[ 54.942838][ T1034] bridge0: port 1(bridge_slave_0) entered disabled state
[ 54.967478][ T1034] device veth1_macvtap left promiscuous mode
[ 54.975377][ T1034] device veth0_macvtap left promiscuous mode
[ 54.982600][ T1034] device veth1_vlan left promiscuous mode
[ 54.990913][ T1034] device veth0_vlan left promiscuous mode
[ 55.204202][ T1034] team0 (unregistering): Port device team_slave_1 removed
[ 55.216891][ T1034] team0 (unregistering): Port device team_slave_0 removed
[ 55.231139][ T1034] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 55.245605][ T1034] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 55.293091][ T1034] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.1.174' (ECDSA) to the list of known hosts.
2022/05/09 10:41:44 parsed 1 programs
[ 67.742105][ T27] audit: type=1400 audit(1652092904.615:188): avc: denied { mounton } for pid=4009 comm="syz-executor" path="/syzcgroup/unified" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[ 67.744426][ T4009] cgroup: Unknown subsys name 'net'
[ 67.776232][ T4009] cgroup: Unknown subsys name 'rlimit'
2022/05/09 10:41:44 executed programs: 0
[ 67.785410][ T27] audit: type=1400 audit(1652092904.665:189): avc: denied { mounton } for pid=4009 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 67.820989][ T27] audit: type=1400 audit(1652092904.665:190): avc: denied { mount } for pid=4009 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 67.851532][ T27] audit: type=1400 audit(1652092904.665:191): avc: denied { create } for pid=4009 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 67.873695][ T27] audit: type=1400 audit(1652092904.665:192): avc: denied { write } for pid=4009 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 67.895683][ T27] audit: type=1400 audit(1652092904.665:193): avc: denied { read } for pid=4009 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 67.917387][ T27] audit: type=1400 audit(1652092904.705:194): avc: denied { read } for pid=3179 comm="dhcpcd" name="n79" dev="tmpfs" ino=1525 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 67.941828][ T27] audit: type=1400 audit(1652092904.705:195): avc: denied { open } for pid=3179 comm="dhcpcd" path="/run/udev/data/n79" dev="tmpfs" ino=1525 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 67.965659][ T27] audit: type=1400 audit(1652092904.705:196): avc: denied { getattr } for pid=3179 comm="dhcpcd" path="/run/udev/data/n79" dev="tmpfs" ino=1525 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 67.994264][ T27] audit: type=1400 audit(1652092904.725:197): avc: denied { create } for pid=4014 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 70.938473][ T3604] Bluetooth: hci0: Opcode 0x c03 failed: -110
[ 73.027947][ T27] kauditd_printk_skb: 4 callbacks suppressed
[ 73.027957][ T27] audit: type=1400 audit(1652092909.895:202): avc: denied { ioctl } for pid=4062 comm="syz-executor.0" path="socket:[29031]" dev="sockfs" ino=29031 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 73.028036][ T3605] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 73.070121][ T3605] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 73.078059][ T3605] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 73.086208][ T3605] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 73.094497][ T3605] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 73.102151][ T3605] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 73.119957][ T27] audit: type=1400 audit(1652092909.995:203): avc: denied { read } for pid=4062 comm="syz-executor.0" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 73.145362][ T27] audit: type=1400 audit(1652092909.995:204): avc: denied { open } for pid=4062 comm="syz-executor.0" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 73.169142][ T27] audit: type=1400 audit(1652092909.995:205): avc: denied { mounton } for pid=4062 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 73.201244][ T4062] chnl_net:caif_netlink_parms(): no params data found
