[ 76.431841][ T23] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.244' (ED25519) to the list of known hosts.
2025/07/27 11:43:55 ignoring optional flag "sandboxArg"="0"
2025/07/27 11:43:56 parsed 1 programs
[ 85.055699][ T4591] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 87.731085][ T161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.748636][ T161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.756478][ T1237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 87.767575][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 87.775608][ T1237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 87.786441][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 88.000904][ T4642] chnl_net:caif_netlink_parms(): no params data found
[ 88.061322][ T4642] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.070103][ T4642] bridge0: port 1(bridge_slave_0) entered disabled state
[ 88.078849][ T4642] device bridge_slave_0 entered promiscuous mode
[ 88.087716][ T4642] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.096497][ T4642] bridge0: port 2(bridge_slave_1) entered disabled state
[ 88.105045][ T4642] device bridge_slave_1 entered promiscuous mode
[ 88.128531][ T4642] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 88.140287][ T4642] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 88.165598][ T4642] team0: Port device team_slave_0 added
[ 88.174281][ T4642] team0: Port device team_slave_1 added
[ 88.199051][ T4642] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 88.206109][ T4642] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.232489][ T4642] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 88.246810][ T4642] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 88.254058][ T4642] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.280379][ T4642] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 88.311402][ T4642] device hsr_slave_0 entered promiscuous mode
[ 88.318368][ T4642] device hsr_slave_1 entered promiscuous mode
[ 89.035088][ T4642] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 89.046440][ T4642] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 89.057751][ T4642] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 89.067907][ T4642] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 89.200132][ T4642] 8021q: adding VLAN 0 to HW filter on device bond0
[ 89.214382][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 89.223564][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 89.236363][ T4642] 8021q: adding VLAN 0 to HW filter on device team0
[ 89.253722][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 89.265772][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 89.275516][ T151] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.282676][ T151] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.299262][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 89.308007][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 89.318415][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 89.329938][ T151] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.337036][ T151] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.346234][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 89.389856][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 89.400213][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 89.410243][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 89.432879][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 89.441704][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 89.451898][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 89.461632][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 89.471094][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 89.510794][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 89.520773][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 89.533931][ T4642] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 89.699800][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 89.707385][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 89.755358][ T4642] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 89.799071][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 89.810530][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 89.829608][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 89.838572][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 89.847397][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 89.856109][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 89.866903][ T4642] device veth0_vlan entered promiscuous mode
[ 89.901232][ T4642] device veth1_vlan entered promiscuous mode
