Warning: Permanently added '10.128.1.100' (ED25519) to the list of known hosts.
2026/01/29 02:51:30 parsed 1 programs
Setting up swapspace version 1, size = 127995904 bytes
[ 91.734942][ T4659] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 93.223624][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.240737][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.248272][ T4222] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.256745][ T4222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.266962][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 93.274769][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 94.874455][ T4726] chnl_net:caif_netlink_parms(): no params data found
[ 94.989607][ T4726] bridge0: port 1(bridge_slave_0) entered blocking state
[ 94.997067][ T4726] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.005339][ T4726] device bridge_slave_0 entered promiscuous mode
[ 95.013559][ T4726] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.021193][ T4726] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.029139][ T4726] device bridge_slave_1 entered promiscuous mode
[ 95.046741][ T4726] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 95.057552][ T4726] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 95.077425][ T4726] team0: Port device team_slave_0 added
[ 95.085393][ T4726] team0: Port device team_slave_1 added
[ 95.100359][ T4726] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 95.107531][ T4726] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 95.133864][ T4726] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 95.146085][ T4726] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 95.153028][ T4726] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 95.179148][ T4726] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 95.205890][ T4726] device hsr_slave_0 entered promiscuous mode
[ 95.212532][ T4726] device hsr_slave_1 entered promiscuous mode
[ 95.865770][ T4726] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.877388][ T4726] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.887490][ T4726] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.899634][ T4726] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 96.020455][ T4726] 8021q: adding VLAN 0 to HW filter on device bond0
[ 96.033716][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 96.041979][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 96.053524][ T4726] 8021q: adding VLAN 0 to HW filter on device team0
[ 96.095762][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 96.106264][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 96.116694][ T1231] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.123773][ T1231] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.133675][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 96.143181][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 96.153031][ T1231] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.160225][ T1231] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.169314][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 96.184940][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 96.193391][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 96.202243][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 96.215973][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 96.232800][ T4726] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 96.244076][ T4726] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 96.259015][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 96.267616][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 96.277961][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 96.288202][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 96.298305][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 96.308197][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 96.317972][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 96.327276][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 96.516928][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 96.524512][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 96.542257][ T4726] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.563129][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 96.573179][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 96.594298][ T4726] device veth0_vlan entered promiscuous mode
[ 96.604542][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 96.613771][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 96.631208][ T4726] device veth1_vlan entered promiscuous mode
