Warning: Permanently added '10.128.0.9' (ED25519) to the list of known hosts.
2025/11/26 05:54:28 parsed 1 programs
[   52.931655][ T4188] cgroup: Unknown subsys name 'net'
[   53.063783][ T4188] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   54.317923][ T4188] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   56.645661][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.657932][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.675544][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   56.690219][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.698102][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.706674][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   57.549650][ T4258] chnl_net:caif_netlink_parms(): no params data found
[   57.653482][ T4258] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.660833][ T4258] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.668518][ T4258] device bridge_slave_0 entered promiscuous mode
[   57.676969][ T4258] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.684252][ T4258] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.691917][ T4258] device bridge_slave_1 entered promiscuous mode
[   57.711719][ T4258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.722191][ T4258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.741447][ T4258] team0: Port device team_slave_0 added
[   57.748089][ T4258] team0: Port device team_slave_1 added
[   57.764162][ T4258] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.771408][ T4258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.797608][ T4258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.809519][ T4258] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.816448][ T4258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.842395][ T4258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.867138][ T4258] device hsr_slave_0 entered promiscuous mode
[   57.873915][ T4258] device hsr_slave_1 entered promiscuous mode
[   57.944990][ T4258] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.954428][ T4258] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.962924][ T4258] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.971744][ T4258] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   58.015901][ T4258] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.026934][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   58.036621][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   58.044537][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.055747][ T4258] 8021q: adding VLAN 0 to HW filter on device team0
[   58.083616][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   58.092530][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.102095][ T3057] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.109193][ T3057] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.119712][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   58.127879][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.136333][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.145158][ T3057] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.152229][ T3057] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.164665][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   58.197994][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   58.215127][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   58.224664][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   58.233025][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.242103][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.252703][ T4258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   58.351677][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   58.359078][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   58.372166][ T4258] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.403740][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.420489][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.428791][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.436596][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.446464][ T4258] device veth0_vlan entered promiscuous mode
[   58.474506][ T4258] device veth1_vlan entered promiscuous mode
[   58.492113][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   58.500366][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   58.508465][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.518175][ T4258] device veth0_macvtap entered promiscuous mode
[   58.527802][ T4258] device veth1_macvtap entered promiscuous mode
