./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3950629399 <...> Warning: Permanently added '10.128.1.115' (ED25519) to the list of known hosts. execve("./syz-executor3950629399", ["./syz-executor3950629399"], 0x7ffd00ff9940 /* 10 vars */) = 0 brk(NULL) = 0x5555789fb000 brk(0x5555789fbd00) = 0x5555789fbd00 arch_prctl(ARCH_SET_FS, 0x5555789fb380) = 0 set_tid_address(0x5555789fb650) = 5837 set_robust_list(0x5555789fb660, 24) = 0 rseq(0x5555789fbca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3950629399", 4096) = 28 getrandom("\xb3\x38\x25\x56\x2b\xbd\xfe\xd7", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555789fbd00 brk(0x555578a1cd00) = 0x555578a1cd00 brk(0x555578a1d000) = 0x555578a1d000 mprotect(0x7f8e35d6c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5838 attached [pid 5838] set_robust_list(0x5555789fb660, 24 [pid 5837] <... clone resumed>, child_tidptr=0x5555789fb650) = 5838 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5838] setpgid(0, 0) = 0 [pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5838] write(3, "1000", 4) = 4 [pid 5838] close(3) = 0 executing program [pid 5838] write(1, "executing program\n", 18) = 18 [pid 5838] memfd_create("syzkaller", 0) = 3 [pid 5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8e2d800000 [pid 5838] write(3, "\xb5\x84\x31\x7b\xb6\x84\x31\x7b\xb7\x84\x31\x7b\xb8\x84\x31\x7b\xb9\x84\x31\x7b\xba\x84\x31\x7b\xbb\x84\x31\x7b\xbc\x84\x31\x7b\xbd\x84\x31\x7b\xbe\x84\x31\x7b\xbf\x84\x31\x7b\xc0\x84\x31\x7b\xc1\x84\x31\x7b\xc2\x84\x31\x7b\xc3\x84\x31\x7b\xc4\x84\x31\x7b\xc5\x84\x31\x7b\xc6\x84\x31\x7b\xc7\x84\x31\x7b\xc8\x84\x31\x7b\xc9\x84\x31\x7b\xca\x84\x31\x7b\xcb\x84\x31\x7b\xcc\x84\x31\x7b\xcd\x84\x31\x7b"..., 65536) = 65536 [pid 5838] munmap(0x7f8e2d800000, 138412032) = 0 [pid 5838] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5838] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5838] close(3) = 0 [pid 5838] close(4) = 0 [pid 5838] mkdir("./file0", 0777) = 0 [ 62.056176][ T5838] loop0: detected capacity change from 0 to 128 [ 62.076179][ T5838] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 62.084172][ T5838] Bad inode number on dev loop0: 2 is out of range [ 62.091129][ T5838] SysV FS: get root inode failed [ 62.096163][ T5838] oldfs: cannot read superblock [ 62.101173][ T5838] ------------[ cut here ]------------ [ 62.106745][ T5838] VFS: brelse: Trying to free free buffer [ 62.112548][ T5838] WARNING: CPU: 0 PID: 5838 at fs/buffer.c:1235 invalidate_bh_lru+0x102/0x1b0 [ 62.121414][ T5838] Modules linked in: [ 62.125400][ T5838] CPU: 0 UID: 0 PID: 5838 Comm: syz-executor395 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 62.136490][ T5838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 62.146558][ T5838] RIP: 0010:invalidate_bh_lru+0x102/0x1b0 [ 62.152275][ T5838] Code: 34 51 db ff f0 ff 0b eb 25 e8 1a 95 74 ff 41 80 3c 2e 00 75 2a eb 30 e8 0c 95 74 ff 90 48 c7 c7 a0 7c 19 8c e8 df 8a 35 ff 90 <0f> 0b 90 90 48 bd 00 00 00 00 00 fc ff df 41 80 3c 2e 00 74 08 4c [ 62.171892][ T5838] RSP: 0018:ffffc90003c9f8e8 EFLAGS: 00010046 [ 62.177980][ T5838] RAX: 8e66b1f4b4891b00 RBX: ffff888079ff5400 RCX: ffff88807ee88000 [ 62.185975][ T5838] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 62.193955][ T5838] RBP: 0000000000000000 R08: ffffffff8155e222 R09: 1ffff110170c519a [ 62.201954][ T5838] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff8880b8639940 [ 62.209938][ T5838] R13: 0000000000000000 R14: 1ffff110170c7328 R15: ffff8880b8639940 [ 62.217910][ T5838] FS: 00005555789fb380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 