[ 96.640024][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 96.648451][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 96.658067][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 96.701637][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 96.716682][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 96.736523][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 96.758724][ T4726] device veth0_macvtap entered promiscuous mode
[ 96.779955][ T4726] device veth1_macvtap entered promiscuous mode
[ 96.809182][ T4726] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.818792][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 96.827816][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 96.837812][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 96.846810][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 96.860812][ T4726] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.869319][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 96.886696][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 96.910813][ T4726] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.925604][ T4726] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.934312][ T4726] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.943449][ T4726] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2026/01/29 02:51:39 executed programs: 0
[ 98.417619][ T4882] chnl_net:caif_netlink_parms(): no params data found
[ 98.519511][ T4882] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.529322][ T4882] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.537814][ T4882] device bridge_slave_0 entered promiscuous mode
[ 98.557816][ T144] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.571058][ T4882] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.581256][ T4882] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.589627][ T4882] device bridge_slave_1 entered promiscuous mode
[ 98.616719][ T4882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 98.628334][ T4882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 98.657491][ T4882] team0: Port device team_slave_0 added
[ 98.666477][ T4882] team0: Port device team_slave_1 added
[ 98.688399][ T4882] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 98.695565][ T4882] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.722508][ T4882] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 98.739022][ T4882] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 98.746126][ T4882] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 98.774573][ T4882] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 98.817888][ T4882] device hsr_slave_0 entered promiscuous mode
[ 98.827139][ T4882] device hsr_slave_1 entered promiscuous mode
[ 98.834369][ T4882] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 98.842448][ T4882] Cannot create hsr debugfs directory
[ 100.255340][ T4740] Bluetooth: hci0: command 0x0409 tx timeout
[ 101.030391][ T144] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.419086][ T144] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.468741][ T144] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 102.299410][ T4882] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 102.314468][ T4882] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 102.323097][ T4882] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 102.332181][ T4882] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 102.339370][ T4253] Bluetooth: hci0: command 0x041b tx timeout
[ 102.360192][ T144] device hsr_slave_0 left promiscuous mode
[ 102.366621][ T144] device hsr_slave_1 left promiscuous mode
[ 102.373202][ T144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 102.381069][ T144] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 102.389180][ T144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 102.398245][ T144] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 102.405940][ T144] device bridge_slave_1 left promiscuous mode
[ 102.412320][ T144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 102.420575][ T144] device bridge_slave_0 left promiscuous mode
[ 102.426961][ T144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.438817][ T144] device veth1_macvtap left promiscuous mode
[ 102.444919][ T144] device veth0_macvtap left promiscuous mode
[ 102.450953][ T144] device veth1_vlan left promiscuous mode
[ 102.456829][ T144] device veth0_vlan left promiscuous mode
[ 102.569039][ T144] team0 (unregistering): Port device team_slave_1 removed
[ 102.581930][ T144] team0 (unregistering): Port device team_slave_0 removed
[ 102.593538][ T144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 102.606589][ T144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 102.651645][ T144] bond0 (unregistering): Released all slaves
