Warning: Permanently added '10.128.0.210' (ED25519) to the list of known hosts. executing program [ 29.708374][ T6100] loop0: detected capacity change from 0 to 8192 [ 29.713523][ T6100] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 29.716465][ T6100] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 29.718608][ T6100] REISERFS (device loop0): using ordered data mode [ 29.720097][ T6100] reiserfs: using flush barriers [ 29.721654][ T6100] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 29.725928][ T6100] REISERFS (device loop0): checking transaction log (loop0) [ 29.729615][ T6100] REISERFS (device loop0): Using r5 hash to sort names [ 29.731252][ T6100] REISERFS (device loop0): using 3.5.x disk format [ 29.733219][ T6100] ================================================================== [ 29.734967][ T6100] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x698/0xb10 [ 29.736636][ T6100] Read of size 18446744073709551584 at addr ffff000186d38fa4 by task syz-executor287/6100 [ 29.738898][ T6100] [ 29.739406][ T6100] CPU: 0 PID: 6100 Comm: syz-executor287 Not tainted 6.7.0-rc5-syzkaller-gd5b235ec8eab #0 [ 29.741481][ T6100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 29.743704][ T6100] Call trace: [ 29.744477][ T6100] dump_backtrace+0x1b8/0x1e4 [ 29.745537][ T6100] show_stack+0x2c/0x3c [ 29.746530][ T6100] dump_stack_lvl+0xd0/0x124 [ 29.747587][ T6100] print_report+0x174/0x514 [ 29.748545][ T6100] kasan_report+0xd8/0x138 [ 29.749496][ T6100] kasan_check_range+0x254/0x294 [ 29.750599][ T6100] __asan_memmove+0x3c/0x84 [ 29.751630][ T6100] leaf_paste_entries+0x698/0xb10 [ 29.752663][ T6100] balance_leaf+0xa0d4/0xe860 [ 29.753803][ T6100] do_balance+0x27c/0x788 [ 29.754798][ T6100] reiserfs_paste_into_item+0x630/0x744 [ 29.755985][ T6100] reiserfs_add_entry+0x8ec/0xca8 [ 29.757131][ T6100] reiserfs_mkdir+0x588/0x77c [ 29.758204][ T6100] reiserfs_xattr_init+0x2b4/0x638 [ 29.759355][ T6100] reiserfs_fill_super+0x1bfc/0x2028 [ 29.760545][ T6100] mount_bdev+0x1e8/0x2b4 [ 29.761499][ T6100] get_super_block+0x44/0x58 [ 29.762439][ T6100] legacy_get_tree+0xd4/0x16c [ 29.763531][ T6100] vfs_get_tree+0x90/0x288 [ 29.764559][ T6100] do_new_mount+0x25c/0x8c8 [ 29.765572][ T6100] path_mount+0x590/0xe04 [ 29.766514][ T6100] __arm64_sys_mount+0x45c/0x594 [ 29.767543][ T6100] invoke_syscall+0x98/0x2b8 [ 29.768548][ T6100] el0_svc_common+0x130/0x23c [ 29.769698][ T6100] do_el0_svc+0x48/0x58 [ 29.770655][ T6100] el0_svc+0x54/0x158 [ 29.771542][ T6100] el0t_64_sync_handler+0x84/0xfc [ 29.772699][ T6100] el0t_64_sync+0x190/0x194 [ 29.773710][ T6100] [ 29.774240][ T6100] The buggy address belongs to the physical page: [ 29.775621][ T6100] page:0000000022ee5f11 refcount:5 mapcount:0 mapping:00000000178f8040 index:0x213 pfn:0x1c6d38 [ 29.777717][ T6100] memcg:ffff0000c1902000 [ 29.778663][ T6100] aops:def_blk_aops ino:700000 [ 29.779729][ T6100] flags: 0x5ffc00000008024(referenced|lru|private|node=0|zone=2|lastcpupid=0x7ff) [ 29.781847][ T6100] page_type: 0xffffffff() [ 29.782755][ T6100] raw: 05ffc00000008024 fffffc000372cbc8 ffff0000c0035020 ffff0000c149ab10 [ 29.784709][ T6100] raw: 0000000000000213 ffff0000dc346cb0 00000005ffffffff ffff0000c1902000 [ 29.786600][ T6100] page dumped because: kasan: bad access detected [ 29.788129][ T6100] [ 29.788648][ T6100] Memory state around the buggy address: [ 29.789982][ T6100] ffff000186d38e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 29.791825][ T6100] ffff000186d38f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 29.793678][ T6100] >ffff000186d38f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 29.795481][ T6100] ^ [ 29.796570][ T6100] ffff000186d39000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 29.798474][ T6100] ffff000186d39080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 29.800349][ T6100] ================================================================== [ 29.802092][ T6100] Disabling lock debugging due to kernel taint [ 29.803513][ T6100] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376 [ 29.807928][ T6100] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 29.810283][ T6100] REISERFS (device loop0): Remounting filesystem read-only [ 29.812012][ T6100] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data [ 29.815052][ T6100] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 29.818211][ T6100] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[1768256046 1718773107 0x72705f73 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376 [ 29.822476][ T6100] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 29.824720][ T6100] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error