./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3067305171
<...>
DUID 00:04:ab:86:5b:51:31:5e:ac:a3:74:55:84:ab:cd:90:ff:3d
forked to background, child pid 3183
[ 23.867310][ T3184] 8021q: adding VLAN 0 to HW filter on device bond0
[ 23.878337][ T3184] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.0.172' (ECDSA) to the list of known hosts.
execve("./syz-executor3067305171", ["./syz-executor3067305171"], 0x7ffe5bebd9a0 /* 10 vars */) = 0
brk(NULL) = 0x555555819000
brk(0x555555819c40) = 0x555555819c40
arch_prctl(ARCH_SET_FS, 0x555555819300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3067305171", 4096) = 28
brk(0x55555583ac40) = 0x55555583ac40
brk(0x55555583b000) = 0x55555583b000
mprotect(0x7fd9bd178000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
ftruncate(3, 131072) = 0
pwrite64(3, "\x01\x16\x19\x70\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x64\x00\x00\x00\x00\x00\x00\x07\x09\x00\x00\x07\x6c\x00\x00\x00\x00\x00\x00\x10\x00\x00\x05\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x08\x19\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0c\x00\x00\x00\x00\x00\x00\x09\x25\x6c\x6f\x63\x6b"..., 107, 65536) = 107
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
mkdir("./file0", 0777) = 0
syzkaller login: [ 39.850297][ T3611] loop0: detected capacity change from 0 to 256
[ 39.862236][ T3611] gfs2: fsid=loop0: Trying to join cluster "lock_nolock", "loop0"
[ 39.870148][ T3611] gfs2: fsid=loop0: Now mounting FS (format 1801)...
[ 39.877038][ T3611] ================================================================================
[ 39.886373][ T3611] UBSAN: shift-out-of-bounds in fs/gfs2/ops_fstype.c:295:19
[ 39.893704][ T3611] shift exponent 327683 is too large for 64-bit type 'long unsigned int'
[ 39.902132][ T3611] CPU: 0 PID: 3611 Comm: syz-executor306 Not tainted 6.0.0-rc3-next-20220901-syzkaller #0
[ 39.912035][ T3611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 39.922096][ T3611] Call Trace:
[ 39.925360][ T3611]
[ 39.928364][ T3611] dump_stack_lvl+0xcd/0x134
[ 39.932958][ T3611] ubsan_epilogue+0xb/0x50
[ 39.937360][ T3611] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187
[ 39.944110][ T3611] ? gfs2_read_super+0x56d/0x17a0
[ 39.949134][ T3611] init_sb.cold+0x19/0x109
[ 39.953571][ T3611] ? gfs2_read_super+0x17a0/0x17a0
[ 39.958713][ T3611] ? init_sb+0xb9/0x1080
[ 39.962958][ T3611] ? __debugfs_create_file+0x392/0x540
[ 39.968428][ T3611] gfs2_fill_super+0x17fe/0x27a0
[ 39.973377][ T3611] ? gfs2_reconfigure+0x1060/0x1060
[ 39.978597][ T3611] ? gfs2_fill_super+0x170c/0x27a0
[ 39.983715][ T3611] ? snprintf+0xbb/0xf0
[ 39.987886][ T3611] ? vsprintf+0x30/0x30
[ 39.992069][ T3611] ? wait_for_completion_io_timeout+0x20/0x20
[ 39.998153][ T3611] ? set_blocksize+0x2e5/0x370
[ 40.002937][ T3611] get_tree_bdev+0x440/0x760
[ 40.007531][ T3611] ? gfs2_reconfigure+0x1060/0x1060
[ 40.012924][ T3611] gfs2_get_tree+0x4a/0x270
[ 40.017433][ T3611] vfs_get_tree+0x89/0x2f0
[ 40.021867][ T3611] path_mount+0x1326/0x1e20
[ 40.026389][ T3611] ? kmem_cache_free+0xe7/0x5b0
[ 40.031252][ T3611] ? finish_automount+0x960/0x960
[ 40.036280][ T3611] ? putname+0xfe/0x140
[ 40.040467][ T3611] __x64_sys_mount+0x27f/0x300
[ 40.045234][ T3611] ? copy_mnt_ns+0xae0/0xae0
[ 40.049825][ T3611] ? _raw_spin_unlock_irq+0x2a/0x40
[ 40.055569][ T3611] ? ptrace_notify+0xfa/0x140
[ 40.060257][ T3611] do_syscall_64+0x35/0xb0
[ 40.064687][ T3611] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 40.070591][ T3611] RIP: 0033:0x7fd9bd10d16a
[ 40.075008][ T3611] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 40.094625][ T3611] RSP: 002b:00007ffcd1985f38 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 40.103051][ T3611] RAX: ffffffffffffffda RBX: 00007ffcd1985f90 RCX: 00007fd9bd10d16a
[ 40.111022][ T3611] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffcd1985f50
[ 40.119009][ T3611] RBP: 00007ffcd1985f50 R08: 00007ffcd1985f90 R09: 0000000000000000
[ 40.126982][ T3611] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000020000218
[ 40.135053][ T3611] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000001
[ 40.143031][ T3611]
[ 40.146283][ T3611] ================================================================================
[ 40.155599][ T3611] Kernel panic - not syncing: panic_on_warn set ...