[ 102.706271][ T4882] 8021q: adding VLAN 0 to HW filter on device bond0
[ 102.721085][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 102.729039][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 102.739853][ T4882] 8021q: adding VLAN 0 to HW filter on device team0
[ 102.750041][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 102.759247][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 102.770192][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.777290][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 102.786226][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 102.797595][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 102.806857][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 102.815943][ T4222] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.823058][ T4222] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 102.831930][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 102.847242][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 102.868562][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 102.878282][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 102.887116][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 102.896570][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 102.905942][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 102.914248][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 102.922884][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 102.936798][ T4882] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 102.947957][ T4882] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 102.960374][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 102.970659][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 103.029605][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 103.037254][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 103.048848][ T4882] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 103.077145][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 103.087887][ T1231] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 103.108328][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 103.118251][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 103.130739][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 103.140001][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 103.150186][ T4882] device veth0_vlan entered promiscuous mode
[ 103.163568][ T4882] device veth1_vlan entered promiscuous mode
[ 103.187411][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 103.197199][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 103.205376][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 103.214024][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 103.233350][ T4882] device veth0_macvtap entered promiscuous mode
[ 103.244393][ T4882] device veth1_macvtap entered promiscuous mode
[ 103.260754][ T4882] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 103.270458][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 103.279253][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 103.289205][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 103.298484][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 103.312368][ T4882] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 103.320128][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 103.330778][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 103.343004][ T4882] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.353229][ T4882] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.362463][ T4882] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.372769][ T4882] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.429653][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.442751][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.463840][ T4222] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
2026/01/29 02:51:45 executed programs: 2
[ 103.477642][ T4222] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.486805][ T4222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.497365][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 103.618986][ T5149] loop0: detected capacity change from 0 to 8192
[ 103.717428][ T5149] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 103.737207][ T5149] REISERFS (device loop0): using ordered data mode
[ 103.743737][ T5149] reiserfs: using flush barriers
[ 103.774844][ T5149] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 103.815335][ T5149] REISERFS (device loop0): checking transaction log (loop0)
[ 103.838345][ T5149] REISERFS (device loop0): Using tea hash to sort names
