[ OK ] Started Getty on tty2. [ OK ] Started Serial Getty on ttyS0. [ OK ] Started Getty on tty1. [ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.200' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 27.252154] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 27.260689] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 27.264011] REISERFS (device loop3): using ordered data mode [ 27.269618] REISERFS (device loop5): found reiserfs format "3.6" with standard journal [ 27.276677] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 27.291173] REISERFS (device loop1): using ordered data mode [ 27.294519] reiserfs: using flush barriers [ 27.297272] REISERFS (device loop5): using ordered data mode [ 27.302158] REISERFS (device loop0): using ordered data mode [ 27.320449] reiserfs: using flush barriers [ 27.324785] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.327293] REISERFS (device loop3): checking transaction log (loop3) [ 27.346716] reiserfs: using flush barriers [ 27.352239] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 27.359219] REISERFS (device loop5): journal params: device loop5, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.376464] REISERFS (device loop4): using ordered data mode [ 27.376667] REISERFS (device loop2): found reiserfs format "3.6" with standard journal [ 27.399793] reiserfs: using flush barriers [ 27.403647] REISERFS (device loop2): using ordered data mode [ 27.406468] reiserfs: using flush barriers [ 27.420933] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.426801] reiserfs: using flush barriers [ 27.442125] REISERFS (device loop4): journal params: device loop4, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.443116] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.461790] REISERFS (device loop3): Using tea hash to sort names [ 27.483499] REISERFS (device loop0): checking transaction log (loop0) [ 27.492316] REISERFS (device loop4): checking transaction log (loop4) [ 27.495141] REISERFS (device loop5): checking transaction log (loop5) [ 27.500616] REISERFS warning (device loop3): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 27.525246] REISERFS (device loop0): Using tea hash to sort names [ 27.531655] REISERFS (device loop2): journal params: device loop2, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 executing program [ 27.532104] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 27.549971] REISERFS (device loop5): Using tea hash to sort names [ 27.567883] REISERFS (device loop4): Using tea hash to sort names [ 27.579608] REISERFS warning (device loop4): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. executing program executing program executing program executing program [ 27.609062] REISERFS (device loop2): checking transaction log (loop2) [ 27.619966] REISERFS (device loop1): checking transaction log (loop1) [ 27.631277] REISERFS warning (device loop5): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 27.648198] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 27.670859] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 27.679105] REISERFS (device loop2): Using tea hash to sort names [ 27.686665] REISERFS (device loop1): Using tea hash to sort names [ 27.693018] REISERFS (device loop3): using ordered data mode [ 27.700186] REISERFS warning (device loop1): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. executing program executing program [ 27.715153] REISERFS warning (device loop2): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 27.728781] REISERFS (device loop0): using ordered data mode [ 27.733367] reiserfs: using flush barriers [ 27.740088] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 4294967294, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 27.752798] reiserfs: using flush barriers [ 27.761600] REISERFS (device loop3): checking transaction log (loop3) [ 27.784065] REISERFS (device loop3): Using tea hash to sort names [ 27.790556] ------------[ cut here ]------------ [ 27.795388] kernel BUG at fs/reiserfs/journal.c:3654! [ 27.802006] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 27.807373] Modules linked in: [ 27.810559] CPU: 1 PID: 7993 Comm: syz-executor281 Not tainted 4.14.275-syzkaller #0 [ 27.818452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 27.819004] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 27.827782] task: ffff8880b2924180 task.stack: ffff8880b1990000 [ 27.827793] RIP: 0010:do_journal_end+0x30ee/0x4260 [ 27.827797] RSP: 0018:ffff8880b19979f8 EFLAGS: 00010297 [ 27.827802] RAX: ffff8880b2924180 RBX: ffffc90006346000 RCX: 0000000000000000 [ 27.827805] RDX: 0000000000000000 RSI: ffff8880b1997c30 RDI: ffff8880b1997c3c [ 27.827808] RBP: ffff8880b18a09c0 R08: 0000000000000000 R09: 000000000004057e [ 27.827812] R10: ffff8880b2924a58 R11: ffff8880b2924180 R12: 0000000000000000 [ 27.827816] R13: ffffc90006346058 R14: ffffc90006346048 R15: ffff8880b1997c38 [ 27.827823] FS: 0000555556386300(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 27.835988] REISERFS (device loop4): using ordered data mode [ 27.841888] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 27.841892] CR2: 00007effe353a000 CR3: 000000009b315000 CR4: 00000000003406e0 [ 27.841900] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 27.841903] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 27.841907] Call Trace: [ 27.846867] reiserfs: using flush barriers [ 27.852155] ? do_journal_end+0x4260/0x4260 [ 27.852162] ? reiserfs_info.cold+0x1d/0x67 [ 27.852170] ? do_raw_spin_unlock+0x164/0x220 [ 27.949771] journal_end+0x259/0x300 [ 27.953466] reiserfs_fill_super+0x1cec/0x2980 [ 27.958038] ? reiserfs_remount+0x1390/0x1390 [ 27.962514] ? lock_downgrade+0x740/0x740 [ 27.966638] ? snprintf+0xa5/0xd0 [ 27.970076] mount_bdev+0x2b3/0x360 [ 27.973714] ? reiserfs_remount+0x1390/0x1390 [ 27.978181] mount_fs+0x92/0x2a0 [ 27.981521] vfs_kern_mount.part.0+0x5b/0x470 [ 27.985996] do_mount+0xe65/0x2a10 [ 27.989511] ? retint_kernel+0x2d/0x2d [ 27.993378] ? copy_mount_string+0x40/0x40 [ 27.997589] ? memset+0x20/0x40 [ 28.000842] ? copy_mount_options+0x1fa/0x2f0 [ 28.005314] ? copy_mnt_ns+0xa30/0xa30 [ 28.009180] SyS_mount+0xa8/0x120 [ 28.012606] ? copy_mnt_ns+0xa30/0xa30 [ 28.016472] do_syscall_64+0x1d5/0x640 [ 28.020336] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 28.025499] RIP: 0033:0x7fc88f08fdea [ 28.029184] RSP: 002b:00007ffc3bd7c0e8 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 28.036864] RAX: ffffffffffffffda RBX: 00007ffc3bd7c140 RCX: 00007fc88f08fdea [ 28.044108] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffc3bd7c100 [ 28.051358] RBP: 00007ffc3bd7c100 R08: 00007ffc3bd7c140 R09: 0000000000000000 [ 28.058606] R10: 0000000000000000 R11: 0000000000000286 R12: 00000000200002a8 [ 28.065936] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000007 [ 28.073192] Code: e8 38 20 ff ff e9 11 fa ff ff e8 1e 4e a2 ff 0f 0b e8 17 4e a2 ff 0f 0b e8 10 4e a2 ff 0f 0b e8 09 4e a2 ff 0f 0b e8 02 4e a2 ff <0f> 0b e8 fb 4d a2 ff 48 8d bb d0 01 00 00 48 b8 00 00 00 00 00 [ 28.092281] RIP: do_journal_end+0x30ee/0x4260 RSP: ffff8880b19979f8 [ 28.099353] ---[ end trace 2d6fee010496d2b3 ]--- [ 28.104167] Kernel panic - not syncing: Fatal exception [ 28.109578] Kernel Offset: disabled [ 28.113185] Rebooting in 86400 seconds..