Warning: Permanently added '10.128.1.55' (ED25519) to the list of known hosts. 2023/09/22 22:12:29 ignoring optional flag "sandboxArg"="0" 2023/09/22 22:12:29 parsed 1 programs 2023/09/22 22:12:29 executed programs: 0 [ 53.261579][ T1994] loop0: detected capacity change from 0 to 8192 [ 53.269696][ T1994] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.283687][ T1994] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 53.293092][ T1994] REISERFS (device loop0): using ordered data mode [ 53.299577][ T1994] reiserfs: using flush barriers [ 53.305356][ T1994] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.321961][ T1994] REISERFS (device loop0): checking transaction log (loop0) [ 53.349247][ T1994] REISERFS (device loop0): Using r5 hash to sort names [ 53.403638][ T1998] loop0: detected capacity change from 0 to 8192 [ 53.411287][ T1998] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.424422][ T1998] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 53.433688][ T1998] REISERFS (device loop0): using ordered data mode [ 53.440290][ T1998] reiserfs: using flush barriers [ 53.446535][ T1998] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.463438][ T1998] REISERFS (device loop0): checking transaction log (loop0) [ 53.492289][ T1998] REISERFS (device loop0): Using r5 hash to sort names [ 53.563964][ T2001] loop0: detected capacity change from 0 to 8192 [ 53.572428][ T2001] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.585485][ T2001] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 53.594787][ T2001] REISERFS (device loop0): using ordered data mode [ 53.601292][ T2001] reiserfs: using flush barriers 2023/09/22 22:12:34 executed programs: 3 [ 53.607120][ T2001] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.623600][ T2001] REISERFS (device loop0): checking transaction log (loop0) [ 53.652696][ T2001] REISERFS (device loop0): Using r5 hash to sort names [ 53.719271][ T2004] loop0: detected capacity change from 0 to 8192 [ 53.726906][ T2004] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.740350][ T2004] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 53.750289][ T2004] REISERFS (device loop0): using ordered data mode [ 53.757123][ T2004] reiserfs: using flush barriers [ 53.762827][ T2004] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.779209][ T2004] REISERFS (device loop0): checking transaction log (loop0) [ 53.807083][ T2004] REISERFS (device loop0): Using r5 hash to sort names [ 53.873825][ T2007] loop0: detected capacity change from 0 to 8192 [ 53.881589][ T2007] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 53.894667][ T2007] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 53.903908][ T2007] REISERFS (device loop0): using ordered data mode [ 53.910515][ T2007] reiserfs: using flush barriers [ 53.916186][ T2007] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 53.932569][ T2007] REISERFS (device loop0): checking transaction log (loop0) [ 53.963027][ T2007] REISERFS (device loop0): Using r5 hash to sort names [ 54.029261][ T2010] loop0: detected capacity change from 0 to 8192 [ 54.037699][ T2010] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.050785][ T2010] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 54.060013][ T2010] REISERFS (device loop0): using ordered data mode [ 54.066646][ T2010] reiserfs: using flush barriers [ 54.072375][ T2010] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.089704][ T2010] REISERFS (device loop0): checking transaction log (loop0) [ 54.119028][ T2010] REISERFS (device loop0): Using r5 hash to sort names [ 54.174464][ T2013] loop0: detected capacity change from 0 to 8192 [ 54.182581][ T2013] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.195789][ T2013] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 54.205137][ T2013] REISERFS (device loop0): using ordered data mode [ 54.211651][ T2013] reiserfs: using flush barriers [ 54.217509][ T2013] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.234146][ T2013] REISERFS (device loop0): checking transaction log (loop0) [ 54.262734][ T2013] REISERFS (device loop0): Using r5 hash to sort names [ 54.323310][ T2016] loop0: detected capacity change from 0 to 8192 [ 54.330906][ T2016] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.344685][ T2016] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 54.354131][ T2016] REISERFS (device loop0): using ordered data mode [ 54.360661][ T2016] reiserfs: using flush barriers [ 54.366354][ T2016] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.382692][ T2016] REISERFS (device loop0): checking transaction log (loop0) [ 54.410523][ T2016] REISERFS (device loop0): Using r5 hash to sort names [ 54.469583][ T2019] loop0: detected capacity change from 0 to 8192 [ 54.477290][ T2019] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.490682][ T2019] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 54.500366][ T2019] REISERFS (device loop0): using ordered data mode [ 54.507134][ T2019] reiserfs: using flush barriers [ 54.512778][ T2019] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.529237][ T2019] REISERFS (device loop0): checking transaction log (loop0) [ 54.558088][ T2019] REISERFS (device loop0): Using r5 hash to sort names [ 54.623482][ T2022] loop0: detected capacity change from 0 to 8192 [ 54.630916][ T2022] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.644288][ T2022] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 54.653460][ T2022] REISERFS (device loop0): using ordered data mode [ 54.659945][ T2022] reiserfs: using flush barriers [ 54.665547][ T2022] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.682022][ T2022] REISERFS (device loop0): checking transaction log (loop0) [ 54.710479][ T2022] REISERFS (device loop0): Using r5 hash to sort names [ 54.732104][ T2022] ================================================================== [ 54.740268][ T2022] BUG: KASAN: use-after-free in reiserfs_readdir_inode+0x5a0/0x1490 [ 54.748229][ T2022] Read of size 8 at addr ffff88806b512000 by task syz-executor.0/2022 [ 54.756363][ T2022] [ 54.758669][ T2022] CPU: 1 PID: 2022 Comm: syz-executor.0 Not tainted 6.1.54-syzkaller #0 [ 54.766966][ T2022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 54.777168][ T2022] Call Trace: [ 54.781118][ T2022] [ 54.784024][ T2022] dump_stack_lvl+0xf4/0x251 [ 54.788588][ T2022] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 54.794017][ T2022] ? panic+0x3f7/0x3f7 [ 54.798070][ T2022] ? vprintk_emit+0x115/0x1e0 [ 54.802723][ T2022] ? _printk+0xca/0x10a [ 54.806867][ T2022] print_report+0x15f/0x4f0 [ 54.811346][ T2022] ? reiserfs_readdir_inode+0x5a0/0x1490 [ 54.816961][ T2022] kasan_report+0x136/0x160 [ 54.821440][ T2022] ? reiserfs_readdir_inode+0x5a0/0x1490 [ 54.827058][ T2022] kasan_check_range+0x27f/0x290 [ 54.831966][ T2022] reiserfs_readdir_inode+0x5a0/0x1490 [ 54.837394][ T2022] ? reiserfs_dir_fsync+0xe0/0xe0 [ 54.842389][ T2022] ? __fdget_pos+0x204/0x2b0 [ 54.846961][ T2022] ? down_read_interruptible+0x1010/0x1010 [ 54.852749][ T2022] ? common_file_perm+0x130/0x1e0 [ 54.857743][ T2022] ? fsnotify_perm+0x29e/0x450 [ 54.862476][ T2022] ? reiserfs_sync_file+0x1f0/0x1f0 [ 54.867642][ T2022] iterate_dir+0x1fa/0x4f0 [ 54.872115][ T2022] __se_sys_getdents64+0x1af/0x3e0 [ 54.877194][ T2022] ? __x64_sys_getdents64+0x80/0x80 [ 54.882373][ T2022] ? filldir+0x570/0x570 [ 54.886587][ T2022] ? switch_fpu_return+0xc9/0x130 [ 54.891579][ T2022] do_syscall_64+0x3d/0x80 [ 54.895963][ T2022] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 