[ 103.857839][ T5149] ==================================================================
[ 103.866077][ T5149] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x794/0x1130
[ 103.873645][ T5149] Read of size 18446744073709551584 at addr ffff88807ce66fa4 by task syz.0.17/5149
[ 103.882921][ T5149]
[ 103.885258][ T5149] CPU: 1 PID: 5149 Comm: syz.0.17 Not tainted syzkaller #0
[ 103.892553][ T5149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 103.902613][ T5149] Call Trace:
[ 103.905895][ T5149]
[ 103.908820][ T5149] dump_stack_lvl+0x188/0x250
[ 103.913502][ T5149] ? show_regs_print_info+0x20/0x20
[ 103.918959][ T5149] ? load_image+0x400/0x400
[ 103.923452][ T5149] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 103.928898][ T5149] ? __lock_acquire+0x13bc/0x7d10
[ 103.933914][ T5149] print_address_description+0x60/0x2d0
[ 103.939442][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 103.944937][ T5149] kasan_report+0xdf/0x130
[ 103.949339][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 103.954630][ T5149] ? journal_mark_dirty+0x21d/0xdf0
[ 103.959899][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 103.965192][ T5149] kasan_check_range+0x235/0x290
[ 103.970114][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 103.975381][ T5149] memmove+0x25/0x60
[ 103.979262][ T5149] leaf_paste_entries+0x794/0x1130
[ 103.984365][ T5149] balance_leaf+0xb2e5/0x10ec0
[ 103.989121][ T5149] ? mark_lock+0x94/0x320
[ 103.993438][ T5149] ? lock_chain_count+0x20/0x20
[ 103.998279][ T5149] ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 104.004155][ T5149] ? do_balance+0x930/0x930
[ 104.008644][ T5149] ? _raw_spin_unlock+0x40/0x40
[ 104.013478][ T5149] ? stack_trace_snprint+0xf0/0xf0
[ 104.018571][ T5149] ? stack_depot_save+0x404/0x440
[ 104.023581][ T5149] ? __kasan_kmalloc+0xcc/0xf0
[ 104.028324][ T5149] ? __kasan_kmalloc+0xb5/0xf0
[ 104.033069][ T5149] ? fix_nodes+0x60a2/0x8340
[ 104.037639][ T5149] ? reiserfs_paste_into_item+0x60b/0x810
[ 104.043339][ T5149] ? reiserfs_add_entry+0xa42/0xe10
[ 104.048520][ T5149] ? reiserfs_mkdir+0x6bc/0x920
[ 104.053353][ T5149] ? reiserfs_xattr_init+0x331/0x720
[ 104.058616][ T5149] ? reiserfs_fill_super+0x1fe6/0x2440
[ 104.064055][ T5149] ? mount_bdev+0x287/0x3c0
[ 104.068540][ T5149] ? legacy_get_tree+0xe6/0x180
[ 104.073369][ T5149] ? vfs_get_tree+0x88/0x270
[ 104.077941][ T5149] ? do_new_mount+0x24a/0xa40
[ 104.082599][ T5149] ? __se_sys_mount+0x2e3/0x3d0
[ 104.087427][ T5149] ? do_syscall_64+0x4c/0xa0
[ 104.092004][ T5149] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.098066][ T5149] ? __wake_up_bit+0x120/0x120
[ 104.102814][ T5149] ? get_parents+0x400/0xd20
[ 104.107382][ T5149] ? get_neighbors+0x9ba/0x1030
[ 104.112217][ T5149] ? reiserfs_prepare_for_journal+0x269/0x280
[ 104.118270][ T5149] ? fix_nodes+0x7bc3/0x8340
[ 104.122965][ T5149] do_balance+0x318/0x930
[ 104.127369][ T5149] ? get_right_neighbor_position+0x210/0x210
[ 104.133337][ T5149] ? reiserfs_paste_into_item+0x3b0/0x810
[ 104.139050][ T5149] reiserfs_paste_into_item+0x6dd/0x810
[ 104.144586][ T5149] ? reiserfs_cut_from_item+0x1fa0/0x1fa0
[ 104.150341][ T5149] ? reiserfs_get_parent+0x2f0/0x2f0
[ 104.155607][ T5149] ? inode_get_bytes+0x73/0xa0
[ 104.160357][ T5149] ? _find_first_zero_bit+0x60/0xf0
[ 104.165540][ T5149] reiserfs_add_entry+0xa42/0xe10
[ 104.170560][ T5149] ? drop_new_inode+0x60/0x60
[ 104.175333][ T5149] ? journal_begin+0x1f1/0x350
[ 104.180184][ T5149] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 104.186590][ T5149] reiserfs_mkdir+0x6bc/0x920
[ 104.191263][ T5149] ? reiserfs_symlink+0x790/0x790
[ 104.196273][ T5149] ? rwsem_write_trylock+0x135/0x1c0
[ 104.201576][ T5149] ? lookup_one_len+0x19d/0x2d0
[ 104.206444][ T5149] ? lookup_one_common+0x460/0x460
[ 104.211712][ T5149] reiserfs_xattr_init+0x331/0x720
[ 104.216813][ T5149] reiserfs_fill_super+0x1fe6/0x2440
[ 104.222089][ T5149] ? reiserfs_kill_sb+0x140/0x140
[ 104.227093][ T5149] ? snprintf+0xe5/0x140
[ 104.231333][ T5149] ? vscnprintf+0x80/0x80
[ 104.235645][ T5149] ? set_blocksize+0x1f3/0x370
[ 104.240401][ T5149] ? sb_set_blocksize+0xa5/0xe0
[ 104.245319][ T5149] mount_bdev+0x287/0x3c0
[ 104.249630][ T5149] ? reiserfs_kill_sb+0x140/0x140
[ 104.254647][ T5149] legacy_get_tree+0xe6/0x180
[ 104.259307][ T5149] ? remove_save_link+0x3e0/0x3e0
[ 104.264313][ T5149] vfs_get_tree+0x88/0x270
[ 104.268711][ T5149] do_new_mount+0x24a/0xa40
[ 104.273201][ T5149] __se_sys_mount+0x2e3/0x3d0
[ 104.277868][ T5149] ? __x64_sys_mount+0xc0/0xc0
[ 104.282616][ T5149] ? lockdep_hardirqs_on+0x94/0x140
[ 104.287893][ T5149] ? __x64_sys_mount+0x1c/0xc0
[ 104.292636][ T5149] do_syscall_64+0x4c/0xa0
