Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.10.11' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 33.020162] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 33.028964] REISERFS (device loop0): using ordered data mode [ 33.037395] reiserfs: using flush barriers [ 33.042845] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 33.059056] REISERFS (device loop0): checking transaction log (loop0) [ 33.112006] REISERFS (device loop0): Using r5 hash to sort names [ 33.118746] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 33.238209] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 33.247253] REISERFS (device loop0): using ordered data mode [ 33.253118] reiserfs: using flush barriers [ 33.260007] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 33.276206] REISERFS (device loop0): checking transaction log (loop0) executing program [ 33.328892] REISERFS (device loop0): Using r5 hash to sort names [ 33.335258] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 33.409481] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 33.418079] REISERFS (device loop0): using ordered data mode [ 33.425126] reiserfs: using flush barriers [ 33.430334] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 33.446664] REISERFS (device loop0): checking transaction log (loop0) executing program [ 33.498645] REISERFS (device loop0): Using r5 hash to sort names [ 33.505064] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 33.593578] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 33.602056] REISERFS (device loop0): using ordered data mode [ 33.607952] reiserfs: using flush barriers [ 33.615548] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 33.631111] REISERFS (device loop0): checking transaction log (loop0) [ 33.684641] REISERFS (device loop0): Using r5 hash to sort names [ 33.690953] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 33.821450] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 33.830770] REISERFS (device loop0): using ordered data mode [ 33.838994] reiserfs: using flush barriers [ 33.844976] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 33.861111] REISERFS (device loop0): checking transaction log (loop0) [ 33.914926] REISERFS (device loop0): Using r5 hash to sort names [ 33.921255] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 34.028285] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 34.036993] REISERFS (device loop0): using ordered data mode [ 34.048764] reiserfs: using flush barriers [ 34.054380] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 34.070194] REISERFS (device loop0): checking transaction log (loop0) executing program [ 34.123129] REISERFS (device loop0): Using r5 hash to sort names [ 34.129509] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 34.207282] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 34.215978] REISERFS (device loop0): using ordered data mode [ 34.221859] reiserfs: using flush barriers [ 34.228724] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 34.244715] REISERFS (device loop0): checking transaction log (loop0) [ 34.298169] REISERFS (device loop0): Using r5 hash to sort names [ 34.304644] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 34.433546] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 34.442207] REISERFS (device loop0): using ordered data mode [ 34.449625] reiserfs: using flush barriers [ 34.456231] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 34.472390] REISERFS (device loop0): checking transaction log (loop0) [ 34.526194] REISERFS (device loop0): Using r5 hash to sort names [ 34.532562] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 34.659047] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 34.668072] REISERFS (device loop0): using ordered data mode [ 34.677046] reiserfs: using flush barriers [ 34.682167] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 34.698013] REISERFS (device loop0): checking transaction log (loop0) [ 34.749970] REISERFS (device loop0): Using r5 hash to sort names [ 34.756341] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 34.866480] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 34.875523] REISERFS (device loop0): using ordered data mode [ 34.881401] reiserfs: using flush barriers [ 34.886981] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 34.903045] REISERFS (device loop0): checking transaction