Warning: Permanently added '10.128.1.40' (ED25519) to the list of known hosts.
Setting up swapspace version 1, size = 127995904 bytes
[   60.002532][ T5050] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
executing program
[   60.107010][ T1552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.115070][ T1552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.139747][ T4424] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.147828][ T4424] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.206555][ T5055] loop0: detected capacity change from 0 to 8192
[   60.216731][ T5055] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[   60.229846][ T5055] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   60.239442][ T5055] REISERFS (device loop0): using ordered data mode
[   60.246078][ T5055] reiserfs: using flush barriers
[   60.252519][ T5055] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   60.269717][ T5055] REISERFS (device loop0): checking transaction log (loop0)
[   60.318605][ T5055] REISERFS (device loop0): Using r5 hash to sort names
[   60.325716][ T5055] REISERFS (device loop0): using 3.5.x disk format
[   60.333615][ T5055] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   60.348989][   T28] audit: type=1800 audit(1700528533.057:2): pid=5055 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor105" name="file2" dev="loop0" ino=2 res=0 errno=0
[   60.372015][   T28] audit: type=1800 audit(1700528533.077:3): pid=5055 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor105" name="bus" dev="loop0" ino=3 res=0 errno=0
[   60.392451][ T5055] ==================================================================
[   60.400905][ T5055] BUG: KASAN: out-of-bounds in leaf_paste_in_buffer+0x1bc/0xab0
[   60.408591][ T5055] Read of size 18446744073709551305 at addr ffff88806d702000 by task syz-executor105/5055
[   60.418904][ T5055] 
[   60.421217][ T5055] CPU: 0 PID: 5055 Comm: syz-executor105 Not tainted 6.7.0-rc2-syzkaller #0
[   60.429874][ T5055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   60.440156][ T5055] Call Trace:
[   60.443432][ T5055]  <TASK>
[   60.446377][ T5055]  dump_stack_lvl+0x1e7/0x2d0
[   60.451062][ T5055]  ? nf_tcp_handle_invalid+0x650/0x650
[   60.456581][ T5055]  ? panic+0x850/0x850
[   60.460654][ T5055]  ? _printk+0xd5/0x120
[   60.464822][ T5055]  print_report+0x163/0x540
[   60.469321][ T5055]  ? __virt_addr_valid+0x22f/0x2e0
[   60.474421][ T5055]  ? __phys_addr+0xba/0x170
[   60.478909][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   60.484301][ T5055]  kasan_report+0x142/0x170
[   60.488811][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   60.494195][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   60.499560][ T5055]  kasan_check_range+0x27e/0x290
[   60.504757][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   60.510119][ T5055]  __asan_memmove+0x29/0x70
[   60.514790][ T5055]  leaf_paste_in_buffer+0x1bc/0xab0
[   60.519982][ T5055]  balance_leaf+0x6680/0x12510
[   60.524736][ T5055]  ? print_irqtrace_events+0x220/0x220
[   60.530198][ T5055]  ? do_balance+0x8f0/0x8f0
[   60.534699][ T5055]  ? write_boundary_block+0xb0/0xb0
[   60.539884][ T5055]  ? do_raw_spin_lock+0x14e/0x370
[   60.545069][ T5055]  ? do_raw_spin_unlock+0x13b/0x8b0
[   60.550255][ T5055]  ? bdev_getblk+0x61c/0x6d0
[   60.554827][ T5055]  ? get_empty_nodes+0x928/0xd90
[   60.559833][ T5055]  ? direntry_part_size+0xb4/0x1a0
[   60.565032][ T5055]  ? get_neighbors+0x1010/0x1010
[   60.569978][ T5055]  ? __wake_up+0x10/0x10
[   60.574235][ T5055]  ? is_leaf_removable+0x8c0/0x8c0
[   60.579341][ T5055]  ? get_neighbors+0x631/0x1010
[   60.584363][ T5055]  ? reiserfs_prepare_for_journal+0x26d/0x280
[   60.590432][ T5055]  ? fix_nodes+0x7b03/0x8ce0
