./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor281562263 <...> Warning: Permanently added '10.128.0.165' (ED25519) to the list of known hosts. execve("./syz-executor281562263", ["./syz-executor281562263"], 0x7ffcfdf89a50 /* 10 vars */) = 0 brk(NULL) = 0x555556f1e000 brk(0x555556f1ed00) = 0x555556f1ed00 arch_prctl(ARCH_SET_FS, 0x555556f1e380) = 0 set_tid_address(0x555556f1e650) = 5033 set_robust_list(0x555556f1e660, 24) = 0 rseq(0x555556f1eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor281562263", 4096) = 27 getrandom("\xbc\xec\xd1\xde\x98\x21\x48\x42", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556f1ed00 brk(0x555556f3fd00) = 0x555556f3fd00 brk(0x555556f40000) = 0x555556f40000 mprotect(0x7fce331ca000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fce2acfb000 write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x04\x04\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x07\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\xff\x00\x00\x00\x00\x00\x00\x00\xf6\x00\x00\x00\x40\x00\x00\x00\xf7\x9a\x81\x47\x2b\x73\xcf\x43\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152 munmap(0x7fce2acfb000, 2097152) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 74.090641][ T5033] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5033 'syz-executor281' ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 [ 74.135567][ T5033] loop0: detected capacity change from 0 to 4096 [ 74.149020][ T5033] ------------[ cut here ]------------ [ 74.154517][ T5033] kernel BUG at fs/ntfs/aops.c:186! [ 74.159801][ T5033] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 74.165996][ T5033] CPU: 0 PID: 5033 Comm: syz-executor281 Not tainted 6.5.0-rc3-next-20230726-syzkaller #0 [ 74.176025][ T5033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023 [ 74.186339][ T5033] RIP: 0010:ntfs_read_folio+0x254c/0x3080 [ 74.192314][ T5033] Code: 4c 24 08 48 8b 98 30 fd ff ff 48 c1 eb 03 83 e3 01 89 de e8 66 56 d3 fe 84 db 4c 8b 4c 24 08 0f 85 50 ea ff ff e8 24 5b d3 fe <0f> 0b e8 1d 5b d3 fe 48 8b 44 24 40 48 8d b8 70 fd ff ff e8 fc d1 [ 74.211964][ T5033] RSP: 0018:ffffc90003b9f6c0 EFLAGS: 00010293 [ 74.218052][ T5033] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 74.226154][ T5033] RDX: ffff888025c85940 RSI: ffffffff82b39bac RDI: 0000000000000001 [ 74.234229][ T5033] RBP: ffffea0001d2f800 R08: 0000000000000001 R09: ffffea0001d2f808 [ 74.242225][ T5033] R10: 0000000000000000 R11: ffffffff81f4f3d2 R12: dffffc0000000000 [ 74.250231][ T5033] R13: fffff940003a5f01 R14: ffffea0001d2f820 R15: ffffea0001d2f820 [ 74.258409][ T5033] FS: 0000555556f1e380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 74.267464][ T5033] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.274170][ T5033] CR2: 000000000257b388 CR3: 00000000725eb000 CR4: 00000000003506f0 [ 74.282262][ T5033] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.290337][ T5033] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.298335][ T5033] Call Trace: [ 74.301667][ T5033] [ 74.304614][ T5033] ? die+0x31/0x80 [ 74.308375][ T5033] ? do_trap+0x1ab/0x3b0 [ 74.312660][ T5033] ? ntfs_read_folio+0x254c/0x3080 [ 74.317811][ T5033] ? do_error_trap+0x9e/0x160 [ 74.322628][ T5033] ? ntfs_read_folio+0x254c/0x3080 [ 74.327778][ T5033] ? handle_invalid_op+0x2c/0x30 [ 74.332929][ T5033] ? ntfs_read_folio+0x254c/0x3080 [ 74.338095][ T5033] ? exc_invalid_op+0x2d/0x40 [ 74.342829][ T5033] ? asm_exc_invalid_op+0x1a/0x20 [ 74.347907][ T5033] ? path_mount+0x1492/0x1ed0 [ 74.352689][ T5033] ? ntfs_read_folio+0x254c/0x3080 [ 74.358020][ T5033] ? ntfs_read_folio+0x254c/0x3080 [ 74.363190][ T5033] ? rcu_is_watching+0x12/0xb0 [ 74.368265][ T5033] ? rcu_is_watching+0x12/0xb0 [ 74.377009][ T5033] ? folio_add_lru+0x41c/0x7d0 [ 74.382506][ T5033] ? reacquire_held_locks+0x4b0/0x4b0 [ 74.388270][ T5033] ? ntfs_end_buffer_async_read+0x16e0/0x16e0 [ 74.394433][ T5033] ? folio_add_lru+0x452/0x7d0 [ 74.399340][ T5033] ? ntfs_end_buffer_async_read+0x16e0/0x16e0 [ 74.405593][ T5033] filemap_read_folio+0xe5/0x2b0 [ 74.410840][ T5033] ? __folio_lock_killable+0x20/0x20 [ 74.416633][ T5033] ? __filemap_get_folio+0x1f5/0xb00 [ 74.422159][ T5033] do_read_cache_folio+0x1ff/0x540 [ 74.427507][ T5033] ? ntfs_end_buffer_async_read+0x16e0/0x16e0 [ 74.434230][ T5033] read_cache_page+0x5b/0x180 [ 74.439318][ T5033] map_mft_record+0x1dd/0x730 [ 74.444328][ T5033] ntfs_read_locked_inode+0x19b/0x5860 [ 74.451169][ T5033] ? ntfs_attr_reinit_search_ctx+0x3c0/0x3c0 [ 74.457393][ T5033] ntfs_read_inode_mount+0xef9/0x2730 [ 74.462915][ T5033] ntfs_fill_super+0x185c/0x9100 [ 74.467933][ T5033] ? parse_options+0x1db0/0x1db0 [ 74.473142][ T5033] ? snprintf+0xc8/0x100 [ 74.477440][ T5033] ? vsprintf+0x30/0x30 [ 74.481669][ T5033] ? bit_wait_timeout+0x160/0x160 [ 74.486745][ T5033] ? set_blocksize+0x2bd/0x360 [ 74.491560][ T5033] ? parse_options+0x1db0/0x1db0 [ 74.496722][ T5033] mount_bdev+0x30d/0x3d0 [ 74.501872][ T5033] ? ntfs_rl_punch_nolock+0x15d0/0x15d0 [ 74.507461][ T5033] legacy_get_tree+0x109/0x220 [ 74.512263][ T5033] vfs_get_tree+0x88/0x350 [ 74.516709][ T5033] path_mount+0x1492/0x1ed0 [ 74.521527][ T5033] ? kmem_cache_free+0xf0/0x490 [ 74.526494][ T5033] ? finish_automount+0xa50/0xa50 [ 74.531750][ T5033] ? putname+0x101/0x140 [ 74.536970][ T5033] __x64_sys_mount+0x293/0x310 [ 74.541806][ T5033] ? copy_mnt_ns+0xb60/0xb60 [ 74.546546][ T5033] ? lockdep_hardirqs_on+0x7d/0x100 [ 74.552788][ T5033] ? _raw_spin_unlock_irq+0x2e/0x50 [ 74.558212][ T5033] ? ptrace_notify+0xf4/0x130 [ 74.562925][ T5033] do_syscall_64+0x38/0xb0 [ 74.567386][ T5033] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 74.574244][ T5033] RIP: 0033:0x7fce331398fa [ 74.578777][ T5033] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.598952][ T5033] RSP: 002b:00007ffc94ff9c98 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 74.607543][ T5033] RAX: ffffffffffffffda RBX: 00007ffc94ff9cb0 RCX: 00007fce331398fa [ 74.615754][ T5033] RDX: 0000000020000000 RSI: 000000002001e740 RDI: 00007ffc94ff9cb0 [ 74.623914][ T5033] RBP: 0000000000000004 R08: 00007ffc94ff9cf0 R09: 000000000001e718 [ 74.631915][ T5033] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 74.639937][ T5033] R13: 00007ffc94ff9cf0 R14: 0000000000000003 R15: 0000000000200000 [ 74.648250][ T5033] [ 74.651854][ T5033] Modules linked in: [ 74.656022][ T5033] ---[ end trace 0000000000000000 ]--- [ 74.661547][ T5033] RIP: 0010:ntfs_read_folio+0x254c/0x3080 [ 74.667427][ T5033] Code: 4c 24 08 48 8b 98 30 fd ff ff 48 c1 eb 03 83 e3 01 89 de e8 66 56 d3 fe 84 db 4c 8b 4c 24 08 0f 85 50 ea ff ff e8 24 5b d3 fe <0f> 0b e8 1d 5b d3 fe 48 8b 44 24 40 48 8d b8 70 fd ff ff e8 fc d1 [ 74.687208][ T5033] RSP: 0018:ffffc90003b9f6c0 EFLAGS: 00010293 [ 74.693348][ T5033] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 74.701386][ T5033] RDX: ffff888025c85940 RSI: ffffffff82b39bac RDI: 0000000000000001 [ 74.709464][ T5033] RBP: ffffea0001d2f800 R08: 0000000000000001 R09: ffffea0001d2f808 [ 74.717494][ T5033] R10: 0000000000000000 R11: ffffffff81f4f3d2 R12: dffffc0000000000 [ 74.725594][ T5033] R13: fffff940003a5f01 R14: ffffea0001d2f820 R15: ffffea0001d2f820 [ 74.733753][ T5033] FS: 0000555556f1e380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 74.742972][ T5033] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.749668][ T5033] CR2: 000000000257b388 CR3: 00000000725eb000 CR4: 00000000003506f0 [ 74.757877][ T5033] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.765961][ T5033] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.774093][ T5033] Kernel panic - not syncing: Fatal exception [ 74.780614][ T5033] Kernel Offset: disabled [ 74.784963][ T5033] Rebooting in 86400 seconds..