Warning: Permanently added '10.128.0.156' (ED25519) to the list of known hosts.
executing program
[ 53.136804][ T3486] loop0: detected capacity change from 0 to 8192
[ 53.147776][ T3486] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 53.157332][ T3486] REISERFS (device loop0): using ordered data mode
[ 53.163973][ T3486] reiserfs: using flush barriers
[ 53.170004][ T3486] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 53.186796][ T3486] REISERFS (device loop0): checking transaction log (loop0)
[ 53.233637][ T3486] REISERFS (device loop0): Using r5 hash to sort names
[ 53.240696][ T3486] REISERFS (device loop0): using 3.5.x disk format
[ 53.248223][ T3486] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[ 53.269247][ T3486] ==================================================================
[ 53.277393][ T3486] BUG: KASAN: out-of-bounds in leaf_insert_into_buf+0x327/0x9a0
[ 53.285061][ T3486] Read of size 372 at addr ffff88804a07ce8c by task syz-executor406/3486
[ 53.293487][ T3486]
[ 53.295822][ T3486] CPU: 1 PID: 3486 Comm: syz-executor406 Not tainted 5.15.127-syzkaller #0
[ 53.304412][ T3486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 53.314465][ T3486] Call Trace:
[ 53.317728][ T3486]
[ 53.320642][ T3486] dump_stack_lvl+0x1e3/0x2cb
[ 53.325313][ T3486] ? io_uring_drop_tctx_refs+0x19d/0x19d
[ 53.330943][ T3486] ? _printk+0xd1/0x111
[ 53.335087][ T3486] ? __wake_up_klogd+0xcc/0x100
[ 53.339928][ T3486] ? panic+0x84d/0x84d
[ 53.344007][ T3486] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 53.349460][ T3486] print_address_description+0x63/0x3b0
[ 53.355003][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 53.360363][ T3486] kasan_report+0x16b/0x1c0
[ 53.364859][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 53.370221][ T3486] kasan_check_range+0x27e/0x290
[ 53.375145][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 53.380520][ T3486] memmove+0x25/0x60
[ 53.384403][ T3486] leaf_insert_into_buf+0x327/0x9a0
[ 53.389617][ T3486] leaf_move_items+0x1bc1/0x28a0
[ 53.394557][ T3486] ? reiserfs_convert_objectid_map_v1+0x450/0x450
[ 53.401087][ T3486] ? __lock_acquire+0x1295/0x1ff0
[ 53.406131][ T3486] ? get_FEB+0x261/0x340
[ 53.410381][ T3486] balance_leaf+0x6515/0x12510
[ 53.415191][ T3486] ? do_balance+0x8f0/0x8f0
[ 53.419689][ T3486] ? do_raw_spin_lock+0x14a/0x370
[ 53.424711][ T3486] ? __lock_acquire+0x1ff0/0x1ff0
[ 53.429748][ T3486] ? do_raw_spin_unlock+0x137/0x8b0
[ 53.434940][ T3486] ? unlock_page+0x188/0x200
[ 53.439533][ T3486] ? __getblk_gfp+0x9b0/0xaf0
[ 53.444305][ T3486] ? get_empty_nodes+0xad9/0xd70
[ 53.449251][ T3486] ? direntry_part_size+0xb0/0x1a0
[ 53.454371][ T3486] ? get_neighbors+0x1010/0x1010
[ 53.459307][ T3486] ? __wake_up_bit+0x190/0x190
[ 53.464071][ T3486] ? is_leaf_removable+0x8c0/0x8c0
[ 53.469183][ T3486] ? get_neighbors+0x631/0x1010
[ 53.474037][ T3486] ? reiserfs_prepare_for_journal+0x26b/0x280
[ 53.480100][ T3486] ? fix_nodes+0x7abc/0x8c70
[ 53.484683][ T3486] ? __might_sleep+0xc0/0xc0
[ 53.489282][ T3486] do_balance+0x309/0x8f0
[ 53.493605][ T3486] ? get_right_neighbor_position+0x210/0x210
