./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3964588222 <...> Warning: Permanently added '10.128.10.63' (ECDSA) to the list of known hosts. execve("./syz-executor3964588222", ["./syz-executor3964588222"], 0x7ffdf7e67ea0 /* 10 vars */) = 0 brk(NULL) = 0x555556520000 brk(0x555556520c40) = 0x555556520c40 arch_prctl(ARCH_SET_FS, 0x555556520300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3964588222", 4096) = 28 brk(0x555556541c40) = 0x555556541c40 brk(0x555556542000) = 0x555556542000 mprotect(0x7f1e91d8d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5246 attached , child_tidptr=0x5555565205d0) = 5246 [pid 5246] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] setsid() = 1 [pid 5246] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5246] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5246] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5246] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5246] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5246] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5246] unshare(CLONE_NEWNS) = 0 [pid 5246] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5246] unshare(CLONE_NEWIPC) = 0 [pid 5246] unshare(CLONE_NEWCGROUP) = 0 [pid 5246] unshare(CLONE_NEWUTS) = 0 [pid 5246] unshare(CLONE_SYSVSEM) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "16777216", 8) = 8 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "536870912", 9) = 9 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "1024", 4) = 4 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "8192", 4) = 4 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "1024", 4) = 4 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "1024", 4) = 4 [pid 5246] close(3) = 0 [pid 5246] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5246] close(3) = 0 [pid 5246] getpid() = 1 [pid 5246] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [ 55.633941][ T123] dump_stack_lvl+0xcd/0x134 [ 55.638542][ T123] ubsan_epilogue+0xb/0x50 [ 55.642957][ T123] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187 [ 55.649722][ T123] ? folio_flags.constprop.0+0x53/0x150 [ 55.655266][ T123] dbJoin.cold+0x19/0x1e [ 55.659504][ T123] dbAdjCtl+0x703/0x900 [ 55.663655][ T123] dbFreeDmap+0xd3/0x1a0 [ 55.667922][ T123] dbFree+0x250/0x540 [ 55.671903][ T123] txFreeMap+0x70a/0xd70 [ 55.676141][ T123] ? _raw_spin_unlock+0x24/0x40 [ 55.680995][ T123] ? __mark_inode_dirty+0x7db/0x11d0 [ 55.686288][ T123] xtTruncate+0x1d2a/0x2720 [ 55.690809][ T123] ? xtInitRoot+0x1c0/0x1c0 [ 55.695341][ T123] ? truncate_inode_pages_range+0x6af/0xec0 [ 55.701239][ T123] ? truncate_inode_partial_folio+0xb80/0xb80 [ 55.707298][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.713290][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.719278][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.725255][ T123] ? __mark_inode_dirty+0x5d9/0x11d0 [ 55.730557][ T123] ? __dquot_initialize+0x295/0xbe0 [ 55.735748][ T123] ? find_held_lock+0x2d/0x110 [ 55.740510][ T123] jfs_free_zero_link+0x33b/0x4a0 [ 55.745533][ T123] ? jfs_mkdir+0xab0/0xab0 [ 55.749944][ T123] ? lock_downgrade+0x6e0/0x6e0 [ 55.754906][ T123] ? group_init+0x6b0/0x6b0 [ 55.759401][ T123] ? rwlock_bug.part.0+0x90/0x90 [ 55.764344][ T123] jfs_evict_inode+0x40f/0x4a0 [ 55.769103][ T123] ? jfs_write_inode+0x230/0x230 [ 55.774036][ T123] evict+0x2ed/0x6b0 [ 55.777927][ T123] iput.part.0+0x59b/0x880 [ 55.782337][ T123] iput+0x58/0x70 [ 55.785965][ T123] txUpdateMap+0x972/0xbe0 [ 55.790379][ T123] ? txFreeMap+0xd70/0xd70 [ 55.794793][ T123] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 55.800595][ T123] jfs_lazycommit+0x5bb/0xaa0 [ 55.805278][ T123] ? txCommit+0x4330/0x4330 [ 55.809777][ T123] ? wake_up_q+0xf0/0xf0 [ 55.814015][ T123] ? __kthread_parkme+0x15f/0x220 [ 55.819030][ T123] ? txCommit+0x4330/0x4330 [ 55.823526][ T123] kthread+0x2e4/0x3a0 [ 55.827590][ T123] ? kthread_complete_and_exit+0x40/0x40 [ 55.833214][ T123] ret_from_fork+0x1f/0x30 [ 55.837634][ T123] [ 55.841204][ T123] ================================================================================ [ 55.853026][ T123] Kernel panic - not syncing: panic_on_warn set ... [ 55.859637][ T123] CPU: 1 PID: 123 Comm: jfsCommit Not tainted 6.1.0-rc4-next-20221111-syzkaller #0 [ 55.868923][ T123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 55.878976][ T123] Call Trace: [ 55.882255][ T123] [ 55.885187][ T123] dump_stack_lvl+0xcd/0x134 [ 55.889881][ T123] panic+0x2c8/0x622 [ 55.893780][ T123] ? panic_print_sys_info.part.0+0x110/0x110 [ 55.899782][ T123] ? ubsan_epilogue+0x3e/0x50 [ 55.904476][ T123] ubsan_epilogue+0x4a/0x50 [ 55.908988][ T123] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187 [ 55.915774][ T123] ? folio_flags.constprop.0+0x53/0x150 [ 55.921330][ T123] dbJoin.cold+0x19/0x1e [ 55.925584][ T123] dbAdjCtl+0x703/0x900 [ 55.929754][ T123] dbFreeDmap+0xd3/0x1a0 [ 55.934007][ T123] dbFree+0x250/0x540 [ 55.938002][ T123] txFreeMap+0x70a/0xd70 [ 55.942263][ T123] ? _raw_spin_unlock+0x24/0x40 [ 55.947119][ T123] ? __mark_inode_dirty+0x7db/0x11d0 [ 55.952420][ T123] xtTruncate+0x1d2a/0x2720 [ 55.956951][ T123] ? xtInitRoot+0x1c0/0x1c0 [ 55.961469][ T123] ? truncate_inode_pages_range+0x6af/0xec0 [ 55.967377][ T123] ? truncate_inode_partial_folio+0xb80/0xb80 [ 55.973455][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.979446][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.985441][ T123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.991687][ T123] ? __mark_inode_dirty+0x5d9/0x11d0 [ 55.997022][ T123] ? __dquot_initialize+0x295/0xbe0 [ 56.002230][ T123] ? find_held_lock+0x2d/0x110 [ 56.007009][ T123] jfs_free_zero_link+0x33b/0x4a0 [ 56.012048][ T123] ? jfs_mkdir+0xab0/0xab0 [ 56.016474][ T123] ? lock_downgrade+0x6e0/0x6e0 [ 56.021328][ T123] ? group_init+0x6b0/0x6b0 [ 56.025855][ T123] ? rwlock_bug.part.0+0x90/0x90 [ 56.030810][ T123] jfs_evict_inode+0x40f/0x4a0 [ 56.035628][ T123] ? jfs_write_inode+0x230/0x230 [ 56.040589][ T123] evict+0x2ed/0x6b0 [ 56.044499][ T123] iput.part.0+0x59b/0x880 [ 56.048926][ T123] iput+0x58/0x70 [ 56.052678][ T123] txUpdateMap+0x972/0xbe0 [ 56.057108][ T123] ? txFreeMap+0xd70/0xd70 [ 56.061534][ T123] ? _raw_spin_unlock_irqrestore+0x50/0x70 [ 56.067357][ T123] jfs_lazycommit+0x5bb/0xaa0 [ 56.072054][ T123] ? txCommit+0x4330/0x4330 [ 56.076567][ T123] ? wake_up_q+0xf0/0xf0 [ 56.080819][ T123] ? __kthread_parkme+0x15f/0x220 [ 56.085859][ T123] ? txCommit+0x4330/0x4330 [ 56.090374][ T123] kthread+0x2e4/0x3a0 [ 56.094452][ T123] ? kthread_complete_and_exit+0x40/0x40 [ 56.100095][ T123] ret_from_fork+0x1f/0x30 [ 56.104536][ T123] [ 56.107707][ T123] Kernel Offset: disabled [ 56.112098][ T123] Rebooting in 86400 seconds..