./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3956681807 <...> Warning: Permanently added '10.128.0.186' (ED25519) to the list of known hosts. execve("./syz-executor3956681807", ["./syz-executor3956681807"], 0x7fffd1f9fe80 /* 10 vars */) = 0 brk(NULL) = 0x555555946000 brk(0x555555946d00) = 0x555555946d00 arch_prctl(ARCH_SET_FS, 0x555555946380) = 0 set_tid_address(0x555555946650) = 5062 set_robust_list(0x555555946660, 24) = 0 rseq(0x555555946ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3956681807", 4096) = 28 getrandom("\xf2\x32\xb7\x9e\x9b\xa6\xbd\x8c", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555946d00 brk(0x555555967d00) = 0x555555967d00 brk(0x555555968000) = 0x555555968000 mprotect(0x7fe19c8da000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe194429000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 munmap(0x7fe194429000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./bus", 0777) = 0 [ 74.453498][ T5062] loop0: detected capacity change from 0 to 8192 [ 74.477296][ T5062] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 74.490864][ T5062] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 74.500390][ T5062] REISERFS (device loop0): using ordered data mode [ 74.507021][ T5062] reiserfs: using flush barriers [ 74.514220][ T5062] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 74.530994][ T5062] REISERFS (device loop0): checking transaction log (loop0) [ 74.541455][ T5062] REISERFS (device loop0): Using r5 hash to sort names mount("/dev/loop0", "./bus", "reiserfs", MS_NOSUID|MS_DIRSYNC|MS_NODIRATIME|MS_REC|MS_STRICTATIME, "") = 0 openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 chdir("./bus") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 open("./file0", O_RDONLY|O_CREAT, 000) = 4 openat(AT_FDCWD, "blkio.bfq.time", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5 ftruncate(5, 3676) = 0 exit_group(0) = ? [ 74.548657][ T5062] REISERFS (device loop0): using 3.5.x disk format [ 74.556309][ T5062] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 74.570283][ T5062] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 74.637736][ T5062] ------------[ cut here ]------------ [ 74.644615][ T5062] kernel BUG at fs/reiserfs/item_ops.c:569! [ 74.651078][ T5062] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 74.657157][ T5062] CPU: 1 PID: 5062 Comm: syz-executor395 Not tainted 6.6.0-syzkaller-15365-g305230142ae0 #0 [ 74.667315][ T5062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 74.677555][ T5062] RIP: 0010:direntry_check_right+0x26b/0x280 [ 74.683569][ T5062] Code: df e9 38 ff ff ff 89 d9 80 e1 07 38 c1 0f 8c 3e ff ff ff be 04 00 00 00 48 89 df e8 7f 36 af ff e9 2c ff ff ff e8 d5 13 53 ff <0f> 0b e8 ce 13 53 ff 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 f3 [ 74.703274][ T5062] RSP: 0018:ffffc90003afeed0 EFLAGS: 00010293 [ 74.709347][ T5062] RAX: ffffffff823ba82b RBX: 0000000000000020 RCX: ffff888079929dc0 [ 74.717322][ T5062] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000041 [ 74.725296][ T5062] RBP: 0000000000000021 R08: ffffffff823ba69e R09: ffffffff8235650d [ 74.733266][ T5062] R10: 0000000000000004 R11: ffff888079929dc0 R12: 00000000fffffffe [ 74.741235][ T5062] R13: 0000000000000000 R14: 0000000000000002 R15: ffff8880549c4120 [ 74.749214][ T5062] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 74.758140][ T5062] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.764717][ T5062] CR2: 00007f3e01595ed8 CR3: 0000000028720000 CR4: 00000000003506f0 [ 74.772686][ T5062] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.781519][ T5062] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.789488][ T5062] Call Trace: [ 74.792784][ T5062] [ 74.795728][ T5062] ? __die_body+0x8b/0xe0 [ 74.800063][ T5062] ? die+0xa1/0xd0 [ 74.803781][ T5062] ? do_trap+0x153/0x380 [ 74.808027][ T5062] ? direntry_check_right+0x26b/0x280 [ 74.813398][ T5062] ? do_error_trap+0x1dc/0x2c0 [ 74.818268][ T5062] ? direntry_check_right+0x26b/0x280 [ 74.823641][ T5062] ? do_int3+0x50/0x50 [ 74.827718][ T5062] ? handle_invalid_op+0x34/0x40 [ 74.832655][ T5062] ? direntry_check_right+0x26b/0x280 [ 74.838025][ T5062] ? exc_invalid_op+0x33/0x50 [ 74.842710][ T5062] ? asm_exc_invalid_op+0x1a/0x20 [ 74.847736][ T5062] ? create_virtual_node+0x146d/0x1bf0 [ 74.853190][ T5062] ? direntry_check_right+0xde/0x280 [ 74.858471][ T5062] ? direntry_check_right+0x26b/0x280 [ 74.863839][ T5062] ? direntry_check_right+0x26b/0x280 [ 74.869214][ T5062] check_right+0x4d1/0x770 [ 74.873634][ T5062] fix_nodes+0x3ff3/0x8ce0 [ 74.878053][ T5062] ? mutex_lock_nested+0x20/0x20 [ 74.883009][ T5062] ? reiserfs_restore_prepared_buffer+0x2e2/0x300 [ 74.889451][ T5062] ? make_empty_dir_item+0x7f0/0x7f0 [ 74.894740][ T5062] ? reiserfs_delete_item+0x1040/0x1040 [ 74.900317][ T5062] reiserfs_cut_from_item+0x466/0x2580 [ 74.905788][ T5062] ? reiserfs_do_truncate+0x14c0/0x14c0 [ 74.911335][ T5062] ? search_by_key+0x45b7/0x4950 [ 74.916307][ T5062] ? search_by_key+0x4950/0x4950 [ 74.921252][ T5062] ? make_cpu_key+0x2f/0x230 [ 74.925839][ T5062] ? sd_print_vi+0xc0/0xc0 [ 74.930259][ T5062] reiserfs_do_truncate+0x9b9/0x14c0 [ 74.935554][ T5062] ? reiserfs_delete_object+0x1a0/0x1a0 [ 74.941119][ T5062] ? folio_test_uptodate+0x180/0x180 [ 74.946409][ T5062] ? journal_begin+0x1f3/0x360 [ 74.951176][ T5062] reiserfs_truncate_file+0x4da/0x820 [ 74.956548][ T5062] ? reiserfs_new_symlink+0x770/0x770 [ 74.961919][ T5062] ? journal_end+0x209/0x2c0 [ 74.966512][ T5062] reiserfs_file_release+0x8ca/0xaa0 [ 74.971804][ T5062] ? reiserfs_file_open+0x120/0x120 [ 74.977007][ T5062] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 74.982985][ T5062] ? reiserfs_file_open+0x120/0x120 [ 74.988186][ T5062] __fput+0x3cc/0xa10 [ 74.992178][ T5062] task_work_run+0x24a/0x300 [ 74.996780][ T5062] ? task_work_cancel+0x2b0/0x2b0 [ 75.001809][ T5062] ? switch_task_namespaces+0xe1/0x110 [ 75.007269][ T5062] do_exit+0xa34/0x2750 [ 75.011450][ T5062] ? put_task_struct+0xb0/0xb0 [ 75.016217][ T5062] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 75.022200][ T5062] ? print_irqtrace_events+0x220/0x220 [ 75.027670][ T5062] ? _raw_spin_unlock_irq+0x23/0x50 [ 75.032910][ T5062] ? lockdep_hardirqs_on+0x98/0x140 [ 75.038128][ T5062] do_group_exit+0x206/0x2c0 [ 75.042725][ T5062] __x64_sys_exit_group+0x3f/0x40 [ 75.047751][ T5062] do_syscall_64+0x44/0x110 [ 75.052255][ T5062] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 75.058162][ T5062] RIP: 0033:0x7fe19c8650b9 [ 75.062584][ T5062] Code: Unable to access opcode bytes at 0x7fe19c86508f. [ 75.069601][ T5062] RSP: 002b:00007ffdbbdc7968 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 75.078020][ T5062] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe19c8650b9 [ 75.086077][ T5062] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 75.096934][ T5062] RBP: 00007fe19c8e0370 R08: ffffffffffffffb8 R09: 00007ffdbbdc7b88 [ 75.104936][ T5062] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe19c8e0370 [ 75.113089][ T5062] R13: 0000000000000000 R14: 00007fe19c8e10e0 R15: 00007fe19c833980 [ 75.121100][ T5062] [ 75.124116][ T5062] Modules linked in: [ 75.128209][ T5062] ---[ end trace 0000000000000000 ]--- [ 75.133709][ T5062] RIP: 0010:direntry_check_right+0x26b/0x280 [ 75.140308][ T5062] Code: df e9 38 ff ff ff 89 d9 80 e1 07 38 c1 0f 8c 3e ff ff ff be 04 00 00 00 48 89 df e8 7f 36 af ff e9 2c ff ff ff e8 d5 13 53 ff <0f> 0b e8 ce 13 53 ff 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 f3 [ 75.160066][ T5062] RSP: 0018:ffffc90003afeed0 EFLAGS: 00010293 [ 75.166169][ T5062] RAX: ffffffff823ba82b RBX: 0000000000000020 RCX: ffff888079929dc0 [ 75.174192][ T5062] RDX: 0000000000000000 RSI: 0000000000000020 RDI: 0000000000000041 [ 75.182199][ T5062] RBP: 0000000000000021 R08: ffffffff823ba69e R09: ffffffff8235650d [ 75.190538][ T5062] R10: 0000000000000004 R11: ffff888079929dc0 R12: 00000000fffffffe [ 75.198643][ T5062] R13: 0000000000000000 R14: 0000000000000002 R15: ffff8880549c4120 [ 75.206793][ T5062] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 75.215885][ T5062] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 75.222536][ T5062] CR2: 00007f3e01595ed8 CR3: 0000000028720000 CR4: 00000000003506f0 [ 75.230546][ T5062] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 75.238580][ T5062] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 75.246551][ T5062] Kernel panic - not syncing: Fatal exception [ 75.252893][ T5062] Kernel Offset: disabled [ 75.257213][ T5062] Rebooting in 86400 seconds..