Warning: Permanently added '10.128.0.116' (ED25519) to the list of known hosts.
executing program
[ 60.005158][ T4167] loop0: detected capacity change from 0 to 8192
[ 60.047781][ T4167] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 60.057560][ T4167] REISERFS (device loop0): using ordered data mode
[ 60.064177][ T4167] reiserfs: using flush barriers
[ 60.070930][ T4167] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 60.087766][ T4167] REISERFS (device loop0): checking transaction log (loop0)
[ 60.097807][ T4167] REISERFS (device loop0): Using r5 hash to sort names
[ 60.105232][ T4167] REISERFS (device loop0): using 3.5.x disk format
[ 60.113707][ T4167] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 60.136779][ T4167] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.152942][ T4167] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.163641][ T4167] REISERFS (device loop0): Remounting filesystem read-only
[ 60.170857][ T4167] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 60.184754][ T4167] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 60.197127][ T4167] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.213092][ T4167] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.223660][ T4167] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 60.364329][ T4170] loop0: detected capacity change from 0 to 8192
[ 60.426245][ T4170] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 60.435521][ T4170] REISERFS (device loop0): using ordered data mode
[ 60.442049][ T4170] reiserfs: using flush barriers
[ 60.448495][ T4170] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 60.465218][ T4170] REISERFS (device loop0): checking transaction log (loop0)
[ 60.473838][ T4170] REISERFS (device loop0): Using r5 hash to sort names
[ 60.480816][ T4170] REISERFS (device loop0): using 3.5.x disk format
[ 60.487882][ T4170] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 60.507037][ T4170] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.523284][ T4170] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.533985][ T4170] REISERFS (device loop0): Remounting filesystem read-only
[ 60.541349][ T4170] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 60.555469][ T4170] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 60.568139][ T4170] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.584435][ T4170] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.595001][ T4170] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 60.731269][ T4172] loop0: detected capacity change from 0 to 8192
[ 60.808661][ T4172] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 60.818100][ T4172] REISERFS (device loop0): using ordered data mode
[ 60.824771][ T4172] reiserfs: using flush barriers
[ 60.831076][ T4172] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 60.847842][ T4172] REISERFS (device loop0): checking transaction log (loop0)
[ 60.856924][ T4172] REISERFS (device loop0): Using r5 hash to sort names
[ 60.864041][ T4172] REISERFS (device loop0): using 3.5.x disk format
[ 60.883078][ T4172] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 60.900533][ T4172] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.916535][ T4172] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.927103][ T4172] REISERFS (device loop0): Remounting filesystem read-only
[ 60.934453][ T4172] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 60.948130][ T4172] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 60.960269][ T4172] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 60.976268][ T4172] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 60.986831][ T4172] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 61.120068][ T4174] loop0: detected capacity change from 0 to 8192