[ 89.926825][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 89.936730][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 89.945229][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 89.955502][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 89.968526][ T4642] device veth0_macvtap entered promiscuous mode
[ 89.978031][ T4642] device veth1_macvtap entered promiscuous mode
[ 90.011995][ T4642] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 90.020023][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 90.030834][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 90.040997][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 90.051636][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 90.067375][ T4642] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 90.092263][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 90.101657][ T1237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 90.120703][ T4642] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.131653][ T4642] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.141114][ T4642] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.151720][ T4642] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2025/07/27 11:44:05 executed programs: 0
[ 91.884687][ T4809] chnl_net:caif_netlink_parms(): no params data found
[ 91.964877][ T4809] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.979815][ T4809] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.987892][ T4809] device bridge_slave_0 entered promiscuous mode
[ 92.010934][ T4809] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.028280][ T4809] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.036355][ T4809] device bridge_slave_1 entered promiscuous mode
[ 92.089117][ T4809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.101271][ T4809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.163719][ T4809] team0: Port device team_slave_0 added
[ 92.184040][ T4809] team0: Port device team_slave_1 added
[ 92.230200][ T4809] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.237279][ T4809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.300440][ T4809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.325017][ T4809] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.337079][ T4809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.365715][ T4809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.392471][ T1237] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 92.442958][ T4809] device hsr_slave_0 entered promiscuous mode
[ 92.450042][ T4809] device hsr_slave_1 entered promiscuous mode
[ 92.456763][ T4809] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 92.464640][ T4809] Cannot create hsr debugfs directory
[ 93.798408][ T23] Bluetooth: hci0: command 0x0409 tx timeout
[ 95.443939][ T1237] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.491805][ T1237] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.534624][ T1237] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 95.868419][ T4655] Bluetooth: hci0: command 0x041b tx timeout
[ 96.306709][ T4809] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 96.316864][ T4809] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 96.325740][ T4809] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 96.345356][ T4809] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 96.401610][ T4809] 8021q: adding VLAN 0 to HW filter on device bond0
[ 96.412984][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 96.421356][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 96.440385][ T4809] 8021q: adding VLAN 0 to HW filter on device team0
[ 96.450074][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 96.460077][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 96.469694][ T4637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.476764][ T4637] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.491318][ T1237] device hsr_slave_0 left promiscuous mode
[ 96.497635][ T1237] device hsr_slave_1 left promiscuous mode
[ 96.504972][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 96.513438][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 96.521660][ T1237] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 96.529264][ T1237] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 96.537068][ T1237] device bridge_slave_1 left promiscuous mode
[ 96.543456][ T1237] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.552298][ T1237] device bridge_slave_0 left promiscuous mode
[ 96.558959][ T1237] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.571292][ T1237] device veth1_macvtap left promiscuous mode
[ 96.577426][ T1237] device veth0_macvtap left promiscuous mode
