Warning: Permanently added '10.128.1.40' (ECDSA) to the list of known hosts.
executing program
[   51.790479][ T3504] loop0: detected capacity change from 0 to 8192
[   51.801155][ T3504] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   51.811045][ T3504] REISERFS (device loop0): using ordered data mode
[   51.817688][ T3504] reiserfs: using flush barriers
[   51.824372][ T3504] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   51.840888][ T3504] REISERFS (device loop0): checking transaction log (loop0)
[   51.889081][ T3504] REISERFS (device loop0): Using r5 hash to sort names
[   51.896231][ T3504] REISERFS (device loop0): using 3.5.x disk format
[   51.903832][ T3504] ==================================================================
[   51.911990][ T3504] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x95f/0x13a0
[   51.919548][ T3504] Read of size 18446744073709551584 at addr ffff888071163fa4 by task syz-executor358/3504
[   51.929433][ T3504] 
[   51.931749][ T3504] CPU: 1 PID: 3504 Comm: syz-executor358 Not tainted 5.15.119-syzkaller #0
[   51.940327][ T3504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   51.950377][ T3504] Call Trace:
[   51.953653][ T3504]  <TASK>
[   51.956581][ T3504]  dump_stack_lvl+0x1e3/0x2cb
[   51.961260][ T3504]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   51.966897][ T3504]  ? _printk+0xd1/0x111
[   51.971147][ T3504]  ? __wake_up_klogd+0xcc/0x100
[   51.976090][ T3504]  ? panic+0x84d/0x84d
[   51.980166][ T3504]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   51.985639][ T3504]  print_address_description+0x63/0x3b0
[   51.991204][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   51.996495][ T3504]  kasan_report+0x16b/0x1c0
[   52.001007][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.006301][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.011599][ T3504]  kasan_check_range+0x27e/0x290
[   52.016537][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.021907][ T3504]  memmove+0x25/0x60
[   52.025795][ T3504]  leaf_paste_entries+0x95f/0x13a0
[   52.030911][ T3504]  balance_leaf+0xbd1e/0x12510
[   52.035675][ T3504]  ? print_irqtrace_events+0x210/0x210
[   52.041129][ T3504]  ? do_raw_spin_unlock+0x137/0x8b0
[   52.046319][ T3504]  ? lockdep_hardirqs_on+0x94/0x130
[   52.051598][ T3504]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   52.057529][ T3504]  ? _raw_spin_unlock+0x40/0x40
[   52.062388][ T3504]  ? stack_trace_save+0x113/0x1c0
[   52.067413][ T3504]  ? do_balance+0x8f0/0x8f0
[   52.071917][ T3504]  ? stack_depot_save+0x3db/0x440
[   52.076941][ T3504]  ? ____kasan_kmalloc+0xd1/0xf0
[   52.081875][ T3504]  ? ____kasan_kmalloc+0xba/0xf0
[   52.086807][ T3504]  ? __kmalloc+0x168/0x300
[   52.091212][ T3504]  ? fix_nodes+0x69aa/0x8c70
[   52.095792][ T3504]  ? reiserfs_paste_into_item+0x65d/0x880
[   52.101511][ T3504]  ? reiserfs_add_entry+0x9b8/0xd70
[   52.106716][ T3504]  ? reiserfs_mkdir+0x6bc/0x8f0
[   52.111554][ T3504]  ? reiserfs_xattr_init+0x348/0x730
[   52.116863][ T3504]  ? reiserfs_fill_super+0x226a/0x2690
[   52.122317][ T3504]  ? mount_bdev+0x2c9/0x3f0
