[ 45.101551][ T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.111434][ T11] device veth1_macvtap left promiscuous mode
[ 45.117800][ T11] device veth0_macvtap left promiscuous mode
[ 45.123834][ T11] device veth1_vlan left promiscuous mode
[ 45.129913][ T11] device veth0_vlan left promiscuous mode
[ 45.201827][ T11] team0 (unregistering): Port device team_slave_1 removed
[ 45.214600][ T11] team0 (unregistering): Port device team_slave_0 removed
[ 45.225654][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 45.236621][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 45.261533][ T11] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.10.12' (ECDSA) to the list of known hosts.
[ 57.511345][ T4012] loop0: detected capacity change from 0 to 252287
[ 57.518909][ T27] audit: type=1400 audit(1648750441.836:189): avc: denied { mounton } for pid=4012 comm="syz-executor359" path="/root/file0" dev="sda1" ino=1142 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 57.544444][ T4012] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 57.558449][ T4012] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 57.567946][ T4012] REISERFS (device loop0): using ordered data mode
[ 57.574457][ T4012] reiserfs: using flush barriers
[ 57.580210][ T4012] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30
[ 57.599796][ T4012] REISERFS (device loop0): checking transaction log (loop0)
[ 58.245541][ T4012] REISERFS (device loop0): Using tea hash to sort names
[ 58.252957][ T4012] ==================================================================
[ 58.261017][ T4012] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x405/0xa10
[ 58.268543][ T4012] Read of size 18446744073709551584 at addr ffff888065608fa4 by task syz-executor359/4012
[ 58.278405][ T4012]
[ 58.280708][ T4012] CPU: 0 PID: 4012 Comm: syz-executor359 Tainted: G W 5.17.0-syzkaller #0
[ 58.290476][ T4012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 58.300511][ T4012] Call Trace:
[ 58.303766][ T4012]
[ 58.306674][ T4012] dump_stack_lvl+0x57/0x7d
[ 58.311150][ T4012] print_address_description.constprop.0.cold+0xeb/0x467
[ 58.318142][ T4012] ? leaf_paste_entries+0x405/0xa10
[ 58.323322][ T4012] kasan_report.cold+0xf4/0x1c6
[ 58.328143][ T4012] ? leaf_paste_entries+0x405/0xa10
[ 58.333412][ T4012] kasan_check_range+0x13d/0x180
[ 58.338337][ T4012] memmove+0x20/0x60
[ 58.342225][ T4012] leaf_paste_entries+0x405/0xa10
[ 58.347220][ T4012] balance_leaf+0x90cc/0xdb90
[ 58.351871][ T4012] ? fix_nodes+0x2954/0x80e0
[ 58.356447][ T4012] ? replace_key+0x160/0x160
[ 58.361006][ T4012] do_balance+0x2ee/0x760
[ 58.365394][ T4012] ? get_right_neighbor_position+0x170/0x170
[ 58.371340][ T4012] ? wait_for_completion_io_timeout+0x20/0x20
[ 58.377380][ T4012] reiserfs_paste_into_item+0x63c/0x7b0
[ 58.382901][ T4012] ? reiserfs_delete_object+0x1b0/0x1b0
[ 58.388511][ T4012] ? search_by_entry_key+0x980/0x980
[ 58.393765][ T4012] ? reiserfs_new_inode+0xe43/0x1e80
[ 58.399021][ T4012] reiserfs_add_entry+0x7fb/0xc50
[ 58.404017][ T4012] ? reiserfs_lookup+0x3e0/0x3e0
[ 58.408927][ T4012] ? wait_for_completion_io_timeout+0x20/0x20
[ 58.415070][ T4012] reiserfs_mkdir+0x5a3/0x860
[ 58.419741][ T4012] ? reiserfs_mknod+0x660/0x660
[ 58.424645][ T4012] ? lock_release+0x522/0x720
[ 58.429560][ T4012] ? down_write+0xdf/0x150
[ 58.433946][ T4012] ? rwsem_down_write_slowpath+0x1110/0x1110
[ 58.439988][ T4012] reiserfs_xattr_init+0x49d/0xb20
[ 58.445098][ T4012] reiserfs_fill_super+0x1c78/0x27a0
[ 58.450676][ T4012] ? reiserfs_remount+0x1290/0x1290
[ 58.455936][ T4012] ? pointer+0x700/0x700
[ 58.460240][ T4012] ? sget+0x3d6/0x4d0
[ 58.464229][ T4012] mount_bdev+0x2cb/0x3b0
[ 58.468532][ T4012] ? reiserfs_remount+0x1290/0x1290
[ 58.473810][ T4012] ? reiserfs_kill_sb+0x1d0/0x1d0
[ 58.478805][ T4012] legacy_get_tree+0xfa/0x1f0
[ 58.483598][ T4012] vfs_get_tree+0x7f/0x2c0
[ 58.488091][ T4012] path_mount+0x7e8/0x1a40
[ 58.492495][ T4012] ? finish_automount+0x900/0x900
