Warning: Permanently added '10.128.0.237' (ED25519) to the list of known hosts.
executing program
[   45.002618][ T3487] loop0: detected capacity change from 0 to 8192
[   45.012933][ T3487] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   45.022522][ T3487] REISERFS (device loop0): using ordered data mode
[   45.029006][ T3487] reiserfs: using flush barriers
[   45.035218][ T3487] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   45.051980][ T3487] REISERFS (device loop0): checking transaction log (loop0)
[   45.091391][ T3487] REISERFS (device loop0): Using r5 hash to sort names
[   45.098474][ T3487] REISERFS (device loop0): using 3.5.x disk format
[   45.105823][ T3487] ==================================================================
[   45.113933][ T3487] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x95f/0x13a0
[   45.121475][ T3487] Read of size 18446744073709551600 at addr ffff8880704bff94 by task syz-executor417/3487
[   45.131331][ T3487] 
[   45.133635][ T3487] CPU: 1 PID: 3487 Comm: syz-executor417 Not tainted 5.15.126-syzkaller #0
[   45.142193][ T3487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   45.152219][ T3487] Call Trace:
[   45.155473][ T3487]  <TASK>
[   45.158378][ T3487]  dump_stack_lvl+0x1e3/0x2cb
[   45.163036][ T3487]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   45.168647][ T3487]  ? _printk+0xd1/0x111
[   45.172792][ T3487]  ? __wake_up_klogd+0xcc/0x100
[   45.177644][ T3487]  ? panic+0x84d/0x84d
[   45.181705][ T3487]  ? _raw_spin_lock_irqsave+0xdd/0x120
[   45.187152][ T3487]  print_address_description+0x63/0x3b0
[   45.192686][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   45.198054][ T3487]  kasan_report+0x16b/0x1c0
[   45.202568][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   45.207844][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   45.213114][ T3487]  kasan_check_range+0x27e/0x290
[   45.218037][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   45.223306][ T3487]  memmove+0x25/0x60
[   45.227178][ T3487]  leaf_paste_entries+0x95f/0x13a0
[   45.232273][ T3487]  balance_leaf+0xbd1e/0x12510
[   45.237019][ T3487]  ? print_irqtrace_events+0x210/0x210
[   45.242458][ T3487]  ? do_raw_spin_unlock+0x137/0x8b0
[   45.247633][ T3487]  ? lockdep_hardirqs_on+0x94/0x130
[   45.252808][ T3487]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   45.258674][ T3487]  ? _raw_spin_unlock+0x40/0x40
[   45.263498][ T3487]  ? stack_trace_save+0x113/0x1c0
[   45.268499][ T3487]  ? do_balance+0x8f0/0x8f0
[   45.272978][ T3487]  ? __lock_acquire+0x1295/0x1ff0
[   45.277981][ T3487]  ? stack_depot_save+0x3db/0x440
[   45.283504][ T3487]  ? ____kasan_kmalloc+0xd1/0xf0
[   45.288418][ T3487]  ? ____kasan_kmalloc+0xba/0xf0
[   45.293353][ T3487]  ? __kmalloc+0x168/0x300
[   45.297836][ T3487]  ? fix_nodes+0x69aa/0x8c70
[   45.302404][ T3487]  ? reiserfs_paste_into_item+0x65d/0x880
[   45.308102][ T3487]  ? reiserfs_add_entry+0x9b8/0xd70
[   45.313274][ T3487]  ? reiserfs_mkdir+0x6bc/0x8f0
[   45.318143][ T3487]  ? reiserfs_xattr_init+0x348/0x730
[   45.323403][ T3487]  ? reiserfs_fill_super+0x226a/0x2690
