Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.241' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 28.099270] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 28.108223] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 28.119069] REISERFS (device loop2): using ordered data mode [ 28.126611] REISERFS (device loop0): using ordered data mode [ 28.129258] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 28.147739] reiserfs: using flush barriers [ 28.152882] reiserfs: using flush barriers [ 28.162891] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 28.165754] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.173374] REISERFS (device loop1): using ordered data mode [ 28.186961] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.196732] REISERFS (device loop4): using ordered data mode [ 28.208746] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 28.222793] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 28.231584] REISERFS (device loop5): using ordered data mode [ 28.238270] REISERFS (device loop3): using ordered data mode [ 28.242227] reiserfs: using flush barriers [ 28.244352] reiserfs: using flush barriers [ 28.251041] reiserfs: using flush barriers [ 28.253124] REISERFS (device loop2): checking transaction log (loop2) [ 28.264161] REISERFS (device loop0): checking transaction log (loop0) [ 28.266574] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.271230] reiserfs: using flush barriers [ 28.297519] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.297763] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.381983] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.408511] REISERFS (device loop1): checking transaction log (loop1) [ 28.417938] REISERFS (device loop4): checking transaction log (loop4) [ 28.460535] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 28.477768] REISERFS (device loop3): checking transaction log (loop3) [ 28.487025] REISERFS (device loop5): checking transaction log (loop5) [ 28.495429] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 28.529501] REISERFS (device loop0): Using r5 hash to sort names [ 28.583549] REISERFS (device loop2): Using r5 hash to sort names [ 28.592300] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore executing program [ 28.634494] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore executing program [ 28.671316] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 28.675886] REISERFS (device loop5): Using r5 hash to sort names [ 28.698099] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 28.704169] REISERFS (device loop1): Using r5 hash to sort names [ 28.720544] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 28.727530] REISERFS (device loop4): Using r5 hash to sort names [ 28.733893] REISERFS (device loop0): using ordered data mode [ 28.736769] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 28.741616] reiserfs: using flush barriers [ 28.750984] REISERFS (device loop3): Using r5 hash to sort names [ 28.762837] REISERFS (device loop2): using ordered data mode [ 28.765291] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.770537] reiserfs: using flush barriers executing program executing program executing program executing program [ 28.827158] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 28.842969] REISERFS (device loop0): checking transaction log (loop0) [ 28.869016] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 28.892083] REISERFS (device loop3): using ordered data mode [ 28.892525] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 28.900124] REISERFS (device loop2): checking transaction log (loop2) [ 28.907389] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 28.922143] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 28.952112] REISERFS (device loop4): using ordered data mode [ 28.967504] reiserfs: using flush barriers [ 28.972418] REISERFS (device loop1): using ordered data mode [ 28.976255] REISERFS (device loop5): using ordered data mode [ 28.982166] reiserfs: using flush barriers [ 28.993054] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 29.013706] reiserfs: using flush barriers [ 29.018015] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 29.044394] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 29.051392] reiserfs: using flush barriers [ 29.063034] REISERFS (device loop3): checking transaction log (loop3) [ 29.078544] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.096657] REISERFS (device loop4): checking transaction log (loop4) [ 29.105708] REISERFS (device loop1): checking transaction log (loop1) [ 29.133173] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 29.137000] REISERFS (device loop0): Using r5 hash to sort names [ 29.189781] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.207387] REISERFS (device loop5): checking transaction log (loop5) [ 29.222782] REISERFS (device loop2): Using r5 hash to sort names [ 29.241285] ------------[ cut here ]------------ [ 29.246143] kernel BUG at fs/reiserfs/journal.c:3640! [ 29.270094] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 29.275455] Modules linked in: [ 29.278643] CPU: 0 PID: 8017 Comm: syz-executor512 Not tainted 4.14.236-syzkaller #0 [ 29.286513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 29.286730] init_special_inode: bogus i_mode (0) for inode loop4:2 [ 29.295849] task: ffff8880b00a6280 task.stack: ffff8880b3690000 [ 29.295860] RIP: 0010:do_journal_end+0x30ee/0x4260 [ 29.295863] RSP: 0018:ffff8880b36979f8 EFLAGS: 00010297 [ 29.295869] RAX: ffff8880b00a6280 RBX: ffffc90005c1b000 RCX: 0000000000000000 [ 29.295872] RDX: 0000000000000000 RSI: ffff8880b3697c30 RDI: ffff8880b3697c3c [ 29.295877] RBP: ffff8880953e2100 R08: 0000000000000000 R09: 000000000004057c [ 29.310110] init_special_inode: bogus i_mode (0) for inode loop1:2 [ 29.313152] R10: ffff8880b00a6b58 R11: ffff8880b00a6280 R12: 0000000000000000 [ 29.313156] R13: ffffc90005c1b058 R14: ffffc90005c1b048 R15: ffff8880b3697c38 [ 29.313161] FS: 00000000017f0300(0000) GS:ffff8880ba400000(0000) knlGS:0000000000000000 [ 29.313165] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 29.313169] CR2: 000055795a650160 CR3: 000000009927b000 CR4: 00000000001406f0 [ 29.313175] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 29.313180] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 29.318547] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.325769] Call Trace: [ 29.325785] ? do_journal_end+0x4260/0x4260 [ 29.325794] ? reiserfs_info.cold+0x1d/0x67 [ 29.325805] ? do_raw_spin_unlock+0x164/0x220 [ 29.336344] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.340302] journal_end+0x259/0x300 [ 29.340314] reiserfs_fill_super+0x1ac0/0x28c0 [ 29.347512] REISERFS (device loop4): Using r5 hash to sort names [ 29.353853] ? reiserfs_remount+0x1390/0x1390 [ 29.353862] ? lock_downgrade+0x740/0x740 [ 29.353869] ? snprintf+0xa5/0xd0 [ 29.353880] mount_bdev+0x2b3/0x360 [ 29.353885] ? reiserfs_remount+0x1390/0x1390 [ 29.353890] mount_fs+0x92/0x2a0 [ 29.353898] vfs_kern_mount.part.0+0x5b/0x470 [ 29.363423] REISERFS (device loop1): Using r5 hash to sort names [ 29.369352] do_mount+0xe53/0x2a00 [ 29.385439] init_special_inode: bogus i_mode (0) for inode loop5:2 [ 29.389726] ? retint_kernel+0x2d/0x2d [ 29.389735] ? copy_mount_string+0x40/0x40 [ 29.397816] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.412047] ? memset+0x20/0x40 [ 29.412055] ? copy_mount_options+0x1fa/0x2f0 [ 29.412060] ? copy_mnt_ns+0xa30/0xa30 [ 29.412066] SyS_mount+0xa8/0x120 [ 29.412074] ? copy_mnt_ns+0xa30/0xa30 [ 29.416803] REISERFS (device loop5): Using r5 hash to sort names [ 29.418953] do_syscall_64+0x1d5/0x640 [ 29.418963] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 29.426454] init_special_inode: bogus i_mode (0) for inode loop3:2 [ 29.427754] RIP: 0033:0x445c1a [ 29.427761] RSP: 002b:00007ffd2536f3f8 EFLAGS: 00000286 [ 29.443434] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 29.446423] ORIG_RAX: 00000000000000a5 [ 29.446427] RAX: ffffffffffffffda RBX: 00007ffd2536f450 RCX: 0000000000445c1a [ 29.446431] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd2536f410 [ 29.446437] RBP: 00007ffd2536f410 R08: 00007ffd2536f450 R09: 0000000000000000 [ 29.451021] REISERFS (device loop3): Using r5 hash to sort names [ 29.457110] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000020000290 [ 29.457113] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000006 [ 29.457119] Code: e8 d8 20 ff ff e9 11 fa ff ff e8 9e 60 a2 ff 0f 0b e8 97 60 a2 ff 0f 0b e8 90 60 a2 ff 0f 0b e8 89 60 a2 ff 0f 0b e8 82 60 a2 ff <0f> 0b e8 7b 60 a2 ff 48 8d bb d0 01 00 00 48 b8 00 00 00 00 00 [ 29.653252] RIP: do_journal_end+0x30ee/0x4260 RSP: ffff8880b36979f8 [ 29.659939] ---[ end trace 78c377b30bda16f5 ]--- [ 29.664764] Kernel panic - not syncing: Fatal exception [ 29.670826] Kernel Offset: disabled [ 29.674458] Rebooting in 86400 seconds..