Warning: Permanently added '10.128.1.103' (ED25519) to the list of known hosts.
2026/05/04 03:45:03 parsed 1 programs
[ 80.965581][ T4285] cgroup: Unknown subsys name 'net'
[ 81.091063][ T4285] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 82.486561][ T4285] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k FS
[ 84.224249][ T4306] chnl_net:caif_netlink_parms(): no params data found
[ 84.274346][ T4306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.281962][ T4306] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.290013][ T4306] device bridge_slave_0 entered promiscuous mode
[ 84.298670][ T4306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.306204][ T4306] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.314104][ T4306] device bridge_slave_1 entered promiscuous mode
[ 84.337639][ T4306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 84.348511][ T4306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 84.370682][ T4306] team0: Port device team_slave_0 added
[ 84.377926][ T4306] team0: Port device team_slave_1 added
[ 84.395059][ T4306] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 84.402233][ T4306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 84.428422][ T4306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 84.443190][ T4306] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 84.450448][ T4306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 84.476392][ T4306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 84.507146][ T4306] device hsr_slave_0 entered promiscuous mode
[ 84.513930][ T4306] device hsr_slave_1 entered promiscuous mode
[ 84.610640][ T4306] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 84.620652][ T4306] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 84.631877][ T4306] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 84.642672][ T4306] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 84.664090][ T4306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.671307][ T4306] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.678984][ T4306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.686127][ T4306] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 84.731083][ T4306] 8021q: adding VLAN 0 to HW filter on device bond0
[ 84.746673][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 84.757488][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.765514][ T9] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.781213][ T4306] 8021q: adding VLAN 0 to HW filter on device team0
[ 84.793618][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 84.802440][ T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 84.809852][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 84.821695][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 84.830409][ T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 84.837491][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.859481][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 84.869685][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 84.881488][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 84.894250][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 84.909218][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 84.921967][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 85.095793][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 85.103545][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 85.119769][ T4306] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 85.137876][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 85.158277][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 85.168020][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 85.176848][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 85.184486][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 85.196821][ T4306] device veth0_vlan entered promiscuous mode
[ 85.207694][ T4306] device veth1_vlan entered promiscuous mode
