 109.219388][ T4647] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.228994][ T4647] bridge0: port 1(bridge_slave_0) entered disabled state
[ 109.237311][ T4647] device bridge_slave_0 entered promiscuous mode
[ 109.245730][ T4647] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.253363][ T4647] bridge0: port 2(bridge_slave_1) entered disabled state
[ 109.261365][ T4647] device bridge_slave_1 entered promiscuous mode
[ 109.285231][ T4647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 109.297772][ T4647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 109.328837][ T4647] team0: Port device team_slave_0 added
[ 109.337877][ T4647] team0: Port device team_slave_1 added
[ 109.360633][ T4647] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.368116][ T4647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.394241][ T4647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.406639][ T4647] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.413984][ T4647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.441483][ T4647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.483792][ T4647] device hsr_slave_0 entered promiscuous mode
[ 109.490983][ T4647] device hsr_slave_1 entered promiscuous mode
[ 109.645935][ T1411] ODEBUG: Out of memory. ODEBUG disabled
[ 110.251913][ T4647] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 110.262257][ T4647] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 110.273561][ T4647] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 110.283333][ T4647] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 110.388950][ T4647] 8021q: adding VLAN 0 to HW filter on device bond0
[ 110.404226][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 110.414609][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 110.444698][ T4647] 8021q: adding VLAN 0 to HW filter on device team0
[ 110.456219][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 110.465802][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 110.475114][ T144] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.482250][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 110.520256][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 110.530530][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 110.539911][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 110.549951][ T144] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.557096][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 110.566694][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 110.578515][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 110.598580][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 110.609263][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 110.621152][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 110.631106][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 110.641532][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 110.650670][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 110.661324][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 110.690468][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 110.701002][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 110.713672][ T4647] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 110.898774][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 110.906336][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 110.924465][ T4647] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.961735][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 110.972303][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 111.025730][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 111.034776][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 111.046380][ T4647] device veth0_vlan entered promiscuous mode
[ 111.058557][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 111.066427][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 111.085729][ T4647] device veth1_vlan entered promiscuous mode
[ 111.140825][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 111.149447][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 111.158220][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 111.168757][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 111.180815][ T4647] device veth0_macvtap entered promiscuous mode
[ 111.211153][ T4647] device veth1_macvtap entered promiscuous mode