[   60.595142][ T5055]  do_balance+0x30d/0x8f0
[   60.599653][ T5055]  ? get_right_neighbor_position+0x210/0x210
[   60.606006][ T5055]  ? reiserfs_paste_into_item+0x3f3/0x880
[   60.611720][ T5055]  reiserfs_paste_into_item+0x734/0x880
[   60.617267][ T5055]  ? reiserfs_cut_from_item+0x2580/0x2580
[   60.623001][ T5055]  ? reiserfs_get_block+0x19aa/0x5130
[   60.628455][ T5055]  ? rcu_is_watching+0x15/0xb0
[   60.633236][ T5055]  ? reiserfs_get_block+0x19aa/0x5130
[   60.638619][ T5055]  ? trace_kmalloc+0x1f/0xa0
[   60.643304][ T5055]  ? __kmalloc+0xd0/0x1a0
[   60.647909][ T5055]  reiserfs_get_block+0x2250/0x5130
[   60.653201][ T5055]  ? make_le_item_head+0x570/0x570
[   60.658313][ T5055]  ? register_lock_class+0x102/0x970
[   60.663585][ T5055]  ? is_dynamic_key+0x260/0x260
[   60.668423][ T5055]  ? mark_lock+0x9a/0x350
[   60.672853][ T5055]  ? __lock_acquire+0x1345/0x1fd0
[   60.677952][ T5055]  ? create_empty_buffers+0x53e/0x740
[   60.683338][ T5055]  ? do_raw_spin_unlock+0x13b/0x8b0
[   60.688553][ T5055]  ? create_empty_buffers+0x53e/0x740
[   60.693936][ T5055]  __block_write_begin_int+0x54d/0x1ad0
[   60.699505][ T5055]  ? make_le_item_head+0x570/0x570
[   60.704602][ T5055]  ? folio_zero_new_buffers+0x540/0x540
[   60.710152][ T5055]  ? __block_write_begin+0x64/0x150
[   60.715341][ T5055]  reiserfs_write_begin+0x24d/0x520
[   60.720974][ T5055]  ? reiserfs_write_lock+0x7a/0xd0
[   60.726080][ T5055]  generic_cont_expand_simple+0x18b/0x2a0
[   60.731783][ T5055]  ? submit_bh+0x20/0x20
[   60.736006][ T5055]  ? smk_access+0x4ab/0x4e0
[   60.740516][ T5055]  reiserfs_setattr+0x57d/0x1140
[   60.745441][ T5055]  ? reiserfs_commit_write+0x5b0/0x5b0
[   60.750886][ T5055]  ? current_time+0x1e0/0x2b0
[   60.755565][ T5055]  ? inode_set_ctime_current+0x80/0x80
[   60.761117][ T5055]  ? evm_inode_setattr+0x100/0x740
[   60.766217][ T5055]  ? bpf_lsm_inode_setattr+0x9/0x10
[   60.771401][ T5055]  ? security_inode_setattr+0xd7/0x130
[   60.776866][ T5055]  ? reiserfs_commit_write+0x5b0/0x5b0
[   60.782311][ T5055]  notify_change+0xb99/0xe60
[   60.786990][ T5055]  do_truncate+0x220/0x300
[   60.791416][ T5055]  ? put_page_bootmem+0x2e0/0x2e0
[   60.796471][ T5055]  do_sys_ftruncate+0x2f3/0x390
[   60.801326][ T5055]  do_syscall_64+0x45/0x110
[   60.805910][ T5055]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   60.811802][ T5055] RIP: 0033:0x7ff2368c6419
[   60.816230][ T5055] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   60.835852][ T5055] RSP: 002b:00007ff236879168 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[   60.844347][ T5055] RAX: ffffffffffffffda RBX: 00007ff2369496e8 RCX: 00007ff2368c6419
[   60.853133][ T5055] RDX: 00007ff2368c6419 RSI: 0000000002007fff RDI: 0000000000000005
[   60.861121][ T5055] RBP: 00007ff2369496e0 R08: 00007ff2368796c0 R09: 0000000000000000
[   60.869275][ T5055] R10: 00007ff2368796c0 R11: 0000000000000246 R12: 00007ff2369496ec
[   60.877266][ T5055] R13: 0000000000000000 R14: 00007ffe3124e730 R15: 00007ffe3124e818
[   60.885238][ T5055]  </TASK>
[   60.888338][ T5055] 
[   60.890645][ T5055] The buggy address belongs to the physical page:
[   60.897064][ T5055] page:ffffea0001b5c080 refcount:1 mapcount:1 mapping:0000000000000000 index:0x55c935066 pfn:0x6d702
[   60.908081][ T5055] memcg:ffff888016262000
[   60.912313][ T5055] anon flags: 0xfff000000a0028(uptodate|lru|mappedtodisk|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[   60.923172][ T5055] page_type: 0x0()
[   60.926993][ T5055] raw: 00fff000000a0028 ffffea0001b51848 ffffea0001b5c0c8 ffff888026683771
[   60.935560][ T5055] raw: 000000055c935066 0000000000000000 0000000100000000 ffff888016262000
[   60.944210][ T5055] page dumped because: kasan: bad access detected
