[ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... Starting Load/Save RF Kill Switch Status... [ OK ] Started Update UTMP about System Runlevel Changes. [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.15.204' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 36.314525] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.326626] REISERFS (device loop0): using ordered data mode [ 36.340789] reiserfs: using flush barriers [ 36.342303] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 36.361564] REISERFS (device loop5): using ordered data mode [ 36.362364] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.369932] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 36.392450] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 36.401197] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 36.411184] REISERFS (device loop1): using ordered data mode [ 36.419765] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 36.428627] REISERFS (device loop4): using ordered data mode [ 36.438048] reiserfs: using flush barriers [ 36.454431] REISERFS (device loop2): using ordered data mode [ 36.457410] REISERFS (device loop0): checking transaction log (loop0) [ 36.461685] reiserfs: using flush barriers [ 36.476201] REISERFS (device loop5): journal params: device loop5, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.495988] reiserfs: using flush barriers [ 36.501958] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.510046] reiserfs: using flush barriers [ 36.517897] REISERFS (device loop3): using ordered data mode [ 36.528095] REISERFS (device loop4): journal params: device loop4, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.543859] REISERFS (device loop1): journal params: device loop1, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.559723] REISERFS (device loop2): journal params: device loop2, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.560187] reiserfs: using flush barriers [ 36.579791] REISERFS (device loop5): checking transaction log (loop5) [ 36.588309] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.597117] REISERFS (device loop0): Using rupasov hash to sort names [ 36.614322] REISERFS (device loop4): checking transaction log (loop4) [ 36.628626] REISERFS (device loop2): checking transaction log (loop2) [ 36.637773] REISERFS (device loop3): journal params: device loop3, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.638925] REISERFS (device loop1): checking transaction log (loop1) [ 36.661757] REISERFS (device loop5): Using rupasov hash to sort names [ 36.669650] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.686290] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore executing program executing program executing program executing program executing program [ 36.704535] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.718266] REISERFS (device loop3): checking transaction log (loop3) [ 36.725448] REISERFS (device loop4): Using rupasov hash to sort names [ 36.735449] REISERFS (device loop2): Using rupasov hash to sort names [ 36.752232] REISERFS (device loop1): Using rupasov hash to sort names [ 36.792260] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.803340] REISERFS (device loop0): using ordered data mode [ 36.809258] reiserfs: using flush barriers [ 36.818018] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.834563] REISERFS (device loop3): Using rupasov hash to sort names executing program executing program executing program [ 36.875994] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 36.916319] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 36.926453] REISERFS (device loop1): using ordered data mode [ 36.934620] reiserfs: using flush barriers [ 36.946631] REISERFS (device loop0): checking transaction log (loop0) [ 36.954664] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 36.971446] REISERFS (device loop0): Using rupasov hash to sort names [ 36.992745] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 37.001684] REISERFS (device loop1): journal params: device loop1, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 37.018373] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 37.027582] REISERFS (device loop4): using ordered data mode [ 37.029033] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 37.040721] reiserfs: using flush barriers [ 37.045134] REISERFS (device loop2): using ordered data mode [ 37.053984] REISERFS (device loop1): checking transaction log (loop1) [ 37.054680] REISERFS (device loop5): using ordered data mode [ 37.062200] reiserfs: using flush barriers [ 37.079875] REISERFS (device loop4): journal params: device loop4, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 37.097359] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 37.116028] REISERFS (device loop1): Using rupasov hash to sort names [ 37.123828] ------------[ cut here ]------------ [ 37.125850] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 37.128647] kernel BUG at fs/reiserfs/journal.c:3643! [ 37.128814] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 37.141653] REISERFS (device loop2): journal params: device loop2, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 37.142318] CPU: 0 PID: 8177 Comm: syz-executor253 Not tainted 4.19.160-syzkaller #0 [ 37.142332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 37.142352] RIP: 0010:do_journal_end+0x3601/0x4840 [ 37.142363] Code: 05 0f ff ff e9 9a f9 ff ff e8 1b 16 8a ff 0f 0b e8 14 16 8a ff 0f 0b e8 0d 16 8a ff 0f 0b e8 06 16 8a ff 0f 0b e8 ff 15 8a ff <0f> 0b e8 f8 