[ 73.237193][ T4062] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.244594][ T4062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.252613][ T4062] device bridge_slave_0 entered promiscuous mode
[ 73.260568][ T4062] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.267652][ T4062] bridge0: port 2(bridge_slave_1) entered disabled state
[ 73.275624][ T4062] device bridge_slave_1 entered promiscuous mode
[ 73.294109][ T4062] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 73.306293][ T4062] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 73.328074][ T4062] team0: Port device team_slave_0 added
[ 73.337497][ T4062] team0: Port device team_slave_1 added
[ 73.355337][ T4062] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 73.362383][ T4062] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 73.388834][ T4062] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 73.401392][ T4062] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 73.408794][ T4062] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 73.435092][ T4062] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 73.459719][ T4062] device hsr_slave_0 entered promiscuous mode
[ 73.467495][ T4062] device hsr_slave_1 entered promiscuous mode
[ 73.525148][ T4062] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.532548][ T4062] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 73.540020][ T4062] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.547271][ T4062] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 73.585739][ T4062] 8021q: adding VLAN 0 to HW filter on device bond0
[ 73.597580][ T2014] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 73.606895][ T2014] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.616021][ T2014] bridge0: port 2(bridge_slave_1) entered disabled state
[ 73.624714][ T2014] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 73.638075][ T4062] 8021q: adding VLAN 0 to HW filter on device team0
[ 73.649147][ T2014] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 73.659515][ T2014] bridge0: port 1(bridge_slave_0) entered blocking state
[ 73.666687][ T2014] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 73.684814][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 73.694465][ T26] bridge0: port 2(bridge_slave_1) entered blocking state
[ 73.702346][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 73.721498][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 73.731062][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 73.741024][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 73.749602][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 73.758434][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 73.769275][ T4062] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.785913][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.794247][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.807949][ T4062] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.972241][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.989687][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.998130][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 74.007018][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 74.017243][ T4062] device veth0_vlan entered promiscuous mode
[ 74.028145][ T4062] device veth1_vlan entered promiscuous mode
[ 74.046755][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 74.055972][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 74.065708][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 74.076951][ T4062] device veth0_macvtap entered promiscuous mode
[ 74.086478][ T4062] device veth1_macvtap entered promiscuous mode
