Warning: Permanently added '10.128.0.244' (ED25519) to the list of known hosts.
2026/02/19 22:10:47 parsed 1 programs
[   97.232544][ T4592] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   99.307679][ T4622] chnl_net:caif_netlink_parms(): no params data found
[   99.370876][ T4622] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.378908][ T4622] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.387491][ T4622] device bridge_slave_0 entered promiscuous mode
[   99.397336][ T4622] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.406692][ T4622] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.415541][ T4622] device bridge_slave_1 entered promiscuous mode
[   99.446472][ T4622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.459944][ T4622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.492075][ T4622] team0: Port device team_slave_0 added
[   99.500676][ T4622] team0: Port device team_slave_1 added
[   99.529463][ T4622] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.536691][ T4622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.563364][ T4622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.577123][ T4622] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.584625][ T4622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.611721][ T4622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.653789][ T4622] device hsr_slave_0 entered promiscuous mode
[   99.660735][ T4622] device hsr_slave_1 entered promiscuous mode
[  100.372437][ T4622] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  100.382622][ T4622] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  100.406531][ T4622] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  100.426357][ T4622] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  100.567660][ T4622] 8021q: adding VLAN 0 to HW filter on device bond0
[  100.587715][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  100.604019][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  100.627169][ T4622] 8021q: adding VLAN 0 to HW filter on device team0
[  100.646935][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  100.656911][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  100.684382][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.692110][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  100.719297][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  100.734044][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  100.747089][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  100.756674][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.764306][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  100.775012][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  100.784412][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  100.812960][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  100.834112][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  100.853193][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  100.873783][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  100.895027][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  100.912107][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  100.926297][ T4622] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  100.939262][ T4622] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  100.949724][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  100.958238][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  100.968326][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  101.156250][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  101.165944][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  101.190537][ T4622] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.217056][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  101.234984][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  101.255282][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  101.266098][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  101.277130][ T4622] device veth0_vlan entered promiscuous mode
[  101.289145][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  101.297570][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  101.310561][ T4622] device veth1_vlan entered promiscuous mode
[  101.336086][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  101.346982][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  101.355712][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  101.365832][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  101.378382][ T4622] device veth0_macvtap entered promiscuous mode
[  101.389484][ T4622] device veth1_macvtap entered promiscuous mode