log (loop0) executing program [ 34.956140] REISERFS (device loop0): Using r5 hash to sort names [ 34.962510] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 35.046778] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 35.055376] REISERFS (device loop0): using ordered data mode [ 35.061283] reiserfs: using flush barriers [ 35.072307] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 35.088661] REISERFS (device loop0): checking transaction log (loop0) [ 35.142676] REISERFS (device loop0): Using r5 hash to sort names [ 35.149035] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 35.246469] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 35.255368] REISERFS (device loop0): using ordered data mode [ 35.261270] reiserfs: using flush barriers [ 35.266732] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 35.282745] REISERFS (device loop0): checking transaction log (loop0) executing program [ 35.335272] REISERFS (device loop0): Using r5 hash to sort names [ 35.341642] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 35.425628] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 35.434609] REISERFS (device loop0): using ordered data mode [ 35.440499] reiserfs: using flush barriers [ 35.445734] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 35.461729] REISERFS (device loop0): checking transaction log (loop0) [ 35.516627] REISERFS (device loop0): Using r5 hash to sort names [ 35.523668] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 35.635459] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 35.644132] REISERFS (device loop0): using ordered data mode [ 35.650118] reiserfs: using flush barriers [ 35.655679] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 35.671416] REISERFS (device loop0): checking transaction log (loop0) [ 35.725068] REISERFS (device loop0): Using r5 hash to sort names [ 35.731404] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 35.837590] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 35.846243] REISERFS (device loop0): using ordered data mode [ 35.852139] reiserfs: using flush barriers [ 35.868679] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 35.884904] REISERFS (device loop0): checking transaction log (loop0) [ 35.938749] REISERFS (device loop0): Using r5 hash to sort names [ 35.945136] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 36.047464] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.056066] REISERFS (device loop0): using ordered data mode [ 36.061937] reiserfs: using flush barriers [ 36.068745] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.085981] REISERFS (device loop0): checking transaction log (loop0) [ 36.138856] REISERFS (device loop0): Using r5 hash to sort names [ 36.145601] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 36.255676] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.264323] REISERFS (device loop0): using ordered data mode [ 36.270234] reiserfs: using flush barriers [ 36.275948] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.291641] REISERFS (device loop0): checking transaction log (loop0) [ 36.345103] REISERFS (device loop0): Using r5 hash to sort names [ 36.351440] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 36.475603] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.484627] REISERFS (device loop0): using ordered data mode [ 36.495388] reiserfs: using flush barriers [ 36.500141] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.516469] REISERFS (device loop0): checking transaction log (loop0) [ 36.569880] REISERFS (device loop0): Using r5 hash to sort names [ 36.576287] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 36.675977] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.684730] REISERFS (device loop0): using ordered data mode [ 36.694591] reiserfs: using flush barriers [ 36.699674] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.715319] REISERFS (device loop0): checking transaction log (loop0) [ 36.769336] REISERFS (device loop0): Using r5 hash to sort names [ 36.775745] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 36.870234] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.879662] REISERFS (device loop0): using ordered data mode [ 36.887385] reiserfs: using flush barriers [ 36.892662] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.908224] REISERFS (device loop0): checking transaction log (loop0) [ 36.961829] REISERFS (device loop0): Using r5 hash to sort names [ 36.968232] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 37.075746] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.084416] REISERFS (device loop0): using ordered data mode [ 37.090314] reiserfs: using flush barriers [ 37.095671] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.112029] REISERFS (device loop0): checking transaction log (loop0) [ 37.164133] REISERFS (device loop0): Using r5 hash to sort names [ 37.170492] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 37.275278] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.284183] REISERFS (device loop0): using ordered data mode [ 37.290079] reiserfs: using flush barriers [ 37.295788] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.311799] REISERFS (device loop0): checking transaction log (loop0) [ 37.364948] REISERFS (device loop0): Using r5 hash to sort names [ 37.371257] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 37.455300] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.464273] REISERFS (device loop0): using ordered data mode [ 37.470149] reiserfs: using flush barriers [ 37.475990] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.492005] REISERFS (device loop0): checking transaction log (loop0) [ 37.543859] REISERFS (device loop0): Using r5 hash to sort names [ 37.550167] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 37.662289] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.670882] REISERFS (device loop0): using ordered data mode [ 37.677421] reiserfs: using flush barriers [ 37.683135] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.698715] REISERFS (device loop0): checking transaction log (loop0) executing program [ 37.751718] REISERFS (device loop0): Using r5 hash to sort names [ 37.758055] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 37.841919] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 37.850384] REISERFS (device loop0): using ordered data mode [ 37.856396] reiserfs: using flush barriers [ 37.861965] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 37.878002] REISERFS (device loop0): checking transaction log (loop0) [ 37.930931] REISERFS (device loop0): Using r5 hash to sort names [ 37.937311] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 38.058347] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 38.067117] REISERFS (device loop0): using ordered data mode [ 38.073296] reiserfs: using flush barriers [ 38.078353] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 38.094149] REISERFS (device loop0): checking transaction log (loop0) executing program [ 38.146295] REISERFS (device loop0): Using r5 hash to sort names [ 38.152661] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 38.225373] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 38.233942] REISERFS (device loop0): using ordered data mode [ 38.240195] reiserfs: using flush barriers [ 38.245678] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 38.261845] REISERFS (device loop0): checking transaction log (loop0) executing program [ 38.316148] REISERFS (device loop0): Using r5 hash to sort names [ 38.322634] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 38.404263] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 38.419911] REISERFS (device loop0): using ordered data mode [ 38.425802] reiserfs: using flush barriers [ 38.430660] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 38.447501] REISERFS (device loop0): checking transaction log (loop0) [ 38.505805] REISERFS (device loop0): Using r5 hash to sort names [ 38.512319] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 38.634563] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 38.645755] REISERFS (device loop0): using ordered data mode [ 38.670370] reiserfs: using flush barriers [ 38.676122] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 38.693162] REISERFS (device loop0): checking transaction log (loop0) executing program [ 38.745987] REISERFS (device loop0): Using r5 hash to sort names [ 38.752337] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 38.833668] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 38.842616] REISERFS (device loop0): using ordered data mode [ 38.848491] reiserfs: using flush barriers [ 38.855222] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 38.871455] REISERFS (device loop0): checking