Warning: Permanently added '10.128.0.49' (ED25519) to the list of known hosts.
1970/01/01 00:01:04 parsed 1 programs
[   65.554741][ T4428] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k SSFS
[   67.119885][ T4558] chnl_net:caif_netlink_parms(): no params data found
[   67.137624][ T4558] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.138802][ T4558] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.140211][ T4558] device bridge_slave_0 entered promiscuous mode
[   67.142817][ T4558] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.144118][ T4558] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.145781][ T4558] device bridge_slave_1 entered promiscuous mode
[   67.153080][ T4558] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.155596][ T4558] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.163375][ T4558] team0: Port device team_slave_0 added
[   67.165088][ T4558] team0: Port device team_slave_1 added
[   67.171716][ T4558] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.172831][ T4558] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.176911][ T4558] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.179980][ T4558] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.181065][ T4558] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.185457][ T4558] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.246241][ T4558] device hsr_slave_0 entered promiscuous mode
[   67.305397][ T4558] device hsr_slave_1 entered promiscuous mode
[   67.880872][ T4558] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   67.906632][ T4558] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   67.946335][ T4558] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   67.996961][ T4558] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.049339][ T4558] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.050412][ T4558] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.051649][ T4558] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.052705][ T4558] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.088830][ T4558] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.097605][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   68.099744][  T836] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.101174][  T836] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.102889][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   68.117622][ T4558] 8021q: adding VLAN 0 to HW filter on device team0
[   68.119997][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   68.121528][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   68.122899][  T836] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.124053][  T836] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.136350][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   68.138000][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   68.139442][ T1644] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.140558][ T1644] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.146079][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   68.148824][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   68.156499][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   68.158408][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   68.160126][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   68.168854][ T4558] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   68.170498][ T4558] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   68.179817][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   68.182580][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   68.184139][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   68.186557][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   68.188613][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   68.190195][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   68.201466][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   68.235826][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   68.237163][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   68.240951][ T4558] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.248915][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   68.250503][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   68.258987][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   68.261018][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   68.262449][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   68.263777][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   68.266183][ T4558] device veth0_vlan entered promiscuous mode
[   68.269628][ T4558] device veth1_vlan entered promiscuous mode
[   68.286429][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   68.287990][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   68.289421][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   68.290865][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   68.296984][ T4558] device veth0_macvtap entered promiscuous mode
[   68.299493][ T4558] device veth1_macvtap entered promiscuous mode
[   68.310887][ T4558] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.312159][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   68.314056][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   68.317429][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   68.318930][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   68.322004][ T4558] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.325381][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   68.327022][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   68.329107][ T4558] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.330456][ T4558] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.331768][ T4558] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.333059][ T4558] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.778930][ T1644] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.780222][ T1644] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.781636][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   68.789555][  T836] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.790914][  T836] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.792678][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:09 executed programs: 0
