Warning: Permanently added '10.128.1.114' (ED25519) to the list of known hosts.
executing program
[   52.762734][ T3507] loop0: detected capacity change from 0 to 8192
[   52.773132][ T3507] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   52.786227][ T3507] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   52.795826][ T3507] REISERFS (device loop0): using ordered data mode
[   52.802399][ T3507] reiserfs: using flush barriers
[   52.808318][ T3507] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   52.825012][ T3507] REISERFS (device loop0): checking transaction log (loop0)
[   52.864359][ T3507] REISERFS (device loop0): Using r5 hash to sort names
[   52.871397][ T3507] REISERFS (device loop0): using 3.5.x disk format
[   52.878803][ T3507] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   52.892195][   T27] audit: type=1800 audit(1691870960.735:2): pid=3507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor731" name="bus" dev="loop0" ino=2 res=0 errno=0
[   52.914242][ T3507] ==================================================================
[   52.922318][ T3507] BUG: KASAN: out-of-bounds in leaf_paste_in_buffer+0x1b8/0xab0
[   52.929944][ T3507] Read of size 18446744073709551365 at addr ffff888070dfb000 by task syz-executor731/3507
[   52.939899][ T3507] 
[   52.942227][ T3507] CPU: 0 PID: 3507 Comm: syz-executor731 Not tainted 6.1.45-syzkaller #0
[   52.950636][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   52.960677][ T3507] Call Trace:
[   52.963942][ T3507]  <TASK>
[   52.966956][ T3507]  dump_stack_lvl+0x1e3/0x2cb
[   52.971718][ T3507]  ? nf_tcp_handle_invalid+0x642/0x642
[   52.977158][ T3507]  ? panic+0x75d/0x75d
[   52.981213][ T3507]  ? _printk+0xd1/0x111
[   52.985345][ T3507]  ? _raw_spin_lock_irqsave+0xac/0x120
[   52.991045][ T3507]  print_report+0x15f/0x4f0
[   52.995527][ T3507]  ? leaf_move_items+0x1c4c/0x28a0
[   53.000623][ T3507]  ? __virt_addr_valid+0x22b/0x2e0
[   53.005718][ T3507]  ? __phys_addr+0xb6/0x170
[   53.010220][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.015580][ T3507]  kasan_report+0x136/0x160
[   53.020064][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.025513][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.030860][ T3507]  kasan_check_range+0x27f/0x290
[   53.035776][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.041122][ T3507]  memmove+0x25/0x60
[   53.045000][ T3507]  leaf_paste_in_buffer+0x1b8/0xab0
[   53.050262][ T3507]  balance_leaf+0x667c/0x12510
[   53.055012][ T3507]  ? print_irqtrace_events+0x210/0x210
[   53.060465][ T3507]  ? do_balance+0x8f0/0x8f0
[   53.064949][ T3507]  ? write_boundary_block+0xb0/0xb0
[   53.070127][ T3507]  ? do_raw_spin_lock+0x14a/0x370
[   53.075135][ T3507]  ? do_raw_spin_unlock+0x137/0x8a0
[   53.080468][ T3507]  ? __getblk_gfp+0x934/0xa20
[   53.085132][ T3507]  ? get_empty_nodes+0xad9/0xd70
[   53.090076][ T3507]  ? direntry_part_size+0xb0/0x1a0
[   53.095170][ T3507]  ? __wake_up+0x1c0/0x1c0
