./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2829136651
<...>
Warning: Permanently added '10.128.1.95' (ED25519) to the list of known hosts.
execve("./syz-executor2829136651", ["./syz-executor2829136651"], 0x7ffd368503b0 /* 10 vars */) = 0
brk(NULL) = 0x555555dd4000
brk(0x555555dd4d00) = 0x555555dd4d00
arch_prctl(ARCH_SET_FS, 0x555555dd4380) = 0
set_tid_address(0x555555dd4650) = 5065
set_robust_list(0x555555dd4660, 24) = 0
rseq(0x555555dd4ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2829136651", 4096) = 28
getrandom("\x92\x33\x4e\x02\xfe\xb6\xca\xc0", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555555dd4d00
brk(0x555555df5d00) = 0x555555df5d00
brk(0x555555df6000) = 0x555555df6000
mprotect(0x7fcb7e71a000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fcb76264000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
munmap(0x7fcb76264000, 138412032) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
mkdir("./file0", 0777) = 0
mount("/dev/loop0", "./file0", "jfs", MS_DIRSYNC|MS_NODIRATIME|MS_POSIXACL|MS_LAZYTIME, "errors=remount-ro,nodiscard,integrity,integrity,discard,iocharset=iso8859-6,uid=0x0000000000000000") = 0
openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
chdir("./file0") = 0
ioctl(4, LOOP_CLR_FD) = 0
close(4) = 0
[ 72.244818][ T5065] loop0: detected capacity change from 0 to 32768
[ 72.304257][ T5065] ================================================================================
[ 72.313837][ T5065] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_imap.c:2360:2
[ 72.321519][ T5065] index -878706688 is out of range for type 'struct iagctl[128]'
[ 72.330408][ T5065] CPU: 1 PID: 5065 Comm: syz-executor282 Not tainted 6.7.0-rc4-syzkaller-00009-gbee0e7762ad2 #0
[ 72.340920][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 72.351015][ T5065] Call Trace:
[ 72.354349][ T5065]
[ 72.357314][ T5065] dump_stack_lvl+0x1e7/0x2d0
[ 72.362068][ T5065] ? nf_tcp_handle_invalid+0x650/0x650
[ 72.367582][ T5065] ? panic+0x850/0x850
[ 72.371698][ T5065] ? folio_unlock+0x126/0x2f0
[ 72.376449][ T5065] __ubsan_handle_out_of_bounds+0x11c/0x150
[ 72.382461][ T5065] diNewExt+0x3cf3/0x4000
[ 72.386853][ T5065] ? diInitInode+0x150/0x150
[ 72.391453][ T5065] ? __get_metapage+0x9b2/0x1040
[ 72.396413][ T5065] diAllocAG+0xbe8/0x1e50
[ 72.400776][ T5065] ? __mutex_lock+0x2ee/0xd60
[ 72.405509][ T5065] ? diAlloc+0x1b7/0x1760
[ 72.409863][ T5065] ? mutex_lock_nested+0x20/0x20
[ 72.414830][ T5065] ? diNewExt+0x4000/0x4000
[ 72.419349][ T5065] ? dbNextAG+0x518/0x630
[ 72.423699][ T5065] diAlloc+0x1d3/0x1760
[ 72.427889][ T5065] ? new_inode+0x1b7/0x1d0
[ 72.432354][ T5065] ialloc+0x8f/0x900
[ 72.436270][ T5065] jfs_mkdir+0x1c5/0xb90
[ 72.440529][ T5065] ? smk_access+0x4ab/0x4e0
[ 72.445102][ T5065] ? jfs_symlink+0x10d0/0x10d0
[ 72.449921][ T5065] ? generic_permission+0x1df/0x550
[ 72.455158][ T5065] ? bpf_lsm_inode_mkdir+0x9/0x10
[ 72.460203][ T5065] ? security_inode_mkdir+0xb8/0x100
[ 72.465530][ T5065] vfs_mkdir+0x2f1/0x4b0
[ 72.469833][ T5065] do_mkdirat+0x264/0x3a0
[ 72.474282][ T5065] ? vfs_mkdir+0x4b0/0x4b0
[ 72.478721][ T5065] ? getname_flags+0x1fd/0x4f0
[ 72.483524][ T5065] __x64_sys_mkdir+0x6e/0x80
[ 72.488128][ T5065] do_syscall_64+0x45/0x110
[ 72.492652][ T5065] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 72.498567][ T5065] RIP: 0033:0x7fcb7e6a0b57
[ 72.502995][ T5065] Code: ff ff 77 07 31 c0 c3 0f 1f 40 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 72.522638][ T5065] RSP: 002b:00007ffd83023038 EFLAGS: 00000286 ORIG_RAX: 0000000000000053