[ 58.497504][ T4012] ? kmem_cache_free.part.0+0x11e/0x240
[ 58.503038][ T4012] ? trace_hardirqs_on+0x1c/0x140
[ 58.508050][ T4012] __x64_sys_mount+0x1f5/0x260
[ 58.512799][ T4012] ? copy_mnt_ns+0xd20/0xd20
[ 58.517365][ T4012] ? rcu_read_lock_sched_held+0xd/0x70
[ 58.522881][ T4012] ? syscall_enter_from_user_mode+0x21/0x70
[ 58.528745][ T4012] do_syscall_64+0x35/0x80
[ 58.533136][ T4012] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 58.539000][ T4012] RIP: 0033:0x7f1402950d0a
[ 58.543403][ T4012] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 58.563086][ T4012] RSP: 002b:00007ffdfe5dea88 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 58.571471][ T4012] RAX: ffffffffffffffda RBX: 00007ffdfe5deae0 RCX: 00007f1402950d0a
[ 58.579414][ T4012] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffdfe5deaa0
[ 58.587358][ T4012] RBP: 00007ffdfe5deaa0 R08: 00007ffdfe5deae0 R09: 0000000000000000
[ 58.595301][ T4012] R10: 0000000000000000 R11: 0000000000000286 R12: 00000000200002a8
[ 58.603245][ T4012] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000007
[ 58.611990][ T4012]
[ 58.615002][ T4012]
[ 58.617351][ T4012] The buggy address belongs to the physical page:
[ 58.623734][ T4012] page:ffffea0001958200 refcount:3 mapcount:0 mapping:ffff888017166880 index:0x3d97 pfn:0x65608
[ 58.634120][ T4012] memcg:ffff888010514000
[ 58.638330][ T4012] aops:def_blk_aops ino:700000
[ 58.643178][ T4012] flags: 0xfff00000002022(referenced|active|private|node=0|zone=1|lastcpupid=0x7ff)
[ 58.652691][ T4012] raw: 00fff00000002022 0000000000000000 dead000000000122 ffff888017166880
[ 58.661701][ T4012] raw: 0000000000003d97 ffff888065c49570 00000003ffffffff ffff888010514000
[ 58.670277][ T4012] page dumped because: kasan: bad access detected
[ 58.676661][ T4012] page_owner tracks the page as allocated
[ 58.682344][ T4012] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 4012, tgid 4012 (syz-executor359), ts 58245428527, free_ts 8614534900
[ 58.702900][ T4012] get_page_from_freelist+0x178d/0x3da0
[ 58.708430][ T4012] __alloc_pages+0x1b2/0x500
[ 58.712990][ T4012] folio_alloc+0x12/0x40
[ 58.717308][ T4012] __filemap_get_folio+0x3c3/0x9e0
[ 58.722580][ T4012] pagecache_get_page+0x10/0x1a0
[ 58.727660][ T4012] __getblk_slow+0x18e/0xb50
[ 58.732394][ T4012] search_by_key+0x35c/0x4380
[ 58.737038][ T4012] reiserfs_read_locked_inode+0x144/0x21c0
[ 58.742812][ T4012] reiserfs_fill_super+0x12e7/0x27a0
[ 58.748080][ T4012] mount_bdev+0x2cb/0x3b0
[ 58.752376][ T4012] legacy_get_tree+0xfa/0x1f0
[ 58.757109][ T4012] vfs_get_tree+0x7f/0x2c0
[ 58.761580][ T4012] path_mount+0x7e8/0x1a40
[ 58.765963][ T4012] __x64_sys_mount+0x1f5/0x260
[ 58.770920][ T4012] do_syscall_64+0x35/0x80
[ 58.775312][ T4012] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 58.781179][ T4012] page last free stack trace:
[ 58.785829][ T4012] free_pcp_prepare+0x549/0xd20
[ 58.790659][ T4012] free_unref_page+0x19/0x690
[ 58.795736][ T4012] free_contig_range+0xb1/0x180
[ 58.800588][ T4012] destroy_args+0x7e/0x503
[ 58.804970][ T4012] debug_vm_pgtable+0x1fc8/0x204c
[ 58.809963][ T4012] do_one_initcall+0xbe/0x440
[ 58.814609][ T4012] kernel_init_freeable+0x5ab/0x605
[ 58.819779][ T4012] kernel_init+0x14/0x130
[ 58.824623][ T4012] ret_from_fork+0x1f/0x30
[ 58.829097][ T4012]
[ 58.831403][ T4012] Memory state around the buggy address:
[ 58.837017][ T4012] ffff888065608e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 58.845046][ T4012] ffff888065608f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 58.853074][ T4012] >ffff888065608f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 58.861102][ T4012] ^
[ 58.866183][ T4012] ffff888065609000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 58.874642][ T4012] ffff888065609080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 58.882677][ T4012] ==================================================================
[ 58.891440][ T4012] Kernel panic - not syncing: panic_on_warn set ...