[ 74.101566][ T4062] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.109666][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.121786][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 74.132664][ T4062] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.141362][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.191777][ T8] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.200896][ T8] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.210768][ T139] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 74.233415][ T8] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.242014][ T8] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.251183][ T3611] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 74.260626][ T27] audit: type=1400 audit(1652092911.135:206): avc: denied { mounton } for pid=4062 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2313 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 74.319603][ T4082] loop0: detected capacity change from 0 to 252287
[ 74.329889][ T27] audit: type=1400 audit(1652092911.195:207): avc: denied { mounton } for pid=4081 comm="syz-executor.0" path="/root/syzkaller-testdir770374182/syzkaller.C75S0g/0/file0" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 74.341790][ T4082] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 74.370696][ T4082] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 74.380809][ T4082] REISERFS (device loop0): using ordered data mode
[ 74.387406][ T4082] reiserfs: using flush barriers
[ 74.396245][ T4082] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30
[ 74.420623][ T4082] REISERFS (device loop0): checking transaction log (loop0)
[ 75.179444][ T139] Bluetooth: hci0: command 0x0409 tx timeout
[ 75.434109][ T4082] REISERFS (device loop0): Using tea hash to sort names
[ 75.442114][ T4082] ==================================================================
[ 75.450166][ T4082] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x405/0xa10
[ 75.457600][ T4082] Read of size 18446744073709551584 at addr ffff88806454cfa4 by task syz-executor.0/4082
[ 75.467372][ T4082]
[ 75.469854][ T4082] CPU: 1 PID: 4082 Comm: syz-executor.0 Not tainted 5.18.0-rc6-syzkaller #0
[ 75.479194][ T4082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 75.489495][ T4082] Call Trace:
[ 75.492769][ T4082]
[ 75.495692][ T4082] dump_stack_lvl+0x57/0x7d
[ 75.500178][ T4082] print_address_description.constprop.0.cold+0xeb/0x467
[ 75.507450][ T4082] ? leaf_paste_entries+0x405/0xa10
[ 75.512624][ T4082] kasan_report.cold+0xf4/0x1c6
[ 75.517460][ T4082] ? leaf_paste_entries+0x405/0xa10
[ 75.522884][ T4082] kasan_check_range+0x13d/0x180
[ 75.527990][ T4082] memmove+0x20/0x60
[ 75.531867][ T4082] leaf_paste_entries+0x405/0xa10
[ 75.536871][ T4082] balance_leaf+0x90cc/0xdb90
[ 75.541514][ T4082] ? fix_nodes+0x2954/0x80e0
[ 75.546165][ T4082] ? replace_key+0x160/0x160
[ 75.550753][ T4082] do_balance+0x2ee/0x760
[ 75.555140][ T4082] ? get_right_neighbor_position+0x170/0x170
[ 75.561266][ T4082] ? wait_for_completion_io_timeout+0x20/0x20
[ 75.567748][ T4082] reiserfs_paste_into_item+0x63c/0x7b0
[ 75.573268][ T4082] ? reiserfs_delete_object+0x1b0/0x1b0
[ 75.578875][ T4082] ? search_by_entry_key+0x980/0x980
[ 75.584217][ T4082] ? reiserfs_new_inode+0xe63/0x1e80
[ 75.589729][ T4082] reiserfs_add_entry+0x7fb/0xc50
[ 75.594718][ T4082] ? reiserfs_lookup+0x3e0/0x3e0
[ 75.601389][ T4082] ? wait_for_completion_io_timeout+0x20/0x20
[ 75.607428][ T4082] reiserfs_mkdir+0x5a3/0x860
[ 75.612108][ T4082] ? reiserfs_mknod+0x660/0x660
[ 75.617271][ T4082] ? down_write+0xdf/0x150
[ 75.621752][ T4082] ? rwsem_down_write_slowpath+0x1110/0x1110
[ 75.628284][ T4082] reiserfs_xattr_init+0x49d/0xb20
[ 75.633469][ T4082] reiserfs_fill_super+0x1c78/0x27a0
[ 75.639368][ T4082] ? reiserfs_remount+0x1290/0x1290
[ 75.644663][ T4082] ? pointer+0x700/0x700
[ 75.650407][ T4082] ? sget+0x3d6/0x4d0
[ 75.655154][ T4082] mount_bdev+0x2cb/0x3b0
[ 75.659458][ T4082] ? reiserfs_remount+0x1290/0x1290
[ 75.664721][ T4082] ? reiserfs_kill_sb+0x1d0/0x1d0
[ 75.669897][ T4082] legacy_get_tree+0xfa/0x1f0
[ 75.674962][ T4082] vfs_get_tree+0x7f/0x2c0
[ 75.679454][ T4082] path_mount+0x7e8/0x1a40
[ 75.683937][ T4082] ? finish_automount+0x900/0x900
