./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1252393675 <...> Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts. execve("./syz-executor1252393675", ["./syz-executor1252393675"], 0x7fff067b21a0 /* 10 vars */) = 0 brk(NULL) = 0x5555585ff000 brk(0x5555585ffe00) = 0x5555585ffe00 arch_prctl(ARCH_SET_FS, 0x5555585ff480) = 0 set_tid_address(0x5555585ff750) = 5815 set_robust_list(0x5555585ff760, 24) = 0 rseq(0x5555585ffda0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1252393675", 4096) = 28 getrandom("\x5b\xd9\xd7\xc7\xdb\x75\x0d\x27", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555585ffe00 brk(0x555558620e00) = 0x555558620e00 brk(0x555558621000) = 0x555558621000 mprotect(0x7f7107b1f000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGSEGV, {sa_handler=0x7f7107a6fa60, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f7107a78260}, NULL, 8) = 0 rt_sigaction(SIGBUS, {sa_handler=0x7f7107a6fa60, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f7107a78260}, NULL, 8) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555585ff750) = 5816 ./strace-static-x86_64: Process 5816 attached [pid 5816] set_robust_list(0x5555585ff760, 24) = 0 [pid 5816] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5816] setpgid(0, 0) = 0 [pid 5816] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5816] write(3, "1000", 4) = 4 executing program [pid 5816] close(3) = 0 [pid 5816] write(1, "executing program\n", 18) = 18 [pid 5816] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=5, rlim_max=139}, NULL) = 0 [pid 5816] sched_setscheduler(0, SCHED_FIFO, [2]) = 0 [pid 5816] memfd_create("syzkaller", 0) = 3 [pid 5816] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f70ff600000 [pid 5816] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5816] munmap(0x7f70ff600000, 138412032) = 0 [pid 5816] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5816] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5816] close(3) = 0 [pid 5816] close(4) = 0 [pid 5816] mkdir("./file0", 0777) = 0 [ 184.967626][ T5816] loop0: detected capacity change from 0 to 32768 [pid 5816] mount("/dev/loop0", "./file0", "jfs", MS_NOSUID, "iocharset=maccroatian,discard=0x0000000000000003,nodiscard,errors=continue,iocharset=maccyrillic,") = 0 [pid 5816] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5816] chdir("./file0") = 0 [pid 5816] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5816] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777) = -1 EIO (Input/output error) [ 185.010580][ T5816] [ 185.010580][ T5816] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 185.010580][ T5816] [ 185.036629][ T5816] ERROR: (device loop0): diWrite: ixpxd invalid [ 185.036629][ T5816] [ 185.046268][ T5816] ERROR: (device loop0): txAbort: [ 185.046268][ T5816] [ 185.059587][ T5816] ERROR: (device loop0): dtSearch: stack overrun! [ 185.059587][ T5816] [ 185.068663][ T5816] btstack dump: [ 185.072423][ T5816] bn = 0, index = 0 [ 185.076362][ T5816] bn = 0, index = 0 [ 185.080302][ T5816] bn = 0, index = 0 [ 185.084461][ T5816] bn = 0, index = 0 [ 185.088394][ T5816] bn = 0, index = 0 [ 185.092504][ T5816] bn = 0, index = 0 [ 185.096443][ T5816] bn = 0, index = 0 [ 185.100375][ T5816] ===================================================== [pid 5816] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} --- [ 185.107788][ T5816] BUG: KMSAN: uninit-value in BT_STACK_DUMP+0x5e5/0x600 [ 185.115009][ T5816] BT_STACK_DUMP+0x5e5/0x600 [ 185.119777][ T5816] dtSearch+0x393f/0x3d30 [ 185.124485][ T5816] jfs_lookup+0x179/0x590 [ 185.130014][ T5816] __lookup_slow+0x563/0x760 [ 185.134860][ T5816] lookup_slow+0x6a/0xd0 [ 185.139263][ T5816] walk_component+0x444/0x650 [ 185.144265][ T5816] path_lookupat+0x251/0x6b0 [ 185.148992][ T5816] filename_lookup+0x2bd/0x800 [ 185.154003][ T5816] filename_setxattr+0x7e/0xcc0 [ 185.159047][ T5816] path_setxattrat+0x734/0x820 [ 185.164139][ T5816] __x64_sys_setxattr+0x100/0x1b0 [ 185.169343][ T5816] x64_sys_call+0xcb5/0x3e20 [ 185.174230][ T5816] do_syscall_64+0xd9/0x210 [ 185.178923][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.185120][ T5816] [ 185.187515][ T5816] Local variable fbatch created at: [ 185.192903][ T5816] truncate_inode_pages_range+0x50/0x1420 [ 185.198826][ T5816] truncate_inode_pages_final+0x8a/0xa0 [ 185.204718][ T5816] [ 185.207169][ T5816] CPU: 0 UID: 0 PID: 5816 Comm: syz-executor125 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(none) [ 