./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor950124460 <...> Warning: Permanently added '10.128.0.89' (ECDSA) to the list of known hosts. execve("./syz-executor950124460", ["./syz-executor950124460"], 0x7ffd834c9780 /* 10 vars */) = 0 brk(NULL) = 0x555555aae000 brk(0x555555aaec40) = 0x555555aaec40 arch_prctl(ARCH_SET_FS, 0x555555aae300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor950124460", 4096) = 27 brk(0x555555acfc40) = 0x555555acfc40 brk(0x555555ad0000) = 0x555555ad0000 mprotect(0x7f50e3180000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 ftruncate(3, 131072) = 0 pwrite64(3, "\x01\x16\x19\x70\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x07\x09\x00\x00\x07\x6c\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x08\xd0\xb3\x60\x7b\x4f\x84\x5e\xdd\xf4\x2d\xe8\x69\xba\xa5\x59\x42\xf1\xdc\xca\x83\x30\x10\xa8\x2d\xfa\x5a\xe1\x4f\xbe\xe4\x8c\xde\xff\x1c\x7f\x8d\xf8"..., 343, 65536) = 343 pwrite64(3, "\x60\x22\xa7\xf3\x72\xec\x34\xf6\x34\x52\xc2\x6b\xb0\xbf\xce\x99\xad\x3e\x09\x83\x25\xdf\xc0\xa4\x97\x4f\x37\xe3\x6e\xf4\x15\xf4\x41\x5b\x6f\xde\xff\xb3\x27\xe6\x63\x75\x43\xdd\xc1\x87\x02\xf5\x37\x02\xb3\x00\xea\x66\xa8\x55\x5f\xd5\x2b\x6f\x80\x99\xc8\x4e\x4e\x96\x03\x46\xea\xd1\xd3\x67\x7f\x38\xce\x9e\x9c\xee\x9b\x77\x1e\xf9\x6d\x85\xcc\x74\x6e\x90\x28\xc6\x65\x3c\x77\xcc\x4f\x7b\x22\xd2\x3d\x69"..., 130, 9) = 130 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 mkdir("./file0", 0777) = 0 [ 43.667897][ T3612] loop0: detected capacity change from 0 to 256 [ 43.679656][ T3612] detected buffer overflow in __fortify_strlen [ 43.686480][ T3612] ------------[ cut here ]------------ [ 43.692122][ T3612] kernel BUG at lib/string_helpers.c:983! [ 43.697855][ T3612] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 43.704186][ T3612] CPU: 0 PID: 3612 Comm: syz-executor950 Not tainted 6.0.0-rc6-syzkaller-00321-g105a36f3694e #0 [ 43.714577][ T3612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 43.724643][ T3612] RIP: 0010:fortify_panic+0x18/0x1a [ 43.729937][ T3612] Code: 8c e8 83 5c d5 fa e9 71 10 b3 fa e8 b9 8d 7d f8 eb db 55 48 89 fd e8 7e 2d 31 f8 48 89 ee 48 c7 c7 40 c7 48 8a e8 e6 f0 f0 ff <0f> 0b e8 68 2d 31 f8 48 8b 54 24 18 4c 89 f1 48 c7 c7 c0 d1 48 8a [ 43.749634][ T3612] RSP: 0018:ffffc900037afb28 EFLAGS: 00010282 [ 43.755793][ T3612] RAX: 000000000000002c RBX: ffff8880770ca000 RCX: 0000000000000000 [ 43.763756][ T3612] RDX: ffff8880237f3b00 RSI: ffffffff8161f3a8 RDI: fffff520006f5f57 [ 43.771737][ T3612] RBP: ffffffff8a3aa2a0 R08: 000000000000002c R09: 0000000000000000 [ 43.779877][ T3612] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000040 [ 43.787854][ T3612] R13: ffff88802180547e R14: ffff888021804128 R15: 0000000000000000 [ 43.796001][ T3612] FS: 0000555555aae300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 43.805011][ T3612] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.811584][ T3612] CR2: 00007ffde9960000 CR3: 0000000071b0a000 CR4: 0000000000350ef0 [ 43.819550][ T3612] Call Trace: [ 43.822818][ T3612] [ 