Warning: Permanently added '10.128.0.234' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program syzkaller login: [ 32.409025] audit: type=1400 audit(1600952319.707:8): avc: denied { execmem } for pid=6346 comm="syz-executor515" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 32.449535] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 32.450270] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 32.466932] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 32.468782] REISERFS (device loop0): using ordered data mode [ 32.475484] REISERFS (device loop5): found reiserfs format "3.6" with standard journal [ 32.483151] reiserfs: using flush barriers [ 32.493266] REISERFS (device loop1): using ordered data mode [ 32.494315] REISERFS (device loop2): found reiserfs format "3.6" with standard journal [ 32.501716] REISERFS (device loop3): using ordered data mode [ 32.509595] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.513273] reiserfs: using flush barriers [ 32.531113] REISERFS (device loop2): using ordered data mode [ 32.539979] reiserfs: using flush barriers [ 32.545842] REISERFS (device loop2): journal params: device loop2, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.550812] REISERFS (device loop5): using ordered data mode [ 32.563773] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 32.577826] REISERFS (device loop0): checking transaction log (loop0) [ 32.581053] reiserfs: using flush barriers [ 32.585606] REISERFS (device loop4): using ordered data mode [ 32.596845] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.602854] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.615450] REISERFS (device loop2): checking transaction log (loop2) [ 32.629145] reiserfs: using flush barriers [ 32.635525] reiserfs: using flush barriers [ 32.645002] REISERFS (device loop4): journal params: device loop4, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.652295] REISERFS (device loop5): journal params: device loop5, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.662560] REISERFS (device loop0): Using tea hash to sort names [ 32.684250] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.686023] REISERFS (device loop4): checking transaction log (loop4) [ 32.709671] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.736360] REISERFS (device loop2): Using tea hash to sort names [ 32.742293] REISERFS (device loop3): checking transaction log (loop3) [ 32.750457] REISERFS (device loop1): checking transaction log (loop1) [ 32.757209] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.757235] REISERFS (device loop4): Using tea hash to sort names [ 32.786752] REISERFS (device loop5): checking transaction log (loop5) [ 32.796944] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.800010] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 32.820918] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.838176] REISERFS (device loop0): using ordered data mode [ 32.845216] reiserfs: using flush barriers [ 32.848112] REISERFS (device loop3): Using tea hash to sort names [ 32.854846] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.873386] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 32.883175] REISERFS (device loop5): Using tea hash to sort names [ 32.885110] REISERFS (device loop4): using ordered data mode [ 32.892548] REISERFS (device loop2): found reiserfs format "3.6" with standard journal [ 32.896628] reiserfs: using flush barriers [ 32.909415] REISERFS (device loop4): journal params: device loop4, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 32.916587] REISERFS (device loop2): using ordered data mode [ 32.927276] REISERFS (device loop4): checking transaction log (loop4) executing program [ 32.936829] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.965434] REISERFS (device loop0): checking transaction log (loop0) [ 32.968353] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 32.998288] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.016403] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 33.023788] reiserfs: using flush barriers [ 33.029139] REISERFS (device loop5): found reiserfs format "3.6" with standard journal [ 33.030149] REISERFS (device loop3): using ordered data mode [ 33.040614] REISERFS (device loop1): Using tea hash to sort names [ 33.050522] REISERFS (device loop5): using ordered data mode [ 33.061090] REISERFS (device loop2): journal params: device loop2, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.063493] REISERFS (device loop4): Using tea hash to sort names [ 33.080666] reiserfs: using flush barriers [ 33.091436] REISERFS (device loop0): Using tea hash to sort names [ 33.094529] reiserfs: using flush barriers [ 33.103174] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.103328] REISERFS (device loop5): journal params: device loop5, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.123047] REISERFS (device loop3): checking transaction log (loop3) executing program executing program [ 33.144255] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.149177] REISERFS (device loop2): checking transaction log (loop2) [ 33.161286] REISERFS (device loop3): Using tea hash to sort names executing program [ 33.188863] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.194531] REISERFS (device loop5): checking transaction log (loop5) [ 33.213930] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 33.222600] REISERFS (device loop2): Using tea hash to sort names [ 33.224127] REISERFS (device loop1): found reiserfs format "3.6" with standard journal [ 33.243387] REISERFS (device loop4): using ordered data mode [ 33.254735] REISERFS (device loop1): using ordered data mode [ 33.260554] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.260727] reiserfs: using flush barriers [ 33.277345] REISERFS (device loop5): Using tea hash to sort names [ 33.280435] reiserfs: using flush barriers executing program executing program executing program [ 33.306840] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.323732] REISERFS (device loop4): journal params: device loop4, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.367154] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 33.383367] REISERFS (device loop3): using ordered data mode [ 33.389550] reiserfs: using flush barriers [ 33.396924] REISERFS (device loop1): checking transaction log (loop1) [ 33.398294] REISERFS (device loop4): checking transaction log (loop4) [ 33.410346] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.425580] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.429432] REISERFS (device loop1): Using tea hash to sort names [ 33.441455] REISERFS (device loop4): Using tea hash to sort names executing program [ 33.487765] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.523463] REISERFS (device loop2): found reiserfs format "3.6" with standard journal [ 33.543949] REISERFS (device loop5): found reiserfs format "3.6" with standard journal [ 33.557562] REISERFS (device loop2): using ordered data mode [ 33.561155] REISERFS (device loop5): using ordered data mode [ 33.564918] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 33.569827] reiserfs: using flush barriers [ 33.583268] REISERFS (device loop3): checking transaction log (loop3) [ 33.590452] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.593749] reiserfs: using flush barriers [ 33.607943] REISERFS (device loop3): Using tea hash to sort names [ 33.609996] REISERFS (device loop0): using ordered data mode [ 33.623795] reiserfs: using flush barriers [ 33.640741] REISERFS (device loop5): journal params: device loop5, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.658600] REISERFS (device loop2): journal params: device loop2, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.679630] REISERFS (device loop1): found reiserfs format "3.6" with standard journal executing program [ 33.688746] REISERFS (device loop4): found reiserfs format "3.6" with standard journal [ 33.698501] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.711945] REISERFS (device loop4): using ordered data mode [ 33.735192] REISERFS (device loop1): using ordered data mode [ 33.741190] REISERFS (device loop2): checking transaction log (loop2) [ 33.755308] REISERFS (device loop5): checking transaction log (loop5) [ 33.759860] reiserfs: using flush barriers [ 33.767291] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.768736] REISERFS (device loop3): found reiserfs format "3.6" with standard journal [ 33.787566] REISERFS (device loop5): Using tea hash to sort names [ 33.796973] reiserfs: using flush barriers [ 33.802516] REISERFS (device loop0): checking transaction log (loop0) [ 33.815696] REISERFS (device loop1): journal params: device loop1, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 executing program [ 33.835250] REISERFS warning (device loop0): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.850740] REISERFS warning (device loop2): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.867501] REISERFS (device loop4): journal params: device loop4, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.883775] REISERFS (device loop3): using ordered data mode [ 33.889742] REISERFS (device loop0): Using tea hash to sort names [ 33.896270] REISERFS (device loop2): Using tea hash to sort names [ 33.902696] reiserfs: using flush barriers [ 33.905027] REISERFS (device loop1): checking transaction