[ 85.228270][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 85.236756][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 85.244696][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 85.253741][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 85.267284][ T4306] device veth0_macvtap entered promiscuous mode
[ 85.277163][ T4306] device veth1_macvtap entered promiscuous mode
[ 85.292169][ T4306] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 85.299783][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 85.307817][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 85.321320][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 85.330105][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 85.344847][ T4306] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 85.353194][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 85.361833][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 85.372808][ T4306] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.382109][ T4306] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.390938][ T4306] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.399736][ T4306] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 85.658349][ T56] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 86.376507][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.384583][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.404661][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 86.430330][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.440973][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.449629][ T22] cfg80211: failed to load regulatory.db
[ 86.456357][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 87.009664][ T4353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 87.020521][ T4353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 87.029930][ T4353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 87.037863][ T4353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 87.045322][ T4353] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 87.053683][ T4353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2026/05/04 03:45:12 executed programs: 0
[ 88.105472][ T4351] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 88.113744][ T4351] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 88.121362][ T4351] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 88.129703][ T4351] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 88.139077][ T4351] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 88.146731][ T4351] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 88.261675][ T4371] chnl_net:caif_netlink_parms(): no params data found
[ 88.305251][ T4371] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.312711][ T4371] bridge0: port 1(bridge_slave_0) entered disabled state
[ 88.320727][ T4371] device bridge_slave_0 entered promiscuous mode
[ 88.328888][ T4371] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.336477][ T4371] bridge0: port 2(bridge_slave_1) entered disabled state
[ 88.344350][ T4371] device bridge_slave_1 entered promiscuous mode
[ 88.364893][ T4371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 88.375940][ T4371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 88.397777][ T4371] team0: Port device team_slave_0 added
[ 88.404947][ T4371] team0: Port device team_slave_1 added
[ 88.430692][ T56] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.447539][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 88.454837][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.480833][ T4371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 88.493462][ T4371] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 88.500888][ T4371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.527265][ T4371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 88.560191][ T4371] device hsr_slave_0 entered promiscuous mode
[ 88.566867][ T4371] device hsr_slave_1 entered promiscuous mode
[ 88.573354][ T4371] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 88.581291][ T4371] Cannot create hsr debugfs directory
[ 90.196597][ T4353] Bluetooth: hci0: command 0x0409 tx timeout
