Warning: Permanently added '10.128.0.113' (ED25519) to the list of known hosts. 2024/04/11 18:55:38 ignoring optional flag "sandboxArg"="0" 2024/04/11 18:55:38 parsed 1 programs 2024/04/11 18:55:39 executed programs: 0 [ 55.186841][ T1991] loop0: detected capacity change from 0 to 8192 [ 55.194939][ T1991] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.208090][ T1991] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.217469][ T1991] REISERFS (device loop0): using ordered data mode [ 55.223958][ T1991] reiserfs: using flush barriers [ 55.229684][ T1991] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.246095][ T1991] REISERFS (device loop0): checking transaction log (loop0) [ 55.274471][ T1991] REISERFS (device loop0): Using r5 hash to sort names [ 55.353032][ T1995] loop0: detected capacity change from 0 to 8192 [ 55.360588][ T1995] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.373841][ T1995] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.383241][ T1995] REISERFS (device loop0): using ordered data mode [ 55.390144][ T1995] reiserfs: using flush barriers [ 55.395760][ T1995] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.412328][ T1995] REISERFS (device loop0): checking transaction log (loop0) [ 55.440394][ T1995] REISERFS (device loop0): Using r5 hash to sort names [ 55.509204][ T1998] loop0: detected capacity change from 0 to 8192 [ 55.516965][ T1998] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.530230][ T1998] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.539523][ T1998] REISERFS (device loop0): using ordered data mode [ 55.546011][ T1998] reiserfs: using flush barriers [ 55.551721][ T1998] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.568321][ T1998] REISERFS (device loop0): checking transaction log (loop0) [ 55.595870][ T1998] REISERFS (device loop0): Using r5 hash to sort names [ 55.652976][ T2001] loop0: detected capacity change from 0 to 8192 [ 55.660485][ T2001] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.673489][ T2001] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.682733][ T2001] REISERFS (device loop0): using ordered data mode [ 55.689348][ T2001] reiserfs: using flush barriers 2024/04/11 18:55:44 executed programs: 4 [ 55.694964][ T2001] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.711982][ T2001] REISERFS (device loop0): checking transaction log (loop0) [ 55.739136][ T2001] REISERFS (device loop0): Using r5 hash to sort names [ 55.798433][ T2004] loop0: detected capacity change from 0 to 8192 [ 55.806145][ T2004] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.819476][ T2004] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.828864][ T2004] REISERFS (device loop0): using ordered data mode [ 55.835387][ T2004] reiserfs: using flush barriers [ 55.841620][ T2004] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 55.858084][ T2004] REISERFS (device loop0): checking transaction log (loop0) [ 55.886882][ T2004] REISERFS (device loop0): Using r5 hash to sort names [ 55.943709][ T2007] loop0: detected capacity change from 0 to 8192 [ 55.951153][ T2007] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 55.964287][ T2007] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 55.974106][ T2007] REISERFS (device loop0): using ordered data mode [ 55.980852][ T2007] reiserfs: using flush barriers [ 55.986455][ T2007] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.003093][ T2007] REISERFS (device loop0): checking transaction log (loop0) [ 56.032679][ T2007] REISERFS (device loop0): Using r5 hash to sort names [ 56.092684][ T2010] loop0: detected capacity change from 0 to 8192 [ 56.100447][ T2010] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.113494][ T2010] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.122799][ T2010] REISERFS (device loop0): using ordered data mode [ 56.129722][ T2010] reiserfs: using flush barriers [ 56.135512][ T2010] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.152109][ T2010] REISERFS (device loop0): checking transaction log (loop0) [ 56.182446][ T2010] REISERFS (device loop0): Using r5 hash to sort names [ 56.248167][ T2013] loop0: detected capacity change from 0 to 8192 [ 56.255565][ T2013] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.268775][ T2013] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.278086][ T2013] REISERFS (device loop0): using ordered data mode [ 56.285263][ T2013] reiserfs: using flush barriers [ 56.291712][ T2013] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.308235][ T2013] REISERFS (device loop0): checking transaction log (loop0) [ 56.337374][ T2013] REISERFS (device loop0): Using r5 hash to sort names [ 56.395674][ T2016] loop0: detected capacity change from 0 to 8192 [ 56.403489][ T2016] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.416671][ T2016] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.425976][ T2016] REISERFS (device loop0): using ordered data mode [ 56.432484][ T2016] reiserfs: using flush barriers [ 56.438162][ T2016] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.454597][ T2016] REISERFS (device loop0): checking transaction log (loop0) [ 56.487260][ T2016] REISERFS (device loop0): Using r5 hash to sort names [ 56.552792][ T2019] loop0: detected capacity change from 0 to 8192 [ 56.560447][ T2019] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.573454][ T2019] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.582665][ T2019] REISERFS (device loop0): using ordered data mode [ 56.589245][ T2019] reiserfs: using flush barriers [ 56.594891][ T2019] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.611224][ T2019] REISERFS (device loop0): checking transaction log (loop0) [ 56.638503][ T2019] REISERFS (device loop0): Using r5 hash to sort names [ 56.696490][ T2022] loop0: detected capacity change from 0 to 8192 [ 56.703977][ T2022] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 56.717054][ T2022] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 56.726867][ T2022] REISERFS (device loop0): using ordered data mode [ 56.733451][ T2022] reiserfs: using flush barriers [ 56.739086][ T2022] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 56.755590][ T2022] REISERFS (device loop0): checking transaction log (loop0) [ 56.784021][ T2022] REISERFS (device loop0): Using r5 hash to sort names [ 56.792602][ T2022] ================================================================== [ 56.800772][ T2022] BUG: KASAN: use-after-free in reiserfs_readdir_inode+0x5a0/0x1490 [ 56.808763][ T2022] Read of size 8 at addr ffff88806a129000 by task syz-executor.0/2022 [ 56.816886][ T2022] [ 56.819186][ T2022] CPU: 0 PID: 2022 Comm: syz-executor.0 Not tainted 6.1.85-syzkaller #0 [ 56.827478][ T2022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 56.837510][ T2022] Call Trace: [ 56.840767][ T2022] [ 56.843673][ T2022] dump_stack_lvl+0xf4/0x251 [ 56.848235][ T2022] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 56.854029][ T2022] ? panic+0x3f7/0x3f7 [ 56.858078][ T2022] ? __virt_addr_valid+0x139/0x260 [ 56.863166][ T2022] ? __virt_addr_valid+0x211/0x260 [ 56.868274][ T2022] print_report+0x15f/0x4f0 [ 56.872757][ T2022] ? __virt_addr_valid+0x139/0x260 [ 56.877843][ T2022] ? __virt_addr_valid+0x211/0x260 [ 56.882927][ T2022] ? reiserfs_readdir_inode+0x5a0/0x1490 [ 56.888534][ T2022] kasan_report+0x136/0x160 [ 56.893022][ T2022] ? reiserfs_readdir_inode+0x5a0/0x1490 [ 56.898623][ T2022] kasan_check_range+0x27f/0x290 [ 56.903527][ T2022] reiserfs_readdir_inode+0x5a0/0x1490 [ 56.908960][ T2022] ? reiserfs_dir_fsync+0xe0/0xe0 [ 56.913950][ T2022] ? __fdget_pos+0x204/0x2b0 [ 56.918510][ T2022] ? down_read_interruptible+0x1010/0x1010 [ 56.924290][ T2022] ? common_file_perm+0x130/0x1e0 [ 56.929306][ T2022] ? fsnotify_perm+0x29e/0x450 [ 56.934036][ T2022] ? reiserfs_sync_file+0x1f0/0x1f0 [ 56.939202][ T2022] iterate_dir+0x1fa/0x4f0 [ 56.943587][ T2022] __se_sys_getdents64+0x1af/0x3e0 [ 