log (loop1) [ 33.909160] REISERFS (device loop4): checking transaction log (loop4) [ 33.940584] REISERFS (device loop3): journal params: device loop3, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 33.956199] REISERFS warning (device loop1): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 33.957424] REISERFS (device loop5): found reiserfs format "3.6" with standard journal [ 33.980732] REISERFS (device loop5): using ordered data mode executing program [ 33.984082] REISERFS (device loop1): Using tea hash to sort names [ 33.986885] reiserfs: using flush barriers [ 33.997248] REISERFS warning (device loop4): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 34.001379] REISERFS (device loop3): checking transaction log (loop3) [ 34.013403] REISERFS (device loop4): Using tea hash to sort names [ 34.023516] REISERFS (device loop5): journal params: device loop5, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 34.041287] REISERFS warning (device loop3): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 34.042131] REISERFS (device loop5): checking transaction log (loop5) [ 34.058831] REISERFS (device loop3): Using tea hash to sort names [ 34.070087] REISERFS warning (device loop5): vs-13075 reiserfs_read_locked_inode: dead inode read from disk [1 2 0x0 SD]. This is likely to be race with knfsd. Ignore [ 34.072318] ------------[ cut here ]------------ [ 34.085379] REISERFS (device loop5): Using tea hash to sort names [ 34.089897] kernel BUG at fs/reiserfs/journal.c:3640! [ 34.104524] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 34.109902] Modules linked in: [ 34.113070] CPU: 0 PID: 6478 Comm: syz-executor515 Not tainted 4.14.198-syzkaller #0 [ 34.120939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.130263] task: ffff88809312e480 task.stack: ffff88809faa0000 [ 34.136293] RIP: 0010:do_journal_end+0x3081/0x41d0 [ 34.141189] RSP: 0018:ffff88809faa79f8 EFLAGS: 00010297 [ 34.146523] RAX: ffff88809312e480 RBX: ffffc900072e1000 RCX: 0000000000000000 [ 34.153764] RDX: 0000000000000000 RSI: ffff88809faa7c30 RDI: ffff88809faa7c3c [ 34.161006] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000040576 [ 34.168246] R10: ffff88809312ed58 R11: ffff88809312e480 R12: ffffc900072e1058 [ 34.175487] R13: ffffc900072e1048 R14: ffff88809faa7c38 R15: ffff888095e2a980 [ 34.182733] FS: 00007f24a2107700(0000) GS:ffff8880aea00000(0000) knlGS:0000000000000000 [ 34.190941] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.196791] CR2: 00000000004c1fec CR3: 000000009f72d000 CR4: 00000000001406f0 [ 34.204044] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 34.211286] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 34.218523] Call Trace: [ 34.221099] ? do_journal_end+0x41d0/0x41d0 [ 34.225394] ? reiserfs_info.cold+0x1d/0x67 [ 34.229684] ? __reiserfs_warning+0xb0/0xb0 [ 34.234000] ? __wake_up_bit+0xd0/0xd0 [ 34.237860] journal_end+0x259/0x300 [ 34.241554] reiserfs_fill_super+0x1ab8/0x28b6 [ 34.246109] ? reiserfs_remount+0x1390/0x1390 [ 34.250580] ? lock_downgrade+0x740/0x740 [ 34.254702] ? snprintf+0xa5/0xd0 [ 34.258131] mount_bdev+0x2b3/0x360 [ 34.261738] ? reiserfs_remount+0x1390/0x1390 [ 34.266204] mount_fs+0x92/0x2a0 [ 34.269543] vfs_kern_mount.part.0+0x5b/0x470 [ 34.274010] do_mount+0xe53/0x2a00 [ 34.277531] ? do_raw_spin_unlock+0x164/0x220 [ 34.281998] ? copy_mount_string+0x40/0x40 [ 34.286205] ? rcu_read_lock_sched_held+0x16c/0x1d0 [ 34.291191] ? copy_mnt_ns+0xa30/0xa30 [ 34.295059] ? copy_mount_options+0x1fa/0x2f0 [ 34.299526] ? copy_mnt_ns+0xa30/0xa30 [ 34.303395] SyS_mount+0xa8/0x120 [ 34.306831] ? copy_mnt_ns+0xa30/0xa30 [ 34.310693] do_syscall_64+0x1d5/0x640 [ 34.314552] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 34.319729] RIP: 0033:0x44d4ba [ 34.322889] RSP: 002b:00007f24a2106bf8 EFLAGS: 00000297 ORIG_RAX: 00000000000000a5 [ 34.330566] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 000000000044d4ba [ 34.337810] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007f24a2106c10 [ 34.345052] RBP: 00007f24a2106c10 R08: 00007f24a2106c50 R09: 0000000000000000 [ 34.352294] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000004 [ 34.359534] R13: 00007f24a2106c50 R14: 00007f24a21076d0 R15: 0000000000000003 [ 34.366777] Code: e8 45 23 ff ff e9 11 fa ff ff e8 5b 88 a1 ff 0f 0b e8 54 88 a1 ff 0f 0b e8 4d 88 a1 ff 0f 0b e8 46 88 a1 ff 0f 0b e8 3f 88 a1 ff <0f> 0b e8 38 88 a1 ff 48 8d bb d0 01 00 00 48 b8 00 00 00 00 00 [ 34.385943] RIP: do_journal_end+0x3081/0x41d0 RSP: ffff88809faa79f8 [ 34.393191] ---[ end trace 59b2ef69ec838d87 ]--- [ 34.398072] Kernel panic - not syncing: Fatal exception [ 34.404432] Kernel Offset: disabled [ 34.408039] Rebooting in 86400 seconds..