[ 76.363156][ T1334] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.244' (ED25519) to the list of known hosts.
2025/07/27 11:50:23 ignoring optional flag "sandboxArg"="0"
2025/07/27 11:50:24 parsed 1 programs
[ 86.108400][ T4639] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 87.519514][ T4250] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.531129][ T4250] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.545277][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 87.555687][ T3093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.564744][ T3093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.575147][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 87.812771][ T4668] chnl_net:caif_netlink_parms(): no params data found
[ 87.848345][ T4668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.855719][ T4668] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.865341][ T4668] device bridge_slave_0 entered promiscuous mode
[ 87.873917][ T4668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.881029][ T4668] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.889674][ T4668] device bridge_slave_1 entered promiscuous mode
[ 87.914200][ T4668] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 87.925634][ T4668] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.953465][ T4668] team0: Port device team_slave_0 added
[ 87.961939][ T4668] team0: Port device team_slave_1 added
[ 87.984249][ T4668] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.991236][ T4668] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.018277][ T4668] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 88.030758][ T4668] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 88.039762][ T4668] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.067427][ T4668] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 88.105334][ T4668] device hsr_slave_0 entered promiscuous mode
[ 88.113323][ T4668] device hsr_slave_1 entered promiscuous mode
[ 88.687121][ T4668] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 88.705435][ T4668] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 88.723792][ T4668] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 88.743629][ T4668] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 88.892435][ T4668] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.914889][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 88.924035][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 88.942309][ T4668] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.961580][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 88.970305][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 88.994813][ T4250] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.001944][ T4250] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.016907][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 89.038583][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 89.048726][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 89.058460][ T4250] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.065580][ T4250] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.087424][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 89.100230][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 89.109628][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 89.120351][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 89.129386][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 89.138979][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 89.148091][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 89.166497][ T4668] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 89.180390][ T4668] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 89.196736][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 89.205246][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 89.214253][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 89.223797][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 89.232741][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 89.425742][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 89.442308][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 89.460478][ T4668] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 89.497758][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 89.506596][ T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 89.528045][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 89.537242][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 89.547111][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 89.555486][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 89.564325][ T4668] device veth0_vlan entered promiscuous mode