[   58.557759][ T4258] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.565696][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   58.574598][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   58.585806][ T4258] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.594551][ T3057] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   58.605665][ T4258] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.614575][ T4258] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.623432][ T4258] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.632376][ T4258] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.743730][ T4258] syz-executor (4258) used greatest stack depth: 20096 bytes left
2025/11/26 05:54:36 executed programs: 0
[   59.258116][ T4297] chnl_net:caif_netlink_parms(): no params data found
[   59.312904][ T4297] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.320057][ T4297] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.327963][ T4297] device bridge_slave_0 entered promiscuous mode
[   59.338483][ T4297] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.345620][ T4297] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.355770][ T4297] device bridge_slave_1 entered promiscuous mode
[   59.383259][ T4297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.394339][ T4297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.424458][ T4297] team0: Port device team_slave_0 added
[   59.431932][ T4297] team0: Port device team_slave_1 added
[   59.458212][ T4297] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.465268][ T4297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.493446][ T4297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.505978][ T4297] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.515381][ T4297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.543694][ T4297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.581926][ T4297] device hsr_slave_0 entered promiscuous mode
[   59.588617][ T4297] device hsr_slave_1 entered promiscuous mode
[   59.597583][ T4297] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.605630][ T4297] Cannot create hsr debugfs directory
[   59.692059][ T4297] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.879164][    T9] ODEBUG: Out of memory. ODEBUG disabled
[   61.199949][    T7] Bluetooth: hci0: command 0x0409 tx timeout
[   61.743922][ T4297] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.289530][ T4273] Bluetooth: hci0: command 0x041b tx timeout
[   63.493500][ T4297] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.584390][ T4297] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.728033][ T4297] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   63.737123][ T4297] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   63.745387][ T4297] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   63.753587][ T4297] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   63.797484][ T4297] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.808708][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   63.816675][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.827007][ T4297] 8021q: adding VLAN 0 to HW filter on device team0
[   63.846987][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   63.855713][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   63.864381][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.871473][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.879868][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   63.888315][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   63.896887][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.903966][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.911531][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   63.928449][ T4297] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   63.938867][ T4297] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   63.952133][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.960360][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   63.968809][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   63.977205][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   63.985794][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   63.994559][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   64.003265][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   64.011476][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   64.019951][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   64.028063][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   64.036295][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   64.043986][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   64.117523][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   64.125089][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   64.135834][ T4297] 8021q: adding VLAN 0 to HW filter on device batadv0
