Warning: Permanently added '10.128.1.239' (ED25519) to the list of known hosts. 2024/07/17 04:52:17 ignoring optional flag "sandboxArg"="0" 2024/07/17 04:52:17 parsed 1 programs 2024/07/17 04:52:17 executed programs: 0 [ 50.081845][ T1496] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 54.923850][ T1912] loop0: detected capacity change from 0 to 8192 [ 54.932143][ T1912] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 54.945917][ T1912] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 54.955436][ T1912] REISERFS (device loop0): using ordered data mode [ 54.962127][ T1912] reiserfs: using flush barriers [ 54.967757][ T1912] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 54.984925][ T1912] REISERFS (device loop0): checking transaction log (loop0) [ 55.014581][ T1912] REISERFS (device loop0): Using rupasov hash to sort names [ 55.022237][ T1912] ================================================================== [ 55.030290][ T1912] BUG: KASAN: out-of-bounds in leaf_paste_entries+0x483/0x1320 [ 55.037824][ T1912] Read of size 18446744073709551584 at addr ffff88806b35bfa4 by task syz-executor.0/1912 [ 55.047711][ T1912] [ 55.050046][ T1912] CPU: 1 PID: 1912 Comm: syz-executor.0 Not tainted 6.1.99-syzkaller #0 [ 55.058347][ T1912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 55.068391][ T1912] Call Trace: [ 55.071674][ T1912] [ 55.074609][ T1912] dump_stack_lvl+0xf4/0x251 [ 55.079356][ T1912] ? nf_tcp_handle_invalid+0x2f3/0x2f3 [ 55.085061][ T1912] ? panic+0x3fe/0x3fe [ 55.089148][ T1912] ? lock_acquire+0xbe/0x390 [ 55.093808][ T1912] ? read_lock_is_recursive+0x10/0x10 [ 55.099173][ T1912] ? __virt_addr_valid+0x139/0x260 [ 55.104460][ T1912] ? __virt_addr_valid+0x211/0x260 [ 55.109545][ T1912] print_report+0x15f/0x4f0 [ 55.114048][ T1912] ? __virt_addr_valid+0x139/0x260 [ 55.119492][ T1912] ? __virt_addr_valid+0x211/0x260 [ 55.124576][ T1912] ? leaf_paste_entries+0x483/0x1320 [ 55.129850][ T1912] kasan_report+0x136/0x160 [ 55.134613][ T1912] ? leaf_paste_entries+0x483/0x1320 [ 55.140065][ T1912] ? leaf_paste_entries+0x483/0x1320 [ 55.145405][ T1912] kasan_check_range+0x27f/0x290 [ 55.150332][ T1912] ? leaf_paste_entries+0x483/0x1320 [ 55.155602][ T1912] memmove+0x25/0x60 [ 55.159478][ T1912] leaf_paste_entries+0x483/0x1320 [ 55.164561][ T1912] ? leaf_paste_in_buffer+0x5e2/0xa30 [ 55.170097][ T1912] do_balance+0x6fe1/0xe950 [ 55.174867][ T1912] ? stack_trace_save+0x113/0x1c0 [ 55.180091][ T1912] ? __stack_depot_save+0x346/0x460 [ 55.185279][ T1912] ? __kasan_kmalloc+0x97/0xb0 [ 55.190110][ T1912] ? __kmalloc+0xa6/0x1c0 [ 55.194512][ T1912] ? fix_nodes+0x6c3/0xda60 [ 55.199072][ T1912] ? reiserfs_paste_into_item+0x569/0x740 [ 55.204766][ T1912] ? reiserfs_add_entry+0x7cf/0xbd0 [ 55.210032][ T1912] ? reiserfs_mkdir+0x657/0x870 [ 55.214939][ T1912] ? reiserfs_fill_super+0x1b96/0x2070 [ 55.220406][ T1912] ? mount_bdev+0x26b/0x340 [ 55.225053][ T1912] ? legacy_get_tree+0xe5/0x170 [ 55.229874][ T1912] ? vfs_get_tree+0x7a/0x170 [ 55.234432][ T1912] ? do_new_mount+0x21a/0x910 [ 55.239090][ T1912] ? __se_sys_mount+0x23e/0x2d0 [ 55.244100][ T1912] ? do_syscall_64+0x3b/0x80 [ 55.248812][ T1912] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 55.254864][ T1912] ? get_right_neighbor_position+0x120/0x120 [ 55.260822][ T1912] ? __wake_up+0x1c0/0x1c0 [ 55.265230][ T1912] ? unfix_nodes+0x830/0x830 [ 55.269806][ T1912] ? fix_nodes+0x6c3/0xda60 [ 55.274282][ T1912] ? reiserfs_prepare_for_journal+0x166/0x180 [ 55.280409][ T1912] ? fix_nodes+0xcf78/0xda60 [ 55.284978][ T1912] ? make_empty_dir_item+0x740/0x740 [ 55.290230][ T1912] ? reiserfs_paste_into_item+0x36c/0x740 [ 55.296029][ T1912] reiserfs_paste_into_item+0x66e/0x740 [ 55.301656][ T1912] ? reiserfs_cut_from_item+0x1e90/0x1e90 [ 55.307434][ T1912] ? reiserfs_get_parent+0x270/0x270 [ 55.312715][ T1912] ? inode2sd+0x333/0x9a0 [ 55.317012][ T1912] reiserfs_add_entry+0x7cf/0xbd0 [ 55.322007][ T1912] ? drop_new_inode+0x50/0x50 [ 55.326652][ T1912] ? do_journal_begin_r+0xba9/0xdd0 [ 55.331824][ T1912] ? journal_begin+0x13b/0x2f0 [ 55.336558][ T1912] reiserfs_mkdir+0x657/0x870 [ 55.341271][ T1912] ? reiserfs_symlink+0x6b0/0x6b0 [ 55.346275][ T1912] ? __down_write_common+0x12a/0x1e0 [ 55.351528][ T1912] ? up_write+0x137/0x300 [ 55.355823][ T1912] ? __up_read+0x360/0x360 [ 55.360207][ T1912] reiserfs_xattr_init+0x286/0x5f0 [ 55.365440][ T1912] reiserfs_fill_super+0x1b96/0x2070 [ 55.370716][ T1912] ? reiserfs_kill_sb+0x140/0x140 [ 55.375806][ T1912] ? __down_write_common+0x12a/0x1e0 [ 55.381165][ T1912] ? snprintf+0xcc/0x110 [ 55.385380][ T1912] ? __up_read+0x360/0x360 [ 55.389856][ T1912] mount_bdev+0x26b/0x340 [ 55.394161][ T1912] ? reiserfs_kill_sb+0x140/0x140 [ 55.399155][ T1912] legacy_get_tree+0xe5/0x170 [ 55.403818][ T1912] ? remove_save_link+0x4e0/0x4e0 [ 55.408812][ T1912] vfs_get_tree+0x7a/0x170 [ 55.413212][ T1912] do_new_mount+0x21a/0x910 [ 55.417686][ T1912] ? do_move_mount_old+0x120/0x120 [ 55.422855][ T1912] __se_sys_mount+0x23e/0x2d0 [ 55.427616][ T1912] ? __x64_sys_mount+0xc0/0xc0 [ 55.432348][ T1912] ? fpregs_assert_state_consistent+0x43/0x50 [ 55.438385][ T1912] do_syscall_64+0x3b/0x80 [ 55.442772][ T1912] ? clear_bhb_loop+0x45/0xa0 [ 55.447414][ T1912] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 55.453289][ T1912] RIP: 0033:0x7f8f4387f4aa [ 55.457688][ T1912] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 55.477265][ T1912] RSP: 002b:00007f8f44685ef8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 55.485741][ T1912] RAX: ffffffffffffffda RBX: 00007f8f44685f80 RCX: 00007f8f4387f4aa [ 55.493694][ T1912] RDX: 0000000020001100 RSI: 0000000020001140 RDI: 00007f8f44685f40 [ 55.501636][ T1912] RBP: 0000000020001100 R08: 00007f8f44685f80 R09: 0000000000200808 [ 55.509667][ T1912] R10: 0000000000200808 R11: 0000000000000246 R12: 0000000020001140 [ 55.517609][ T1912] R13: 00007f8f44685f40 R14: 00000000000010eb R15: 0000000020000180 [ 55.525554][ T1912] [ 55.528577][ T1912] [ 55.530907][ T1912] The