56.948684][ T2022] ? __x64_sys_getdents64+0x80/0x80 [ 56.953850][ T2022] ? filldir+0x570/0x570 [ 56.958076][ T2022] ? switch_fpu_return+0xc9/0x130 [ 56.963067][ T2022] do_syscall_64+0x3b/0x80 [ 56.967450][ T2022] ? clear_bhb_loop+0x45/0xa0 [ 56.972095][ T2022] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 56.977956][ T2022] RIP: 0033:0x7fe72207c959 [ 56.982354][ T2022] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 57.002022][ T2022] RSP: 002b:00007fe722d850c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 57.010403][ T2022] RAX: ffffffffffffffda RBX: 00007fe72219bf80 RCX: 00007fe72207c959 [ 57.018361][ T2022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 57.026298][ T2022] RBP: 00007fe7220d8c88 R08: 0000000000000000 R09: 0000000000000000 [ 57.034844][ T2022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 57.042786][ T2022] R13: 0000000000000016 R14: 00007fe72219bf80 R15: 00007fff4ac5e988 [ 57.050750][ T2022] [ 57.053756][ T2022] [ 57.056052][ T2022] The buggy address belongs to the physical page: [ 57.062435][ T2022] page:ffffea0001a84a40 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6a129 [ 57.072547][ T2022] flags: 0xfff80000000000(node=0|zone=1|lastcpupid=0xfff) [ 57.079626][ T2022] raw: 00fff80000000000 ffffea0001a84a88 ffff8880bad3e5e0 0000000000000000 [ 57.088261][ T2022] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 57.096812][ T2022] page dumped because: kasan: bad access detected [ 57.103191][ T2022] page_owner tracks the page as freed [ 57.108527][ T2022] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 1992, tgid 1992 (udevd), ts 56802760326, free_ts 56803591882 [ 57.125601][ T2022] post_alloc_hook+0x286/0x2b0 [ 57.130346][ T2022] get_page_from_freelist+0x2fdd/0x3170 [ 57.135864][ T2022] __alloc_pages+0x251/0x640 [ 57.140420][ T2022] __folio_alloc+0xf/0x30 [ 57.144714][ T2022] vma_alloc_folio+0x484/0x9e0 [ 57.149440][ T2022] shmem_alloc_and_acct_folio+0x44a/0xaf0 [ 57.155210][ T2022] shmem_get_folio_gfp+0x1197/0x25e0 [ 57.160473][ T2022] shmem_write_begin+0x159/0x400 [ 57.165388][ T2022] generic_perform_write+0x2f1/0x530 [ 57.170638][ T2022] __generic_file_write_iter+0x13e/0x2f0 [ 57.176247][ T2022] generic_file_write_iter+0x99/0x230 [ 57.181598][ T2022] vfs_write+0x9c2/0xcf0 [ 57.185804][ T2022] ksys_write+0x15f/0x240 [ 57.190126][ T2022] do_syscall_64+0x3b/0x80 [ 57.194508][ T2022] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 57.200366][ T2022] page last free stack trace: [ 57.205005][ T2022] free_unref_page_prepare+0xd4b/0xee0 [ 57.210444][ T2022] free_unref_page_list+0x54b/0x7e0 [ 57.215605][ T2022] release_pages+0x175c/0x1900 [ 57.220331][ T2022] __pagevec_release+0x62/0xd0 [ 57.225057][ T2022] shmem_undo_range+0x66b/0x1b00 [ 57.229974][ T2022] shmem_evict_inode+0x354/0x860 [ 57.234876][ T2022] evict+0x263/0x630 [ 57.238738][ T2022] __dentry_kill+0x380/0x5d0 [ 57.243295][ T2022] dentry_kill+0xbb/0x1e0 [ 57.247590][ T2022] dput+0x154/0x2d0 [ 57.251362][ T2022] do_renameat2+0xad7/0x10a0 [ 57.255919][ T2022] __x64_sys_rename+0x7d/0x90 [ 57.260562][ T2022] do_syscall_64+0x3b/0x80 [ 57.264943][ T2022] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 57.270820][ T2022] [ 57.273131][ T2022] Memory state around the buggy address: [ 57.278727][ T2022] ffff88806a128f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 57.286781][ T2022] ffff88806a128f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 57.294809][ T2022] >ffff88806a129000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 57.303796][ T2022] ^ [ 57.307832][ T2022] ffff88806a129080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 57.315864][ T2022] ffff88806a129100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 57.323906][ T2022] ================================================================== [ 57.332658][ T2022] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 57.339951][ T2022] Kernel Offset: disabled [ 57.344260][ T2022] Rebooting in 86400 seconds..