Warning: Permanently added '10.128.1.43' (ED25519) to the list of known hosts.
2025/11/10 11:03:41 parsed 1 programs
[ 77.950427][ T5793] cgroup: Unknown subsys name 'net'
[ 78.085070][ T5793] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 79.759229][ T5793] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 82.349438][ T5823] chnl_net:caif_netlink_parms(): no params data found
[ 82.431927][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.439180][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[ 82.446362][ T5823] bridge_slave_0: entered allmulticast mode
[ 82.454156][ T5823] bridge_slave_0: entered promiscuous mode
[ 82.463535][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.471042][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[ 82.478337][ T5823] bridge_slave_1: entered allmulticast mode
[ 82.485224][ T5823] bridge_slave_1: entered promiscuous mode
[ 82.516546][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 82.528576][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 82.565563][ T5823] team0: Port device team_slave_0 added
[ 82.573991][ T5823] team0: Port device team_slave_1 added
[ 82.624512][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 82.631874][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.658466][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 82.672574][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 82.679807][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.705875][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 82.758573][ T5823] hsr_slave_0: entered promiscuous mode
[ 82.764959][ T5823] hsr_slave_1: entered promiscuous mode
[ 82.938974][ T5823] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 82.951502][ T5823] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 82.962275][ T5823] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 82.972074][ T5823] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 83.015108][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.022438][ T5823] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 83.030365][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.037515][ T5823] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.124140][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0
[ 83.142794][ T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 83.152192][ T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 83.177546][ T5823] 8021q: adding VLAN 0 to HW filter on device team0
[ 83.192911][ T49] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.200086][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.214110][ T59] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.221287][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 83.466254][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 83.510478][ T5823] veth0_vlan: entered promiscuous mode
[ 83.523149][ T5823] veth1_vlan: entered promiscuous mode
[ 83.550766][ T5823] veth0_macvtap: entered promiscuous mode
[ 83.560392][ T5823] veth1_macvtap: entered promiscuous mode
[ 83.578885][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 83.600096][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 83.613374][ T5823] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.623015][ T5823] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.632427][ T5823] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.641247][ T5823] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 83.781225][ T5823] syz-executor (5823) used greatest stack depth: 20968 bytes left