[   52.126812][ T3504]  ? legacy_get_tree+0xeb/0x180
[   52.131653][ T3504]  ? vfs_get_tree+0x88/0x270
[   52.136237][ T3504]  ? do_new_mount+0x28b/0xae0
[   52.140922][ T3504]  ? __se_sys_mount+0x2d5/0x3c0
[   52.145768][ T3504]  ? do_syscall_64+0x3d/0xb0
[   52.150526][ T3504]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.156687][ T3504]  ? get_parents+0x513/0xfa0
[   52.161314][ T3504]  ? __wake_up_bit+0x190/0x190
[   52.166073][ T3504]  ? set_parameters+0x8d0/0x8d0
[   52.170914][ T3504]  ? get_neighbors+0x631/0x1010
[   52.175785][ T3504]  ? reiserfs_prepare_for_journal+0x26b/0x280
[   52.181848][ T3504]  ? fix_nodes+0x7abc/0x8c70
[   52.186429][ T3504]  ? __might_sleep+0xc0/0xc0
[   52.191028][ T3504]  do_balance+0x309/0x8f0
[   52.195362][ T3504]  ? get_right_neighbor_position+0x210/0x210
[   52.201342][ T3504]  ? reiserfs_paste_into_item+0x3ef/0x880
[   52.207060][ T3504]  reiserfs_paste_into_item+0x73b/0x880
[   52.212613][ T3504]  ? reiserfs_cut_from_item+0x2560/0x2560
[   52.218382][ T3504]  ? reiserfs_get_parent+0x2c0/0x2c0
[   52.223657][ T3504]  ? inode_get_bytes+0x72/0xa0
[   52.228419][ T3504]  ? _find_first_zero_bit+0x60/0xf0
[   52.233619][ T3504]  reiserfs_add_entry+0x9b8/0xd70
[   52.238644][ T3504]  ? drop_new_inode+0x60/0x60
[   52.243574][ T3504]  ? do_journal_begin_r+0xdad/0x1000
[   52.248878][ T3504]  ? journal_begin+0x1ef/0x350
[   52.253634][ T3504]  reiserfs_mkdir+0x6bc/0x8f0
[   52.258330][ T3504]  ? __might_sleep+0xc0/0xc0
[   52.262917][ T3504]  ? reiserfs_symlink+0x720/0x720
[   52.267944][ T3504]  ? down_write+0x10e/0x170
[   52.272456][ T3504]  ? __up_read+0x690/0x690
[   52.276873][ T3504]  reiserfs_xattr_init+0x348/0x730
[   52.281984][ T3504]  reiserfs_fill_super+0x226a/0x2690
[   52.287274][ T3504]  ? reiserfs_kill_sb+0x150/0x150
[   52.292307][ T3504]  ? snprintf+0xd6/0x120
[   52.296560][ T3504]  mount_bdev+0x2c9/0x3f0
[   52.300973][ T3504]  ? reiserfs_kill_sb+0x150/0x150
[   52.305993][ T3504]  legacy_get_tree+0xeb/0x180
[   52.310670][ T3504]  ? remove_save_link+0x540/0x540
[   52.315703][ T3504]  vfs_get_tree+0x88/0x270
[   52.320114][ T3504]  do_new_mount+0x28b/0xae0
[   52.324617][ T3504]  ? do_move_mount_old+0x160/0x160
[   52.329986][ T3504]  ? user_path_at_empty+0x12b/0x180
[   52.335362][ T3504]  __se_sys_mount+0x2d5/0x3c0
[   52.340039][ T3504]  ? __x64_sys_mount+0xc0/0xc0
[   52.344796][ T3504]  ? syscall_enter_from_user_mode+0x2e/0x230
[   52.350768][ T3504]  ? lockdep_hardirqs_on+0x94/0x130
[   52.355959][ T3504]  ? __x64_sys_mount+0x1c/0xc0
[   52.360714][ T3504]  do_syscall_64+0x3d/0xb0
[   52.365122][ T3504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.371011][ T3504] RIP: 0033:0x7f094274cb1a
[   52.375417][ T3504] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   52.395010][ T3504] RSP: 002b:00007fff3c732398 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   52.403416][ T3504] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f094274cb1a
[   52.411377][ T3504] RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007fff3c7323b0