[ 61.165420][ T4174] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 61.174926][ T4174] REISERFS (device loop0): using ordered data mode
[ 61.181528][ T4174] reiserfs: using flush barriers
[ 61.188128][ T4174] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 61.205267][ T4174] REISERFS (device loop0): checking transaction log (loop0)
[ 61.214045][ T4174] REISERFS (device loop0): Using r5 hash to sort names
[ 61.221041][ T4174] REISERFS (device loop0): using 3.5.x disk format
[ 61.228514][ T4174] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 61.245092][ T4174] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 61.261191][ T4174] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 61.272088][ T4174] REISERFS (device loop0): Remounting filesystem read-only
[ 61.279410][ T4174] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 61.293193][ T4174] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 61.305656][ T4174] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 61.321721][ T4174] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 61.332300][ T4174] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 61.491014][ T4176] loop0: detected capacity change from 0 to 8192
[ 61.537974][ T4176] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 61.547436][ T4176] REISERFS (device loop0): using ordered data mode
[ 61.554086][ T4176] reiserfs: using flush barriers
[ 61.560294][ T4176] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 61.576996][ T4176] REISERFS (device loop0): checking transaction log (loop0)
[ 61.585690][ T4176] REISERFS (device loop0): Using r5 hash to sort names
[ 61.592881][ T4176] REISERFS (device loop0): using 3.5.x disk format
[ 61.603167][ T4176] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 61.620153][ T4176] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 61.636164][ T4176] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 61.646856][ T4176] REISERFS (device loop0): Remounting filesystem read-only
[ 61.654297][ T4176] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 61.667973][ T4176] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 61.680134][ T4176] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 61.696095][ T4176] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 61.706665][ T4176] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 61.839955][ T4178] loop0: detected capacity change from 0 to 8192
[ 61.885915][ T4178] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 61.895411][ T4178] REISERFS (device loop0): using ordered data mode
[ 61.901941][ T4178] reiserfs: using flush barriers
[ 61.908470][ T4178] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 61.925357][ T4178] REISERFS (device loop0): checking transaction log (loop0)
[ 61.934429][ T4178] REISERFS (device loop0): Using r5 hash to sort names
[ 61.941413][ T4178] REISERFS (device loop0): using 3.5.x disk format
[ 61.948416][ T4178] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 61.964631][ T4178] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 61.980816][ T4178] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 61.991601][ T4178] REISERFS (device loop0): Remounting filesystem read-only
[ 61.998957][ T4178] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 62.012713][ T4178] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 62.024795][ T4178] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 62.040632][ T4178] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 62.051157][ T4178] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 62.191967][ T4180] loop0: detected capacity change from 0 to 8192
