Warning: Permanently added '10.128.1.124' (ED25519) to the list of known hosts.
executing program
[   39.534476][ T3967] loop0: detected capacity change from 0 to 8192
[   39.617179][ T3967] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   39.619730][ T3967] REISERFS (device loop0): using ordered data mode
[   39.621282][ T3967] reiserfs: using flush barriers
[   39.623721][ T3967] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   39.628378][ T3967] REISERFS (device loop0): checking transaction log (loop0)
[   39.632318][ T3967] REISERFS (device loop0): Using tea hash to sort names
[   39.634418][ T3967] REISERFS (device loop0): using 3.5.x disk format
[   39.637082][ T3967] ==================================================================
[   39.639168][ T3967] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x504/0x944
[   39.641035][ T3967] Read of size 18446744073709551584 at addr ffff0000e1123fa4 by task syz-executor158/3967
[   39.643322][ T3967] 
[   39.643937][ T3967] CPU: 1 PID: 3967 Comm: syz-executor158 Not tainted 5.15.163-syzkaller #0
[   39.645849][ T3967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   39.648421][ T3967] Call trace:
[   39.649163][ T3967]  dump_backtrace+0x0/0x530
[   39.650384][ T3967]  show_stack+0x2c/0x3c
[   39.651332][ T3967]  dump_stack_lvl+0x108/0x170
[   39.652558][ T3967]  print_address_description+0x7c/0x3f0
[   39.654020][ T3967]  kasan_report+0x174/0x1e4
[   39.655096][ T3967]  kasan_check_range+0x274/0x2b4
[   39.656431][ T3967]  memmove+0x90/0xe8
[   39.657213][ T3967]  leaf_paste_entries+0x504/0x944
[   39.658465][ T3967]  balance_leaf+0xa0d4/0xe860
[   39.659649][ T3967]  do_balance+0x27c/0x790
[   39.660749][ T3967]  reiserfs_paste_into_item+0x630/0x744
[   39.662239][ T3967]  reiserfs_add_entry+0x8c0/0xc8c
[   39.663449][ T3967]  reiserfs_mkdir+0x588/0x77c
[   39.664593][ T3967]  reiserfs_xattr_init+0x2b0/0x6dc
[   39.665998][ T3967]  reiserfs_fill_super+0x1b28/0x1e8c
[   39.667251][ T3967]  mount_bdev+0x274/0x370
[   39.668462][ T3967]  get_super_block+0x44/0x58
[   39.669612][ T3967]  legacy_get_tree+0xd4/0x16c
[   39.670762][ T3967]  vfs_get_tree+0x90/0x274
[   39.671944][ T3967]  do_new_mount+0x278/0x8fc
[   39.673120][ T3967]  path_mount+0x594/0x101c
[   39.674251][ T3967]  __arm64_sys_mount+0x510/0x5e0
[   39.675474][ T3967]  invoke_syscall+0x98/0x2b8
[   39.676711][ T3967]  el0_svc_common+0x138/0x258
[   39.677887][ T3967]  do_el0_svc+0x58/0x14c
[   39.679025][ T3967]  el0_svc+0x7c/0x1f0
[   39.680051][ T3967]  el0t_64_sync_handler+0x84/0xe4
[   39.681350][ T3967]  el0t_64_sync+0x1a0/0x1a4
[   39.682410][ T3967] 
[   39.683007][ T3967] The buggy address belongs to the page:
[   39.684395][ T3967] page:00000000cc89a489 refcount:3 mapcount:0 mapping:000000003de42ce7 index:0x213 pfn:0x121123
[   39.687020][ T3967] memcg:ffff0000c08a4000
[   39.688109][ T3967] aops:def_blk_aops ino:700000
[   39.689325][ T3967] flags: 0x5ffc00000002022(referenced|active|private|node=0|zone=2|lastcpupid=0x7ff)
[   39.691603][ T3967] raw: 05ffc00000002022 0000000000000000 dead000000000122 ffff0000c058cf48
[   39.693785][ T3967] raw: 0000000000000213 ffff0000df636d98 00000003ffffffff ffff0000c08a4000
[   39.695939][ T3967] page dumped because: kasan: bad access detected
[   39.697535][ T3967] 
[   39.698010][ T3967] Memory state around the buggy address:
[   39.699481][ T3967]  ffff0000e1123e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   39.701533][ T3967]  ffff0000e1123f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   39.703422][ T3967] >ffff0000e1123f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   39.705392][ T3967]                                ^
[   39.706681][ T3967]  ffff0000e1124000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   39.708696][ T3967]  ffff0000e1124080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   39.710715][ T3967] ==================================================================
[   39.712837][ T3967] Disabling lock debugging due to kernel taint
[   39.715453][ T3967] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   39.720603][ T3967] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   39.723210][ T3967] REISERFS (device loop0): Remounting filesystem read-only
[   39.725116][ T3967] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data
[   39.728418][ T3967] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[   39.732029][ T3967] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 29662, item_location 2, free_space(entry_count) 37376