[ 83.814008][ T59] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.831336][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 84.841101][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 84.849474][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 84.858327][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 84.866289][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 84.874588][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 86.018548][ T1322] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.026543][ T1322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.065851][ T2973] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.075038][ T2973] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.516620][ T59] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 86.759127][ T8] cfg80211: failed to load regulatory.db
2025/11/10 11:03:52 executed programs: 0
[ 87.044548][ T5104] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 87.053009][ T5104] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 87.060800][ T5104] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 87.071301][ T5104] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 87.081044][ T5104] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 87.088673][ T5104] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 87.249661][ T5904] chnl_net:caif_netlink_parms(): no params data found
[ 87.322818][ T5904] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.330051][ T5904] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.337268][ T5904] bridge_slave_0: entered allmulticast mode
[ 87.344958][ T5904] bridge_slave_0: entered promiscuous mode
[ 87.353967][ T5904] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.361287][ T5904] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.368948][ T5904] bridge_slave_1: entered allmulticast mode
[ 87.376085][ T5904] bridge_slave_1: entered promiscuous mode
[ 87.410948][ T5904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 87.422761][ T5904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.457890][ T5904] team0: Port device team_slave_0 added
[ 87.466855][ T5904] team0: Port device team_slave_1 added
[ 87.494756][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.502029][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.528300][ T5904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 87.541141][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 87.549424][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.575540][ T5904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 87.618456][ T5904] hsr_slave_0: entered promiscuous mode
[ 87.624857][ T5904] hsr_slave_1: entered promiscuous mode
[ 87.632132][ T5904] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 87.641513][ T5904] Cannot create hsr debugfs directory
[ 88.849422][ T59] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.922875][ T59] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 89.149590][ T5104] Bluetooth: hci0: command tx timeout
[ 89.744493][ T59] hsr_slave_0: left promiscuous mode
[ 89.753148][ T59] hsr_slave_1: left promiscuous mode
[ 89.759844][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 89.767308][ T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 89.776286][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 89.784887][ T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 89.793236][ T59] bridge_slave_1: left allmulticast mode
[ 89.799384][ T59] bridge_slave_1: left promiscuous mode
[ 89.806001][ T59] bridge0: port 2(bridge_slave_1) entered disabled state
[ 89.820303][ T59] bridge_slave_0: left allmulticast mode
[ 89.826006][ T59] bridge_slave_0: left promiscuous mode
[ 89.832444][ T59] bridge0: port 1(bridge_slave_0) entered disabled state
[ 89.863417][ T59] veth1_macvtap: left promiscuous mode
[ 89.870872][ T59] veth0_macvtap: left promiscuous mode
[ 89.876560][ T59] veth1_vlan: left promiscuous mode
[ 89.883109][ T59] veth0_vlan: left promiscuous mode
[ 90.482564][ T59] team0 (unregistering): Port device team_slave_1 removed
[ 90.513416][ T59] team0 (unregistering): Port device team_slave_0 removed