[   69.121967][ T4799] chnl_net:caif_netlink_parms(): no params data found
[   69.140824][ T4799] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.142055][ T4799] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.143553][ T4799] device bridge_slave_0 entered promiscuous mode
[   69.147578][ T4799] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.148679][ T4799] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.150211][ T4799] device bridge_slave_1 entered promiscuous mode
[   69.166538][ T4799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.169084][ T4799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.177333][ T4799] team0: Port device team_slave_0 added
[   69.179212][ T4799] team0: Port device team_slave_1 added
[   69.187201][ T4799] batman_adv: batadv0: Adding interface: batadv_slave_0
[   69.188319][ T4799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.192390][ T4799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   69.194609][ T4799] batman_adv: batadv0: Adding interface: batadv_slave_1
[   69.200402][ T4799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   69.204219][ T4799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   69.258161][ T4799] device hsr_slave_0 entered promiscuous mode
[   69.315536][ T4799] device hsr_slave_1 entered promiscuous mode
[   69.345455][ T4799] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   69.346593][ T4799] Cannot create hsr debugfs directory
[   69.381047][ T4799] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.604164][ T2065] ieee802154 phy0 wpan0: encryption failed: -22
[   69.605658][ T2065] ieee802154 phy1 wpan1: encryption failed: -22
[   69.606012][   T21] cfg80211: failed to load regulatory.db
[   71.115226][   T21] Bluetooth: hci0: command 0x0409 tx timeout
[   71.740370][ T4799] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.195413][ T4184] Bluetooth: hci0: command 0x041b tx timeout
[   73.738800][ T4799] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.779206][ T4799] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   73.939543][ T4799] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   73.967236][ T4799] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   73.996578][ T4799] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   74.036695][ T4799] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   74.108344][ T4799] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.112015][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   74.113586][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   74.116103][ T4799] 8021q: adding VLAN 0 to HW filter on device team0
[   74.118670][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   74.120288][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   74.121812][ T1644] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.122952][ T1644] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.124456][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   74.127559][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   74.129249][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   74.130748][ T1644] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.131878][ T1644] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.134276][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   74.139205][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   74.141818][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   74.143878][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   74.146034][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   74.148706][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   74.150311][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   74.152891][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   74.154320][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   74.159095][ T4799] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   74.161229][ T4799] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   74.162994][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   74.164548][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   74.203370][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   74.204749][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   74.208995][ T4799] 8021q: adding VLAN 0 to HW filter on device batadv0
[   74.214295][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   74.216311][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   74.222539][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   74.224176][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   74.226084][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   74.227510][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   74.230002][ T4799] device veth0_vlan entered promiscuous mode
[   74.233856][ T4799] device veth1_vlan entered promiscuous mode
[   74.240692][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   74.242263][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   74.243697][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   74.245140][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   74.261132][ T4799] device veth0_macvtap entered promiscuous mode
[   74.263817][ T4799] device veth1_macvtap entered promiscuous mode
