Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.106' (ECDSA) to the list of known hosts. syzkaller login: [ 28.733989] IPVS: ftp: loaded support on port[0] = 21 executing program [ 28.844132] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 28.852804] REISERFS (device loop0): using ordered data mode [ 28.859730] reiserfs: using flush barriers [ 28.864867] REISERFS (device loop0): journal params: device loop0, size 15748, journal first block 18, max trans len 1024, max batch 900, max commit age 0, max trans age 30 [ 28.882797] REISERFS (device loop0): checking transaction log (loop0) [ 28.890892] REISERFS (device loop0): Using r5 hash to sort names [ 28.897902] reiserfs: enabling write barrier flush mode [ 28.907418] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 28.925270] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 28.940644] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck? [ 28.951031] REISERFS (device loop0): Remounting filesystem read-only [ 28.957537] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 28.970686] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 28.985675] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck? [ 28.996058] REISERFS error (device loop0): zam-7001 reiserfs_find_entry: io error [ 29.004196] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 29.019513] REISERFS error (device loop0): vs-5150 search_by_key: invalid format found in block 15767. Fsck? [ 29.030084] REISERFS error (device loop0): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 29.042995] REISERFS warning (device loop0): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 29.059363] ------------[ cut here ]------------ [ 29.064114] kernel BUG at fs/reiserfs/journal.c:1924! [ 29.069383] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 29.074729] Modules linked in: [ 29.077928] CPU: 1 PID: 7990 Comm: syz-executor142 Not tainted 4.14.281-syzkaller #0 [ 29.085787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 29.095120] task: ffff888097338140 task.stack: ffff8880b3078000 [ 29.101155] RIP: 0010:journal_release+0x2b4/0x450 [ 29.105983] RSP: 0018:ffff8880b307fb18 EFLAGS: 00010297 [ 29.111322] RAX: ffff888097338140 RBX: 1ffff1101660ff63 RCX: 0000000000000000 [ 29.118566] RDX: 0000000000000000 RSI: ffff8880b3594c40 RDI: ffff8880b307fc04 [ 29.125809] RBP: ffff8880b3594c40 R08: 00000000fffffffb R09: ffff8880b307fbf0 [ 29.133053] R10: ffff8880b307fc27 R11: ffff888097338140 R12: ffff8880b307fbf0 [ 29.140298] R13: ffff8880b35952c0 R14: ffffc90001ada000 R15: fffffbfff1412b46 [ 29.147550] FS: 00005555555d9300(0000) GS:ffff8880ba500000(0000) knlGS:0000000000000000 [ 29.155749] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 29.161605] CR2: 00007fab9ca7a1d0 CR3: 0000000008e6a000 CR4: 00000000003406e0 [ 29.168858] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 29.176106] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 29.183351] Call Trace: [ 29.185922] ? reiserfs_end_persistent_transaction+0x190/0x190 [ 29.191883] reiserfs_put_super+0xbb/0x560 [ 29.196095] ? reiserfs_quota_write+0x630/0x630 [ 29.200745] ? fsnotify_unmount_inodes+0x1a2/0x210 [ 29.205648] ? reiserfs_quota_write+0x630/0x630 [ 29.210293] generic_shutdown_super+0x144/0x370 [ 29.214938] kill_block_super+0x95/0xe0 [ 29.218886] deactivate_locked_super+0x6c/0xd0 [ 29.223459] deactivate_super+0x7f/0xa0 [ 29.227422] cleanup_mnt+0x186/0x2c0 [ 29.231122] task_work_run+0x11f/0x190 [ 29.234990] do_exit+0xa44/0x2850 [ 29.238425] ? __do_page_fault+0x571/0xad0 [ 29.242637] ? mm_update_next_owner+0x5b0/0x5b0 [ 29.247283] ? lock_downgrade+0x740/0x740 [ 29.251415] do_group_exit+0x100/0x2e0 [ 29.255295] SyS_exit_group+0x19/0x20 [ 29.259075] ? do_group_exit+0x2e0/0x2e0 [ 29.263124] do_syscall_64+0x1d5/0x640 [ 29.267004] entry_SYSCALL_64_after_hwframe+0x46/0xbb [ 29.272173] RIP: 0033:0x7fab9ca05169 [ 29.275862] RSP: 002b:00007ffe43cbac58 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 29.283557] RAX: ffffffffffffffda RBX: 00007fab9ca79330 RCX: 00007fab9ca05169 [ 29.290803] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 29.298059] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000020001ec0 [ 29.305394] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fab9ca79330 [ 29.312640] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 29.319891] Code: 3c 02 00 0f 85 48 01 00 00 49 8b 37 4c 89 e7 e8 03 83 ff ff be 01 00 00 00 4c 89 e7 e8 b6 a0 ff ff e9 80 fe ff ff e8 4c 18 a2 ff <0f> 0b e8 45 18 a2 ff 31 f6 ba 38 00 00 00 4c 8d 64 24 20 4c 89 [ 29.339014] RIP: journal_release+0x2b4/0x450 RSP: ffff8880b307fb18 [ 29.348362] ---[ end trace 9a0060ff89d29db6 ]--- [ 29.353131] Kernel panic - not syncing: Fatal exception [ 29.358692] Kernel Offset: disabled [ 29.362299] Rebooting in 86400 seconds..