[ 90.783771][ T56] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 90.855294][ T56] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.683110][ T56] device hsr_slave_0 left promiscuous mode
[ 91.691404][ T56] device hsr_slave_1 left promiscuous mode
[ 91.698512][ T56] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 91.706344][ T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 91.714707][ T56] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 91.722508][ T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 91.731441][ T56] device bridge_slave_1 left promiscuous mode
[ 91.738398][ T56] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.749960][ T56] device bridge_slave_0 left promiscuous mode
[ 91.757373][ T56] bridge0: port 1(bridge_slave_0) entered disabled state
[ 91.781201][ T56] device veth1_macvtap left promiscuous mode
[ 91.789621][ T56] device veth0_macvtap left promiscuous mode
[ 91.796344][ T56] device veth1_vlan left promiscuous mode
[ 91.802277][ T56] device veth0_vlan left promiscuous mode
[ 92.128030][ T56] team0 (unregistering): Port device team_slave_1 removed
[ 92.152658][ T56] team0 (unregistering): Port device team_slave_0 removed
[ 92.176156][ T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 92.201089][ T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 92.285747][ T4353] Bluetooth: hci0: command 0x041b tx timeout
[ 92.359707][ T56] bond0 (unregistering): Released all slaves
[ 92.444977][ T4371] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 92.454775][ T4371] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 92.463440][ T4371] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 92.474141][ T4371] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 92.531389][ T4371] 8021q: adding VLAN 0 to HW filter on device bond0
[ 92.557535][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 92.566562][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 92.576950][ T4371] 8021q: adding VLAN 0 to HW filter on device team0
[ 92.586500][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 92.595154][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 92.604963][ T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.612116][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 92.621375][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 92.644191][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 92.654911][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 92.663718][ T37] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.670888][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 92.679759][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 92.699291][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 92.710818][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 92.722430][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 92.731082][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 92.743021][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 92.758191][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 92.770428][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 92.779057][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 92.808276][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 92.817327][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 92.828061][ T4371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 93.090328][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 93.098476][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 93.113731][ T4371] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 93.132914][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 93.141580][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 93.159791][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 93.168404][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 93.177506][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 93.185152][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 93.194671][ T4371] device veth0_vlan entered promiscuous mode
[ 93.205272][ T4371] device veth1_vlan entered promiscuous mode