43.825765][ T3612] gfs2_fill_super+0x1226/0x27f0 [ 43.830706][ T3612] ? gfs2_reconfigure+0x1060/0x1060 [ 43.835896][ T3612] ? lock_downgrade+0x6e0/0x6e0 [ 43.840740][ T3612] ? snprintf+0xbb/0xf0 [ 43.844887][ T3612] ? vsprintf+0x30/0x30 [ 43.849032][ T3612] ? wait_for_completion_io_timeout+0x20/0x20 [ 43.855107][ T3612] ? set_blocksize+0x2e5/0x370 [ 43.859869][ T3612] get_tree_bdev+0x440/0x760 [ 43.864452][ T3612] ? gfs2_reconfigure+0x1060/0x1060 [ 43.869660][ T3612] gfs2_get_tree+0x4a/0x270 [ 43.874161][ T3612] vfs_get_tree+0x89/0x2f0 [ 43.878690][ T3612] path_mount+0x1326/0x1e20 [ 43.883190][ T3612] ? kmem_cache_free+0xeb/0x5b0 [ 43.888031][ T3612] ? finish_automount+0x960/0x960 [ 43.893048][ T3612] ? putname+0xfe/0x140 [ 43.897198][ T3612] __x64_sys_mount+0x27f/0x300 [ 43.901982][ T3612] ? copy_mnt_ns+0xae0/0xae0 [ 43.906650][ T3612] ? lockdep_hardirqs_on+0x79/0x100 [ 43.911848][ T3612] ? _raw_spin_unlock_irq+0x2a/0x40 [ 43.917120][ T3612] ? ptrace_notify+0xfa/0x140 [ 43.921792][ T3612] do_syscall_64+0x35/0xb0 [ 43.926202][ T3612] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.932171][ T3612] RIP: 0033:0x7f50e31151ba [ 43.936576][ T3612] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 43.956259][ T3612] RSP: 002b:00007ffde995f508 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 43.964664][ T3612] RAX: ffffffffffffffda RBX: 00007ffde995f560 RCX: 00007f50e31151ba [ 43.972623][ T3612] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffde995f520 [ 43.980587][ T3612] RBP: 00007ffde995f520 R08: 00007ffde995f560 R09: 0000000000000008 [ 43.988545][ T3612] R10: 0000000000000008 R11: 0000000000000282 R12: 0000000020000070 [ 43.996505][ T3612] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000002 [ 44.004470][ T3612] [ 44.007483][ T3612] Modules linked in: [ 44.011516][ T3612] ---[ end trace 0000000000000000 ]--- [ 44.017099][ T3612] RIP: 0010:fortify_panic+0x18/0x1a [ 44.022350][ T3612] Code: 8c e8 83 5c d5 fa e9 71 10 b3 fa e8 b9 8d 7d f8 eb db 55 48 89 fd e8 7e 2d 31 f8 48 89 ee 48 c7 c7 40 c7 48 8a e8 e6 f0 f0 ff <0f> 0b e8 68 2d 31 f8 48 8b 54 24 18 4c 89 f1 48 c7 c7 c0 d1 48 8a [ 44.041977][ T3612] RSP: 0018:ffffc900037afb28 EFLAGS: 00010282 [ 44.048058][ T3612] RAX: 000000000000002c RBX: ffff8880770ca000 RCX: 0000000000000000 [ 44.056048][ T3612] RDX: ffff8880237f3b00 RSI: ffffffff8161f3a8 RDI: fffff520006f5f57 [ 44.064125][ T3612] RBP: ffffffff8a3aa2a0 R08: 000000000000002c R09: 0000000000000000 [ 44.072127][ T3612] R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000040 [ 44.080106][ T3612] R13: ffff88802180547e R14: ffff888021804128 R15: 0000000000000000 [ 44.088105][ T3612] FS: 0000555555aae300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000 [ 44.097067][ T3612] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 44.103753][ T3612] CR2: 000055b6f087b6f8 CR3: 0000000071b0a000 CR4: 0000000000350ee0 [ 44.111733][ T3612] Kernel panic - not syncing: Fatal exception [ 44.118329][ T3612] Kernel Offset: disabled [ 44.122699][ T3612] Rebooting in 86400 seconds..