Warning: Permanently added '10.128.1.6' (ED25519) to the list of known hosts. executing program [ 37.120982][ T4218] loop0: detected capacity change from 0 to 8192 [ 37.125891][ T4218] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 37.129072][ T4218] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.131609][ T4218] REISERFS (device loop0): using ordered data mode [ 37.133182][ T4218] reiserfs: using flush barriers [ 37.135072][ T4218] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.139281][ T4218] REISERFS (device loop0): checking transaction log (loop0) [ 37.181827][ T4218] REISERFS (device loop0): Using r5 hash to sort names [ 37.184268][ T4218] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 37.192504][ T4218] ================================================================== [ 37.194579][ T4218] BUG: KASAN: out-of-bounds in leaf_insert_into_buf+0x1f4/0x748 [ 37.196490][ T4218] Read of size 18446744073709551384 at addr ffff0000e041a000 by task syz-executor150/4218 [ 37.198946][ T4218] [ 37.199534][ T4218] CPU: 1 PID: 4218 Comm: syz-executor150 Not tainted 6.1.51-syzkaller #0 [ 37.201619][ T4218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 37.204231][ T4218] Call trace: [ 37.205118][ T4218] dump_backtrace+0x1c8/0x1f4 [ 37.206367][ T4218] show_stack+0x2c/0x3c [ 37.207423][ T4218] dump_stack_lvl+0x108/0x170 [ 37.208664][ T4218] print_report+0x174/0x4c0 [ 37.209826][ T4218] kasan_report+0xd4/0x130 [ 37.210966][ T4218] kasan_check_range+0x264/0x2a4 [ 37.212214][ T4218] memmove+0x48/0x90 [ 37.213214][ T4218] leaf_insert_into_buf+0x1f4/0x748 [ 37.214610][ T4218] balance_leaf+0x61f0/0xe860 [ 37.215793][ T4218] do_balance+0x27c/0x788 [ 37.216967][ T4218] reiserfs_insert_item+0x940/0xa84 [ 37.218308][ T4218] indirect2direct+0x58c/0xa40 [ 37.219559][ T4218] reiserfs_cut_from_item+0x854/0x1c98 [ 37.220934][ T4218] reiserfs_do_truncate+0x89c/0x11c8 [ 37.222339][ T4218] reiserfs_truncate_file+0x510/0xb1c [ 37.223707][ T4218] reiserfs_write_end+0x640/0x800 [ 37.224879][ T4218] generic_perform_write+0x384/0x55c [ 37.226214][ T4218] __generic_file_write_iter+0x168/0x388 [ 37.227615][ T4218] generic_file_write_iter+0xb8/0x2b4 [ 37.228960][ T4218] vfs_write+0x610/0x914 [ 37.230025][ T4218] ksys_write+0x15c/0x26c [ 37.231074][ T4218] __arm64_sys_write+0x7c/0x90 [ 37.232289][ T4218] invoke_syscall+0x98/0x2c0 [ 37.233537][ T4218] el0_svc_common+0x138/0x258 [ 37.234706][ T4218] do_el0_svc+0x64/0x218 [ 37.235804][ T4218] el0_svc+0x58/0x168 [ 37.236821][ T4218] el0t_64_sync_handler+0x84/0xf0 [ 37.238081][ T4218] el0t_64_sync+0x18c/0x190 [ 37.239179][ T4218] [ 37.239778][ T4218] The buggy address belongs to the physical page: [ 37.241302][ T4218] page:0000000098bbccc5 refcount:1 mapcount:1 mapping:0000000000000000 index:0xffffffffd pfn:0x12041a [ 37.244180][ T4218] memcg:ffff0000c0930000 [ 37.245259][ T4218] anon flags: 0x5ffe000000a0014(uptodate|lru|mappedtodisk|swapbacked|node=0|zone=2|lastcpupid=0x7ff) [ 37.248030][ T4218] raw: 05ffe000000a0014 fffffc0003804988 fffffc0003897ec8 ffff0000d7f51cc1 [ 37.250268][ T4218] raw: 0000000ffffffffd 0000000000000000 0000000100000000 ffff0000c0930000 [ 37.252360][ T4218] page dumped because: kasan: bad access detected [ 37.253930][ T4218] [ 37.254563][ T4218] Memory state around the buggy address: [ 37.256020][ T4218] ffff0000e0419f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 37.258034][ T4218] ffff0000e0419f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 37.260097][ T4218] >ffff0000e041a000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 37.262191][ T4218] ^ [ 37.263250][ T4218] ffff0000e041a080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 37.265274][ T4218] ffff0000e041a100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 37.267291][ T4218] ================================================================== [ 37.269912][ T4218] Disabling lock debugging due to kernel taint [ 37.283262][ T4218] Unable to handle kernel paging request at virtual address dfff800000000000 [ 37.285463][ T4218] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 37.287618][ T4218] Mem abort info: [ 37.288469][ T4218] ESR = 0x0000000096000006 [ 37.289686][ T4218] EC = 0x25: DABT (current EL), IL = 32 bits [ 37.291214][ T4218] SET = 0, FnV = 0 [ 37.292120][ T4218] EA = 0, S1PTW = 0 [ 37.293099][ T4218] FSC = 0x06: level 2 translation fault [ 37.294476][ T4218] Data abort info: [ 37.295395][ T4218] ISV = 0, ISS = 0x00000006 [ 37.296560][ T4218] CM = 0, WnR = 0 [ 37.297522][ T4218] [dfff800000000000] address between user and kernel address ranges [ 37.299388][ C0] Unable to handle kernel paging request at virtual address dfff800000000000 [ 37.299526][ T4218] Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP [ 37.301574][ C0] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 37.303385][ T4218] Modules linked in: [ 37.305377][ C0] Mem abort info: [ 37.305382][ C0] ESR = 0x0000000096000006 [ 37.305388][ C0] EC = 0x25: DABT (current EL), IL = 32 bits [ 37.306363][ T4218] [ 37.306370][ T4218] CPU: 1 PID: 4218 Comm: syz-executor150 Tainted: G B 6.1.51-syzkaller #0 [ 37.307303][ C0] SET = 0, FnV = 0 [ 37.308404][ T4218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 37.309854][ C0] EA = 0, S1PTW = 0 [ 37.310468][ T4218] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.312920][ C0] FSC = 0x06: level 2 translation fault [ 37.313860][ T4218] pc : mtree_range_walk+0x1a0/0x674 [ 37.316211][ C0] Data abort info: [ 37.316216][ C0] ISV = 0, ISS = 0x00000006 [ 37.317231][ T4218] lr : mtree_range_walk+0x190/0x674 [ 37.319212][ C0] CM = 0, WnR = 0 [ 37.320743][ T4218] sp : ffff80001de159e0 [ 37.322029][ C0] [dfff800000000000] address between user and kernel address ranges [ 37.322953][ T4218] x29: ffff80001de15a40 x28: 0000000000000000 x27: 0000000000000000 [ 37.331744][ T4218] x26: 0000000000000001 x25: 0000000000000000 x24: 0000000000000000 [ 37.333766][ T4218] x23: ffffffffffffffff x22: 0000000000000000 x21: ffff80001de15b68 [ 37.335776][ T4218] x20: 0000000000000000 x19: dfff800000000000 x18: 1fffe000368adf76 [ 37.337806][ T4218] x17: 0000000000000000 x16: ffff8000084fa0fc x15: 0000000000000000 [ 37.339759][ T4218] x14: 0000000000000000 x13: 0000000000000003 x12: ffff0000ca47b780 [ 37.341807][ T4218] x11: ff808000120a3014 x10: 0000000000000000 x9 : ffff8000120a3014 [ 37.343756][ T4218] x8 : ffff0000ca47b780 x7 : 0000000000000000 x6 : ffff8000120c92a4 [ 37.345798][ T4218] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 37.347850][ T4218] x2 : 0000000000000000 x1 : ffff8000181a0fe0 x0 : 0000000000000000 [ 37.349904][ T4218] Call trace: [ 37.350742][ T4218] mtree_range_walk+0x1a0/0x674 [ 37.352036][ T4218] mt_find+0x5a0/0xa88 [ 37.353081][ T4218] find_vma+0x138/0x1c0 [ 37.354150][ T4218] lock_mm_and_find_vma+0x74/0x2e8 [ 37.355438][ T4218] do_page_fault+0x2d0/0x890 [ 37.356624][ T4218] do_mem_abort+0x74/0x200 [ 37.357796][ T4218] el1_abort+0x3c/0x5c [ 37.358746][ T4218] el1h_64_sync_handler+0x60/0xac [ 37.359991][ T4218] el1h_64_sync+0x64/0x68 [ 37.361114][ T4218] __memcpy+0x1e8/0x240 [ 37.362179][ T4218] 0xffff80001de15fb0 [ 37.363206][ T4218] Code: aa1f03f9 2a1f03f4 d343ff98 d50339bf (38736b08) [ 37.365036][ T4218] ---[ end trace 0000000000000000 ]--- [ 37.692083][ T4218] Kernel panic - not syncing: Oops: Fatal exception [ 37.693777][ T4218] SMP: stopping secondary CPUs [ 38.783277][ T4218] SMP: failed to stop secondary CPUs 0-1 [ 38.784732][ T4218] Kernel Offset: disabled [ 38.785808][ T4218] CPU features: 0x00000,02070084,26017203 [ 38.787302][ T4218] Memory Limit: none [ 39.113354][ T4218] Rebooting in 86400 seconds..