[   52.419434][ T3504] RBP: 00007fff3c7323b0 R08: 00007fff3c7323f0 R09: 00000000000010fb
[   52.427489][ T3504] R10: 0000000000000080 R11: 0000000000000286 R12: 0000000000000004
[   52.435552][ T3504] R13: 000055555740b2c0 R14: 0000000000000080 R15: 00007fff3c7323f0
[   52.443630][ T3504]  </TASK>
[   52.446641][ T3504] 
[   52.448955][ T3504] The buggy address belongs to the page:
[   52.454690][ T3504] page:ffffea0001c458c0 refcount:3 mapcount:0 mapping:ffff888145e3daf0 index:0x213 pfn:0x71163
[   52.465004][ T3504] memcg:ffff888011e6c000
[   52.469229][ T3504] aops:def_blk_aops ino:700000
[   52.473992][ T3504] flags: 0xfff00000002022(referenced|active|private|node=0|zone=1|lastcpupid=0x7ff)
[   52.483353][ T3504] raw: 00fff00000002022 0000000000000000 dead000000000122 ffff888145e3daf0
[   52.491966][ T3504] raw: 0000000000000213 ffff8880718bb000 00000003ffffffff ffff888011e6c000
[   52.500529][ T3504] page dumped because: kasan: bad access detected
[   52.506927][ T3504] page_owner tracks the page as allocated
[   52.512624][ T3504] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 3504, ts 51888594021, free_ts 45412625769
[   52.529738][ T3504]  get_page_from_freelist+0x322a/0x33c0
[   52.535322][ T3504]  __alloc_pages+0x272/0x700
[   52.539900][ T3504]  __page_cache_alloc+0xd4/0x4a0
[   52.544826][ T3504]  pagecache_get_page+0xa91/0x1010
[   52.549937][ T3504]  __getblk_gfp+0x22a/0xaf0
[   52.554428][ T3504]  search_by_key+0x46d/0x4730
[   52.559102][ T3504]  reiserfs_read_locked_inode+0x23c/0x2950
[   52.564896][ T3504]  reiserfs_fill_super+0x11bf/0x2690
[   52.570172][ T3504]  mount_bdev+0x2c9/0x3f0
[   52.574490][ T3504]  legacy_get_tree+0xeb/0x180
[   52.579175][ T3504]  vfs_get_tree+0x88/0x270
[   52.583583][ T3504]  do_new_mount+0x28b/0xae0
[   52.588076][ T3504]  __se_sys_mount+0x2d5/0x3c0
[   52.592747][ T3504]  do_syscall_64+0x3d/0xb0
[   52.597154][ T3504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.603037][ T3504] page last free stack trace:
[   52.607694][ T3504]  free_unref_page_prepare+0xc34/0xcf0
[   52.613144][ T3504]  free_unref_page_list+0x1f7/0x8e0
[   52.618332][ T3504]  release_pages+0x1bb9/0x1f40
[   52.623087][ T3504]  tlb_finish_mmu+0x177/0x320
[   52.627752][ T3504]  unmap_region+0x304/0x350
[   52.632250][ T3504]  __do_munmap+0x12db/0x1740
[   52.636832][ T3504]  __vm_munmap+0x134/0x230
[   52.641759][ T3504]  __x64_sys_munmap+0x67/0x70
[   52.646706][ T3504]  do_syscall_64+0x3d/0xb0
[   52.651115][ T3504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.657172][ T3504] 
[   52.659483][ T3504] Memory state around the buggy address:
[   52.665097][ T3504]  ffff888071163e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   52.673143][ T3504]  ffff888071163f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   52.681276][ T3504] >ffff888071163f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   52.689320][ T3504]                                ^
[   52.694419][ T3504]  ffff888071164000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   52.702475][ T3504]  ffff888071164080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   52.710522][ T3504] ==================================================================