[ 53.499585][ T3486] ? reiserfs_paste_into_item+0x3ef/0x880
[ 53.505303][ T3486] reiserfs_paste_into_item+0x73b/0x880
[ 53.510856][ T3486] ? reiserfs_cut_from_item+0x2560/0x2560
[ 53.516625][ T3486] ? __kmalloc+0x168/0x300
[ 53.521037][ T3486] reiserfs_get_block+0x226a/0x5390
[ 53.526270][ T3486] ? make_le_item_head+0x5c0/0x5c0
[ 53.531374][ T3486] ? __kasan_slab_alloc+0xa5/0xc0
[ 53.536388][ T3486] ? __kasan_slab_alloc+0x8e/0xc0
[ 53.541401][ T3486] ? slab_post_alloc_hook+0x53/0x380
[ 53.546696][ T3486] ? kmem_cache_alloc+0xf3/0x280
[ 53.551621][ T3486] ? alloc_buffer_head+0x20/0xf0
[ 53.556545][ T3486] ? alloc_page_buffers+0x3a3/0x660
[ 53.561733][ T3486] ? create_empty_buffers+0x3a/0x6d0
[ 53.567008][ T3486] ? create_page_buffers+0x1d4/0x330
[ 53.572292][ T3486] ? __block_write_begin_int+0x24c/0x1650
[ 53.578019][ T3486] ? reiserfs_write_begin+0x346/0x810
[ 53.583378][ T3486] ? generic_cont_expand_simple+0x144/0x230
[ 53.589262][ T3486] ? reiserfs_setattr+0x3ff/0xf90
[ 53.594274][ T3486] ? notify_change+0xd4d/0x1000
[ 53.599110][ T3486] ? do_truncate+0x21c/0x300
[ 53.603690][ T3486] ? do_sys_ftruncate+0x2eb/0x390
[ 53.608705][ T3486] ? do_syscall_64+0x3d/0xb0
[ 53.613284][ T3486] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 53.619343][ T3486] ? mark_lock+0x98/0x340
[ 53.623666][ T3486] ? __lock_acquire+0x1295/0x1ff0
[ 53.628710][ T3486] ? __lock_acquire+0x1ff0/0x1ff0
[ 53.633724][ T3486] ? alloc_buffer_head+0xd3/0xf0
[ 53.638651][ T3486] ? alloc_page_buffers+0x54a/0x660
[ 53.643849][ T3486] ? create_page_buffers+0x24b/0x330
[ 53.649142][ T3486] __block_write_begin_int+0x60b/0x1650
[ 53.654691][ T3486] ? make_le_item_head+0x5c0/0x5c0
[ 53.659794][ T3486] ? page_zero_new_buffers+0x510/0x510
[ 53.665246][ T3486] ? __mutex_lock_common+0x444/0x25a0
[ 53.670608][ T3486] ? fix_tail_page_for_writing+0x97/0x220
[ 53.676319][ T3486] reiserfs_write_begin+0x346/0x810
[ 53.681521][ T3486] ? pagecache_write_begin+0x33/0xa0
[ 53.686800][ T3486] generic_cont_expand_simple+0x144/0x230
[ 53.692512][ T3486] ? submit_bh+0x30/0x30
[ 53.696743][ T3486] ? setattr_prepare+0x1f7/0xe30
[ 53.701669][ T3486] ? mutex_lock_nested+0x17/0x20
[ 53.706599][ T3486] reiserfs_setattr+0x3ff/0xf90
[ 53.711446][ T3486] ? reiserfs_commit_write+0x5a0/0x5a0
[ 53.716892][ T3486] ? ktime_get_coarse_real_ts64+0x107/0x120
[ 53.722780][ T3486] ? current_time+0x1d1/0x2f0
[ 53.727447][ T3486] ? atime_needs_update+0x7b0/0x7b0
[ 53.732646][ T3486] ? evm_inode_setattr+0xf7/0x5b0
[ 53.737659][ T3486] ? bpf_lsm_inode_setattr+0x5/0x10
[ 53.742847][ T3486] ? security_inode_setattr+0xce/0x120
[ 53.748298][ T3486] ? reiserfs_commit_write+0x5a0/0x5a0
[ 53.753754][ T3486] notify_change+0xd4d/0x1000
[ 53.758429][ T3486] do_truncate+0x21c/0x300
[ 53.762837][ T3486] ? put_page_bootmem+0x280/0x280
[ 53.767860][ T3486] ? print_irqtrace_events+0x210/0x210
[ 53.773314][ T3486] ? vtime_user_exit+0x2d1/0x400
[ 53.778248][ T3486] ? bpf_lsm_path_truncate+0x5/0x10
[ 53.783444][ T3486] do_sys_ftruncate+0x2eb/0x390
[ 53.788291][ T3486] do_syscall_64+0x3d/0xb0
[ 53.792701][ T3486] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 53.798583][ T3486] RIP: 0033:0x7efea1f57679
