[   69.610247][   T25] cfg80211: failed to load regulatory.db
[   69.612101][ T2064] ieee802154 phy0 wpan0: encryption failed: -22
[   69.613118][ T2064] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '10.128.1.27' (ED25519) to the list of known hosts.
1970/01/01 00:01:10 ignoring optional flag "type"="gce"
1970/01/01 00:01:10 parsed 1 programs
[   71.690801][ T4421] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   73.234805][  T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.236137][  T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.239896][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   73.244321][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.245552][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.247307][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   73.650697][ T4554] chnl_net:caif_netlink_parms(): no params data found
[   73.670237][ T4554] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.671499][ T4554] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.673054][ T4554] device bridge_slave_0 entered promiscuous mode
[   73.675323][ T4554] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.676343][ T4554] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.677782][ T4554] device bridge_slave_1 entered promiscuous mode
[   73.686526][ T4554] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.689539][ T4554] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.698136][ T4554] team0: Port device team_slave_0 added
[   73.701255][ T4554] team0: Port device team_slave_1 added
[   73.708079][ T4554] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.709351][ T4554] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.713378][ T4554] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.715661][ T4554] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.716701][ T4554] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.721096][ T4554] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.779707][ T4554] device hsr_slave_0 entered promiscuous mode
[   73.818396][ T4554] device hsr_slave_1 entered promiscuous mode
[   74.360107][ T4554] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   74.370013][ T4554] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   74.399460][ T4554] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   74.451696][ T4554] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   74.542536][ T4554] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.546452][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   74.547968][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   74.560229][ T4554] 8021q: adding VLAN 0 to HW filter on device team0
[   74.562702][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.564327][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.565827][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.567013][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.569313][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   74.579895][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.581466][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.582890][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.583967][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.585351][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.586872][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.590085][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   74.592059][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.593887][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   74.596195][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.597635][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   74.600733][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   74.604906][ T4554] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   74.606756][ T4554] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   74.611480][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   74.613042][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   74.614598][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   74.655097][ T4554] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.659408][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   74.660686][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   74.665225][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   74.666700][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   74.674457][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   74.675988][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   74.677488][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   74.679901][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   74.684951][ T4554] device veth0_vlan entered promiscuous mode
[   74.688133][ T4554] device veth1_vlan entered promiscuous mode
[   74.695998][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   74.697560][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   74.701338][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   74.702836][  T603] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   74.706563][ T4554] device veth0_macvtap entered promiscuous mode
[   74.709487][ T4554] device veth1_macvtap entered promiscuous mode
[   74.715432][ T4554] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.717873][ T4554] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.720575][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   74.722143][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   74.723600][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   74.725093][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   74.726569][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   74.729294][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   74.731496][ T4554] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.732794][ T4554] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.734136][ T4554] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.735412][ T4554] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:01:15 executed programs: 0