[   39.737317][ T3967] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   39.739968][ T3967] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error
executing program
[   39.900181][ T3970] loop0: detected capacity change from 0 to 8192
[   39.965539][ T3970] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   39.967861][ T3970] REISERFS (device loop0): using ordered data mode
[   39.969620][ T3970] reiserfs: using flush barriers
[   39.971497][ T3970] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   39.975734][ T3970] REISERFS (device loop0): checking transaction log (loop0)
[   39.978345][ T3970] REISERFS (device loop0): Using tea hash to sort names
[   39.980195][ T3970] REISERFS (device loop0): using 3.5.x disk format
[   39.982398][ T3970] Unable to handle kernel write to read-only memory at virtual address ffff00017498fff0
[   39.987413][ T3970] Mem abort info:
[   39.988394][ T3970]   ESR = 0x000000009600004f
[   39.989556][ T3970]   EC = 0x25: DABT (current EL), IL = 32 bits
[   39.991024][ T3970]   SET = 0, FnV = 0
[   39.991966][ T3970]   EA = 0, S1PTW = 0
[   39.992921][ T3970]   FSC = 0x0f: level 3 permission fault
[   39.994353][ T3970] Data abort info:
[   39.995312][ T3970]   ISV = 0, ISS = 0x0000004f
[   39.996504][ T3970]   CM = 0, WnR = 1
[   39.997455][ T3970] swapper pgtable: 4k pages, 48-bit VAs, pgdp=00000001b498e000
[   39.999192][ T3970] [ffff00017498fff0] pgd=180000023fff7003, p4d=180000023fff7003, pud=180000023f211003, pmd=180000023f0cd003, pte=00600001b498f783
[   40.002536][ T3970] Internal error: Oops: 000000009600004f [#1] PREEMPT SMP
[   40.004251][ T3970] Modules linked in:
[   40.005217][ T3970] CPU: 1 PID: 3970 Comm: syz-executor158 Tainted: G    B             5.15.163-syzkaller #0
[   40.007775][ T3970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   40.010271][ T3970] pstate: a0400005 (NzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[   40.012335][ T3970] pc : __memcpy+0x1d8/0x260
[   40.013584][ T3970] lr : memmove+0xc8/0xe8
[   40.014719][ T3970] sp : ffff80001cb06510
[   40.015764][ T3970] x29: ffff80001cb06510 x28: dfff800000000000 x27: ffff000174a0c043
[   40.017856][ T3970] x26: ffff000174a0c042 x25: 0000000000000010 x24: ffff000174a0cf84
[   40.019880][ T3970] x23: ffff800016f53000 x22: ffff800008ccde84 x21: ffff000174a0cfb4
[   40.021958][ T3970] x20: ffff000174a0cfa4 x19: ffffffffffffffe0 x18: 0000000000000000
[   40.024047][ T3970] x17: ff00000001000000 x16: 2700000027000000 x15: 2700000023000000
[   40.026130][ T3970] x14: 0000000000000004 x13: 0000000000000000 x12: 0000000000000000
[   40.028150][ T3970] x11: 0000000000000000 x10: 0000000000000000 x9 : 0000000000000000
[   40.030287][ T3970] x8 : 0000000000000000 x7 : 0000000000000000 x6 : 0000000000000000
[   40.032279][ T3970] x5 : ffff000174990010 x4 : ffff00017498ffc0 x3 : ffff800008ccde84
[   40.034315][ T3970] x2 : fffffffffff82fdc x1 : ffff000174a0cfa4 x0 : ffff000174a0cfb4
[   40.036366][ T3970] Call trace:
[   40.037202][ T3970]  __memcpy+0x1d8/0x260
[   40.038264][ T3970]  leaf_paste_entries+0x504/0x944
[   40.039502][ T3970]  balance_leaf+0xa0d4/0xe860
[   40.040633][ T3970]  do_balance+0x27c/0x790
[   40.041662][ T3970]  reiserfs_paste_into_item+0x630/0x744
[   40.043056][ T3970]  reiserfs_add_entry+0x8c0/0xc8c
[   40.044386][ T3970]  reiserfs_mkdir+0x588/0x77c
[   40.045486][ T3970]  reiserfs_xattr_init+0x2b0/0x6dc
[   40.046844][ T3970]  reiserfs_fill_super+0x1b28/0x1e8c
[   40.048185][ T3970]  mount_bdev+0x274/0x370
[   40.049244][ T3970]  get_super_block+0x44/0x58
[   40.050479][ T3970]  legacy_get_tree+0xd4/0x16c
[   40.051644][ T3970]  vfs_get_tree+0x90/0x274
[   40.052748][ T3970]  do_new_mount+0x278/0x8fc
[   40.053901][ T3970]  path_mount+0x594/0x101c
[   40.055012][ T3970]  __arm64_sys_mount+0x510/0x5e0
[   40.056269][ T3970]  invoke_syscall+0x98/0x2b8
[   40.057312][ T3970]  el0_svc_common+0x138/0x258
[   40.058477][ T3970]  do_el0_svc+0x58/0x14c
[   40.059590][ T3970]  el0_svc+0x7c/0x1f0
[   40.060684][ T3970]  el0t_64_sync_handler+0x84/0xe4
[   40.062009][ T3970]  el0t_64_sync+0x1a0/0x1a4
[   40.063178][ T3970] Code: f1020042 54000169 a93f1ca6 a97f1c86 (a93e24a8) 
[   40.064923][ T3970] ---[ end trace ef285106d1c9f2c0 ]---
[   40.391410][ T3970] Kernel panic - not syncing: Oops: Fatal exception
[   40.393280][ T3970] SMP: stopping secondary CPUs
[   40.394525][ T3970] Kernel Offset: disabled
[   40.395569][ T3970] CPU features: 0x0,000081c1,21302e40
[   40.397001][ T3970] Memory Limit: none
[   40.696356][ T3970] Rebooting in 86400 seconds..