[ 89.576528][ T4668] device veth1_vlan entered promiscuous mode
[ 89.598264][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 89.608321][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 89.619723][ T4668] device veth0_macvtap entered promiscuous mode
[ 89.631239][ T4668] device veth1_macvtap entered promiscuous mode
[ 89.650618][ T4668] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.658325][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 89.667538][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 89.676283][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 89.685678][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 89.707810][ T4668] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.716846][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 89.727749][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 89.740086][ T4668] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.749505][ T4668] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.759943][ T4668] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.769423][ T4668] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 92.300565][ T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/07/27 11:50:33 executed programs: 0
[ 92.667871][ T4869] chnl_net:caif_netlink_parms(): no params data found
[ 92.724613][ T4869] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.731832][ T4869] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.739878][ T4869] device bridge_slave_0 entered promiscuous mode
[ 92.750662][ T4869] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.758069][ T4869] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.768591][ T4869] device bridge_slave_1 entered promiscuous mode
[ 92.797801][ T4869] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.809172][ T4869] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.844555][ T4869] team0: Port device team_slave_0 added
[ 92.853587][ T4869] team0: Port device team_slave_1 added
[ 92.878023][ T4869] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.887239][ T4869] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.917314][ T4869] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.930271][ T4869] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.939693][ T4869] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.968016][ T4869] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 93.012142][ T4869] device hsr_slave_0 entered promiscuous mode
[ 93.018948][ T4869] device hsr_slave_1 entered promiscuous mode
[ 93.025958][ T4869] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 93.034044][ T4869] Cannot create hsr debugfs directory
[ 94.139566][ T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.207405][ T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.269431][ T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 94.601348][ T4296] Bluetooth: hci0: command 0x0409 tx timeout
[ 95.196729][ T4869] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 95.213618][ T4869] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 95.223041][ T4869] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 95.237579][ T4869] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 95.320224][ T4869] 8021q: adding VLAN 0 to HW filter on device bond0
[ 95.334076][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 95.342030][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 95.352819][ T4869] 8021q: adding VLAN 0 to HW filter on device team0
[ 95.363674][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 95.374230][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 95.382811][ T4250] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.389880][ T4250] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 95.414272][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 95.422912][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 95.432005][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 95.440496][ T4250] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.447610][ T4250] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 95.458388][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 95.467511][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 95.478936][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 95.489414][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 95.497866][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 95.506722][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 95.515507][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 95.544360][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 