[ 72.531063][ T5065] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007fcb7e6a0b57
[ 72.539046][ T5065] RDX: 00000000000a1020 RSI: 00000000000001ff RDI: 0000000020000140
[ 72.547025][ T5065] RBP: 0000000020000140 R08: 0000000000000000 R09: 0000000000000000
[ 72.555007][ T5065] R10: 0000000000000000 R11: 0000000000000286 R12: 00007ffd830230d0
[ 72.563010][ T5065] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 72.571013][ T5065]
[ 72.574450][ T5065] ================================================================================
[ 72.583804][ T5065] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[ 72.591014][ T5065] CPU: 1 PID: 5065 Comm: syz-executor282 Not tainted 6.7.0-rc4-syzkaller-00009-gbee0e7762ad2 #0
[ 72.601454][ T5065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[ 72.611512][ T5065] Call Trace:
[ 72.614803][ T5065]
[ 72.617745][ T5065] dump_stack_lvl+0x1e7/0x2d0
[ 72.622462][ T5065] ? nf_tcp_handle_invalid+0x650/0x650
[ 72.627957][ T5065] ? panic+0x850/0x850
[ 72.632053][ T5065] ? vprintk_emit+0x607/0x720
[ 72.636773][ T5065] ? vscnprintf+0x5d/0x80
[ 72.641117][ T5065] panic+0x349/0x850
[ 72.645016][ T5065] ? check_panic_on_warn+0x21/0xa0
[ 72.650131][ T5065] ? __memcpy_flushcache+0x2b0/0x2b0
[ 72.655415][ T5065] ? _printk+0xd5/0x120
[ 72.659578][ T5065] ? panic+0x850/0x850
[ 72.663659][ T5065] check_panic_on_warn+0x82/0xa0
[ 72.668643][ T5065] __ubsan_handle_out_of_bounds+0x13c/0x150
[ 72.674552][ T5065] diNewExt+0x3cf3/0x4000
[ 72.678917][ T5065] ? diInitInode+0x150/0x150
[ 72.683519][ T5065] ? __get_metapage+0x9b2/0x1040
[ 72.688477][ T5065] diAllocAG+0xbe8/0x1e50
[ 72.692818][ T5065] ? __mutex_lock+0x2ee/0xd60
[ 72.697518][ T5065] ? diAlloc+0x1b7/0x1760
[ 72.701857][ T5065] ? mutex_lock_nested+0x20/0x20
[ 72.706813][ T5065] ? diNewExt+0x4000/0x4000
[ 72.711335][ T5065] ? dbNextAG+0x518/0x630
[ 72.715687][ T5065] diAlloc+0x1d3/0x1760
[ 72.719864][ T5065] ? new_inode+0x1b7/0x1d0
[ 72.724300][ T5065] ialloc+0x8f/0x900
[ 72.728214][ T5065] jfs_mkdir+0x1c5/0xb90
[ 72.732467][ T5065] ? smk_access+0x4ab/0x4e0
[ 72.736984][ T5065] ? jfs_symlink+0x10d0/0x10d0
[ 72.741787][ T5065] ? generic_permission+0x1df/0x550
[ 72.747009][ T5065] ? bpf_lsm_inode_mkdir+0x9/0x10
[ 72.752046][ T5065] ? security_inode_mkdir+0xb8/0x100
[ 72.757344][ T5065] vfs_mkdir+0x2f1/0x4b0
[ 72.761622][ T5065] do_mkdirat+0x264/0x3a0
[ 72.765975][ T5065] ? vfs_mkdir+0x4b0/0x4b0
[ 72.770410][ T5065] ? getname_flags+0x1fd/0x4f0
[ 72.775213][ T5065] __x64_sys_mkdir+0x6e/0x80
[ 72.779817][ T5065] do_syscall_64+0x45/0x110
[ 72.785247][ T5065] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 72.791158][ T5065] RIP: 0033:0x7fcb7e6a0b57
[ 72.795582][ T5065] Code: ff ff 77 07 31 c0 c3 0f 1f 40 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 72.815195][ T5065] RSP: 002b:00007ffd83023038 EFLAGS: 00000286 ORIG_RAX: 0000000000000053
[ 72.823622][ T5065] RAX: ffffffffffffffda RBX: 00000000ffffffff RCX: 00007fcb7e6a0b57
[ 72.831599][ T5065] RDX: 00000000000a1020 RSI: 00000000000001ff RDI: 0000000020000140
[ 72.839576][ T5065] RBP: 0000000020000140 R08: 0000000000000000 R09: 0000000000000000
[ 72.847550][ T5065] R10: 0000000000000000 R11: 0000000000000286 R12: 00007ffd830230d0
[ 72.855546][ T5065] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 72.863551][ T5065]
[ 72.866881][ T5065] Kernel Offset: disabled
[ 72.871293][ T5065] Rebooting in 86400 seconds..