[ 90.544256][ T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 90.577538][ T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 90.864788][ T59] bond0 (unregistering): Released all slaves
[ 90.940865][ T5904] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 90.953319][ T5904] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 90.963492][ T5904] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 90.982810][ T5904] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 91.081427][ T5904] 8021q: adding VLAN 0 to HW filter on device bond0
[ 91.104623][ T5904] 8021q: adding VLAN 0 to HW filter on device team0
[ 91.116699][ T2973] bridge0: port 1(bridge_slave_0) entered blocking state
[ 91.123960][ T2973] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 91.145136][ T2973] bridge0: port 2(bridge_slave_1) entered blocking state
[ 91.152362][ T2973] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 91.228372][ T5104] Bluetooth: hci0: command tx timeout
[ 91.392669][ T5904] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 91.503616][ T5904] veth0_vlan: entered promiscuous mode
[ 91.518139][ T5904] veth1_vlan: entered promiscuous mode
[ 91.568841][ T5904] veth0_macvtap: entered promiscuous mode
[ 91.581132][ T5904] veth1_macvtap: entered promiscuous mode
[ 91.611033][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 91.624992][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 91.638632][ T5904] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.647773][ T5904] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.656538][ T5904] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.665820][ T5904] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.728830][ T2973] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 91.736672][ T2973] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 91.764108][ T2973] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 91.772371][ T2973] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 91.823636][ T5952] syz.0.17[5952]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 91.888252][ T5952] loop0: detected capacity change from 0 to 8192
[ 91.903241][ T5952] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 91.916657][ T5952] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 91.926130][ T5952] REISERFS (device loop0): using ordered data mode
[ 91.932826][ T5952] reiserfs: using flush barriers
[ 91.940134][ T5952] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 91.958791][ T5952] REISERFS (device loop0): checking transaction log (loop0)
[ 92.055415][ T5952] REISERFS (device loop0): Using tea hash to sort names
[ 92.064814][ T5952] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 92.085716][ T5952] ==================================================================
[ 92.093823][ T5952] BUG: KASAN: slab-out-of-bounds in leaf_paste_entries+0xe78/0x1110
[ 92.101860][ T5952] Read of size 2 at addr ffff88805e8b3f08 by task syz.0.17/5952
[ 92.109512][ T5952]
[ 92.111883][ T5952] CPU: 0 PID: 5952 Comm: syz.0.17 Not tainted syzkaller #0
[ 92.119097][ T5952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 92.129201][ T5952] Call Trace:
[ 92.132503][ T5952]
[ 92.135459][ T5952] dump_stack_lvl+0x16c/0x230
[ 92.140172][ T5952] ? __lock_acquire+0x7c80/0x7c80
[ 92.145222][ T5952] ? show_regs_print_info+0x20/0x20
[ 92.150447][ T5952] ? load_image+0x3b0/0x3b0
[ 92.154971][ T5952] ? _raw_spin_lock_irqsave+0xb4/0xf0
[ 92.160369][ T5952] ? __virt_addr_valid+0x18c/0x540
[ 92.165513][ T5952] ? __virt_addr_valid+0x469/0x540
[ 92.170648][ T5952] print_report+0xac/0x220
[ 92.175165][ T5952] ? leaf_paste_entries+0xe78/0x1110
[ 92.180458][ T5952] kasan_report+0x117/0x150
[ 92.184964][ T5952] ? leaf_paste_entries+0xe78/0x1110
[ 92.190253][ T5952] leaf_paste_entries+0xe78/0x1110
[ 92.195362][ T5952] ? journal_mark_dirty+0x221/0xe00
[ 92.200573][ T5952] leaf_copy_dir_entries+0x699/0x990