[   45.328840][ T3487]  ? mount_bdev+0x2c9/0x3f0
[   45.333318][ T3487]  ? legacy_get_tree+0xeb/0x180
[   45.338148][ T3487]  ? vfs_get_tree+0x88/0x270
[   45.342732][ T3487]  ? do_new_mount+0x28b/0xae0
[   45.347383][ T3487]  ? __se_sys_mount+0x2d5/0x3c0
[   45.352207][ T3487]  ? do_syscall_64+0x3d/0xb0
[   45.356769][ T3487]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.362821][ T3487]  ? get_parents+0x513/0xfa0
[   45.367387][ T3487]  ? __wake_up_bit+0x190/0x190
[   45.372142][ T3487]  ? set_parameters+0x8d0/0x8d0
[   45.377161][ T3487]  ? get_neighbors+0x631/0x1010
[   45.382094][ T3487]  ? reiserfs_prepare_for_journal+0x26b/0x280
[   45.388144][ T3487]  ? fix_nodes+0x7abc/0x8c70
[   45.392719][ T3487]  ? __might_sleep+0xc0/0xc0
[   45.397307][ T3487]  do_balance+0x309/0x8f0
[   45.401621][ T3487]  ? get_right_neighbor_position+0x210/0x210
[   45.407580][ T3487]  ? reiserfs_paste_into_item+0x3ef/0x880
[   45.413284][ T3487]  reiserfs_paste_into_item+0x73b/0x880
[   45.418838][ T3487]  ? reiserfs_cut_from_item+0x2560/0x2560
[   45.424589][ T3487]  ? reiserfs_get_parent+0x2c0/0x2c0
[   45.429863][ T3487]  ? inode_get_bytes+0x72/0xa0
[   45.434611][ T3487]  ? _find_first_zero_bit+0x60/0xf0
[   45.439942][ T3487]  reiserfs_add_entry+0x9b8/0xd70
[   45.444970][ T3487]  ? drop_new_inode+0x60/0x60
[   45.449663][ T3487]  ? do_journal_begin_r+0xdad/0x1000
[   45.454948][ T3487]  ? journal_begin+0x1ef/0x350
[   45.459696][ T3487]  reiserfs_mkdir+0x6bc/0x8f0
[   45.464358][ T3487]  ? __might_sleep+0xc0/0xc0
[   45.468939][ T3487]  ? reiserfs_symlink+0x720/0x720
[   45.473956][ T3487]  ? down_write+0x10e/0x170
[   45.478445][ T3487]  ? __up_read+0x690/0x690
[   45.482841][ T3487]  reiserfs_xattr_init+0x348/0x730
[   45.487931][ T3487]  reiserfs_fill_super+0x226a/0x2690
[   45.493197][ T3487]  ? reiserfs_kill_sb+0x150/0x150
[   45.498197][ T3487]  ? snprintf+0xd6/0x120
[   45.502424][ T3487]  mount_bdev+0x2c9/0x3f0
[   45.506726][ T3487]  ? reiserfs_kill_sb+0x150/0x150
[   45.511723][ T3487]  legacy_get_tree+0xeb/0x180
[   45.516372][ T3487]  ? remove_save_link+0x540/0x540
[   45.521370][ T3487]  vfs_get_tree+0x88/0x270
[   45.525947][ T3487]  do_new_mount+0x28b/0xae0
[   45.530632][ T3487]  ? do_move_mount_old+0x160/0x160
[   45.535932][ T3487]  ? user_path_at_empty+0x12b/0x180
[   45.541126][ T3487]  __se_sys_mount+0x2d5/0x3c0
[   45.545804][ T3487]  ? __x64_sys_mount+0xc0/0xc0
[   45.550646][ T3487]  ? syscall_enter_from_user_mode+0x2e/0x230
[   45.556605][ T3487]  ? lockdep_hardirqs_on+0x94/0x130
[   45.561785][ T3487]  ? __x64_sys_mount+0x1c/0xc0
[   45.566532][ T3487]  do_syscall_64+0x3d/0xb0
[   45.570927][ T3487]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.576796][ T3487] RIP: 0033:0x7fc7b88428ba
[   45.581196][ T3487] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   45.600793][ T3487] RSP: 002b:00007ffd5b6f2098 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   45.609195][ T3487] RAX: ffffffffffffffda RBX: 00007ffd5b6f20b0 RCX: 00007fc7b88428ba
[   45.617142][ T3487] RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007ffd5b6f20b0
[   45.625529][ T3487] RBP: 0000000000000004 R08: 00007ffd5b6f20f0 R09: 00000000000010fb