[  101.411602][ T4622] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.422019][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  101.431426][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  101.441968][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  101.451894][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  101.480812][ T4622] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.488816][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  101.500342][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  101.514126][ T4622] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.525679][ T4622] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.535943][ T4622] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.546579][ T4622] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.039863][ T4298] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.068103][ T4298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.084748][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  102.128218][ T4298] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.136358][ T4298] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.146525][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  104.456682][ T4215] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/02/19 22:10:58 executed programs: 0
[  105.052623][ T4812] chnl_net:caif_netlink_parms(): no params data found
[  105.123480][ T4812] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.132211][ T4812] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.141181][ T4812] device bridge_slave_0 entered promiscuous mode
[  105.150475][ T4812] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.158312][ T4812] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.167030][ T4812] device bridge_slave_1 entered promiscuous mode
[  105.196995][ T4812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.209509][ T4812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.242058][ T4812] team0: Port device team_slave_0 added
[  105.250791][ T4812] team0: Port device team_slave_1 added
[  105.275723][ T4812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.282839][ T4812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.311192][ T4812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.324733][ T4812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.332637][ T4812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.361005][ T4812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.409466][ T4812] device hsr_slave_0 entered promiscuous mode
[  105.419488][ T4812] device hsr_slave_1 entered promiscuous mode
[  105.428265][ T4812] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  105.439699][ T4812] Cannot create hsr debugfs directory
[  106.943393][ T4215] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.993778][   T13] Bluetooth: hci0: command 0x0409 tx timeout
[  107.007116][ T4215] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.066122][ T4215] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.887273][ T4812] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  107.898138][ T4812] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  107.946495][ T4812] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  107.957015][ T4812] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  108.060616][ T4812] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.089384][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  108.099001][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  108.109735][ T4812] 8021q: adding VLAN 0 to HW filter on device team0
[  108.144722][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  108.156797][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  108.166998][ T4298] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.174613][ T4298] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.223637][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  108.232652][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  108.245291][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  108.255268][ T4298] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.263127][ T4298] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.275449][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  108.284776][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  108.306197][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  108.316790][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  108.331531][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  108.341472][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  108.354765][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  108.364034][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  108.418093][ T4812] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  108.431147][ T4812] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  108.445378][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  108.457129][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  108.467040][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  108.659952][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  108.668111][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  108.680155][ T4812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.702585][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  108.715657][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  108.742090][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  108.750931][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  108.759991][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  108.770927][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  108.780902][ T4812] device veth0_vlan entered promiscuous mode