[ 92.205863][ T5952] ? leaf_item_bottle+0x1280/0x1280
[ 92.211065][ T5952] ? mark_lock+0x94/0x320
[ 92.215421][ T5952] ? __lock_acquire+0x1334/0x7c80
[ 92.220447][ T5952] leaf_copy_boundary_item+0xb90/0x2180
[ 92.226017][ T5952] leaf_move_items+0x8b5/0xe90
[ 92.230788][ T5952] ? reiserfs_convert_objectid_map_v1+0x500/0x500
[ 92.237204][ T5952] ? leaf_delete_items_entirely+0x2cb/0x8b0
[ 92.243108][ T5952] leaf_shift_left+0xbd/0x450
[ 92.247784][ T5952] balance_leaf+0x1dc1/0x10da0
[ 92.252543][ T5952] ? verify_lock_unused+0x140/0x140
[ 92.257745][ T5952] ? lock_chain_count+0x20/0x20
[ 92.262625][ T5952] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 92.268516][ T5952] ? lockdep_hardirqs_on+0x98/0x150
[ 92.273711][ T5952] ? do_balance+0x940/0x940
[ 92.278229][ T5952] ? __mutex_trylock_common+0x153/0x250
[ 92.283797][ T5952] ? trace_raw_output_contention_end+0xd0/0xd0
[ 92.289958][ T5952] ? rcu_is_watching+0x15/0xb0
[ 92.294723][ T5952] ? trace_contention_end+0x39/0xe0
[ 92.299944][ T5952] ? __mutex_lock+0x304/0xcc0
[ 92.304634][ T5952] ? __might_sleep+0xe0/0xe0
[ 92.309228][ T5952] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 92.314867][ T5952] ? reiserfs_write_lock_nested+0x60/0xd0
[ 92.320586][ T5952] ? mutex_lock_nested+0x20/0x20
[ 92.325522][ T5952] ? get_empty_nodes+0x435/0x8c0
[ 92.330462][ T5952] ? __wake_up+0x190/0x190
[ 92.334879][ T5952] ? write_boundary_block+0xb0/0xb0
[ 92.340113][ T5952] ? get_neighbors+0x1030/0x1030
[ 92.345050][ T5952] ? indirect_create_vi+0xd/0x50
[ 92.350003][ T5952] ? indirect_check_item+0x10/0x10
[ 92.355126][ T5952] ? create_virtual_node+0x1fc/0x1c70
[ 92.360504][ T5952] ? fix_nodes+0x7b4c/0x82e0
[ 92.365109][ T5952] do_balance+0x2fe/0x940
[ 92.369434][ T5952] ? get_right_neighbor_position+0x210/0x210
[ 92.375418][ T5952] ? reiserfs_delete_item+0xe90/0xe90
[ 92.380797][ T5952] ? calc_deleted_bytes_number+0x465/0x800
[ 92.386620][ T5952] reiserfs_cut_from_item+0x13b2/0x1f10
[ 92.392184][ T5952] ? __might_sleep+0xe0/0xe0
[ 92.396794][ T5952] ? reiserfs_do_truncate+0x1340/0x1340
[ 92.402351][ T5952] ? search_by_key+0x4435/0x4630
[ 92.407331][ T5952] ? make_cpu_key+0x2f/0x230
[ 92.411935][ T5952] reiserfs_do_truncate+0xa3d/0x1340
[ 92.417228][ T5952] ? reiserfs_delete_object+0x1a0/0x1a0
[ 92.422807][ T5952] ? journal_begin+0x1f5/0x360
[ 92.427592][ T5952] ? reiserfs_update_inode_transaction+0x20/0x130
[ 92.434038][ T5952] reiserfs_truncate_file+0x37a/0x7c0
[ 92.439589][ T5952] ? reiserfs_new_symlink+0x560/0x560
[ 92.444963][ T5952] ? unmap_mapping_range+0xdf/0x170
[ 92.450201][ T5952] ? setattr_prepare+0x1e6/0xac0
[ 92.455149][ T5952] reiserfs_setattr+0xc0c/0x11a0
[ 92.460084][ T5952] ? reiserfs_commit_write+0x590/0x590
[ 92.465539][ T5952] ? ktime_get_coarse_real_ts64+0x110/0x120
[ 92.471434][ T5952] ? current_time+0x1b7/0x270
[ 92.476111][ T5952] ? inode_set_ctime_current+0x2d0/0x2d0
[ 92.481742][ T5952] ? evm_inode_setattr+0x94/0x6a0
[ 92.486773][ T5952] ? bpf_lsm_inode_setattr+0x9/0x10
[ 92.491968][ T5952] ? try_break_deleg+0x79/0x120
[ 92.496821][ T5952] ? reiserfs_commit_write+0x590/0x590
[ 92.502272][ T5952] notify_change+0xb0d/0xe10
[ 92.506871][ T5952] do_truncate+0x19b/0x220
[ 92.511303][ T5952] ? put_page_bootmem+0x2c0/0x2c0
[ 92.516335][ T5952] ? apparmor_file_truncate+0x23f/0x2d0
[ 92.521880][ T5952] ? ima_bprm_check+0x1f0/0x1f0
[ 92.526737][ T5952] path_openat+0x298c/0x3190
[ 92.531361][ T5952] ? do_filp_open+0x3d0/0x3d0
[ 92.536051][ T5952] do_filp_open+0x1c5/0x3d0
[ 92.540559][ T5952] ? vfs_tmpfile+0x490/0x490
[ 92.545156][ T5952] ? _raw_spin_unlock+0x28/0x40
[ 92.549997][ T5952] ? alloc_fd+0x58f/0x630
[ 92.554319][ T5952] do_sys_openat2+0x12c/0x1c0
[ 92.558992][ T5952] ? do_sys_open+0xe0/0xe0
[ 92.563402][ T5952] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 92.569380][ T5952] ? lock_chain_count+0x20/0x20
