./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3681442889 <...> DUID 00:04:e6:d8:3e:4c:c1:15:84:42:dc:00:60:8c:e3:5f:26:b4 forked to background, child pid 4644 [ 31.019576][ T4645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.030494][ T4645] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.79' (ECDSA) to the list of known hosts. execve("./syz-executor3681442889", ["./syz-executor3681442889"], 0x7ffec7b87c10 /* 10 vars */) = 0 brk(NULL) = 0x5555562ee000 brk(0x5555562eec40) = 0x5555562eec40 arch_prctl(ARCH_SET_FS, 0x5555562ee300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3681442889", 4096) = 28 brk(0x55555630fc40) = 0x55555630fc40 brk(0x555556310000) = 0x555556310000 mprotect(0x7fd347eb8000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd33f9fe000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 munmap(0x7fd33f9fe000, 4194304) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 syzkaller login: [ 60.128284][ T5066] loop0: detected capacity change from 0 to 8192 [ 60.139917][ T5066] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 60.153224][ T5066] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 60.162878][ T5066] REISERFS (device loop0): using ordered data mode [ 60.169391][ T5066] reiserfs: using flush barriers [ 60.176027][ T5066] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 60.192587][ T5066] REISERFS (device loop0): checking transaction log (loop0) mount("/dev/loop0", "./file0", "reiserfs", MS_DIRSYNC, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 creat("./bus", 000) = 4 [ 60.240384][ T5066] REISERFS (device loop0): Using r5 hash to sort names [ 60.247538][ T5066] REISERFS (device loop0): using 3.5.x disk format [ 60.255021][ T5066] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 60.272871][ T5066] ------------[ cut here ]------------ [ 60.278561][ T5066] kernel BUG at fs/reiserfs/journal.c:505! [ 60.284860][ T5066] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 60.290957][ T5066] CPU: 1 PID: 5066 Comm: syz-executor368 Not tainted 6.2.0-rc2-syzkaller-00010-g69b41ac87e4a #0 [ 60.301380][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 60.311431][ T5066] RIP: 0010:reiserfs_in_journal+0xa8f/0xaa0 [ 60.317331][ T5066] Code: e8 e6 5e b2 ff e9 21 f6 ff ff 48 8b 4c 24 30 80 e1 07 80 c1 03 38 c1 7c a8 48 8b 7c 24 30 e8 c8 5e b2 ff eb 9c e8 71 b4 5c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 41 57 41 56 [ 60.336937][ T5066] RSP: 0018:ffffc900039deec0 EFLAGS: 00010293 [ 60.343173][ T5066] RAX: ffffffff822f26ef RBX: ffffc90003bc3048 RCX: ffff88801ff5d7c0 [ 60.351263][ T5066] RDX: 0000000000000000 RSI: 0000000000000213 RDI: 0000000000000213 [ 60.359263][ T5066] RBP: ffffc90003bc3050 R08: ffffffff822f1f22 R09: ffffed100e44dc09 [ 60.367316][ T5066] R10: ffffed100e44dc09 R11: 1ffff1100e44dc08 R12: ffff88802ac78000 [ 60.375273][ T5066] R13: dffffc0000000000 R14: ffff88802ac78678 R15: 0000000000000213 [ 60.383319][ T5066] FS: 00005555562ee300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 60.392242][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.398827][ T5066] CR2: 0000000020003000 CR3: 0000000077eb3000 CR4: 00000000003506e0 [ 60.406794][ T5066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 60.414756][ T5066] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 60.422715][ T5066] Call Trace: [ 60.425986][ T5066] [ 60.428912][ T5066] scan_bitmap_block+0x437/0xf50 [ 60.433846][ T5066] ? reiserfs_write_lock_nested+0x5b/0xd0 [ 60.439567][ T5066] ? oid_groups+0x4f0/0x4f0 [ 60.444091][ T5066] ? mutex_lock_nested+0x17/0x20 [ 60.449036][ T5066] reiserfs_allocate_blocknrs+0x3640/0x53c0 [ 60.454939][ T5066] ? show_alloc_options+0xbd0/0xbd0 [ 60.460130][ T5066] ? journal_begin+0x1f1/0x350 [ 60.464888][ T5066] ? copy_item_head+0x1e/0x30 [ 60.469591][ T5066] reiserfs_get_block+0x32a5/0x5180 [ 60.474796][ T5066] ? make_le_item_head+0x5b0/0x5b0 [ 60.479897][ T5066] ? __kasan_slab_alloc+0x65/0x70 [ 60.485006][ T5066] ? kmem_cache_alloc+0x1b3/0x350 [ 60.490106][ T5066] ? alloc_buffer_head+0x20/0xf0 [ 60.495034][ T5066] ? alloc_page_buffers+0x179/0x460 [ 60.500311][ T5066] ? create_empty_buffers+0x36/0xe30 [ 60.505589][ T5066] ? create_page_buffers+0x1c8/0x4b0 [ 60.510865][ T5066] ? __block_write_begin_int+0x1e0/0x1a80 [ 60.516585][ T5066] ? reiserfs_write_begin+0x247/0x510 [ 60.521946][ T5066] ? generic_perform_write+0x2e4/0x5e0 [ 60.527400][ T5066] ? __generic_file_write_iter+0x176/0x400 [ 60.533201][ T5066] ? generic_file_write_iter+0xab/0x310 [ 60.538737][ T5066] ? vfs_write+0x7dc/0xc50 [ 60.543145][ T5066] ? ksys_write+0x177/0x2a0 [ 60.547638][ T5066] ? do_syscall_64+0x3d/0xb0 [ 60.552225][ T5066] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.558294][ T5066] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 60.564274][ T5066] ? mark_lock+0x9a/0x350 [ 60.568688][ T5066] ? __lock_acquire+0x1292/0x1f60 [ 60.573708][ T5066] ? rcu_read_lock_sched_held+0x22/0x110 [ 60.579334][ T5066] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 60.585353][ T5066] ? __lock_acquire+0x1f60/0x1f60 [ 60.590370][ T5066] ? alloc_page_buffers+0x326/0x460 [ 60.595559][ T5066] ? folio_attach_private+0xd9/0x200 [ 60.600836][ T5066] ? do_raw_spin_unlock+0x134/0x8a0 [ 60.606033][ T5066] ? create_page_buffers+0x244/0x4b0 [ 60.611310][ T5066] __block_write_begin_int+0x54c/0x1a80 [ 60.616847][ T5066] ? xas_load+0x127/0x150 [ 60.621184][ T5066] ? make_le_item_head+0x5b0/0x5b0 [ 60.626283][ T5066] ? page_zero_new_buffers+0x940/0x940 [ 60.631824][ T5066] ? fault_in_readable+0x219/0x310 [ 60.636937][ T5066] ? __block_write_begin+0x51/0x150 [ 60.642130][ T5066] ? reiserfs_write_begin+0x180/0x510 [ 60.647493][ T5066] reiserfs_write_begin+0x247/0x510 [ 60.652686][ T5066] generic_perform_write+0x2e4/0x5e0 [ 60.657997][ T5066] ? reiserfs_write_begin+0x510/0x510 [ 60.663359][ T5066] ? generic_file_direct_write+0x610/0x610 [ 60.669156][ T5066] ? __file_remove_privs+0x610/0x610 [ 60.674442][ T5066] ? generic_write_checks+0x15c/0x1c0 [ 60.679805][ T5066] __generic_file_write_iter+0x176/0x400 [ 60.685436][ T5066] generic_file_write_iter+0xab/0x310 [ 60.690804][ T5066] vfs_write+0x7dc/0xc50 [ 60.695042][ T5066] ? file_end_write+0x230/0x230 [ 60.699878][ T5066] ? ptrace_stop+0x74d/0x970 [ 60.704459][ T5066] ? _raw_spin_unlock_irq+0x2a/0x40 [ 60.709649][ T5066] ? __fdget_pos+0x252/0x2e0 [ 60.714231][ T5066] ksys_write+0x177/0x2a0 [ 60.718548][ T5066] ? __ia32_sys_read+0x80/0x80 [ 60.723301][ T5066] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 60.729293][ T5066] ? syscall_enter_from_user_mode+0x86/0x1d0 [ 60.735292][ T5066] do_syscall_64+0x3d/0xb0 [ 60.739715][ T5066] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.745629][ T5066] RIP: 0033:0x7fd347e4a799 [ 60.750044][ T5066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 60.769744][ T5066] RSP: 002b:00007ffc31afb498 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 60.778153][ T5066] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd347e4a799 [ 60.786115][ T5066] RDX: 000000000000fd14 RSI: 0000000020001700 RDI: 0000000000000004 [ 60.794117][ T5066] RBP: 00007fd347e0a030 R08: 0000000000000000 R09: 0000000000000000 [ 60.802163][ T5066] R10: 00000000000010f4 R11: 0000000000000246 R12: 00007fd347e0a0c0 [ 60.810121][ T5066] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 60.818087][ T5066] [ 60.821093][ T5066] Modules linked in: [ 60.825134][ T5066] ---[ end trace 0000000000000000 ]--- [ 60.830660][ T5066] RIP: 0010:reiserfs_in_journal+0xa8f/0xaa0 [ 60.836731][ T5066] Code: e8 e6 5e b2 ff e9 21 f6 ff ff 48 8b 4c 24 30 80 e1 07 80 c1 03 38 c1 7c a8 48 8b 7c 24 30 e8 c8 5e b2 ff eb 9c e8 71 b4 5c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 41 57 41 56 [ 60.856659][ T5066] RSP: 0018:ffffc900039deec0 EFLAGS: 00010293 [ 60.863003][ T5066] RAX: ffffffff822f26ef RBX: ffffc90003bc3048 RCX: ffff88801ff5d7c0 [ 60.871152][ T5066] RDX: 0000000000000000 RSI: 0000000000000213 RDI: 0000000000000213 [ 60.879129][ T5066] RBP: ffffc90003bc3050 R08: ffffffff822f1f22 R09: ffffed100e44dc09 [ 60.887309][ T5066] R10: ffffed100e44dc09 R11: 1ffff1100e44dc08 R12: ffff88802ac78000 [ 60.896087][ T5066] R13: dffffc0000000000 R14: ffff88802ac78678 R15: 0000000000000213 [ 60.904254][ T5066] FS: 00005555562ee300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 60.913322][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.919922][ T5066] CR2: 0000558d8ed809a8 CR3: 0000000077eb3000 CR4: 00000000003506f0 [ 60.927960][ T5066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 60.935980][ T5066] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 60.943994][ T5066] Kernel panic - not syncing: Fatal exception [ 60.950167][ T5066] Kernel Offset: disabled [ 60.954486][ T5066] Rebooting in 86400 seconds..