[   53.099568][ T3507]  ? get_neighbors+0x1010/0x1010
[   53.104577][ T3507]  ? is_leaf_removable+0x8c0/0x8c0
[   53.109670][ T3507]  ? get_neighbors+0x631/0x1010
[   53.114503][ T3507]  ? reiserfs_prepare_for_journal+0x269/0x280
[   53.120548][ T3507]  ? fix_nodes+0x7abc/0x8c70
[   53.125116][ T3507]  ? __might_sleep+0xb0/0xb0
[   53.129691][ T3507]  do_balance+0x309/0x8f0
[   53.134000][ T3507]  ? get_right_neighbor_position+0x210/0x210
[   53.139971][ T3507]  ? reiserfs_paste_into_item+0x3ef/0x880
[   53.145683][ T3507]  reiserfs_paste_into_item+0x73b/0x880
[   53.151222][ T3507]  ? reiserfs_cut_from_item+0x2580/0x2580
[   53.157102][ T3507]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   53.163004][ T3507]  ? reiserfs_get_block+0x19b3/0x5150
[   53.168356][ T3507]  ? rcu_is_watching+0x11/0xb0
[   53.173102][ T3507]  ? __kmalloc+0xe2/0x230
[   53.177411][ T3507]  reiserfs_get_block+0x2259/0x5150
[   53.182605][ T3507]  ? make_le_item_head+0x5c0/0x5c0
[   53.187696][ T3507]  ? register_lock_class+0x100/0x990
[   53.192961][ T3507]  ? is_dynamic_key+0x1f0/0x1f0
[   53.197786][ T3507]  ? mark_lock+0x9a/0x340
[   53.202290][ T3507]  ? __lock_acquire+0x125b/0x1f80
[   53.207407][ T3507]  ? create_page_buffers+0x1d2/0x4b0
[   53.212681][ T3507]  ? __lock_acquire+0x1f80/0x1f80
[   53.217691][ T3507]  ? create_page_buffers+0x24e/0x4b0
[   53.222959][ T3507]  __block_write_begin_int+0x544/0x1a30
[   53.228500][ T3507]  ? xas_load+0x11a/0x140
[   53.232816][ T3507]  ? make_le_item_head+0x5c0/0x5c0
[   53.237907][ T3507]  ? page_zero_new_buffers+0x650/0x650
[   53.243345][ T3507]  ? __block_write_begin+0x61/0x150
[   53.248519][ T3507]  ? reiserfs_write_begin+0x17f/0x510
[   53.253871][ T3507]  reiserfs_write_begin+0x249/0x510
[   53.259048][ T3507]  generic_cont_expand_simple+0x187/0x2a0
[   53.264750][ T3507]  ? submit_bh+0x20/0x20
[   53.268969][ T3507]  ? ktime_get_coarse_real_ts64+0x36/0x120
[   53.274756][ T3507]  ? mutex_lock_nested+0x17/0x20
[   53.279763][ T3507]  reiserfs_setattr+0x606/0x11c0
[   53.284685][ T3507]  ? reiserfs_commit_write+0x5a0/0x5a0
[   53.290207][ T3507]  ? ktime_get_coarse_real_ts64+0x107/0x120
[   53.296078][ T3507]  ? current_time+0x1d1/0x2f0
[   53.300734][ T3507]  ? atime_needs_update+0x7b0/0x7b0
[   53.305911][ T3507]  ? rwsem_write_trylock+0x166/0x210
[   53.311173][ T3507]  ? bpf_lsm_inode_setattr+0x5/0x10
[   53.316352][ T3507]  ? reiserfs_commit_write+0x5a0/0x5a0
[   53.321790][ T3507]  notify_change+0xdcd/0x1080
[   53.326446][ T3507]  do_truncate+0x21c/0x300
[   53.330845][ T3507]  ? put_page_bootmem+0x2e0/0x2e0
[   53.335851][ T3507]  ? print_irqtrace_events+0x210/0x210
[   53.341285][ T3507]  ? print_irqtrace_events+0x210/0x210
[   53.346718][ T3507]  ? bpf_lsm_path_truncate+0x5/0x10
[   53.351898][ T3507]  do_sys_ftruncate+0x2e2/0x380
[   53.356744][ T3507]  do_syscall_64+0x3d/0xb0
[   53.361139][ T3507]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   53.367010][ T3507] RIP: 0033:0x7fc737348639
