Warning: Permanently added '10.128.1.224' (ED25519) to the list of known hosts. 2024/06/05 17:33:36 ignoring optional flag "sandboxArg"="0" 2024/06/05 17:33:36 parsed 1 programs 2024/06/05 17:33:36 executed programs: 0 [ 48.756798][ T1507] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 53.634193][ T1931] loop0: detected capacity change from 0 to 8192 [ 53.642782][ T1931] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.655797][ T1931] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 53.664998][ T1931] REISERFS (device loop0): using ordered data mode [ 53.671513][ T1931] reiserfs: using flush barriers [ 53.677127][ T1931] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.693544][ T1931] REISERFS (device loop0): checking transaction log (loop0) [ 53.722025][ T1931] REISERFS (device loop0): Using rupasov hash to sort names [ 53.729711][ T1931] ================================================================== [ 53.737760][ T1931] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x483/0x1320 [ 53.745372][ T1931] Read of size 18446744073709551584 at addr ffff88807f956fa4 by task syz-executor.0/1931 [ 53.755139][ T1931] [ 53.757447][ T1931] CPU: 1 PID: 1931 Comm: syz-executor.0 Not tainted 6.1.92-syzkaller #0 [ 53.766116][ T1931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 53.776193][ T1931] Call Trace: [ 53.779825][ T1931] [ 53.782739][ T1931] dump_stack_lvl+0xf4/0x251 [ 53.787503][ T1931] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 53.792969][ T1931] ? panic+0x3fe/0x3fe [ 53.797017][ T1931] ? lock_acquire+0xbe/0x390 [ 53.801583][ T1931] ? read_lock_is_recursive+0x10/0x10 [ 53.806923][ T1931] ? __virt_addr_valid+0x139/0x260 [ 53.812090][ T1931] ? __virt_addr_valid+0x211/0x260 [ 53.817253][ T1931] print_report+0x15f/0x4f0 [ 53.821726][ T1931] ? __virt_addr_valid+0x139/0x260 [ 53.826805][ T1931] ? __virt_addr_valid+0x211/0x260 [ 53.831883][ T1931] ? leaf_paste_entries+0x483/0x1320 [ 53.837151][ T1931] kasan_report+0x136/0x160 [ 53.841636][ T1931] ? leaf_paste_entries+0x483/0x1320 [ 53.846901][ T1931] ? leaf_paste_entries+0x483/0x1320 [ 53.852157][ T1931] kasan_check_range+0x27f/0x290 [ 53.857067][ T1931] ? leaf_paste_entries+0x483/0x1320 [ 53.862319][ T1931] memmove+0x25/0x60 [ 53.866184][ T1931] leaf_paste_entries+0x483/0x1320 [ 53.871301][ T1931] ? leaf_paste_in_buffer+0x5e2/0xa30 [ 53.876684][ T1931] do_balance+0x6fe1/0xe950 [ 53.881181][ T1931] ? stack_trace_save+0x113/0x1c0 [ 53.886189][ T1931] ? __stack_depot_save+0x346/0x460 [ 53.891368][ T1931] ? __kasan_kmalloc+0x97/0xb0 [ 53.896201][ T1931] ? __kmalloc+0xa6/0x1c0 [ 53.900513][ T1931] ? fix_nodes+0x6c3/0xda60 [ 53.904993][ T1931] ? reiserfs_paste_into_item+0x569/0x740 [ 53.910683][ T1931] ? reiserfs_add_entry+0x7cf/0xbd0 [ 53.915884][ T1931] ? reiserfs_mkdir+0x657/0x870 [ 53.920735][ T1931] ? reiserfs_fill_super+0x1b96/0x2070 [ 53.926175][ T1931] ? mount_bdev+0x26b/0x340 [ 53.930650][ T1931] ? legacy_get_tree+0xe5/0x170 [ 53.935477][ T1931] ? vfs_get_tree+0x7a/0x170 [ 53.940114][ T1931] ? do_new_mount+0x21a/0x910 [ 53.945198][ T1931] ? __se_sys_mount+0x23e/0x2d0 [ 53.950026][ T1931] ? do_syscall_64+0x3b/0x80 [ 53.954586][ T1931] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 53.960917][ T1931] ? get_right_neighbor_position+0x120/0x120 [ 53.966866][ T1931] ? __wake_up+0x1c0/0x1c0 [ 53.971252][ T1931] ? unfix_nodes+0x830/0x830 [ 53.975811][ T1931] ? fix_nodes+0x6c3/0xda60 [ 53.980292][ T1931] ? reiserfs_prepare_for_journal+0x166/0x180 [ 53.986339][ T1931] ? fix_nodes+0xcf78/0xda60 [ 53.990991][ T1931] ? make_empty_dir_item+0x740/0x740 [ 53.996680][ T1931] ? reiserfs_paste_into_item+0x36c/0x740 [ 54.002483][ T1931] reiserfs_paste_into_item+0x66e/0x740 [ 54.008034][ T1931] ? reiserfs_cut_from_item+0x1e90/0x1e90 [ 54.013747][ T1931] ? reiserfs_get_parent+0x270/0x270 [ 54.019003][ T1931] ? inode2sd+0x333/0x9a0 [ 54.023305][ T1931] reiserfs_add_entry+0x7cf/0xbd0 [ 54.028387][ T1931] ? drop_new_inode+0x50/0x50 [ 54.033038][ T1931] ? do_journal_begin_r+0xba9/0xdd0 [ 54.038843][ T1931] ? journal_begin+0x13b/0x2f0 [ 54.043662][ T1931] reiserfs_mkdir+0x657/0x870 [ 54.048306][ T1931] ? reiserfs_symlink+0x6b0/0x6b0 [ 54.053296][ T1931] ? __down_write_common+0x12a/0x1e0 [ 54.058555][ T1931] ? up_write+0x137/0x300 [ 54.062866][ T1931] ? __up_read+0x360/0x360 [ 54.067251][ T1931] reiserfs_xattr_init+0x286/0x5f0 [ 54.072333][ T1931] reiserfs_fill_super+0x1b96/0x2070 [ 54.077590][ T1931] ? reiserfs_kill_sb+0x140/0x140 [ 54.082587][ T1931] ? __down_write_common+0x12a/0x1e0 [ 54.087842][ T1931] ? snprintf+0xcc/0x110 [ 54.092081][ T1931] ? __up_read+0x360/0x360 [ 54.096473][ T1931] mount_bdev+0x26b/0x340 [ 54.100811][ T1931] ? reiserfs_kill_sb+0x140/0x140 [ 54.105897][ T1931] legacy_get_tree+0xe5/0x170 [ 54.110543][ T1931] ? remove_save_link+0x4e0/0x4e0 [ 54.115535][ T1931] vfs_get_tree+0x7a/0x170 [ 54.120268][ T1931] do_new_mount+0x21a/0x910 [ 54.124741][ T1931] ? do_move_mount_old+0x120/0x120 [ 54.129907][ T1931] __se_sys_mount+0x23e/0x2d0 [ 54.134553][ T1931] ? __x64_sys_mount+0xc0/0xc0 [ 54.139285][ T1931] ? fpregs_assert_state_consistent+0x43/0x50 [ 54.145320][ T1931] do_syscall_64+0x3b/0x80 [ 54.149860][ T1931] ? clear_bhb_loop+0x45/0xa0 [ 54.154505][ T1931] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 54.160374][ T1931] RIP: 0033:0x7fd903e7f4aa [ 54.164768][ T1931] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 54.184342][ T1931] RSP: 002b:00007fd904c8eef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 54.192819][ T1931] RAX: ffffffffffffffda RBX: 00007fd904c8ef80 RCX: 00007fd903e7f4aa [ 54.200773][ T1931] RDX: 0000000020001100 RSI: 0000000020001140 RDI: 00007fd904c8ef40 [ 54.208729][ T1931] RBP: 0000000020001100 R08: 00007fd904c8ef80 R09: 0000000000200808 [ 54.216689][ T1931] R10: 0000000000200808 R11: 0000000000000246 R12: 0000000020001140 [ 54.225093][ T1931] R13: 00007fd904c8ef40 R14: 00000000000010eb R15: 0000000020000180 [ 54.233215][ T1931] [ 54.236213][ T1931] [ 54.238520][ T1931] The buggy address belongs to the physical page: [ 54.245013][ T1931] page:ffffea0001fe5580 refcount:3 mapcount:0 mapping:ffff8880090412f0 index:0x213 pfn:0x7f956 [ 54.255310][ T1931] memcg:ffff888078f66000 [ 54.259518][ T1931] aops:def_blk_aops ino:700000 [ 54.264253][ T1931] flags: 0xfff00000002022(referenced|active|private|node=0|zone=1|lastcpupid=0x7ff) [ 54.273764][ T1931] raw: 00fff00000002022 0000000000000000 dead000000000122 ffff8880090412f0 [ 54.282350][ T1931] raw: 0000000000000213 ffff88807059d1d0 00000003ffffffff ffff888078f66000 [ 54.290994][ T1931] page dumped because: kasan: bad access detected [ 54.297480][ T1931] page_owner tracks the page as allocated [ 54.303337][ T1931] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 1931, tgid 1930 (syz-executor.0), ts 53721810655, free_ts 41574458005 [ 54.323882][ T1931] post_alloc_hook+0x286/0x2b0 [ 54.328707][ T1931] get_page_from_freelist+0x2fdd/0x3170 [ 54.334350][ T1931] __alloc_pages+0x251/0x640 [ 54.339034][ T1931] folio_alloc+0xf/0x30 [ 54.343256][ T1931] filemap_alloc_folio+0xc2/0x390 [ 54.348269][ T1931] __filemap_get_folio+0x6ca/0x970 [ 54.353480][ T1931] pagecache_get_page+0x10/0x160 [ 54.358749][ T1931] __getblk_gfp+0x1b5/0x810 [ 54.363229][ T1931] search_by_key+0x3bd/0x3d90 [ 54.368056][ T1931] reiserfs_read_locked_inode+0x211/0x2290 [ 54.373829][ T1931] reiserfs_fill_super+0xfed/0x2070 [ 54.378995][ T1931] mount_bdev+0x26b/0x340 [ 54.383293][ T1931] legacy_get_tree+0xe5/0x170 [ 54.387940][ T1931] vfs_get_tree+0x7a/0x170 [ 54.392819][ T1931] do_new_mount+0x21a/0x910 [ 54.397290][ T1931] __se_sys_mount+0x23e/0x2d0 [ 54.402001][ T1931] page last free stack trace: [ 54.406651][ T1931] free_unref_page_prepare+0xd4b/0xee0 [ 54.412180][ T1931] free_unref_page_list+0x54b/0x7e0 [ 54.417346][ T1931] release_pages+0x175c/0x1900 [ 54.422083][ T1931] tlb_flush_mmu+0xe5/0x1d0 [ 54.426555][ T1931] tlb_finish_mmu+0xb0/0x1b0 [ 54.431139][ T1931] unmap_region+0x265/0x2b0 [ 54.435697][ T1931] do_mas_align_munmap+0xa6c/0x11e0 [ 54.441122][ T1931] do_mas_munmap+0x195/0x1f0 [ 54.445683][ T1931] __vm_munmap+0x236/0x300 [ 54.450067][ T1931] __x64_sys_munmap+0x57/0x60 [ 54.454756][ T1931] do_syscall_64+0x3b/0x80 [ 54.459156][ T1931] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 54.465032][ T1931] [ 54.467328][ T1931] Memory state around the buggy address: [ 54.472949][ T1931] ffff88807f956e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 54.480985][ T1931] ffff88807f956f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 54.489189][ T1931] >ffff88807f956f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 54.497218][ T1931] ^ [ 54.502301][ T1931] ffff88807f957000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 54.510345][ T1931] ffff88807f957080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 54.518631][ T1931] ================================================================== [ 54.527529][ T1931] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 54.534963][ T1931] Kernel Offset: disabled [ 54.539293][ T1931] Rebooting in 86400 seconds..