[ 93.222885][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 93.231998][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 93.240104][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 93.248921][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 93.260110][ T4371] device veth0_macvtap entered promiscuous mode
[ 93.269918][ T4371] device veth1_macvtap entered promiscuous mode
[ 93.283716][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 93.291581][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 93.302072][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 93.310040][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 93.318769][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 93.330329][ T4371] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 93.338504][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 93.347465][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 93.358138][ T4371] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.367606][ T4371] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.376642][ T4371] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.385394][ T4371] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 93.434882][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.449338][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.476813][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 93.492866][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.500936][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.509081][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 93.594079][ T4426] loop0: detected capacity change from 0 to 8192
[ 93.608171][ T4426] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 93.621656][ T4426] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 93.631234][ T4426] REISERFS (device loop0): using ordered data mode
[ 93.638575][ T4426] reiserfs: using flush barriers
[ 93.645228][ T4426] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 93.662164][ T4426] REISERFS (device loop0): checking transaction log (loop0)
[ 93.673283][ T4426] REISERFS (device loop0): Using tea hash to sort names
[ 93.681855][ T4426] REISERFS (device loop0): using 3.5.x disk format
[ 93.690130][ T4426] ==================================================================
[ 93.698226][ T4426] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x769/0x10e0
[ 93.705808][ T4426] Read of size 18446744073709551585 at addr ffff888059438fa4 by task syz.0.17/4426
[ 93.715135][ T4426]
[ 93.717502][ T4426] CPU: 1 PID: 4426 Comm: syz.0.17 Not tainted syzkaller #0
[ 93.724722][ T4426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 93.734806][ T4426] Call Trace:
[ 93.738137][ T4426]
[ 93.741100][ T4426] dump_stack_lvl+0x188/0x24e
[ 93.745822][ T4426] ? __lock_acquire+0x7d10/0x7d10
[ 93.750893][ T4426] ? show_regs_print_info+0x12/0x12
[ 93.756129][ T4426] ? load_image+0x400/0x400
[ 93.760685][ T4426] ? _raw_spin_lock_irqsave+0xbc/0x100
[ 93.766180][ T4426] ? __virt_addr_valid+0x188/0x540
[ 93.771332][ T4426] ? __virt_addr_valid+0x465/0x540
[ 93.776477][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 93.781778][ T4426] print_report+0xa8/0x210
[ 93.786209][ T4426] kasan_report+0x10b/0x140
[ 93.790738][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 93.796034][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 93.801328][ T4426] kasan_check_range+0x235/0x290
[ 93.806283][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 93.811579][ T4426] memmove+0x25/0x60
[ 93.815492][ T4426] leaf_paste_entries+0x769/0x10e0
[ 93.820647][ T4426] balance_leaf+0xb2e5/0x10ec0
[ 93.825441][ T4426] ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 93.831440][ T4426] ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 93.837345][ T4426] ? lockdep_hardirqs_on+0x94/0x140
[ 93.842565][ T4426] ? _raw_spin_unlock+0x40/0x40
[ 93.847433][ T4426] ? do_balance+0x930/0x930
[ 93.851960][ T4426] ? stack_trace_save+0xa6/0xf0
[ 93.856835][ T4426] ? __stack_depot_save+0x421/0x460
[ 93.862061][ T4426] ? kasan_set_track+0x60/0x70
