Warning: Permanently added '10.128.0.198' (ECDSA) to the list of known hosts. executing program [ 44.667067][ T3963] loop0: detected capacity change from 0 to 8192 [ 44.672046][ T3963] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 44.674199][ T3963] REISERFS (device loop0): using ordered data mode [ 44.675543][ T3963] reiserfs: using flush barriers [ 44.677567][ T3963] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 44.681002][ T3963] REISERFS (device loop0): checking transaction log (loop0) [ 44.684794][ T3963] REISERFS (device loop0): Using r5 hash to sort names [ 44.687611][ T3963] reiserfs: enabling write barrier flush mode [ 44.699788][ T3963] ================================================================== [ 44.701466][ T3963] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x504/0x944 [ 44.702940][ T3963] Read of size 18446744073709551587 at addr ffff0000dd91ffa4 by task syz-executor336/3963 [ 44.705170][ T3963] [ 44.705659][ T3963] CPU: 1 PID: 3963 Comm: syz-executor336 Not tainted 5.15.118-syzkaller #0 [ 44.707413][ T3963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 44.709597][ T3963] Call trace: [ 44.710274][ T3963] dump_backtrace+0x0/0x530 [ 44.711250][ T3963] show_stack+0x2c/0x3c [ 44.712118][ T3963] dump_stack_lvl+0x108/0x170 [ 44.713079][ T3963] print_address_description+0x7c/0x3f0 [ 44.714153][ T3963] kasan_report+0x174/0x1e4 [ 44.715067][ T3963] kasan_check_range+0x274/0x2b4 [ 44.716127][ T3963] memmove+0x90/0xe8 [ 44.716967][ T3963] leaf_paste_entries+0x504/0x944 [ 44.718089][ T3963] balance_leaf+0xa0d4/0xe860 [ 44.719079][ T3963] do_balance+0x27c/0x790 [ 44.720018][ T3963] reiserfs_paste_into_item+0x630/0x744 [ 44.721285][ T3963] reiserfs_add_entry+0x8c0/0xc8c [ 44.722367][ T3963] reiserfs_mkdir+0x588/0x77c [ 44.723394][ T3963] reiserfs_xattr_init+0x2b0/0x6dc [ 44.724464][ T3963] reiserfs_remount+0x78c/0x13f4 [ 44.725424][ T3963] legacy_reconfigure+0xfc/0x114 [ 44.726442][ T3963] reconfigure_super+0x340/0x690 [ 44.727461][ T3963] path_mount+0xc94/0x104c [ 44.728325][ T3963] __arm64_sys_mount+0x510/0x5e0 [ 44.729271][ T3963] invoke_syscall+0x98/0x2b8 [ 44.730243][ T3963] el0_svc_common+0x138/0x258 [ 44.731258][ T3963] do_el0_svc+0x58/0x14c [ 44.732148][ T3963] el0_svc+0x7c/0x1f0 [ 44.732976][ T3963] el0t_64_sync_handler+0x84/0xe4 [ 44.734022][ T3963] el0t_64_sync+0x1a0/0x1a4 [ 44.734943][ T3963] [ 44.735370][ T3963] The buggy address belongs to the page: [ 44.736529][ T3963] page:0000000027b817e2 refcount:2 mapcount:0 mapping:000000000035d489 index:0x213 pfn:0x11d91f [ 44.738736][ T3963] memcg:ffff0000c0894000 [ 44.739645][ T3963] aops:def_blk_aops ino:700000 [ 44.740642][ T3963] flags: 0x5ffc00000002032(referenced|lru|active|private|node=0|zone=2|lastcpupid=0x7ff) [ 44.742691][ T3963] raw: 05ffc00000002032 fffffc0006cea6c8 fffffc00037c7408 ffff0000c058cf48 [ 44.744405][ T3963] raw: 0000000000000213 ffff0000dec90488 00000002ffffffff ffff0000c0894000 [ 44.746269][ T3963] page dumped because: kasan: bad access detected [ 44.747589][ T3963] [ 44.748038][ T3963] Memory state around the buggy address: [ 44.749380][ T3963] ffff0000dd91fe80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.751108][ T3963] ffff0000dd91ff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.752827][ T3963] >ffff0000dd91ff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.754466][ T3963] ^ [ 44.755638][ T3963] ffff0000dd920000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.757258][ T3963] ffff0000dd920080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 44.758960][ T3963] ================================================================== [ 44.760682][ T3963] Disabling lock debugging due to kernel taint [ 44.762108][ T3963] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[771751938 1936287090 0x73667265 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376 [ 44.766123][ T3963] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 44.768146][ T3963] REISERFS (device loop0): Remounting filesystem read-only [ 44.769588][ T3963] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [1 2 0x0 SD] stat data [ 44.772409][ T3963] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 44.775369][ T3963] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[771751938 1936287090 0x73667265 UNKNOWN], item_len 16872, item_location 2, free_space(entry_count) 21376 [ 44.779498][ T3963] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 44.781751][ T3963] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error [ 44.785608][ T3963] ------------[ cut here ]------------ [ 44.786756][ T3963] kernel BUG at fs/reiserfs/journal.c:1913! [ 44.788047][ T3963] Internal error: Oops - BUG: 0 [#1] PREEMPT SMP [ 44.789516][ T3963] Modules linked in: [ 44.790332][ T3963] CPU: 1 PID: 3963 Comm: syz-executor336 Tainted: G B 5.15.118-syzkaller #0 [ 44.792320][ T3963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 44.794493][ T3963] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 44.796181][ T3963] pc : do_journal_release+0x448/0x454 [ 44.797271][ T3963] lr : do_journal_release+0x448/0x454 [ 44.798319][ T3963] sp : ffff80001cbc7780 [ 44.799153][ T3963] x29: ffff80001cbc7820 x28: 1ffff0000291da9d x27: 1fffe0001b9180cf [ 44.800793][ T3963] x26: dfff800000000000 x25: ffff700003978ef0 x24: ffff80001cb99000 [ 44.802422][ T3963] x23: 0000000000000000 x22: ffff80001cbc78e0 x21: ffff80001cbc77a0 [ 44.804023][ T3963] x20: ffff0000dc8c0678 x19: ffff0000dc8c0000 x18: 1ffff00003973205 [ 44.805777][ T3963] x17: ff808000086d7490 x16: ffff8000088cadd0 x15: ffff8000081aceb4 [ 44.807458][ T3963] x14: 00000000119503c4 x13: ffffffffffffffff x12: 0000000000000000 [ 44.809179][ T3963] x11: ff80800008ce12ec x10: 0000000000000000 x9 : ffff800008ce12ec [ 44.810839][ T3963] x8 : ffff0000c7e68000 x7 : 0000000000000000 x6 : ffff800008d02a70 [ 44.812382][ T3963] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000030 [ 44.814021][ T3963] x2 : 0000000000000008 x1 : 0000000000000000 x0 : 0000000000000000 [ 44.815688][ T3963] Call trace: [ 44.816417][ T3963] do_journal_release+0x448/0x454 [ 44.817435][ T3963] journal_release+0x2c/0x40 [ 44.818350][ T3963] reiserfs_put_super+0x204/0x444 [ 44.819400][ T3963] generic_shutdown_super+0x130/0x29c [ 44.820508][ T3963] kill_block_super+0x70/0xdc [ 44.821422][ T3963] reiserfs_kill_sb+0x134/0x14c [ 44.822415][ T3963] deactivate_locked_super+0xb8/0x13c [ 44.823542][ T3963] deactivate_super+0x108/0x128 [ 44.824587][ T3963] cleanup_mnt+0x3c0/0x474 [ 44.825492][ T3963] __cleanup_mnt+0x20/0x30 [ 44.826403][ T3963] task_work_run+0x130/0x1e4 [ 44.827332][ T3963] do_exit+0x688/0x2134 [ 44.828231][ T3963] do_group_exit+0x110/0x268 [ 44.829255][ T3963] __wake_up_parent+0x0/0x60 [ 44.830217][ T3963] invoke_syscall+0x98/0x2b8 [ 44.831167][ T3963] el0_svc_common+0x138/0x258 [ 44.832198][ T3963] do_el0_svc+0x58/0x14c [ 44.833020][ T3963] el0_svc+0x7c/0x1f0 [ 44.833914][ T3963] el0t_64_sync_handler+0x84/0xe4 [ 44.834957][ T3963] el0t_64_sync+0x1a0/0x1a4 [ 44.835863][ T3963] Code: 97efa5ad 17ffff58 95c914e5 97df87a1 (d4210000) [ 44.837417][ T3963] ---[ end trace a2c2013f07daf165 ]--- [ 45.186260][ T3963] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 45.187625][ T3963] SMP: stopping secondary CPUs [ 45.188631][ T3963] Kernel Offset: disabled [ 45.189560][ T3963] CPU features: 0x000081c1,21302e40 [ 45.190684][ T3963] Memory Limit: none [ 45.508666][ T3963] Rebooting in 86400 seconds..