[ 96.583625][ T1237] device veth1_vlan left promiscuous mode
[ 96.589656][ T1237] device veth0_vlan left promiscuous mode
[ 96.715262][ T1237] team0 (unregistering): Port device team_slave_1 removed
[ 96.730678][ T1237] team0 (unregistering): Port device team_slave_0 removed
[ 96.742437][ T1237] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 96.755285][ T1237] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 96.804158][ T1237] bond0 (unregistering): Released all slaves
[ 96.844463][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 96.852538][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 96.861293][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 96.870160][ T4637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.877483][ T4637] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.887736][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 96.903271][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 96.921748][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 96.937107][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 96.946444][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 96.959803][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 96.969072][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 96.984632][ T4809] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 96.996769][ T4809] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 97.011694][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 97.020727][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 97.029771][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 97.038790][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 97.047132][ T151] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 97.136852][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 97.144478][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 97.156366][ T4809] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.172598][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 97.181635][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 97.206544][ T4809] device veth0_vlan entered promiscuous mode
[ 97.213843][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 97.224226][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 97.240638][ T4809] device veth1_vlan entered promiscuous mode
[ 97.247500][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 97.256777][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 97.270762][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 97.296007][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 97.306014][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 97.316564][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 97.328688][ T4809] device veth0_macvtap entered promiscuous mode
[ 97.337993][ T4809] device veth1_macvtap entered promiscuous mode
[ 97.359500][ T4809] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.367071][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 97.376733][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 97.387384][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 97.405699][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 97.420235][ T4809] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.430556][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 97.440841][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 97.451734][ T4809] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.462283][ T4809] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.472558][ T4809] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.482721][ T4809] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.572284][ T4637] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 97.599747][ T4637] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.608071][ T151] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
2025/07/27 11:44:11 executed programs: 2
[ 97.616816][ T151] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 97.628695][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 97.642002][ T4637] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 97.751117][ T5080] loop0: detected capacity change from 0 to 8192
[ 97.856826][ T5080] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 97.869061][ T5080] REISERFS (device loop0): using ordered data mode
[ 97.875827][ T5080] reiserfs: using flush barriers
[ 97.885586][ T5080] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 97.907635][ T5080] REISERFS (device loop0): checking transaction log (loop0)
[ 97.923107][ T5080] REISERFS (device loop0): Using r5 hash to sort names
[ 97.932447][ T5080] ==================================================================