[ 92.574221][ T5952] __x64_sys_openat+0x139/0x160
[ 92.579078][ T5952] do_syscall_64+0x55/0xb0
[ 92.583510][ T5952] ? clear_bhb_loop+0x40/0x90
[ 92.588201][ T5952] ? clear_bhb_loop+0x40/0x90
[ 92.592900][ T5952] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 92.598791][ T5952] RIP: 0033:0x7fb409b8f6c9
[ 92.603221][ T5952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 92.622864][ T5952] RSP: 002b:00007ffc27ee8ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 92.631293][ T5952] RAX: ffffffffffffffda RBX: 00007fb409de5fa0 RCX: 00007fb409b8f6c9
[ 92.639269][ T5952] RDX: 000000000000275a RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 92.647254][ T5952] RBP: 00007fb409c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 92.655221][ T5952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 92.663197][ T5952] R13: 00007fb409de5fa0 R14: 00007fb409de5fa0 R15: 0000000000000004
[ 92.671172][ T5952]
[ 92.674195][ T5952]
[ 92.676516][ T5952] Allocated by task 5928:
[ 92.680839][ T5952] kasan_set_track+0x4e/0x70
[ 92.685436][ T5952] __kasan_slab_alloc+0x6c/0x80
[ 92.690284][ T5952] slab_post_alloc_hook+0x6e/0x4d0
[ 92.695393][ T5952] kmem_cache_alloc_lru+0x115/0x2e0
[ 92.700590][ T5952] new_inode_pseudo+0x82/0x1d0
[ 92.705359][ T5952] create_pipe_files+0x51/0x700
[ 92.710210][ T5952] __do_pipe_flags+0x4c/0x2c0
[ 92.714909][ T5952] do_pipe2+0x9d/0x170
[ 92.718985][ T5952] __x64_sys_pipe2+0x5a/0x70
[ 92.723583][ T5952] do_syscall_64+0x55/0xb0
[ 92.728006][ T5952] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 92.733913][ T5952]
[ 92.736231][ T5952] Freed by task 5928:
[ 92.740214][ T5952] kasan_set_track+0x4e/0x70
[ 92.744805][ T5952] kasan_save_free_info+0x2e/0x50
[ 92.749834][ T5952] ____kasan_slab_free+0x126/0x1e0
[ 92.754960][ T5952] slab_free_freelist_hook+0x130/0x1b0
[ 92.760427][ T5952] kmem_cache_free+0xf8/0x280
[ 92.765104][ T5952] evict+0x756/0x870
[ 92.768992][ T5952] __dentry_kill+0x431/0x650
[ 92.773578][ T5952] dentry_kill+0xb8/0x290
[ 92.777927][ T5952] dput+0xfe/0x1e0
[ 92.781663][ T5952] __fput+0x5e5/0x970
[ 92.785652][ T5952] __se_sys_close+0x15f/0x220
[ 92.790325][ T5952] do_syscall_64+0x55/0xb0
[ 92.794737][ T5952] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 92.800623][ T5952]
[ 92.802939][ T5952] The buggy address belongs to the object at ffff88805e8b37b0
[ 92.802939][ T5952] which belongs to the cache inode_cache of size 1168
[ 92.817078][ T5952] The buggy address is located 712 bytes to the right of
[ 92.817078][ T5952] allocated 1168-byte region [ffff88805e8b37b0, ffff88805e8b3c40)
[ 92.831833][ T5952]
[ 92.834170][ T5952] The buggy address belongs to the physical page:
[ 92.840590][ T5952] page:ffffea00017a2c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5e8b0
[ 92.850741][ T5952] head:ffffea00017a2c00 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 92.859676][ T5952] memcg:ffff8880791f5781
[ 92.863924][ T5952] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.871906][ T5952] page_type: 0xffffffff()
[ 92.876231][ T5952] raw: 00fff00000000840 ffff888019a4da00 dead000000000122 0000000000000000
[ 92.884811][ T5952] raw: 0000000000000000 00000000000c000c 00000001ffffffff ffff8880791f5781
[ 92.893397][ T5952] page dumped because: kasan: bad access detected
[ 92.899827][ T5952] page_owner tracks the page as allocated
[ 92.905536][ T5952] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0x1d20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 5904, tgid 5904 (syz-executor), ts 89693234377, free_ts 23549062454
[ 92.930020][ T5952] post_alloc_hook+0x1cd/0x210
[ 92.934789][ T5952] get_page_from_freelist+0x195c/0x19f0
[ 92.940339][ T5952] __alloc_pages+0x1e3/0x460
[ 92.944932][ T5952] alloc_slab_page+0x5d/0x170
[ 92.949622][ T5952] new_slab+0x87/0x2e0
[ 92.953700][ T5952] ___slab_alloc+0xc6d/0x1300
[ 92.958374][ T5952] kmem_cache_alloc_lru+0x1ae/0x2e0