[ 53.803007][ T3486] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 53.822606][ T3486] RSP: 002b:00007fff2e29a408 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[ 53.831018][ T3486] RAX: ffffffffffffffda RBX: 00007fff2e29a5d8 RCX: 00007efea1f57679
[ 53.838987][ T3486] RDX: 00007efea1f57679 RSI: 0000000002007ffb RDI: 0000000000000005
[ 53.846958][ T3486] RBP: 00007efea1fcb610 R08: 00007fff2e29a5d8 R09: 00007fff2e29a5d8
[ 53.855020][ T3486] R10: 00007fff2e29a5d8 R11: 0000000000000246 R12: 0000000000000001
[ 53.862985][ T3486] R13: 00007fff2e29a5c8 R14: 0000000000000001 R15: 0000000000000001
[ 53.870963][ T3486]
[ 53.873974][ T3486]
[ 53.876285][ T3486] The buggy address belongs to the page:
[ 53.881897][ T3486] page:ffffea0001281f00 refcount:1 mapcount:1 mapping:0000000000000000 index:0x7fffffffd pfn:0x4a07c
[ 53.892730][ T3486] memcg:ffff888011e34000
[ 53.896953][ T3486] anon flags: 0xfff00000080014(uptodate|lru|swapbacked|node=0|zone=1|lastcpupid=0x7ff)
[ 53.906576][ T3486] raw: 00fff00000080014 ffffea000129fc08 ffffea0001281ec8 ffff8880196bd001
[ 53.915151][ T3486] raw: 00000007fffffffd 0000000000000000 0000000100000000 ffff888011e34000
[ 53.923715][ T3486] page dumped because: kasan: bad access detected
[ 53.930111][ T3486] page_owner tracks the page as allocated
[ 53.935807][ T3486] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100cca(GFP_HIGHUSER_MOVABLE), pid 2949, ts 53274993701, free_ts 12298732275
[ 53.950375][ T3486] get_page_from_freelist+0x322a/0x33c0
[ 53.955913][ T3486] __alloc_pages+0x272/0x700
[ 53.960489][ T3486] alloc_pages_vma+0x39a/0x800
[ 53.965243][ T3486] wp_page_copy+0x24e/0x2070
[ 53.969824][ T3486] handle_mm_fault+0x2a3d/0x5950
[ 53.974749][ T3486] exc_page_fault+0x271/0x740
[ 53.979424][ T3486] asm_exc_page_fault+0x22/0x30
[ 53.984263][ T3486] page last free stack trace:
[ 53.988919][ T3486] free_unref_page_prepare+0xc34/0xcf0
[ 53.994367][ T3486] free_unref_page+0x95/0x2d0
[ 53.999031][ T3486] free_contig_range+0x95/0xf0
[ 54.003780][ T3486] destroy_args+0xfe/0x97f
[ 54.008207][ T3486] debug_vm_pgtable+0x40d/0x462
[ 54.013046][ T3486] do_one_initcall+0x22b/0x7a0
[ 54.017799][ T3486] do_initcall_level+0x157/0x207
[ 54.022722][ T3486] do_initcalls+0x49/0x86
[ 54.027036][ T3486] kernel_init_freeable+0x43c/0x5c5
[ 54.032218][ T3486] kernel_init+0x19/0x290
[ 54.036534][ T3486] ret_from_fork+0x1f/0x30
[ 54.040941][ T3486]
[ 54.043252][ T3486] Memory state around the buggy address:
[ 54.048862][ T3486] ffff88804a07cd80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 54.056906][ T3486] ffff88804a07ce00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 54.065036][ T3486] >ffff88804a07ce80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 54.073078][ T3486] ^
[ 54.077390][ T3486] ffff88804a07cf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 54.085436][ T3486] ffff88804a07cf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 54.093505][ T3486] ==================================================================
[ 54.101547][ T3486] Disabling lock debugging due to kernel taint