[ 62.261842][ T4180] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 62.271165][ T4180] REISERFS (device loop0): using ordered data mode
[ 62.277968][ T4180] reiserfs: using flush barriers
[ 62.284279][ T4180] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 62.300914][ T4180] REISERFS (device loop0): checking transaction log (loop0)
[ 62.309413][ T4180] REISERFS (device loop0): Using r5 hash to sort names
[ 62.316588][ T4180] REISERFS (device loop0): using 3.5.x disk format
[ 62.323585][ T4180] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 62.340577][ T4180] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 62.356653][ T4180] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 62.367595][ T4180] REISERFS (device loop0): Remounting filesystem read-only
[ 62.374973][ T4180] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 62.389016][ T4180] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 62.401190][ T4180] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 62.417200][ T4180] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 62.427776][ T4180] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 62.583384][ T4182] loop0: detected capacity change from 0 to 8192
[ 62.635701][ T4182] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 62.644982][ T4182] REISERFS (device loop0): using ordered data mode
[ 62.651500][ T4182] reiserfs: using flush barriers
[ 62.658041][ T4182] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 62.675126][ T4182] REISERFS (device loop0): checking transaction log (loop0)
[ 62.684228][ T4182] REISERFS (device loop0): Using r5 hash to sort names
[ 62.691236][ T4182] REISERFS (device loop0): using 3.5.x disk format
[ 62.698132][ T4182] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 62.715631][ T4182] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 62.731778][ T4182] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 62.742592][ T4182] REISERFS (device loop0): Remounting filesystem read-only
[ 62.749938][ T4182] REISERFS error (device loop0): vs-5657 reiserfs_do_truncate: i/o failure occurred trying to truncate [2 4194306 0xffffffff DIRECT]
[ 62.763813][ T4182] REISERFS warning (device loop0): clm-6006 reiserfs_dirty_inode: writing inode 4194306 on readonly FS
[ 62.775909][ T4182] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 4194305 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[ 62.791869][ T4182] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[ 62.802458][ T4182] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 4194306 0x0 SD] stat data
executing program
[ 62.943114][ T4184] loop0: detected capacity change from 0 to 8192
[ 62.987785][ T4184] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 62.997143][ T4184] REISERFS (device loop0): using ordered data mode
[ 63.003753][ T4184] reiserfs: using flush barriers
[ 63.009937][ T4184] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 63.027351][ T4184] REISERFS (device loop0): checking transaction log (loop0)
[ 63.035964][ T4184] REISERFS (device loop0): Using r5 hash to sort names
[ 63.043148][ T4184] REISERFS (device loop0): using 3.5.x disk format
[ 63.050068][ T4184] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 63.067310][ T4184] ==================================================================
[ 63.075633][ T4184] BUG: KASAN: use-after-free in leaf_paste_in_buffer+0x615/0xab0
[ 63.083386][ T4184] Read of size 48 at addr ffff88806f3a6ff0 by task syz-executor622/4184
[ 63.091730][ T4184]
[ 63.094073][ T4184] CPU: 0 PID: 4184 Comm: syz-executor622 Not tainted 5.15.184-syzkaller #0