[  108.797454][ T4812] device veth1_vlan entered promiscuous mode
[  108.809367][ T4215] device hsr_slave_0 left promiscuous mode
[  108.816235][ T4215] device hsr_slave_1 left promiscuous mode
[  108.822577][ T4215] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.833294][ T4215] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.841516][ T4215] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.849688][ T4215] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.858193][ T4215] device bridge_slave_1 left promiscuous mode
[  108.865029][ T4215] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.874851][ T4215] device bridge_slave_0 left promiscuous mode
[  108.882098][ T4215] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.896169][ T4215] device veth1_macvtap left promiscuous mode
[  108.904508][ T4215] device veth0_macvtap left promiscuous mode
[  108.913693][ T4215] device veth1_vlan left promiscuous mode
[  108.920456][ T4215] device veth0_vlan left promiscuous mode
[  109.067163][ T4215] team0 (unregistering): Port device team_slave_1 removed
[  109.074890][ T4253] Bluetooth: hci0: command 0x041b tx timeout
[  109.088520][ T4215] team0 (unregistering): Port device team_slave_0 removed
[  109.103241][ T4215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  109.118273][ T4215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  109.172539][ T4215] bond0 (unregistering): Released all slaves
[  109.219238][ T4812] device veth0_macvtap entered promiscuous mode
[  109.233295][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  109.241779][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  109.251022][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  109.260441][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  109.269925][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  109.281557][ T4812] device veth1_macvtap entered promiscuous mode
[  109.303677][ T4812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.314511][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  109.325762][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  109.340236][ T4812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.349472][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  109.359174][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  109.370490][ T4812] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.379946][ T4812] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.389261][ T4812] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.399656][ T4812] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.467723][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.476522][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.488657][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  109.511521][  T477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.520099][  T477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.530118][  T477] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  109.619795][ T5036] loop0: detected capacity change from 0 to 8192
[  109.650193][ T5036] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  109.662487][ T5036] REISERFS (device loop0): using ordered data mode
[  109.672681][ T5036] reiserfs: using flush barriers
[  109.681758][ T5036] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  109.714310][ T5036] REISERFS (device loop0): checking transaction log (loop0)
[  109.727764][ T5036] REISERFS (device loop0): Using r5 hash to sort names
[  109.919074][ T5039] loop0: detected capacity change from 0 to 8192
[  109.955934][ T5039] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[  109.972823][ T5039] REISERFS (device loop0): using ordered data mode
[  109.979623][ T5039] reiserfs: using flush barriers
[  109.986426][ T5039] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  110.014369][ T5039] REISERFS (device loop0): checking transaction log (loop0)
[  110.036482][ T5039] REISERFS (device loop0): Using r5 hash to sort names
[  110.053299][ T5039] ==================================================================
[  110.061954][ T5039] BUG: KASAN: use-after-free in search_by_entry_key+0x597/0x1370
[  110.070351][ T5039] Read of size 4 at addr ffff88806901b754 by task syz.0.17/5039
[  110.080036][ T5039] 
[  110.082516][ T5039] CPU: 1 PID: 5039 Comm: syz.0.17 Not tainted syzkaller #0
[  110.090850][ T5039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  110.102508][ T5039] Call Trace:
[  110.106388][ T5039]  <TASK>