[   45.633482][ T3487] R10: 0000000000000080 R11: 0000000000000286 R12: 0000000000000080
[   45.641433][ T3487] R13: 00007ffd5b6f20f0 R14: 0000000000000003 R15: 0000000000400000
[   45.649424][ T3487]  </TASK>
[   45.652431][ T3487] 
[   45.654781][ T3487] The buggy address belongs to the page:
[   45.660388][ T3487] page:ffffea0001c12fc0 refcount:3 mapcount:0 mapping:ffff888018384f30 index:0x213 pfn:0x704bf
[   45.670693][ T3487] memcg:ffff888011e34000
[   45.674927][ T3487] aops:def_blk_aops ino:700000
[   45.679682][ T3487] flags: 0xfff00000002022(referenced|active|private|node=0|zone=1|lastcpupid=0x7ff)
[   45.689027][ T3487] raw: 00fff00000002022 0000000000000000 dead000000000122 ffff888018384f30
[   45.697676][ T3487] raw: 0000000000000213 ffff888073695828 00000003ffffffff ffff888011e34000
[   45.706229][ T3487] page dumped because: kasan: bad access detected
[   45.712621][ T3487] page_owner tracks the page as allocated
[   45.718310][ T3487] page last allocated via order 0, migratetype Movable, gfp_mask 0x108c48(GFP_NOFS|__GFP_NOFAIL|__GFP_HARDWALL|__GFP_MOVABLE), pid 3487, ts 45091036662, free_ts 11628201049
[   45.735384][ T3487]  get_page_from_freelist+0x322a/0x33c0
[   45.740916][ T3487]  __alloc_pages+0x272/0x700
[   45.745483][ T3487]  __page_cache_alloc+0xd4/0x4a0
[   45.750393][ T3487]  pagecache_get_page+0xa91/0x1010
[   45.755477][ T3487]  __getblk_gfp+0x22a/0xaf0
[   45.759959][ T3487]  search_by_key+0x46d/0x4730
[   45.764619][ T3487]  reiserfs_read_locked_inode+0x23c/0x2950
[   45.770401][ T3487]  reiserfs_fill_super+0x11bf/0x2690
[   45.775667][ T3487]  mount_bdev+0x2c9/0x3f0
[   45.779992][ T3487]  legacy_get_tree+0xeb/0x180
[   45.784647][ T3487]  vfs_get_tree+0x88/0x270
[   45.789129][ T3487]  do_new_mount+0x28b/0xae0
[   45.793606][ T3487]  __se_sys_mount+0x2d5/0x3c0
[   45.798291][ T3487]  do_syscall_64+0x3d/0xb0
[   45.802697][ T3487]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   45.808574][ T3487] page last free stack trace:
[   45.813217][ T3487]  free_unref_page_prepare+0xc34/0xcf0
[   45.818652][ T3487]  free_unref_page+0x95/0x2d0
[   45.823299][ T3487]  free_contig_range+0x95/0xf0
[   45.828039][ T3487]  destroy_args+0xfe/0x97f
[   45.832428][ T3487]  debug_vm_pgtable+0x40d/0x462
[   45.837254][ T3487]  do_one_initcall+0x22b/0x7a0
[   45.842015][ T3487]  do_initcall_level+0x157/0x207
[   45.847203][ T3487]  do_initcalls+0x49/0x86
[   45.851519][ T3487]  kernel_init_freeable+0x43c/0x5c5
[   45.856818][ T3487]  kernel_init+0x19/0x290
[   45.861311][ T3487]  ret_from_fork+0x1f/0x30
[   45.865799][ T3487] 
[   45.868144][ T3487] Memory state around the buggy address:
[   45.873751][ T3487]  ffff8880704bfe80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   45.881812][ T3487]  ffff8880704bff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   45.889865][ T3487] >ffff8880704bff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   45.897906][ T3487]                          ^
