./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4292423634 <...> DUID 00:04:e6:d8:3e:4c:c1:15:84:42:dc:00:60:8c:e3:5f:26:b4 forked to background, child pid 3185 [ 19.219618][ T3186] 8021q: adding VLAN 0 to HW filter on device bond0 [ 19.232925][ T3186] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.16' (ECDSA) to the list of known hosts. execve("./syz-executor4292423634", ["./syz-executor4292423634"], 0x7ffe65253540 /* 10 vars */) = 0 brk(NULL) = 0x5555571e1000 brk(0x5555571e1c40) = 0x5555571e1c40 arch_prctl(ARCH_SET_FS, 0x5555571e1300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor4292423634", 4096) = 28 brk(0x555557202c40) = 0x555557202c40 brk(0x555557203000) = 0x555557203000 mprotect(0x7f718fa7b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555571e15d0) = 3614 ./strace-static-x86_64: Process 3614 attached [pid 3614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3614] setpgid(0, 0) = 0 [pid 3614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1000", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] memfd_create("syzkaller", 0) = 3 [pid 3614] ftruncate(3, 4194304) = 0 [pid 3614] pwrite64(3, "\x00\x04\x00\x00\xec\x01\x00\x00\x13\x02\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x01\x00\x00\x61\x1c\xad\x49\xe1\x00\x00\x00\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x10\xcc\x03\x10\x00\x01\x00\x52\x65\x49\x73\x45\x72\x33\x46\x73\x00\x00\x00\x02\x00\x00\x00\x02\x00\x01\x00\x02\x00\x01\x02\x00\x00\x00\x00\x01\x00\x00\x00\x12\x31\x23\x12\x12\x33\x12\x33\x12\x31\x12\x34\x13\x41\x24\x12"..., 128, 65536) = 128 [pid 3614] pwrite64(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 32, 65728) = 32 [pid 3614] pwrite64(3, "\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4120, 69629) = 4120 [pid 3614] pwrite64(3, "\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x01\x00\x00\x61\x1c\xad\x49\xe1\x00\x00\x00\x1e\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 64, 2170880) = 64 [pid 3614] pwrite64(3, "\x01\x00\x02\x00\x5c\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x2c\x00\xd4\x0f\x01\x00\x01\x00\x00\xa3\x03\xdb\x0c\x00\x01\x00\x00\x00\xf4\x01\x00\x00\x02\x00\x30\x00\xa4\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 96, 2174976) = 96 [pid 3614] pwrite64(3, "\x00\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x02\x00\x00\x00\x28\x00\x04\x00\x02\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x20\x00\x04\x00\x2e\x2e\x00\x00\x00\x00\x00\x00\x2e\x00\x00\x00\x00\x00\x00\x00\xed\x41\x00\x00\x03\x00\x00\x00\x30\x00\x00\x00\x00\x00\x00\x00\x5c\xf9\x01\x00\x53\x5f\x01\x00\x3a\xc1\x65\x5f\x3a\xc1\x65\x5f\x3a\xc1\x65\x5f\x01\x00\x00\x00\x00\x00\x00\x00", 96, 2178976) = 96 [pid 3614] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3614] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 3614] mkdir("./file0", 0777) = 0 syzkaller login: [ 36.387938][ T3614] loop0: detected capacity change from 0 to 8192 [ 36.397041][ T3614] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 36.410539][ T3614] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 36.420043][ T3614] REISERFS (device loop0): using ordered data mode [ 36.426837][ T3614] reiserfs: using flush barriers [pid 3614] mount("/dev/loop0", "./file0", "reiserfs", 0, "") = 0 [pid 3614] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5 [pid 3614] chdir("./file0") = 0 [pid 3614] ioctl(4, LOOP_CLR_FD) = 0 [pid 3614] close(4) = 0 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3 [ 36.432631][ T3614] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 36.449017][ T3614] REISERFS (device loop0): checking transaction log (loop0) [ 36.457061][ T3614] REISERFS (device loop0): Using rupasov hash