[ 97.940748][ T5080] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[ 97.948583][ T5080] Read of size 4 at addr ffff8880618ee754 by task syz.0.16/5080
[ 97.948836][ T4655] Bluetooth: hci0: command 0x040f tx timeout
[ 97.956208][ T5080]
[ 97.964566][ T5080] CPU: 1 PID: 5080 Comm: syz.0.16 Not tainted 5.15.189-syzkaller #0
[ 97.972675][ T5080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 97.982759][ T5080] Call Trace:
[ 97.986072][ T5080]
[ 97.989014][ T5080] dump_stack_lvl+0x168/0x230
[ 97.993797][ T5080] ? show_regs_print_info+0x20/0x20
[ 97.999097][ T5080] ? _printk+0xcc/0x110
[ 98.003256][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.008633][ T5080] ? load_image+0x3b0/0x3b0
[ 98.013219][ T5080] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 98.018699][ T5080] print_address_description+0x60/0x2d0
[ 98.024260][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.029745][ T5080] kasan_report+0xdf/0x130
[ 98.034186][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.039574][ T5080] search_by_entry_key+0x597/0x1370
[ 98.044793][ T5080] ? make_cpu_key+0x2b/0x220
[ 98.049409][ T5080] reiserfs_find_entry+0x2ff/0x18e0
[ 98.054635][ T5080] ? mutex_lock_io_nested+0x60/0x60
[ 98.059938][ T5080] ? reiserfs_get_parent+0x270/0x270
[ 98.065227][ T5080] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 98.071354][ T5080] ? mutex_lock_nested+0x17/0x20
[ 98.076927][ T5080] reiserfs_lookup+0x1a7/0x420
[ 98.082153][ T5080] ? reiserfs_find_entry+0x18e0/0x18e0
[ 98.087644][ T5080] ? __init_waitqueue_head+0xa5/0x150
[ 98.093582][ T5080] __lookup_slow+0x27d/0x3d0
[ 98.098194][ T5080] ? lookup_one_len+0x2c0/0x2c0
[ 98.103153][ T5080] lookup_one_len+0x18e/0x2c0
[ 98.107927][ T5080] ? lookup_one_common+0x460/0x460
[ 98.113053][ T5080] reiserfs_lookup_privroot+0x85/0x1e0
[ 98.118571][ T5080] reiserfs_fill_super+0x1760/0x23e0
[ 98.123877][ T5080] ? reiserfs_kill_sb+0x140/0x140
[ 98.128907][ T5080] ? snprintf+0xd7/0x120
[ 98.133226][ T5080] ? vscnprintf+0x80/0x80
[ 98.138117][ T5080] ? set_blocksize+0x1f1/0x370
[ 98.143056][ T5080] ? sb_set_blocksize+0xa5/0xe0
[ 98.148042][ T5080] mount_bdev+0x287/0x3c0
[ 98.152595][ T5080] ? reiserfs_kill_sb+0x140/0x140
[ 98.157739][ T5080] legacy_get_tree+0xe6/0x180
[ 98.162453][ T5080] ? remove_save_link+0x3c0/0x3c0
[ 98.167643][ T5080] vfs_get_tree+0x88/0x270
[ 98.172449][ T5080] do_new_mount+0x24a/0xa40
[ 98.177004][ T5080] __se_sys_mount+0x2d6/0x3c0
[ 98.182418][ T5080] ? __x64_sys_mount+0xc0/0xc0
[ 98.187220][ T5080] ? lockdep_hardirqs_on+0x94/0x140
[ 98.192571][ T5080] ? __x64_sys_mount+0x1c/0xc0
[ 98.197383][ T5080] do_syscall_64+0x4c/0xa0
[ 98.201967][ T5080] ? clear_bhb_loop+0x30/0x80
[ 98.206800][ T5080] ? clear_bhb_loop+0x30/0x80
[ 98.211503][ T5080] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 98.217521][ T5080] RIP: 0033:0x7f541951990a
[ 98.221960][ T5080] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 98.242262][ T5080] RSP: 002b:00007f5418788e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 98.250791][ T5080] RAX: ffffffffffffffda RBX: 00007f5418788ef0 RCX: 00007f541951990a
[ 98.259197][ T5080] RDX: 0000200000000000 RSI: 0000200000000440 RDI: 00007f5418788eb0
[ 98.267181][ T5080] RBP: 0000200000000000 R08: 00007f5418788ef0 R09: 000000000120c081
[ 98.275160][ T5080] R10: 000000000120c081 R11: 0000000000000246 R12: 0000200000000440
[ 98.283139][ T5080] R13: 00007f5418788eb0 R14: 0000000000001108 R15: 0000200000000900
[ 98.291115][ T5080]
[ 98.294127][ T5080]
[ 98.296442][ T5080] The buggy address belongs to the page:
[ 98.302252][ T5080] page:ffffea0001863b80 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x618ee
[ 98.312394][ T5080] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.319784][ T5080] raw: 00fff00000000000 ffffea0001863bc8 ffff8880b9140960 0000000000000000
[ 98.328363][ T5080] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[ 98.336953][ T5080] page dumped because: kasan: bad access detected
[ 98.343476][ T5080] page_owner tracks the page as freed
[ 98.348929][ T5080] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 4591, ts 83359190246, free_ts 86174301748
[ 98.364561][ T5080] get_page_from_freelist+0x1b77/0x1c60
[ 98.370124][ T5080] __alloc_pages+0x1e1/0x470
[ 98.374708][ T5080] alloc_pages_vma+0x393/0x7c0
[ 98.379464][ T5080] handle_mm_fault+0x2382/0x43c0
[ 98.384396][ T5080] do_user_addr_fault+0x489/0xc80
[ 98.389419][ T5080] exc_page_fault+0x60/0x100
[ 98.393993][ T5080] asm_exc_page_fault+0x22/0x30
[ 98.398939][ T5080] page last free stack trace:
[ 98.403598][ T5080] free_unref_page_prepare+0x637/0x6c0
[ 98.409213][ T5080] free_unref_page_list+0x122/0x7e0