[   60.950695][ T5055] page_owner tracks the page as allocated
[   60.956401][ T5055] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 4511, tgid 4511 (udevd), ts 60347023431, free_ts 17796882344
[   60.973713][ T5055]  post_alloc_hook+0x1e6/0x210
[   60.978506][ T5055]  get_page_from_freelist+0x33ea/0x3570
[   60.984285][ T5055]  __alloc_pages+0x255/0x680
[   60.989111][ T5055]  alloc_pages_mpol+0x3de/0x640
[   60.994239][ T5055]  vma_alloc_folio+0xf3/0x3f0
[   60.999804][ T5055]  do_wp_page+0x125e/0x4d40
[   61.004751][ T5055]  handle_mm_fault+0x1b1c/0x6680
[   61.009703][ T5055]  exc_page_fault+0x456/0x870
[   61.014376][ T5055]  asm_exc_page_fault+0x26/0x30
[   61.019337][ T5055] page last free stack trace:
[   61.024619][ T5055]  free_unref_page_prepare+0x931/0xa60
[   61.030182][ T5055]  free_unref_page+0x37/0x3f0
[   61.035026][ T5055]  free_contig_range+0x9e/0x160
[   61.039864][ T5055]  destroy_args+0x8a/0x890
[   61.044288][ T5055]  debug_vm_pgtable+0x4ba/0x540
[   61.049132][ T5055]  do_one_initcall+0x234/0x810
[   61.053913][ T5055]  do_initcall_level+0x157/0x210
[   61.059026][ T5055]  do_initcalls+0x3f/0x80
[   61.063400][ T5055]  kernel_init_freeable+0x429/0x5c0
[   61.068589][ T5055]  kernel_init+0x1d/0x2a0
[   61.072922][ T5055]  ret_from_fork+0x48/0x80
[   61.077324][ T5055]  ret_from_fork_asm+0x11/0x20
[   61.082076][ T5055] 
[   61.084407][ T5055] Memory state around the buggy address:
[   61.090219][ T5055]  ffff88806d701f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   61.098373][ T5055]  ffff88806d701f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   61.106518][ T5055] >ffff88806d702000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   61.114576][ T5055]                    ^
[   61.118829][ T5055]  ffff88806d702080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   61.127164][ T5055]  ffff88806d702100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   61.135344][ T5055] ==================================================================
[   61.145075][ T5055] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   61.152309][ T5055] CPU: 0 PID: 5055 Comm: syz-executor105 Not tainted 6.7.0-rc2-syzkaller #0
[   61.161013][ T5055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   61.171059][ T5055] Call Trace:
[   61.174415][ T5055]  <TASK>
[   61.177418][ T5055]  dump_stack_lvl+0x1e7/0x2d0
[   61.182101][ T5055]  ? nf_tcp_handle_invalid+0x650/0x650
[   61.187649][ T5055]  ? panic+0x850/0x850
[   61.191943][ T5055]  ? vscnprintf+0x5d/0x80
[   61.196373][ T5055]  panic+0x349/0x850
[   61.200262][ T5055]  ? check_panic_on_warn+0x21/0xa0
[   61.205365][ T5055]  ? __memcpy_flushcache+0x2b0/0x2b0
[   61.210649][ T5055]  ? _raw_spin_unlock_irqrestore+0x12c/0x140
[   61.216616][ T5055]  ? _raw_spin_unlock+0x40/0x40
[   61.221452][ T5055]  ? print_report+0x4fb/0x540
[   61.226307][ T5055]  check_panic_on_warn+0x82/0xa0
[   61.231355][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   61.236724][ T5055]  end_report+0x6e/0x140
[   61.240956][ T5055]  kasan_report+0x153/0x170
[   61.245531][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   61.250898][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   61.256268][ T5055]  kasan_check_range+0x27e/0x290
[   61.261197][ T5055]  ? leaf_paste_in_buffer+0x1bc/0xab0
[   61.266573][ T5055]  __asan_memmove+0x29/0x70
[   61.271073][ T5055]  leaf_paste_in_buffer+0x1bc/0xab0
[   61.276270][ T5055]  balance_leaf+0x6680/0x12510
[   61.281038][ T5055]  ? print_irqtrace_events+0x220/0x220
[   61.286518][ T5055]  ? do_balance+0x8f0/0x8f0
[   61.291031][ T5055]  ? write_boundary_block+0xb0/0xb0
[   61.296238][ T5055]  ? do_raw_spin_lock+0x14e/0x370