to sort names [ 36.464791][ T3614] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 36.495334][ T3614] ------------[ cut here ]------------ [ 36.500801][ T3614] kernel BUG at fs/reiserfs/journal.c:505! [ 36.506823][ T3614] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 36.512886][ T3614] CPU: 1 PID: 3614 Comm: syz-executor429 Not tainted 6.0.0-syzkaller-09423-g493ffd6605b2 #0 [ 36.522972][ T3614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 36.533014][ T3614] RIP: 0010:reiserfs_in_journal+0xa9b/0xaa0 [ 36.538898][ T3614] Code: e8 da 45 b4 ff e9 15 f6 ff ff 48 8b 4c 24 30 80 e1 07 80 c1 03 38 c1 7c a8 48 8b 7c 24 30 e8 bc 45 b4 ff eb 9c e8 a5 da 60 ff <0f> 0b 0f 1f 00 55 41 57 41 56 41 55 41 54 53 50 49 89 fc 49 be 00 [ 36.558502][ T3614] RSP: 0018:ffffc90003dbee80 EFLAGS: 00010293 [ 36.564573][ T3614] RAX: ffffffff8225a6ab RBX: ffffc90003e63048 RCX: ffff888074a38000 [ 36.572623][ T3614] RDX: 0000000000000000 RSI: 0000000000000213 RDI: 0000000000000213 [ 36.580578][ T3614] RBP: ffffc90003e63050 R08: ffffffff82259ed2 R09: ffffed100ac4fc09 [ 36.588538][ T3614] R10: ffffed100ac4fc09 R11: 1ffff1100ac4fc08 R12: ffff88802353c000 [ 36.596508][ T3614] R13: dffffc0000000000 R14: ffff88802353c678 R15: 0000000000000213 [ 36.604464][ T3614] FS: 00005555571e1300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 36.613409][ T3614] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.620188][ T3614] CR2: 0000000020012000 CR3: 000000001e222000 CR4: 00000000003506e0 [ 36.628326][ T3614] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.636293][ T3614] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.644612][ T3614] Call Trace: [ 36.647997][ T3614] [ 36.650929][ T3614] scan_bitmap_block+0x447/0xf60 [ 36.656047][ T3614] ? reiserfs_write_lock_nested+0x5b/0xd0 [ 36.661779][ T3614] ? oid_groups+0x4f0/0x4f0 [ 36.666296][ T3614] ? mutex_lock_nested+0x17/0x20 [ 36.671298][ T3614] reiserfs_allocate_blocknrs+0x3640/0x53c0 [ 36.677184][ T3614] ? show_alloc_options+0xbd0/0xbd0 [ 36.682456][ T3614] ? journal_begin+0x1f1/0x350 [ 36.687204][ T3614] ? copy_item_head+0x1e/0x30 [ 36.691880][ T3614] reiserfs_get_block+0x32a5/0x5180 [ 36.697078][ T3614] ? make_le_item_head+0x5b0/0x5b0 [ 36.702179][ T3614] ? __kasan_slab_alloc+0xb5/0xd0 [ 36.707193][ T3614] ? __kasan_slab_alloc+0xa3/0xd0 [ 36.712199][ T3614] ? kmem_cache_alloc+0x1a6/0x310 [ 36.717205][ T3614] ? alloc_buffer_head+0x20/0xf0 [ 36.722128][ T3614] ? alloc_page_buffers+0x179/0x460 [ 36.727310][ T3614] ? create_empty_buffers+0x36/0xe30 [ 36.732583][ T3614] ? create_page_buffers+0x1c8/0x4b0 [ 36.737871][ T3614] ? __block_write_begin_int+0x1cf/0x1ba0 [ 36.743577][ T3614] ? reiserfs_write_begin+0x247/0x510 [ 36.748941][ T3614] ? generic_perform_write+0x2a8/0x5b0 [ 36.754385][ T3614] ? __generic_file_write_iter+0x176/0x400 [ 36.760182][ T3614] ? generic_file_write_iter+0xab/0x310 [ 36.765714][ T3614] ? vfs_write+0x7dc/0xc50 [ 36.770122][ T3614] ? ksys_write+0x177/0x2a0 [ 36.774607][ T3614] ? do_syscall_64+0x3d/0xb0 [ 36.779182][ T3614] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 36.785498][ T3614] ? fs_reclaim_acquire+0xaa/0x120 [ 36.790591][ T3614] ? trace_lock_release+0x7b/0x1a0 [ 36.795683][ T3614] ? rcu_read_lock_sched_held+0x5d/0x110 [ 36.801316][ T3614] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 36.807280][ T3614] ? perf_trace_rcu_stall_warning+0x2a2/0x2f0 [ 36.813339][ T3614] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 36.819326][ T3614] ? create_page_buffers+0x1c8/0x4b0 [ 36.824600][ T3614] ? lock_release+0x81/0x820 [ 36.829174][ T3614] ? __lock_acquire+0x1f60/0x1f60 [ 36.834181][ T3614] ? alloc_page_buffers+0x326/0x460 [ 36.839371][ T3614] ? folio_attach_private+0xd9/0x200 [ 36.844651][ T3614] ? do_raw_spin_unlock+0x134/0x8a0 [ 36.849839][ T3614] ? folio_add_lru+0x480/0x960 [ 36.854590][ T3614] ? create_page_buffers+0x244/0x4b0 [ 36.859866][ T3614] __block_write_begin_int+0x5f6/0x1ba0 [ 36.865407][ T3614] ? __might_sleep+0xc0/0xc0 [ 36.870001][ T3614] ? make_le_item_head+0x5b0/0x5b0 [ 36.875094][ T3614] ? page_zero_new_buffers+0x940/0x940 [ 36.880540][ T3614] ? fault_in_readable+0x1d5/0x310 [ 36.885637][ T3614] ? PageHeadHuge+0x8a/0x1d0 [ 36.890217][ T3614] ? __block_write_begin+0x51/0x150 [ 36.895415][ T3614] ? reiserfs_write_begin+0x180/0x510 [ 36.900771][ T3614] reiserfs_write_begin+0x247/0x510 [ 36.905957][ T3614] generic_perform_write+0x2a8/0x5b0 [ 36.911242][ T3614] ? reiserfs_write_begin+0x510/0x510 [ 36.916613][ T3614] ? generic_file_direct_write+0x610/0x610 [ 36.922413][ T3614] ? __file_remove_privs+0x6c0/0x6c0 [ 36.927701][ T3614] ? generic_write_checks+0x15c/0x1c0 [ 36.933168][ T3614] __generic_file_write_iter+0x176/0x400 [ 36.938792][ T3614] generic_file_write_iter+0xab/0x310 [ 36.944152][ T3614] vfs_write+0x7dc/0xc50 [ 36.948385][ T3614] ? _raw_spin_lock_irqsave+0x100/0x100 [ 36.953930][ T3614] ? file_end_write+0x230/0x230 [ 36.958766][ T3614] ? _raw_spin_unlock_irq+0x2a/0x40 [ 36.963948][ T3614] ? __fdget_pos+0x252/0x2e0 [ 36.968523][ T3614] ksys_write+0x177/0x2a0 [ 36.972841][ T3614] ? __ia32_sys_read+0x80/0x80 [ 36.977593][ T3614] ? syscall_enter_from_user_mode+0x86/0x1d0 [ 36.983564][ T3614] do_syscall_64+0x3d/0xb0 [ 36.987965][ T3614] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 36.993843][ T3614] RIP: 0033:0x7f718fa0d8c9 [ 36.998239][ T3614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 37.017830][ T3614] RSP: 002b:00007fff8e2494b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 37.026238][ T3614] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f718fa0d8c9 [ 37.034202][ T3614] RDX: 000000006db6e559 RSI: 00000000200001c0 RDI: 0000000000000003 [ 37.042169][ T3614] RBP: 0000000000000000 R08: 00007f718fa7bec0 R09: 00007f718fa7bec0 [ 37.050226][ T3614] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff8e2494e0 [ 37.058192][ T3614] R13: 0000000000000000 R14: 431bde82d7b634db R15: 0000000000000000 [ 37.066334][ T3614] [ 37.069351][ T3614] Modules linked in: [ 37.073436][ T3614] ---[ end trace 0000000000000000 ]--- [ 37.079302][ T3614] RIP: 0010:reiserfs_in_journal+0xa9b/0xaa0 [ 37.085396][ T3614] Code: e8 da 45 b4 ff e9 15 f6 ff ff 48 8b 4c 24 30 80 e1 07 80 c1 03 38 c1 7c a8 48 8b 7c 24 30 e8 bc 45 b4 ff eb 9c e8 a5 da 60 ff <0f> 0b 0f 1f 00 55 41 57 41 56 41 55 41 54 53 50 49 89 fc 49 be 00 [ 37.105206][ T3614] RSP: 0018:ffffc90003dbee80 EFLAGS: 00010293 [ 37.111271][ T3614] RAX: ffffffff8225a6ab RBX: ffffc90003e63048 RCX: ffff888074a38000 [ 37.119469][ T3614] RDX: 0000000000000000 RSI: 0000000000000213 RDI: 0000000000000213 [ 37.127597][ T3614] RBP: ffffc90003e63050 R08: ffffffff82259ed2 R09: ffffed100ac4fc09 [ 37.135864][ T3614] R10: ffffed100ac4fc09 R11: 1ffff1100ac4fc08 R12: ffff88802353c000 [ 37.144011][ T3614] R13: dffffc0000000000 R14: ffff88802353c678 R15: 0000000000000213 [ 37.152040][ T3614] FS: 00005555571e1300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 37.161135][ T3614] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 37.167942][ T3614] CR2: 00007f718fa7f130 CR3: 000000001e222000 CR4: 00000000003506f0 [ 37.176128][ T3614] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 37.184457][ T3614] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 37.192581][ T3614] Kernel panic - not syncing: Fatal exception [ 37.198794][ T3614] Kernel Offset: disabled [ 37.203384][ T3614] Rebooting in 86400 seconds..