95.552987][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 95.569463][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 95.577948][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 95.588716][ T4869] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 95.696815][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 95.704726][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 95.717754][ T4869] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 95.747770][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 95.756937][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 95.773680][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 95.782060][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 95.790960][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 95.799013][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 95.808781][ T4869] device veth0_vlan entered promiscuous mode
[ 95.819215][ T9] device hsr_slave_0 left promiscuous mode
[ 95.826373][ T9] device hsr_slave_1 left promiscuous mode
[ 95.833415][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 95.840787][ T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 95.848899][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 95.856611][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 95.866145][ T9] device bridge_slave_1 left promiscuous mode
[ 95.872539][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.880635][ T9] device bridge_slave_0 left promiscuous mode
[ 95.887168][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.898382][ T9] device veth1_macvtap left promiscuous mode
[ 95.904420][ T9] device veth0_macvtap left promiscuous mode
[ 95.910429][ T9] device veth1_vlan left promiscuous mode
[ 95.916222][ T9] device veth0_vlan left promiscuous mode
[ 96.038482][ T9] team0 (unregistering): Port device team_slave_1 removed
[ 96.051072][ T9] team0 (unregistering): Port device team_slave_0 removed
[ 96.063310][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 96.077621][ T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 96.124766][ T9] bond0 (unregistering): Released all slaves
[ 96.197623][ T4869] device veth1_vlan entered promiscuous mode
[ 96.217529][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 96.225855][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 96.234121][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 96.243366][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 96.254798][ T4869] device veth0_macvtap entered promiscuous mode
[ 96.265901][ T4869] device veth1_macvtap entered promiscuous mode
[ 96.284320][ T4869] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.292386][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 96.300448][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 96.308485][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 96.317532][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 96.329138][ T4869] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.336922][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 96.345789][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 96.357550][ T4869] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.366668][ T4869] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.376441][ T4869] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.385424][ T4869] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.436491][ T4250] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.450022][ T4250] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.460517][ T3093] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 96.469648][ T4250] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.483987][ T4250] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.503099][ T4250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 96.574548][ T5084] loop0: detected capacity change from 0 to 8192
[ 96.638380][ T5084] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 96.648248][ T5084] REISERFS (device loop0): using ordered data mode
[ 96.655232][ T5084] reiserfs: using flush barriers
[ 96.662489][ T5084] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 96.682087][ T4349] Bluetooth: hci0: command 0x041b tx timeout
[ 96.691820][ T5084] REISERFS (device loop0): checking transaction log (loop0)
[ 96.704583][ T5084] REISERFS (device loop0): Using tea hash to sort names
[ 96.722099][ T5084] ==================================================================
[ 96.730323][ T5084] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[ 96.738063][ T5084] Read of size 4 at addr ffff888067d5dfc4 by task syz.0.16/5084
[ 96.745691][ T5084]
[ 96.748023][ T5084] CPU: 1 PID: 5084 Comm: syz.0.16 Not tainted 5.15.189-syzkaller #0
