./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor291162749 <...> DUID 00:04:7c:8f:25:e4:1e:61:d4:15:b8:1c:50:2a:7f:f5:0b:01 forked to background, child pid 4644 [ 31.867752][ T4645] 8021q: adding VLAN 0 to HW filter on device bond0 [ 31.878294][ T4645] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.134' (ECDSA) to the list of known hosts. execve("./syz-executor291162749", ["./syz-executor291162749"], 0x7fff5d53b2e0 /* 10 vars */) = 0 brk(NULL) = 0x5555566e1000 brk(0x5555566e1c40) = 0x5555566e1c40 arch_prctl(ARCH_SET_FS, 0x5555566e1300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor291162749", 4096) = 27 brk(0x555556702c40) = 0x555556702c40 brk(0x555556703000) = 0x555556703000 mprotect(0x7f05f28d3000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f05ea419000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304 munmap(0x7f05ea419000, 4194304) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 syzkaller login: [ 48.995762][ T5069] loop0: detected capacity change from 0 to 8192 [ 49.007263][ T5069] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 49.020395][ T5069] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 49.029788][ T5069] REISERFS (device loop0): using ordered data mode [ 49.036504][ T5069] reiserfs: using flush barriers [ 49.043369][ T5069] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 49.059929][ T5069] REISERFS (device loop0): checking transaction log (loop0) mount("/dev/loop0", "./file0", "reiserfs", MS_NOEXEC|MS_I_VERSION, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 open("./bus", O_RDWR|O_CREAT|O_SYNC|O_LARGEFILE|O_NOATIME, 000) = 4 ftruncate(4, 3608577) = 0 mknod("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0 [ 49.105056][ T5069] REISERFS (device loop0): Using r5 hash to sort names [ 49.112920][ T5069] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 49.147309][ T5069] REISERFS panic (device loop0): vs-12195 balance_leaf: CFR not initialized [ 49.156734][ T5069] ------------[ cut here ]------------ [ 49.162229][ T5069] kernel BUG at fs/reiserfs/prints.c:390! [ 49.168310][ T5069] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 49.174389][ T5069] CPU: 0 PID: 5069 Comm: syz-executor291 Not tainted 6.2.0-rc1-syzkaller-00084-gc8451c141e07 #0 [ 49.184778][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 49.194811][ T5069] RIP: 0010:__reiserfs_panic+0x12f/0x140 [ 49.200453][ T5069] Code: 00 51 03 8b 48 0f 44 c8 48 0f 44 d8 48 c7 c7 c0 51 03 8b 4c 89 fe 48 89 da 4d 89 f0 49 c7 c1 40 46 16 92 31 c0 e8 01 ce 82 08 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 48 89 e5 41 [ 49.220064][ T5069] RSP: 0018:ffffc90003dfe7e0 EFLAGS: 00010246 [ 49.226222][ T5069] RAX: 0000000000000049 RBX: ffffffff8b02e560 RCX: 22d471ccf105e000 [ 49.234283][ T5069] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 49.242269][ T5069] RBP: ffffc90003dfe8d0 R08: ffffffff816f2c9d R09: fffff520007bfcb5 [ 49.250255][ T5069] R10: fffff520007bfcb5 R11: 1ffff920007bfcb4 R12: ffffffff8b02e580 [ 49.258239][ T5069] R13: ffffc90003dfe800 R14: ffffffff8cc70b00 R15: ffff88802a6e86a8 [ 49.266406][ T5069] FS: 00005555566e1300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 49.275336][ T5069] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.281923][ T5069] CR2: 00007ffd150e5d60 CR3: 000000002a9aa000 CR4: 00000000003506f0 [ 49.290003][ T5069] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.297960][ T5069] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.308113][ T5069] Call Trace: [ 49.311939][ T5069] [ 49.314959][ T5069] ? reiserfs_debug+0x10/0x10 [ 49.319651][ T5069] ? journal_mark_dirty+0x1d1/0xe00 [ 49.324886][ T5069] ? balance_leaf+0x57d9/0x123a0 [ 49.329921][ T5069] balance_leaf+0x109eb/0x123a0 [ 49.334767][ T5069] ? __lock_acquire+0x1292/0x1f60 [ 49.339783][ T5069] ? do_balance+0x8d0/0x8d0 [ 49.344286][ T5069] ? rcu_read_lock_sched_held+0x87/0x110 [ 49.349990][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 49.355967][ T5069] ? trace_raw_output_contention_end+0xd0/0xd0 [ 49.362131][ T5069] ? trace_contention_end+0x72/0x1d0 [ 49.367441][ T5069] ? __mutex_lock_common+0x45f/0x26e0 [ 49.372840][ T5069] ? write_boundary_block+0xb0/0xb0 [ 49.378083][ T5069] ? __mutex_unlock_slowpath+0x222/0x770 [ 49.383726][ T5069] ? __might_sleep+0xc0/0xc0 [ 49.388311][ T5069] ? reiserfs_write_lock_nested+0x5b/0xd0 [ 49.394029][ T5069] ? mutex_lock_io_nested+0x60/0x60 [ 49.399232][ T5069] ? get_empty_nodes+0x5a3/0xd00 [ 49.404175][ T5069] ? __wake_up+0x1f0/0x1f0 [ 49.408607][ T5069] ? get_neighbors+0x1020/0x1020 [ 49.413559][ T5069] ? create_virtual_node+0x1f0/0x1b70 [ 49.418926][ T5069] ? mutex_lock_nested+0x17/0x20 [ 49.423847][ T5069] ? reiserfs_write_lock_nested+0x5b/0xd0 [ 49.429554][ T5069] ? reiserfs_prepare_for_journal+0x239/0x250 [ 49.435618][ T5069] ? fix_nodes+0x73e4/0x8560 [ 49.440203][ T5069] do_balance+0x2d6/0x8d0 [ 49.444534][ T5069] ? get_right_neighbor_position+0x200/0x200 [ 49.450536][ T5069] ? print_irqtrace_events+0x220/0x220 [ 49.456019][ T5069] ? reiserfs_insert_item+0x67b/0xcb0 [ 49.461479][ T5069] reiserfs_insert_item+0xb54/0xcb0 [ 49.466701][ T5069] ? reiserfs_paste_into_item+0x880/0x880 [ 49.472434][ T5069] ? do_raw_spin_unlock+0x134/0x8a0 [ 49.477667][ T5069] ? lockdep_unregister_key+0x5b0/0x5b0 [ 49.483231][ T5069] ? _raw_spin_unlock+0x24/0x40 [ 49.488225][ T5069] ? inode_get_bytes+0x71/0xa0 [ 49.493003][ T5069] ? inode2sd+0x5a4/0xb60 [ 49.497325][ T5069] reiserfs_new_inode+0x11c7/0x1cd0 [ 49.502620][ T5069] ? reiserfs_write_inode+0x2a0/0x2a0 [ 49.508009][ T5069] ? do_journal_begin_r+0xe10/0x1070 [ 49.513329][ T5069] ? journal_begin+0x1f1/0x350 [ 49.518185][ T5069] reiserfs_create+0x3a6/0x660 [ 49.523314][ T5069] ? reiserfs_lookup+0x490/0x490 [ 49.528544][ T5069] ? inode_permission+0xf5/0x450 [ 49.533477][ T5069] ? bpf_lsm_inode_create+0x5/0x10 [ 49.538573][ T5069] ? security_inode_create+0xdd/0x120 [ 49.544130][ T5069] ? reiserfs_lookup+0x490/0x490 [ 49.549064][ T5069] path_openat+0x12ac/0x2dd0 [ 49.553663][ T5069] ? do_filp_open+0x4f0/0x4f0 [ 49.558374][ T5069] do_filp_open+0x264/0x4f0 [ 49.562891][ T5069] ? vfs_tmpfile+0x490/0x490 [ 49.567490][ T5069] ? do_raw_spin_unlock+0x134/0x8a0 [ 49.572704][ T5069] ? _raw_spin_unlock+0x24/0x40 [ 49.577566][ T5069] ? alloc_fd+0x5a7/0x640 [ 49.581911][ T5069] do_sys_openat2+0x124/0x4e0 [ 49.586598][ T5069] ? print_irqtrace_events+0x220/0x220 [ 49.592066][ T5069] ? ptrace_stop+0x74d/0x970 [ 49.596669][ T5069] ? do_sys_open+0x220/0x220 [ 49.601272][ T5069] ? lockdep_hardirqs_on+0x8d/0x130 [ 49.606463][ T5069] ? _raw_spin_unlock_irq+0x2a/0x40 [ 49.611667][ T5069] ? ptrace_notify+0x245/0x340 [ 49.616414][ T5069] __x64_sys_open+0x221/0x270 [ 49.621095][ T5069] ? do_sys_openat2+0x4e0/0x4e0 [ 49.625952][ T5069] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 49.631928][ T5069] ? syscall_enter_from_user_mode+0x86/0x1d0 [ 49.637921][ T5069] do_syscall_64+0x3d/0xb0 [ 49.642336][ T5069] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.648320][ T5069] RIP: 0033:0x7f05f2865809 [ 49.652756][ T5069] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 49.672370][ T5069] RSP: 002b:00007ffef89badf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 49.680790][ T5069] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f05f2865809 [ 49.688772][ T5069] RDX: 00000000000000e9 RSI: 000000000000a040 RDI: 0000000020000000 [ 49.696730][ T5069] RBP: 00007f05f28250a0 R08: 0000000000000000 R09: 0000000000000000 [ 49.704700][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f05f2825130 [ 49.712675][ T5069] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 49.720642][ T5069] [ 49.723661][ T5069] Modules linked in: [ 49.727966][ T5069] ---[ end trace 0000000000000000 ]--- [ 49.733489][ T5069] RIP: 0010:__reiserfs_panic+0x12f/0x140 [ 49.739151][ T5069] Code: 00 51 03 8b 48 0f 44 c8 48 0f 44 d8 48 c7 c7 c0 51 03 8b 4c 89 fe 48 89 da 4d 89 f0 49 c7 c1 40 46 16 92 31 c0 e8 01 ce 82 08 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 55 48 89 e5 41 [ 49.758821][ T5069] RSP: 0018:ffffc90003dfe7e0 EFLAGS: 00010246 [ 49.764959][ T5069] RAX: 0000000000000049 RBX: ffffffff8b02e560 RCX: 22d471ccf105e000 [ 49.772945][ T5069] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 49.780984][ T5069] RBP: ffffc90003dfe8d0 R08: ffffffff816f2c9d R09: fffff520007bfcb5 [ 49.789126][ T5069] R10: fffff520007bfcb5 R11: 1ffff920007bfcb4 R12: ffffffff8b02e580 [ 49.797201][ T5069] R13: ffffc90003dfe800 R14: ffffffff8cc70b00 R15: ffff88802a6e86a8 [ 49.805244][ T5069] FS: 00005555566e1300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 49.814257][ T5069] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 49.820847][ T5069] CR2: 00007ffd150e5d60 CR3: 000000002a9aa000 CR4: 00000000003506f0 [ 49.828851][ T5069] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 49.836892][ T5069] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 49.844982][ T5069] Kernel panic - not syncing: Fatal exception [ 49.851330][ T5069] Kernel Offset: disabled [ 49.855702][ T5069] Rebooting in 86400 seconds..