[   64.156420][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   64.165358][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   64.181975][ T4297] device veth0_vlan entered promiscuous mode
[   64.188296][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   64.196472][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.205264][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   64.213137][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   64.227219][    T9] device hsr_slave_0 left promiscuous mode
[   64.233548][    T9] device hsr_slave_1 left promiscuous mode
[   64.241126][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.248529][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.256719][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.264913][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.272732][    T9] device bridge_slave_1 left promiscuous mode
[   64.279237][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.291599][    T9] device bridge_slave_0 left promiscuous mode
[   64.297717][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.312845][    T9] device veth1_macvtap left promiscuous mode
[   64.318930][    T9] device veth0_macvtap left promiscuous mode
[   64.325278][    T9] device veth1_vlan left promiscuous mode
[   64.331541][    T9] device veth0_vlan left promiscuous mode
[   64.426508][    T9] team0 (unregistering): Port device team_slave_1 removed
[   64.437258][    T9] team0 (unregistering): Port device team_slave_0 removed
[   64.447867][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   64.461820][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   64.502614][    T9] bond0 (unregistering): Released all slaves
[   64.575252][ T4297] device veth1_vlan entered promiscuous mode
[   64.591027][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   64.598910][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   64.607125][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   64.615902][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   64.625585][ T4297] device veth0_macvtap entered promiscuous mode
[   64.635180][ T4297] device veth1_macvtap entered promiscuous mode
[   64.650720][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.658149][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   64.666902][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   64.675226][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   64.683996][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.695241][ T4297] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.703402][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   64.711874][ T1167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   64.724517][ T4297] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.733369][ T4297] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.742273][ T4297] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.751473][ T4297] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.802367][ T1167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.811677][ T1167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.819236][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.827450][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.835137][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.846459][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   64.926568][ T4316] loop0: detected capacity change from 0 to 8192
[   64.985574][ T4316] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   64.999592][ T4316] REISERFS (device loop0): using ordered data mode
[   65.006165][ T4316] reiserfs: using flush barriers
[   65.029925][ T4316] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   65.047170][ T4316] REISERFS (device loop0): checking transaction log (loop0)
[   65.062752][ T4316] REISERFS (device loop0): Using tea hash to sort names
[   65.081828][ T4316] ==================================================================
[   65.090004][ T4316] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x73c/0x10c0
[   65.097562][ T4316] Read of size 18446744073709551584 at addr ffff88805c9fcfa4 by task syz.0.17/4316
[   65.106838][ T4316] 
[   65.109164][ T4316] CPU: 0 PID: 4316 Comm: syz.0.17 Not tainted syzkaller #0
[   65.116347][ T4316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.126397][ T4316] Call Trace:
[   65.129669][ T4316]  <TASK>
[   65.132594][ T4316]  dump_stack_lvl+0x168/0x230
[   65.137279][ T4316]  ? show_regs_print_info+0x20/0x20