[   75.096962][ T4695] chnl_net:caif_netlink_parms(): no params data found
[   75.117526][ T4695] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.121014][ T4695] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.123867][ T4695] device bridge_slave_0 entered promiscuous mode
[   75.126465][ T4695] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.127709][ T4695] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.129557][ T4695] device bridge_slave_1 entered promiscuous mode
[   75.140652][ T4695] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.143113][ T4695] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.153454][ T4695] team0: Port device team_slave_0 added
[   75.155397][ T4695] team0: Port device team_slave_1 added
[   75.182800][ T4695] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.183970][ T4695] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.188121][ T4695] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.191052][ T4695] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.192125][ T4695] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   75.196306][ T4695] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.251299][ T4695] device hsr_slave_0 entered promiscuous mode
[   75.298727][ T4695] device hsr_slave_1 entered promiscuous mode
[   75.318317][ T4695] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.319648][ T4695] Cannot create hsr debugfs directory
[   75.360194][ T4695] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.048370][    T7] Bluetooth: hci1: command 0x0409 tx timeout
[   78.430993][ T4695] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.128419][ T4100] Bluetooth: hci1: command 0x041b tx timeout
[   80.541781][ T4695] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.583395][ T4695] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.724112][ T4695] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   80.758497][ T4695] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   80.799428][ T4695] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   80.819768][ T4695] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   80.893772][ T4695] 8021q: adding VLAN 0 to HW filter on device bond0
[   80.899129][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   80.900717][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   80.903665][ T4695] 8021q: adding VLAN 0 to HW filter on device team0
[   80.906248][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   80.907794][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   80.910770][  T136] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.911884][  T136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   80.913317][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   80.916674][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   80.918433][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   80.920119][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.921305][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   80.924097][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   80.926890][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   80.930596][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   80.932659][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   80.934312][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   80.936886][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   80.940118][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   80.951886][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   80.953410][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   80.956140][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   80.957689][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   80.961292][ T4695] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   81.012793][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   81.014133][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   81.017802][ T4695] 8021q: adding VLAN 0 to HW filter on device batadv0
[   81.024629][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   81.026323][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   81.033882][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   81.035465][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   81.037141][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   81.039406][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   81.041998][ T4695] device veth0_vlan entered promiscuous mode
[   81.049861][ T4695] device veth1_vlan entered promiscuous mode
[   81.057660][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   81.059940][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   81.061295][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   81.062750][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.065428][ T4695] device veth0_macvtap entered promiscuous mode
[   81.068049][ T4695] device veth1_macvtap entered promiscuous mode