[   45.902477][ T3487]  ffff8880704c0000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   45.910518][ T3487]  ffff8880704c0080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[   45.918691][ T3487] ==================================================================
[   45.926749][ T3487] Disabling lock debugging due to kernel taint
[   45.933220][ T3487] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   45.940407][ T3487] CPU: 1 PID: 3487 Comm: syz-executor417 Tainted: G    B             5.15.126-syzkaller #0
[   45.950377][ T3487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   45.960411][ T3487] Call Trace:
[   45.963667][ T3487]  <TASK>
[   45.966611][ T3487]  dump_stack_lvl+0x1e3/0x2cb
[   45.971266][ T3487]  ? io_uring_drop_tctx_refs+0x19d/0x19d
[   45.976870][ T3487]  ? panic+0x84d/0x84d
[   45.980909][ T3487]  ? rcu_is_watching+0x11/0xa0
[   45.985643][ T3487]  ? preempt_schedule_common+0xa6/0xd0
[   45.991076][ T3487]  panic+0x318/0x84d
[   45.994942][ T3487]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[   46.001067][ T3487]  ? check_panic_on_warn+0x1d/0xa0
[   46.006151][ T3487]  ? fb_is_primary_device+0xcc/0xcc
[   46.011320][ T3487]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   46.017269][ T3487]  ? _raw_spin_unlock+0x40/0x40
[   46.022091][ T3487]  check_panic_on_warn+0x7e/0xa0
[   46.027014][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   46.032285][ T3487]  end_report+0x6d/0xf0
[   46.036417][ T3487]  kasan_report+0x18e/0x1c0
[   46.040892][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   46.046150][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   46.051408][ T3487]  kasan_check_range+0x27e/0x290
[   46.056317][ T3487]  ? leaf_paste_entries+0x95f/0x13a0
[   46.061577][ T3487]  memmove+0x25/0x60
[   46.065532][ T3487]  leaf_paste_entries+0x95f/0x13a0
[   46.070620][ T3487]  balance_leaf+0xbd1e/0x12510
[   46.075365][ T3487]  ? print_irqtrace_events+0x210/0x210
[   46.080851][ T3487]  ? do_raw_spin_unlock+0x137/0x8b0
[   46.086024][ T3487]  ? lockdep_hardirqs_on+0x94/0x130
[   46.091193][ T3487]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[   46.097055][ T3487]  ? _raw_spin_unlock+0x40/0x40
[   46.101882][ T3487]  ? stack_trace_save+0x113/0x1c0
[   46.106893][ T3487]  ? do_balance+0x8f0/0x8f0
[   46.111376][ T3487]  ? __lock_acquire+0x1295/0x1ff0
[   46.116381][ T3487]  ? stack_depot_save+0x3db/0x440
[   46.121383][ T3487]  ? ____kasan_kmalloc+0xd1/0xf0
[   46.126296][ T3487]  ? ____kasan_kmalloc+0xba/0xf0
[   46.131203][ T3487]  ? __kmalloc+0x168/0x300
[   46.135589][ T3487]  ? fix_nodes+0x69aa/0x8c70
[   46.140150][ T3487]  ? reiserfs_paste_into_item+0x65d/0x880
[   46.145849][ T3487]  ? reiserfs_add_entry+0x9b8/0xd70
[   46.151030][ T3487]  ? reiserfs_mkdir+0x6bc/0x8f0
[   46.155855][ T3487]  ? reiserfs_xattr_init+0x348/0x730
[   46.161117][ T3487]  ? reiserfs_fill_super+0x226a/0x2690
[   46.166554][ T3487]  ? mount_bdev+0x2c9/0x3f0
[   46.171033][ T3487]  ? legacy_get_tree+0xeb/0x180
[   46.175857][ T3487]  ? vfs_get_tree+0x88/0x270
[   46.180417][ T3487]  ? do_new_mount+0x28b/0xae0
[   46.185064][ T3487]  ? __se_sys_mount+0x2d5/0x3c0
[   46.189898][ T3487]  ? do_syscall_64+0x3d/0xb0
[   46.194462][ T3487]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.200512][ T3487]  ? get_parents+0x513/0xfa0