[   52.718567][ T3504] Disabling lock debugging due to kernel taint
[   52.725048][ T3504] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   52.732250][ T3504] CPU: 1 PID: 3504 Comm: syz-executor358 Tainted: G    B             5.15.119-syzkaller #0
[   52.742242][ T3504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   52.752288][ T3504] Call Trace:
[   52.755560][ T3504]  <TASK>
[   52.758481][ T3504]  dump_stack_lvl+0x1e3/0x2cb
[   52.763166][ T3504]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   52.768789][ T3504]  ? panic+0x84d/0x84d
[   52.772846][ T3504]  ? rcu_is_watching+0x11/0xa0
[   52.777603][ T3504]  ? preempt_schedule_common+0xa6/0xd0
[   52.783051][ T3504]  panic+0x318/0x84d
[   52.786936][ T3504]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   52.793077][ T3504]  ? check_panic_on_warn+0x1d/0xa0
[   52.798182][ T3504]  ? fb_is_primary_device+0xcc/0xcc
[   52.803475][ T3504]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   52.809527][ T3504]  ? _raw_spin_unlock+0x40/0x40
[   52.814369][ T3504]  check_panic_on_warn+0x7e/0xa0
[   52.819294][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.824571][ T3504]  end_report+0x6d/0xf0
[   52.828979][ T3504]  kasan_report+0x18e/0x1c0
[   52.833474][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.838756][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.844124][ T3504]  kasan_check_range+0x27e/0x290
[   52.849056][ T3504]  ? leaf_paste_entries+0x95f/0x13a0
[   52.854333][ T3504]  memmove+0x25/0x60
[   52.858217][ T3504]  leaf_paste_entries+0x95f/0x13a0
[   52.863332][ T3504]  balance_leaf+0xbd1e/0x12510
[   52.868089][ T3504]  ? print_irqtrace_events+0x210/0x210
[   52.873541][ T3504]  ? do_raw_spin_unlock+0x137/0x8b0
[   52.878750][ T3504]  ? lockdep_hardirqs_on+0x94/0x130
[   52.883943][ T3504]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   52.889832][ T3504]  ? _raw_spin_unlock+0x40/0x40
[   52.894669][ T3504]  ? stack_trace_save+0x113/0x1c0
[   52.899686][ T3504]  ? do_balance+0x8f0/0x8f0
[   52.904177][ T3504]  ? stack_depot_save+0x3db/0x440
[   52.909195][ T3504]  ? ____kasan_kmalloc+0xd1/0xf0
[   52.914119][ T3504]  ? ____kasan_kmalloc+0xba/0xf0
[   52.919045][ T3504]  ? __kmalloc+0x168/0x300
[   52.923449][ T3504]  ? fix_nodes+0x69aa/0x8c70
[   52.928026][ T3504]  ? reiserfs_paste_into_item+0x65d/0x880
[   52.933742][ T3504]  ? reiserfs_add_entry+0x9b8/0xd70
[   52.938946][ T3504]  ? reiserfs_mkdir+0x6bc/0x8f0
[   52.943792][ T3504]  ? reiserfs_xattr_init+0x348/0x730
[   52.949074][ T3504]  ? reiserfs_fill_super+0x226a/0x2690
[   52.954523][ T3504]  ? mount_bdev+0x2c9/0x3f0
[   52.959017][ T3504]  ? legacy_get_tree+0xeb/0x180
[   52.963858][ T3504]  ? vfs_get_tree+0x88/0x270
[   52.968440][ T3504]  ? do_new_mount+0x28b/0xae0
[   52.973105][ T3504]  ? __se_sys_mount+0x2d5/0x3c0
[   52.977949][ T3504]  ? do_syscall_64+0x3d/0xb0
[   52.982535][ T3504]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   52.988608][ T3504]  ? get_parents+0x513/0xfa0