buggy address belongs to the physical page: [ 55.537396][ T1912] page:ffffea0001acd6c0 refcount:3 mapcount:0 mapping:ffff8880090412f0 index:0x213 pfn:0x6b35b [ 55.547803][ T1912] memcg:ffff88807a3d0000 [ 55.552014][ T1912] aops:def_blk_aops ino:700000 [ 55.556840][ T1912] flags: 0xfff18000002042(referenced|workingset|private|node=0|zone=1|lastcpupid=0x7ff) [ 55.567076][ T1912] raw: 00fff18000002042 0000000000000000 dead000000000122 ffff8880090412f0 [ 55.575808][ T1912] raw: 0000000000000213 ffff88806f4d5ae0 00000003ffffffff ffff88807a3d0000 [ 55.584362][ T1912] page dumped because: kasan: bad access detected [ 55.590777][ T1912] page_owner tracks the page as allocated [ 55.596474][ T1912] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 1912, tgid 1911 (syz-executor.0), ts 55014384654, free_ts 5957615251 [ 55.616927][ T1912] post_alloc_hook+0x286/0x2b0 [ 55.621789][ T1912] get_page_from_freelist+0x2fe5/0x3170 [ 55.627306][ T1912] __alloc_pages+0x251/0x640 [ 55.631874][ T1912] folio_alloc+0xf/0x30 [ 55.636000][ T1912] filemap_alloc_folio+0xc2/0x390 [ 55.640994][ T1912] __filemap_get_folio+0x6ca/0x970 [ 55.646074][ T1912] pagecache_get_page+0x10/0x160 [ 55.650988][ T1912] __getblk_gfp+0x1b5/0x810 [ 55.655459][ T1912] search_by_key+0x3bd/0x3d90 [ 55.660117][ T1912] reiserfs_read_locked_inode+0x211/0x2290 [ 55.665909][ T1912] reiserfs_fill_super+0xfed/0x2070 [ 55.671090][ T1912] mount_bdev+0x26b/0x340 [ 55.675399][ T1912] legacy_get_tree+0xe5/0x170 [ 55.680048][ T1912] vfs_get_tree+0x7a/0x170 [ 55.684435][ T1912] do_new_mount+0x21a/0x910 [ 55.688905][ T1912] __se_sys_mount+0x23e/0x2d0 [ 55.693560][ T1912] page last free stack trace: [ 55.698294][ T1912] free_unref_page_prepare+0xd6c/0xf00 [ 55.703729][ T1912] free_unref_page+0x33/0x390 [ 55.708374][ T1912] free_contig_range+0x8d/0x130 [ 55.713224][ T1912] destroy_args+0xde/0x79f [ 55.717619][ T1912] debug_vm_pgtable+0x373/0x5ad [ 55.722439][ T1912] do_one_initcall+0x19f/0x4c0 [ 55.727172][ T1912] do_initcall_level+0x11e/0x1cd [ 55.732075][ T1912] do_initcalls+0x46/0x74 [ 55.736372][ T1912] kernel_init_freeable+0x375/0x4e4 [ 55.741626][ T1912] kernel_init+0x14/0x190 [ 55.746019][ T1912] ret_from_fork+0x1f/0x30 [ 55.750403][ T1912] [ 55.752788][ T1912] Memory state around the buggy address: [ 55.758506][ T1912] ffff88806b35be80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.766830][ T1912] ffff88806b35bf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.774990][ T1912] >ffff88806b35bf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 55.783045][ T1912] ^ [ 55.788136][ T1912] ffff88806b35c000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 55.796282][ T1912] ffff88806b35c080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 55.804338][ T1912] ================================================================== [ 55.813379][ T1912] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 55.821032][ T1912] Kernel Offset: disabled [ 55.825338][ T1912] Rebooting in 86400 seconds..