[   74.269631][ T4799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.271327][ T4799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.273395][ T4799] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.274670][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   74.277098][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   74.278909][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   74.280404][ T1644] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   74.282974][ T4799] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.284595][ T4799] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.287356][ T4799] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.288561][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   74.290145][  T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   74.304710][ T4799] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.306189][ T4799] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.307428][ T4799] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.308664][ T4799] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.331259][  T836] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.332685][  T836] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.334669][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   74.340154][  T836] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.341366][  T836] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.342972][  T397] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
1970/01/01 00:01:14 executed programs: 2
[   74.385880][ T4988] loop0: detected capacity change from 0 to 8192
[   74.470716][ T4988] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   74.472293][ T4988] REISERFS (device loop0): using ordered data mode
[   74.473309][ T4988] reiserfs: using flush barriers
[   74.474713][ T4988] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   74.478916][ T4988] REISERFS (device loop0): checking transaction log (loop0)
[   74.528900][ T4988] REISERFS (device loop0): Using rupasov hash to sort names
[   74.530568][ T4988] ==================================================================
[   74.531874][ T4988] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x4d8/0x924
[   74.533034][ T4988] Read of size 18446744073709551584 at addr ffff0000e8f40fa4 by task syz.0.16/4988
[   74.534425][ T4988] 
[   74.534761][ T4988] CPU: 1 PID: 4988 Comm: syz.0.16 Not tainted syzkaller #0
[   74.535879][ T4988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   74.537501][ T4988] Call trace:
[   74.538013][ T4988]  dump_backtrace+0x0/0x43c
[   74.538716][ T4988]  show_stack+0x2c/0x3c
[   74.539411][ T4988]  __dump_stack+0x30/0x40
[   74.540144][ T4988]  dump_stack_lvl+0xf8/0x160
[   74.540879][ T4988]  print_address_description+0x78/0x30c
[   74.541760][ T4988]  kasan_report+0xec/0x15c
[   74.542457][ T4988]  kasan_check_range+0x270/0x2b0
[   74.543293][ T4988]  memmove+0x90/0xe8
[   74.543919][ T4988]  leaf_paste_entries+0x4d8/0x924
[   74.544701][ T4988]  balance_leaf+0x81d0/0xd2f4
[   74.545425][ T4988]  do_balance+0x260/0x778
[   74.546102][ T4988]  reiserfs_paste_into_item+0x5b4/0x6d0
[   74.546957][ T4988]  reiserfs_add_entry+0x828/0xbe4
[   74.547757][ T4988]  reiserfs_mkdir+0x588/0x788
[   74.548408][ T4988]  reiserfs_xattr_init+0x2b0/0x6dc
[   74.549225][ T4988]  reiserfs_fill_super+0x17ec/0x1bb4
[   74.550126][ T4988]  mount_bdev+0x264/0x358
[   74.550869][ T4988]  get_super_block+0x44/0x58
[   74.551592][ T4988]  legacy_get_tree+0xd4/0x16c
[   74.552340][ T4988]  vfs_get_tree+0x90/0x274
[   74.552999][ T4988]  do_new_mount+0x228/0x810
[   74.553718][ T4988]  path_mount+0x5b4/0x1000
[   74.554425][ T4988]  __arm64_sys_mount+0x514/0x5e4
[   74.555242][ T4988]  invoke_syscall+0x98/0x2b8
[   74.555911][ T4988]  el0_svc_common+0x138/0x258
[   74.556656][ T4988]  do_el0_svc+0x58/0x14c
[   74.557379][ T4988]  el0_svc+0x78/0x1e0
[   74.558042][ T4988]  el0t_64_sync_handler+0xcc/0xe4
[   74.558876][ T4988]  el0t_64_sync+0x1a0/0x1a4
[   74.559680][ T4988] 
[   74.560050][ T4988] The buggy address belongs to the page:
[   74.560920][ T4988] page:000000009a8a7340 refcount:3 mapcount:0 mapping:00000000f765f024 index:0x213 pfn:0x128f40
[   74.562634][ T4988] memcg:ffff0000c9b60000
[   74.563357][ T4988] aops:def_blk_aops ino:700000
[   74.564115][ T4988] flags: 0x5ffc00000002022(referenced|active|private|node=0|zone=2|lastcpupid=0x7ff)
[   74.565665][ T4988] raw: 05ffc00000002022 0000000000000000 dead000000000122 ffff0000c049db08
[   74.567046][ T4988] raw: 0000000000000213 ffff0000debcdae0 00000003ffffffff ffff0000c9b60000
[   74.568333][ T4988] page dumped because: kasan: bad access detected
[   74.569425][ T4988] 
[   74.569780][ T4988] Memory state around the buggy address:
[   74.570693][ T4988]  ffff0000e8f40e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.572008][ T4988]  ffff0000e8f40f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.573328][ T4988] >ffff0000e8f40f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   74.574661][ T4988]                                ^
[   74.575494][ T4988]  ffff0000e8f41000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.576752][ T4988]  ffff0000e8f41080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   74.578095][ T4988] ==================================================================
[   74.579440][ T4988] Disabling lock debugging due to kernel taint
[   74.581647][ T4988] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 10864, item_location 2, free_space(entry_count) 1536
[   74.584546][ T4988] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   74.586488][ T4988] REISERFS (device loop0): Remounting filesystem read-only
[   74.587639][ T4988] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data
[   74.589757][ T4988] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[   74.592101][ T4988] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 10864, item_location 2, free_space(entry_count) 1536
[   74.596006][ T4988] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   74.597531][ T4988] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error
[   74.808198][ T4991] loop0: detected capacity change from 0 to 8192
[   74.888560][ T4991] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[   74.890262][ T4991] REISERFS (device loop0): using ordered data mode
[   74.891264][ T4991] reiserfs: using flush barriers
[   74.892415][ T4991] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   74.895097][ T4991] REISERFS (device loop0): checking transaction log (loop0)
[   74.914493][ T4991] REISERFS (device loop0): Using rupasov hash to sort names
[   74.917328][ T4974] list_del corruption. next->prev should be ffff0000cf119710, but was ffff0000e25a7298
[   74.919002][ T4974] ------------[ cut here ]------------
[   74.919838][ T4974] kernel BUG at lib/list_debug.c:64!