[  110.109638][ T5039]  dump_stack_lvl+0x188/0x250
[  110.114813][ T5039]  ? show_regs_print_info+0x20/0x20
[  110.120759][ T5039]  ? _printk+0xda/0x130
[  110.125606][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.132186][ T5039]  ? load_image+0x400/0x400
[  110.137811][ T5039]  ? _raw_spin_lock_irqsave+0xbc/0x100
[  110.143967][ T5039]  print_address_description+0x60/0x2d0
[  110.150292][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.156078][ T5039]  kasan_report+0xdf/0x130
[  110.160709][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.166785][ T5039]  ? __kasan_kmalloc+0xcc/0xf0
[  110.171955][ T5039]  search_by_entry_key+0x597/0x1370
[  110.177294][ T5039]  ? make_cpu_key+0x2b/0x220
[  110.182020][ T5039]  reiserfs_find_entry+0x2f2/0x18e0
[  110.187623][ T5039]  ? verify_lock_unused+0x140/0x140
[  110.193319][ T5039]  ? mutex_lock_io_nested+0x60/0x60
[  110.199050][ T5039]  ? mark_lock+0x94/0x320
[  110.203606][ T5039]  ? reiserfs_get_parent+0x2f0/0x2f0
[  110.209124][ T5039]  ? mutex_lock_nested+0x17/0x20
[  110.214283][ T5039]  reiserfs_lookup+0x1e8/0x480
[  110.219278][ T5039]  ? reiserfs_find_entry+0x18e0/0x18e0
[  110.225283][ T5039]  ? __init_waitqueue_head+0xa5/0x150
[  110.231318][ T5039]  __lookup_slow+0x29d/0x410
[  110.236309][ T5039]  ? lookup_one_len+0x2d0/0x2d0
[  110.241732][ T5039]  lookup_one_len+0x19d/0x2d0
[  110.246701][ T5039]  ? lookup_one_common+0x460/0x460
[  110.252464][ T5039]  reiserfs_lookup_privroot+0x85/0x1e0
[  110.258034][ T5039]  reiserfs_fill_super+0x17ab/0x2440
[  110.263542][ T5039]  ? reiserfs_kill_sb+0x140/0x140
[  110.268687][ T5039]  ? snprintf+0xe5/0x140
[  110.273256][ T5039]  ? vscnprintf+0x80/0x80
[  110.277804][ T5039]  ? set_blocksize+0x1f3/0x370
[  110.282889][ T5039]  ? sb_set_blocksize+0xa5/0xe0
[  110.288310][ T5039]  mount_bdev+0x287/0x3c0
[  110.293453][ T5039]  ? reiserfs_kill_sb+0x140/0x140
[  110.299896][ T5039]  legacy_get_tree+0xe6/0x180
[  110.305416][ T5039]  ? remove_save_link+0x3e0/0x3e0
[  110.310491][ T5039]  vfs_get_tree+0x88/0x270
[  110.315439][ T5039]  do_new_mount+0x24a/0xa40
[  110.320808][ T5039]  __se_sys_mount+0x2e3/0x3d0
[  110.325810][ T5039]  ? __x64_sys_mount+0xc0/0xc0
[  110.333186][ T5039]  ? lockdep_hardirqs_on+0x94/0x140
[  110.338713][ T5039]  ? __x64_sys_mount+0x1c/0xc0
[  110.343755][ T5039]  do_syscall_64+0x4c/0xa0
[  110.349642][ T5039]  ? clear_bhb_loop+0x30/0x80
[  110.354645][ T5039]  ? clear_bhb_loop+0x30/0x80
[  110.359817][ T5039]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  110.367021][ T5039] RIP: 0033:0x7fceb22bfb8a
[  110.371830][ T5039] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  110.393865][ T5039] RSP: 002b:00007fceb1524e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  110.403249][ T5039] RAX: ffffffffffffffda RBX: 00007fceb1524ee0 RCX: 00007fceb22bfb8a
[  110.412839][ T5039] RDX: 0000200000000000 RSI: 0000200000000440 RDI: 00007fceb1524ea0
[  110.421656][ T5039] RBP: 0000200000000000 R08: 00007fceb1524ee0 R09: 000000000120c081
[  110.430116][ T5039] R10: 000000000120c081 R11: 0000000000000246 R12: 0000200000000440
[  110.438376][ T5039] R13: 00007fceb1524ea0 R14: 0000000000001108 R15: 0000200000000900
[  110.446716][ T5039]  </TASK>
[  110.450034][ T5039] 
[  110.452469][ T5039] The buggy address belongs to the page:
[  110.458278][ T5039] page:ffffea0001a406c0 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6901b
[  110.469022][ T5039] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  110.476343][ T5039] raw: 00fff00000000000 ffffea0001a40648 ffffea0001a40748 0000000000000000
[  110.485118][ T5039] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  110.494152][ T5039] page dumped because: kasan: bad access detected
[  110.501031][ T5039] page_owner tracks the page as freed
[  110.506606][ T5039] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 4951, ts 109951467987, free_ts 109975735858
[  110.523085][ T5039]  get_page_from_freelist+0x1bbd/0x1ca0
[  110.528768][ T5039]  __alloc_pages+0x1ee/0x480
[  110.533643][ T5039]  alloc_pages_vma+0x393/0x7c0
[  110.539061][ T5039]  handle_mm_fault+0x23be/0x4410
[  110.544391][ T5039]  do_user_addr_fault+0x489/0xc80
[  110.549628][ T5039]  exc_page_fault+0x60/0x100
[  110.554498][ T5039]  asm_exc_page_fault+0x22/0x30
[  110.559711][ T5039]  copy_user_enhanced_fast_string+0xe/0x40
[  110.566095][ T5039]  copy_page_to_iter+0x49e/0x910
[  110.571488][ T5039]  filemap_read+0x1e2d/0x2540
[  110.576537][ T5039]  blkdev_read_iter+0x11d/0x150
[  110.582239][ T5039]  vfs_read+0x759/0xd60
[  110.587969][ T5039]  ksys_read+0x152/0x260
[  110.593046][ T5039]  do_syscall_64+0x4c/0xa0
[  110.598242][ T5039]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  110.606745][ T5039] page last free stack trace:
[  110.613569][ T5039]  free_unref_page_prepare+0x637/0x6c0
[  110.621376][ T5039]  free_unref_page_list+0x119/0x820
[  110.628004][ T5039]  release_pages+0x186c/0x1be0
[  110.633174][ T5039]  tlb_finish_mmu+0x176/0x300