[   65.142485][ T4316]  ? _printk+0xcc/0x110
[   65.146640][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   65.151924][ T4316]  ? load_image+0x3b0/0x3b0
[   65.156420][ T4316]  ? __lock_acquire+0x13ad/0x7c60
[   65.161448][ T4316]  print_address_description+0x60/0x2d0
[   65.166994][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   65.172279][ T4316]  kasan_report+0xdf/0x130
[   65.176696][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   65.181973][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   65.187252][ T4316]  kasan_check_range+0x27b/0x290
[   65.192194][ T4316]  memmove+0x25/0x60
[   65.196090][ T4316]  leaf_paste_entries+0x73c/0x10c0
[   65.201208][ T4316]  balance_leaf+0xacec/0x10e60
[   65.205990][ T4316]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   65.211969][ T4316]  ? lock_chain_count+0x20/0x20
[   65.216850][ T4316]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[   65.222213][ T4316]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[   65.228104][ T4316]  ? do_balance+0x930/0x930
[   65.232605][ T4316]  ? _raw_spin_unlock+0x40/0x40
[   65.237448][ T4316]  ? stack_trace_snprint+0xf0/0xf0
[   65.242552][ T4316]  ? stack_depot_save+0x404/0x440
[   65.247583][ T4316]  ? __kasan_kmalloc+0xcc/0xf0
[   65.252359][ T4316]  ? __kasan_kmalloc+0xb5/0xf0
[   65.257117][ T4316]  ? fix_nodes+0x6044/0x82d0
[   65.261694][ T4316]  ? reiserfs_paste_into_item+0x5c8/0x7e0
[   65.267418][ T4316]  ? reiserfs_add_entry+0x975/0xd40
[   65.272621][ T4316]  ? reiserfs_mkdir+0x68f/0x970
[   65.277473][ T4316]  ? reiserfs_xattr_init+0x331/0x720
[   65.282753][ T4316]  ? reiserfs_fill_super+0x1fa6/0x23e0
[   65.288202][ T4316]  ? mount_bdev+0x287/0x3c0
[   65.292703][ T4316]  ? legacy_get_tree+0xe6/0x180
[   65.297545][ T4316]  ? vfs_get_tree+0x88/0x270
[   65.302144][ T4316]  ? do_new_mount+0x24a/0xa40
[   65.306808][ T4316]  ? __se_sys_mount+0x2d6/0x3c0
[   65.311649][ T4316]  ? do_syscall_64+0x4c/0xa0
[   65.316229][ T4316]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.322312][ T4316]  ? __wake_up_bit+0x100/0x100
[   65.327080][ T4316]  ? get_parents+0x400/0xd20
[   65.331657][ T4316]  ? get_neighbors+0x9ba/0x1030
[   65.336505][ T4316]  ? reiserfs_prepare_for_journal+0x269/0x280
[   65.342567][ T4316]  ? fix_nodes+0x7b26/0x82d0
[   65.347190][ T4316]  do_balance+0x2fa/0x930
[   65.351522][ T4316]  ? get_right_neighbor_position+0x210/0x210
[   65.357538][ T4316]  reiserfs_paste_into_item+0x69b/0x7e0
[   65.363089][ T4316]  ? reiserfs_cut_from_item+0x1ef0/0x1ef0
[   65.368874][ T4316]  ? reiserfs_get_parent+0x270/0x270
[   65.374148][ T4316]  ? inode_get_bytes+0x73/0xa0
[   65.378914][ T4316]  ? memset+0x1e/0x40
[   65.382889][ T4316]  ? _find_first_zero_bit+0x60/0xf0
[   65.388086][ T4316]  reiserfs_add_entry+0x975/0xd40
[   65.389528][ T4272] Bluetooth: hci0: command 0x040f tx timeout
[   65.393117][ T4316]  ? drop_new_inode+0x60/0x60
[   65.403764][ T4316]  ? journal_begin+0x1f1/0x350
[   65.408527][ T4316]  ? reiserfs_update_inode_transaction+0x1c/0x120
[   65.414954][ T4316]  reiserfs_mkdir+0x68f/0x970
[   65.419643][ T4316]  ? reiserfs_symlink+0x770/0x770
[   65.424668][ T4316]  ? preempt_count_add+0x8d/0x190
[   65.429687][ T4316]  ? rwsem_write_trylock+0x12f/0x1b0
[   65.434977][ T4316]  ? lookup_one_len+0x18e/0x2c0
[   65.439829][ T4316]  ? lookup_one_common+0x460/0x460
[   65.444943][ T4316]  reiserfs_xattr_init+0x331/0x720
[   65.450060][ T4316]  reiserfs_fill_super+0x1fa6/0x23e0
[   65.455353][ T4316]  ? reiserfs_kill_sb+0x140/0x140
[   65.460377][ T4316]  ? snprintf+0xd7/0x120
[   65.464620][ T4316]  ? vscnprintf+0x80/0x80
[   65.468943][ T4316]  ? set_blocksize+0x1f1/0x370
[   65.473707][ T4316]  ? sb_set_blocksize+0xa5/0xe0
[   65.478552][ T4316]  mount_bdev+0x287/0x3c0
[   65.482874][ T4316]  ? reiserfs_kill_sb+0x140/0x140
[   65.487892][ T4316]  legacy_get_tree+0xe6/0x180
[   65.492562][ T4316]  ? remove_save_link+0x3c0/0x3c0
[   65.497583][ T4316]  vfs_get_tree+0x88/0x270
[   65.502000][ T4316]  do_new_mount+0x24a/0xa40
[   65.506505][ T4316]  __se_sys_mount+0x2d6/0x3c0
[   65.511181][ T4316]  ? __x64_sys_mount+0xc0/0xc0
[   65.515953][ T4316]  ? lockdep_hardirqs_on+0x94/0x140
[   65.521142][ T4316]  ? __x64_sys_mount+0x1c/0xc0
[   65.525900][ T4316]  do_syscall_64+0x4c/0xa0
[   65.530310][ T4316]  ? clear_bhb_loop+0x30/0x80
[   65.534977][ T4316]  ? clear_bhb_loop+0x30/0x80
[   65.539646][ T4316]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.545551][ T4316] RIP: 0033:0x7fbef3593eea
[   65.549969][ T4316] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.569565][ T4316] RSP: 002b:00007ffd135a53a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   65.577971][ T4316] RAX: ffffffffffffffda RBX: 00007ffd135a5430 RCX: 00007fbef3593eea