[ 54.108325][ T3486] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 54.115537][ T3486] CPU: 0 PID: 3486 Comm: syz-executor406 Tainted: G B 5.15.127-syzkaller #0
[ 54.125517][ T3486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[ 54.135561][ T3486] Call Trace:
[ 54.138840][ T3486]
[ 54.141778][ T3486] dump_stack_lvl+0x1e3/0x2cb
[ 54.146450][ T3486] ? io_uring_drop_tctx_refs+0x19d/0x19d
[ 54.152071][ T3486] ? panic+0x84d/0x84d
[ 54.156128][ T3486] ? preempt_schedule_common+0xa6/0xd0
[ 54.161575][ T3486] ? preempt_schedule+0xd9/0xe0
[ 54.166413][ T3486] panic+0x318/0x84d
[ 54.170304][ T3486] ? check_panic_on_warn+0x1d/0xa0
[ 54.175408][ T3486] ? fb_is_primary_device+0xcc/0xcc
[ 54.180596][ T3486] ? _raw_spin_unlock_irqrestore+0x128/0x130
[ 54.186568][ T3486] ? _raw_spin_unlock+0x40/0x40
[ 54.191403][ T3486] ? print_memory_metadata+0xe2/0x140
[ 54.196766][ T3486] check_panic_on_warn+0x7e/0xa0
[ 54.201689][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 54.207051][ T3486] end_report+0x6d/0xf0
[ 54.211195][ T3486] kasan_report+0x18e/0x1c0
[ 54.215688][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 54.221051][ T3486] kasan_check_range+0x27e/0x290
[ 54.225973][ T3486] ? leaf_insert_into_buf+0x327/0x9a0
[ 54.231344][ T3486] memmove+0x25/0x60
[ 54.235230][ T3486] leaf_insert_into_buf+0x327/0x9a0
[ 54.240438][ T3486] leaf_move_items+0x1bc1/0x28a0
[ 54.245375][ T3486] ? reiserfs_convert_objectid_map_v1+0x450/0x450
[ 54.251787][ T3486] ? __lock_acquire+0x1295/0x1ff0
[ 54.256812][ T3486] ? get_FEB+0x261/0x340
[ 54.261045][ T3486] balance_leaf+0x6515/0x12510
[ 54.265811][ T3486] ? do_balance+0x8f0/0x8f0
[ 54.270299][ T3486] ? do_raw_spin_lock+0x14a/0x370
[ 54.275309][ T3486] ? __lock_acquire+0x1ff0/0x1ff0
[ 54.280327][ T3486] ? do_raw_spin_unlock+0x137/0x8b0
[ 54.285512][ T3486] ? unlock_page+0x188/0x200
[ 54.290092][ T3486] ? __getblk_gfp+0x9b0/0xaf0
[ 54.294761][ T3486] ? get_empty_nodes+0xad9/0xd70
[ 54.299687][ T3486] ? direntry_part_size+0xb0/0x1a0
[ 54.304789][ T3486] ? get_neighbors+0x1010/0x1010
[ 54.309736][ T3486] ? __wake_up_bit+0x190/0x190
[ 54.314489][ T3486] ? is_leaf_removable+0x8c0/0x8c0
[ 54.319587][ T3486] ? get_neighbors+0x631/0x1010
[ 54.324427][ T3486] ? reiserfs_prepare_for_journal+0x26b/0x280
[ 54.330504][ T3486] ? fix_nodes+0x7abc/0x8c70
[ 54.335090][ T3486] ? __might_sleep+0xc0/0xc0
[ 54.339676][ T3486] do_balance+0x309/0x8f0
[ 54.343992][ T3486] ? get_right_neighbor_position+0x210/0x210
[ 54.349963][ T3486] ? reiserfs_paste_into_item+0x3ef/0x880
[ 54.355674][ T3486] reiserfs_paste_into_item+0x73b/0x880
[ 54.361219][ T3486] ? reiserfs_cut_from_item+0x2560/0x2560
[ 54.366947][ T3486] ? __kmalloc+0x168/0x300
[ 54.371348][ T3486] reiserfs_get_block+0x226a/0x5390
[ 54.376547][ T3486] ? make_le_item_head+0x5c0/0x5c0
[ 54.381650][ T3486] ? __kasan_slab_alloc+0xa5/0xc0
[ 54.386712][ T3486] ? __kasan_slab_alloc+0x8e/0xc0
[ 54.391732][ T3486] ? slab_post_alloc_hook+0x53/0x380
[ 54.397012][ T3486] ? kmem_cache_alloc+0xf3/0x280
[ 54.401946][ T3486] ? alloc_buffer_head+0x20/0xf0
[ 54.406878][ T3486] ? alloc_page_buffers+0x3a3/0x660
[ 54.412073][ T3486] ? create_empty_buffers+0x3a/0x6d0
[ 54.417347][ T3486] ? create_page_buffers+0x1d4/0x330
