Warning: Permanently added '10.128.1.32' (ED25519) to the list of known hosts. 2024/06/01 23:05:04 ignoring optional flag "sandboxArg"="0" 2024/06/01 23:05:04 parsed 1 programs 2024/06/01 23:05:04 executed programs: 0 [ 74.840480][ T1930] loop0: detected capacity change from 0 to 8192 [ 74.849042][ T1930] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 74.858751][ T1930] REISERFS (device loop0): using ordered data mode [ 74.865230][ T1930] reiserfs: using flush barriers [ 74.870986][ T1930] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 74.887316][ T1930] REISERFS (device loop0): checking transaction log (loop0) [ 74.908517][ T1930] REISERFS (device loop0): Using r5 hash to sort names [ 74.919097][ T1930] ================================================================== [ 74.927337][ T1930] BUG: KASAN: out-of-bounds in reiserfs_readdir_inode+0xa13/0x1330 [ 74.935227][ T1930] Read of size 8 at addr ffff88806a677000 by task syz-executor.0/1930 [ 74.943353][ T1930] [ 74.945676][ T1930] CPU: 1 PID: 1930 Comm: syz-executor.0 Not tainted 5.15.160-syzkaller #0 [ 74.954137][ T1930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 74.964344][ T1930] Call Trace: [ 74.967597][ T1930] [ 74.970502][ T1930] dump_stack_lvl+0x41/0x5e [ 74.975099][ T1930] print_address_description.constprop.0.cold+0x6c/0x309 [ 74.982320][ T1930] ? reiserfs_readdir_inode+0xa13/0x1330 [ 74.988042][ T1930] ? reiserfs_readdir_inode+0xa13/0x1330 [ 74.993660][ T1930] kasan_report.cold+0x83/0xdf [ 74.998411][ T1930] ? reiserfs_readdir_inode+0xa13/0x1330 [ 75.004090][ T1930] kasan_check_range+0x13d/0x180 [ 75.009003][ T1930] reiserfs_readdir_inode+0xa13/0x1330 [ 75.014534][ T1930] ? do_raw_spin_unlock+0x171/0x230 [ 75.019811][ T1930] ? reiserfs_dir_fsync+0x140/0x140 [ 75.024989][ T1930] ? lock_downgrade+0x4f0/0x4f0 [ 75.029805][ T1930] ? lock_acquire+0x11a/0x250 [ 75.034455][ T1930] ? aa_file_perm+0xea/0xd00 [ 75.039010][ T1930] ? aa_file_perm+0xea/0xd00 [ 75.043686][ T1930] ? __lock_acquire.constprop.0+0x478/0xb30 [ 75.049555][ T1930] ? aa_path_link+0x2e0/0x2e0 [ 75.054292][ T1930] ? down_read_killable+0x1be/0x380 [ 75.059468][ T1930] ? down_read+0x320/0x320 [ 75.064026][ T1930] ? fsnotify_perm.part.0+0x115/0x4c0 [ 75.069545][ T1930] iterate_dir+0x487/0x6d0 [ 75.074049][ T1930] __x64_sys_getdents64+0x122/0x220 [ 75.079427][ T1930] ? __ia32_sys_getdents+0x220/0x220 [ 75.084686][ T1930] ? compat_fillonedir+0x300/0x300 [ 75.089950][ T1930] ? vtime_user_exit+0xde/0x180 [ 75.094950][ T1930] do_syscall_64+0x33/0x80 [ 75.099562][ T1930] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 75.105477][ T1930] RIP: 0033:0x7f5503e53959 [ 75.109868][ T1930] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 75.129553][ T1930] RSP: 002b:00007f55039d60c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9 [ 75.137942][ T1930] RAX: ffffffffffffffda RBX: 00007f5503f72f80 RCX: 00007f5503e53959 [ 75.145894][ T1930] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 75.153844][ T1930] RBP: 00007f5503eafc88 R08: 0000000000000000 R09: 0000000000000000 [ 75.161882][ T1930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 75.169870][ T1930] R13: 0000000000000006 R14: 00007f5503f72f80 R15: 00007ffcc12fe088 [ 75.177834][ T1930] [ 75.180870][ T1930] [ 75.183271][ T1930] The buggy address belongs to the page: [ 75.188961][ T1930] page:ffffea0001a99dc0 refcount:1 mapcount:1 mapping:0000000000000000 index:0x7fffffff6 pfn:0x6a677 [ 75.199880][ T1930] memcg:ffff888008620000 [ 75.204094][ T1930] anon flags: 0xfff00000080014(uptodate|lru|swapbacked|node=0|zone=1|lastcpupid=0x7ff) [ 75.213796][ T1930] raw: 00fff00000080014 ffffea0001afb108 ffffea0001a99e08 ffff88800fd94cc1 [ 75.222365][ T1930] raw: 00000007fffffff6 0000000000000000 0000000100000000 ffff888008620000 [ 75.230920][ T1930] page dumped because: kasan: bad access detected [ 75.237875][ T1930] page_owner tracks the page as allocated [ 75.243574][ T1930] page last allocated via order 0, migratetype Movable, gfp_mask 0x1100dca(GFP_HIGHUSER_MOVABLE|__GFP_ZERO), pid 1931, ts 74919794700, free_ts 4997063810 [ 75.259545][ T1930] get_page_from_freelist+0x12d1/0x2d40 [ 75.265070][ T1930] __alloc_pages+0x1b2/0x440 [ 75.269642][ T1930] alloc_pages_vma+0xe0/0x650 [ 75.274300][ T1930] __handle_mm_fault+0x1ce9/0x33c0 [ 75.279471][ T1930] handle_mm_fault+0x1c5/0x5b0 [ 75.284204][ T1930] do_user_addr_fault+0x298/0xcb0 [ 75.289194][ T1930] exc_page_fault+0x5a/0xb0 [ 75.293671][ T1930] asm_exc_page_fault+0x22/0x30 [ 75.298650][ T1930] page last free stack trace: [ 75.303298][ T1930] free_pcp_prepare+0x379/0x850 [ 75.308342][ T1930] free_unref_page+0x19/0x4b0 [ 75.313098][ T1930] free_contig_range+0x8b/0xb0 [ 75.317838][ T1930] destroy_args+0x7e/0x503 [ 75.322244][ T1930] debug_vm_pgtable+0x1770/0x17f2 [ 75.327329][ T1930] do_one_initcall+0xb4/0x320 [ 75.331969][ T1930] kernel_init_freeable+0x51e/0x580 [ 75.337135][ T1930] kernel_init+0x14/0x120 [ 75.341441][ T1930] ret_from_fork+0x1f/0x30 [ 75.345910][ T1930] [ 75.348211][ T1930] Memory state around the buggy address: [ 75.353802][ T1930] ffff88806a676f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.361937][ T1930] ffff88806a676f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.370054][ T1930] >ffff88806a677000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.378082][ T1930] ^ [ 75.382220][ T1930] ffff88806a677080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.390245][ T1930] ffff88806a677100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 75.398269][ T1930] ================================================================== [ 75.406322][ T1930] Disabling lock debugging due to kernel taint [ 75.412551][ T1930] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 75.419935][ T1930] Kernel Offset: disabled [ 75.424244][ T1930] Rebooting in 86400 seconds..