[   74.920667][ T4974] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP
[   74.921960][ T4974] Modules linked in:
[   74.922588][ T4974] CPU: 0 PID: 4974 Comm: udevd Tainted: G    B             syzkaller #0
[   74.924008][ T4974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   74.925205][    C1] Unable to handle kernel paging request at virtual address 001fadff9a20607d
[   74.925596][ T4974] pstate: 62400005 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--)
[   74.926913][    C1] Mem abort info:
[   74.928112][ T4974] pc : __list_del_entry_valid+0x14c/0x150
[   74.928606][    C1]   ESR = 0x0000000096000004
[   74.929477][ T4974] lr : __list_del_entry_valid+0x14c/0x150
[   74.930161][    C1]   EC = 0x25: DABT (current EL), IL = 32 bits
[   74.931083][ T4974] sp : ffff80001f107860
[   74.931946][    C1]   SET = 0, FnV = 0
[   74.932603][ T4974] x29: ffff80001f107860
[   74.933182][    C1]   EA = 0, S1PTW = 0
[   74.933184][ T4974]  x28: dfff800000000000
[   74.933192][    C1]   FSC = 0x04: level 0 translation fault
[   74.933847][ T4974]  x27: ffff0000cf119658
[   74.934460][    C1] Data abort info:
[   74.935161][ T4974] 
[   74.936019][    C1]   ISV = 0, ISS = 0x00000004
[   74.936688][ T4974] x26: ffff0000cf119098
[   74.937214][    C1]   CM = 0, WnR = 0
[   74.937587][ T4974]  x25: 0000000481d16f16
[   74.938340][    C1] [001fadff9a20607d] address between user and kernel address ranges
[   74.938977][ T4974]  x24: ffff0000cf119070
[   74.942082][ T4974] x23: ffff0000cf119710 x22: ffff0000e25a72a8 x21: dfff800000000000
[   74.943360][ T4974] x20: ffff0000e25a72b0 x19: ffff0000cf119710 x18: 0000000000000005
[   74.944734][ T4974] x17: 0000000000000000 x16: ffff8000111cbe1c x15: 00000000ffffffff
[   74.946096][ T4974] x14: 0000000000ff0100 x13: 0000000000000001 x12: 0000000000ff0100
[   74.947368][ T4974] x11: 0000000000000004 x10: 0000000000000000 x9 : 36452ab7c25ac000
[   74.948594][ T4974] x8 : 36452ab7c25ac000 x7 : 0000000000000001 x6 : 0000000000000001
[   74.949860][ T4974] x5 : ffff80001f107158 x4 : ffff80001425f420 x3 : ffff80000a7280cc
[   74.951116][ T4974] x2 : ffff0001a10b3d50 x1 : 0000000100000004 x0 : 0000000000000054
[   74.952382][ T4974] Call trace:
[   74.952923][ T4974]  __list_del_entry_valid+0x14c/0x150
[   74.953849][ T4974]  __d_move+0xcb0/0x14fc
[   74.954556][ T4974]  d_move+0x110/0x21c
[   74.955180][ T4974]  vfs_rename+0xbe4/0xdcc
[   74.955930][ T4974]  do_renameat2+0x74c/0xcdc
[   74.956698][ T4974]  __arm64_sys_renameat+0xc8/0xe4
[   74.957544][ T4974]  invoke_syscall+0x98/0x2b8
[   74.958264][ T4974]  el0_svc_common+0x138/0x258
[   74.958995][ T4974]  do_el0_svc+0x58/0x14c
[   74.959658][ T4974]  el0_svc+0x78/0x1e0
[   74.960307][ T4974]  el0t_64_sync_handler+0xcc/0xe4
[   74.961144][ T4974]  el0t_64_sync+0x1a0/0x1a4
[   74.961813][ T4974] Code: 90038320 91118000 aa1303e1 95a634cf (d4210000) 
[   74.962937][ T4974] ---[ end trace 1d9a93750023e596 ]---
[   74.977095][ T4974] ================================================================================