[ 40.162171][ T3611] CPU: 1 PID: 3611 Comm: syz-executor306 Not tainted 6.0.0-rc3-next-20220901-syzkaller #0
[ 40.172047][ T3611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022
[ 40.182090][ T3611] Call Trace:
[ 40.185381][ T3611]
[ 40.188315][ T3611] dump_stack_lvl+0xcd/0x134
[ 40.192896][ T3611] panic+0x2c8/0x622
[ 40.196793][ T3611] ? panic_print_sys_info.part.0+0x110/0x110
[ 40.202786][ T3611] ? ubsan_epilogue+0x3e/0x50
[ 40.207458][ T3611] ubsan_epilogue+0x4a/0x50
[ 40.211950][ T3611] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187
[ 40.219015][ T3611] ? gfs2_read_super+0x56d/0x17a0
[ 40.224049][ T3611] init_sb.cold+0x19/0x109
[ 40.228571][ T3611] ? gfs2_read_super+0x17a0/0x17a0
[ 40.233699][ T3611] ? init_sb+0xb9/0x1080
[ 40.237937][ T3611] ? __debugfs_create_file+0x392/0x540
[ 40.243404][ T3611] gfs2_fill_super+0x17fe/0x27a0
[ 40.248336][ T3611] ? gfs2_reconfigure+0x1060/0x1060
[ 40.253524][ T3611] ? gfs2_fill_super+0x170c/0x27a0
[ 40.258649][ T3611] ? snprintf+0xbb/0xf0
[ 40.262797][ T3611] ? vsprintf+0x30/0x30
[ 40.266957][ T3611] ? wait_for_completion_io_timeout+0x20/0x20
[ 40.273031][ T3611] ? set_blocksize+0x2e5/0x370
[ 40.277804][ T3611] get_tree_bdev+0x440/0x760
[ 40.282401][ T3611] ? gfs2_reconfigure+0x1060/0x1060
[ 40.287610][ T3611] gfs2_get_tree+0x4a/0x270
[ 40.292102][ T3611] vfs_get_tree+0x89/0x2f0
[ 40.296525][ T3611] path_mount+0x1326/0x1e20
[ 40.301033][ T3611] ? kmem_cache_free+0xe7/0x5b0
[ 40.305875][ T3611] ? finish_automount+0x960/0x960
[ 40.311067][ T3611] ? putname+0xfe/0x140
[ 40.315220][ T3611] __x64_sys_mount+0x27f/0x300
[ 40.319971][ T3611] ? copy_mnt_ns+0xae0/0xae0
[ 40.324551][ T3611] ? _raw_spin_unlock_irq+0x2a/0x40
[ 40.329751][ T3611] ? ptrace_notify+0xfa/0x140
[ 40.334437][ T3611] do_syscall_64+0x35/0xb0
[ 40.338854][ T3611] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 40.344751][ T3611] RIP: 0033:0x7fd9bd10d16a
[ 40.349160][ T3611] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 40.368771][ T3611] RSP: 002b:00007ffcd1985f38 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 40.377185][ T3611] RAX: ffffffffffffffda RBX: 00007ffcd1985f90 RCX: 00007fd9bd10d16a
[ 40.385235][ T3611] RDX: 0000000020000000 RSI: 0000000020000100 RDI: 00007ffcd1985f50
[ 40.393376][ T3611] RBP: 00007ffcd1985f50 R08: 00007ffcd1985f90 R09: 0000000000000000
[ 40.401458][ T3611] R10: 0000000000000000 R11: 0000000000000282 R12: 0000000020000218
[ 40.409421][ T3611] R13: 0000000000000003 R14: 0000000000000004 R15: 0000000000000001
[ 40.417412][ T3611]
[ 40.420577][ T3611] Kernel Offset: disabled
[ 40.424896][ T3611] Rebooting in 86400 seconds..