[ 104.297032][ T5149] ? clear_bhb_loop+0x30/0x80
[ 104.301791][ T5149] ? clear_bhb_loop+0x30/0x80
[ 104.306448][ T5149] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.312329][ T5149] RIP: 0033:0x7f982a0ea18a
[ 104.316900][ T5149] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 104.336699][ T5149] RSP: 002b:00007f982974be58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 104.345108][ T5149] RAX: ffffffffffffffda RBX: 00007f982974bee0 RCX: 00007f982a0ea18a
[ 104.353065][ T5149] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 00007f982974bea0
[ 104.361027][ T5149] RBP: 0000200000000040 R08: 00007f982974bee0 R09: 000000000000800c
[ 104.369069][ T5149] R10: 000000000000800c R11: 0000000000000246 R12: 0000200000000000
[ 104.377109][ T5149] R13: 00007f982974bea0 R14: 0000000000001122 R15: 0000200000000300
[ 104.385081][ T5149]
[ 104.388086][ T5149]
[ 104.390387][ T5149] The buggy address belongs to the page:
[ 104.396027][ T5149] page:ffffea0001f39980 refcount:2 mapcount:0 mapping:ffff88801cbbdaf0 index:0x213 pfn:0x7ce66
[ 104.406327][ T5149] memcg:ffff888079748000
[ 104.410543][ T5149] aops:def_blk_aops ino:700000
[ 104.415288][ T5149] flags: 0xfff00000002032(referenced|lru|active|private|node=0|zone=1|lastcpupid=0x7ff)
[ 104.425084][ T5149] raw: 00fff00000002032 ffffea0001a49248 ffff888078c28030 ffff88801cbbdaf0
[ 104.433646][ T5149] raw: 0000000000000213 ffff88805cc26910 00000002ffffffff ffff888079748000
[ 104.442202][ T5149] page dumped because: kasan: bad access detected
[ 104.448814][ T5149] page_owner tracks the page as allocated
[ 104.454513][ T5149] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 5149, ts 103837812573, free_ts 103834635005
[ 104.471787][ T5149] get_page_from_freelist+0x1bbd/0x1ca0
[ 104.477763][ T5149] __alloc_pages+0x1ee/0x480
[ 104.482338][ T5149] __page_cache_alloc+0xce/0x440
[ 104.487256][ T5149] pagecache_get_page+0x9b6/0xf10
[ 104.492260][ T5149] __getblk_gfp+0x247/0xb60
[ 104.496742][ T5149] search_by_key+0x46c/0x4470
[ 104.501400][ T5149] reiserfs_read_locked_inode+0x195/0x26b0
[ 104.507183][ T5149] reiserfs_fill_super+0x12af/0x2440
[ 104.512554][ T5149] mount_bdev+0x287/0x3c0
[ 104.516867][ T5149] legacy_get_tree+0xe6/0x180
[ 104.521535][ T5149] vfs_get_tree+0x88/0x270
[ 104.525947][ T5149] do_new_mount+0x24a/0xa40
[ 104.530428][ T5149] __se_sys_mount+0x2e3/0x3d0
[ 104.535083][ T5149] do_syscall_64+0x4c/0xa0
[ 104.539579][ T5149] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.545455][ T5149] page last free stack trace:
[ 104.550107][ T5149] free_unref_page_prepare+0x637/0x6c0
[ 104.555556][ T5149] free_unref_page_list+0x119/0x820
[ 104.560732][ T5149] release_pages+0x186c/0x1be0
[ 104.565488][ T5149] tlb_finish_mmu+0x176/0x300
[ 104.570148][ T5149] unmap_region+0x344/0x3b0
[ 104.575180][ T5149] __do_munmap+0x9f8/0xdf0
[ 104.579600][ T5149] __vm_munmap+0x140/0x240
[ 104.584027][ T5149] __x64_sys_munmap+0x67/0x70
[ 104.588688][ T5149] do_syscall_64+0x4c/0xa0
[ 104.593099][ T5149] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.598984][ T5149]
[ 104.601289][ T5149] Memory state around the buggy address:
[ 104.606900][ T5149] ffff88807ce66e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 104.614942][ T5149] ffff88807ce66f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 104.622983][ T5149] >ffff88807ce66f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 104.631019][ T5149] ^
[ 104.636108][ T5149] ffff88807ce67000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 104.644188][ T5149] ffff88807ce67080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 104.652272][ T5149] ==================================================================
[ 104.660410][ T5149] Disabling lock debugging due to kernel taint
[ 104.670769][ T4287] Bluetooth: hci0: command 0x040f tx timeout
[ 104.698531][ T5149] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 104.705758][ T5149] CPU: 0 PID: 5149 Comm: syz.0.17 Tainted: G B syzkaller #0
[ 104.714358][ T5149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 104.724406][ T5149] Call Trace:
[ 104.727671][ T5149]
[ 104.730579][ T5149] dump_stack_lvl+0x188/0x250
[ 104.735243][ T5149] ? show_regs_print_info+0x20/0x20
[ 104.740416][ T5149] ? load_image+0x400/0x400
[ 104.744990][ T5149] panic+0x2e5/0x810
[ 104.748862][ T5149] ? bpf_jit_dump+0xd0/0xd0
[ 104.753344][ T5149] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 104.759302][ T5149] ? _raw_spin_unlock+0x40/0x40
[ 104.764146][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 104.769422][ T5149] check_panic_on_warn+0x80/0xa0
[ 104.774346][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 104.779613][ T5149] end_report+0x6d/0xf0