15 8a ff 0f 0b e8 f1 15 8a ff 48 8b 44 24 08 48 8b 54 [ 37.142375] RSP: 0018:ffff88809541f998 EFLAGS: 00010293 [ 37.176663] reiserfs: using flush barriers [ 37.181129] RAX: ffff888094aea500 RBX: ffffc90006b3f000 RCX: ffffffff81da8a13 [ 37.181137] RDX: 0000000000000000 RSI: ffffffff81dab9f1 RDI: 0000000000000007 [ 37.181144] RBP: ffff8880af498e80 R08: 0000000000000001 R09: 0000000000000000 [ 37.181151] R10: 0000000000000007 R11: 0000000000000000 R12: 0000000000000000 [ 37.181159] R13: ffffc90006b3f058 R14: ffff88809541fbc8 R15: 0000000000000000 [ 37.181170] FS: 00007f3ce16de700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 37.181177] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 37.181185] CR2: 00007fff649dac30 CR3: 000000009b644000 CR4: 00000000001406f0 [ 37.181199] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 37.205607] REISERFS (device loop3): using ordered data mode [ 37.210359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 37.210364] Call Trace: [ 37.210389] ? reiserfs_info.cold+0x1d/0x7c [ 37.210403] ? wake_up_var+0x110/0x110 [ 37.210419] journal_end+0x277/0x310 [ 37.232006] REISERFS (device loop2): checking transaction log (loop2) executing program [ 37.236433] reiserfs_fill_super+0x2002/0x2ce4 [ 37.236451] ? reiserfs_remount+0x1540/0x1540 [ 37.236464] ? lock_downgrade+0x720/0x720 [ 37.236479] ? snprintf+0xbb/0xf0 [ 37.236495] ? wait_for_completion_io+0x10/0x10 [ 37.236512] mount_bdev+0x2fc/0x3b0 [ 37.249618] REISERFS (device loop4): checking transaction log (loop4) [ 37.251221] ? reiserfs_remount+0x1540/0x1540 [ 37.251238] mount_fs+0xa3/0x30c [ 37.251254] vfs_kern_mount.part.0+0x68/0x470 [ 37.251269] do_mount+0x113c/0x2f10 executing program [ 37.289664] REISERFS (device loop5): journal params: device loop5, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 37.292972] ? lock_acquire+0x170/0x3c0 [ 37.292986] ? check_preemption_disabled+0x41/0x280 [ 37.293001] ? copy_mount_string+0x40/0x40 [ 37.293012] ? copy_mount_options+0x59/0x380 [ 37.293027] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 37.293043] ? kmem_cache_alloc_trace+0x323/0x380 [ 37.298442] reiserfs: using flush barriers [ 37.299925] ? copy_mount_options+0x26f/0x380 executing program [ 37.299940] ksys_mount+0xcf/0x130 [ 37.299955] __x64_sys_mount+0xba/0x150 [ 37.299971] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 37.321759] REISERFS (device loop5): checking transaction log (loop5) [ 37.324131] do_syscall_64+0xf9/0x620 [ 37.324147] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 37.324157] RIP: 0033:0x44d51a [ 37.324169] Code: b8 08 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 ad a0 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 8a a0 fb ff c3 66 0f 1f 84 00 00 00 00 00 [ 37.324176] RSP: 002b:00007f3ce16ddbf8 EFLAGS: 00000297 ORIG_RAX: 00000000000000a5 [ 37.324192] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000044d51a [ 37.335445] REISERFS (device loop3): journal params: device loop3, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 37.336423] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f3ce16ddc10 [ 37.336431] RBP: 00007f3ce16ddc10 R08: 00007f3ce16ddc50 R09: 0000000000000000 executing program [ 37.336438] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000005 [ 37.336446] R13: 00007f3ce16ddc50 R14: 00007f3ce16de6d0 R15: 0000000000000005 [ 37.336458] Modules linked in: [ 37.345128] ---[ end trace b23e20c009f2fa16 ]--- [ 37.354202] init_special_inode: bogus i_mode (0) for inode loop2:2 [ 37.355249] RIP: 0010:do_journal_end+0x3601/0x4840 [ 37.360808] init_special_inode: bogus i_mode (0) for inode loop5:2 [ 37.363097] Code: 05 0f ff ff e9 9a f9 ff ff e8 1b 16 8a ff 0f 0b e8 14 16 8a ff 0f 0b e8 0d 16 8a ff 0f 0b e8 06 16 8a ff 0f 0b e8 ff 15 8a ff <0f> 0b e8 f8 15 8a ff 0f 0b e8 f1 15 8a ff 48 8b 44 24 08 48 8b 54 [ 37.380808] init_special_inode: bogus i_mode (0) for inode loop4:2 [ 37.384230] RSP: 0018:ffff88809541f998 EFLAGS: 00010293 [ 37.399579] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 37.406166] RAX: ffff888094aea500 RBX: ffffc90006b3f000 RCX: ffffffff81da8a13 [ 37.412432] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 37.418236] RDX: 0000000000000000 RSI: ffffffff81dab9f1 RDI: 0000000000000007 [ 37.425472] REISERFS (device loop2): Using rupasov hash to sort names [ 37.431230] RBP: ffff8880af498e80 R08: 0000000000000001 R09: 0000000000000000 [ 37.445448] REISERFS (device loop3): checking transaction log (loop3) [ 37.452027] R10: 0000000000000007 R11: 0000000000000000 R12: 0000000000000000 [ 37.470811] init_special_inode: bogus i_mode (0) for inode loop3:2 [ 37.475351] R13: ffffc90006b3f058 R14: ffff88809541fbc8 R15: 0000000000000000 [ 37.488199] REISERFS (device loop4): Using rupasov hash to sort names [ 37.502682] FS: 00007f3ce16de700(0000) GS:ffff8880ba000000(0000) knlGS:0000000000000000 [ 37.507850] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 37.513256] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 37.528802] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 37.535840] REISERFS (device loop3): Using rupasov hash to sort names [ 37.546032] REISERFS (device loop5): Using rupasov hash to sort names [ 37.548126] CR2: 00000000004c206c CR3: 000000009b644000 CR4: 00000000001406f0 [ 37.742278] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 37.754123] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 37.761524] Kernel panic - not syncing: Fatal exception [ 37.767425] Kernel Offset: disabled [ 37.771480] Rebooting in 86400 seconds..