[   53.371402][ T3507] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   53.390995][ T3507] RSP: 002b:00007ffdebdfdd48 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[   53.399393][ T3507] RAX: ffffffffffffffda RBX: 00007ffdebdfdf18 RCX: 00007fc737348639
[   53.407345][ T3507] RDX: 00007fc7373839f3 RSI: 0000000002007fff RDI: 0000000000000004
[   53.415506][ T3507] RBP: 00007fc7373bc610 R08: 0000000000000000 R09: 00007ffdebdfdf18
[   53.423457][ T3507] R10: 00000000000010f1 R11: 0000000000000246 R12: 0000000000000001
[   53.431500][ T3507] R13: 00007ffdebdfdf08 R14: 0000000000000001 R15: 0000000000000001
[   53.439464][ T3507]  </TASK>
[   53.442522][ T3507] 
[   53.444824][ T3507] The buggy address belongs to the physical page:
[   53.451210][ T3507] page:ffffea0001c37ec0 refcount:1 mapcount:1 mapping:0000000000000000 index:0x559985620 pfn:0x70dfb
[   53.462118][ T3507] memcg:ffff88813fe40000
[   53.466331][ T3507] anon flags: 0xfff800000a0014(uptodate|lru|mappedtodisk|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[   53.477080][ T3507] raw: 00fff800000a0014 ffffea0001c52e48 ffffea0001c37f08 ffff88807836d001
[   53.485652][ T3507] raw: 0000000559985620 0000000000000000 0000000100000000 ffff88813fe40000
[   53.494219][ T3507] page dumped because: kasan: bad access detected
[   53.500616][ T3507] page_owner tracks the page as allocated
[   53.506322][ T3507] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 3509, tgid 3509 (udevd), ts 52916130952, free_ts 11458366825
[   53.523410][ T3507]  post_alloc_hook+0x18d/0x1b0
[   53.528174][ T3507]  get_page_from_freelist+0x32ed/0x3480
[   53.533700][ T3507]  __alloc_pages+0x28d/0x770
[   53.538268][ T3507]  __folio_alloc+0xf/0x30
[   53.542576][ T3507]  vma_alloc_folio+0x486/0x990
[   53.547327][ T3507]  wp_page_copy+0x292/0x17d0
[   53.551994][ T3507]  handle_mm_fault+0x2522/0x5330
[   53.556932][ T3507]  exc_page_fault+0x26f/0x660
[   53.561590][ T3507]  asm_exc_page_fault+0x22/0x30
[   53.566430][ T3507] page last free stack trace:
[   53.571081][ T3507]  free_unref_page_prepare+0xf63/0x1120
[   53.576702][ T3507]  free_unref_page+0x98/0x570
[   53.581363][ T3507]  free_contig_range+0x9a/0x150
[   53.586273][ T3507]  destroy_args+0xfe/0x997
[   53.590675][ T3507]  debug_vm_pgtable+0x416/0x46b
[   53.595590][ T3507]  do_one_initcall+0x265/0x8f0
[   53.600336][ T3507]  do_initcall_level+0x157/0x207
[   53.605260][ T3507]  do_initcalls+0x49/0x86
[   53.609578][ T3507]  kernel_init_freeable+0x473/0x61f
[   53.614754][ T3507]  kernel_init+0x19/0x290
[   53.619068][ T3507]  ret_from_fork+0x1f/0x30
[   53.623475][ T3507] 
[   53.625780][ T3507] Memory state around the buggy address:
[   53.631388][ T3507]  ffff888070dfaf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   53.639427][ T3507]  ffff888070dfaf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   53.647570][ T3507] >ffff888070dfb000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   53.655610][ T3507]                    ^
