./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3507504076 <...> Warning: Permanently added '10.128.0.25' (ECDSA) to the list of known hosts. execve("./syz-executor3507504076", ["./syz-executor3507504076"], 0x7ffcc6987ed0 /* 10 vars */) = 0 brk(NULL) = 0x55555642c000 brk(0x55555642cc40) = 0x55555642cc40 arch_prctl(ARCH_SET_FS, 0x55555642c300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3507504076", 4096) = 28 brk(0x55555644dc40) = 0x55555644dc40 brk(0x55555644e000) = 0x55555644e000 mprotect(0x7f98a0663000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f98981a4000 [ 44.792189][ T4999] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4999 'syz-executor350' write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 munmap(0x7f98981a4000, 16777216) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 mount("/dev/loop0", "./file0", "jfs", MS_DIRSYNC|MS_REC|MS_POSIXACL, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 [ 44.890307][ T4999] loop0: detected capacity change from 0 to 32768 [ 44.915339][ T26] audit: type=1800 audit(1687259666.638:2): pid=4999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor350" name="file2" dev="loop0" ino=5 res=0 errno=0 [ 44.916362][ T4999] ERROR: (device loop0): xtTruncate: XT_GETPAGE: xtree page corrupt [ 44.916362][ T4999] [ 44.946426][ T4999] ERROR: (device loop0): remounting filesystem as read-only [ 44.953928][ T4999] BUG at fs/jfs/jfs_txnmgr.c:523 assert(tblk->next == 0) [ 44.961373][ T4999] ------------[ cut here ]------------ [ 44.966821][ T4999] kernel BUG at fs/jfs/jfs_txnmgr.c:523! [ 44.972518][ T4999] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 44.978591][ T4999] CPU: 0 PID: 4999 Comm: syz-executor350 Not tainted 6.4.0-rc7-syzkaller-00014-g692b7dc87ca6 #0 [ 44.988997][ T4999] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 [ 44.999130][ T4999] RIP: 0010:txEnd+0x582/0x5a0 [ 45.003801][ T4999] Code: fe e9 59 fb ff ff e8 5d 72 94 fe 48 c7 c1 c0 c4 89 8a ba 0b 02 00 00 48 c7 c6 80 bf 89 8a 48 c7 c7 c0 bf 89 8a e8 6e 56 78 fe <0f> 0b 48 89 ef e8 b4 3d e7 fe e9 41 fd ff ff e8 8a 3d e7 fe e9 2f [ 45.023402][ T4999] RSP: 0018:ffffc9000394f828 EFLAGS: 00010282 [ 45.029475][ T4999] RAX: 0000000000000036 RBX: ffffc90002641110 RCX: 0000000000000000 [ 45.037432][ T4999] RDX: 0000000000000000 RSI: ffffffff8168bd1c RDI: 0000000000000005 [ 45.045385][ T4999] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 45.053337][ T4999] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880788bd800 [ 45.061293][ T4999] R13: 0000000000000001 R14: ffffffff8ccf2360 R15: ffffc90002641112 [ 45.069246][ T4999] FS: 000055555642c300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 45.078508][ T4999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 45.085087][ T4999] CR2: 0000562e3fe40bf8 CR3: 000000001f1b5000 CR4: 0000000000350ef0 [ 45.093057][ T4999] Call Trace: [ 45.096331][ T4999] [ 45.099242][ T4999] ? die+0x32/0x90 [ 45.102950][ T4999] ? do_trap+0x1b2/0x3f0 [ 45.107167][ T4999] ? txEnd+0x582/0x5a0 [ 45.111217][ T4999] ? txEnd+0x582/0x5a0 [ 45.115288][ T4999] ? do_error_trap+0xb1/0x170 [ 45.119947][ T4999] ? txEnd+0x582/0x5a0 [ 45.123994][ T4999] ? handle_invalid_op+0x2c/0x30 [ 45.128913][ T4999] ? txEnd+0x582/0x5a0 [ 45.132960][ T4999] ? exc_invalid_op+0x2f/0x50 [ 45.137632][ T4999] ? asm_exc_invalid_op+0x1a/0x20 [ 45.142662][ T4999] ? vprintk+0x8c/0xa0 [ 45.146712][ T4999] ? txEnd+0x582/0x5a0 [ 45.150778][ T4999] ? txEnd+0x582/0x5a0 [ 45.154823][ T4999] jfs_truncate_nolock+0x217/0x2f0 [ 45.159917][ T4999] ? jfs_dirty_inode+0x260/0x260 [ 45.164838][ T4999] ? jfs_read_folio+0x20/0x20 [ 45.169501][ T4999] jfs_truncate+0xe9/0x170 [ 45.173900][ T4999] jfs_setattr+0x2cb/0x760 [ 45.178302][ T4999] ? jfs_open+0x410/0x410 [ 45.182677][ T4999] notify_change+0xb2c/0x1180 [ 45.187341][ T4999] ? down_write+0x14f/0x200 [ 45.191840][ T4999] ? do_truncate+0x143/0x200 [ 45.196424][ T4999] do_truncate+0x143/0x200 [ 45.200823][ T4999] ? file_open_root+0x460/0x460 [ 45.205654][ T4999] ? common_perm_cond+0x22f/0x830 [ 45.210674][ T4999] ? jfs_release+0x1b0/0x1b0 [ 45.215265][ T4999] path_openat+0x2083/0x2750 [ 45.219852][ T4999] ? path_lookupat+0x840/0x840 [ 45.224657][ T4999] do_filp_open+0x1ba/0x410 [ 45.229161][ T4999] ? may_open_dev+0xf0/0xf0 [ 45.233645][ T4999] ? find_held_lock+0x2d/0x110 [ 45.238394][ T4999] ? do_raw_spin_lock+0x124/0x2b0 [ 45.243402][ T4999] ? spin_bug+0x1c0/0x1c0 [ 45.247715][ T4999] ? _raw_spin_unlock+0x28/0x40 [ 45.252549][ T4999] ? alloc_fd+0x2e4/0x750 [ 45.256961][ T4999] do_sys_openat2+0x16d/0x4c0 [ 45.261766][ T4999] ? ptrace_stop.part.0+0x60f/0x8e0 [ 45.266944][ T4999] ? build_open_flags+0x720/0x720 [ 45.271953][ T4999] ? ptrace_notify+0xfe/0x140 [ 45.276630][ T4999] ? lock_downgrade+0x690/0x690 [ 45.281466][ T4999] __x64_sys_open+0x11d/0x1c0 [ 45.286134][ T4999] ? do_sys_open+0x150/0x150 [ 45.290708][ T4999] ? _raw_spin_unlock_irq+0x2e/0x50 [ 45.295888][ T4999] ? ptrace_notify+0xfe/0x140 [ 45.300548][ T4999] do_syscall_64+0x39/0xb0 [ 45.304940][ T4999] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 45.310816][ T4999] RIP: 0033:0x7f98a05f0769 [ 45.315206][ T4999] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 45.334800][ T4999] RSP: 002b:00007ffcfdad91f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 45.343203][ T4999] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f98a05f0769 [ 45.351162][ T4999] RDX: 0000000000000000 RSI: 000000000014527e RDI: 0000000020000040 [ 45.359115][ T4999] RBP: 00007f98a05b0000 R08: 0000000000005dea R09: 0000000000000000 [ 45.367067][ T4999] R10: 00007ffcfdad90c0 R11: 0000000000000246 R12: 00007f98a05b0090 [ 45.375017][ T4999] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 45.382975][ T4999] [ 45.385973][ T4999] Modules linked in: [ 45.389968][ T4999] ---[ end trace 0000000000000000 ]--- [ 45.395434][ T4999] RIP: 0010:txEnd+0x582/0x5a0 [ 45.400148][ T4999] Code: fe e9 59 fb ff ff e8 5d 72 94 fe 48 c7 c1 c0 c4 89 8a ba 0b 02 00 00 48 c7 c6 80 bf 89 8a 48 c7 c7 c0 bf 89 8a e8 6e 56 78 fe <0f> 0b 48 89 ef e8 b4 3d e7 fe e9 41 fd ff ff e8 8a 3d e7 fe e9 2f [ 45.419787][ T4999] RSP: 0018:ffffc9000394f828 EFLAGS: 00010282 [ 45.425874][ T4999] RAX: 0000000000000036 RBX: ffffc90002641110 RCX: 0000000000000000 [ 45.433859][ T4999] RDX: 0000000000000000 RSI: ffffffff8168bd1c RDI: 0000000000000005 [ 45.441844][ T4999] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 45.449917][ T4999] R10: 0000000000000001 R11: 0000000000000001 R12: ffff8880788bd800 [ 45.457904][ T4999] R13: 0000000000000001 R14: ffffffff8ccf2360 R15: ffffc90002641112 [ 45.465857][ T4999] FS: 000055555642c300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 45.474799][ T4999] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 45.481400][ T4999] CR2: 0000562e3fe40bf8 CR3: 000000001f1b5000 CR4: 0000000000350ef0 [ 45.489480][ T4999] Kernel panic - not syncing: Fatal exception [ 45.496479][ T4999] Kernel Offset: disabled [ 45.500811][ T4999] Rebooting in 86400 seconds..