[ 75.689045][ T4082] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 75.695084][ T4082] ? kmem_cache_free.part.0+0x11e/0x240
[ 75.700867][ T4082] ? lockdep_hardirqs_on+0x79/0x100
[ 75.706144][ T4082] __x64_sys_mount+0x1f5/0x260
[ 75.711056][ T4082] ? copy_mnt_ns+0xd20/0xd20
[ 75.716240][ T4082] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 75.722474][ T4082] ? syscall_enter_from_user_mode+0x21/0x70
[ 75.728675][ T4082] do_syscall_64+0x35/0x80
[ 75.733183][ T4082] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 75.739256][ T4082] RIP: 0033:0x7f4f8708a3ca
[ 75.743748][ T4082] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 75.763597][ T4082] RSP: 002b:00007f4f88230f88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 75.772077][ T4082] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f4f8708a3ca
[ 75.780482][ T4082] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4f88230fe0
[ 75.788600][ T4082] RBP: 00007f4f88231020 R08: 00007f4f88231020 R09: 0000000020000000
[ 75.796664][ T4082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 75.804742][ T4082] R13: 0000000020000100 R14: 00007f4f88230fe0 R15: 00000000200003c0
[ 75.812693][ T4082]
[ 75.815688][ T4082]
[ 75.817988][ T4082] The buggy address belongs to the physical page:
[ 75.824371][ T4082] page:ffffea0001915300 refcount:3 mapcount:0 mapping:ffff888147110b80 index:0x3d97 pfn:0x6454c
[ 75.834751][ T4082] memcg:ffff888079a38000
[ 75.839057][ T4082] aops:def_blk_aops ino:700000
[ 75.843978][ T4082] flags: 0xfff00000002022(referenced|active|private|node=0|zone=1|lastcpupid=0x7ff)
[ 75.853339][ T4082] raw: 00fff00000002022 0000000000000000 dead000000000122 ffff888147110b80
[ 75.861904][ T4082] raw: 0000000000003d97 ffff8880654c7cb0 00000003ffffffff ffff888079a38000
[ 75.870458][ T4082] page dumped because: kasan: bad access detected
[ 75.876842][ T4082] page_owner tracks the page as allocated
[ 75.882529][ T4082] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 4082, tgid 4081 (syz-executor.0), ts 75433652397, free_ts 11092793457
[ 75.903164][ T4082] get_page_from_freelist+0x178d/0x3dc0
[ 75.908809][ T4082] __alloc_pages+0x1b2/0x500
[ 75.914858][ T4082] folio_alloc+0x12/0x40
[ 75.919164][ T4082] __filemap_get_folio+0x3c3/0x9e0
[ 75.924331][ T4082] pagecache_get_page+0x10/0x1a0
[ 75.929250][ T4082] __getblk_slow+0x18e/0xb50
[ 75.933827][ T4082] search_by_key+0x35c/0x4380
[ 75.938659][ T4082] reiserfs_read_locked_inode+0x144/0x21c0
[ 75.944439][ T4082] reiserfs_fill_super+0x12e7/0x27a0
[ 75.949707][ T4082] mount_bdev+0x2cb/0x3b0
[ 75.954021][ T4082] legacy_get_tree+0xfa/0x1f0
[ 75.958760][ T4082] vfs_get_tree+0x7f/0x2c0
[ 75.963233][ T4082] path_mount+0x7e8/0x1a40
[ 75.967621][ T4082] __x64_sys_mount+0x1f5/0x260
[ 75.972443][ T4082] do_syscall_64+0x35/0x80
[ 75.977115][ T4082] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 75.983083][ T4082] page last free stack trace:
[ 75.987923][ T4082] free_pcp_prepare+0x549/0xd20
[ 75.992850][ T4082] free_unref_page+0x19/0x6a0
[ 75.997594][ T4082] free_contig_range+0xb1/0x180
[ 76.003296][ T4082] destroy_args+0x7e/0x503
[ 76.007706][ T4082] debug_vm_pgtable+0x1fc8/0x204c
[ 76.012722][ T4082] do_one_initcall+0xbe/0x440
[ 76.017378][ T4082] kernel_init_freeable+0x5ab/0x605
[ 76.022639][ T4082] kernel_init+0x14/0x130
[ 76.027118][ T4082] ret_from_fork+0x1f/0x30
[ 76.031771][ T4082]
[ 76.034164][ T4082] Memory state around the buggy address:
[ 76.040042][ T4082] ffff88806454ce80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 76.048254][ T4082] ffff88806454cf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 76.056285][ T4082] >ffff88806454cf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 76.064313][ T4082] ^
[ 76.069393][ T4082] ffff88806454d000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 76.077421][ T4082] ffff88806454d080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 76.085536][ T4082] ==================================================================
[ 76.101156][ T4082] Kernel panic - not syncing: panic_on_warn set ...