[   65.585934][ T4316] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 00007ffd135a53f0
[   65.593895][ T4316] RBP: 0000200000000040 R08: 00007ffd135a5430 R09: 000000000000800c
[   65.601858][ T4316] R10: 000000000000800c R11: 0000000000000246 R12: 0000200000000000
[   65.609819][ T4316] R13: 00007ffd135a53f0 R14: 0000000000001122 R15: 0000200000000300
[   65.617804][ T4316]  </TASK>
[   65.620814][ T4316] 
[   65.623133][ T4316] The buggy address belongs to the page:
[   65.628752][ T4316] page:ffffea0001727f00 refcount:2 mapcount:0 mapping:ffff88814089cf30 index:0x213 pfn:0x5c9fc
[   65.639062][ T4316] memcg:ffff88801d978000
[   65.643288][ T4316] aops:def_blk_aops ino:700000
[   65.648056][ T4316] flags: 0xfff00000002032(referenced|lru|active|private|node=0|zone=1|lastcpupid=0x7ff)
[   65.657772][ T4316] raw: 00fff00000002032 ffffea0001ea8c48 ffff888072bcc030 ffff88814089cf30
[   65.666351][ T4316] raw: 0000000000000213 ffff888016e1e2b8 00000002ffffffff ffff88801d978000
[   65.674916][ T4316] page dumped because: kasan: bad access detected
[   65.681323][ T4316] page_owner tracks the page as allocated
[   65.687024][ T4316] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 4316, ts 65062287872, free_ts 64113699599
[   65.704121][ T4316]  get_page_from_freelist+0x1b77/0x1c60
[   65.709674][ T4316]  __alloc_pages+0x1e1/0x470
[   65.714266][ T4316]  __page_cache_alloc+0xd2/0x3f0
[   65.719195][ T4316]  pagecache_get_page+0x986/0xef0
[   65.724216][ T4316]  __getblk_gfp+0x249/0xb70
[   65.728707][ T4316]  search_by_key+0x424/0x4390
[   65.733375][ T4316]  reiserfs_read_locked_inode+0x154/0x2620
[   65.739175][ T4316]  reiserfs_fill_super+0x124b/0x23e0
[   65.744447][ T4316]  mount_bdev+0x287/0x3c0
[   65.748769][ T4316]  legacy_get_tree+0xe6/0x180
[   65.753457][ T4316]  vfs_get_tree+0x88/0x270
[   65.757865][ T4316]  do_new_mount+0x24a/0xa40
[   65.762360][ T4316]  __se_sys_mount+0x2d6/0x3c0
[   65.767030][ T4316]  do_syscall_64+0x4c/0xa0
[   65.771433][ T4316]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.777325][ T4316] page last free stack trace:
[   65.781988][ T4316]  free_unref_page_prepare+0x637/0x6c0
[   65.787457][ T4316]  free_unref_page_list+0x122/0x7e0
[   65.792645][ T4316]  release_pages+0x184b/0x1bb0
[   65.797400][ T4316]  tlb_finish_mmu+0x164/0x2e0
[   65.802075][ T4316]  exit_mmap+0x3a6/0x5f0
[   65.806352][ T4316]  __mmput+0x115/0x3b0
[   65.810426][ T4316]  exit_mm+0x567/0x6c0
[   65.814506][ T4316]  do_exit+0x5a1/0x20a0
[   65.818656][ T4316]  do_group_exit+0x12e/0x300
[   65.823244][ T4316]  __x64_sys_exit_group+0x3b/0x40
[   65.828258][ T4316]  do_syscall_64+0x4c/0xa0
[   65.832665][ T4316]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   65.838547][ T4316] 
[   65.840859][ T4316] Memory state around the buggy address:
[   65.846477][ T4316]  ffff88805c9fce80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.854534][ T4316]  ffff88805c9fcf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.862590][ T4316] >ffff88805c9fcf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.870648][ T4316]                                ^
[   65.875744][ T4316]  ffff88805c9fd000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.883795][ T4316]  ffff88805c9fd080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   65.891844][ T4316] ==================================================================
[   65.899876][ T4316] Disabling lock debugging due to kernel taint
[   65.915328][ T4316] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   65.922521][ T4316] CPU: 0 PID: 4316 Comm: syz.0.17 Tainted: G    B             syzkaller #0
[   65.931080][ T4316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   65.941109][ T4316] Call Trace:
[   65.944361][ T4316]  <TASK>
[   65.947265][ T4316]  dump_stack_lvl+0x168/0x230
[   65.951918][ T4316]  ? show_regs_print_info+0x20/0x20
[   65.957087][ T4316]  ? load_image+0x3b0/0x3b0
[   65.961568][ T4316]  panic+0x2c9/0x7f0
[   65.965437][ T4316]  ? bpf_jit_dump+0xd0/0xd0
[   65.969928][ T4316]  ? _raw_spin_unlock_irqrestore+0xf6/0x100
[   65.975812][ T4316]  ? _raw_spin_unlock+0x40/0x40
[   65.980633][ T4316]  ? print_memory_metadata+0x314/0x400
[   65.986066][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   65.991357][ T4316]  check_panic_on_warn+0x80/0xa0
[   65.996292][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   66.001548][ T4316]  end_report+0x6d/0xf0
[   66.005675][ T4316]  kasan_report+0x102/0x130
[   66.010194][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   66.015461][ T4316]  ? leaf_paste_entries+0x73c/0x10c0