[ 63.102650][ T4184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 63.112918][ T4184] Call Trace:
[ 63.116196][ T4184]
[ 63.119123][ T4184] dump_stack_lvl+0x168/0x230
[ 63.123839][ T4184] ? show_regs_print_info+0x20/0x20
[ 63.129029][ T4184] ? _printk+0xcc/0x110
[ 63.133172][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 63.138542][ T4184] ? load_image+0x3b0/0x3b0
[ 63.143035][ T4184] ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 63.148410][ T4184] print_address_description+0x60/0x2d0
[ 63.153952][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 63.159315][ T4184] kasan_report+0xdf/0x130
[ 63.163844][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 63.169217][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 63.174578][ T4184] kasan_check_range+0x27b/0x290
[ 63.179512][ T4184] memcpy+0x25/0x60
[ 63.183314][ T4184] leaf_paste_in_buffer+0x615/0xab0
[ 63.188512][ T4184] leaf_copy_dir_entries+0x56c/0x8f0
[ 63.193793][ T4184] leaf_copy_boundary_item+0xb8c/0x2190
[ 63.199341][ T4184] leaf_move_items+0x84a/0xde0
[ 63.204103][ T4184] ? reiserfs_convert_objectid_map_v1+0x4f0/0x4f0
[ 63.210520][ T4184] leaf_shift_left+0xb9/0x450
[ 63.215194][ T4184] balance_leaf+0x13db/0x10e60
[ 63.219974][ T4184] ? do_balance+0x930/0x930
[ 63.224467][ T4184] ? __mutex_trylock_common+0x14f/0x250
[ 63.230008][ T4184] ? rcu_lock_release+0x20/0x20
[ 63.234852][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 63.240562][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 63.246269][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 63.251982][ T4184] ? __mutex_lock_common+0x431/0x2390
[ 63.257354][ T4184] ? __might_sleep+0xf0/0xf0
[ 63.261939][ T4184] ? fix_nodes+0x6044/0x82d0
[ 63.266522][ T4184] ? reiserfs_truncate_file+0x610/0xdc0
[ 63.272056][ T4184] ? reiserfs_setattr+0xaa7/0x1010
[ 63.277171][ T4184] ? __mutex_unlock_slowpath+0x19e/0x6a0
[ 63.282798][ T4184] ? mutex_lock_io_nested+0x60/0x60
[ 63.288134][ T4184] ? get_empty_nodes+0x431/0x8c0
[ 63.293083][ T4184] ? get_neighbors+0x1030/0x1030
[ 63.298018][ T4184] ? __wake_up_bit+0x100/0x100
[ 63.302772][ T4184] ? mutex_lock_nested+0x17/0x20
[ 63.307710][ T4184] ? reiserfs_prepare_for_journal+0x269/0x280
[ 63.313796][ T4184] ? fix_nodes+0x7b26/0x82d0
[ 63.318425][ T4184] do_balance+0x2fa/0x930
[ 63.322839][ T4184] ? get_right_neighbor_position+0x210/0x210
[ 63.328825][ T4184] reiserfs_insert_item+0xa4f/0xbb0
[ 63.334021][ T4184] ? reiserfs_paste_into_item+0x7e0/0x7e0
[ 63.339800][ T4184] ? __mutex_trylock_common+0x14f/0x250
[ 63.345337][ T4184] ? mutex_lock_nested+0x17/0x20
[ 63.350267][ T4184] ? make_le_item_head+0x1ce/0x510
[ 63.355368][ T4184] add_save_link+0x366/0x5c0
[ 63.359948][ T4184] ? reiserfs_cancel_old_flush+0xb0/0xb0
[ 63.365605][ T4184] ? journal_join_abort+0xe0/0xe0
[ 63.370635][ T4184] ? journal_begin+0x1f1/0x350
[ 63.375387][ T4184] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 63.381795][ T4184] reiserfs_truncate_file+0x610/0xdc0
[ 63.387291][ T4184] ? read_lock_is_recursive+0x10/0x10
[ 63.392764][ T4184] ? reiserfs_new_symlink+0x560/0x560
[ 63.398178][ T4184] reiserfs_setattr+0xaa7/0x1010
[ 63.403119][ T4184] ? reiserfs_commit_write+0x580/0x580
[ 63.408576][ T4184] ? ktime_get_coarse_real_ts64+0x10c/0x120
[ 63.414553][ T4184] ? current_time+0x1c2/0x2b0
[ 63.419224][ T4184] ? atime_needs_update+0x780/0x780
[ 63.424413][ T4184] ? __might_sleep+0xf0/0xf0
[ 63.429179][ T4184] ? preempt_count_add+0x8d/0x190
[ 63.434287][ T4184] ? bpf_lsm_inode_setattr+0x5/0x10
[ 63.439477][ T4184] ? try_break_deleg+0x79/0x120
[ 63.444347][ T4184] ? reiserfs_commit_write+0x580/0x580
[ 63.449801][ T4184] notify_change+0xbcd/0xee0