[ 93.866849][ T4426] ? kasan_set_track+0x4b/0x70
[ 93.871629][ T4426] ? __kasan_kmalloc+0x8e/0xa0
[ 93.876409][ T4426] ? __kmalloc+0xb0/0x240
[ 93.880762][ T4426] ? fix_nodes+0x60a2/0x8340
[ 93.885378][ T4426] ? reiserfs_paste_into_item+0x60b/0x810
[ 93.891114][ T4426] ? reiserfs_add_entry+0xa42/0xe10
[ 93.896340][ T4426] ? reiserfs_mkdir+0x6bc/0x920
[ 93.901203][ T4426] ? reiserfs_xattr_init+0x331/0x720
[ 93.906501][ T4426] ? reiserfs_fill_super+0x1fee/0x23b0
[ 93.911984][ T4426] ? mount_bdev+0x287/0x3c0
[ 93.916518][ T4426] ? legacy_get_tree+0xe6/0x180
[ 93.921391][ T4426] ? vfs_get_tree+0x88/0x270
[ 93.925999][ T4426] ? do_new_mount+0x24a/0xa40
[ 93.930698][ T4426] ? __se_sys_mount+0x2e3/0x3d0
[ 93.935564][ T4426] ? do_syscall_64+0x4c/0xa0
[ 93.940190][ T4426] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 93.946298][ T4426] ? __wake_up+0x1a0/0x1a0
[ 93.950735][ T4426] ? get_parents+0x400/0xd20
[ 93.955356][ T4426] ? get_neighbors+0x9ba/0x1030
[ 93.960243][ T4426] ? reiserfs_prepare_for_journal+0x267/0x280
[ 93.966330][ T4426] ? fix_nodes+0x7bc3/0x8340
[ 93.970957][ T4426] do_balance+0x318/0x930
[ 93.975306][ T4426] ? get_right_neighbor_position+0x210/0x210
[ 93.981324][ T4426] ? reiserfs_paste_into_item+0x3b0/0x810
[ 93.987057][ T4426] reiserfs_paste_into_item+0x6dd/0x810
[ 93.992619][ T4426] ? reiserfs_cut_from_item+0x1fc0/0x1fc0
[ 93.998373][ T4426] ? reiserfs_get_parent+0x2f0/0x2f0
[ 94.003669][ T4426] ? inode_get_bytes+0x73/0xa0
[ 94.008448][ T4426] ? _find_first_zero_bit+0x61/0x100
[ 94.013754][ T4426] reiserfs_add_entry+0xa42/0xe10
[ 94.018817][ T4426] ? drop_new_inode+0x60/0x60
[ 94.023532][ T4426] ? journal_begin+0x1f1/0x350
[ 94.028327][ T4426] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 94.034770][ T4426] reiserfs_mkdir+0x6bc/0x920
[ 94.039484][ T4426] ? reiserfs_symlink+0x790/0x790
[ 94.044540][ T4426] ? rwsem_write_trylock+0x135/0x1c0
[ 94.049868][ T4426] ? lookup_one_len+0x19d/0x2d0
[ 94.054738][ T4426] ? lookup_one_common+0x450/0x450
[ 94.059886][ T4426] reiserfs_xattr_init+0x331/0x720
[ 94.065026][ T4426] reiserfs_fill_super+0x1fee/0x23b0
[ 94.070345][ T4426] ? reiserfs_kill_sb+0x140/0x140
[ 94.075405][ T4426] ? snprintf+0xe5/0x140
[ 94.079678][ T4426] ? vscnprintf+0x80/0x80
[ 94.084032][ T4426] ? set_blocksize+0x1d0/0x470
[ 94.088822][ T4426] ? sb_set_blocksize+0xa5/0xe0
[ 94.093707][ T4426] mount_bdev+0x287/0x3c0
[ 94.098075][ T4426] ? reiserfs_kill_sb+0x140/0x140
[ 94.103128][ T4426] legacy_get_tree+0xe6/0x180
[ 94.107827][ T4426] ? remove_save_link+0x3e0/0x3e0
[ 94.112888][ T4426] vfs_get_tree+0x88/0x270
[ 94.117319][ T4426] do_new_mount+0x24a/0xa40
[ 94.121842][ T4426] __se_sys_mount+0x2e3/0x3d0
[ 94.126536][ T4426] ? __x64_sys_mount+0xc0/0xc0
[ 94.131324][ T4426] ? lockdep_hardirqs_on+0x94/0x140
[ 94.136571][ T4426] ? __x64_sys_mount+0x1c/0xc0
[ 94.141362][ T4426] do_syscall_64+0x4c/0xa0
[ 94.145802][ T4426] ? clear_bhb_loop+0x60/0xb0
[ 94.150507][ T4426] ? clear_bhb_loop+0x60/0xb0
[ 94.155204][ T4426] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 94.161288][ T4426] RIP: 0033:0x7f8aa8d9e04a
[ 94.165743][ T4426] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 94.185394][ T4426] RSP: 002b:00007ffd66c39ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 94.193859][ T4426] RAX: ffffffffffffffda RBX: 00007ffd66c39b50 RCX: 00007f8aa8d9e04a
[ 94.201888][ T4426] RDX: 00002000000002c0 RSI: 00002000000031c0 RDI: 00007ffd66c39b10
[ 94.209899][ T4426] RBP: 00002000000002c0 R08: 00007ffd66c39b50 R09: 0000000000000800
[ 94.217901][ T4426] R10: 0000000000000800 R11: 0000000000000246 R12: 00002000000031c0
[ 94.225904][ T4426] R13: 00007ffd66c39b10 R14: 000000000000111f R15: 0000200000000300
[ 94.233911][ T4426]
[ 94.236951][ T4426]
[ 94.239304][ T4426] The buggy address belongs to the physical page:
[ 94.245744][ T4426] page:ffffea0001650e00 refcount:3 mapcount:0 mapping:ffff888140c549f8 index:0x213 pfn:0x59438
[ 94.256082][ T4426] memcg:ffff888026c2e000
[ 94.260357][ T4426] aops:def_blk_aops ino:700000
[ 94.265198][ T4426] flags: 0xfff18000002042(referenced|workingset|private|node=0|zone=1|lastcpupid=0x7ff)