transaction log (loop0) [ 38.924143] REISERFS (device loop0): Using r5 hash to sort names [ 38.930483] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 39.055153] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 39.064465] REISERFS (device loop0): using ordered data mode [ 39.070274] reiserfs: using flush barriers [ 39.077012] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.093789] REISERFS (device loop0): checking transaction log (loop0) executing program [ 39.147555] REISERFS (device loop0): Using r5 hash to sort names [ 39.153980] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 39.234780] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 39.243368] REISERFS (device loop0): using ordered data mode [ 39.249197] reiserfs: using flush barriers [ 39.254801] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.270765] REISERFS (device loop0): checking transaction log (loop0) [ 39.323081] REISERFS (device loop0): Using r5 hash to sort names [ 39.329396] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 39.434483] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 39.443300] REISERFS (device loop0): using ordered data mode [ 39.449178] reiserfs: using flush barriers [ 39.455019] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.470884] REISERFS (device loop0): checking transaction log (loop0) [ 39.523437] REISERFS (device loop0): Using r5 hash to sort names [ 39.529758] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 39.653049] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 39.662136] REISERFS (device loop0): using ordered data mode [ 39.668013] reiserfs: using flush barriers [ 39.679712] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.695811] REISERFS (device loop0): checking transaction log (loop0) executing program [ 39.749672] REISERFS (device loop0): Using r5 hash to sort names [ 39.756078] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 39.826610] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 39.835203] REISERFS (device loop0): using ordered data mode [ 39.841933] reiserfs: using flush barriers [ 39.847117] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 39.863300] REISERFS (device loop0): checking transaction log (loop0) [ 39.917813] REISERFS (device loop0): Using r5 hash to sort names [ 39.924225] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 40.031457] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 40.040045] REISERFS (device loop0): using ordered data mode [ 40.046296] reiserfs: using flush barriers [ 40.051640] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 40.067396] REISERFS (device loop0): checking transaction log (loop0) [ 40.120395] REISERFS (device loop0): Using r5 hash to sort names [ 40.126752] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 40.232649] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 40.242230] REISERFS (device loop0): using ordered data mode [ 40.248123] reiserfs: using flush barriers [ 40.256263] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 40.272749] REISERFS (device loop0): checking transaction log (loop0) [ 40.324656] REISERFS (device loop0): Using r5 hash to sort names [ 40.331014] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 40.438868] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 40.447521] REISERFS (device loop0): using ordered data mode [ 40.454727] reiserfs: using flush barriers [ 40.459963] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 40.476171] REISERFS (device loop0): checking transaction log (loop0) [ 40.528525] REISERFS (device loop0): Using r5 hash to sort names [ 40.534908] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. executing program [ 40.635157] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 40.644153] REISERFS (device loop0): using ordered data mode [ 40.653178] reiserfs: using flush barriers [ 40.658331] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 40.674276] REISERFS (device loop0): checking transaction log (loop0) executing program [ 40.726766] REISERFS (device loop0): Using r5 hash to sort names [ 40.733149] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 40.809747] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 40.818619] REISERFS (device loop0): using ordered data mode [ 40.825884] reiserfs: using flush barriers [ 40.830971] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 