[  110.638637][ T5039]  unmap_region+0x344/0x3b0
[  110.644913][ T5039]  __do_munmap+0x9f8/0xdf0
[  110.651231][ T5039]  __vm_munmap+0x140/0x240
[  110.658236][ T5039]  __x64_sys_munmap+0x67/0x70
[  110.663740][ T5039]  do_syscall_64+0x4c/0xa0
[  110.669226][ T5039]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  110.676058][ T5039] 
[  110.678614][ T5039] Memory state around the buggy address:
[  110.685504][ T5039]  ffff88806901b600: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  110.696207][ T5039]  ffff88806901b680: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  110.705554][ T5039] >ffff88806901b700: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  110.714673][ T5039]                                                  ^
[  110.721834][ T5039]  ffff88806901b780: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  110.731210][ T5039]  ffff88806901b800: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  110.739836][ T5039] ==================================================================
[  110.748006][ T5039] Disabling lock debugging due to kernel taint
[  110.764363][ T5039] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  110.772054][ T5039] CPU: 0 PID: 5039 Comm: syz.0.17 Tainted: G    B             syzkaller #0
[  110.781048][ T5039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  110.791735][ T5039] Call Trace:
[  110.795222][ T5039]  <TASK>
[  110.798422][ T5039]  dump_stack_lvl+0x188/0x250
[  110.803290][ T5039]  ? show_regs_print_info+0x20/0x20
[  110.808574][ T5039]  ? load_image+0x400/0x400
[  110.813333][ T5039]  panic+0x2e5/0x810
[  110.817311][ T5039]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  110.824000][ T5039]  ? bpf_jit_dump+0xd0/0xd0
[  110.829566][ T5039]  ? _raw_spin_unlock_irqrestore+0x10d/0x120
[  110.836604][ T5039]  ? _raw_spin_unlock+0x40/0x40
[  110.842019][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.848134][ T5039]  check_panic_on_warn+0x80/0xa0
[  110.854118][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.859982][ T5039]  end_report+0x6d/0xf0
[  110.864687][ T5039]  kasan_report+0x102/0x130
[  110.870039][ T5039]  ? search_by_entry_key+0x597/0x1370
[  110.875797][ T5039]  ? __kasan_kmalloc+0xcc/0xf0
[  110.881392][ T5039]  search_by_entry_key+0x597/0x1370
[  110.887390][ T5039]  ? make_cpu_key+0x2b/0x220
[  110.894501][ T5039]  reiserfs_find_entry+0x2f2/0x18e0
[  110.900794][ T5039]  ? verify_lock_unused+0x140/0x140
[  110.907153][ T5039]  ? mutex_lock_io_nested+0x60/0x60
[  110.916720][ T5039]  ? mark_lock+0x94/0x320
[  110.921182][ T5039]  ? reiserfs_get_parent+0x2f0/0x2f0
[  110.926978][ T5039]  ? mutex_lock_nested+0x17/0x20
[  110.932616][ T5039]  reiserfs_lookup+0x1e8/0x480
[  110.938198][ T5039]  ? reiserfs_find_entry+0x18e0/0x18e0
[  110.943678][ T5039]  ? __init_waitqueue_head+0xa5/0x150
[  110.949623][ T5039]  __lookup_slow+0x29d/0x410
[  110.955010][ T5039]  ? lookup_one_len+0x2d0/0x2d0
[  110.960435][ T5039]  lookup_one_len+0x19d/0x2d0
[  110.965733][ T5039]  ? lookup_one_common+0x460/0x460
[  110.971635][ T5039]  reiserfs_lookup_privroot+0x85/0x1e0
[  110.977842][ T5039]  reiserfs_fill_super+0x17ab/0x2440
[  110.983442][ T5039]  ? reiserfs_kill_sb+0x140/0x140
[  110.988925][ T5039]  ? snprintf+0xe5/0x140
[  110.993351][ T5039]  ? vscnprintf+0x80/0x80
[  110.997848][ T5039]  ? set_blocksize+0x1f3/0x370
[  111.002871][ T5039]  ? sb_set_blocksize+0xa5/0xe0
[  111.008088][ T5039]  mount_bdev+0x287/0x3c0
[  111.013505][ T5039]  ? reiserfs_kill_sb+0x140/0x140
[  111.019004][ T5039]  legacy_get_tree+0xe6/0x180
[  111.024275][ T5039]  ? remove_save_link+0x3e0/0x3e0
[  111.029385][ T5039]  vfs_get_tree+0x88/0x270
[  111.033794][ T5039]  do_new_mount+0x24a/0xa40
[  111.038742][ T5039]  __se_sys_mount+0x2e3/0x3d0
[  111.043806][ T5039]  ? __x64_sys_mount+0xc0/0xc0
[  111.048887][ T5039]  ? lockdep_hardirqs_on+0x94/0x140
[  111.054594][ T5039]  ? __x64_sys_mount+0x1c/0xc0
[  111.059574][ T5039]  do_syscall_64+0x4c/0xa0
[  111.064530][ T5039]  ? clear_bhb_loop+0x30/0x80
[  111.069777][ T5039]  ? clear_bhb_loop+0x30/0x80
[  111.074997][ T5039]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  111.082897][ T5039] RIP: 0033:0x7fceb22bfb8a
[  111.087599][ T5039] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  111.110641][ T5039] RSP: 002b:00007fceb1524e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  111.119817][ T5039] RAX: ffffffffffffffda RBX: 00007fceb1524ee0 RCX: 00007fceb22bfb8a
[  111.129225][ T5039] RDX: 0000200000000000 RSI: 0000200000000440 RDI: 00007fceb1524ea0
[  111.138297][ T5039] RBP: 0000200000000000 R08: 00007fceb1524ee0 R09: 000000000120c081
[  111.147229][ T5039] R10: 000000000120c081 R11: 0000000000000246 R12: 0000200000000440
[  111.156587][ T5039] R13: 00007fceb1524ea0 R14: 0000000000001108 R15: 0000200000000900
[  111.165145][ T5039]  </TASK>
[  111.169843][ T5039] Kernel Offset: disabled
[  111.174440][ T5039] Rebooting in 86400 seconds..