[ 63.454403][ T4184] do_truncate+0x197/0x220
[ 63.458899][ T4184] ? aa_get_task_label+0x21c/0x2c0
[ 63.464009][ T4184] ? rcu_lock_release+0x20/0x20
[ 63.468863][ T4184] ? ima_bprm_check+0x1f0/0x1f0
[ 63.473733][ T4184] ? bpf_lsm_path_truncate+0x5/0x10
[ 63.478938][ T4184] path_openat+0x28af/0x2f30
[ 63.483540][ T4184] ? __kasan_slab_alloc+0xb3/0xd0
[ 63.488555][ T4184] ? __kasan_slab_alloc+0x9c/0xd0
[ 63.493571][ T4184] ? verify_lock_unused+0x140/0x140
[ 63.498779][ T4184] ? do_filp_open+0x3e0/0x3e0
[ 63.503462][ T4184] do_filp_open+0x1b3/0x3e0
[ 63.507968][ T4184] ? vfs_tmpfile+0x300/0x300
[ 63.512561][ T4184] ? _raw_spin_unlock+0x24/0x40
[ 63.517410][ T4184] ? alloc_fd+0x598/0x630
[ 63.521773][ T4184] do_sys_openat2+0x142/0x4a0
[ 63.526471][ T4184] ? __lock_acquire+0x7c60/0x7c60
[ 63.531490][ T4184] ? do_sys_open+0xe0/0xe0
[ 63.535895][ T4184] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 63.541874][ T4184] ? lock_chain_count+0x20/0x20
[ 63.546718][ T4184] ? vtime_user_exit+0x2dc/0x400
[ 63.551685][ T4184] __x64_sys_openat+0x135/0x160
[ 63.556531][ T4184] do_syscall_64+0x4c/0xa0
[ 63.560970][ T4184] ? clear_bhb_loop+0x30/0x80
[ 63.565642][ T4184] ? clear_bhb_loop+0x30/0x80
[ 63.570315][ T4184] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 63.576214][ T4184] RIP: 0033:0x7f6f2fa0a2a9
[ 63.580622][ T4184] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 63.600220][ T4184] RSP: 002b:00007ffcb958cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 63.608635][ T4184] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6f2fa0a2a9
[ 63.616607][ T4184] RDX: 000000000000275a RSI: 0000200000000200 RDI: 0000000000000004
[ 63.624574][ T4184] RBP: 0000000000000000 R08: 00007ffcb958cf20 R09: 00007ffcb958cf20
[ 63.632536][ T4184] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb958cf0c
[ 63.640498][ T4184] R13: 0000000000000008 R14: 431bde82d7b634db R15: 00007ffcb958cf40
[ 63.648473][ T4184]
[ 63.651479][ T4184]
[ 63.653784][ T4184] The buggy address belongs to the page:
[ 63.659410][ T4184] page:ffffea0001bce980 refcount:2 mapcount:0 mapping:ffff8881408c4f30 index:0x214 pfn:0x6f3a6
[ 63.669726][ T4184] memcg:ffff888016a7c000
[ 63.674038][ T4184] aops:def_blk_aops ino:700000
[ 63.678791][ T4184] flags: 0xfff00000002032(referenced|lru|active|private|node=0|zone=1|lastcpupid=0x7ff)
[ 63.688517][ T4184] raw: 00fff00000002032 ffffea0001bc8948 ffffea0001ef8388 ffff8881408c4f30
[ 63.697116][ T4184] raw: 0000000000000214 ffff88806f46a910 00000002ffffffff ffff888016a7c000
[ 63.705682][ T4184] page dumped because: kasan: bad access detected
[ 63.712091][ T4184] page_owner tracks the page as allocated
[ 63.717791][ T4184] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 4184, ts 63065913204, free_ts 63065639140
[ 63.734883][ T4184] get_page_from_freelist+0x1b77/0x1c60
[ 63.740424][ T4184] __alloc_pages+0x1e1/0x470
[ 63.745008][ T4184] __page_cache_alloc+0xd2/0x3f0
[ 63.749929][ T4184] pagecache_get_page+0x986/0xef0
[ 63.754940][ T4184] __getblk_gfp+0x249/0xb70
[ 63.759444][ T4184] get_empty_nodes+0x511/0x8c0
[ 63.764662][ T4184] fix_nodes+0x1e69/0x82d0
[ 63.769179][ T4184] reiserfs_insert_item+0x973/0xbb0
[ 63.774385][ T4184] indirect2direct+0x594/0x9c0
[ 63.779146][ T4184] reiserfs_cut_from_item+0x76a/0x1ef0
[ 63.784594][ T4184] reiserfs_do_truncate+0xa90/0x13e0
[ 63.789882][ T4184] reiserfs_truncate_file+0x632/0xdc0
[ 63.795259][ T4184] reiserfs_setattr+0xaa7/0x1010
[ 63.800198][ T4184] notify_change+0xbcd/0xee0
[ 63.804779][ T4184] do_truncate+0x197/0x220
[ 63.809185][ T4184] do_sys_ftruncate+0x31b/0x3d0
[ 63.814029][ T4184] page last free stack trace:
[ 63.818685][ T4184] free_unref_page_prepare+0x637/0x6c0