[ 96.755993][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 96.766062][ T5084] Call Trace:
[ 96.769353][ T5084]
[ 96.772282][ T5084] dump_stack_lvl+0x168/0x230
[ 96.776964][ T5084] ? show_regs_print_info+0x20/0x20
[ 96.782155][ T5084] ? _printk+0xcc/0x110
[ 96.786390][ T5084] ? search_by_entry_key+0x597/0x1370
[ 96.791762][ T5084] ? load_image+0x3b0/0x3b0
[ 96.796261][ T5084] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 96.801643][ T5084] print_address_description+0x60/0x2d0
[ 96.807288][ T5084] ? search_by_entry_key+0x597/0x1370
[ 96.812662][ T5084] kasan_report+0xdf/0x130
[ 96.817101][ T5084] ? search_by_entry_key+0x597/0x1370
[ 96.822476][ T5084] search_by_entry_key+0x597/0x1370
[ 96.827677][ T5084] ? make_cpu_key+0x2b/0x220
[ 96.832620][ T5084] reiserfs_find_entry+0x2ff/0x18e0
[ 96.838003][ T5084] ? mutex_lock_io_nested+0x60/0x60
[ 96.843209][ T5084] ? reiserfs_get_parent+0x270/0x270
[ 96.848769][ T5084] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 96.854796][ T5084] ? mutex_lock_nested+0x17/0x20
[ 96.859744][ T5084] reiserfs_lookup+0x1a7/0x420
[ 96.864508][ T5084] ? reiserfs_find_entry+0x18e0/0x18e0
[ 96.869997][ T5084] ? __init_waitqueue_head+0xa5/0x150
[ 96.875373][ T5084] __lookup_slow+0x27d/0x3d0
[ 96.879983][ T5084] ? lookup_one_len+0x2c0/0x2c0
[ 96.884842][ T5084] lookup_one_len+0x18e/0x2c0
[ 96.889515][ T5084] ? lookup_one_common+0x460/0x460
[ 96.894631][ T5084] reiserfs_lookup_privroot+0x85/0x1e0
[ 96.900174][ T5084] reiserfs_fill_super+0x1f65/0x23e0
[ 96.905486][ T5084] ? reiserfs_kill_sb+0x140/0x140
[ 96.910514][ T5084] ? snprintf+0xd7/0x120
[ 96.914768][ T5084] ? vscnprintf+0x80/0x80
[ 96.919095][ T5084] ? set_blocksize+0x1f1/0x370
[ 96.923858][ T5084] ? sb_set_blocksize+0xa5/0xe0
[ 96.928710][ T5084] mount_bdev+0x287/0x3c0
[ 96.933041][ T5084] ? reiserfs_kill_sb+0x140/0x140
[ 96.938070][ T5084] legacy_get_tree+0xe6/0x180
[ 96.942754][ T5084] ? remove_save_link+0x3c0/0x3c0
[ 96.947784][ T5084] vfs_get_tree+0x88/0x270
[ 96.952204][ T5084] do_new_mount+0x24a/0xa40
[ 96.956728][ T5084] __se_sys_mount+0x2d6/0x3c0
[ 96.961412][ T5084] ? __x64_sys_mount+0xc0/0xc0
[ 96.966174][ T5084] ? lockdep_hardirqs_on+0x94/0x140
[ 96.971370][ T5084] ? __x64_sys_mount+0x1c/0xc0
[ 96.976140][ T5084] do_syscall_64+0x4c/0xa0
[ 96.980558][ T5084] ? clear_bhb_loop+0x30/0x80
[ 96.985235][ T5084] ? clear_bhb_loop+0x30/0x80
[ 96.989919][ T5084] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 96.995835][ T5084] RIP: 0033:0x7f67a5a3290a
[ 97.000255][ T5084] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 97.019866][ T5084] RSP: 002b:00007f67a4ca1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 97.028290][ T5084] RAX: ffffffffffffffda RBX: 00007f67a4ca1ef0 RCX: 00007f67a5a3290a
[ 97.036269][ T5084] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f67a4ca1eb0
[ 97.044246][ T5084] RBP: 0000400000000180 R08: 00007f67a4ca1ef0 R09: 000000000001801c
[ 97.052217][ T5084] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 97.060187][ T5084] R13: 00007f67a4ca1eb0 R14: 000000000000112d R15: 0000400000000300
[ 97.068180][ T5084]
[ 97.071192][ T5084]
[ 97.073507][ T5084] The buggy address belongs to the page:
[ 97.079123][ T5084] page:ffffea00019f5740 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x67d5d
[ 97.089272][ T5084] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.096392][ T5084] raw: 00fff00000000000 ffffea00019f5708 ffffea00019f57c8 0000000000000000
[ 97.104980][ T5084] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 97.113557][ T5084] page dumped because: kasan: bad access detected
[ 97.119982][ T5084] page_owner tracks the page as freed
[ 97.125346][ T5084] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 4643, ts 96678107636, free_ts 96715193829
[ 97.140879][ T5084] get_page_from_freelist+0x1b77/0x1c60
[ 97.146431][ T5084] __alloc_pages+0x1e1/0x470
[ 97.151024][ T5084] alloc_pages_vma+0x393/0x7c0
[ 97.155782][ T5084] handle_mm_fault+0x2382/0x43c0
[ 97.160712][ T5084] do_user_addr_fault+0x489/0xc80
[ 97.165737][ T5084] exc_page_fault+0x60/0x100
[ 97.170324][ T5084] asm_exc_page_fault+0x22/0x30
[ 97.175176][ T5084] copy_user_enhanced_fast_string+0xe/0x40
[ 97.180986][ T5084] copy_page_to_iter+0x49e/0x910
[ 97.186113][ T5084] filemap_read+0x1d94/0x2480
[ 97.190800][ T5084] blkdev_read_iter+0x11d/0x150
[ 97.195648][ T5084] vfs_read+0x725/0xcf0
[ 97.199809][ T5084] ksys_read+0x14d/0x250
[ 97.204050][ T5084] do_syscall_64+0x4c/0xa0
[ 97.208469][ T5084] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.214365][ T5084] page last free stack trace:
[ 97.219029][ T5084] free_unref_page_prepare+0x637/0x6c0
[ 97.224503][ T5084] free_unref_page_list+0x122/0x7e0
