./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3083048481 <...> Warning: Permanently added '10.128.0.188' (ECDSA) to the list of known hosts. execve("./syz-executor3083048481", ["./syz-executor3083048481"], 0x7fffd3abe120 /* 10 vars */) = 0 brk(NULL) = 0x555557383000 brk(0x555557383c40) = 0x555557383c40 arch_prctl(ARCH_SET_FS, 0x555557383300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3083048481", 4096) = 28 brk(0x5555573a4c40) = 0x5555573a4c40 brk(0x5555573a5000) = 0x5555573a5000 mprotect(0x7fa291457000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 ftruncate(3, 38848) = 0 pwrite64(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x02\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x0f\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\x00\x00\x00\xff\x03\x00\x00\x00\x00\x00\x00\xf8\xff\xff\x7f\x04", 69, 0) = 69 pwrite64(3, NULL, 0, 16384) = 0 pwrite64(3, NULL, 0, 17312) = 0 pwrite64(3, NULL, 0, 18400) = 0 pwrite64(3, NULL, 0, 19424) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 mkdir("./file0", 0777) = 0 syzkaller login: [ 39.325232][ T3603] loop0: detected capacity change from 0 to 75 [ 39.336167][ T3603] ntfs3: loop0: RAW NTFS volume: Filesystem size 0.00 Gb > volume size 0.00 Gb. Mount in read-only [ 39.347527][ T3603] general protection fault, probably for non-canonical address 0xdffffc0000000047: 0000 [#1] PREEMPT SMP KASAN [ 39.359225][ T3603] KASAN: null-ptr-deref in range [0x0000000000000238-0x000000000000023f] [ 39.367611][ T3603] CPU: 0 PID: 3603 Comm: syz-executor308 Not tainted 6.0.0-rc2-syzkaller-00327-g8379c0b31fbc #0 [ 39.377999][ T3603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 39.388033][ T3603] RIP: 0010:ni_find_attr+0xa8/0x630 [ 39.393214][ T3603] Code: 04 25 28 00 00 00 48 89 44 24 78 31 c0 e8 70 59 d7 fe 48 8d bd 38 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 c1 04 00 00 48 8b 85 38 02 00 00 31 ff 48 89 c6 [ 39.412807][ T3603] RSP: 0018:ffffc90003a8f868 EFLAGS: 00010216 [ 39.418850][ T3603] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 39.426808][ T3603] RDX: 0000000000000047 RSI: ffffffff82a4b0c0 RDI: 0000000000000238 [ 39.434767][ T3603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 39.442727][ T3603] R10: 000000000000000a R11: 0000000000000000 R12: 0000000000000000 [ 39.450773][ T3603] R13: 1ffff92000751f11 R14: 0000000000000080 R15: 0000000000000000 [ 39.458741][ T3603] FS: 0000555557383300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 39.467663][ T3603] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.474238][ T3603] CR2: 00007ffd29f68000 CR3: 0000000075661000 CR4: 0000000000350ef0 [ 39.482202][ T3603] Call Trace: [ 39.485467][ T3603] [ 39.488385][ T3603] ? ni_load_mi+0x100/0x100 [ 39.492886][ T3603] attr_load_runs_vcn+0x96/0x2b0 [ 39.497827][ T3603] ? attr_data_write_resident+0x380/0x380 [ 39.503538][ T3603] mi_read+0x4df/0x5b0 [ 39.507598][ T3603] ntfs_iget5+0x899/0x3280 [ 39.512006][ T3603] ? fs_reclaim_acquire+0xb2/0x160 [ 39.517112][ T3603] ? ntfs_write_end+0x7f0/0x7f0 [ 39.521953][ T3603] ? set_blocksize+0x2e5/0x370 [ 39.526725][ T3603] ntfs_fill_super+0x194d/0x37f0 [ 39.531658][ T3603] ? put_ntfs+0x330/0x330 [ 39.535977][ T3603] ? set_blocksize+0x2e5/0x370 [ 39.540731][ T3603] get_tree_bdev+0x440/0x760 [ 39.545314][ T3603] ? put_ntfs+0x330/0x330 [ 39.549718][ T3603] vfs_get_tree+0x89/0x2f0 [ 39.554210][ T3603] path_mount+0x1326/0x1e20 [ 39.558710][ T3603] ? kmem_cache_free+0xeb/0x5b0 [ 39.563550][ T3603] ? finish_automount+0x960/0x960 [ 39.568568][ T3603] ? putname+0xfe/0x140 [ 39.572718][ T3603] __x64_sys_mount+0x27f/0x300 [ 39.577474][ T3603] ? copy_mnt_ns+0xae0/0xae0 [ 39.582059][ T3603] ? lockdep_hardirqs_on+0x79/0x100 [ 39.587248][ T3603] ? _raw_spin_unlock_irq+0x2a/0x40 [ 39.592438][ T3603] ? ptrace_notify+0xfa/0x140 [ 39.597106][ T3603] do_syscall_64+0x35/0xb0 [ 39.601510][ T3603] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 39.607393][ T3603] RIP: 0033:0x7fa2913ec1ba [ 39.611799][ T3603] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 39.631400][ T3603] RSP: 002b:00007ffd29f67528 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 39.639801][ T3603] RAX: ffffffffffffffda RBX: 00007ffd29f67580 RCX: 00007fa2913ec1ba [ 39.647766][ T3603] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffd29f67540 [ 39.655724][ T3603] RBP: 00007ffd29f67540 R08: 00007ffd29f67580 R09: 0000000000000000 [ 39.663680][ T3603] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000020000278 [ 39.671637][ T3603] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000005 [ 39.679691][ T3603] [ 39.682694][ T3603] Modules linked in: [ 39.686724][ T3603] ---[ end trace 0000000000000000 ]--- [ 39.692188][ T3603] RIP: 0010:ni_find_attr+0xa8/0x630 [ 39.697444][ T3603] Code: 04 25 28 00 00 00 48 89 44 24 78 31 c0 e8 70 59 d7 fe 48 8d bd 38 02 00 00 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 c1 04 00 00 48 8b 85 38 02 00 00 31 ff 48 89 c6 [ 39.717128][ T3603] RSP: 0018:ffffc90003a8f868 EFLAGS: 00010216 [ 39.723179][ T3603] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 39.731160][ T3603] RDX: 0000000000000047 RSI: ffffffff82a4b0c0 RDI: 0000000000000238 [ 39.739149][ T3603] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 39.747131][ T3603] R10: 000000000000000a R11: 0000000000000000 R12: 0000000000000000 [ 39.755115][ T3603] R13: 1ffff92000751f11 R14: 0000000000000080 R15: 0000000000000000 [ 39.763069][ T3603] FS: 0000555557383300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 39.772006][ T3603] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.778609][ T3603] CR2: 00007ffd29f68000 CR3: 0000000075661000 CR4: 0000000000350ef0 [ 39.786596][ T3603] Kernel panic - not syncing: Fatal exception [ 39.793571][ T3603] Kernel Offset: disabled [ 39.797887][ T3603] Rebooting in 86400 seconds..