[   66.020718][ T4316]  kasan_check_range+0x27b/0x290
[   66.025628][ T4316]  memmove+0x25/0x60
[   66.029496][ T4316]  leaf_paste_entries+0x73c/0x10c0
[   66.034584][ T4316]  balance_leaf+0xacec/0x10e60
[   66.039333][ T4316]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[   66.045316][ T4316]  ? lock_chain_count+0x20/0x20
[   66.050139][ T4316]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[   66.055481][ T4316]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[   66.061344][ T4316]  ? do_balance+0x930/0x930
[   66.065823][ T4316]  ? _raw_spin_unlock+0x40/0x40
[   66.070647][ T4316]  ? stack_trace_snprint+0xf0/0xf0
[   66.075728][ T4316]  ? stack_depot_save+0x404/0x440
[   66.080727][ T4316]  ? __kasan_kmalloc+0xcc/0xf0
[   66.085485][ T4316]  ? __kasan_kmalloc+0xb5/0xf0
[   66.090218][ T4316]  ? fix_nodes+0x6044/0x82d0
[   66.094778][ T4316]  ? reiserfs_paste_into_item+0x5c8/0x7e0
[   66.100466][ T4316]  ? reiserfs_add_entry+0x975/0xd40
[   66.105636][ T4316]  ? reiserfs_mkdir+0x68f/0x970
[   66.110458][ T4316]  ? reiserfs_xattr_init+0x331/0x720
[   66.115747][ T4316]  ? reiserfs_fill_super+0x1fa6/0x23e0
[   66.121179][ T4316]  ? mount_bdev+0x287/0x3c0
[   66.125664][ T4316]  ? legacy_get_tree+0xe6/0x180
[   66.130487][ T4316]  ? vfs_get_tree+0x88/0x270
[   66.135052][ T4316]  ? do_new_mount+0x24a/0xa40
[   66.139700][ T4316]  ? __se_sys_mount+0x2d6/0x3c0
[   66.144521][ T4316]  ? do_syscall_64+0x4c/0xa0
[   66.149081][ T4316]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   66.155133][ T4316]  ? __wake_up_bit+0x100/0x100
[   66.159869][ T4316]  ? get_parents+0x400/0xd20
[   66.164428][ T4316]  ? get_neighbors+0x9ba/0x1030
[   66.169252][ T4316]  ? reiserfs_prepare_for_journal+0x269/0x280
[   66.175294][ T4316]  ? fix_nodes+0x7b26/0x82d0
[   66.179863][ T4316]  do_balance+0x2fa/0x930
[   66.184170][ T4316]  ? get_right_neighbor_position+0x210/0x210
[   66.190143][ T4316]  reiserfs_paste_into_item+0x69b/0x7e0
[   66.195687][ T4316]  ? reiserfs_cut_from_item+0x1ef0/0x1ef0
[   66.201391][ T4316]  ? reiserfs_get_parent+0x270/0x270
[   66.206647][ T4316]  ? inode_get_bytes+0x73/0xa0
[   66.211382][ T4316]  ? memset+0x1e/0x40
[   66.215336][ T4316]  ? _find_first_zero_bit+0x60/0xf0
[   66.220507][ T4316]  reiserfs_add_entry+0x975/0xd40
[   66.225508][ T4316]  ? drop_new_inode+0x60/0x60
[   66.230196][ T4316]  ? journal_begin+0x1f1/0x350
[   66.234930][ T4316]  ? reiserfs_update_inode_transaction+0x1c/0x120
[   66.241315][ T4316]  reiserfs_mkdir+0x68f/0x970
[   66.245968][ T4316]  ? reiserfs_symlink+0x770/0x770
[   66.250997][ T4316]  ? preempt_count_add+0x8d/0x190
[   66.255994][ T4316]  ? rwsem_write_trylock+0x12f/0x1b0
[   66.261252][ T4316]  ? lookup_one_len+0x18e/0x2c0
[   66.266074][ T4316]  ? lookup_one_common+0x460/0x460
[   66.271158][ T4316]  reiserfs_xattr_init+0x331/0x720
[   66.276244][ T4316]  reiserfs_fill_super+0x1fa6/0x23e0
[   66.281514][ T4316]  ? reiserfs_kill_sb+0x140/0x140
[   66.286511][ T4316]  ? snprintf+0xd7/0x120
[   66.290727][ T4316]  ? vscnprintf+0x80/0x80
[   66.295049][ T4316]  ? set_blocksize+0x1f1/0x370
[   66.299784][ T4316]  ? sb_set_blocksize+0xa5/0xe0
[   66.304617][ T4316]  mount_bdev+0x287/0x3c0
[   66.309009][ T4316]  ? reiserfs_kill_sb+0x140/0x140
[   66.314012][ T4316]  legacy_get_tree+0xe6/0x180
[   66.318687][ T4316]  ? remove_save_link+0x3c0/0x3c0
[   66.323685][ T4316]  vfs_get_tree+0x88/0x270
[   66.328077][ T4316]  do_new_mount+0x24a/0xa40
[   66.332554][ T4316]  __se_sys_mount+0x2d6/0x3c0
[   66.337202][ T4316]  ? __x64_sys_mount+0xc0/0xc0
[   66.341944][ T4316]  ? lockdep_hardirqs_on+0x94/0x140
[   66.347118][ T4316]  ? __x64_sys_mount+0x1c/0xc0
[   66.351855][ T4316]  do_syscall_64+0x4c/0xa0
[   66.356242][ T4316]  ? clear_bhb_loop+0x30/0x80
[   66.360889][ T4316]  ? clear_bhb_loop+0x30/0x80
[   66.365537][ T4316]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   66.371430][ T4316] RIP: 0033:0x7fbef3593eea
[   66.375819][ T4316] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.395393][ T4316] RSP: 002b:00007ffd135a53a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   66.403777][ T4316] RAX: ffffffffffffffda RBX: 00007ffd135a5430 RCX: 00007fbef3593eea
[   66.411721][ T4316] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 00007ffd135a53f0
[   66.419682][ T4316] RBP: 0000200000000040 R08: 00007ffd135a5430 R09: 000000000000800c
[   66.427641][ T4316] R10: 000000000000800c R11: 0000000000000246 R12: 0000200000000000
[   66.435587][ T4316] R13: 00007ffd135a53f0 R14: 0000000000001122 R15: 0000200000000300
[   66.443533][ T4316]  </TASK>
[   66.446719][ T4316] Kernel Offset: disabled
[   66.451033][ T4316] Rebooting in 86400 seconds..