62.226845][ T5838] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 62.233463][ T5838] CR2: 00007f8e2d80f000 CR3: 0000000024bcc000 CR4: 00000000003526f0 [ 62.241497][ T5838] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 62.249478][ T5838] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 62.257455][ T5838] Call Trace: [ 62.260766][ T5838] [ 62.263760][ T5838] ? __warn+0x168/0x4e0 [ 62.267943][ T5838] ? invalidate_bh_lru+0x102/0x1b0 [ 62.273097][ T5838] ? report_bug+0x2b3/0x500 [ 62.277726][ T5838] ? invalidate_bh_lru+0x102/0x1b0 [ 62.282864][ T5838] ? handle_bug+0x60/0x90 [ 62.287207][ T5838] ? exc_invalid_op+0x1a/0x50 [ 62.291890][ T5838] ? asm_exc_invalid_op+0x1a/0x20 [ 62.297035][ T5838] ? __warn_printk+0x292/0x360 [ 62.301802][ T5838] ? invalidate_bh_lru+0x102/0x1b0 [ 62.306939][ T5838] ? invalidate_bh_lru+0x101/0x1b0 [ 62.312077][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.317895][ T5838] smp_call_function_many_cond+0x1760/0x2ca0 [ 62.323884][ T5838] ? __pfx_has_bh_in_lru+0x10/0x10 [ 62.329005][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.334483][ T5838] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 62.340843][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.346322][ T5838] ? __pfx_has_bh_in_lru+0x10/0x10 [ 62.351433][ T5838] on_each_cpu_cond_mask+0x3f/0x80 [ 62.356545][ T5838] blkdev_flush_mapping+0xfe/0x270 [ 62.361671][ T5838] ? bdev_release+0x456/0x700 [ 62.366357][ T5838] bdev_release+0x460/0x700 [ 62.370869][ T5838] blkdev_release+0x15/0x20 [ 62.375462][ T5838] ? __pfx_blkdev_release+0x10/0x10 [ 62.380660][ T5838] __fput+0x23f/0x880 [ 62.384650][ T5838] task_work_run+0x24f/0x310 [ 62.389335][ T5838] ? __pfx_task_work_run+0x10/0x10 [ 62.394445][ T5838] ? kasan_quarantine_put+0xdc/0x230 [ 62.399830][ T5838] ? lockdep_hardirqs_on+0x99/0x150 [ 62.405052][ T5838] ptrace_notify+0x2d2/0x380 [ 62.409781][ T5838] ? dput+0x37/0x2b0 [ 62.413758][ T5838] ? __se_sys_mount+0x379/0x3c0 [ 62.418883][ T5838] ? __pfx_ptrace_notify+0x10/0x10 [ 62.423992][ T5838] ? __se_sys_mount+0x379/0x3c0 [ 62.428850][ T5838] ? __pfx___se_sys_mount+0x10/0x10 [ 62.434049][ T5838] syscall_exit_work+0xc6/0x190 [ 62.439335][ T5838] syscall_exit_to_user_mode+0x279/0x370 [ 62.444988][ T5838] do_syscall_64+0x100/0x230 [ 62.449576][ T5838] ? clear_bhb_loop+0x35/0x90 [ 62.454270][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.460185][ T5838] RIP: 0033:0x7f8e35cf0dea [ 62.464625][ T5838] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.484249][ T5838] RSP: 002b:00007fffd5fd6c88 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 62.492763][ T5838] RAX: ffffffffffffffea RBX: 00007fffd5fd6ca0 RCX: 00007f8e35cf0dea [ 62.501258][ T5838] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fffd5fd6ca0 [ 62.510038][ T5838] RBP: 0000000000000004 R08: 00007fffd5fd6ce0 R09: 0000000000009eaf [ 62.518042][ T5838] R10: 0000000002000412 R11: 0000000000000282 R12: 0000000002000412 [ 62.526029][ T5838] R13: 00007fffd5fd6ce0 R14: 0000000000000003 R15: 0000000000010000 [ 62.534019][ T5838] [ 62.537149][ T5838] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 62.544732][ T5838] CPU: 0 UID: 0 PID: 5838 Comm: syz-executor395 Not tainted 6.12.0-rc7-syzkaller-00125-gcfaaa7d010d1 #0 [ 62.555851][ T5838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 62.565910][ T5838] Call Trace: [ 62.569282][ T5838] [ 62.573772][ T5838] dump_stack_lvl+0x241/0x360 [ 62.578737][ T5838] ? __pfx_dump_stack_lvl+0x10/0x10 [ 62.584050][ T5838] ? __pfx__printk+0x10/0x10 [ 62.588733][ T5838] ? vscnprintf+0x5d/0x90 [ 62.593096][ T5838] panic+0x349/0x880 [ 62.597010][ T5838] ? __warn+0x177/0x4e0 [ 62.601188][ T5838] ? __pfx_panic+0x10/0x10 [ 62.605826][ T5838] __warn+0x34b/0x4e0 [ 62.609837][ T5838] ? invalidate_bh_lru+0x102/0x1b0 [ 62.615155][ T5838] report_bug+0x2b3/0x500 [ 62.619545][ T5838] ? invalidate_bh_lru+0x102/0x1b0 [ 62.624819][ T5838] handle_bug+0x60/0x90 [ 62.628987][ T5838] exc_invalid_op+0x1a/0x50 [ 62.633495][ T5838] asm_exc_invalid_op+0x1a/0x20 [ 62.638457][ T5838] RIP: 0010:invalidate_bh_lru+0x102/0x1b0 [ 62.644227][ T5838] Code: 34 51 db ff f0 ff 0b eb 25 e8 1a 95 74 ff 41 80 3c 2e 00 75 2a eb 30 e8 0c 95 74 ff 90 48 c7 c7 a0 7c 19 8c e8 df 8a 35 ff 90 <0f> 0b 90 90 48 bd 00 00 00 00 00 fc ff df 41 80 3c 2e 00 74 08 4c [ 62.663852][ T5838] RSP: 0018:ffffc90003c9f8e8 EFLAGS: 00010046 [ 62.669930][ T5838] RAX: 8e66b1f4b4891b00 RBX: ffff888079ff5400 RCX: ffff88807ee88000 [ 62.677898][ T5838] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 62.685864][ T5838] RBP: 0000000000000000 R08: ffffffff8155e222 R09: 1ffff110170c519a [ 62.694095][ T5838] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffff8880b8639940 [ 62.702326][ T5838] R13: 0000000000000000 R14: 1ffff110170c7328 R15: ffff8880b8639940 [ 62.710846][ T5838] ? __warn_printk+0x292/0x360 [ 62.715676][ T5838] ? invalidate_bh_lru+0x101/0x1b0 [ 62.720884][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.726343][ T5838] smp_call_function_many_cond+0x1760/0x2ca0 [ 62.732411][ T5838] ? __pfx_has_bh_in_lru+0x10/0x10 [ 62.737522][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.743011][ T5838] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 62.749341][ T5838] ? __pfx_invalidate_bh_lru+0x10/0x10 [ 62.754795][ T5838] ? __pfx_has_bh_in_lru+0x10/0x10 [ 62.759910][ T5838] on_each_cpu_cond_mask+0x3f/0x80 [ 62.765017][ T5838] blkdev_flush_mapping+0xfe/0x270 [ 62.770130][ T5838] ? bdev_release+0x456/0x700 [ 62.774823][ T5838] bdev_release+0x460/0x700 [ 62.779349][ T5838] blkdev_release+0x15/0x20 [ 62.783850][ T5838] ? __pfx_blkdev_release+0x10/0x10 [ 62.789047][ T5838] __fput+0x23f/0x880 [ 62.793040][ T5838] task_work_run+0x24f/0x310 [ 62.797653][ T5838] ? __pfx_task_work_run+0x10/0x10 [ 62.802761][ T5838] ? kasan_quarantine_put+0xdc/0x230 [ 62.808220][ T5838] ? lockdep_hardirqs_on+0x99/0x150 [ 62.813448][ T5838] ptrace_notify+0x2d2/0x380 [ 62.818072][ T5838] ? dput+0x37/0x2b0 [ 62.822005][ T5838] ? __se_sys_mount+0x379/0x3c0 [ 62.826887][ T5838] ? __pfx_ptrace_notify+0x10/0x10 [ 62.832012][ T5838] ? __se_sys_mount+0x379/0x3c0 [ 62.836897][ T5838] ? __pfx___se_sys_mount+0x10/0x10 [ 62.842131][ T5838] syscall_exit_work+0xc6/0x190 [ 62.847007][ T5838] syscall_exit_to_user_mode+0x279/0x370 [ 62.852644][ T5838] do_syscall_64+0x100/0x230 [ 62.857239][ T5838] ? clear_bhb_loop+0x35/0x90 [ 62.861921][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 62.867815][ T5838] RIP: 0033:0x7f8e35cf0dea [ 62.872235][ T5838] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 62.892035][ T5838] RSP: 002b:00007fffd5fd6c88 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 62.900559][ T5838] RAX: ffffffffffffffea RBX: 00007fffd5fd6ca0 RCX: 00007f8e35cf0dea [ 62.908642][ T5838] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007fffd5fd6ca0 [ 62.916616][ T5838] RBP: 0000000000000004 R08: 00007fffd5fd6ce0 R09: 0000000000009eaf [ 62.924768][ T5838] R10: 0000000002000412 R11: 0000000000000282 R12: 0000000002000412 [ 62.932740][ T5838] R13: 00007fffd5fd6ce0 R14: 0000000000000003 R15: 0000000000010000 [ 62.940760][ T5838] [ 62.944124][ T5838] Kernel Offset: disabled [ 62.948492][ T5838] Rebooting in 86400 seconds..