[ 76.107765][ T4082] CPU: 0 PID: 4082 Comm: syz-executor.0 Not tainted 5.18.0-rc6-syzkaller #0
[ 76.116573][ T4082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 76.126611][ T4082] Call Trace:
[ 76.129875][ T4082]
[ 76.132783][ T4082] dump_stack_lvl+0x57/0x7d
[ 76.137439][ T4082] panic+0x227/0x466
[ 76.141328][ T4082] ? panic_print_sys_info.part.0+0x69/0x69
[ 76.147202][ T4082] ? preempt_schedule_common+0x59/0xc0
[ 76.152664][ T4082] ? leaf_paste_entries+0x405/0xa10
[ 76.157925][ T4082] ? preempt_schedule_thunk+0x16/0x18
[ 76.163796][ T4082] ? leaf_paste_entries+0x405/0xa10
[ 76.168963][ T4082] end_report.part.0+0x3f/0x7c
[ 76.173701][ T4082] kasan_report.cold+0x93/0x1c6
[ 76.178544][ T4082] ? leaf_paste_entries+0x405/0xa10
[ 76.183757][ T4082] kasan_check_range+0x13d/0x180
[ 76.189018][ T4082] memmove+0x20/0x60
[ 76.193161][ T4082] leaf_paste_entries+0x405/0xa10
[ 76.198250][ T4082] balance_leaf+0x90cc/0xdb90
[ 76.203087][ T4082] ? fix_nodes+0x2954/0x80e0
[ 76.208023][ T4082] ? replace_key+0x160/0x160
[ 76.212683][ T4082] do_balance+0x2ee/0x760
[ 76.217171][ T4082] ? get_right_neighbor_position+0x170/0x170
[ 76.223365][ T4082] ? wait_for_completion_io_timeout+0x20/0x20
[ 76.229507][ T4082] reiserfs_paste_into_item+0x63c/0x7b0
[ 76.235219][ T4082] ? reiserfs_delete_object+0x1b0/0x1b0
[ 76.240747][ T4082] ? search_by_entry_key+0x980/0x980
[ 76.246073][ T4082] ? reiserfs_new_inode+0xe63/0x1e80
[ 76.251338][ T4082] reiserfs_add_entry+0x7fb/0xc50
[ 76.256443][ T4082] ? reiserfs_lookup+0x3e0/0x3e0
[ 76.261363][ T4082] ? wait_for_completion_io_timeout+0x20/0x20
[ 76.267582][ T4082] reiserfs_mkdir+0x5a3/0x860
[ 76.272415][ T4082] ? reiserfs_mknod+0x660/0x660
[ 76.277338][ T4082] ? down_write+0xdf/0x150
[ 76.281722][ T4082] ? rwsem_down_write_slowpath+0x1110/0x1110
[ 76.287724][ T4082] reiserfs_xattr_init+0x49d/0xb20
[ 76.292991][ T4082] reiserfs_fill_super+0x1c78/0x27a0
[ 76.298512][ T4082] ? reiserfs_remount+0x1290/0x1290
[ 76.303677][ T4082] ? pointer+0x700/0x700
[ 76.307890][ T4082] ? sget+0x3d6/0x4d0
[ 76.311925][ T4082] mount_bdev+0x2cb/0x3b0
[ 76.316394][ T4082] ? reiserfs_remount+0x1290/0x1290
[ 76.321564][ T4082] ? reiserfs_kill_sb+0x1d0/0x1d0
[ 76.326738][ T4082] legacy_get_tree+0xfa/0x1f0
[ 76.331478][ T4082] vfs_get_tree+0x7f/0x2c0
[ 76.335953][ T4082] path_mount+0x7e8/0x1a40
[ 76.340441][ T4082] ? finish_automount+0x900/0x900
[ 76.345626][ T4082] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 76.351588][ T4082] ? kmem_cache_free.part.0+0x11e/0x240
[ 76.357112][ T4082] ? lockdep_hardirqs_on+0x79/0x100
[ 76.362392][ T4082] __x64_sys_mount+0x1f5/0x260
[ 76.367332][ T4082] ? copy_mnt_ns+0xd20/0xd20
[ 76.371918][ T4082] ? lockdep_hardirqs_on_prepare+0x17b/0x400
[ 76.378326][ T4082] ? syscall_enter_from_user_mode+0x21/0x70
[ 76.384198][ T4082] do_syscall_64+0x35/0x80
[ 76.388588][ T4082] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 76.394451][ T4082] RIP: 0033:0x7f4f8708a3ca
[ 76.398954][ T4082] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 76.418979][ T4082] RSP: 002b:00007f4f88230f88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 76.427385][ T4082] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007f4f8708a3ca
[ 76.435343][ T4082] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f4f88230fe0
[ 76.443297][ T4082] RBP: 00007f4f88231020 R08: 00007f4f88231020 R09: 0000000020000000
[ 76.451397][ T4082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000020000000
[ 76.459347][ T4082] R13: 0000000020000100 R14: 00007f4f88230fe0 R15: 00000000200003c0
[ 76.467294][ T4082]
[ 76.470348][ T4082] Kernel Offset: disabled
[ 76.474649][ T4082] Rebooting in 86400 seconds..