[   53.659660][ T3507]  ffff888070dfb080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   53.667791][ T3507]  ffff888070dfb100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   53.675835][ T3507] ==================================================================
[   53.684411][ T3507] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   53.691722][ T3507] CPU: 0 PID: 3507 Comm: syz-executor731 Not tainted 6.1.45-syzkaller #0
[   53.700207][ T3507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   53.710335][ T3507] Call Trace:
[   53.713604][ T3507]  <TASK>
[   53.716521][ T3507]  dump_stack_lvl+0x1e3/0x2cb
[   53.721212][ T3507]  ? nf_tcp_handle_invalid+0x642/0x642
[   53.726676][ T3507]  ? panic+0x75d/0x75d
[   53.730759][ T3507]  ? vscnprintf+0x59/0x80
[   53.735086][ T3507]  panic+0x318/0x75d
[   53.738988][ T3507]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   53.745159][ T3507]  ? check_panic_on_warn+0x1d/0xa0
[   53.750353][ T3507]  ? memcpy_page_flushcache+0xfc/0xfc
[   53.755723][ T3507]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   53.761880][ T3507]  ? _raw_spin_unlock+0x40/0x40
[   53.766744][ T3507]  check_panic_on_warn+0x7e/0xa0
[   53.771674][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.777060][ T3507]  end_report+0x66/0x110
[   53.781306][ T3507]  kasan_report+0x143/0x160
[   53.785808][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.791190][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.796558][ T3507]  kasan_check_range+0x27f/0x290
[   53.801485][ T3507]  ? leaf_paste_in_buffer+0x1b8/0xab0
[   53.806852][ T3507]  memmove+0x25/0x60
[   53.810741][ T3507]  leaf_paste_in_buffer+0x1b8/0xab0
[   53.815932][ T3507]  balance_leaf+0x667c/0x12510
[   53.820689][ T3507]  ? print_irqtrace_events+0x210/0x210
[   53.826146][ T3507]  ? do_balance+0x8f0/0x8f0
[   53.830635][ T3507]  ? write_boundary_block+0xb0/0xb0
[   53.835814][ T3507]  ? do_raw_spin_lock+0x14a/0x370
[   53.840827][ T3507]  ? do_raw_spin_unlock+0x137/0x8a0
[   53.846012][ T3507]  ? __getblk_gfp+0x934/0xa20
[   53.850677][ T3507]  ? get_empty_nodes+0xad9/0xd70
[   53.855604][ T3507]  ? direntry_part_size+0xb0/0x1a0
[   53.860720][ T3507]  ? __wake_up+0x1c0/0x1c0
[   53.865133][ T3507]  ? get_neighbors+0x1010/0x1010
[   53.870072][ T3507]  ? is_leaf_removable+0x8c0/0x8c0
[   53.875179][ T3507]  ? get_neighbors+0x631/0x1010
[   53.880025][ T3507]  ? reiserfs_prepare_for_journal+0x269/0x280
[   53.886084][ T3507]  ? fix_nodes+0x7abc/0x8c70
[   53.890664][ T3507]  ? __might_sleep+0xb0/0xb0
[   53.895264][ T3507]  do_balance+0x309/0x8f0
[   53.899592][ T3507]  ? get_right_neighbor_position+0x210/0x210
[   53.905573][ T3507]  ? reiserfs_paste_into_item+0x3ef/0x880
[   53.911281][ T3507]  reiserfs_paste_into_item+0x73b/0x880
[   53.916823][ T3507]  ? reiserfs_cut_from_item+0x2580/0x2580
[   53.922534][ T3507]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   53.928446][ T3507]  ? reiserfs_get_block+0x19b3/0x5150