[   52.993190][ T3504]  ? __wake_up_bit+0x190/0x190
[   52.997949][ T3504]  ? set_parameters+0x8d0/0x8d0
[   53.002787][ T3504]  ? get_neighbors+0x631/0x1010
[   53.007637][ T3504]  ? reiserfs_prepare_for_journal+0x26b/0x280
[   53.013699][ T3504]  ? fix_nodes+0x7abc/0x8c70
[   53.018281][ T3504]  ? __might_sleep+0xc0/0xc0
[   53.022869][ T3504]  do_balance+0x309/0x8f0
[   53.027188][ T3504]  ? get_right_neighbor_position+0x210/0x210
[   53.033162][ T3504]  ? reiserfs_paste_into_item+0x3ef/0x880
[   53.038875][ T3504]  reiserfs_paste_into_item+0x73b/0x880
[   53.044414][ T3504]  ? reiserfs_cut_from_item+0x2560/0x2560
[   53.050144][ T3504]  ? reiserfs_get_parent+0x2c0/0x2c0
[   53.055417][ T3504]  ? inode_get_bytes+0x72/0xa0
[   53.060169][ T3504]  ? _find_first_zero_bit+0x60/0xf0
[   53.065375][ T3504]  reiserfs_add_entry+0x9b8/0xd70
[   53.070394][ T3504]  ? drop_new_inode+0x60/0x60
[   53.075056][ T3504]  ? do_journal_begin_r+0xdad/0x1000
[   53.080352][ T3504]  ? journal_begin+0x1ef/0x350
[   53.085108][ T3504]  reiserfs_mkdir+0x6bc/0x8f0
[   53.089774][ T3504]  ? __might_sleep+0xc0/0xc0
[   53.094354][ T3504]  ? reiserfs_symlink+0x720/0x720
[   53.099371][ T3504]  ? down_write+0x10e/0x170
[   53.103863][ T3504]  ? __up_read+0x690/0x690
[   53.108272][ T3504]  reiserfs_xattr_init+0x348/0x730
[   53.113500][ T3504]  reiserfs_fill_super+0x226a/0x2690
[   53.118801][ T3504]  ? reiserfs_kill_sb+0x150/0x150
[   53.123835][ T3504]  ? snprintf+0xd6/0x120
[   53.128092][ T3504]  mount_bdev+0x2c9/0x3f0
[   53.132432][ T3504]  ? reiserfs_kill_sb+0x150/0x150
[   53.137451][ T3504]  legacy_get_tree+0xeb/0x180
[   53.142131][ T3504]  ? remove_save_link+0x540/0x540
[   53.147146][ T3504]  vfs_get_tree+0x88/0x270
[   53.151555][ T3504]  do_new_mount+0x28b/0xae0
[   53.156050][ T3504]  ? do_move_mount_old+0x160/0x160
[   53.161152][ T3504]  ? user_path_at_empty+0x12b/0x180
[   53.166341][ T3504]  __se_sys_mount+0x2d5/0x3c0
[   53.171016][ T3504]  ? __x64_sys_mount+0xc0/0xc0
[   53.175856][ T3504]  ? syscall_enter_from_user_mode+0x2e/0x230
[   53.181830][ T3504]  ? lockdep_hardirqs_on+0x94/0x130
[   53.187018][ T3504]  ? __x64_sys_mount+0x1c/0xc0
[   53.191771][ T3504]  do_syscall_64+0x3d/0xb0
[   53.196781][ T3504]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   53.202662][ T3504] RIP: 0033:0x7f094274cb1a
[   53.207064][ T3504] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   53.226656][ T3504] RSP: 002b:00007fff3c732398 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   53.235056][ T3504] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f094274cb1a
[   53.243016][ T3504] RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007fff3c7323b0
[   53.250977][ T3504] RBP: 00007fff3c7323b0 R08: 00007fff3c7323f0 R09: 00000000000010fb
[   53.258933][ T3504] R10: 0000000000000080 R11: 0000000000000286 R12: 0000000000000004
[   53.266890][ T3504] R13: 000055555740b2c0 R14: 0000000000000080 R15: 00007fff3c7323f0
[   53.274854][ T3504]  </TASK>
[   53.278060][ T3504] Kernel Offset: disabled
[   53.282377][ T3504] Rebooting in 86400 seconds..