[   61.301379][ T5055]  ? do_raw_spin_unlock+0x13b/0x8b0
[   61.306583][ T5055]  ? bdev_getblk+0x61c/0x6d0
[   61.311169][ T5055]  ? get_empty_nodes+0x928/0xd90
[   61.316095][ T5055]  ? direntry_part_size+0xb4/0x1a0
[   61.321721][ T5055]  ? get_neighbors+0x1010/0x1010
[   61.326654][ T5055]  ? __wake_up+0x10/0x10
[   61.330887][ T5055]  ? is_leaf_removable+0x8c0/0x8c0
[   61.336089][ T5055]  ? get_neighbors+0x631/0x1010
[   61.341625][ T5055]  ? reiserfs_prepare_for_journal+0x26d/0x280
[   61.347683][ T5055]  ? fix_nodes+0x7b03/0x8ce0
[   61.352282][ T5055]  do_balance+0x30d/0x8f0
[   61.356715][ T5055]  ? get_right_neighbor_position+0x210/0x210
[   61.362962][ T5055]  ? reiserfs_paste_into_item+0x3f3/0x880
[   61.368672][ T5055]  reiserfs_paste_into_item+0x734/0x880
[   61.374224][ T5055]  ? reiserfs_cut_from_item+0x2580/0x2580
[   61.380075][ T5055]  ? reiserfs_get_block+0x19aa/0x5130
[   61.385509][ T5055]  ? rcu_is_watching+0x15/0xb0
[   61.390563][ T5055]  ? reiserfs_get_block+0x19aa/0x5130
[   61.396150][ T5055]  ? trace_kmalloc+0x1f/0xa0
[   61.400930][ T5055]  ? __kmalloc+0xd0/0x1a0
[   61.405350][ T5055]  reiserfs_get_block+0x2250/0x5130
[   61.411007][ T5055]  ? make_le_item_head+0x570/0x570
[   61.416115][ T5055]  ? register_lock_class+0x102/0x970
[   61.421696][ T5055]  ? is_dynamic_key+0x260/0x260
[   61.426554][ T5055]  ? mark_lock+0x9a/0x350
[   61.430895][ T5055]  ? __lock_acquire+0x1345/0x1fd0
[   61.435921][ T5055]  ? create_empty_buffers+0x53e/0x740
[   61.441302][ T5055]  ? do_raw_spin_unlock+0x13b/0x8b0
[   61.446685][ T5055]  ? create_empty_buffers+0x53e/0x740
[   61.452151][ T5055]  __block_write_begin_int+0x54d/0x1ad0
[   61.457785][ T5055]  ? make_le_item_head+0x570/0x570
[   61.463370][ T5055]  ? folio_zero_new_buffers+0x540/0x540
[   61.468945][ T5055]  ? __block_write_begin+0x64/0x150
[   61.474493][ T5055]  reiserfs_write_begin+0x24d/0x520
[   61.479800][ T5055]  ? reiserfs_write_lock+0x7a/0xd0
[   61.484916][ T5055]  generic_cont_expand_simple+0x18b/0x2a0
[   61.490650][ T5055]  ? submit_bh+0x20/0x20
[   61.494889][ T5055]  ? smk_access+0x4ab/0x4e0
[   61.499398][ T5055]  reiserfs_setattr+0x57d/0x1140
[   61.504383][ T5055]  ? reiserfs_commit_write+0x5b0/0x5b0
[   61.510061][ T5055]  ? current_time+0x1e0/0x2b0
[   61.514746][ T5055]  ? inode_set_ctime_current+0x80/0x80
[   61.520222][ T5055]  ? evm_inode_setattr+0x100/0x740
[   61.525363][ T5055]  ? bpf_lsm_inode_setattr+0x9/0x10
[   61.530673][ T5055]  ? security_inode_setattr+0xd7/0x130
[   61.536216][ T5055]  ? reiserfs_commit_write+0x5b0/0x5b0
[   61.541713][ T5055]  notify_change+0xb99/0xe60
[   61.546322][ T5055]  do_truncate+0x220/0x300
[   61.550741][ T5055]  ? put_page_bootmem+0x2e0/0x2e0
[   61.555770][ T5055]  do_sys_ftruncate+0x2f3/0x390
[   61.560713][ T5055]  do_syscall_64+0x45/0x110
[   61.565208][ T5055]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   61.571184][ T5055] RIP: 0033:0x7ff2368c6419
[   61.575676][ T5055] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 1f 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   61.595705][ T5055] RSP: 002b:00007ff236879168 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[   61.604231][ T5055] RAX: ffffffffffffffda RBX: 00007ff2369496e8 RCX: 00007ff2368c6419
[   61.612200][ T5055] RDX: 00007ff2368c6419 RSI: 0000000002007fff RDI: 0000000000000005
[   61.620252][ T5055] RBP: 00007ff2369496e0 R08: 00007ff2368796c0 R09: 0000000000000000
[   61.628217][ T5055] R10: 00007ff2368796c0 R11: 0000000000000246 R12: 00007ff2369496ec
[   61.636181][ T5055] R13: 0000000000000000 R14: 00007ffe3124e730 R15: 00007ffe3124e818
[   61.644237][ T5055]  </TASK>
[   61.647339][ T5055] Kernel Offset: disabled
[   61.651650][ T5055] Rebooting in 86400 seconds..