[ 111.248905][ T4647] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 111.256288][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 111.279203][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 111.287733][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 111.298489][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 111.310400][ T4647] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 111.323844][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 111.337041][ T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 111.348529][ T4647] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.359785][ T4647] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.369324][ T4647] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.379832][ T4647] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/05/16 11:54:28 executed programs: 0
[ 113.349811][ T1411] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 113.486909][ T4811] chnl_net:caif_netlink_parms(): no params data found
[ 113.544822][ T4811] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.552603][ T4811] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.561136][ T4811] device bridge_slave_0 entered promiscuous mode
[ 113.570138][ T4811] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.577714][ T4811] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.585923][ T4811] device bridge_slave_1 entered promiscuous mode
[ 113.616481][ T4811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 113.631008][ T4811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 113.669097][ T4811] team0: Port device team_slave_0 added
[ 113.678112][ T4811] team0: Port device team_slave_1 added
[ 113.704901][ T4811] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 113.714767][ T4811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 113.743811][ T4811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 113.756598][ T4811] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 113.766263][ T4811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 113.794297][ T4811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 113.833017][ T4811] device hsr_slave_0 entered promiscuous mode
[ 113.840117][ T4811] device hsr_slave_1 entered promiscuous mode
[ 113.847238][ T4811] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 113.854828][ T4811] Cannot create hsr debugfs directory
[ 115.366885][ T1324] Bluetooth: hci0: command 0x0409 tx timeout
[ 115.852346][ T1411] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.912504][ T1411] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 115.985563][ T1411] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 116.810011][ T4811] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 116.845591][ T4811] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 116.855476][ T4811] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 116.869706][ T4811] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 116.985197][ T4811] 8021q: adding VLAN 0 to HW filter on device bond0
[ 117.000183][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 117.012408][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 117.023986][ T4811] 8021q: adding VLAN 0 to HW filter on device team0
[ 117.070160][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 117.080785][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 117.091910][ T708] bridge0: port 1(bridge_slave_0) entered blocking state
[ 117.099067][ T708] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 117.111737][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 117.120739][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 117.132341][ T708] bridge0: port 2(bridge_slave_1) entered blocking state
[ 117.139579][ T708] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 117.157290][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 117.165971][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 117.175219][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 117.221846][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 117.231552][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 117.240232][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 117.250233][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 117.259308][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 117.267973][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 117.276454][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 117.285199][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 117.293862][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 117.304939][ T4811] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 117.432146][ T1411] device hsr_slave_0 left promiscuous mode
[ 117.439426][ T1411] device hsr_slave_1 left promiscuous mode