[ 63.824136][ T4184] free_unref_page_list+0x122/0x7e0
[ 63.829325][ T4184] release_pages+0x184b/0x1bb0
[ 63.834079][ T4184] __pagevec_release+0x6d/0xe0
[ 63.838831][ T4184] truncate_inode_pages_range+0x2f3/0xef0
[ 63.844538][ T4184] truncate_setsize+0xb9/0xe0
[ 63.849203][ T4184] reiserfs_setattr+0xa9a/0x1010
[ 63.854215][ T4184] notify_change+0xbcd/0xee0
[ 63.858802][ T4184] do_truncate+0x197/0x220
[ 63.863207][ T4184] do_sys_ftruncate+0x31b/0x3d0
[ 63.868046][ T4184] do_syscall_64+0x4c/0xa0
[ 63.872449][ T4184] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 63.878427][ T4184]
[ 63.880741][ T4184] Memory state around the buggy address:
[ 63.886374][ T4184] ffff88806f3a6f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 63.894424][ T4184] ffff88806f3a6f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 63.902470][ T4184] >ffff88806f3a7000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 63.910711][ T4184] ^
[ 63.914796][ T4184] ffff88806f3a7080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 63.922858][ T4184] ffff88806f3a7100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 63.930906][ T4184] ==================================================================
[ 63.938949][ T4184] Disabling lock debugging due to kernel taint
[ 63.945447][ T4184] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 63.952664][ T4184] CPU: 0 PID: 4184 Comm: syz-executor622 Tainted: G B 5.15.184-syzkaller #0
[ 63.962647][ T4184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 63.972710][ T4184] Call Trace:
[ 63.975988][ T4184]
[ 63.978923][ T4184] dump_stack_lvl+0x168/0x230
[ 63.983596][ T4184] ? show_regs_print_info+0x20/0x20
[ 63.988792][ T4184] ? load_image+0x3b0/0x3b0
[ 63.993283][ T4184] panic+0x2c9/0x7f0
[ 63.997189][ T4184] ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 64.003331][ T4184] ? bpf_jit_dump+0xd0/0xd0
[ 64.007825][ T4184] ? _raw_spin_unlock_irqrestore+0xf6/0x100
[ 64.013723][ T4184] ? _raw_spin_unlock+0x40/0x40
[ 64.018565][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 64.023950][ T4184] check_panic_on_warn+0x80/0xa0
[ 64.028898][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 64.034256][ T4184] end_report+0x6d/0xf0
[ 64.038400][ T4184] kasan_report+0x102/0x130
[ 64.042900][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 64.048260][ T4184] ? leaf_paste_in_buffer+0x615/0xab0
[ 64.053626][ T4184] kasan_check_range+0x27b/0x290
[ 64.058555][ T4184] memcpy+0x25/0x60
[ 64.062351][ T4184] leaf_paste_in_buffer+0x615/0xab0
[ 64.067565][ T4184] leaf_copy_dir_entries+0x56c/0x8f0
[ 64.072855][ T4184] leaf_copy_boundary_item+0xb8c/0x2190
[ 64.078564][ T4184] leaf_move_items+0x84a/0xde0
[ 64.083334][ T4184] ? reiserfs_convert_objectid_map_v1+0x4f0/0x4f0
[ 64.089750][ T4184] leaf_shift_left+0xb9/0x450
[ 64.094424][ T4184] balance_leaf+0x13db/0x10e60
[ 64.099196][ T4184] ? do_balance+0x930/0x930
[ 64.103700][ T4184] ? __mutex_trylock_common+0x14f/0x250
[ 64.109237][ T4184] ? rcu_lock_release+0x20/0x20
[ 64.114078][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 64.119797][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 64.125593][ T4184] ? reiserfs_write_lock_nested+0x5c/0xd0
[ 64.131308][ T4184] ? __mutex_lock_common+0x431/0x2390
[ 64.136709][ T4184] ? __might_sleep+0xf0/0xf0
[ 64.141290][ T4184] ? fix_nodes+0x6044/0x82d0
[ 64.145886][ T4184] ? reiserfs_truncate_file+0x610/0xdc0
[ 64.151436][ T4184] ? reiserfs_setattr+0xaa7/0x1010
[ 64.156569][ T4184] ? __mutex_unlock_slowpath+0x19e/0x6a0
[ 64.162196][ T4184] ? mutex_lock_io_nested+0x60/0x60
[ 64.167388][ T4184] ? get_empty_nodes+0x431/0x8c0
[ 64.172330][ T4184] ? get_neighbors+0x1030/0x1030
