./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor998466167 <...> DUID 00:04:76:8b:f6:84:a4:3b:36:39:6c:68:e7:10:38:dd:b7:2c forked to background, child pid 4647 [ 29.457369][ T4648] 8021q: adding VLAN 0 to HW filter on device bond0 [ 29.466671][ T4648] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.175' (ECDSA) to the list of known hosts. execve("./syz-executor998466167", ["./syz-executor998466167"], 0x7fff302b4b40 /* 10 vars */) = 0 brk(NULL) = 0x5555559f9000 brk(0x5555559f9c40) = 0x5555559f9c40 arch_prctl(ARCH_SET_FS, 0x5555559f9300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor998466167", 4096) = 27 brk(0x555555a1ac40) = 0x555555a1ac40 brk(0x555555a1b000) = 0x555555a1b000 mprotect(0x7f834ebdd000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f8346705000 write(3, "\xeb\x52\x90\x4e\x54\x46\x53\x20\x20\x20\x20\x00\x08\x02\x00\x00\x00\x00\x00\x00\x00\xf8\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x80\x00\x80\x00\xff\x03\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\xff\x00\x00\x00\x00\x00\x00\x00\xf5\x00\x00\x00\x01\x00\x00\x00\xf7\x9a\x81\x47\x2b\x73\xcf\x43\x00\x00\x00\x00\x0e\x1f\xbe\x71\x7c\xac\x22\xc0\x74\x0b\x56\xb4\x0e\xbb\x07\x00"..., 2097152) = 2097152 munmap(0x7f8346705000, 2097152) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 syzkaller login: [ 51.806217][ T5068] loop0: detected capacity change from 0 to 4096 [ 51.825804][ T5068] ntfs: volume version 3.1. [ 51.831952][ T5068] ------------[ cut here ]------------ [ 51.837408][ T5068] kernel BUG at fs/ntfs/dir.c:86! [ 51.842454][ T5068] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 51.848511][ T5068] CPU: 0 PID: 5068 Comm: syz-executor998 Not tainted 6.1.0-syzkaller-13031-g77856d911a8c #0 [ 51.858547][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 51.868674][ T5068] RIP: 0010:ntfs_lookup_inode_by_name+0x2cd3/0x2ce0 [ 51.875286][ T5068] Code: ff 89 d1 80 e1 07 38 c1 0f 8c 77 fa ff ff be 08 00 00 00 48 8b 3c 24 e8 cb 01 1d ff 48 8b 14 24 e9 60 fa ff ff e8 fd 64 c7 fe <0f> 0b e8 f6 64 c7 fe 0f 0b 0f 1f 40 00 41 57 41 56 41 54 53 49 89 [ 51.894875][ T5068] RSP: 0018:ffffc90003b7f800 EFLAGS: 00010293 [ 51.900928][ T5068] RAX: ffffffff82c470c3 RBX: 0000000000000000 RCX: ffff88801f9c3a80 [ 51.908890][ T5068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004000 [ 51.916851][ T5068] RBP: ffffc90003b7f9d0 R08: ffffffff82c44496 R09: ffffed100e6a78c2 [ 51.924815][ T5068] R10: ffffed100e6a78c2 R11: 1ffff1100e6a78c1 R12: ffff88807353c200 [ 51.932776][ T5068] R13: ffff88802b682000 R14: dffffc0000000000 R15: ffff88802a771000 [ 51.940731][ T5068] FS: 00005555559f9300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 51.949642][ T5068] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 51.956208][ T5068] CR2: 00007ffd6ffab000 CR3: 0000000074d01000 CR4: 00000000003506f0 [ 51.964169][ T5068] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 51.972135][ T5068] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 51.980104][ T5068] Call Trace: [ 51.983380][ T5068] [ 51.986305][ T5068] ? mark_lock+0x9a/0x350 [ 51.990632][ T5068] ? down_write+0x1a5/0x270 [ 51.995135][ T5068] ? down_read_killable+0x80/0x80 [ 52.000149][ T5068] check_windows_hibernation_status+0xec/0x4d0 [ 52.006294][ T5068] ? load_and_check_logfile+0xd0/0xd0 [ 52.011656][ T5068] load_system_files+0x34e0/0x4870 [ 52.016758][ T5068] ? free_vm_area+0x50/0x50 [ 52.021257][ T5068] ? ntfs_setup_allocators+0x2d0/0x2d0 [ 52.026703][ T5068] ? memset+0x1f/0x40 [ 52.030670][ T5068] ? generate_default_upcase+0x7a3/0x7f0 [ 52.036293][ T5068] ntfs_fill_super+0x19a9/0x2bf0 [ 52.041226][ T5068] mount_bdev+0x26c/0x3a0 [ 52.045543][ T5068] ? ntfs_mount+0x40/0x40 [ 52.049857][ T5068] legacy_get_tree+0xea/0x180 [ 52.054518][ T5068] ? ntfs_rl_punch_nolock+0x1160/0x1160 [ 52.060049][ T5068] vfs_get_tree+0x88/0x270 [ 52.064456][ T5068] do_new_mount+0x289/0xad0 [ 52.068945][ T5068] ? do_move_mount_old+0x150/0x150 [ 52.074042][ T5068] ? user_path_at_empty+0x149/0x1a0 [ 52.079226][ T5068] __se_sys_mount+0x2d3/0x3c0 [ 52.083889][ T5068] ? __x64_sys_mount+0xc0/0xc0 [ 52.088635][ T5068] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 52.094605][ T5068] ? __x64_sys_mount+0x1c/0xc0 [ 52.099354][ T5068] do_syscall_64+0x3d/0xb0 [ 52.103765][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.109658][ T5068] RIP: 0033:0x7f834eb52fea [ 52.114066][ T5068] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 52.133660][ T5068] RSP: 002b:00007ffd6ffaa278 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5 [ 52.142062][ T5068] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f834eb52fea [ 52.150024][ T5068] RDX: 000000002001ee40 RSI: 0000000020000040 RDI: 00007ffd6ffaa290 [ 52.157996][ T5068] RBP: 00007ffd6ffaa290 R08: 00007ffd6ffaa2d0 R09: 00007ffd6ffaa2e0 [ 52.165969][ T5068] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000004 [ 52.173940][ T5068] R13: 00005555559f92c0 R14: 0000000000000000 R15: 00007ffd6ffaa2d0 [ 52.181912][ T5068] [ 52.184916][ T5068] Modules linked in: [ 52.188941][ T5068] ---[ end trace 0000000000000000 ]--- [ 52.194425][ T5068] RIP: 0010:ntfs_lookup_inode_by_name+0x2cd3/0x2ce0 [ 52.201109][ T5068] Code: ff 89 d1 80 e1 07 38 c1 0f 8c 77 fa ff ff be 08 00 00 00 48 8b 3c 24 e8 cb 01 1d ff 48 8b 14 24 e9 60 fa ff ff e8 fd 64 c7 fe <0f> 0b e8 f6 64 c7 fe 0f 0b 0f 1f 40 00 41 57 41 56 41 54 53 49 89 [ 52.220741][ T5068] RSP: 0018:ffffc90003b7f800 EFLAGS: 00010293 [ 52.226821][ T5068] RAX: ffffffff82c470c3 RBX: 0000000000000000 RCX: ffff88801f9c3a80 [ 52.234800][ T5068] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000004000 [ 52.242777][ T5068] RBP: ffffc90003b7f9d0 R08: ffffffff82c44496 R09: ffffed100e6a78c2 [ 52.250726][ T5068] R10: ffffed100e6a78c2 R11: 1ffff1100e6a78c1 R12: ffff88807353c200 [ 52.258705][ T5068] R13: ffff88802b682000 R14: dffffc0000000000 R15: ffff88802a771000 [ 52.266683][ T5068] FS: 00005555559f9300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 52.275623][ T5068] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 52.282224][ T5068] CR2: 00007ffd6ffab000 CR3: 0000000074d01000 CR4: 00000000003506f0 [ 52.290183][ T5068] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 52.298169][ T5068] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 52.306177][ T5068] Kernel panic - not syncing: Fatal exception [ 52.312378][ T5068] Kernel Offset: disabled [ 52.316691][ T5068] Rebooting in 86400 seconds..