[ 117.446192][ T1411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 117.446919][ T4241] Bluetooth: hci0: command 0x041b tx timeout
[ 117.454805][ T1411] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 117.467661][ T1411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 117.475159][ T1411] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 117.483042][ T1411] device bridge_slave_1 left promiscuous mode
[ 117.489761][ T1411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 117.500072][ T1411] device bridge_slave_0 left promiscuous mode
[ 117.506562][ T1411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.519518][ T1411] device veth1_macvtap left promiscuous mode
[ 117.525552][ T1411] device veth0_macvtap left promiscuous mode
[ 117.537360][ T1411] device veth1_vlan left promiscuous mode
[ 117.543296][ T1411] device veth0_vlan left promiscuous mode
[ 117.683935][ T1411] team0 (unregistering): Port device team_slave_1 removed
[ 117.696663][ T1411] team0 (unregistering): Port device team_slave_0 removed
[ 117.709364][ T1411] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 117.724811][ T1411] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 117.781375][ T1411] bond0 (unregistering): Released all slaves
[ 117.848751][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 117.856253][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 117.868349][ T4811] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 117.889778][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 117.899317][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 117.919279][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 117.928153][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 117.937924][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 117.945782][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 117.956249][ T4811] device veth0_vlan entered promiscuous mode
[ 117.972076][ T4811] device veth1_vlan entered promiscuous mode
[ 117.991624][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 117.999952][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 118.009221][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 118.018013][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 118.029151][ T4811] device veth0_macvtap entered promiscuous mode
[ 118.041208][ T4811] device veth1_macvtap entered promiscuous mode
[ 118.066297][ T4811] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 118.074914][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 118.083913][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 118.095550][ T4811] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 118.103310][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 118.112699][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 118.125396][ T4811] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.134224][ T4811] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.144123][ T4811] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.153224][ T4811] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 118.207823][ T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.215800][ T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.244764][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
2025/05/16 11:54:33 executed programs: 2
[ 118.261729][ T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 118.270127][ T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 118.280556][ T708] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 118.412336][ T5044] loop0: detected capacity change from 0 to 8192
[ 118.527269][ T5044] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 118.537282][ T5044] REISERFS (device loop0): using ordered data mode
[ 118.544467][ T5044] reiserfs: using flush barriers
[ 118.553173][ T5044] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 118.570991][ T5044] REISERFS (device loop0): checking transaction log (loop0)
[ 118.588555][ T5044] REISERFS (device loop0): Using tea hash to sort names
[ 118.608041][ T5044] ==================================================================
[ 118.616386][ T5044] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[ 118.624235][ T5044] Read of size 4 at addr ffff88805b5b8fc4 by task syz.0.16/5044
[ 118.631885][ T5044]
[ 118.634237][ T5044] CPU: 1 PID: 5044 Comm: syz.0.16 Not tainted 5.15.182-syzkaller #0
[ 118.642321][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 118.652511][ T5044] Call Trace:
[ 118.655821][ T5044]
[ 118.658772][ T5044] dump_stack_lvl+0x168/0x230
[ 118.663489][ T5044] ? show_regs_print_info+0x20/0x20
[ 118.668711][ T5044] ? _printk+0xcc/0x110