54.901840][ T2022] RIP: 0033:0x7fb73387c959 [ 54.906223][ T2022] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 54.925799][ T2022] RSP: 002b:00007fb7346480c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 54.934181][ T2022] RAX: ffffffffffffffda RBX: 00007fb73399bf80 RCX: 00007fb73387c959 [ 54.942297][ T2022] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 54.950421][ T2022] RBP: 00007fb7338d8c88 R08: 0000000000000000 R09: 0000000000000000 [ 54.958360][ T2022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 54.966312][ T2022] R13: 0000000000000006 R14: 00007fb73399bf80 R15: 00007ffceab23c88 [ 54.974259][ T2022] [ 54.977253][ T2022] [ 54.979552][ T2022] The buggy address belongs to the physical page: [ 54.985941][ T2022] page:ffffea0001ad4480 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x6b512 [ 54.996059][ T2022] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 55.003140][ T2022] raw: 00fff00000000000 ffffea0001ad44c8 ffff8880bac3e5e0 0000000000000000 [ 55.011690][ T2022] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000 [ 55.020327][ T2022] page dumped because: kasan: bad access detected [ 55.026705][ T2022] page_owner tracks the page as freed [ 55.032042][ T2022] page last allocated via order 0, migratetype Movable, gfp_mask 0x140cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP), pid 1995, tgid 1995 (udevd), ts 54732196827, free_ts 54733090645 [ 55.049105][ T2022] post_alloc_hook+0x286/0x2b0 [ 55.053839][ T2022] get_page_from_freelist+0x3100/0x32a0 [ 55.059356][ T2022] __alloc_pages+0x251/0x640 [ 55.063915][ T2022] __folio_alloc+0xf/0x30 [ 55.068211][ T2022] vma_alloc_folio+0x484/0x9e0 [ 55.072957][ T2022] shmem_alloc_and_acct_folio+0x44a/0xaf0 [ 55.078642][ T2022] shmem_get_folio_gfp+0x1197/0x25e0 [ 55.083980][ T2022] shmem_write_begin+0x159/0x400 [ 55.088883][ T2022] generic_perform_write+0x2f1/0x530 [ 55.094152][ T2022] __generic_file_write_iter+0x13e/0x2f0 [ 55.099752][ T2022] generic_file_write_iter+0x99/0x230 [ 55.105092][ T2022] vfs_write+0x9c2/0xcf0 [ 55.109306][ T2022] ksys_write+0x15f/0x240 [ 55.113610][ T2022] do_syscall_64+0x3d/0x80 [ 55.118005][ T2022] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 55.123870][ T2022] page last free stack trace: [ 55.128511][ T2022] free_unref_page_prepare+0xd4b/0xee0 [ 55.133935][ T2022] free_unref_page_list+0xf6/0x6d0 [ 55.139012][ T2022] release_pages+0x175c/0x1900 [ 55.143750][ T2022] __pagevec_release+0x62/0xd0 [ 55.148503][ T2022] shmem_undo_range+0x677/0x1890 [ 55.153409][ T2022] shmem_evict_inode+0x354/0x860 [ 55.158315][ T2022] evict+0x263/0x630 [ 55.162182][ T2022] __dentry_kill+0x380/0x5d0 [ 55.166741][ T2022] dentry_kill+0xbb/0x1e0 [ 55.171122][ T2022] dput+0x116/0x270 [ 55.174981][ T2022] do_renameat2+0x9ce/0x1140 [ 55.179542][ T2022] __x64_sys_rename+0x7d/0x90 [ 55.184193][ T2022] do_syscall_64+0x3d/0x80 [ 55.188577][ T2022] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 55.194438][ T2022] [ 55.196742][ T2022] Memory state around the buggy address: [ 55.202340][ T2022] ffff88806b511f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.210375][ T2022] ffff88806b511f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.218403][ T2022] >ffff88806b512000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 55.226431][ T2022] ^ [ 55.230467][ T2022] ffff88806b512080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 55.238494][ T2022] ffff88806b512100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 55.246610][ T2022] ================================================================== [ 55.255206][ T2022] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 55.262747][ T2022] Kernel Offset: disabled [ 55.267051][ T2022] Rebooting in 86400 seconds..