[ 94.274949][ T4426] raw: 00fff18000002042 0000000000000000 dead000000000122 ffff888140c549f8
[ 94.283555][ T4426] raw: 0000000000000213 ffff88806e28dcb0 00000003ffffffff ffff888026c2e000
[ 94.292150][ T4426] page dumped because: kasan: bad access detected
[ 94.298586][ T4426] page_owner tracks the page as allocated
[ 94.304321][ T4426] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 4426, tgid 4426 (syz.0.17), ts 93672188500, free_ts 23538109520
[ 94.324311][ T4426] post_alloc_hook+0x173/0x1a0
[ 94.329108][ T4426] get_page_from_freelist+0x1a1e/0x1ab0
[ 94.334682][ T4426] __alloc_pages+0x1ec/0x4f0
[ 94.339312][ T4426] folio_alloc+0x1c/0x60
[ 94.343599][ T4426] filemap_alloc_folio+0xdb/0x480
[ 94.348661][ T4426] __filemap_get_folio+0x6ab/0xdb0
[ 94.353800][ T4426] pagecache_get_page+0x26/0x250
[ 94.358866][ T4426] __getblk_gfp+0x2d8/0xb20
[ 94.363395][ T4426] search_by_key+0x45a/0x4600
[ 94.368105][ T4426] reiserfs_read_locked_inode+0x195/0x26b0
[ 94.373938][ T4426] reiserfs_fill_super+0x1255/0x23b0
[ 94.379257][ T4426] mount_bdev+0x287/0x3c0
[ 94.383610][ T4426] legacy_get_tree+0xe6/0x180
[ 94.388319][ T4426] vfs_get_tree+0x88/0x270
[ 94.392760][ T4426] do_new_mount+0x24a/0xa40
[ 94.397279][ T4426] __se_sys_mount+0x2e3/0x3d0
[ 94.401979][ T4426] page last free stack trace:
[ 94.406666][ T4426] free_unref_page_prepare+0x8b4/0x9a0
[ 94.412180][ T4426] free_unref_page+0x2e/0x3f0
[ 94.416892][ T4426] free_contig_range+0x9d/0x150
[ 94.421766][ T4426] destroy_args+0xf0/0xa0a
[ 94.426197][ T4426] debug_vm_pgtable+0x33c/0x38e
[ 94.431052][ T4426] do_one_initcall+0x26a/0x840
[ 94.435833][ T4426] do_initcall_level+0x137/0x1e4
[ 94.440806][ T4426] do_initcalls+0x4b/0x8a
[ 94.445160][ T4426] kernel_init_freeable+0x415/0x5be
[ 94.450374][ T4426] kernel_init+0x19/0x1b0
[ 94.454712][ T4426] ret_from_fork+0x1f/0x30
[ 94.459147][ T4426]
[ 94.461478][ T4426] Memory state around the buggy address:
[ 94.467111][ T4426] ffff888059438e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 94.475185][ T4426] ffff888059438f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 94.483251][ T4426] >ffff888059438f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 94.491319][ T4426] ^
[ 94.496433][ T4426] ffff888059439000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 94.504519][ T4426] ffff888059439080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 94.512581][ T4426] ==================================================================
[ 94.525701][ T4353] Bluetooth: hci0: command 0x040f tx timeout
[ 94.545822][ T4426] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 94.553047][ T4426] CPU: 0 PID: 4426 Comm: syz.0.17 Not tainted syzkaller #0
[ 94.560240][ T4426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 94.570291][ T4426] Call Trace:
[ 94.573567][ T4426]
[ 94.576496][ T4426] dump_stack_lvl+0x188/0x24e
[ 94.581179][ T4426] ? memcpy+0x3c/0x60
[ 94.585153][ T4426] ? show_regs_print_info+0x12/0x12
[ 94.590350][ T4426] ? load_image+0x400/0x400
[ 94.594863][ T4426] panic+0x2e5/0x730
[ 94.598760][ T4426] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 94.604922][ T4426] ? bpf_jit_dump+0xd0/0xd0
[ 94.609451][ T4426] ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 94.615461][ T4426] ? _raw_spin_unlock+0x40/0x40
[ 94.620324][ T4426] check_panic_on_warn+0x80/0xa0
[ 94.625272][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 94.630560][ T4426] end_report+0x66/0x110
[ 94.634820][ T4426] kasan_report+0x118/0x140
[ 94.639332][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 94.644615][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 94.649900][ T4426] kasan_check_range+0x235/0x290
[ 94.654845][ T4426] ? leaf_paste_entries+0x769/0x10e0
[ 94.660140][ T4426] memmove+0x25/0x60
[ 94.664071][ T4426] leaf_paste_entries+0x769/0x10e0
[ 94.669218][ T4426] balance_leaf+0xb2e5/0x10ec0
[ 94.674027][ T4426] ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 94.680051][ T4426] ? _raw_spin_unlock_irqrestore+0x82/0x120
[ 94.685993][ T4426] ? lockdep_hardirqs_on+0x94/0x140