[ 92.963568][ T5952] new_inode_pseudo+0x82/0x1d0
[ 92.968320][ T5952] new_inode+0x22/0x1b0
[ 92.972463][ T5952] __debugfs_create_file+0x148/0x500
[ 92.977756][ T5952] nsim_udp_tunnels_info_create+0x295/0x770
[ 92.983660][ T5952] nsim_create+0x35c/0x4a0
[ 92.988071][ T5952] __nsim_dev_port_add+0x702/0xb00
[ 92.993171][ T5952] nsim_dev_port_add_all+0x35/0xe0
[ 92.998269][ T5952] nsim_drv_probe+0x884/0xb70
[ 93.002933][ T5952] really_probe+0x25b/0xb40
[ 93.007427][ T5952] page last free stack trace:
[ 93.012084][ T5952] free_unref_page_prepare+0x7ce/0x8e0
[ 93.017537][ T5952] free_unref_page+0x32/0x2e0
[ 93.022217][ T5952] free_contig_range+0xa1/0x160
[ 93.027062][ T5952] destroy_args+0x80/0x850
[ 93.031476][ T5952] debug_vm_pgtable+0x3cc/0x410
[ 93.036326][ T5952] do_one_initcall+0x1fd/0x750
[ 93.041088][ T5952] do_initcall_level+0x137/0x1f0
[ 93.046021][ T5952] do_initcalls+0x69/0xd0
[ 93.050346][ T5952] kernel_init_freeable+0x3d2/0x570
[ 93.055562][ T5952] kernel_init+0x1d/0x1c0
[ 93.059887][ T5952] ret_from_fork+0x48/0x80
[ 93.064299][ T5952] ret_from_fork_asm+0x11/0x20
[ 93.069059][ T5952]
[ 93.071370][ T5952] Memory state around the buggy address:
[ 93.077013][ T5952] ffff88805e8b3e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 93.085066][ T5952] ffff88805e8b3e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 93.093120][ T5952] >ffff88805e8b3f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 93.101182][ T5952] ^
[ 93.105500][ T5952] ffff88805e8b3f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 93.113552][ T5952] ffff88805e8b4000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 93.121609][ T5952] ==================================================================
[ 93.135409][ T5952] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 93.142653][ T5952] CPU: 0 PID: 5952 Comm: syz.0.17 Not tainted syzkaller #0
[ 93.149866][ T5952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 93.159934][ T5952] Call Trace:
[ 93.163221][ T5952]
[ 93.166143][ T5952] dump_stack_lvl+0x16c/0x230
[ 93.170823][ T5952] ? show_regs_print_info+0x20/0x20
[ 93.176019][ T5952] ? load_image+0x3b0/0x3b0
[ 93.180520][ T5952] panic+0x2c0/0x710
[ 93.184406][ T5952] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 93.190559][ T5952] ? bpf_jit_dump+0xd0/0xd0
[ 93.195070][ T5952] ? _raw_spin_unlock_irqrestore+0xfa/0x110
[ 93.200954][ T5952] ? _raw_spin_unlock+0x40/0x40
[ 93.205797][ T5952] ? leaf_paste_entries+0xe78/0x1110
[ 93.211081][ T5952] check_panic_on_warn+0x84/0xa0
[ 93.216010][ T5952] ? leaf_paste_entries+0xe78/0x1110
[ 93.221292][ T5952] end_report+0x6f/0x140
[ 93.225570][ T5952] kasan_report+0x128/0x150
[ 93.230079][ T5952] ? leaf_paste_entries+0xe78/0x1110
[ 93.235363][ T5952] leaf_paste_entries+0xe78/0x1110
[ 93.240479][ T5952] ? journal_mark_dirty+0x221/0xe00
[ 93.245684][ T5952] leaf_copy_dir_entries+0x699/0x990
[ 93.250971][ T5952] ? leaf_item_bottle+0x1280/0x1280
[ 93.256161][ T5952] ? mark_lock+0x94/0x320
[ 93.260484][ T5952] ? __lock_acquire+0x1334/0x7c80
[ 93.265515][ T5952] leaf_copy_boundary_item+0xb90/0x2180
[ 93.271062][ T5952] leaf_move_items+0x8b5/0xe90
[ 93.275822][ T5952] ? reiserfs_convert_objectid_map_v1+0x500/0x500
[ 93.282253][ T5952] ? leaf_delete_items_entirely+0x2cb/0x8b0
[ 93.288172][ T5952] leaf_shift_left+0xbd/0x450
[ 93.292862][ T5952] balance_leaf+0x1dc1/0x10da0
[ 93.297631][ T5952] ? verify_lock_unused+0x140/0x140
[ 93.302846][ T5952] ? lock_chain_count+0x20/0x20
[ 93.307695][ T5952] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 93.313586][ T5952] ? lockdep_hardirqs_on+0x98/0x150
[ 93.318783][ T5952] ? do_balance+0x940/0x940
[ 93.323294][ T5952] ? __mutex_trylock_common+0x153/0x250
[ 93.328844][ T5952] ? trace_raw_output_contention_end+0xd0/0xd0
[ 93.335005][ T5952] ? rcu_is_watching+0x15/0xb0
[ 93.339770][ T5952] ? trace_contention_end+0x39/0xe0