[   53.933807][ T3507]  ? rcu_is_watching+0x11/0xb0
[   53.938562][ T3507]  ? __kmalloc+0xe2/0x230
[   53.942877][ T3507]  reiserfs_get_block+0x2259/0x5150
[   53.948089][ T3507]  ? make_le_item_head+0x5c0/0x5c0
[   53.953186][ T3507]  ? register_lock_class+0x100/0x990
[   53.958456][ T3507]  ? is_dynamic_key+0x1f0/0x1f0
[   53.963290][ T3507]  ? mark_lock+0x9a/0x340
[   53.967605][ T3507]  ? __lock_acquire+0x125b/0x1f80
[   53.972628][ T3507]  ? create_page_buffers+0x1d2/0x4b0
[   53.977900][ T3507]  ? __lock_acquire+0x1f80/0x1f80
[   53.982913][ T3507]  ? create_page_buffers+0x24e/0x4b0
[   53.988184][ T3507]  __block_write_begin_int+0x544/0x1a30
[   53.993716][ T3507]  ? xas_load+0x11a/0x140
[   53.998040][ T3507]  ? make_le_item_head+0x5c0/0x5c0
[   54.003136][ T3507]  ? page_zero_new_buffers+0x650/0x650
[   54.008580][ T3507]  ? __block_write_begin+0x61/0x150
[   54.013762][ T3507]  ? reiserfs_write_begin+0x17f/0x510
[   54.019119][ T3507]  reiserfs_write_begin+0x249/0x510
[   54.024308][ T3507]  generic_cont_expand_simple+0x187/0x2a0
[   54.030013][ T3507]  ? submit_bh+0x20/0x20
[   54.034241][ T3507]  ? ktime_get_coarse_real_ts64+0x36/0x120
[   54.040029][ T3507]  ? mutex_lock_nested+0x17/0x20
[   54.044952][ T3507]  reiserfs_setattr+0x606/0x11c0
[   54.049877][ T3507]  ? reiserfs_commit_write+0x5a0/0x5a0
[   54.055321][ T3507]  ? ktime_get_coarse_real_ts64+0x107/0x120
[   54.061200][ T3507]  ? current_time+0x1d1/0x2f0
[   54.065863][ T3507]  ? atime_needs_update+0x7b0/0x7b0
[   54.071044][ T3507]  ? rwsem_write_trylock+0x166/0x210
[   54.076320][ T3507]  ? bpf_lsm_inode_setattr+0x5/0x10
[   54.081513][ T3507]  ? reiserfs_commit_write+0x5a0/0x5a0
[   54.086962][ T3507]  notify_change+0xdcd/0x1080
[   54.091634][ T3507]  do_truncate+0x21c/0x300
[   54.096046][ T3507]  ? put_page_bootmem+0x2e0/0x2e0
[   54.101058][ T3507]  ? print_irqtrace_events+0x210/0x210
[   54.106500][ T3507]  ? print_irqtrace_events+0x210/0x210
[   54.111946][ T3507]  ? bpf_lsm_path_truncate+0x5/0x10
[   54.117146][ T3507]  do_sys_ftruncate+0x2e2/0x380
[   54.121986][ T3507]  do_syscall_64+0x3d/0xb0
[   54.126398][ T3507]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   54.132282][ T3507] RIP: 0033:0x7fc737348639
[   54.136685][ T3507] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   54.156279][ T3507] RSP: 002b:00007ffdebdfdd48 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[   54.164678][ T3507] RAX: ffffffffffffffda RBX: 00007ffdebdfdf18 RCX: 00007fc737348639
[   54.172637][ T3507] RDX: 00007fc7373839f3 RSI: 0000000002007fff RDI: 0000000000000004
[   54.180610][ T3507] RBP: 00007fc7373bc610 R08: 0000000000000000 R09: 00007ffdebdfdf18
[   54.188564][ T3507] R10: 00000000000010f1 R11: 0000000000000246 R12: 0000000000000001
[   54.196527][ T3507] R13: 00007ffdebdfdf08 R14: 0000000000000001 R15: 0000000000000001
[   54.204489][ T3507]  </TASK>
[   54.207741][ T3507] Kernel Offset: disabled
[   54.212051][ T3507] Rebooting in 86400 seconds..