[ 58.898028][ T4012] CPU: 1 PID: 4012 Comm: syz-executor359 Tainted: G W 5.17.0-syzkaller #0
[ 58.907826][ T4012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 58.917853][ T4012] Call Trace:
[ 58.921106][ T4012]
[ 58.924015][ T4012] dump_stack_lvl+0x57/0x7d
[ 58.928491][ T4012] panic+0x227/0x466
[ 58.932616][ T4012] ? panic_print_sys_info.part.0+0x69/0x69
[ 58.938392][ T4012] ? preempt_schedule_common+0x59/0xc0
[ 58.943823][ T4012] ? leaf_paste_entries+0x405/0xa10
[ 58.949509][ T4012] ? preempt_schedule_thunk+0x16/0x18
[ 58.954851][ T4012] ? leaf_paste_entries+0x405/0xa10
[ 58.960012][ T4012] end_report.part.0+0x3f/0x7c
[ 58.964741][ T4012] kasan_report.cold+0x93/0x1c6
[ 58.969557][ T4012] ? leaf_paste_entries+0x405/0xa10
[ 58.974732][ T4012] kasan_check_range+0x13d/0x180
[ 58.979637][ T4012] memmove+0x20/0x60
[ 58.983502][ T4012] leaf_paste_entries+0x405/0xa10
[ 58.988581][ T4012] balance_leaf+0x90cc/0xdb90
[ 58.993224][ T4012] ? fix_nodes+0x2954/0x80e0
[ 58.997966][ T4012] ? replace_key+0x160/0x160
[ 59.002522][ T4012] do_balance+0x2ee/0x760
[ 59.006821][ T4012] ? get_right_neighbor_position+0x170/0x170
[ 59.012766][ T4012] ? wait_for_completion_io_timeout+0x20/0x20
[ 59.018800][ T4012] reiserfs_paste_into_item+0x63c/0x7b0
[ 59.024428][ T4012] ? reiserfs_delete_object+0x1b0/0x1b0
[ 59.029954][ T4012] ? search_by_entry_key+0x980/0x980
[ 59.035266][ T4012] ? reiserfs_new_inode+0xe43/0x1e80
[ 59.040520][ T4012] reiserfs_add_entry+0x7fb/0xc50
[ 59.045512][ T4012] ? reiserfs_lookup+0x3e0/0x3e0
[ 59.050425][ T4012] ? wait_for_completion_io_timeout+0x20/0x20
[ 59.056493][ T4012] reiserfs_mkdir+0x5a3/0x860
[ 59.061145][ T4012] ? reiserfs_mknod+0x660/0x660
[ 59.066048][ T4012] ? lock_release+0x522/0x720
[ 59.070798][ T4012] ? down_write+0xdf/0x150
[ 59.075187][ T4012] ? rwsem_down_write_slowpath+0x1110/0x1110
[ 59.081222][ T4012] reiserfs_xattr_init+0x49d/0xb20
[ 59.086388][ T4012] reiserfs_fill_super+0x1c78/0x27a0
[ 59.091655][ T4012] ? reiserfs_remount+0x1290/0x1290
[ 59.096843][ T4012] ? pointer+0x700/0x700
[ 59.101073][ T4012] ? sget+0x3d6/0x4d0
[ 59.105027][ T4012] mount_bdev+0x2cb/0x3b0
[ 59.109353][ T4012] ? reiserfs_remount+0x1290/0x1290
[ 59.114528][ T4012] ? reiserfs_kill_sb+0x1d0/0x1d0
[ 59.119523][ T4012] legacy_get_tree+0xfa/0x1f0
[ 59.124166][ T4012] vfs_get_tree+0x7f/0x2c0
[ 59.128548][ T4012] path_mount+0x7e8/0x1a40
[ 59.132940][ T4012] ? finish_automount+0x900/0x900
[ 59.138029][ T4012] ? kmem_cache_free.part.0+0x11e/0x240
[ 59.143553][ T4012] ? trace_hardirqs_on+0x1c/0x140
[ 59.148545][ T4012] __x64_sys_mount+0x1f5/0x260
[ 59.153288][ T4012] ? copy_mnt_ns+0xd20/0xd20
[ 59.157850][ T4012] ? rcu_read_lock_sched_held+0xd/0x70
[ 59.163274][ T4012] ? syscall_enter_from_user_mode+0x21/0x70
[ 59.169310][ T4012] do_syscall_64+0x35/0x80
[ 59.173693][ T4012] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 59.179667][ T4012] RIP: 0033:0x7f1402950d0a
[ 59.184053][ T4012] Code: 48 c7 c2 c0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 a8 00 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 59.203625][ T4012] RSP: 002b:00007ffdfe5dea88 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 59.212003][ T4012] RAX: ffffffffffffffda RBX: 00007ffdfe5deae0 RCX: 00007f1402950d0a
[ 59.219943][ T4012] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffdfe5deaa0
[ 59.227882][ T4012] RBP: 00007ffdfe5deaa0 R08: 00007ffdfe5deae0 R09: 0000000000000000
[ 59.235829][ T4012] R10: 0000000000000000 R11: 0000000000000286 R12: 00000000200002a8
[ 59.244055][ T4012] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000007
[ 59.252003][ T4012]
[ 59.255159][ T4012] Kernel Offset: disabled
[ 59.259574][ T4012] Rebooting in 86400 seconds..