[   46.205075][ T3487]  ? __wake_up_bit+0x190/0x190
[   46.209819][ T3487]  ? set_parameters+0x8d0/0x8d0
[   46.214735][ T3487]  ? get_neighbors+0x631/0x1010
[   46.219564][ T3487]  ? reiserfs_prepare_for_journal+0x26b/0x280
[   46.225614][ T3487]  ? fix_nodes+0x7abc/0x8c70
[   46.230175][ T3487]  ? __might_sleep+0xc0/0xc0
[   46.234744][ T3487]  do_balance+0x309/0x8f0
[   46.239049][ T3487]  ? get_right_neighbor_position+0x210/0x210
[   46.245003][ T3487]  ? reiserfs_paste_into_item+0x3ef/0x880
[   46.250694][ T3487]  reiserfs_paste_into_item+0x73b/0x880
[   46.256213][ T3487]  ? reiserfs_cut_from_item+0x2560/0x2560
[   46.261917][ T3487]  ? reiserfs_get_parent+0x2c0/0x2c0
[   46.267217][ T3487]  ? inode_get_bytes+0x72/0xa0
[   46.271951][ T3487]  ? _find_first_zero_bit+0x60/0xf0
[   46.277120][ T3487]  reiserfs_add_entry+0x9b8/0xd70
[   46.282116][ T3487]  ? drop_new_inode+0x60/0x60
[   46.286769][ T3487]  ? do_journal_begin_r+0xdad/0x1000
[   46.292052][ T3487]  ? journal_begin+0x1ef/0x350
[   46.296785][ T3487]  reiserfs_mkdir+0x6bc/0x8f0
[   46.301437][ T3487]  ? __might_sleep+0xc0/0xc0
[   46.305996][ T3487]  ? reiserfs_symlink+0x720/0x720
[   46.311014][ T3487]  ? down_write+0x10e/0x170
[   46.315489][ T3487]  ? __up_read+0x690/0x690
[   46.319877][ T3487]  reiserfs_xattr_init+0x348/0x730
[   46.324960][ T3487]  reiserfs_fill_super+0x226a/0x2690
[   46.330220][ T3487]  ? reiserfs_kill_sb+0x150/0x150
[   46.335216][ T3487]  ? snprintf+0xd6/0x120
[   46.339462][ T3487]  mount_bdev+0x2c9/0x3f0
[   46.343776][ T3487]  ? reiserfs_kill_sb+0x150/0x150
[   46.348773][ T3487]  legacy_get_tree+0xeb/0x180
[   46.353423][ T3487]  ? remove_save_link+0x540/0x540
[   46.358439][ T3487]  vfs_get_tree+0x88/0x270
[   46.362837][ T3487]  do_new_mount+0x28b/0xae0
[   46.367313][ T3487]  ? do_move_mount_old+0x160/0x160
[   46.372396][ T3487]  ? user_path_at_empty+0x12b/0x180
[   46.377566][ T3487]  __se_sys_mount+0x2d5/0x3c0
[   46.382216][ T3487]  ? __x64_sys_mount+0xc0/0xc0
[   46.386951][ T3487]  ? syscall_enter_from_user_mode+0x2e/0x230
[   46.392900][ T3487]  ? lockdep_hardirqs_on+0x94/0x130
[   46.398071][ T3487]  ? __x64_sys_mount+0x1c/0xc0
[   46.402809][ T3487]  do_syscall_64+0x3d/0xb0
[   46.407205][ T3487]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   46.413070][ T3487] RIP: 0033:0x7fc7b88428ba
[   46.417459][ T3487] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   46.437036][ T3487] RSP: 002b:00007ffd5b6f2098 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   46.445462][ T3487] RAX: ffffffffffffffda RBX: 00007ffd5b6f20b0 RCX: 00007fc7b88428ba
[   46.453407][ T3487] RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007ffd5b6f20b0
[   46.461350][ T3487] RBP: 0000000000000004 R08: 00007ffd5b6f20f0 R09: 00000000000010fb
[   46.469291][ T3487] R10: 0000000000000080 R11: 0000000000000286 R12: 0000000000000080
[   46.477234][ T3487] R13: 00007ffd5b6f20f0 R14: 0000000000000003 R15: 0000000000400000
[   46.485180][ T3487]  </TASK>
[   46.488344][ T3487] Kernel Offset: disabled
[   46.492657][ T3487] Rebooting in 86400 seconds..