[ 94.691231][ T4426] ? _raw_spin_unlock+0x40/0x40
[ 94.696119][ T4426] ? do_balance+0x930/0x930
[ 94.700668][ T4426] ? stack_trace_save+0xa6/0xf0
[ 94.705555][ T4426] ? __stack_depot_save+0x421/0x460
[ 94.710794][ T4426] ? kasan_set_track+0x60/0x70
[ 94.715584][ T4426] ? kasan_set_track+0x4b/0x70
[ 94.720375][ T4426] ? __kasan_kmalloc+0x8e/0xa0
[ 94.725185][ T4426] ? __kmalloc+0xb0/0x240
[ 94.729578][ T4426] ? fix_nodes+0x60a2/0x8340
[ 94.734196][ T4426] ? reiserfs_paste_into_item+0x60b/0x810
[ 94.739942][ T4426] ? reiserfs_add_entry+0xa42/0xe10
[ 94.745165][ T4426] ? reiserfs_mkdir+0x6bc/0x920
[ 94.750053][ T4426] ? reiserfs_xattr_init+0x331/0x720
[ 94.755389][ T4426] ? reiserfs_fill_super+0x1fee/0x23b0
[ 94.760895][ T4426] ? mount_bdev+0x287/0x3c0
[ 94.765440][ T4426] ? legacy_get_tree+0xe6/0x180
[ 94.770317][ T4426] ? vfs_get_tree+0x88/0x270
[ 94.774933][ T4426] ? do_new_mount+0x24a/0xa40
[ 94.779640][ T4426] ? __se_sys_mount+0x2e3/0x3d0
[ 94.784510][ T4426] ? do_syscall_64+0x4c/0xa0
[ 94.789137][ T4426] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 94.795244][ T4426] ? __wake_up+0x1a0/0x1a0
[ 94.799700][ T4426] ? get_parents+0x400/0xd20
[ 94.804339][ T4426] ? get_neighbors+0x9ba/0x1030
[ 94.809223][ T4426] ? reiserfs_prepare_for_journal+0x267/0x280
[ 94.815314][ T4426] ? fix_nodes+0x7bc3/0x8340
[ 94.819948][ T4426] do_balance+0x318/0x930
[ 94.824317][ T4426] ? get_right_neighbor_position+0x210/0x210
[ 94.830341][ T4426] ? reiserfs_paste_into_item+0x3b0/0x810
[ 94.836107][ T4426] reiserfs_paste_into_item+0x6dd/0x810
[ 94.841692][ T4426] ? reiserfs_cut_from_item+0x1fc0/0x1fc0
[ 94.847471][ T4426] ? reiserfs_get_parent+0x2f0/0x2f0
[ 94.852814][ T4426] ? inode_get_bytes+0x73/0xa0
[ 94.857642][ T4426] ? _find_first_zero_bit+0x61/0x100
[ 94.862966][ T4426] reiserfs_add_entry+0xa42/0xe10
[ 94.868039][ T4426] ? drop_new_inode+0x60/0x60
[ 94.872777][ T4426] ? journal_begin+0x1f1/0x350
[ 94.877568][ T4426] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 94.884014][ T4426] reiserfs_mkdir+0x6bc/0x920
[ 94.888723][ T4426] ? reiserfs_symlink+0x790/0x790
[ 94.893794][ T4426] ? rwsem_write_trylock+0x135/0x1c0
[ 94.899105][ T4426] ? lookup_one_len+0x19d/0x2d0
[ 94.903977][ T4426] ? lookup_one_common+0x450/0x450
[ 94.909116][ T4426] reiserfs_xattr_init+0x331/0x720
[ 94.914262][ T4426] reiserfs_fill_super+0x1fee/0x23b0
[ 94.919616][ T4426] ? reiserfs_kill_sb+0x140/0x140
[ 94.924679][ T4426] ? snprintf+0xe5/0x140
[ 94.928952][ T4426] ? vscnprintf+0x80/0x80
[ 94.933312][ T4426] ? set_blocksize+0x1d0/0x470
[ 94.938110][ T4426] ? sb_set_blocksize+0xa5/0xe0
[ 94.942991][ T4426] mount_bdev+0x287/0x3c0
[ 94.947360][ T4426] ? reiserfs_kill_sb+0x140/0x140
[ 94.952428][ T4426] legacy_get_tree+0xe6/0x180
[ 94.957134][ T4426] ? remove_save_link+0x3e0/0x3e0
[ 94.962203][ T4426] vfs_get_tree+0x88/0x270
[ 94.966656][ T4426] do_new_mount+0x24a/0xa40
[ 94.971188][ T4426] __se_sys_mount+0x2e3/0x3d0
[ 94.975891][ T4426] ? __x64_sys_mount+0xc0/0xc0
[ 94.980686][ T4426] ? lockdep_hardirqs_on+0x94/0x140
[ 94.985907][ T4426] ? __x64_sys_mount+0x1c/0xc0
[ 94.990698][ T4426] do_syscall_64+0x4c/0xa0
[ 94.995150][ T4426] ? clear_bhb_loop+0x60/0xb0
[ 94.999855][ T4426] ? clear_bhb_loop+0x60/0xb0
[ 95.004558][ T4426] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 95.010479][ T4426] RIP: 0033:0x7f8aa8d9e04a
[ 95.014909][ T4426] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 95.034538][ T4426] RSP: 002b:00007ffd66c39ac8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 95.042971][ T4426] RAX: ffffffffffffffda RBX: 00007ffd66c39b50 RCX: 00007f8aa8d9e04a
[ 95.050959][ T4426] RDX: 00002000000002c0 RSI: 00002000000031c0 RDI: 00007ffd66c39b10
[ 95.058950][ T4426] RBP: 00002000000002c0 R08: 00007ffd66c39b50 R09: 0000000000000800
[ 95.066941][ T4426] R10: 0000000000000800 R11: 0000000000000246 R12: 00002000000031c0
[ 95.074934][ T4426] R13: 00007ffd66c39b10 R14: 000000000000111f R15: 0000200000000300
[ 95.082935][ T4426]
[ 95.086553][ T4426] Kernel Offset: disabled
[ 95.090883][ T4426] Rebooting in 86400 seconds..