[ 104.783754][ T5149] kasan_report+0x102/0x130
[ 104.788245][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 104.793508][ T5149] ? journal_mark_dirty+0x21d/0xdf0
[ 104.798803][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 104.804073][ T5149] kasan_check_range+0x235/0x290
[ 104.809090][ T5149] ? leaf_paste_entries+0x794/0x1130
[ 104.814359][ T5149] memmove+0x25/0x60
[ 104.818233][ T5149] leaf_paste_entries+0x794/0x1130
[ 104.823334][ T5149] balance_leaf+0xb2e5/0x10ec0
[ 104.828170][ T5149] ? mark_lock+0x94/0x320
[ 104.832480][ T5149] ? lock_chain_count+0x20/0x20
[ 104.837310][ T5149] ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 104.843181][ T5149] ? do_balance+0x930/0x930
[ 104.847668][ T5149] ? _raw_spin_unlock+0x40/0x40
[ 104.852502][ T5149] ? stack_trace_snprint+0xf0/0xf0
[ 104.857802][ T5149] ? stack_depot_save+0x404/0x440
[ 104.862812][ T5149] ? __kasan_kmalloc+0xcc/0xf0
[ 104.867556][ T5149] ? __kasan_kmalloc+0xb5/0xf0
[ 104.872295][ T5149] ? fix_nodes+0x60a2/0x8340
[ 104.876866][ T5149] ? reiserfs_paste_into_item+0x60b/0x810
[ 104.882569][ T5149] ? reiserfs_add_entry+0xa42/0xe10
[ 104.887746][ T5149] ? reiserfs_mkdir+0x6bc/0x920
[ 104.892574][ T5149] ? reiserfs_xattr_init+0x331/0x720
[ 104.897834][ T5149] ? reiserfs_fill_super+0x1fe6/0x2440
[ 104.903268][ T5149] ? mount_bdev+0x287/0x3c0
[ 104.907744][ T5149] ? legacy_get_tree+0xe6/0x180
[ 104.912571][ T5149] ? vfs_get_tree+0x88/0x270
[ 104.917145][ T5149] ? do_new_mount+0x24a/0xa40
[ 104.921803][ T5149] ? __se_sys_mount+0x2e3/0x3d0
[ 104.926630][ T5149] ? do_syscall_64+0x4c/0xa0
[ 104.931222][ T5149] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 104.937273][ T5149] ? __wake_up_bit+0x120/0x120
[ 104.942205][ T5149] ? get_parents+0x400/0xd20
[ 104.946769][ T5149] ? get_neighbors+0x9ba/0x1030
[ 104.951591][ T5149] ? reiserfs_prepare_for_journal+0x269/0x280
[ 104.957632][ T5149] ? fix_nodes+0x7bc3/0x8340
[ 104.962224][ T5149] do_balance+0x318/0x930
[ 104.966531][ T5149] ? get_right_neighbor_position+0x210/0x210
[ 104.972631][ T5149] ? reiserfs_paste_into_item+0x3b0/0x810
[ 104.978336][ T5149] reiserfs_paste_into_item+0x6dd/0x810
[ 104.983869][ T5149] ? reiserfs_cut_from_item+0x1fa0/0x1fa0
[ 104.989801][ T5149] ? reiserfs_get_parent+0x2f0/0x2f0
[ 104.995070][ T5149] ? inode_get_bytes+0x73/0xa0
[ 104.999818][ T5149] ? _find_first_zero_bit+0x60/0xf0
[ 105.005011][ T5149] reiserfs_add_entry+0xa42/0xe10
[ 105.010313][ T5149] ? drop_new_inode+0x60/0x60
[ 105.014985][ T5149] ? journal_begin+0x1f1/0x350
[ 105.019828][ T5149] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 105.026220][ T5149] reiserfs_mkdir+0x6bc/0x920
[ 105.030966][ T5149] ? reiserfs_symlink+0x790/0x790
[ 105.036066][ T5149] ? rwsem_write_trylock+0x135/0x1c0
[ 105.041327][ T5149] ? lookup_one_len+0x19d/0x2d0
[ 105.046154][ T5149] ? lookup_one_common+0x460/0x460
[ 105.051265][ T5149] reiserfs_xattr_init+0x331/0x720
[ 105.056358][ T5149] reiserfs_fill_super+0x1fe6/0x2440
[ 105.061633][ T5149] ? reiserfs_kill_sb+0x140/0x140
[ 105.066633][ T5149] ? snprintf+0xe5/0x140
[ 105.070857][ T5149] ? vscnprintf+0x80/0x80
[ 105.075248][ T5149] ? set_blocksize+0x1f3/0x370
[ 105.079984][ T5149] ? sb_set_blocksize+0xa5/0xe0
[ 105.084813][ T5149] mount_bdev+0x287/0x3c0
[ 105.089133][ T5149] ? reiserfs_kill_sb+0x140/0x140
[ 105.094132][ T5149] legacy_get_tree+0xe6/0x180
[ 105.098899][ T5149] ? remove_save_link+0x3e0/0x3e0
[ 105.103911][ T5149] vfs_get_tree+0x88/0x270
[ 105.108317][ T5149] do_new_mount+0x24a/0xa40
[ 105.112812][ T5149] __se_sys_mount+0x2e3/0x3d0
[ 105.117478][ T5149] ? __x64_sys_mount+0xc0/0xc0
[ 105.122316][ T5149] ? lockdep_hardirqs_on+0x94/0x140
[ 105.127493][ T5149] ? __x64_sys_mount+0x1c/0xc0
[ 105.132242][ T5149] do_syscall_64+0x4c/0xa0
[ 105.136637][ T5149] ? clear_bhb_loop+0x30/0x80
[ 105.141291][ T5149] ? clear_bhb_loop+0x30/0x80
[ 105.145943][ T5149] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 105.151813][ T5149] RIP: 0033:0x7f982a0ea18a
[ 105.156211][ T5149] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 105.176091][ T5149] RSP: 002b:00007f982974be58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 105.184857][ T5149] RAX: ffffffffffffffda RBX: 00007f982974bee0 RCX: 00007f982a0ea18a
[ 105.193168][ T5149] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 00007f982974bea0
[ 105.201127][ T5149] RBP: 0000200000000040 R08: 00007f982974bee0 R09: 000000000000800c
[ 105.209081][ T5149] R10: 000000000000800c R11: 0000000000000246 R12: 0000200000000000
[ 105.217043][ T5149] R13: 00007f982974bea0 R14: 0000000000001122 R15: 0000200000000300
[ 105.225354][ T5149]
[ 105.228658][ T5149] Kernel Offset: disabled
[ 105.232977][ T5149] Rebooting in 86400 seconds..