[ 98.414508][ T5080] release_pages+0x184b/0x1bb0
[ 98.419264][ T5080] tlb_finish_mmu+0x164/0x2e0
[ 98.423952][ T5080] unmap_region+0x315/0x360
[ 98.428439][ T5080] __do_munmap+0x9d3/0xdc0
[ 98.432897][ T5080] __vm_munmap+0x137/0x230
[ 98.437308][ T5080] __x64_sys_munmap+0x67/0x70
[ 98.442057][ T5080] do_syscall_64+0x4c/0xa0
[ 98.446543][ T5080] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 98.452430][ T5080]
[ 98.454735][ T5080] Memory state around the buggy address:
[ 98.460346][ T5080] ffff8880618ee600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 98.468417][ T5080] ffff8880618ee680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 98.476487][ T5080] >ffff8880618ee700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 98.484569][ T5080] ^
[ 98.491225][ T5080] ffff8880618ee780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 98.499284][ T5080] ffff8880618ee800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 98.507437][ T5080] ==================================================================
[ 98.515745][ T5080] Disabling lock debugging due to kernel taint
[ 98.528681][ T5080] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 98.535933][ T5080] CPU: 1 PID: 5080 Comm: syz.0.16 Tainted: G B 5.15.189-syzkaller #0
[ 98.545319][ T5080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 98.555386][ T5080] Call Trace:
[ 98.558656][ T5080]
[ 98.561565][ T5080] dump_stack_lvl+0x168/0x230
[ 98.566221][ T5080] ? show_regs_print_info+0x20/0x20
[ 98.571392][ T5080] ? load_image+0x3b0/0x3b0
[ 98.575874][ T5080] panic+0x2c9/0x7f0
[ 98.579744][ T5080] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 98.585874][ T5080] ? bpf_jit_dump+0xd0/0xd0
[ 98.590354][ T5080] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 98.596233][ T5080] ? _raw_spin_unlock+0x40/0x40
[ 98.601060][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.606424][ T5080] check_panic_on_warn+0x80/0xa0
[ 98.611345][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.616696][ T5080] end_report+0x6d/0xf0
[ 98.620919][ T5080] kasan_report+0x102/0x130
[ 98.625415][ T5080] ? search_by_entry_key+0x597/0x1370
[ 98.630764][ T5080] search_by_entry_key+0x597/0x1370
[ 98.636033][ T5080] ? make_cpu_key+0x2b/0x220
[ 98.640606][ T5080] reiserfs_find_entry+0x2ff/0x18e0
[ 98.645814][ T5080] ? mutex_lock_io_nested+0x60/0x60
[ 98.651021][ T5080] ? reiserfs_get_parent+0x270/0x270
[ 98.656306][ T5080] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 98.662361][ T5080] ? mutex_lock_nested+0x17/0x20
[ 98.667311][ T5080] reiserfs_lookup+0x1a7/0x420
[ 98.672079][ T5080] ? reiserfs_find_entry+0x18e0/0x18e0
[ 98.677627][ T5080] ? __init_waitqueue_head+0xa5/0x150
[ 98.683138][ T5080] __lookup_slow+0x27d/0x3d0
[ 98.687739][ T5080] ? lookup_one_len+0x2c0/0x2c0
[ 98.692575][ T5080] lookup_one_len+0x18e/0x2c0
[ 98.697234][ T5080] ? lookup_one_common+0x460/0x460
[ 98.702320][ T5080] reiserfs_lookup_privroot+0x85/0x1e0
[ 98.707898][ T5080] reiserfs_fill_super+0x1760/0x23e0
[ 98.713218][ T5080] ? reiserfs_kill_sb+0x140/0x140
[ 98.718236][ T5080] ? snprintf+0xd7/0x120
[ 98.722592][ T5080] ? vscnprintf+0x80/0x80
[ 98.726906][ T5080] ? set_blocksize+0x1f1/0x370
[ 98.731669][ T5080] ? sb_set_blocksize+0xa5/0xe0
[ 98.736501][ T5080] mount_bdev+0x287/0x3c0
[ 98.741687][ T5080] ? reiserfs_kill_sb+0x140/0x140
[ 98.746823][ T5080] legacy_get_tree+0xe6/0x180
[ 98.751525][ T5080] ? remove_save_link+0x3c0/0x3c0
[ 98.756545][ T5080] vfs_get_tree+0x88/0x270
[ 98.760974][ T5080] do_new_mount+0x24a/0xa40
[ 98.765566][ T5080] __se_sys_mount+0x2d6/0x3c0
[ 98.770255][ T5080] ? __x64_sys_mount+0xc0/0xc0
[ 98.775008][ T5080] ? lockdep_hardirqs_on+0x94/0x140
[ 98.780190][ T5080] ? __x64_sys_mount+0x1c/0xc0
[ 98.784927][ T5080] do_syscall_64+0x4c/0xa0
[ 98.789559][ T5080] ? clear_bhb_loop+0x30/0x80
[ 98.794302][ T5080] ? clear_bhb_loop+0x30/0x80
[ 98.799060][ T5080] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 98.805028][ T5080] RIP: 0033:0x7f541951990a
[ 98.809443][ T5080] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 98.829038][ T5080] RSP: 002b:00007f5418788e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 98.837453][ T5080] RAX: ffffffffffffffda RBX: 00007f5418788ef0 RCX: 00007f541951990a
[ 98.845412][ T5080] RDX: 0000200000000000 RSI: 0000200000000440 RDI: 00007f5418788eb0
[ 98.853453][ T5080] RBP: 0000200000000000 R08: 00007f5418788ef0 R09: 000000000120c081
[ 98.861668][ T5080] R10: 000000000120c081 R11: 0000000000000246 R12: 0000200000000440
[ 98.869621][ T5080] R13: 00007f5418788eb0 R14: 0000000000001108 R15: 0000200000000900
[ 98.877978][ T5080]
[ 98.881406][ T5080] Kernel Offset: disabled
[ 98.885763][ T5080] Rebooting in 86400 seconds..