[ 118.672989][ T5044] ? search_by_entry_key+0x597/0x1370
[ 118.678383][ T5044] ? load_image+0x3b0/0x3b0
[ 118.682895][ T5044] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 118.688296][ T5044] print_address_description+0x60/0x2d0
[ 118.693867][ T5044] ? search_by_entry_key+0x597/0x1370
[ 118.699256][ T5044] kasan_report+0xdf/0x130
[ 118.703826][ T5044] ? search_by_entry_key+0x597/0x1370
[ 118.709251][ T5044] search_by_entry_key+0x597/0x1370
[ 118.714500][ T5044] ? make_cpu_key+0x2b/0x220
[ 118.719110][ T5044] reiserfs_find_entry+0x2ff/0x18e0
[ 118.724334][ T5044] ? mutex_lock_io_nested+0x60/0x60
[ 118.729643][ T5044] ? reiserfs_get_parent+0x270/0x270
[ 118.735047][ T5044] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 118.741060][ T5044] ? mutex_lock_nested+0x17/0x20
[ 118.746286][ T5044] reiserfs_lookup+0x1a7/0x420
[ 118.751128][ T5044] ? reiserfs_find_entry+0x18e0/0x18e0
[ 118.756630][ T5044] ? __init_waitqueue_head+0xa5/0x150
[ 118.762029][ T5044] __lookup_slow+0x27d/0x3d0
[ 118.766660][ T5044] ? lookup_one_len+0x2c0/0x2c0
[ 118.771648][ T5044] lookup_one_len+0x18e/0x2c0
[ 118.776353][ T5044] ? lookup_one_common+0x460/0x460
[ 118.781581][ T5044] reiserfs_lookup_privroot+0x85/0x1e0
[ 118.787232][ T5044] reiserfs_fill_super+0x1f65/0x23e0
[ 118.792641][ T5044] ? reiserfs_kill_sb+0x140/0x140
[ 118.797771][ T5044] ? snprintf+0xd7/0x120
[ 118.802030][ T5044] ? vscnprintf+0x80/0x80
[ 118.806367][ T5044] ? set_blocksize+0x1f1/0x370
[ 118.811141][ T5044] ? sb_set_blocksize+0xa5/0xe0
[ 118.816099][ T5044] mount_bdev+0x287/0x3c0
[ 118.820446][ T5044] ? reiserfs_kill_sb+0x140/0x140
[ 118.825588][ T5044] legacy_get_tree+0xe6/0x180
[ 118.830369][ T5044] ? remove_save_link+0x3c0/0x3c0
[ 118.835581][ T5044] vfs_get_tree+0x88/0x270
[ 118.840011][ T5044] do_new_mount+0x24a/0xa40
[ 118.844636][ T5044] __se_sys_mount+0x2d6/0x3c0
[ 118.849338][ T5044] ? __x64_sys_mount+0xc0/0xc0
[ 118.854121][ T5044] ? lockdep_hardirqs_on+0x94/0x140
[ 118.859327][ T5044] ? __x64_sys_mount+0x1c/0xc0
[ 118.864113][ T5044] do_syscall_64+0x4c/0xa0
[ 118.868542][ T5044] ? clear_bhb_loop+0x15/0x70
[ 118.873318][ T5044] ? clear_bhb_loop+0x15/0x70
[ 118.878005][ T5044] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 118.883923][ T5044] RIP: 0033:0x7f4b34f3f90a
[ 118.888440][ T5044] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.908230][ T5044] RSP: 002b:00007f4b341aee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 118.916663][ T5044] RAX: ffffffffffffffda RBX: 00007f4b341aeef0 RCX: 00007f4b34f3f90a
[ 118.924764][ T5044] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f4b341aeeb0
[ 118.932758][ T5044] RBP: 0000400000000180 R08: 00007f4b341aeef0 R09: 000000000001801c
[ 118.940738][ T5044] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 118.948719][ T5044] R13: 00007f4b341aeeb0 R14: 000000000000112d R15: 0000400000000300
[ 118.956801][ T5044]
[ 118.959828][ T5044]
[ 118.962155][ T5044] The buggy address belongs to the page:
[ 118.967880][ T5044] page:ffffea00016d6e00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x5b5b8
[ 118.978053][ T5044] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 118.985480][ T5044] raw: 00fff00000000000 ffffea00016d6e48 ffffea00016d6dc8 0000000000000000
[ 118.994081][ T5044] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 119.002779][ T5044] page dumped because: kasan: bad access detected
[ 119.009223][ T5044] page_owner tracks the page as freed
[ 119.014704][ T5044] page last allocated via order 0, migratetype Movable, gfp_mask 0x8(__GFP_MOVABLE), pid 1, ts 18407893771, free_ts 19292985153
[ 119.028019][ T5044] split_map_pages+0x277/0x4c0
[ 119.032813][ T5044] isolate_freepages_range+0x3dd/0x430
[ 119.038280][ T5044] alloc_contig_range+0x97e/0xcd0
[ 119.043306][ T5044] alloc_contig_pages+0x390/0x490
[ 119.048333][ T5044] debug_vm_pgtable_alloc_huge_page+0xbf/0x110
[ 119.054494][ T5044] init_args+0xb3a/0xdd0
[ 119.058747][ T5044] debug_vm_pgtable+0x42/0x370
[ 119.063515][ T5044] do_one_initcall+0x1ee/0x680
[ 119.068372][ T5044] do_initcall_level+0x137/0x1f0
[ 119.073331][ T5044] do_initcalls+0x4b/0x90
[ 119.077688][ T5044] kernel_init_freeable+0x3ce/0x560
[ 119.082898][ T5044] kernel_init+0x19/0x1b0
[ 119.087237][ T5044] ret_from_fork+0x1f/0x30
[ 119.091670][ T5044] page last free stack trace:
[ 119.096338][ T5044] free_unref_page_prepare+0x637/0x6c0
[ 119.101981][ T5044] free_unref_page+0x94/0x280
[ 119.106860][ T5044] free_contig_range+0x96/0xf0
[ 119.111728][ T5044] destroy_args+0xef/0x8b0
[ 119.116280][ T5044] debug_vm_pgtable+0x318/0x370
[ 119.121137][ T5044] do_one_initcall+0x1ee/0x680