185.218104][ T5816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 185.228461][ T5816] ===================================================== [ 185.235583][ T5816] Disabling lock debugging due to kernel taint [ 185.242026][ T5816] Kernel panic - not syncing: kmsan.panic set ... [ 185.248562][ T5816] CPU: 0 UID: 0 PID: 5816 Comm: syz-executor125 Tainted: G B 6.17.0-rc1-syzkaller #0 PREEMPT(none) [ 185.260991][ T5816] Tainted: [B]=BAD_PAGE [ 185.265230][ T5816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 185.275410][ T5816] Call Trace: [ 185.278794][ T5816] [ 185.281810][ T5816] __dump_stack+0x26/0x30 [ 185.286334][ T5816] dump_stack_lvl+0x53/0x270 [ 185.291124][ T5816] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 185.297127][ T5816] dump_stack+0x1e/0x25 [ 185.301452][ T5816] vpanic+0x361/0xc50 [ 185.305632][ T5816] panic+0x15d/0x160 [ 185.309751][ T5816] kmsan_report+0x31c/0x320 [ 185.314426][ T5816] ? __msan_warning+0x1b/0x30 [ 185.319248][ T5816] ? BT_STACK_DUMP+0x5e5/0x600 [ 185.324180][ T5816] ? dtSearch+0x393f/0x3d30 [ 185.328863][ T5816] ? jfs_lookup+0x179/0x590 [ 185.333515][ T5816] ? __lookup_slow+0x563/0x760 [ 185.338422][ T5816] ? lookup_slow+0x6a/0xd0 [ 185.342978][ T5816] ? walk_component+0x444/0x650 [ 185.348018][ T5816] ? path_lookupat+0x251/0x6b0 [ 185.352933][ T5816] ? filename_lookup+0x2bd/0x800 [ 185.358027][ T5816] ? filename_setxattr+0x7e/0xcc0 [ 185.363237][ T5816] ? path_setxattrat+0x734/0x820 [ 185.368298][ T5816] ? __x64_sys_setxattr+0x100/0x1b0 [ 185.373594][ T5816] ? x64_sys_call+0xcb5/0x3e20 [ 185.378454][ T5816] ? do_syscall_64+0xd9/0x210 [ 185.383221][ T5816] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.389381][ T5816] ? vprintk_default+0x3f/0x50 [ 185.394226][ T5816] ? vprintk+0x36/0x50 [ 185.398385][ T5816] ? _printk+0x17e/0x1b0 [ 185.402769][ T5816] ? kmsan_get_metadata+0xfb/0x160 [ 185.407972][ T5816] __msan_warning+0x1b/0x30 [ 185.412550][ T5816] BT_STACK_DUMP+0x5e5/0x600 [ 185.417239][ T5816] dtSearch+0x393f/0x3d30 [ 185.421689][ T5816] ? kmsan_get_metadata+0xfb/0x160 [ 185.426939][ T5816] jfs_lookup+0x179/0x590 [ 185.431369][ T5816] ? __pfx_jfs_lookup+0x10/0x10 [ 185.436314][ T5816] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 185.442213][ T5816] ? __pfx_jfs_lookup+0x10/0x10 [ 185.447145][ T5816] __lookup_slow+0x563/0x760 [ 185.451849][ T5816] lookup_slow+0x6a/0xd0 [ 185.456169][ T5816] walk_component+0x444/0x650 [ 185.460945][ T5816] ? kmsan_get_metadata+0xfb/0x160 [ 185.466157][ T5816] path_lookupat+0x251/0x6b0 [ 185.470829][ T5816] filename_lookup+0x2bd/0x800 [ 185.475677][ T5816] ? stack_depot_save_flags+0x615/0x7b0 [ 185.481337][ T5816] ? kmsan_get_metadata+0xfb/0x160 [ 185.486605][ T5816] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 185.493060][ T5816] filename_setxattr+0x7e/0xcc0 [ 185.498094][ T5816] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 185.504010][ T5816] ? getname_flags+0x5f4/0xac0 [ 185.508973][ T5816] path_setxattrat+0x734/0x820 [ 185.513804][ T5816] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 185.519699][ T5816] ? kmsan_get_metadata+0xfb/0x160 [ 185.524895][ T5816] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 185.531308][ T5816] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 185.537530][ T5816] ? _raw_spin_unlock_irq+0x31/0x50 [ 185.542837][ T5816] __x64_sys_setxattr+0x100/0x1b0 [ 185.547981][ T5816] x64_sys_call+0xcb5/0x3e20 [ 185.552675][ T5816] do_syscall_64+0xd9/0x210 [ 185.557283][ T5816] ? irqentry_exit+0x16/0x60 [ 185.561957][ T5816] ? clear_bhb_loop+0x40/0x90 [ 185.566792][ T5816] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 185.572797][ T5816] RIP: 0033:0x7f7107aa5319 [ 185.577270][ T5816] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 185.596966][ T5816] RSP: 002b:00007ffdaadf36a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 185.605545][ T5816] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7107aa5319 [ 185.613590][ T5816] RDX: 0000200000001400 RSI: 00002000000001c0 RDI: 0000200000000380 [ 185.621619][ T5816] RBP: 0000000000000000 R08: 0000000000000001 R09: 00007ffdaadf36e0 [ 185.629638][ T5816] R10: 0000000000000835 R11: 0000000000000246 R12: 00007ffdaadf36e0 [ 185.637658][ T5816] R13: 00007ffdaadf3968 R14: 431bde82d7b634db R15: 00007f7107aee03b [ 185.645712][ T5816] [ 185.649043][ T5816] Kernel Offset: disabled [ 185.653410][ T5816] Rebooting in 86400 seconds..