[ 93.344975][ T5952] ? __mutex_lock+0x304/0xcc0
[ 93.349656][ T5952] ? __might_sleep+0xe0/0xe0
[ 93.354245][ T5952] ? __mutex_unlock_slowpath+0x1a2/0x6a0
[ 93.359879][ T5952] ? reiserfs_write_lock_nested+0x60/0xd0
[ 93.365597][ T5952] ? mutex_lock_nested+0x20/0x20
[ 93.370545][ T5952] ? get_empty_nodes+0x435/0x8c0
[ 93.375502][ T5952] ? __wake_up+0x190/0x190
[ 93.379924][ T5952] ? write_boundary_block+0xb0/0xb0
[ 93.385137][ T5952] ? get_neighbors+0x1030/0x1030
[ 93.390081][ T5952] ? indirect_create_vi+0xd/0x50
[ 93.395034][ T5952] ? indirect_check_item+0x10/0x10
[ 93.400142][ T5952] ? create_virtual_node+0x1fc/0x1c70
[ 93.405526][ T5952] ? fix_nodes+0x7b4c/0x82e0
[ 93.410144][ T5952] do_balance+0x2fe/0x940
[ 93.414500][ T5952] ? get_right_neighbor_position+0x210/0x210
[ 93.420492][ T5952] ? reiserfs_delete_item+0xe90/0xe90
[ 93.425879][ T5952] ? calc_deleted_bytes_number+0x465/0x800
[ 93.431707][ T5952] reiserfs_cut_from_item+0x13b2/0x1f10
[ 93.437274][ T5952] ? __might_sleep+0xe0/0xe0
[ 93.441890][ T5952] ? reiserfs_do_truncate+0x1340/0x1340
[ 93.447453][ T5952] ? search_by_key+0x4435/0x4630
[ 93.452466][ T5952] ? make_cpu_key+0x2f/0x230
[ 93.457074][ T5952] reiserfs_do_truncate+0xa3d/0x1340
[ 93.462394][ T5952] ? reiserfs_delete_object+0x1a0/0x1a0
[ 93.467970][ T5952] ? journal_begin+0x1f5/0x360
[ 93.472754][ T5952] ? reiserfs_update_inode_transaction+0x20/0x130
[ 93.479185][ T5952] reiserfs_truncate_file+0x37a/0x7c0
[ 93.484594][ T5952] ? reiserfs_new_symlink+0x560/0x560
[ 93.489971][ T5952] ? unmap_mapping_range+0xdf/0x170
[ 93.495211][ T5952] ? setattr_prepare+0x1e6/0xac0
[ 93.500167][ T5952] reiserfs_setattr+0xc0c/0x11a0
[ 93.505121][ T5952] ? reiserfs_commit_write+0x590/0x590
[ 93.510596][ T5952] ? ktime_get_coarse_real_ts64+0x110/0x120
[ 93.516533][ T5952] ? current_time+0x1b7/0x270
[ 93.521224][ T5952] ? inode_set_ctime_current+0x2d0/0x2d0
[ 93.526866][ T5952] ? evm_inode_setattr+0x94/0x6a0
[ 93.531910][ T5952] ? bpf_lsm_inode_setattr+0x9/0x10
[ 93.537112][ T5952] ? try_break_deleg+0x79/0x120
[ 93.541975][ T5952] ? reiserfs_commit_write+0x590/0x590
[ 93.547456][ T5952] notify_change+0xb0d/0xe10
[ 93.552063][ T5952] do_truncate+0x19b/0x220
[ 93.556483][ T5952] ? put_page_bootmem+0x2c0/0x2c0
[ 93.561512][ T5952] ? apparmor_file_truncate+0x23f/0x2d0
[ 93.567070][ T5952] ? ima_bprm_check+0x1f0/0x1f0
[ 93.571942][ T5952] path_openat+0x298c/0x3190
[ 93.576559][ T5952] ? do_filp_open+0x3d0/0x3d0
[ 93.581259][ T5952] do_filp_open+0x1c5/0x3d0
[ 93.585774][ T5952] ? vfs_tmpfile+0x490/0x490
[ 93.590388][ T5952] ? _raw_spin_unlock+0x28/0x40
[ 93.595238][ T5952] ? alloc_fd+0x58f/0x630
[ 93.599590][ T5952] do_sys_openat2+0x12c/0x1c0
[ 93.604273][ T5952] ? do_sys_open+0xe0/0xe0
[ 93.608697][ T5952] ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 93.614679][ T5952] ? lock_chain_count+0x20/0x20
[ 93.619533][ T5952] __x64_sys_openat+0x139/0x160
[ 93.624390][ T5952] do_syscall_64+0x55/0xb0
[ 93.628811][ T5952] ? clear_bhb_loop+0x40/0x90
[ 93.633491][ T5952] ? clear_bhb_loop+0x40/0x90
[ 93.638173][ T5952] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 93.644074][ T5952] RIP: 0033:0x7fb409b8f6c9
[ 93.648492][ T5952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 93.668116][ T5952] RSP: 002b:00007ffc27ee8ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 93.676533][ T5952] RAX: ffffffffffffffda RBX: 00007fb409de5fa0 RCX: 00007fb409b8f6c9
[ 93.684509][ T5952] RDX: 000000000000275a RSI: 0000200000000000 RDI: ffffffffffffff9c
[ 93.692481][ T5952] RBP: 00007fb409c11f91 R08: 0000000000000000 R09: 0000000000000000
[ 93.700454][ T5952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 93.708423][ T5952] R13: 00007fb409de5fa0 R14: 00007fb409de5fa0 R15: 0000000000000004
[ 93.716403][ T5952]
[ 93.719764][ T5952] Kernel Offset: disabled
[ 93.724088][ T5952] Rebooting in 86400 seconds..