[ 54.422715][ T3486] ? __block_write_begin_int+0x24c/0x1650
[ 54.428533][ T3486] ? reiserfs_write_begin+0x346/0x810
[ 54.433900][ T3486] ? generic_cont_expand_simple+0x144/0x230
[ 54.439782][ T3486] ? reiserfs_setattr+0x3ff/0xf90
[ 54.444792][ T3486] ? notify_change+0xd4d/0x1000
[ 54.449629][ T3486] ? do_truncate+0x21c/0x300
[ 54.454205][ T3486] ? do_sys_ftruncate+0x2eb/0x390
[ 54.459227][ T3486] ? do_syscall_64+0x3d/0xb0
[ 54.463804][ T3486] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 54.469861][ T3486] ? mark_lock+0x98/0x340
[ 54.474175][ T3486] ? __lock_acquire+0x1295/0x1ff0
[ 54.479203][ T3486] ? __lock_acquire+0x1ff0/0x1ff0
[ 54.484220][ T3486] ? alloc_buffer_head+0xd3/0xf0
[ 54.489145][ T3486] ? alloc_page_buffers+0x54a/0x660
[ 54.494333][ T3486] ? create_page_buffers+0x24b/0x330
[ 54.499604][ T3486] __block_write_begin_int+0x60b/0x1650
[ 54.505142][ T3486] ? make_le_item_head+0x5c0/0x5c0
[ 54.510242][ T3486] ? page_zero_new_buffers+0x510/0x510
[ 54.515690][ T3486] ? __mutex_lock_common+0x444/0x25a0
[ 54.521052][ T3486] ? fix_tail_page_for_writing+0x97/0x220
[ 54.526756][ T3486] reiserfs_write_begin+0x346/0x810
[ 54.531941][ T3486] ? pagecache_write_begin+0x33/0xa0
[ 54.537217][ T3486] generic_cont_expand_simple+0x144/0x230
[ 54.542930][ T3486] ? submit_bh+0x30/0x30
[ 54.547159][ T3486] ? setattr_prepare+0x1f7/0xe30
[ 54.552083][ T3486] ? mutex_lock_nested+0x17/0x20
[ 54.557005][ T3486] reiserfs_setattr+0x3ff/0xf90
[ 54.561844][ T3486] ? reiserfs_commit_write+0x5a0/0x5a0
[ 54.567288][ T3486] ? ktime_get_coarse_real_ts64+0x107/0x120
[ 54.573168][ T3486] ? current_time+0x1d1/0x2f0
[ 54.577833][ T3486] ? atime_needs_update+0x7b0/0x7b0
[ 54.583020][ T3486] ? evm_inode_setattr+0xf7/0x5b0
[ 54.588031][ T3486] ? bpf_lsm_inode_setattr+0x5/0x10
[ 54.593213][ T3486] ? security_inode_setattr+0xce/0x120
[ 54.598662][ T3486] ? reiserfs_commit_write+0x5a0/0x5a0
[ 54.604109][ T3486] notify_change+0xd4d/0x1000
[ 54.608778][ T3486] do_truncate+0x21c/0x300
[ 54.613188][ T3486] ? put_page_bootmem+0x280/0x280
[ 54.618211][ T3486] ? print_irqtrace_events+0x210/0x210
[ 54.623659][ T3486] ? vtime_user_exit+0x2d1/0x400
[ 54.628584][ T3486] ? bpf_lsm_path_truncate+0x5/0x10
[ 54.633772][ T3486] do_sys_ftruncate+0x2eb/0x390
[ 54.638788][ T3486] do_syscall_64+0x3d/0xb0
[ 54.643192][ T3486] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 54.649094][ T3486] RIP: 0033:0x7efea1f57679
[ 54.653494][ T3486] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 54.673187][ T3486] RSP: 002b:00007fff2e29a408 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[ 54.681676][ T3486] RAX: ffffffffffffffda RBX: 00007fff2e29a5d8 RCX: 00007efea1f57679
[ 54.689646][ T3486] RDX: 00007efea1f57679 RSI: 0000000002007ffb RDI: 0000000000000005
[ 54.697613][ T3486] RBP: 00007efea1fcb610 R08: 00007fff2e29a5d8 R09: 00007fff2e29a5d8
[ 54.705578][ T3486] R10: 00007fff2e29a5d8 R11: 0000000000000246 R12: 0000000000000001
[ 54.713540][ T3486] R13: 00007fff2e29a5c8 R14: 0000000000000001 R15: 0000000000000001
[ 54.721508][ T3486]
[ 54.724593][ T3486] Kernel Offset: disabled
[ 54.728915][ T3486] Rebooting in 86400 seconds..