[   74.978638][ T4974] UBSAN: array-index-out-of-bounds in kernel/locking/qspinlock.c:130:9
[   74.980049][ T4974] index 1099 is out of range for type 'unsigned long[8]'
[   74.981170][ T4974] CPU: 0 PID: 4974 Comm: udevd Tainted: G    B D           syzkaller #0
[   74.982559][ T4974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025
[   74.984271][ T4974] Call trace:
[   74.984829][ T4974]  dump_backtrace+0x0/0x43c
[   74.985571][ T4974]  show_stack+0x2c/0x3c
[   74.986287][ T4974]  __dump_stack+0x30/0x40
[   74.986969][ T4974]  dump_stack_lvl+0xf8/0x160
[   74.987763][ T4974]  dump_stack+0x1c/0x5c
[   74.988468][ T4974]  ubsan_epilogue+0x14/0x48
[   74.989151][ T4974]  __ubsan_handle_out_of_bounds+0xd4/0x108
[   74.990091][ T4974]  queued_spin_lock_slowpath+0x724/0x798
[   74.991045][ T4974]  do_raw_spin_lock+0x2ec/0x2f0
[   74.991863][ T4974]  _raw_spin_lock_irqsave+0xcc/0x14c
[   74.992702][ T4974]  try_to_wake_up+0x60/0xa64
[   74.993413][ T4974]  wake_up_process+0x18/0x24
[   74.994122][ T4974]  insert_work+0x2b4/0x388
[   74.994876][ T4974]  __queue_work+0xb30/0x1054
[   74.995567][ T4974]  queue_work_on+0xc4/0x17c
[   74.996284][ T4974]  efi_pstore_write+0x29c/0x3ac
[   74.996998][ T4974]  pstore_dump+0x4dc/0x6f8
[   74.997686][ T4974]  kmsg_dump+0x170/0x260
[   74.998364][ T4974]  oops_exit+0x20/0x2c
[   74.999044][ T4974]  die+0xb8/0x1d8
[   74.999625][ T4974]  bug_handler+0x1f0/0x1fc
[   75.000336][ T4974]  brk_handler+0x174/0x2dc
[   75.001003][ T4974]  do_debug_exception+0x204/0x414
[   75.001819][ T4974]  el1_dbg+0x64/0x80
[   75.002435][ T4974]  el1h_64_sync_handler+0x40/0xcc
[   75.003215][ T4974]  el1h_64_sync+0x78/0x7c
[   75.003879][ T4974]  __list_del_entry_valid+0x14c/0x150
[   75.004650][ T4974]  __d_move+0xcb0/0x14fc
[   75.005258][ T4974]  d_move+0x110/0x21c
[   75.005871][ T4974]  vfs_rename+0xbe4/0xdcc
[   75.006573][ T4974]  do_renameat2+0x74c/0xcdc
[   75.007308][ T4974]  __arm64_sys_renameat+0xc8/0xe4
[   75.008127][ T4974]  invoke_syscall+0x98/0x2b8
[   75.008856][ T4974]  el0_svc_common+0x138/0x258
[   75.009549][ T4974]  do_el0_svc+0x58/0x14c
[   75.010184][ T4974]  el0_svc+0x78/0x1e0
[   75.010763][ T4974]  el0t_64_sync_handler+0xcc/0xe4
[   75.011486][ T4974]  el0t_64_sync+0x1a0/0x1a4
[   75.012149][ T4974] ================================================================================
[   75.013458][ T4974] Unable to handle kernel paging request at virtual address ffff8000140e7750
[   75.014688][ T4974] Mem abort info:
[   75.015207][ T4974]   ESR = 0x0000000096000047
[   75.015833][ T4974]   EC = 0x25: DABT (current EL), IL = 32 bits
[   75.016892][ T4974]   SET = 0, FnV = 0
[   75.017559][ T4974]   EA = 0, S1PTW = 0
[   75.018248][ T4974]   FSC = 0x07: level 3 translation fault
[   75.019231][ T4974] Data abort info:
[   75.019853][ T4974]   ISV = 0, ISS = 0x00000047
[   75.020649][ T4974]   CM = 0, WnR = 1
[   75.021257][ T4974] swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000002113cf000
[   75.022400][ T4974] [ffff8000140e7750] pgd=100000023ffff003, p4d=100000023ffff003, pud=100000023fffe003, pmd=100000023fff9003, pte=0000000000000000