[ 64.177260][ T4184] ? __wake_up_bit+0x100/0x100
[ 64.182014][ T4184] ? mutex_lock_nested+0x17/0x20
[ 64.186943][ T4184] ? reiserfs_prepare_for_journal+0x269/0x280
[ 64.193007][ T4184] ? fix_nodes+0x7b26/0x82d0
[ 64.197607][ T4184] do_balance+0x2fa/0x930
[ 64.201927][ T4184] ? get_right_neighbor_position+0x210/0x210
[ 64.207902][ T4184] reiserfs_insert_item+0xa4f/0xbb0
[ 64.213094][ T4184] ? reiserfs_paste_into_item+0x7e0/0x7e0
[ 64.218865][ T4184] ? __mutex_trylock_common+0x14f/0x250
[ 64.224403][ T4184] ? mutex_lock_nested+0x17/0x20
[ 64.229474][ T4184] ? make_le_item_head+0x1ce/0x510
[ 64.234597][ T4184] add_save_link+0x366/0x5c0
[ 64.239177][ T4184] ? reiserfs_cancel_old_flush+0xb0/0xb0
[ 64.244805][ T4184] ? journal_join_abort+0xe0/0xe0
[ 64.249829][ T4184] ? journal_begin+0x1f1/0x350
[ 64.254606][ T4184] ? reiserfs_update_inode_transaction+0x1c/0x120
[ 64.261016][ T4184] reiserfs_truncate_file+0x610/0xdc0
[ 64.266378][ T4184] ? read_lock_is_recursive+0x10/0x10
[ 64.271742][ T4184] ? reiserfs_new_symlink+0x560/0x560
[ 64.277106][ T4184] reiserfs_setattr+0xaa7/0x1010
[ 64.282062][ T4184] ? reiserfs_commit_write+0x580/0x580
[ 64.287510][ T4184] ? ktime_get_coarse_real_ts64+0x10c/0x120
[ 64.293391][ T4184] ? current_time+0x1c2/0x2b0
[ 64.298055][ T4184] ? atime_needs_update+0x780/0x780
[ 64.303240][ T4184] ? __might_sleep+0xf0/0xf0
[ 64.307816][ T4184] ? preempt_count_add+0x8d/0x190
[ 64.312845][ T4184] ? bpf_lsm_inode_setattr+0x5/0x10
[ 64.318042][ T4184] ? try_break_deleg+0x79/0x120
[ 64.322898][ T4184] ? reiserfs_commit_write+0x580/0x580
[ 64.328356][ T4184] notify_change+0xbcd/0xee0
[ 64.333042][ T4184] do_truncate+0x197/0x220
[ 64.337454][ T4184] ? aa_get_task_label+0x21c/0x2c0
[ 64.342569][ T4184] ? rcu_lock_release+0x20/0x20
[ 64.347419][ T4184] ? ima_bprm_check+0x1f0/0x1f0
[ 64.352574][ T4184] ? bpf_lsm_path_truncate+0x5/0x10
[ 64.357773][ T4184] path_openat+0x28af/0x2f30
[ 64.362368][ T4184] ? __kasan_slab_alloc+0xb3/0xd0
[ 64.367386][ T4184] ? __kasan_slab_alloc+0x9c/0xd0
[ 64.372408][ T4184] ? verify_lock_unused+0x140/0x140
[ 64.377606][ T4184] ? do_filp_open+0x3e0/0x3e0
[ 64.382303][ T4184] do_filp_open+0x1b3/0x3e0
[ 64.386810][ T4184] ? vfs_tmpfile+0x300/0x300
[ 64.391527][ T4184] ? _raw_spin_unlock+0x24/0x40
[ 64.396379][ T4184] ? alloc_fd+0x598/0x630
[ 64.400704][ T4184] do_sys_openat2+0x142/0x4a0
[ 64.405375][ T4184] ? __lock_acquire+0x7c60/0x7c60
[ 64.410405][ T4184] ? do_sys_open+0xe0/0xe0
[ 64.414852][ T4184] ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 64.420835][ T4184] ? lock_chain_count+0x20/0x20
[ 64.425685][ T4184] ? vtime_user_exit+0x2dc/0x400
[ 64.430651][ T4184] __x64_sys_openat+0x135/0x160
[ 64.435497][ T4184] do_syscall_64+0x4c/0xa0
[ 64.439909][ T4184] ? clear_bhb_loop+0x30/0x80
[ 64.444605][ T4184] ? clear_bhb_loop+0x30/0x80
[ 64.449274][ T4184] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 64.455328][ T4184] RIP: 0033:0x7f6f2fa0a2a9
[ 64.459741][ T4184] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 64.479339][ T4184] RSP: 002b:00007ffcb958cee8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 64.487752][ T4184] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6f2fa0a2a9
[ 64.495713][ T4184] RDX: 000000000000275a RSI: 0000200000000200 RDI: 0000000000000004
[ 64.503680][ T4184] RBP: 0000000000000000 R08: 00007ffcb958cf20 R09: 00007ffcb958cf20
[ 64.511643][ T4184] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb958cf0c
[ 64.519754][ T4184] R13: 0000000000000008 R14: 431bde82d7b634db R15: 00007ffcb958cf40
[ 64.527826][ T4184]
[ 64.531114][ T4184] Kernel Offset: disabled
[ 64.535441][ T4184] Rebooting in 86400 seconds..