40.847183] REISERFS (device loop0): checking transaction log (loop0) [ 40.899683] REISERFS (device loop0): Using r5 hash to sort names [ 40.906046] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 40.929639] ================================================================== [ 40.937177] BUG: KASAN: use-after-free in leaf_paste_in_buffer+0xa27/0xc20 [ 40.944191] Read of size 176 at addr ffff88808c8cff90 by task syz-executor649/8439 [ 40.951878] [ 40.953491] CPU: 0 PID: 8439 Comm: syz-executor649 Not tainted 4.19.211-syzkaller #0 [ 40.961349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 40.970681] Call Trace: [ 40.973258] dump_stack+0x1fc/0x2ef [ 40.976877] print_address_description.cold+0x54/0x219 [ 40.982135] kasan_report_error.cold+0x8a/0x1b9 [ 40.986786] ? leaf_paste_in_buffer+0xa27/0xc20 [ 40.991435] kasan_report+0x8f/0xa0 [ 40.995051] ? leaf_paste_in_buffer+0xa27/0xc20 [ 40.999704] memcpy+0x20/0x50 [ 41.002795] leaf_paste_in_buffer+0xa27/0xc20 [ 41.007279] ? bpf_patch_insn_single+0xe0/0x1f0 [ 41.011934] leaf_copy_dir_entries.isra.0+0x7f3/0x980 [ 41.017112] ? leaf_paste_entries+0x910/0x910 [ 41.021606] leaf_move_items+0x17f6/0x3b60 [ 41.025850] ? leaf_copy_dir_entries.isra.0+0x980/0x980 [ 41.031203] ? lock_downgrade+0x720/0x720 [ 41.035340] ? reiserfs_write_lock_nested+0x65/0xe0 [ 41.040350] ? get_empty_nodes+0x22b/0x710 [ 41.044575] leaf_shift_left+0xa0/0x380 [ 41.048534] balance_leaf+0x2fb8/0xca70 [ 41.052494] ? replace_key+0x160/0x160 [ 41.056369] do_balance+0x30a/0x760 [ 41.059983] ? get_right_neighbor_position+0x170/0x170 [ 41.065249] ? __mutex_unlock_slowpath+0xea/0x610 [ 41.070076] ? memset+0x20/0x40 [ 41.073341] reiserfs_insert_item+0xbf3/0x1010 [ 41.077908] ? reiserfs_paste_into_item+0x7d0/0x7d0 [ 41.082956] ? scan_bitmap_block.constprop.0+0xf60/0xf60 [ 41.088401] ? journal_begin+0x210/0x400 [ 41.092457] reiserfs_get_block+0x122b/0x3e40 [ 41.096943] ? reiserfs_commit_write+0x6f0/0x6f0 [ 41.101683] ? do_raw_spin_lock+0xcb/0x220 [ 41.105906] ? check_preemption_disabled+0x41/0x280 [ 41.110906] ? alloc_buffer_head+0x20/0x130 [ 41.115223] ? do_raw_spin_unlock+0x171/0x230 [ 41.119702] ? _raw_spin_unlock+0x29/0x40 [ 41.123832] ? create_page_buffers+0x190/0x350 [ 41.128427] __block_write_begin_int+0x46c/0x17b0 [ 41.133254] ? reiserfs_commit_write+0x6f0/0x6f0 [ 41.138000] ? __breadahead_gfp+0x130/0x130 [ 41.142304] ? mark_held_locks+0xa6/0xf0 [ 41.146351] ? wait_for_stable_page+0x122/0x360 [ 41.151003] reiserfs_write_begin+0x39f/0xa10 [ 41.155484] generic_perform_write+0x1f8/0x4d0 [ 41.160049] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 41.164696] ? current_time+0x1c0/0x1c0 [ 41.168655] ? lock_acquire+0x170/0x3c0 [ 41.172614] __generic_file_write_iter+0x24b/0x610 [ 41.177524] generic_file_write_iter+0x3f8/0x730 [ 41.182263] __vfs_write+0x51b/0x770 [ 41.185957] ? kernel_read+0x110/0x110 [ 41.189829] ? check_preemption_disabled+0x41/0x280 [ 41.194837] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 41.199839] vfs_write+0x1f3/0x540 [ 41.203366] ksys_write+0x12b/0x2a0 [ 41.206973] ? __ia32_sys_read+0xb0/0xb0 [ 41.211014] ? trace_hardirqs_off_caller+0x6e/0x210 [ 41.216009] ? do_syscall_64+0x21/0x620 [ 41.219962] do_syscall_64+0xf9/0x620 [ 41.223745] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.228916] RIP: 0033:0x7fd1b5b1ab09 [ 41.232614] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 41.251506] RSP: 002b:00007fffd7996c38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 41.259196] RAX: ffffffffffffffda RBX: 0000000000009ea3 RCX: 00007fd1b5b1ab09 [ 41.266447] RDX: 000000000000fea7 RSI: 0000000020000280 RDI: 0000000000000007 [ 41.273695] RBP: 0000000000000000 R08: 0000000000000014 R09: 00007fffd7996c60 [ 41.280957] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffd7996c5c [ 41.288207] R13: 00007fffd7996c90 R14: 00007fffd7996c70 R15: 0000000000000027 [ 41.295460] [ 41.297071] The buggy address belongs to the page: [ 41.301991] page:ffffea00023233c0 count:3 mapcount:0 mapping:ffff8880ae1eeae0 index:0x214 [ 41.310288] flags: 0xfff00000001044(referenced|active|private) [ 41.316241] raw: 00fff00000001044 dead000000000100 dead000000000200 ffff8880ae1eeae0 [ 41.324103] raw: 0000000000000214 ffff888089d0b0a8 00000003ffffffff ffff8880b59f68c0 [ 41.331959] page dumped because: kasan: bad access detected [ 41.337645] page->mem_cgroup:ffff8880b59f68c0 [ 41.342112] [ 41.343718] Memory state around the buggy address: [ 41.348626] ffff88808c8cff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 41.355983] ffff88808c8cff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 41.363321] >ffff88808c8d0000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 41.370658] ^ [ 41.374002] ffff88808c8d0080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 41.381360] ffff88808c8d0100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 41.388693] ================================================================== [ 41.396028] Disabling lock debugging due to kernel taint [ 41.410915] Kernel panic - not syncing: panic_on_warn set ... [ 41.410915] [ 41.418305] CPU: 1 PID: 8439 Comm: syz-executor649 Tainted: G B 4.19.211-syzkaller #0 [ 41.427562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 41.436898] Call Trace: [ 41.439473] dump_stack+0x1fc/0x2ef [ 41.443080] panic+0x26a/0x50e [ 41.446252] ? __warn_printk+0xf3/0xf3 [ 41.450124] ? preempt_schedule_common+0x45/0xc0 [ 41.454862] ? ___preempt_schedule+0x16/0x18 [ 41.459252] ? trace_hardirqs_on+0x55/0x210 [ 41.463561] kasan_end_report+0x43/0x49 [ 41.467514] kasan_report_error.cold+0xa7/0x1b9 [ 41.472169] ? leaf_paste_in_buffer+0xa27/0xc20 [ 41.476816] kasan_report+0x8f/0xa0 [ 41.480438] ? leaf_paste_in_buffer+0xa27/0xc20 [ 41.485094] memcpy+0x20/0x50 [ 41.488182] leaf_paste_in_buffer+0xa27/0xc20 [ 41.492657] ? bpf_patch_insn_single+0xe0/0x1f0 [ 41.497306] leaf_copy_dir_entries.isra.0+0x7f3/0x980 [ 41.502474] ? leaf_paste_entries+0x910/0x910 [ 41.506952] leaf_move_items+0x17f6/0x3b60 [ 41.511168] ? leaf_copy_dir_entries.isra.0+0x980/0x980 [ 41.516512] ? lock_downgrade+0x720/0x720 [ 41.520637] ? reiserfs_write_lock_nested+0x65/0xe0 [ 41.525726] ? get_empty_nodes+0x22b/0x710 [ 41.529946] leaf_shift_left+0xa0/0x380 [ 41.533905] balance_leaf+0x2fb8/0xca70 [ 41.537860] ? replace_key+0x160/0x160 [ 41.541728] do_balance+0x30a/0x760 [ 41.545335] ? get_right_neighbor_position+0x170/0x170 [ 41.550764] ? __mutex_unlock_slowpath+0xea/0x610 [ 41.555598] ? memset+0x20/0x40 [ 41.558861] reiserfs_insert_item+0xbf3/0x1010 [ 41.563425] ? reiserfs_paste_into_item+0x7d0/0x7d0 [ 41.568440] ? scan_bitmap_block.constprop.0+0xf60/0xf60 [ 41.573869] ? journal_begin+0x210/0x400 [ 41.577921] reiserfs_get_block+0x122b/0x3e40 [ 41.582402] ? reiserfs_commit_write+0x6f0/0x6f0 [ 41.587138] ? do_raw_spin_lock+0xcb/0x220 [ 41.591357] ? check_preemption_disabled+0x41/0x280 [ 41.596353] ? alloc_buffer_head+0x20/0x130 [ 41.600658] ? do_raw_spin_unlock+0x171/0x230 [ 41.605133] ? _raw_spin_unlock+0x29/0x40 [ 41.609267] ? create_page_buffers+0x190/0x350 [ 41.613831] __block_write_begin_int+0x46c/0x17b0 [ 41.618656] ? reiserfs_commit_write+0x6f0/0x6f0 [ 41.623394] ? __breadahead_gfp+0x130/0x130 [ 41.627693] ? mark_held_locks+0xa6/0xf0 [ 41.631734] ? wait_for_stable_page+0x122/0x360 [ 41.636381] reiserfs_write_begin+0x39f/0xa10 [ 41.640862] generic_perform_write+0x1f8/0x4d0 [ 41.645427] ? filemap_page_mkwrite+0x2f0/0x2f0 [ 41.650074] ? current_time+0x1c0/0x1c0 [ 41.654026] ? lock_acquire+0x170/0x3c0 [ 41.657980] __generic_file_write_iter+0x24b/0x610 [ 41.662891] generic_file_write_iter+0x3f8/0x730 [ 41.667626] __vfs_write+0x51b/0x770 [ 41.671319] ? kernel_read+0x110/0x110 [ 41.675187] ? check_preemption_disabled+0x41/0x280 [ 41.680184] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 41.685179] vfs_write+0x1f3/0x540 [ 41.688702] ksys_write+0x12b/0x2a0 [ 41.692311] ? __ia32_sys_read+0xb0/0xb0 [ 41.696354] ? trace_hardirqs_off_caller+0x6e/0x210 [ 41.701354] ? do_syscall_64+0x21/0x620 [ 41.705308] do_syscall_64+0xf9/0x620 [ 41.709090] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 41.714259] RIP: 0033:0x7fd1b5b1ab09 [ 41.717952] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 41.736834] RSP: 002b:00007fffd7996c38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 41.744519] RAX: ffffffffffffffda RBX: 0000000000009ea3 RCX: 00007fd1b5b1ab09 [ 41.751775] RDX: 000000000000fea7 RSI: 0000000020000280 RDI: 0000000000000007 [ 41.759029] RBP: 0000000000000000 R08: 0000000000000014 R09: 00007fffd7996c60 [ 41.766281] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fffd7996c5c [ 41.773533] R13: 00007fffd7996c90 R14: 00007fffd7996c70 R15: 0000000000000027 [ 41.780952] Kernel Offset: disabled [ 41.784563] Rebooting in 86400 seconds..