[ 119.125917][ T5044] do_initcall_level+0x137/0x1f0
[ 119.130875][ T5044] do_initcalls+0x4b/0x90
[ 119.135215][ T5044] kernel_init_freeable+0x3ce/0x560
[ 119.140420][ T5044] kernel_init+0x19/0x1b0
[ 119.144765][ T5044] ret_from_fork+0x1f/0x30
[ 119.149187][ T5044]
[ 119.151509][ T5044] Memory state around the buggy address:
[ 119.157143][ T5044] ffff88805b5b8e80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 119.165228][ T5044] ffff88805b5b8f00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 119.173295][ T5044] >ffff88805b5b8f80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 119.181358][ T5044] ^
[ 119.187516][ T5044] ffff88805b5b9000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 119.195576][ T5044] ffff88805b5b9080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 119.203636][ T5044] ==================================================================
[ 119.211789][ T5044] Disabling lock debugging due to kernel taint
[ 119.228901][ T5044] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 119.236147][ T5044] CPU: 1 PID: 5044 Comm: syz.0.16 Tainted: G B 5.15.182-syzkaller #0
[ 119.245526][ T5044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[ 119.255589][ T5044] Call Trace:
[ 119.258885][ T5044]
[ 119.261900][ T5044] dump_stack_lvl+0x168/0x230
[ 119.266585][ T5044] ? show_regs_print_info+0x20/0x20
[ 119.271780][ T5044] ? load_image+0x3b0/0x3b0
[ 119.276279][ T5044] panic+0x2c9/0x7f0
[ 119.280173][ T5044] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 119.286410][ T5044] ? bpf_jit_dump+0xd0/0xd0
[ 119.290913][ T5044] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 119.296947][ T5044] ? _raw_spin_unlock+0x40/0x40
[ 119.301794][ T5044] ? search_by_entry_key+0x597/0x1370
[ 119.307157][ T5044] check_panic_on_warn+0x80/0xa0
[ 119.312186][ T5044] ? search_by_entry_key+0x597/0x1370
[ 119.317638][ T5044] end_report+0x6d/0xf0
[ 119.321921][ T5044] kasan_report+0x102/0x130
[ 119.326427][ T5044] ? search_by_entry_key+0x597/0x1370
[ 119.331897][ T5044] search_by_entry_key+0x597/0x1370
[ 119.337196][ T5044] ? make_cpu_key+0x2b/0x220
[ 119.341780][ T5044] reiserfs_find_entry+0x2ff/0x18e0
[ 119.347087][ T5044] ? mutex_lock_io_nested+0x60/0x60
[ 119.352284][ T5044] ? reiserfs_get_parent+0x270/0x270
[ 119.357562][ T5044] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 119.363556][ T5044] ? mutex_lock_nested+0x17/0x20
[ 119.368497][ T5044] reiserfs_lookup+0x1a7/0x420
[ 119.373253][ T5044] ? reiserfs_find_entry+0x18e0/0x18e0
[ 119.378712][ T5044] ? __init_waitqueue_head+0xa5/0x150
[ 119.384081][ T5044] __lookup_slow+0x27d/0x3d0
[ 119.388752][ T5044] ? lookup_one_len+0x2c0/0x2c0
[ 119.393605][ T5044] lookup_one_len+0x18e/0x2c0
[ 119.398276][ T5044] ? lookup_one_common+0x460/0x460
[ 119.403594][ T5044] reiserfs_lookup_privroot+0x85/0x1e0
[ 119.409077][ T5044] reiserfs_fill_super+0x1f65/0x23e0
[ 119.414359][ T5044] ? reiserfs_kill_sb+0x140/0x140
[ 119.419375][ T5044] ? snprintf+0xd7/0x120
[ 119.423776][ T5044] ? vscnprintf+0x80/0x80
[ 119.428098][ T5044] ? set_blocksize+0x1f1/0x370
[ 119.432852][ T5044] ? sb_set_blocksize+0xa5/0xe0
[ 119.437696][ T5044] mount_bdev+0x287/0x3c0
[ 119.442029][ T5044] ? reiserfs_kill_sb+0x140/0x140
[ 119.447134][ T5044] legacy_get_tree+0xe6/0x180
[ 119.451808][ T5044] ? remove_save_link+0x3c0/0x3c0
[ 119.456828][ T5044] vfs_get_tree+0x88/0x270
[ 119.461259][ T5044] do_new_mount+0x24a/0xa40
[ 119.465761][ T5044] __se_sys_mount+0x2d6/0x3c0
[ 119.470580][ T5044] ? __x64_sys_mount+0xc0/0xc0
[ 119.475374][ T5044] ? lockdep_hardirqs_on+0x94/0x140
[ 119.480563][ T5044] ? __x64_sys_mount+0x1c/0xc0
[ 119.485326][ T5044] do_syscall_64+0x4c/0xa0
[ 119.489741][ T5044] ? clear_bhb_loop+0x15/0x70
[ 119.494408][ T5044] ? clear_bhb_loop+0x15/0x70
[ 119.499165][ T5044] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 119.505055][ T5044] RIP: 0033:0x7f4b34f3f90a
[ 119.509557][ T5044] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 119.529419][ T5044] RSP: 002b:00007f4b341aee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 119.538042][ T5044] RAX: ffffffffffffffda RBX: 00007f4b341aeef0 RCX: 00007f4b34f3f90a
[ 119.546299][ T5044] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f4b341aeeb0
[ 119.554388][ T5044] RBP: 0000400000000180 R08: 00007f4b341aeef0 R09: 000000000001801c
[ 119.562446][ T5044] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 119.570764][ T5044] R13: 00007f4b341aeeb0 R14: 000000000000112d R15: 0000400000000300
[ 119.578770][ T5044]
[ 119.582103][ T5044] Kernel Offset: disabled
[ 119.586553][ T5044] Rebooting in 86400 seconds..