[ 97.229695][ T5084] release_pages+0x184b/0x1bb0
[ 97.234453][ T5084] tlb_finish_mmu+0x164/0x2e0
[ 97.239122][ T5084] unmap_region+0x315/0x360
[ 97.243626][ T5084] __do_munmap+0x9d3/0xdc0
[ 97.248047][ T5084] __vm_munmap+0x137/0x230
[ 97.252465][ T5084] __x64_sys_munmap+0x67/0x70
[ 97.257138][ T5084] do_syscall_64+0x4c/0xa0
[ 97.261554][ T5084] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.267445][ T5084]
[ 97.269762][ T5084] Memory state around the buggy address:
[ 97.275386][ T5084] ffff888067d5de80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 97.283442][ T5084] ffff888067d5df00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 97.291496][ T5084] >ffff888067d5df80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 97.299550][ T5084] ^
[ 97.305695][ T5084] ffff888067d5e000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 97.313877][ T5084] ffff888067d5e080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 97.321938][ T5084] ==================================================================
[ 97.329992][ T5084] Disabling lock debugging due to kernel taint
[ 97.350053][ T5084] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 97.357276][ T5084] CPU: 1 PID: 5084 Comm: syz.0.16 Tainted: G B 5.15.189-syzkaller #0
[ 97.366642][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 97.376691][ T5084] Call Trace:
[ 97.379964][ T5084]
[ 97.382878][ T5084] dump_stack_lvl+0x168/0x230
[ 97.387541][ T5084] ? show_regs_print_info+0x20/0x20
[ 97.392727][ T5084] ? load_image+0x3b0/0x3b0
[ 97.397214][ T5084] panic+0x2c9/0x7f0
[ 97.401091][ T5084] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 97.407238][ T5084] ? bpf_jit_dump+0xd0/0xd0
[ 97.411722][ T5084] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 97.417596][ T5084] ? _raw_spin_unlock+0x40/0x40
[ 97.422425][ T5084] ? search_by_entry_key+0x597/0x1370
[ 97.427777][ T5084] check_panic_on_warn+0x80/0xa0
[ 97.432690][ T5084] ? search_by_entry_key+0x597/0x1370
[ 97.438041][ T5084] end_report+0x6d/0xf0
[ 97.442176][ T5084] kasan_report+0x102/0x130
[ 97.446658][ T5084] ? search_by_entry_key+0x597/0x1370
[ 97.452009][ T5084] search_by_entry_key+0x597/0x1370
[ 97.457189][ T5084] ? make_cpu_key+0x2b/0x220
[ 97.461768][ T5084] reiserfs_find_entry+0x2ff/0x18e0
[ 97.466969][ T5084] ? mutex_lock_io_nested+0x60/0x60
[ 97.472153][ T5084] ? reiserfs_get_parent+0x270/0x270
[ 97.477423][ T5084] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 97.483387][ T5084] ? mutex_lock_nested+0x17/0x20
[ 97.488395][ T5084] reiserfs_lookup+0x1a7/0x420
[ 97.493138][ T5084] ? reiserfs_find_entry+0x18e0/0x18e0
[ 97.498581][ T5084] ? __init_waitqueue_head+0xa5/0x150
[ 97.503936][ T5084] __lookup_slow+0x27d/0x3d0
[ 97.508506][ T5084] ? lookup_one_len+0x2c0/0x2c0
[ 97.513423][ T5084] lookup_one_len+0x18e/0x2c0
[ 97.518078][ T5084] ? lookup_one_common+0x460/0x460
[ 97.523172][ T5084] reiserfs_lookup_privroot+0x85/0x1e0
[ 97.528618][ T5084] reiserfs_fill_super+0x1f65/0x23e0
[ 97.533884][ T5084] ? reiserfs_kill_sb+0x140/0x140
[ 97.538884][ T5084] ? snprintf+0xd7/0x120
[ 97.543106][ T5084] ? vscnprintf+0x80/0x80
[ 97.547413][ T5084] ? set_blocksize+0x1f1/0x370
[ 97.552166][ T5084] ? sb_set_blocksize+0xa5/0xe0
[ 97.556996][ T5084] mount_bdev+0x287/0x3c0
[ 97.561309][ T5084] ? reiserfs_kill_sb+0x140/0x140
[ 97.566311][ T5084] legacy_get_tree+0xe6/0x180
[ 97.570966][ T5084] ? remove_save_link+0x3c0/0x3c0
[ 97.575966][ T5084] vfs_get_tree+0x88/0x270
[ 97.580364][ T5084] do_new_mount+0x24a/0xa40
[ 97.584847][ T5084] __se_sys_mount+0x2d6/0x3c0
[ 97.589504][ T5084] ? __x64_sys_mount+0xc0/0xc0
[ 97.594244][ T5084] ? lockdep_hardirqs_on+0x94/0x140
[ 97.599433][ T5084] ? __x64_sys_mount+0x1c/0xc0
[ 97.604176][ T5084] do_syscall_64+0x4c/0xa0
[ 97.608574][ T5084] ? clear_bhb_loop+0x30/0x80
[ 97.613228][ T5084] ? clear_bhb_loop+0x30/0x80
[ 97.617882][ T5084] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 97.623759][ T5084] RIP: 0033:0x7f67a5a3290a
[ 97.628162][ T5084] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 97.647744][ T5084] RSP: 002b:00007f67a4ca1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 97.656138][ T5084] RAX: ffffffffffffffda RBX: 00007f67a4ca1ef0 RCX: 00007f67a5a3290a
[ 97.664267][ T5084] RDX: 0000400000000180 RSI: 0000400000000040 RDI: 00007f67a4ca1eb0
[ 97.672217][ T5084] RBP: 0000400000000180 R08: 00007f67a4ca1ef0 R09: 000000000001801c
[ 97.680170][ T5084] R10: 000000000001801c R11: 0000000000000246 R12: 0000400000000040
[ 97.688118][ T5084] R13: 00007f67a4ca1eb0 R14: 000000000000112d R15: 0000400000000300
[ 97.696159][ T5084]
[ 97.699369][ T5084] Kernel Offset: disabled
[ 97.703683][ T5084] Rebooting in 86400 seconds..