[   81.081262][ T4695] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.083013][ T4695] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.085080][ T4695] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.086300][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   81.087876][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   81.089887][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   81.091483][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.093991][ T4695] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.095683][ T4695] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.097789][ T4695] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.099124][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   81.100621][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.103191][ T4695] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.104668][ T4695] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.106130][ T4695] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.107535][ T4695] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.129440][  T603] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.130850][  T603] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.132501][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.141139][  T603] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.142348][  T603] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.143859][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:21 executed programs: 2
[   81.185849][ T4954] loop0: detected capacity change from 0 to 8192
[   81.208380][ T4939] Bluetooth: hci1: command 0x040f tx timeout
[   81.238850][ T4954] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   81.240617][ T4954] REISERFS (device loop0): using ordered data mode
[   81.241639][ T4954] reiserfs: using flush barriers
[   81.243115][ T4954] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   81.245973][ T4954] REISERFS (device loop0): checking transaction log (loop0)
[   81.249434][ T4954] REISERFS (device loop0): Using tea hash to sort names
[   81.250786][ T4954] REISERFS (device loop0): using 3.5.x disk format
[   81.252443][ T4954] ==================================================================
[   81.253747][ T4954] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x4d8/0x924
[   81.254830][ T4954] Read of size 18446744073709551592 at addr ffff0000e7810fa4 by task syz.0.15/4954
[   81.256243][ T4954] 
[   81.256562][ T4954] CPU: 0 PID: 4954 Comm: syz.0.15 Not tainted syzkaller #0
[   81.257629][ T4954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   81.259113][ T4954] Call trace:
[   81.259615][ T4954]  dump_backtrace+0x0/0x43c
[   81.260250][ T4954]  show_stack+0x2c/0x3c
[   81.260839][ T4954]  __dump_stack+0x30/0x40
[   81.261516][ T4954]  dump_stack_lvl+0xf8/0x160
[   81.262192][ T4954]  print_address_description+0x78/0x30c
[   81.263045][ T4954]  kasan_report+0xec/0x15c
[   81.263717][ T4954]  kasan_check_range+0x270/0x2b0
[   81.264421][ T4954]  memmove+0x90/0xe8
[   81.264999][ T4954]  leaf_paste_entries+0x4d8/0x924
[   81.265701][ T4954]  balance_leaf+0x81d0/0xd2f4
[   81.266336][ T4954]  do_balance+0x260/0x778
[   81.266951][ T4954]  reiserfs_paste_into_item+0x5b4/0x6d0
[   81.267687][ T4954]  reiserfs_add_entry+0x828/0xbe4
[   81.268349][ T4954]  reiserfs_mkdir+0x588/0x788
[   81.268994][ T4954]  reiserfs_xattr_init+0x2b0/0x6dc
[   81.269708][ T4954]  reiserfs_fill_super+0x17ec/0x1bb4
[   81.270454][ T4954]  mount_bdev+0x264/0x358
[   81.271182][ T4954]  get_super_block+0x44/0x58
[   81.271846][ T4954]  legacy_get_tree+0xd4/0x16c
[   81.272527][ T4954]  vfs_get_tree+0x90/0x274
[   81.273161][ T4954]  do_new_mount+0x228/0x810
[   81.273931][ T4954]  path_mount+0x5b4/0x1000
[   81.274698][ T4954]  __arm64_sys_mount+0x514/0x5e4
[   81.275518][ T4954]  invoke_syscall+0x98/0x2b8
[   81.276266][ T4954]  el0_svc_common+0x138/0x258
[   81.277002][ T4954]  do_el0_svc+0x58/0x14c
[   81.277668][ T4954]  el0_svc+0x78/0x1e0
[   81.278304][ T4954]  el0t_64_sync_handler+0xcc/0xe4
[   81.279102][ T4954]  el0t_64_sync+0x1a0/0x1a4
[   81.279862][ T4954] 
[   81.280268][ T4954] The buggy address belongs to the page:
[   81.281199][ T4954] page:000000004b84f330 refcount:3 mapcount:0 mapping:0000000064c848ea index:0x213 pfn:0x127810
[   81.282930][ T4954] memcg:ffff0000ca8c8000
[   81.283653][ T4954] aops:def_blk_aops ino:700000
[   81.284438][ T4954] flags: 0x5ffc00000002022(referenced|active|private|node=0|zone=2|lastcpupid=0x7ff)
[   81.286059][ T4954] raw: 05ffc00000002022 0000000000000000 dead000000000122 ffff0000c049db08
[   81.287364][ T4954] raw: 0000000000000213 ffff0000de8ed1d0 00000003ffffffff ffff0000ca8c8000
[   81.288616][ T4954] page dumped because: kasan: bad access detected
[   81.289626][ T4954] 
[   81.289975][ T4954] Memory state around the buggy address:
[   81.290905][ T4954]  ffff0000e7810e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   81.292069][ T4954]  ffff0000e7810f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   81.293393][ T4954] >ffff0000e7810f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   81.294618][ T4954]                                ^
[   81.295417][ T4954]  ffff0000e7811000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   81.296737][ T4954]  ffff0000e7811080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   81.298020][ T4954] ==================================================================
[   81.299325][ T4954] Disabling lock debugging due to kernel taint
[   81.303401][ T4954] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[2 0 0x6965722e UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   81.306455][ T4954] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   81.308579][ T4954] REISERFS (device loop0): Remounting filesystem read-only
[   81.309808][ T4954] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data
[   81.311868][ T4954] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[   81.314585][ T4954] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[2 0 0x6965722e UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   81.317189][ T4954] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   81.319857][ T4954] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error
[   81.469725][ T4957] loop0: detected capacity change from 0 to 8192
[   81.500230][ T4957] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   81.501948][ T4957] REISERFS (device loop0): using ordered data mode
[   81.503015][ T4957] reiserfs: using flush barriers
[   81.504064][ T4957] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   81.506793][ T4957] REISERFS (device loop0): checking transaction log (loop0)
[   81.509352][ T4957] REISERFS (device loop0): Using tea hash to sort names
[   81.510434][ T4957] REISERFS (device loop0): using 3.5.x disk format
[   81.511831][ T4516] Unable to handle kernel paging request at virtual address dfff800000000013
[   81.511958][    C0] Unable to handle kernel paging request at virtual address f9b3804cc000023c
[   81.513192][ T4516] Mem abort info:
[   81.514554][    C0] Mem abort info:
[   81.514558][    C0]   ESR = 0x0000000096000004
[   81.515139][ T4516]   ESR = 0x0000000096000006
[   81.515681][    C0]   EC = 0x25: DABT (current EL), IL = 32 bits
[   81.516403][ T4516]   EC = 0x25: DABT (current EL), IL = 32 bits
[   81.517150][    C0]   SET = 0, FnV = 0
[   81.518078][ T4516]   SET = 0, FnV = 0
[   81.519051][    C0]   EA = 0, S1PTW = 0
[   81.519059][    C0]   FSC = 0x04: level 0 translation fault
[   81.519066][    C0] Data abort info:
[   81.519069][    C0]   ISV = 0, ISS = 0x00000004
[   81.519072][    C0]   CM = 0, WnR = 0
[   81.519075][    C0] [f9b3804cc000023c] address between user and kernel address ranges
[   81.519079][    C0] Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP
[   81.519085][    C0] Modules linked in:
[   81.519090][    C0] CPU: 0 PID: 4957 Comm: syz.0.16 Tainted: G    B             syzkaller #0
[   81.519096][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   81.519100][    C0] pstate: 824000c5 (Nzcv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   81.519106][    C0] pc : debug_object_deactivate+0xac/0x32c
[   81.519117][    C0] lr : debug_object_deactivate+0x70/0x32c
[   81.519121][    C0] sp : ffff800008007c10
[   81.519124][    C0] x29: ffff800008007c10 x28: dfff800000000000 x27: 0000000000000001
[   81.519132][    C0] x26: ffff800014180000 x25: dfff800000000000 x24: cda00266000011ca
[   81.519139][    C0] x23: cda00266000011e2 x22: ffff80001f3a7b60 x21: ffff800011343e60
[   81.519142][    C1] Unable to handle kernel paging request at virtual address 0077804620000248
[   81.519145][    C0] 
[   81.519147][    C0] x20: 00000000000000c0
[   81.519148][    C1] Mem abort info:
[   81.519149][    C0]  x19: ffff80001b084bf8
[   81.519150][    C1]   ESR = 0x0000000096000004
[   81.519152][    C0]  x18: 0000000000000000
[   81.519154][    C1]   EC = 0x25: DABT (current EL), IL = 32 bits
[   81.519155][    C0] x17: ffff80018cfe0000 x16: ffff8000082d5fac
[   81.519158][    C1]   SET = 0, FnV = 0
[   81.519160][    C0]  x15: 5100000023000000
[   81.519161][    C1]   EA = 0, S1PTW = 0
[   81.519162][    C0] 
[   81.519164][    C0] x14: 000000000000000c
[   81.519163][    C1]   FSC = 0x04: level 0 translation fault
[   81.519166][    C0]  x13: ffff8000111c7ccc
[   81.519167][    C1] Data abort info:
[   81.519168][    C1]   ISV = 0, ISS = 0x00000004
[   81.519169][    C0]  x12: ffff700001000f68
[   81.519171][    C1]   CM = 0, WnR = 0
[   81.519172][    C0] x11: 1ffff00001000f68
[   81.519174][    C1] [0077804620000248] address between user and kernel address ranges
[   81.519175][    C0]  x10: 0000000000000004 x9 : 0a453457d6875100
[   81.519180][    C0] x8 : 19b4004cc000023c x7 : 0000000000000000 x6 : ffff80000a77618c
[   81.519187][    C0] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff8000082d60cc
[   81.519194][    C0] x2 : 0000000000000001 x1 : 0000000000000000 x0 : 00000000000000c0
[   81.519203][    C0] Call trace:
[   81.519207][    C0]  debug_object_deactivate+0xac/0x32c
[   81.519211][    C0]  debug_deactivate+0x34/0x2a8
[   81.519217][    C0]  __hrtimer_run_queues+0x210/0xb6c
[   81.519222][    C0]  hrtimer_interrupt+0x2bc/0xb5c
[   81.519227][    C0]  arch_timer_handler_virt+0x74/0x88
[   81.519234][    C0]  handle_percpu_devid_irq+0x29c/0x76c
[   81.519239][    C0]  handle_domain_irq+0x144/0x1fc
[   81.519243][    C0]  gic_handle_irq+0x78/0x1c8
[   81.519248][    C0]  call_on_irq_stack+0x30/0x48
[   81.519253][    C0]  do_interrupt_handler+0x6c/0x88
[   81.519257][    C0]  el1_interrupt+0x30/0x58
[   81.519262][    C0]  el1h_64_irq_handler+0x18/0x24
[   81.519265][    C0]  el1h_64_irq+0x78/0x7c
[   81.519269][    C0]  __memcpy+0x1d8/0x250
[   81.519273][    C0]  leaf_paste_entries+0x4d8/0x924
[   81.519279][    C0]  balance_leaf+0x81d0/0xd2f4
[   81.519283][    C0]  do_balance+0x260/0x778
[   81.519286][    C0]  reiserfs_paste_into_item+0x5b4/0x6d0
[   81.519291][    C0]  reiserfs_add_entry+0x828/0xbe4
[   81.519295][    C0]  reiserfs_mkdir+0x588/0x788
[   81.519298][    C0]  reiserfs_xattr_init+0x2b0/0x6dc
[   81.519302][    C0]  reiserfs_fill_super+0x17ec/0x1bb4
[   81.519306][    C0]  mount_bdev+0x264/0x358
[   81.519311][    C0]  get_super_block+0x44/0x58
[   81.519315][    C0]  legacy_get_tree+0xd4/0x16c
[   81.519319][    C0]  vfs_get_tree+0x90/0x274
[   81.519323][    C0]  do_new_mount+0x228/0x810
[   81.519327][    C0]  path_mount+0x5b4/0x1000
[   81.519331][    C0]  __arm64_sys_mount+0x514/0x5e4
[   81.519335][    C0]  invoke_syscall+0x98/0x2b8
[   81.519339][    C0]  el0_svc_common+0x138/0x258
[   81.519344][    C0]  do_el0_svc+0x58/0x14c
[   81.519348][    C0]  el0_svc+0x78/0x1e0
[   81.519351][    C0]  el0t_64_sync_handler+0xcc/0xe4
[   81.519355][    C0]  el0t_64_sync+0x1a0/0x1a4
[   81.519362][    C0] Code: 1100077b b4000238 91006317 d343fee8 (38796908) 
[   81.519367][    C0] ---[ end trace d6c09f94d27f1a6b ]---
[   81.717396][    C0] Kernel panic - not syncing: Oops: Fatal exception in interrupt
[   81.717407][    C0] SMP: stopping secondary CPUs
[   82.787645][    C0] SMP: failed to stop secondary CPUs 0-1
[   82.787662][    C0] Kernel Offset: disabled
[   82.787665][    C0] CPU features: 0x8,000003c1,7d33ffd9
[   82.787671][    C0] Memory Limit: none
[   83.054293][    C0] Rebooting in 86400 seconds..